The Wire
Curated cybersecurity and tech news — AI-summarized, source attributed.
Attackers weaponize external Teams chats to impersonate helpdesk and hijack endpoints
Microsoft is tracking a rise in intrusions that begin with cross-tenant Teams messages from actors posing as internal IT or helpdesk staff. The social engineeri
Bonsai Styling as a Formal Design Discipline
Longwood Gardens surveys the classical bonsai styles that structure how practitioners shape miniature trees. Each style — formal upright, informal upright, slan
CBP opens tariff refund portal after Supreme Court struck down IEEPA duties
US Customs and Border Protection has launched the Consolidated Administration and Processing of Entries (CAPE) portal, two months after the Supreme Court ruled
CISA Expands KEV Catalog With 8 Active Exploits, April-May 2026 Patch Deadlines
CISA has added eight new actively-exploited vulnerabilities to its Known Exploited Vulnerabilities catalog, with federal civilian agencies facing mandatory reme
FakeWallet campaign smuggles 26 crypto-draining apps into China's App Store
Kaspersky has tied 26 malicious iOS apps to a campaign it calls FakeWallet, an extension of the SparkKitty operation active since last year. The apps impersonat
Flawed Conference Abstract Spawns Headlines Blaming Produce for Lung Cancer
A non-peer-reviewed conference abstract presented at the American Association for Cancer Research meeting is driving headlines claiming fruits, vegetables, and
Gentlemen ransomware bolts SystemBC botnet onto 1,570-host attack toolchain
Check Point researchers traced a Gentlemen ransomware intrusion to a SystemBC command-and-control server running a botnet of more than 1,570 infected hosts, wit
Google Patches Prompt Injection RCE in Antigravity AI IDE
Google has shipped a patch for its Antigravity IDE addressing a prompt injection vulnerability that allowed attackers to achieve arbitrary code execution on dev
Identity Is the New Perimeter: Attackers Skip Exploits, Log In With Stolen Creds
Credential theft, session hijacking, and MFA fatigue have quietly overtaken traditional exploitation as the dominant intrusion path. Attackers don't need a CVE
Insider rot: Ransomware negotiators ran BlackCat attacks against their own clients
Angelo Martino, a former DigitalMint incident responder, pleaded guilty to running BlackCat ransomware operations against U.S. companies between April 2023 and
Lazarus-linked attackers drain $290M from KelpDAO via poisoned RPC nodes
KelpDAO, an Ethereum liquid restaking protocol, lost roughly 116,500 rsETH (about $293 million) on April 18 after attackers subverted the cross-chain verificati
MCP Design Flaw Turns AI Agent Tool Calls Into RCE Vectors
A design-level weakness in Anthropic's Model Context Protocol (MCP) lets attackers achieve remote code execution against systems that wire LLM agents to externa