Latest Internet & Cybersecurity News
Cloudflare Reports Surge in Major Internet Outages Worldwide in Q1 2026
Cloudflare's Q1 2026 report highlights a sharp rise in severe internet disruptions, including government shutdowns in Iran, Uganda, and Congo, plus power failures in Cuba and others. Incidents linked to war, weather, cable damage, and military action mark a shift from last year.
The report warns of systemic vulnerabilities across politics, geography, and infrastructure.
Fortinet 2026 Report: Cybersecurity Talent Gap Worsens Amid AI Adoption
Fortinet's Global Cybersecurity Skills Gap Report shows 86% of organizations faced breaches in the past year, with 52% costing over $1M, driven by skill shortages. 56% of IT leaders cite lack of skills as top breach cause; AI use heightens risks, demanding new oversight roles.
North America sees highest breach costs at $2M average.
LiteLLM CVE-2026-42208 SQL Injection Exploited Within 36 Hours
Critical SQL injection flaw CVE-2026-42208 in LiteLLM (>=1.81.16 <1.83.7) was exploited starting April 26, targeting credential tables for LLM keys like OpenAI and Anthropic. Attack from IP 65.111.27.132 risks cloud account compromises via extracted high-value keys.
Patch released April 19, but rapid exploitation shows shrinking zero-day windows.
Critical GitHub RCE Vulnerability CVE-2026-3854 Exposed Millions of Repos
Wiz uncovered CVE-2026-3854, an injection flaw in GitHub's internal Git protocol allowing authenticated RCE via git push on GitHub.com and Enterprise Server. Affects shared storage; 88% of Enterprise instances unpatched despite fixes in March.
Easy exploitation could compromise servers, repos, and secrets.
RunSafe Security: 80% of Medical Device Cyberattacks Disrupt Patient Care
2026 Medical Device Cybersecurity Index finds 24% of healthcare orgs hit by device attacks, 80% disrupting care; 56% rejected devices over cyber concerns. 44% use unpatched devices, 28% past end-of-support, amid rising AI-enabled tech adoption.
Procurement now mandates cybersecurity for 84% of buyers.
FTI Consulting Hires 10 Senior Experts to Bolster Cybersecurity Capabilities
FTI Consulting appointed five Senior Managing Directors and five Managing Directors specializing in cyber risk, data privacy, and governance. New hires like Akshay Dhawan (20+ years in cybersecurity) and Ankur Sheth (strategy expert) enhance digital transformation services.
Announced April 29, 2026.
Iran Faces Prolonged Nationwide Internet Shutdowns in Q1 2026
Iran experienced near-total internet blackouts in early January and later in Q1, with traffic dropping to zero except brief restorations, per Cloudflare. Government-ordered shutdowns contributed to global surge in disruptions.
Highlights state intervention risks to digital access.
Cuba's Power Collapses Trigger Multiple Internet Outages in March 2026
Cuba suffered three national power failures in March, each causing sharp internet traffic drops and exposing links between aging grids and digital resilience. Similar outages hit Buenos Aires, Moldova, Paraguay, Dominican Republic, and US Virgin Islands.
Cloudflare notes electricity as major disruption source.
AI in Cybersecurity Creates New Skills Gap and Board Awareness Issues
Fortinet report reveals only 50% of leaders believe boards fully grasp AI risks; 63% expect need for AI governance roles in cyber teams within three years. Upskilling required to leverage AI tools effectively amid persistent talent shortages.
Executives faced penalties post-attacks in 50% of cases.
GitHub Enterprise Server Patch Lag Leaves 88% Vulnerable to RCE
Despite March 10 patch for CVE-2026-3854, 88% of GitHub Enterprise Server instances remain unpatched, risking full server compromise. Flaw enables arbitrary command execution on backend with standard git client.
Discovered by Wiz using AI; GitHub fixed .com same-day report.
Sysdig Tracks LiteLLM Exploiter Targeting High-Value LLM Credentials
LiteLLM attacker probed tables like litellm_credentials for OpenAI, Anthropic, AWS keys with high spend limits, akin to cloud account takeover. Used Prisma schema details without PoC; activity from adjacent IPs in two phases.
First exploit 26 hours post-advisory indexing.
Healthcare Rejects More Medical Devices Over Cybersecurity in 2026
RunSafe Index shows rejection rate up to 56% from 46% in 2025 due to cyber risks; 57% use AI-assisted devices heightening exposures. Many run unsupported or vulnerable tech despite tightening procurement.
Attacks now core patient care disruptor.