Daily Security Briefing #218

April 8, 2026 | Read Online

Critical vulnerabilities exposed in FortiGate, IBM Security Verify Access, and Ivanti EPMM; hackers target Adobe Reader users with sophisticated zero-day exploit

Executive Summary

The past day has seen a surge in critical cybersecurity threats. Malicious actors have exploited vulnerabilities in FortiGate appliances, IBM’s Verify Identity Access and Security Verify Access products, and Ivanti Endpoint Manager Mobile (EPMM). Additionally, hackers are targeting Adobe Reader users with a sophisticated zero-day exploit. Meanwhile, researchers have identified a new variant of the Chaos malware that targets misconfigured cloud deployments.

Top Articles

FortiGate CVE-2025-59718 Exploitation: Incident Response Findings Rapid7’s Incident Response (IR) team investigated an incident involving exploitation of CVE-2025-59718 against a vulnerable FortiGate appliance. The attackers maintained a low-profile posture, compromising additional firewalls before moving to internal network hosts. rapid7.com

Anthropic Launches Claude Mythos Preview Focused on Zero-Day Vulnerability Discovery Anthropic unveiled Claude Mythos Preview, a language model demonstrating an unprecedented ability to autonomously discover and exploit zero-day vulnerabilities. The company introduced Project Glasswing, a defensive initiative aimed at securing critical software infrastructure. gbhackers.com

Hackers Target Adobe Reader Users With Sophisticated Zero-Day Exploit Security researchers uncovered a highly sophisticated, unpatched zero-day vulnerability targeting Adobe Reader users. The exploit allows threat actors to silently steal local files and potentially deploy remote code execution (RCE) attacks. gbhackers.com

Python Supply-Chain Compromise A malicious supply chain compromise has been identified in the Python Package Index package litellm version 1.82.8. The published wheel contains a malicious .pth file that is automatically executed by the Python interpreter on every startup. schneier.com

Anthropic Introduces Claude Mythos Preview with Advanced Zero-Day Discovery Capabilities Anthropic announced “Claude Mythos Preview,” a new AI model that dramatically raises the stakes in software security by autonomously finding and exploiting zero-day vulnerabilities. The company is positioning the model as both a breakthrough defensive tool and a warning shot about how quickly AI-assisted offensive capabilities are advancing. cyberpress.org

IBM Security Verify Access Vulnerabilities Allow Remote Attackers to Access Sensitive Data IBM issued an urgent security advisory warning of multiple vulnerabilities in its Verify Identity Access and Security Verify Access products that could allow attackers to steal sensitive data or fully compromise systems. cyberpress.org

New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy Cybersecurity researchers flagged a new variant of malware called Chaosthat’s capable of hitting misconfigured cloud deployments, marking an expansion of the botnet’s targeting infrastructure. thehackernews.com

Masjesu Botnet Emerges as DDoS-for-Hire Service Targeting Global IoT Devices Researchers lifted the curtain on a stealthy botnet that’s designed for distributed denial-of-service (DDoS) attacks. Called Masjesu, the botnet has been advertised via Telegram as a DDoS-for-hire service since it first surfaced in 2023. thehackernews.com

CISA orders feds to patch exploited Ivanti EPMM flaw by Sunday CISA gave U.S. government agencies four days to secure their systems against a critical-severity vulnerability in Ivanti Endpoint Manager Mobile (EPMM) that has been exploited in attacks since January. bleepingcomputer.com

New macOS stealer campaign uses Script Editor in ClickFix attack A new campaign delivering the Atomic Stealer malware to macOS users abuses the Script Editor in a variation of the ClickFix attack that tricked users into executing commands in Terminal. bleepingcomputer.com

We’re Getting the Wrong Message from Mythos The author argues that we’re missing a much bigger point on Mythos, which wasn’t even trained specifically for cybersecurity. danielmiessler.com

AI Transparency: This newsletter uses AI to curate, rank, and summarize cybersecurity content from leading industry blogs. All articles link directly to original authors. Executive summaries are AI-generated based on article content. I curate the sources and deliver the digest—the original authors deserve the credit for their excellent work.