Episode 8 — 27 Mar 2026
1. European Commission investigating breach after Amazon cloud hack
Source: Bleeping Computer
The European Commission, the European Union's main executive body, is investigating a security breach after a threat actor gained access to its Amazon cloud infrastructure. Although the EU's executive cabinet has yet to disclose the incident publicly, BleepingComputer has...
2. Anti-piracy coalition takes down AnimePlay app with 5 million users
Source: Bleeping Computer
The Alliance for Creativity and Entertainment (ACE) announced the shutdown of AnimePlay, a major anime streaming platform with over 5 million users. Backed by more than 50 major television networks and film studios, including Disney, Paramount, Sony Pictures, Warner Bros,...
3. CISA: New Langflow flaw actively exploited to hijack AI workflows
Source: Bleeping Computer
The Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are actively exploiting a critical vulnerability identified as CVE-2026-33017, which affects the Langflow framework for building AI agents. The security issue received a critical score of 9.3...
4. Bearlyfy Hits 70+ Russian Firms with Custom GenieLocker Ransomware
Source: The Hacker News
?ԻYJg yuW`0*Z/Ң555Fd~)eU4_11C"Ȝ Ll;}Ç|}*J81DWzVl4y= K n7/YZqaRK٫YyZ*-v^[88Xp! * mT@^GL{C)8 _&Y,,¢9T98pX@3yNZMZp4...
5. Dutch Police discloses security breach after phishing attack
Source: Bleeping Computer
The Dutch National Police (Politie) says a security breach resulting from a successful phishing attack has had a limited impact and hasn't affected citizens' data. It also stated that the incident is still under investigation by the agency's security experts and that the...
6. LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworks
Source: The Hacker News
Cybersecurity researchers have disclosed three security vulnerabilities impacting LangChain and LangGraph that, if successfully exploited, could expose filesystem data, environment secrets, and conversation history. Both LangChain and LangGraph are open-source frameworks that...
7. WebRTC Skimmer Bypasses CSP to Steal Payment Data from E-Commerce Sites
Source: The Hacker News
Cybersecurity researchers have discovered a new payment skimmer that uses WebRTC data channels as a means to receive payloads and exfiltrate data, effectively bypassing security controls. "Instead of the usual HTTP requests or image beacons, this malware uses WebRTC data...
8. Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website
Source: The Hacker News
Cybersecurity researchers have disclosed a vulnerability in Anthropic's Claude Google Chrome Extension that could have been exploited to trigger malicious prompts simply by visiting a web page. The flaw "allowed any website to silently inject prompts into that assistant as if...
