cybersecurity

UAC-0247 Targets Ukrainian Clinics and Government in Data-Theft Malware Campaign [thehackernews.com] 6-Year Ransomware Campaign Targets Turkish Homes & SMBs [www.darkreading.com] Critical MCP Integration Flaw Puts NGINX at Risk [www.darkreading.com] NIST narrows scope of CVE analysis to keep up with rising tide of vulnerabilities [cyberscoop.com] Navigating the Unique Security Risks of Asia's Digital Supply Chain [www.darkreading.com]

Executive orders likely ahead in next steps for national cyber strategy [cyberscoop.com] n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails [thehackernews.com] Prepping for 'Q-Day': Why Quantum Risk Management Should Start Now [www.darkreading.com] Audit: Big Tech Often Ignores CA Privacy Law Opt-Out Requests [www.darkreading.com] OpenAI expands Trusted Access for Cyber program with new GPT 5.4 Cyber model  [cyberscoop.com]

Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover [thehackernews.com] April Patch Tuesday Fixes Critical Flaws Across SAP, Adobe, Microsoft, Fortinet, and More [thehackernews.com] Microsoft, Salesforce Patch AI Agent Data Leak Flaws [www.darkreading.com] Deterministic + Agentic AI: The Architecture Exposure Validation Requires [thehackernews.com] We’re only seeing the tip of the chip-smuggling iceberg [cyberscoop.com]