Apr 22, 2026

Email 1 Summary:

Subject: Ransomware negotiator cops to conspiring with cybercrims against US companies

– Florida man Angelo Martino, a ransomware negotiator, admitted conspiring with cybercriminals to carry out ransomware attacks on US companies by sharing confidential negotiation strategies, enhancing attackers’ ransom demands.

– Authorities seized $10 million in assets from him. He faces up to 20 years in prison.

– New South Wales Treasury official charged for data breach involving thousands of sensitive government documents.

– Scottish hacker Tyler Robert Buchanan pleaded guilty to a $8 million hacking scheme stealing virtual currency via phishing.

– French government identity website hack possibly exposed users’ personal data.

– Bundesbank president emphasized need for broad access to Anthropic’s Mythos AI to avoid competitive distortions.

– Vibe-coding platform Lovable disclosed major data access vulnerability exposing user info.

– Several other incidents include stolen Shopify customer data from Seiko USA, Ukrainian hackers exposing Russian military supply dependencies, and NGate malware stealing NFC payment data.

– The email includes various cybersecurity news highlights and warnings about AI misuse and cyber threats.

Email 2 Summary:

Subject: Your VPN is Helping Attackers Move as Fast as AIs

– Zscaler ThreatLabz released the 2026 VPN Risk Report highlighting dangers of legacy VPNs.

– Attackers leverage AI to exploit vulnerabilities rapidly.

– 79% surveyed say AI enables attackers to move faster than patches can be applied.

– 70% report limited or no visibility into AI threats moving over their VPNs.

– 61% believe adversaries move faster than their patching processes.

– Report emphasizes that insufficient visibility through VPNs undermines defenders’ ability to respond quickly.

– Related resources on AI security and zero trust models are offered.

– This briefing aims to inform security teams about risks of VPNs lacking modern threat detection capabilities.

Email 3 Summary:

Subject: NSA is reportedly using Mythos despite Anthropic’s designation as a supply-chain risk

– US National Security Agency continues using Anthropic’s Mythos AI model despite Pentagon labeling Anthropic a supply chain risk.

– Mythos is effective at discovering software vulnerabilities, valuable for offense and defense.

– Anthropic provides Mythos access to about 40 organizations under Project Glasswing for critical infrastructure security.

– Pentagon’s designation relates to Anthropic’s limits on surveillance and weapons use during contract talks.

– NSA use reflects tension between practical AI benefits and government security concerns.

– Other news includes US Coast Guard updating maritime cybersecurity standards and discovery of new NGate malware variant performing NFC relay attacks to steal payment card data via trojanized Android app.

– Users are warned to only install apps from trusted sources.

– Additional relevant cybersecurity news and resources are included.

Email 4 Summary:

Subject: Warning Issued for Exploited Cisco, Kentico, Zimbra Vulnerabilities

– SecurityWeek reports warnings about actively exploited vulnerabilities in Cisco, Kentico, and Zimbra products.

– Additional news includes Dozens of malicious crypto apps found in Apple App Store, unsecured Perforce servers leaking sensitive data from major organizations, and $290 million crypto heist blamed on North Korea.

– Healthcare organizations in Illinois and Texas suffer data breaches affecting 600,000 people.

– US government expert admitted to aiding ransomware gangs.

– Progress Software patches multiple vulnerabilities in MOVEit Web Application Firewall and LoadMaster.

– Other highlights: Next.js creator Vercel hacked, serial-to-IP converter flaws exposing OT and healthcare systems.

– Expert insights stress the importance of private sector collaboration and visibility for national cyber resilience.

– Upcoming virtual cybersecurity events and detailed news coverage provided.

Stay Well!