This is the fifth update to the TeamPCP supply chain campaign threat intelligence report, "When the Security Scanner Became the Weapon" (v3.0, March 25, 2026). Update 004 covered developments through…
https://isc.sans.edu/diary/rss/32856Generative AI is upgrading cyberattacks, from 450% higher phishing click‑through rates to industrialized MFA bypass. The post Threat actor abuse of AI accelerates from tool to cyberattack surface app…
https://www.microsoft.com/en-us/security/blog/2026/04/02/threat-actor-abuse-of-ai-accelerates-from-tool-to-cyberattack-surface/Google is releasing Gemma 4, its most capable open model family yet. The four new models run on everything from smartphones to workstations and ship under a fully open Apache 2.0 license for the firs…
https://the-decoder.com/googles-gemma-4-is-now-available-with-apache-2-0-licensing-for-the-first-time/Cookie-gated PHP webshells use obfuscation, php-fpm execution, and cron-based persistence to evade detection in Linux hosting environments. This post examines how this tradecraft conceals execution b…
https://www.microsoft.com/en-us/security/blog/2026/04/02/cookie-controlled-php-webshells-tradecraft-linux-hosting-environments/Wired writes (alternate source): Security researchers at Google on Tuesday released a report describing what they’re calling “Coruna,” a highly sophisticated iPhone hacking toolkit that includes five…
https://www.schneier.com/blog/archives/2026/04/possible-us-government-iphone-hacking-tool-leaked.htmlMAI-Transcribe-1 converts speech to text quickly and accurately in 25 languages, even with background noise. Microsoft is already using the model in its own products. The article Microsoft's MAI-Tran…
https://the-decoder.com/microsofts-mai-transcribe-1-runs-2-5x-faster-than-its-predecessor-at-0-36-per-audio-hour/A new framework from Nvidia, UC Berkeley, and Stanford systematically tests how well AI models can control robots through code. The findings: without human-designed abstractions, even top models fail…
https://the-decoder.com/ai-models-fail-at-robot-control-without-human-designed-building-blocks-but-agentic-scaffolding-closes-the-gap/This is for new routers; you don’t have to throw away your existing ones: The Executive Branch determination noted that foreign-produced routers (1) introduce “a supply chain vulnerability that could…
https://www.schneier.com/blog/archives/2026/04/us-bans-all-foreign-made-consumer-routers.htmlIf you use the AI-powered note-taking app Granola, you might want to double-check your privacy settings. Though Granola says your notes are "private by default," it makes them viewable to anyone with…
https://www.theverge.com/ai-artificial-intelligence/906253/granola-note-links-ai-training-psaMicrosoft’s retirement of the Microsoft Deployment Toolkit (MDT) has left many IT administrators racing to replace a tool that still underpins critical OS deployment workflows. While cloud‑based mana…
https://petri.com/mdt-retirement-os-deployment-gap/As organizations move from on-premises Active Directory to cloud management, many admins need to Import Group Policy Objects to Microsoft Intune, and GPOs often become the last big roadblock. Traditi…
https://petri.com/how-to-import-group-policy-objects-to-microsoft-intune/Sakana AI has unveiled "Sakana Marlin," an AI assistant for business customers that researches autonomously for up to eight hours and delivers finished analyses. The tool is designed to compress week…
https://the-decoder.com/sakana-ai-launches-ultra-deep-research-to-automate-weeks-of-strategy-work/Today, most malware are called “fileless†because they try to reduce their footprint on the infected computer filesystem to the bare minimum. But they need to write something… think about persi…
https://isc.sans.edu/diary/rss/32854From its GitHub repo: "Vite (French word for "quick", pronounced /vi?t/, like "veet") is a new breed of frontend build tooling that significantly improves the frontend development experience" [https:…
https://isc.sans.edu/diary/rss/32860Chinese chipmakers captured nearly 41 percent of China's AI accelerator server market in 2025, according to an IDC report seen by Reuters. The article Chinese chipmakers now control 41 percent of Chi…
https://the-decoder.com/chinese-chipmakers-now-control-41-percent-of-chinas-ai-accelerator-market/