⚡ Weekly Recap: Fiber Optic Spying, Windows Rootkit, AI Vulnerability Hunting and More
Summary
This weekly security recap covers several major threats, including a critical zero-day vulnerability in Adobe Acrobat Reader (CVE-2026-34621, CVSS score 8.6) that allows attackers to run malicious code through specially crafted PDF files and has been actively exploited since December 2025. Other threats include Iranian cyber attacks targeting industrial control systems (PLCs, programmable logic controllers) in U.S. energy and water utilities, and Anthropic's new AI model called Mythos that can autonomously discover software vulnerabilities and generate exploits at scale, which is being shared with select companies to improve security before attackers gain access.
Solution / Mitigation
Adobe released emergency updates to fix the critical Acrobat Reader flaw (CVE-2026-34621). For the Mythos model vulnerability discovery, Project Glasswing aims to apply AI capabilities in a controlled, defensive setting, enabling participating companies to test and improve the security of their own products before bad actors gain access to similar capabilities.
Classification
Affected Vendors
Related Issues
Original source: https://thehackernews.com/2026/04/weekly-recap-fiber-optic-spying-windows.html
First tracked: April 13, 2026 at 02:00 PM
Classified by LLM (prompt v3) · confidence: 85%