Cyberwire Network Announcer

You're listening to the Cyberwire Network powered by N2K.

Dave Bittner

No, it's not your imagination. Risk and regulation are ramping up and

Maria Vermazes

customers expect proof of security just to do business. That's where Vanta comes in.

Dave Bittner

Vanta automates your compliance process and brings compliance, risk and customer trust together along

Maria Vermazes

with on one AI powered platform. Whether you're preparing for a SoC2 or

Dave Bittner

managing an enterprise GRC program, Vanta helps

Maria Vermazes

keep you secure and your deals moving.

Dave Bittner

Companies like Ramp and RYTR report spending 82% less time on audits.

Maria Vermazes

That's not just faster compliance, that's more time to focus on growth. When I look around the industry, I see over 10,000 companies, from startups to big enterprises trusting Vanta get started@vanta.com cyber.

Dave Bittner

Progress software urges customers to patch a critical moveit authentication bypass Washington worries about limited access to advanced AI tools Paid influencers promote pro American AI. CISO warns Copy Fail is under active exploitation. The Canvas educational platform suffers a data breach. The Lazarus Group uses Click Fix to target high value enterprise users US And Chinese authorities raid scam centers in Dubai we got our Monday business brief on afternoon Cyber tea with Ann Johnson. Tony Sager, senior VP and chief evangelist at the center for Internet Security, joins Ann to discuss the accelerating pace of technology, AI and global software dependencies and May the fourth be with your firewall. It's Monday, may 4th, 2026.

Maria Vermazes

I'm dave bittner and this is your cyberwire intel brief. Foreign.

Dave Bittner

Thanks for joining us here today. It's great as always to have you with us.

Maria Vermazes

Happy Monday. May the fourth be with you. Progress Software is urging customers to patch a critical authentication bypass in its MoveIt automation managed file transfer platform, citing immediate risk. The flaw affects multiple recent versions and allows remote attackers to gain access without credentials or user interaction. Progress says upgrading to patched releases is the only fix and requires system downtime. A second issue enables privilege escalation. Researchers report over 1,400 exposed instances online, including systems tied to US government agencies. It's unclear how many remain unpatched.

Dave Bittner

Managed file transfer systems centralize sensitive data flows.

Maria Vermazes

They're high value targets for ransomware groups. Past MoveIt vulnerabilities were widely exploited, which raises concerns about potential follow on attacks if patching is delayed.

Dave Bittner

Alphabet CEO Sundar Pichai met with White House officials to discuss cybersecurity, but talks

Maria Vermazes

focused on a growing limited access to advanced artificial intelligence tools. According to the New York Times, officials are worried about compute or processing power tied to Claude Mitho's preview from Anthropic the model can reportedly identify and exploit software vulnerabilities faster than human teams, but access is tightly restricted. Limited capacity could force prioritization during crises. The government is now exploring alternatives From Google and OpenAI while facing certification hurdles for secure deployment. Cybersecurity defenses may increasingly depend on AI systems that require scarce computing resources. Limited access could delay response times during active threats, highlighting a new operational risk tied not to software flaws but to infrastructure constraints.

Dave Bittner

Meanwhile, the Pentagon has signed agreements with

Maria Vermazes

major tech firms to deploy AI across classified military systems, aiming to strengthen battlefield decision making. The deals include Google, Microsoft, Amazon Web Services, Nvidia, OpenAI, Reflection, and SpaceX. The Defense Department says these tools will support operational planning and logistics. Anthropic is notably excluded following a dispute over military use policies. Officials emphasize diversification after concerns about relying on a single provider. While some agreements require human oversight in autonomous functions, AI is rapidly becoming embedded in military operations, from targeting to logistics. Expanding vendor access may improve resilience, but unresolved concerns about oversight bias and civilian harm highlights risks of overreliance on automated system A network of influencers is promoting

Dave Bittner

pro American artificial intelligence messaging without clearly disclosing the political funding behind it. According to Wired, posts from creators like

Maria Vermazes

Melissa Strahl were labeled as ads. But funding traces back to Build American AI, a group tied to the super PAC Leading the Future. The campaign pays influencers to highlight U.S. innovation and and in later phases, frame China as a technological threat. Messaging guidance encourages blending everyday content with geopolitical talking points. Some influencers declined participation, citing ethical concerns about undisclosed sponsorship and narrative framing. Social media is a primary news source for many Americans. Undisclosed paid messaging can blur the lines between opinion and influence operations, raising concerns about transparency, democratic discourse, and how AI policy debates are shaped.

Dave Bittner

CISA warns attackers are exploiting a critical

Maria Vermazes

Linux flaw just one day after public disclosure.

Dave Bittner

The copy fail vulnerability affects the Linux

Maria Vermazes

kernel and allows unprivileged users to gain root access. Researchers at Theori released a proof of concept exploit described as reliable across multiple distributions. CISA added the flaw to its known exploited vulnerabilities catalog and ordered federal agencies to patch within two weeks. Rapid exploitation shortens response time for defenders. Widely affected systems increase exposure, making immediate patching critical to prevent full system compromise.

Dave Bittner

Education technology firm Instructure is recovering from

Maria Vermazes

a cyber attack that disrupted services and

Dave Bittner

exposed user data on its Canvas platform.

Maria Vermazes

The company says the April 30 incident affected tools relying on API keys and was largely resolved by May 3. Attackers accessed personal data, including names, emails, student IDs and messages, but not passwords or financial details. Shiny Hunters claims responsibility, alleging massive data theft, though the scope remains unclear.

Dave Bittner

Canvas is widely used across educational systems.

Maria Vermazes

Disruptions and potential data exposure could impact millions, highlighting ongoing risks to centralized learning platforms.

Dave Bittner

The Lazarus Group is using Clickfix social

Maria Vermazes

engineering to deliver new macOS malware called Macoman targeting high value enterprise users. According to researcher Moro Eldritch, attackers pose as contacts on Telegram and lure victims to fake meeting pages. Users are instructed to run terminal commands, which install a multi stage malware kit. The payload collects system data, browser credentials and macOS keychain secrets, then exfiltrates them. The malware also establishes persistence using disguised system services.

Dave Bittner

The attack bypasses traditional defenses by relying

Maria Vermazes

on user actions instead of exploits. A single compromised Mac could expose corporate systems or crypto assets, especially in fintech environments.

Dave Bittner

US And Chinese authorities coordinated raids on scam centers in dubai, leading to 276 arrests tied to cryptocurrency fraud schemes.

Maria Vermazes

The U.S. department of justice says the operation followed FBI complaints from victims who

Dave Bittner

lost millions of Investigators trace the activity

Maria Vermazes

using data from Meda and financial records.

Dave Bittner

Prosecutors charged multiple suspects accused of running

Maria Vermazes

pig butchering scams through front companies. Dubai police carried out the raids, while one suspect was arrested. In Thailand, large scale scam networks operate across borders, complicating enforcement. The case also highlights links between organized crime and global fraud ecosystems that continue to target US Victims at scale

Dave Bittner

Turning to our Monday business brief, cybersecurity companies are drawing significant investment and pursuing acquisitions to scale AI driven and enterprise security offerings. Cloudsmith led funding activity with a $72 million Series C to expand AI native

Maria Vermazes

workflows, while startups like Spectrum Security and copperhelm emerged from stealth with new backing.

Dave Bittner

Other firms including Scattercor and Quo Intelligence raised funds to grow products and market reach.

Maria Vermazes

Meanwhile, major deals include Airbus acquiring quarkslab and silverfort moving to acquire Fabrics. Security Rising investment and consolidation signal a

Dave Bittner

shift toward integrated AI enabled security platforms.

Maria Vermazes

Vendors are racing to address supply chain risk, identify security and AI driven threats at enterprise scale.

Dave Bittner

I recently sat down with Kevin McGee, the leader at Microsoft for startups cybersecurity

Maria Vermazes

portfolio while at rsac. During that conversation, Kevin broke down what

Dave Bittner

the next wave of cybersecurity startups could

Maria Vermazes

look like and how founders can best prepare themselves to be successful in this rapidly changing landscape.

Dave Bittner

If you're interested in the future of cybersecurity and how AI is impacting the startup ecosystem, check out the full interview via the link in today's show.

Maria Vermazes

Notes.

Dave Bittner

Coming up after the break on Afternoon cybertea with Ann Johnson Tony Sager, Senior Vice President and Chief Evangelist at the center for Internet Security, joins Ann to discuss the accelerating pace of technology and may the fourth be with your firewall.

Maria Vermazes

Stay with us. And now a word from our sponsor, the center for Cyber Health and Hazard Strategies, also known as chhs.

Dave Bittner

Looking for a graduate degree that will give you an edge on your professional career?

Maria Vermazes

Earn a Master of Science in Law

Dave Bittner

at University of Maryland Carey School of Law.

Maria Vermazes

This part time, two year online graduate degree program is designed for experienced professionals

Dave Bittner

to understand laws and policies that impact your industry.

Maria Vermazes

Learn from CHHS faculty who are experts in their field.

Dave Bittner

No GRE required.

Maria Vermazes

Learn how you can master the law

Dave Bittner

without a JD at Law, Umarland Eduardo

Windows 11 PC Advertiser

Study and Play Come together on a Windows 11 PC and for a limited time, college students get the best of both worlds. Get the unreal college deal everything you need to study and play with select Windows 11 PCs. Eligible students get a year of Microsoft 365 Premium and a year of Xbox Game. Pass ultimate with a custom color Xbox wireless controller. Learn more@windows.com studentoffer while supplies last ends June 30th terms at aka mscollegepc.

Dave Bittner

Ann Johnson is host of the Afternoon Cyber Tea podcast and in this segment from her show she speaks with Tony

Maria Vermazes

Sager, Senior Vice President and Chief Evangelist

Dave Bittner

from the center for Internet Security. They're discussing how the accelerating pace of technology, AI and global software dependencies on

Maria Vermazes

are reshaping the cybersecurity landscape.

Ann Johnson

Today I am joined by Tony Sager, who's the Senior Vice President and Chief Evangelist at the center for Internet Security, more commonly known as cis. So Tony, we're at this moment where cybersecurity feels more urgent and also more complicated. From your vantage point, what feels fundamentally different about today's security moment compared to even five or 10 years ago?

Tony Sager

The rate of change we're experiencing now is the slowest it will ever be in our lifetimes. So everything is accelerated. The change you see us getting faster and I grew up in a world where we would count on the government. Is this technology safe for government use or private sector use? Well, they'll hire a room full of smart guys, sit there, study it for a year, then it'll come out. Yes, it's safe or no, they need to fix this. No one's got time for that. So things are moving so quickly and we've become used to a world of both great opportunity, new capabilities, but we accept some level of flaws that are in it. And then every once in a While those flaws go from minor on year, catastrophic. So that's really the difference is we don't have the time for kind of traditional approaches to giving ourselves confidence in software or systems or whatever is going on. And that's the world that we live in.

Ann Johnson

I think it's fair to say that for years we've been somewhat reactive in cyber. You said you've been doing it 50, I've been doing it 26. This is year. I'm finishing year 26. But lately there's been this push to be much more proactive, much more secure by design, much more on the front foot. Right. And taking responsibility. Earlier in life cycle. We like to talk about shift left. We like to talk about a lot of things, however, the industry, we're talking about it, but the industry has been pretty slow to make that shift. Why do you think it is that we're being so slow to go from being more reactive or why is it so slow that, you know, from being more reactive to shifting to being more proactive?

Tony Sager

Yeah, it's certainly true. You know, as I look back across the industry, the majority of it is there in reaction to flaws in protocols, bugs in software, in dealing with that and any other domain of risk in your life. Right. We learn prevention is more effective than reaction, and that's just what truism that happens to be true. But it's been really hard to get there because of the economics. So we have proven as social creatures we will accept flawed software in exchange for much better features than we had before. And that just became part of the way we operate the industry. And so it's a rational decision on the part of the vendor. They could study and scrub out bugs for another year, but they've missed the market. And my vendor friends will say things like second to market is last to market. And that means exactly what it says people expect the public is willing to pay for things sooner rather than later. They used to joke about. Again, I grew up in the government world where you took your time. It may take 10 to 15 years to build a new radio for the US army in the 70s and 80s. And now people are patient for 10 or 15 minutes and whatever they see in the current headlines, well, I hold newspaper as though we read them now, but whatever new we want now, and no one's waiting for the government or a regulatory agency to tell them it's safe, they want to get into it right away. But this need to push earlier in the life cycle is really important. And it's because so much is a risk. It's just there is no economy without it, right? There is no social life anymore without that. And so it's become so embedded in our way of life that it's fundamental to everything that we think, do, or say. And so you have to say, what do we need to demand as citizens? What would be the sort bare essentials that we'd expect in public safety or employee safety or financial safety? We just don't know the language for it now. The IT stuff, cyber stuff is complicated. There's so many variables and so many things that can go wrong. And by design, it's a worldwide market. Most of our pieces don't come from sources that we know much about or that we can have much trust in. But that's the choice that we have made. I'd say implicitly, rather than openly.

Dave Bittner

Be sure to check out Afternoon Cybertea wherever you get your favorite podcasts.

Cyberwire Network Announcer

When you need to build up your team to handle the growing chaos at work, use Indeed Sponsored Jobs. It gives your job post the boost it needs to be seen and helps reach people with the right skills, certifications, and more. Spend less time searching and more time actually interviewing candidates who check all your boxes. Listeners of this show will get a $75 sponsored job credit@ Indeed.com podcast. That's Indeed.com podcast. Terms and conditions apply. Need a hiring hero? This is a job for Indeed Sponsored

Home Depot Advertiser

Jobs it's time to refresh your yard during Spring Backyard Days at the Home Depot. Get low prices guaranteed on propane grills starting at $179 like the next grill 3 burner gas grill. Or get $50 off a select Weber Spirit Grill and bring big flavor to your backyard. Then set the scene with Hampton Bay string lights that bring it all together. Shop Spring backyard days for seven days at the Home Depot now through May 6th. Exclusions applies to homedevot.com pricematch for details.

Dave Bittner

And finally, today is May 4, which

Maria Vermazes

means it is once again Star Wars

Dave Bittner

Day, the annual celebration of a galaxy

Maria Vermazes

far, far away, and a useful reminder

Dave Bittner

that even the most advanced civilizations can

Maria Vermazes

still be brought down by a surprisingly small design, flawless in a very large attack surface.

Dave Bittner

So, in honor of the occasion, let's

Maria Vermazes

review a few basic cybersecurity lessons from the archives of the Jedi Temple, which admittedly could have used better access controls.

Dave Bittner

First, use strong, unique passwords.

Maria Vermazes

Password123 is not a passphrase. I am your father is only slightly better and also a spoiler with weak entropy.

Dave Bittner

Consider a password manager, because remembering dozens of complex credentials is hard and because

Maria Vermazes

storing them in a file called Death Star plans FinalFinalReally final doc is how Bothans get nervous.

Dave Bittner

Second, turn on multi Factor Authentication.

Maria Vermazes

Yes, it adds a step. So does lining up a trench run

Dave Bittner

while TIE fighters are behind you. But when a Sith Lord gets hold of your password, it's helpful if the account still asks. Great.

Maria Vermazes

And where's your security key?

Dave Bittner

Third, patch your systems.

Maria Vermazes

The Empire built a moon sized battle

Dave Bittner

station with only one tiny exhaust port

Maria Vermazes

leading directly to the reactor. Somewhere a project manager marked that ticket Known issue Low priority. Do not be that project manager.

Dave Bittner

Fourth, beware of fishing.

Maria Vermazes

If a message says urgent, click here

Dave Bittner

to claim your free landspeeder.

Maria Vermazes

Check the sender if it's from Palpatine@totallynotheeempire biz. Maybe don't download the attachment. The Force can guide you, but it cannot fully sandbox a malicious PDF.

Dave Bittner

Fifth, back up your data. Cloud City seems stable too, right up

Maria Vermazes

until the Terms of Service changed and Darth Vader altered the deal.

Dave Bittner

Keep offline or immutable backups, test your

Maria Vermazes

restores, and never assume your data is safe just because Lando said everything was fine. Sixth, limit privileges. Not everyone needs admin access to the shield generator. Least privilege is not a lack of trust, it's how you keep one compromised stormtrooper account from becoming a full blown Imperial Incident Response tabletop exercise.

Dave Bittner

And finally, train your users.

Maria Vermazes

Cybersecurity awareness may not sound glamorous, but neither did moisture farming. And look how that turned out. A well trained employee who pauses before clicking can be more powerful than you can possibly imagine. So this May 4, celebrate responsibly.

Dave Bittner

Rotate your credentials, patch your droids, encrypt your transmissions, and remember, good cyber hygiene is not the only hope, but it's

Maria Vermazes

a pretty good place to start. May the Force be with you.

Dave Bittner

And that's the Cyber Wire. For links to all of today's stories, check out our daily briefing@thecyberwire.com don't forget to check out the Grumpy Old Geeks podcast, where I contribute to a regular segment on Jason and Brian's show every week.

Maria Vermazes

You can find Grumpy Old Geeks, where all the fine podcasts are listed.

Dave Bittner

We'd love to know what you think of this podcast. Your feedback ensures we deliver the insights that keep you a step ahead in

Maria Vermazes

the rapidly changing world of cybersecurity.

Dave Bittner

If you like our show, please share

Maria Vermazes

a rating and review in your favorite podcast app.

Dave Bittner

Please also fill out the survey in the show notes or send an email to cyberwire2k.com N2K's lead producer is Liz Stokes.

Maria Vermazes

We're mixed by Trey Hester with original

Dave Bittner

music and sound design by Elliot Peltzman.

Maria Vermazes

Our contributing host is Maria Vermazes.

Dave Bittner

Our executive producer is Jennifer Ivan. Peter Kilpe is our publisher. And I'm Dave Bittner.

Maria Vermazes

Thanks for listening. We'll see you back here tomorrow.