This article summarizes multiple security threats, including ransomware gangs like Kyber experimenting with post-quantum encryption and Trigona using novel data exfiltration tools, malicious npm packages targeting developers via Namastex.ai, and exploits that can turn Windows Defender into an attack tool. It also covers high-risk vulnerabilities in LLMs, fake crypto wallet apps on the Apple App Store, and GitHub CLI collecting telemetry. Specific CVSS scores, affected versions, fixed versions, and workarounds are not provided for these varied incidents.
Subscribe Share Full episode and show notes Vulnerability Management , Ransomware , AI/ML Scylla &Charybdis, Kyber, Trigonia, Namastex, GitHub, Crypto, Cables, Aaran Leyland – SWN #575 SScylla and Charybdis, Latin Phrasebook, Kyber, Trigonia, Namastex, GitHub, Crypto, Cables, Aaran Leyland, and More on this episode of the Security Weekly News. April 24, 2026 Full Segment Notes SScylla and Charybdis, Latin Phrasebook, Kyber, Trigonia, Namastex, GitHub, Crypto, Cables, Aaran Leyland, and More on this episode of the Security Weekly News. Hosts Doug White https://securedigitallife.com/ Aaran Leyland @aaran#2621 List of Articles Doug White High-Risk Vulnerabilities with LLMs at Nearly Triple the Rate of Traditional Software, New Cobalt Report Finds Kyber ransomware gang toys with post-quantum encryption on Windows Trigona ransomware attackers use novel tool for data exfiltration Namastex.ai npm Packages Hit with TeamPCP-Style CanisterWorm… GitHub CLI begins collecting client-side user telemetry 26 FakeWallet Apps Found on Apple App Store Targeting Crypto Seed Phrases Your bad habits are destroying your charging cables Crypto scam lures ships into Strait of Hormuz, falsely promising safe passage Aaran Leyland Exploits Turn Windows Defender Into Attacker Tool Show More Stay in the Know, No Smoke and Mirrors – Join Our Newsletter Get expert insights and technical breakdowns straight to your inbox. Join Now Related Segments Vulnerability Management Back to (or Start) Fundamentals? – Rajesh Khazanchi – PSW #923 Vulnerability Management Robosawmill, Gentleman, Vercel, GitHub, Claude, RS232, Josh Marpet, and More… – SWN #574 Vulnerability Management Dougbot, RedSun, ATHR, Vishing, Cisco, Google, Chrome, Severance, Shor, Josh Marpet.. – SWN #573 Related Content Malware CISA: Malware attack compromises US agency via Cisco exploit Security Operations CrowdStrike launches Project QuiltWorks to address AI-discovered software vulnerabilities Vulnerability Management Critical vulnerability in WordPress Breeze Cache plugin exploited You can skip this ad in 5 seconds