Cybersecurity News

Research Saturday
N2K logo
Apr 18, 2026
A new breed of RAT.
Today we are joined by ⁠Dr. Darren Williams⁠, Founder and CEO of ⁠BlackFog⁠, to discuss his team's work on "Steaelite RAT Enables Double Extortion Attacks from a Single Panel." A new remote access trojan, Steaelite, is being marketed on underground forums as an all-in-one platform that combines remote access, credential theft, surveillance, and ransomware deployment through a single browser-based dashboard. Unlike traditional cybercrime toolchains, it merges data exfiltration and ransomware capabilities into one interface, with automated credential harvesting beginning as soon as a victim is infected. The tool signals a growing shift toward streamlined “double extortion” attacks, where data theft and encryption happen within the same system—raising the stakes for defenders to stop threats before data is exfiltrated.
Week that Was
N2K logo
Apr 18, 2026
NVD shifts strategy to deal with a CVE backlog.
US House extends FISA Section 702 for ten days. CISA recalls furloughed employees amid funding lapse.
CyberWire Daily
N2K logo
Apr 17, 2026
Temporary fix for Section 702.
The House extends Section 702, for now. Mythos raises fresh cyber risk concerns. CISA warns of reduced capacity. ZionSiphon targets Israeli water systems. Operation PowerOFF hits DDoS-for-hire networks. CISA flags an actively exploited ActiveMQ flaw. WordPress plugin supply chain attacks spread. China tests deep-sea cable-cutting tech. Our guest is Arvind Nithrakashyap, CTO and Co-Founder of Rubrik, discussing AI as the next frontier. Tim Starks from CyberScoop takes us Inside the FBI’s recent router takedown. A DraftKings data dealer meets his downfall.
Story
N2K logo
Apr 17, 2026
Securing autonomous AI at scale with Arvind (Nitro) Nithrakashyap from Rubrik
Arvind (Nitro) Nithrakashyap, CTO and Co-Founder of Rubrik joins Dave Bittner on the CyberWire Daily podcast for a sponsored Industry Voices at the RSAC Conference 2026. He explores the rise of “AI sprawl,” the challenges of securing autonomous agents at scale, and what organizations must do now to strengthen governance, enforce policy, and prepare for AI-driven cyber threats.
Daily Briefing
N2K logo
Apr 17, 2026
US House extends FISA Section 702 for ten days.
CISA's acting director warns lawmakers of reduced capacity. New malware strain targets Israeli water facilities.
Story
N2K logo
Apr 16, 2026
Extending zero trust beyond the endpoint with Rob Allen from ThreatLocker
Rob Allen, CPO at ThreatLocker joins Dave Bittner on the CyberWire Daily podcast for a sponsored Industry Voices at the RSAC Conference 2026. He discusses the evolution of zero trust beyond applications into network and cloud access, and how enforcing deny-by-default policies at the device level helps organizations reduce risk, secure remote users, and render stolen credentials far less effective.
CyberWire Daily
N2K logo
Apr 16, 2026
Too many flaws, not enough time.
NIST struggles with an NVD backlog. Cisco and Splunk ship critical patches. Researchers flag a systemic flaw in Anthropic’s MCP. ShinyHunters leak 13.5 million McGraw Hill accounts. Cargo theft goes cyber. A Tennessee hospital breach hits 337,000 patients. Two Americans are sentenced in a North Korean fake-IT-worker scheme. Our guest is Rob Allen, Chief Product Officer at ThreatLocker, describing security gaps addressed by zero trust. OpenAI lets security teams take off the training wheels.
Caveat
N2K logo
Apr 16, 2026
Treasury Secretary holds a meeting to cover risks related to Anthropic’s new model.
Europe set to deploy new age-verification tool.
Daily Briefing
N2K logo
Apr 16, 2026
NVD shifts strategy to deal with a CVE backlog.
McGraw Hill confirms data breach. Two US nationals sentenced to prison for involvement in North Korean IT worker schemes.
Threat Vector
N2K logo
Apr 16, 2026
How Nations Hack, Spy, and Win
Most people think nation-state cyberattacks are unpredictable. Allie Mellen wrote the book that proves they’re not. ⁠Allie Mellen⁠ is the author of Code War: How Nations Hack, Spy, and Shape the Digital Battlefield and a leading industry analyst and former hacker. She advises Global 2000 organizations on detecting and responding to nation-state attacks. Her research career began as a hacker with work featured at Black Hat USA. She has partnered with multiple government agencies on election security and regularly briefs the Wall Street Journal, NPR, and the Washington Post. Allie joined Threat Vector previously to break down the XDR landscape and what’s next for security operations. This time, the conversation goes somewhere different. In this conversation with ⁠David Moulton⁠, Allie breaks down the strategic logic behind attacks most defenders treat as random events.
Hacking Humans
N2K logo
Apr 16, 2026
Who is winning the scam game?
This week, hosts of N2K CyberWire ⁠⁠⁠⁠⁠⁠⁠⁠⁠Maria Varmazis⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ and⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Dave Bittner⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ alongside ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Joe Carrigan⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ are discussing the latest in social engineering scams, phishing schemes, and criminal exploits that are making headlines. If you thought you could escape chicken talk, you we're wrong, this week Joe shares some more updates on his chickens. Joe’s got two stories this week, one on a New Jersey man arrested while attempting to collect $800,000 in gold as part of a widespread scam targeting elderly victims, and the second is on a new Google-tracked threat group using social engineering and phishing tactics to infiltrate BPOs and steal corporate data for extortion. Maria’s story is on a conversation she had with ⁠Sean Colicchio⁠, highlighting how trusting human instincts, slowing down, and balancing security training can help individuals and organizations better defend against social engineering attacks. Dave’s got the story on a surge in traffic violation scams now using QR codes in phishing texts to trick victims, alongside ten hard-stop rules emphasizing verification, avoiding links or inbound requests, and slowing down to prevent falling for increasingly sophisticated scams. Our Catch of the Day comes from Reddit, where a user questioned a supposed “Google Play Console partnership” email, and the community quickly flagged it as a likely scam—citing red flags.
Caveat
N2K logo
Apr 16, 2026
Anthropic vs Washington.
This week, Dave and Ben revisit Anthropic’s lawsuits against the Pentagon after the company was reclassified as a supply chain risk. Additionally, Dave and Ben also take a look at the looming Section 702 deadline, which is set to expire on April 20th.
Load More
Gain instant access to our exclusive podcast and briefing content, the Pro Academy, live events and more by subscribing to N2K Pro.
Subscribe Now