Latest

Government

CISA Warns of 'Detrimental Capacity Impacts' Amid Shutdown

Chris Riotta  •  April 16, 2026

The acting director of the Cybersecurity and Infrastructure Security Agency said the administration's fiscal year $2.5 billion budget request reflects mounting strain from workforce shortages and shutdown disruptions that have reduced staffing to 40% in recent months.

Cybercrime

Breach Roundup: Mr. Raccoon Wants Your Password

Pooja Tikekar  •  April 16, 2026

This week, a "Raccoon"-linked actor hit help desks, Eurail exposed 308K users, Fortinet patched critical flaws, Pushpaganda scams, major data leaks hit healthcare and China, ransomware and phishing ops surged, and multiple breaches impacted firms and hospitals.

Cyber Insurance

Stryker Hack Affects First Quarter Results

Marianne Kolbasuk McGee  •  April 16, 2026

Stryker notified regulators that its March cyberattack will impact the medtech maker's first quarter financial results. The company also does not appear to have a cyber insurance policy in place to help cover costs associated with the disruptive incident claimed by Iranian hackers.

Geo-Specific

Europe Moves to Neutralize US 'Kill Switch' Anxiety

David Meyer  •  April 16, 2026

Four European tech companies have banded together to provide a "fully sovereign disaster recovery pack" for companies in the region that want to hedge against the much-discussed possibility of the U.S. flipping the kill switch on its tech. This stack can be immediately deployed on-premises.

Fraud Management & Cybercrime

Freight Hacker Wields Code-Signing Service to Evade Defenses

Mathew J. Schwartz  •  April 16, 2026

Cargo-stealing hackers have a new trick up their sleeve: using a third-party code-signing service makes their remote management and monitoring software installers appear to be legitimate. Who's providing this signing service isn't clear. It's probably distributed by word of mouth.

Blockchain & Cryptocurrency

Cryptohack Roundup: $45 Million Fraud Operation Disrupted

Rashmi Ramesh  •  April 16, 2026

This week, Operation Atlantic disrupts $45M phishing fraud, ZachXBT uncovers DPRK crypto worker scheme, Hyperbridge exploit, South Korea fines Coinone $3.5M, Kraken faces extortion attempt over insider data leak and American musician loses $420K in fake Ledger app.

►

Agentic AI

Proof of Concept: Mythos Clouds the Future of Cyber Defense

Anna Delaney  •  April 16, 2026

In the latest Proof of Concept, SANS and Cloud Security Alliance leaders join ISMG editors to discuss how the storm clouds of Claude Mythos could upend cyber defenses by compressing time to exploit, and why vulnerability management, risk models and security operations must change.

Artificial Intelligence & Machine Learning

Nvidia Bets AI Can Fix Quantum's Noise Problem

Rashmi Ramesh  •  April 16, 2026

Nvidia released what it calls the world's first family of open AI models built to reduce errors in quantum computers in a bid to tackle problems blocking the technology's path to practical use. Nvidia is focusing on software, AI models and tools that work alongside quantum hardware.

Artificial Intelligence & Machine Learning

Beyond Mythos: A Defining Moment for Cybersecurity

Sanjay Kalra  •  April 16, 2026

The introduction of Anthropic's Mythos model signals a shift in the cybersecurity industry - one not yet fully understood, which prompted Project Glasswing: a coordinated group of ecosystem partners who have been given early access to this capability to define impending future threats before they hit.

Artificial Intelligence & Machine Learning

Federal Staffers Are Still Using Claude Despite Trump Orders

Chris Riotta  •  April 15, 2026

Federal agency staffers tell ISMG they are still using Anthropic's AI tools weeks after U.S. President Donald Trump ordered an immediate halt, as officials prioritize mapping dependencies and evaluating alternatives over enforcing a rapid shutdown.

3rd Party Risk Management

HSCC Guide Targets Third-Party AI Risk in Healthcare

Marianne Kolbasuk McGee  •  April 15, 2026

The Health Sector Coordinating Council released guidance to help the healthcare and public health sector better manage the explosion of third-party AI vendor cyber risk concerns they face, especially as the technology is embedded in all sorts of products.

AI-Driven Security Operations

Mythos Can Autonomously Execute Network Takeover in Hours

Rashmi Ramesh  •  April 15, 2026

The British AI Security Institute found that Anthropic's Mythos Preview can autonomously execute complex cyberattacks in controlled tests, outperforming prior models. The results are based on tests in a simulated environment lacking real-world defenses.