Patchstack has released detailed guidelines for their Bug Bounty Program, which aims to identify and address vulnerabilities in WordPress core, plugins, and themes. The guidelines specify the scope of the program, the types of vulnerabilities that are eligible for bounties, and the criteria for valid submissions. This initiative is designed to enhance the security of WordPress components distributed through recognized repositories such as WordPress.org, Envato, and GitHub.

The Bug Bounty Program focuses on vulnerabilities that have a clear and measurable security impact, with a CVSS v3.1 base score of 6.5 or higher. Eligible components must have at least 1,000 active installations, or 100+ installations if the vulnerability has a CVSS score of 8.5 or higher and can be exploited by unauthenticated users. Additionally, the component must have been released within the last three years, and the report should target the latest version available.

Several common rejection reasons are outlined, including vulnerabilities that arise from expected functionality or configurations made by high-privilege users. Reports involving vulnerabilities with high attack complexity or those that result in minor data leakage or modification are also outside the scope. Furthermore, vulnerabilities requiring unrealistic identifiers or scenarios, as well as those involving non-publicly-distributed components, are not eligible for bounties.

Submissions must consolidate multiple findings of the same vulnerability type into a single report. Vendor or developer self-submissions are accepted for disclosure but do not qualify for bounties. Reports must be complete, accurate, and verifiable, with realistic prerequisites and exploitation scenarios. Specific types of vulnerabilities, such as CSV injection, CAPTCHA bypasses, and IP spoofing, are explicitly excluded from the program.

To participate in the Bug Bounty Program, security researchers must ensure their reports meet the outlined criteria and provide sufficient evidence of the vulnerability's impact. By adhering to these guidelines, participants can contribute to improving the security of WordPress components and potentially earn bounties for their findings.

Subscribe now

Source: https://patchstack.com/database/report

The Department of Justice has successfully extradited a German national from Colombia to the United States. This individual is accused of owning and operating 'The Versus Project', a platform allegedly involved in cybercriminal activities. This action marks a significant step in the ongoing efforts by U.S. authorities to address international cybercrime.

The extradition coincides with the sentencing of two men involved in using BlackCat ransomware to extort U.S. entities. These cases highlight the persistent threat posed by cybercriminals who exploit vulnerabilities to target organizations across borders. The Department of Justice's actions demonstrate a commitment to pursuing cybercriminals regardless of their location.

'Versus Project' is believed to have facilitated various illegal activities, providing a platform for cybercriminals to conduct operations. The extradited individual is now facing charges in the United States, where authorities will continue their investigation into the extent of the platform's activities and its impact on victims.

The impact of these cybercriminal activities is significant, affecting numerous organizations and individuals. The use of ransomware like BlackCat can lead to severe financial losses and operational disruptions. As cyber threats continue to evolve, it is essential for organizations to remain vigilant and proactive in their cybersecurity strategies.

To mitigate the risk of falling victim to such cyber threats, organizations should regularly update their security protocols and conduct thorough risk assessments. Implementing robust cybersecurity measures and educating employees about potential threats can help protect against the activities of platforms like 'The Versus Project'.

Subscribe now

Source: https://databreaches.net/2026/04/30/versus-project-marketplace-creator-and-operator-extradited-from-colombia-to-the-united-states/?pk_campaign=feed&pk_kwd=versus-project-marketplace-creator-and-operator-extradited-from-colombia-to-the-united-states

In a significant breakthrough against online fraud, Europol has successfully dismantled an Albanian criminal network operating scam call centers. This operation, which spanned two years, culminated in the arrest of 10 individuals and the seizure of substantial assets, including nearly €900,000 in cash and hundreds of electronic devices. The fraudulent scheme is estimated to have cost victims at least €50 million.

The investigation began in June 2023 when Austrian law enforcement identified numerous fraud victims in Vienna. By April 2024, they had traced an IP address linked to the perpetrators and requested assistance from Albanian authorities. The scam involved misleading advertisements on social media and search engines, which lured victims into a fake investment scheme. Once registered, victims were assigned 'retention agents' who impersonated investment advisors.

The operation was structured like a legitimate business, with call center agents organized into language-specific teams targeting different markets. Of the 450 employees, 'conversion agents' focused on acquiring new victims, while 'retention agents' worked to extract more money from them. The organization also had dedicated teams for management, finance, IT, and HR, with team leaders overseeing operations.

Victims were persuaded to open accounts on cryptocurrency platforms, initially depositing €500. The network employed psychological tactics and local language skills to gain victims' trust. In some cases, they used remote access software to control victims' computers, although the exact purpose remains unclear. The money was never invested but laundered internationally, affecting victims in countries such as Austria, Italy, Germany, and the UK.

To protect themselves, individuals should be wary of unsolicited investment offers, especially those promising high returns. It is advisable to conduct thorough research and verify the legitimacy of any investment opportunity. Victims of such scams should report incidents to local authorities to aid in ongoing investigations and prevent further fraud.

Subscribe now

Source: https://www.infosecurity-magazine.com/news/europol-albanian-scam-call-centers/

Datalink Networks has announced a strategic partnership with Arctic Wolf to enhance its security offerings for customers in the United States and Canada. This collaboration will allow Datalink to integrate Arctic Wolf's AI-led security operations into its service portfolio, providing customers with advanced security capabilities without the need to establish their own security operations center (SOC). The partnership aims to address the increasing demand from customers for robust security solutions that can be managed externally, alleviating the burden on internal resources.

The partnership is particularly timely as managed service providers (MSPs) face mounting pressure to deliver stronger security outcomes. Many organizations lack the internal staff, tools, or time to effectively manage security operations on their own. By partnering with Arctic Wolf, Datalink can offer a comprehensive security operations portfolio powered by the Aurora Superintelligence Platform, which is delivered through Arctic Wolf's Aurora Agentic SOC. This platform combines telemetry from customer environments with AI-driven analysis and human expertise to ensure accurate and actionable security insights.

Arctic Wolf's platform is designed to enrich and analyze data from various sources, providing enhanced visibility and faster response times. The integration of AI technology helps in identifying threats more efficiently, while human experts validate outcomes and guide decision-making processes. This approach allows Datalink to extend its managed services with structured security operations support, offering clients improved monitoring, compliance support, and overall security posture.

For Datalink, this partnership represents an opportunity to strengthen its service offerings by incorporating Arctic Wolf's advanced security capabilities. It also highlights a broader trend among MSPs to collaborate with specialized security operations partners to fill gaps in their service portfolios. By doing so, MSPs can maintain their client relationships while providing enhanced security services without the need to invest heavily in building these capabilities internally.

Organizations looking to improve their security operations should consider leveraging partnerships like the one between Datalink and Arctic Wolf. This collaboration provides a pathway to mature security operations, reducing operational complexity and improving response times. Customers can benefit from the combined expertise and technology of both companies, ensuring a more robust and efficient security posture without the associated costs and complexities of developing these capabilities in-house.

Subscribe now

Source: https://www.channele2e.com/brief/datalink-taps-arctic-wolf-for-ai-led-security-operations

Group-IB has announced the creation of the Cybercrime Fighters Club, a new initiative designed to foster collaboration and knowledge sharing in the cybersecurity field. This community aims to bring together individuals with a shared interest in combating cybercrime, providing a platform for discussion and joint research on emerging threats. The club is hosted on Discord, a popular communication platform, allowing for real-time interaction among members.

The Cybercrime Fighters Club is open to a wide range of participants, from seasoned cybersecurity professionals to newcomers and enthusiasts. This inclusivity ensures that anyone with an interest in cybersecurity can join the conversation, learn from others, and contribute their own insights. The community is positioned as a welcoming space where members can connect, share experiences, and grow their understanding of cyber threats.

Technical discussions within the club will focus on the latest trends and developments in cybercrime, enabling members to stay informed about new tactics and technologies used by cybercriminals. By facilitating these exchanges, Group-IB hopes to enhance the collective knowledge of its members and improve their ability to respond to cyber threats effectively. The club also encourages collaborative research efforts, allowing members to work together on projects that address specific cybersecurity challenges.

The impact of the Cybercrime Fighters Club is expected to be significant, as it provides a unique opportunity for individuals to engage with peers and experts in the field. By fostering a sense of community and shared purpose, the club aims to strengthen the overall cybersecurity ecosystem. Participants can benefit from the diverse perspectives and expertise of fellow members, leading to more effective strategies for combating cybercrime.

To join the Cybercrime Fighters Club, interested individuals can access the community through Discord. Group-IB encourages anyone passionate about cybersecurity to participate, regardless of their level of experience. By joining the club, members can take advantage of the resources and support available, enhancing their skills and contributing to the fight against cybercrime.

Subscribe now

Source: https://www.group-ib.com/blog/cybercrime-fighters-club/

Japan's financial sector is taking proactive steps to address potential cybersecurity threats posed by Anthropic's new AI model, Mythos. On April 24, key figures from Japan's financial industry, including the finance minister and leaders from major banks, convened to form a task force dedicated to understanding and mitigating the risks associated with this advanced AI technology. The concern stems from Mythos's ability to identify previously unknown vulnerabilities in various software systems, raising alarms about the security of financial data and operations.

During testing, Mythos demonstrated its capability to uncover both new and longstanding vulnerabilities in browsers and operating systems. Notably, it identified a 27-year-old vulnerability and successfully chained multiple vulnerabilities into a single exploit. This has led to heightened concerns within Japan's financial sector, with officials expressing fears that a successful cyberattack could force banks to revert to cash transactions, disrupting the economy.

Despite these concerns, some cybersecurity experts question the extent of the threat posed by Mythos. They argue that while the model's capabilities are impressive, the financial sector should not overestimate its impact. Similar vulnerabilities are often discovered by other AI models, and the majority of successful cyberattacks do not rely on exploiting such vulnerabilities.

The global financial system relies heavily on public trust, making cybersecurity a top priority for financial institutions. Japan's financial sector, known for its robust cybersecurity measures, is now focusing on enhancing its defenses against potential threats from Mythos. This includes ensuring that existing systems are secure and that vulnerabilities are promptly addressed.

Organizations are advised to continue strengthening their cybersecurity frameworks and not to become overly fixated on Mythos. Instead, they should focus on comprehensive security strategies that address a wide range of potential threats. By doing so, they can better protect themselves against both current and emerging cybersecurity challenges.

Subscribe now

Source: https://www.darkreading.com/cyber-risk/claude-mythos-startle-japans-financial-sector

Federal authorities have taken legal action against Peter Stokes, a 19-year-old alleged member of the cybercriminal group known as Scattered Spider. Stokes, who operates under the alias 'Bouquet', was apprehended earlier this month in Helsinki. His arrest occurred as he was attempting to board a flight to Japan, highlighting the international scope of law enforcement efforts against cybercrime.

Stokes holds dual citizenship in the United States and Estonia, which may complicate jurisdictional issues in the case. His arrest is part of a broader crackdown on Scattered Spider, a group implicated in numerous cyber intrusions. The group has been under scrutiny for its sophisticated methods and high-profile targets, making this arrest a significant development in ongoing cybercrime investigations.

At the time of his arrest, Stokes was found in possession of multiple electronic devices. These devices are likely to be examined for evidence that could further illuminate the operations of Scattered Spider. The arrest underscores the importance of international cooperation in tackling cybercrime, as Stokes was detained in Finland while en route to Japan.

The impact of this arrest on Scattered Spider's activities remains to be seen, but it represents a potential disruption to the group's operations. Organizations and individuals should remain vigilant, as cybercriminal groups often have distributed networks that can continue operations despite the arrest of key members.

To protect against potential threats, cybersecurity professionals are advised to ensure that all systems are up-to-date with the latest security patches. Additionally, monitoring for unusual activity and implementing robust security protocols can help mitigate the risk of cyber intrusions. Staying informed about the latest developments in cybercrime is essential for maintaining a strong security posture.

Subscribe now

Source: https://www.chicagotribune.com/2026/04/27/teen-charged-in-chicago-was-part-of-international-scattered-spider-hacker-group-feds-say/

OpenAI has unveiled a new cyber defense roadmap titled 'Cybersecurity in the Intelligence Age', aimed at equipping security professionals with AI-powered tools to stay ahead of cyber threats. This initiative is part of OpenAI's effort to ensure that defensive capabilities are enhanced faster than malicious actors can adapt their tactics. The roadmap was spearheaded by Sasha Baker and released in April 2026, reflecting a strategic approach to bolster national resilience against cyber threats.

The roadmap outlines five core pillars designed to democratize access to advanced defensive capabilities. These pillars focus on integrating artificial intelligence into security frameworks to provide a robust defense mechanism against evolving cyber threats. By prioritizing the development and deployment of AI tools, OpenAI aims to empower defenders with the necessary resources to protect critical infrastructure and sensitive data.

Technical details of the roadmap emphasize the importance of AI in identifying and mitigating threats before they can cause significant harm. The use of machine learning algorithms and predictive analytics is highlighted as a key component in detecting anomalies and preventing breaches. This proactive approach is intended to shift the balance of power towards defenders, enabling them to respond swiftly and effectively to potential attacks.

The impact of this roadmap is expected to be significant, as it provides a framework for organizations to enhance their cybersecurity posture. By adopting AI-driven security measures, companies can improve their ability to detect and respond to threats, thereby reducing the risk of data breaches and other cyber incidents. This initiative also aims to foster collaboration among industry stakeholders to share knowledge and best practices.

Organizations are encouraged to review the 'Cybersecurity in the Intelligence Age' roadmap to understand how AI can be integrated into their existing security strategies. By doing so, they can build resilience against cyber threats and ensure that they are prepared to face the challenges of the digital age. Security professionals should consider investing in AI technologies and training to fully leverage the benefits outlined in the roadmap.

Subscribe now

Source: https://gbhackers.com/openai-unveils-cyber-defense-roadmap/

The Pentagon has introduced a cyber apprenticeship program designed to address the growing need for skilled professionals in technology and cybersecurity. This initiative aligns with the administration's broader strategy to fill vacancies in these critical sectors by prioritizing skill-based hiring over traditional educational credentials.

The program is a response to the increasing demand for cybersecurity experts as threats continue to evolve and become more sophisticated. By focusing on skill-based hiring, the Pentagon aims to tap into a wider pool of candidates who may not have formal degrees but possess the necessary technical skills and aptitude for cybersecurity roles.

Technical details of the program have not been fully disclosed, but it is expected to include hands-on training and mentorship from experienced professionals in the field. Participants will likely gain practical experience in various aspects of cybersecurity, preparing them for roles that require a deep understanding of both defensive and offensive cyber operations.

The impact of this program could be significant, as it may help bridge the gap between the current demand for cybersecurity professionals and the available workforce. By equipping individuals with the skills needed to protect critical infrastructure and sensitive information, the Pentagon is taking proactive steps to enhance national security.

Individuals interested in pursuing a career in cybersecurity are encouraged to apply for the apprenticeship program. This opportunity offers a pathway to gain valuable experience and develop the skills necessary to succeed in a rapidly changing field. Those accepted into the program will likely benefit from a structured learning environment and the chance to work alongside seasoned cybersecurity experts.

Subscribe now

Source: https://www.nextgov.com/cybersecurity/2026/04/pentagon-launches-cyber-apprenticeship-program/413187/

The Canadian government has announced a proposal to ban Bitcoin and other cryptocurrency ATMs, citing their misuse by scammers and money launderers. This initiative is part of the government's efforts to enhance regulatory oversight of the high-risk segments within the cryptocurrency sector. The proposal was detailed in the Spring Economic Update 2026, released on April 28, which highlights the government's concerns about the role of crypto ATMs in facilitating financial crimes.

According to the update, crypto ATMs have become a primary method for scammers to defraud victims and for criminals to launder money. These machines, which have become common in locations such as malls, gas stations, and corner stores, are seen as a convenient tool for illicit activities rather than for legitimate use by everyday consumers. The government argues that the risks associated with these ATMs outweigh their benefits, prompting the proposal to eliminate them.

The proposed ban would not completely restrict Canadians from accessing cryptocurrencies. Instead, it suggests that individuals can continue to purchase virtual currencies through brick-and-mortar money services businesses. This approach aims to provide a safer and more regulated environment for cryptocurrency transactions, reducing the potential for fraud and money laundering.

The impact of this proposal, if implemented, would be significant for the cryptocurrency industry in Canada. It would require businesses that currently operate crypto ATMs to adapt to new regulations and potentially shift their focus to other methods of providing cryptocurrency services. Additionally, consumers who rely on these ATMs for convenience may need to adjust to alternative means of purchasing digital currencies.

To comply with the proposed regulations, businesses and consumers should prepare for the transition by familiarizing themselves with the available options for purchasing cryptocurrencies through regulated channels. Staying informed about the progress of this proposal and any subsequent legislative changes will be essential for those involved in the cryptocurrency market in Canada.

Subscribe now

Source: https://budget.canada.ca/update-miseajour/2026/report-rapport/chap2-en.html#a27

Meta Platforms, the parent company of Facebook and Instagram, is under scrutiny by the European Commission for allegedly breaching the Digital Services Act (DSA). The Commission's preliminary decision indicates that Meta has not implemented adequate measures to prevent children under 13 from accessing its social media platforms. This violation could result in fines reaching up to $12 billion if not addressed promptly.

The European Commission's investigation into Meta's compliance with the DSA has been ongoing for nearly two years. The primary concern is that Meta's current systems allow minors to bypass age restrictions by simply entering a false birth date during the sign-up process. This loophole undermines the DSA's objective to protect children from inappropriate content and ensure a safer online environment.

Technically, the issue lies in Meta's age verification and user identification mechanisms. The platforms currently rely on self-reported age information, which is easily manipulated by users. The lack of a robust verification system means that underage users can create accounts without any substantial barriers, posing a significant compliance risk under the DSA.

The potential impact of these violations is substantial, with fines that could reach up to $12 billion. Beyond financial penalties, Meta's reputation and its ability to operate within the European market could be severely affected. The company must take decisive action to align its practices with the DSA requirements to avoid these consequences.

To address the Commission's concerns, Meta needs to develop and implement more effective age verification processes. This could involve integrating third-party verification services or employing advanced technologies such as AI to better identify and manage underage accounts. By enhancing these systems, Meta can work towards compliance with the DSA and mitigate the risk of significant penalties.

Subscribe now

Source: https://ec.europa.eu/commission/presscorner/detail/en/ip_26_920

A Malwarebytes has taken a significant step in enhancing online security by integrating its threat intelligence with popular AI tools, ChatGPT and Claude. This move aims to address the growing challenge of online scams, which are becoming increasingly difficult to detect. By embedding its security capabilities into these AI platforms, Malwarebytes hopes to provide users with reliable and quick answers to their safety concerns.

The integration with Claude allows users to easily check the safety of links, phone numbers, and email addresses. Users can activate Malwarebytes in Claude through a simple process that does not require a Malwarebytes account. Once connected, users can ask Claude to verify the legitimacy of suspicious content, receiving immediate and informed responses.

Technical details of this integration include the ability to paste URLs, share phone numbers, and email addresses for verification. Claude can also perform WHOIS lookups to provide additional information about domain registrations. The system categorizes results into four verdicts: malicious, suspicious, safe, and unknown, guiding users on how to proceed based on the threat level.

The impact of this integration is significant, as it empowers users to protect themselves from scams without interrupting their daily activities. With scams becoming more sophisticated, even experienced internet users can be caught off guard. By using Malwarebytes within Claude, users can enhance their online safety with minimal effort.

To start using Malwarebytes in Claude, users can follow a straightforward setup process available in the Help Center. This integration is a valuable tool for anyone looking to safeguard their online interactions, providing peace of mind in an increasingly digital world.

Subscribe now

Source: https://www.malwarebytes.com/blog/product/2026/04/scam-checking-just-got-a-lot-easier-malwarebytes-is-now-in-claude

A new report by Harvey Nash highlights a growing sense of dissatisfaction among cybersecurity professionals, with over three-quarters not receiving a pay raise last year. This lack of financial recognition has led to feelings of being undervalued, with many considering a job change in the near future. The report, published on April 27, underscores the challenges faced by cybersecurity professionals in an industry where their skills are in high demand but often not adequately rewarded.

The Harvey Nash Global Tech Talent & Salary Report surveyed over 3,646 technology professionals worldwide, revealing that only 45% of cybersecurity employees expect a pay increase in the next year. This is significantly lower than the three-quarters of AI and machine learning professionals who anticipate a raise. Cybersecurity professionals are among the most dissatisfied in the tech sector, with 23% describing themselves as unhappy, trailing only behind quality assurance and infrastructure staff.

Despite several high-profile cybersecurity incidents in 2025, such as the ransomware attack on Jaguar Land Rover and a massive data breach at Change Healthcare, only 22% of organizations have increased their cybersecurity resources. This lack of response has contributed to the perception that cybersecurity roles are undervalued, despite their critical importance in managing business risk.

Ankur Anand, CIO of Harvey Nash, emphasized the need for organizations to better recognize and reward cybersecurity talent. He noted that the current trend of rising workloads and stagnant pay is unsustainable and could lead to increased attrition as professionals seek better opportunities elsewhere.

To mitigate the risk of losing key cybersecurity staff, companies should prioritize making their employees feel valued and supported. This involves treating cybersecurity as a strategic capability, ensuring that these professionals are visible and backed by leadership. By doing so, organizations can enhance their ability to respond to incidents and maintain a strong security posture.

Subscribe now

Source: https://www.harveynash.co.uk/latest-news/tech-talent-and-salary-report-2026

In 2025, U.S. companies faced unprecedented fines totaling $3.45 billion for privacy violations, a figure that eclipses the combined total of the previous five years. This increase is largely due to more robust privacy laws in states such as California, enhanced interstate partnerships for enforcing these laws, and a heightened focus on the implications of AI and automation on privacy. The shift marks a move from raising awareness to rigorous enforcement by state regulators.

The California Consumer Privacy Act (CCPA), which had been relatively dormant in terms of enforcement since its provisions went live in 2023, saw a significant uptick in regulatory actions in 2025. The California Privacy Protection Agency has been actively pursuing violators across various industries, including tech, automotive, and consumer goods. This change reflects a broader trend where regulators are no longer offering leniency and are instead holding companies accountable for privacy law compliance.

A key factor in the increased enforcement is the formation of the Consortium of Privacy Regulators, a coalition of ten states dedicated to coordinating investigations and enforcement of privacy laws across state lines. This collaboration aims to address issues such as unauthorized access, deletion, and sale of personal information. Additionally, states are updating existing privacy laws to tackle challenges posed by AI technologies, particularly concerning how personal data is used in AI training and decision-making processes.

The impact of these developments is significant, as companies that have neglected their privacy programs may find themselves facing substantial fines. The renewed focus on enforcement serves as a wake-up call for businesses to prioritize data privacy and ensure compliance with state regulations. The trend is expected to continue, with privacy fines likely to increase further in the coming years.

To mitigate risks, companies should invest in strengthening their privacy programs and stay informed about evolving state laws. This includes understanding the implications of AI on data privacy and ensuring that their practices align with legal requirements. As states lead the charge in building the legal framework for data privacy in the AI era, businesses must adapt to avoid the financial and reputational consequences of non-compliance.

Subscribe now

Source: https://cyberscoop.com/privacy-companies-hit-with-record-fines-2025-gartner/

The Digital Operational Resilience Act (DORA) is a regulatory framework introduced by the European Union to enhance the resilience of financial services firms against IT disruptions. Effective from January 2025, DORA sets clear expectations for firms to manage IT risks systematically, conduct resilience testing under realistic conditions, and maintain strict oversight of third-party dependencies. The act aims to ensure that organizations can retain control and restore services promptly during incidents, thereby minimizing operational and regulatory risks.

Despite being in effect for over a year, the maturity of compliance with DORA varies significantly across the financial sector. While some institutions have invested in continuity and cyber response measures, others are still in the early stages of building the necessary frameworks. A survey conducted in 2025 revealed that 96% of financial services organizations in the EMEA region believe they need to improve their resilience to meet DORA's standards. The challenge lies not only in having governance documents but in executing consistent actions across complex systems and suppliers under pressure.

Technical challenges often arise during major incidents when access to critical systems is compromised. Network faults or cyber incidents can sever connectivity, making it difficult for engineers to isolate affected components and stabilize services. This highlights a gap in many resilience programs, where backup and disaster recovery plans do not ensure that teams can administer infrastructure during an incident. Independent management access, such as out-of-band management, provides a dedicated route to critical infrastructure, allowing teams to restore services even when the primary network is impaired.

Supply chain disruptions add another layer of complexity, as financial services firms rely on shared platforms and external providers. When disruptions originate from the supply chain, firms must still contain the impact and maintain essential services, often in coordination with third parties. DORA emphasizes the importance of third-party oversight and operational outcomes, pushing firms to understand which providers support critical functions and how to respond when external dependencies are under stress.

To meet DORA's requirements, firms should focus on maintaining operational control during severe disruptions. Implementing independent management access to critical infrastructure can help achieve this by providing a practical means of staying in control when the main route into the environment is compromised. This approach reduces both operational risk during incidents and regulatory risk in the aftermath, ensuring that firms can limit impact and restore services safely.

Subscribe now

Source: https://www.itsecurityguru.org/2026/04/28/dora-and-the-practical-test-of-operational-resilience/?utm_source=rss&utm_medium=rss&utm_campaign=dora-and-the-practical-test-of-operational-resilience

Proofpoint, Inc. has released its 2026 AI and Human Risk Landscape report, shedding light on the challenges organizations face as they rapidly adopt AI technologies. The report, based on a survey of over 1,400 security professionals from 12 countries, highlights a significant gap between AI deployment and security preparedness. With AI systems now operational across various functions, organizations are finding it difficult to ensure their security controls are effective against potential AI compromises.

The study reveals that 87% of organizations have moved beyond pilot stages with AI assistants, and 76% are rolling out autonomous agents. Despite these advancements, 52% of organizations are not fully confident in their AI security controls' ability to detect compromised systems. Furthermore, half of the organizations with existing controls have already experienced AI-related incidents, indicating a pressing need for improved security measures.

AI's integration into enterprise workflows has expanded the attack surface, with threats spreading rapidly across email, cloud applications, and collaboration platforms. The report notes that while email remains a primary threat vector, AI-related incidents are increasingly affecting other channels, including social and messaging platforms. This widespread exposure underscores the necessity for comprehensive security strategies that encompass all potential points of vulnerability.

Investigation readiness remains a significant challenge, as only one-third of organizations feel fully prepared to handle AI-related incidents. The complexity of managing multiple security tools further complicates incident response, with 94% of organizations finding tool management challenging. This fragmentation limits visibility and slows response times, emphasizing the need for a unified security platform.

To address these issues, organizations are encouraged to pursue vendor and tool consolidation, expand AI protections, and enhance collaboration channel coverage. By adopting a unified platform approach, organizations can improve their security posture and better manage the risks associated with AI deployment. As AI continues to transform enterprise operations, establishing robust security foundations will be crucial for scaling AI confidently and securely.

Subscribe now

Source: https://www.proofpoint.com/us/newsroom/press-releases/proofpoint-research-reveals-half-global-organizations-experienced-ai

Aspiritech, an Evanston-based nonprofit, has launched a new Cybersecurity Apprenticeship Program designed to connect adults on the autism spectrum with careers in the tech industry. This initiative is part of Aspiritech's broader mission to provide meaningful employment opportunities for autistic individuals, a mission that began nearly two decades ago. The program is officially recognized by the U.S. Department of Labor, ensuring that participants receive training that meets national standards and prepares them for in-demand cybersecurity roles.

The launch of the Cybersecurity Apprenticeship Program is a significant step for Aspiritech, which has been known for its work in software testing and quality assurance. As the demand for cybersecurity professionals continues to grow, Aspiritech has expanded its offerings to include this new program, which provides technical instruction and prepares participants for the CompTIA Security+ exam. The program includes 12 weeks of classroom instruction followed by 2,000 hours of paid on-the-job training, either at Aspiritech or with partner employers.

The program aims to address the high unemployment and underemployment rates among autistic individuals, which the National Institutes of Health estimates to be nearly 40%. By providing specialized training and support, Aspiritech hopes to bridge the gap between the autistic community and the tech industry, where thousands of cybersecurity roles remain unfilled due to a lack of qualified candidates. The apprenticeship program is supported by a grant from the Illinois Department of Commerce and Economic Opportunity, further highlighting its importance and potential impact.

Participants in the program, such as Jamie Specht, have expressed the personal and professional benefits of being part of an inclusive and supportive environment. For many, the program offers not only the opportunity to gain valuable skills but also a sense of belonging and acceptance. Aspiritech's sensory-friendly office spaces are designed to accommodate the needs of autistic employees, ensuring that they can work comfortably and effectively.

Looking ahead, Aspiritech plans to expand its training and employment programs, with a goal of training at least 250 people this year. The organization is also exploring additional career pathways in fields such as automation, artificial intelligence, and advanced manufacturing. By continuing to grow and adapt its programs, Aspiritech aims to further reduce autistic unemployment and underemployment, demonstrating the potential of individuals when given the opportunity to succeed.

Subscribe now

Source: https://evanstonroundtable.com/2026/04/26/aspiritech-to-host-celebration-of-neuro-inclusive-cybersecurity-program/

Belgium has taken significant steps to enhance its cybersecurity posture by revising its national cyber crisis response plan. Originally established in 2017, the plan has been updated in 2026 to better address the evolving threat landscape and incorporate recent developments in European cybersecurity regulations. This revision underscores Belgium's commitment to a collaborative approach in managing digital incidents and crises across both public and private sectors.

The updated plan has been formally adopted through a Royal Decree and is grounded in two key pieces of legislation: the Law of 26 April 2024, which integrates the European NIS2 Directive into Belgian law, and the Law of 25 May 2007 on civil security. These legal foundations ensure that the plan is not just a theoretical document but a practical tool for real-world crisis management. The plan's comprehensive framework is designed to facilitate coordinated responses to cybersecurity incidents at the national level.

The plan outlines a structured response framework that includes the roles and responsibilities of various stakeholders, crisis management procedures, and channels for information exchange. It emphasizes the importance of national preparedness measures such as exercises and training, and ensures that Belgium can effectively participate in coordinated crisis management efforts at the European level. The framework is designed to protect critical sectors and enable seamless collaboration among competent bodies during a crisis.

A notable aspect of the 2026 revision is its alignment with the European Union's initiatives to bolster digital resilience. By incorporating mechanisms that facilitate Belgium's participation in EU-level cyber crisis management, the plan ensures compliance with the NIS2 Directive and enhances the country's ability to respond to cross-border cyber threats. This European dimension is crucial for maintaining robust cybersecurity defenses in an interconnected digital environment.

Organizations in Belgium are encouraged to familiarize themselves with the revised national cyber crisis response plan. Understanding the framework and the roles of different stakeholders will be essential for effective collaboration and preparedness in the event of a cyber crisis. While the detailed operational content of the plan remains confidential, the publicly disclosed framework provides sufficient guidance for stakeholders to align their cybersecurity strategies with national and European standards.

Subscribe now

Source: https://ccb.belgium.be/news/belgium-adopts-new-national-cyber-crisis-response-plan

Sean Plankey, nominated by the current administration to lead the Cybersecurity and Infrastructure Security Agency (CISA), has withdrawn from consideration. This development marks a setback for the Trump administration's efforts to advance its cybersecurity agenda. Plankey's decision comes after a prolonged nomination process that failed to secure Senate confirmation.

Plankey informed the Trump administration of his withdrawal, citing the Senate's reluctance to confirm him as the primary reason. Despite being initially nominated in March 2025 and renominated in January, his candidacy faced significant delays. The Senate holds on his nomination were due to unrelated political issues, including objections from Senators Ron Wyden and Rick Scott over separate matters concerning CISA and the Coast Guard.

The stalled nomination process has left CISA without a permanent leader during a challenging period. The agency has been grappling with personnel cuts and mission downsizing, which have affected its reputation and operational capabilities. Plankey's withdrawal adds to the uncertainty surrounding the agency's leadership and future direction.

Plankey's professional background includes senior roles in technology and cybersecurity across various organizations. He previously worked on maritime cybersecurity policy at the National Security Council and served in the Department of Energy's cybersecurity division. Despite his qualifications, the political impasse in the Senate proved insurmountable.

In the absence of a confirmed director, Nick Andersen, CISA's deputy director, continues to serve as acting director. The Trump administration is expected to announce a new nominee soon, as the agency seeks to stabilize its leadership and address ongoing challenges in the cybersecurity sector.

Subscribe now

Source: https://www.politico.com/news/2026/04/22/sean-plankey-withdraws-nomination-cisa-00887136

Google's parent company, Alphabet, has announced plans to invest up to $40 billion in Anthropic, a developer of AI systems. This significant investment will begin with an initial $10 billion cash commitment, with the remaining $30 billion contingent on Anthropic meeting specific performance criteria. This move underscores the growing interest and competition in the AI sector as major tech companies seek to bolster their AI capabilities.

Anthropic, known for its Claude AI system, has been a focal point of investment activity in recent months. The company recently completed a Series G financing round in February, raising $30 billion and achieving a post-money valuation of $380 billion. This round of funding is intended to expand Anthropic's infrastructure across major cloud services, including Amazon Web Services, Microsoft Azure, and Google Cloud.

The AI sector is witnessing a surge in investments as companies like Amazon and Google compete for technological advancements. Amazon has also committed to investing up to $25 billion in Anthropic, with an initial $5 billion cash injection. These investments are contingent on Anthropic meeting certain commercial targets, reflecting a strategic approach to funding in the AI industry.

Anthropic's Claude Code system has gained widespread adoption within the developer community, contributing to a significant increase in the company's annual run-rate revenue. The company has also secured multi-year supply agreements with chip producer Broadcom and cloud infrastructure provider CoreWeave to support its growing demand for AI offerings.

For businesses and stakeholders in the AI and tech sectors, these developments signal a competitive push towards enhancing AI capabilities. Companies should stay informed about these investments and consider their potential impact on the market dynamics and technological advancements in AI and cloud services.

Subscribe now

Source: hhttps://www.techmonitor.ai/news/google-eyes-40bn-anthropic-investment-starting-with-10bn-cash