Cybersecurity Headlines New iOS patches over DarkSword, FBI: surveillance hack is major incident, Cisco code stolen in Trivy-linked breach
11 snips
Apr 2, 2026 Apple issues rare iOS 18 backports to close a web‑based exploit chain. The FBI calls a large surveillance system compromise a major incident. Stolen Trivy credentials and a malicious GitHub Action led to Cisco source code exfiltration. Supply‑chain and extortion claims surface around Light LLM and Mercore. Large scam network extraditions and a major retailer outage are also covered.
AI Snips
Chapters
Transcript
Episode notes
Apple Backports Patches For DarkSword Exploit
- Apple backported rare iOS 18 security patches to protect users from DarkSword instead of forcing upgrades.
- Researchers found DarkSword silently compromises iPhones via infected websites, and many remained exposed by not upgrading to iOS 26.
FBI Declares Surveillance Breach A Major Incident
- FBI labeled a suspected China-linked breach of an internal surveillance system a major cyber incident indicating national security impact.
- Attackers likely accessed surveillance records and PII by exploiting a third-party ISP vendor, raising concern about vendor risk.
Trivy Supply Chain Led To Cisco Source Code Theft
- Cisco had source code exfiltrated from 300+ GitHub repos after attackers used credentials stolen in the Trivy supply-chain attack.
- The campaign used a malicious GitHub Actions plugin to steal credentials and AWS keys, enabling cross-system access.