Cybersecurity

Breaches, vulnerabilities, security business.

Cybersecurity covers the breaches, vulnerabilities, threat actors, and security-business news that actually change how operators should think about risk. Major incidents with disclosed impact. CVEs that are being actively exploited. Ransomware groups, nation-state campaigns, and the supply-chain compromises that ripple through hundreds of downstream vendors.

We also cover the security industry itself: funding rounds, M&A, public-market moves at the platform vendors, and the slow consolidation of point products into suites. When a new CISA advisory or vendor disclosure matters for your patch queue, we'll tell you. When it's noise, we won't waste your inbox.

Nadia Rao leads on incidents and policy intersections. Jordan Beck covers the security-startup funding flow.

Jun 9, 2026

The SEC's New Cybersecurity Rule for Smaller Investment Firms Just Took Effect

Smaller investment advisers and broker-dealers hit their SEC Regulation S-P compliance deadline on June 3. The rule changes what a firm has to do when customer data leaks.

Nadia Rao

May 29, 2026

CISA Set Today as the Deadline to Patch an Exchange Bug Under Active Attack

CVE-2026-42897, a spoofing flaw in on-prem Exchange Server, is under active exploitation. CISA's federal patch deadline is May 29.

Nadia Rao

May 19, 2026

The AI Labs Are Building Cyber Capabilities Faster Than Defenders Are Building Detection

OpenAI and Anthropic disclosed vulnerability-finding capabilities (Mythos, GPT-5.5) that compress the disclosure-to-exploitation window. Defensive infrastructure has not kept pace.

Nadia Rao

May 17, 2026

NGINX Rift: An 18-Year-Old Heap Buffer Overflow in the World's Most Deployed Web Server

CVE-2026-42945, a CVSS 9.2 vulnerability in NGINX rewrite module, has been in the code since 0.6.27. Patches rolling out. Affects nearly every web server on the public internet.

Nadia Rao

May 15, 2026

Cisco SD-WAN Hit With CVSS 10.0 Auth Bypass. Exploitation Began Within Four Hours of Disclosure.

Cisco patched a CVSS 10.0 authentication bypass in SD-WAN Controller and Manager. The first attack attempts appeared less than four hours after public disclosure.

Nadia Rao

May 11, 2026

Two Active Exploitation Stories This Week, Both With CISA Deadlines

Ivanti EPMM and Palo Alto PAN-OS both have active-exploit advisories with imminent due dates. What is confirmed vs. what is speculation.

Nadia Rao

May 10, 2026

Anthropic Is Gating the Cyber-Capable Model It Disclosed Last Week

Anthropic launched Project Glasswing, restricting access to Mythos Preview. The "thousands of zero-days" claim deserves careful reading.

Nadia Rao

May 9, 2026

Trellix's Source-Code Disclosure Has the Quiet Tells of a Bigger Breach

Trellix says no source code was exfiltrated. Independent researchers reviewing RansomHouse's leak think the attackers reached VMware, Rubrik, and Dell EMC systems. Read the careful language.

Nadia Rao