SilentGlass launch as a monitor-connection protection security device
Security Tool/Service
Summary
Hide ▲
Show ▼
The UK National Cyber Security Centre has released SilentGlass, a plug-and-play device that blocks unexpected or malicious signals between HDMI or display port connections and monitor screens, extending protection to high-threat environments.
Related Happenings
Anthropic Project Glasswing expands Claude Mythos Preview access
Security Tool/Service
H score54
First: 03.06.2026 12:30
Last: 03.06.2026 12:30
Sources 1
About this happening:
**Anthropic** expanded **Project Glasswing** on **June 2**, extending **Claude Mythos Preview** to **150 additional organizations** and widening a security-focused AI program used...
Anthropic Project Glasswing expands Claude Mythos Preview access
Security Tool/ServiceAbout this happening: **Anthropic** expanded **Project Glasswing** on **June 2**, extending **Claude Mythos Preview** to **150 additional organizations** and widening a security-focused AI program used...
ScarCruft sqgame[.]net supply-chain espionage campaign
Campaign
H score8
First: 05.05.2026 12:07
Last: 05.05.2026 12:07
Sources 1
About this happening:
**ScarCruft**'s **late-2024** supply-chain campaign against **sqgame[.]net** expanded a niche gaming platform compromise into a **multi-platform espionage channel**. The operation...
ScarCruft sqgame[.]net supply-chain espionage campaign
CampaignAbout this happening: **ScarCruft**'s **late-2024** supply-chain campaign against **sqgame[.]net** expanded a niche gaming platform compromise into a **multi-platform espionage channel**. The operation...
DEEP#DOOR Python backdoor framework
Malware Activity
H score28
First: 30.04.2026 15:36
Last: 30.04.2026 15:36
Sources 1
About this happening:
**DEEP#DOOR** is a newly disclosed **Python-based backdoor framework** that can keep **persistent access** to compromised Windows hosts while stealing browser, SSH, and cloud cred...
DEEP#DOOR Python backdoor framework
Malware ActivityAbout this happening: **DEEP#DOOR** is a newly disclosed **Python-based backdoor framework** that can keep **persistent access** to compromised Windows hosts while stealing browser, SSH, and cloud cred...
Federal civilian executive branch agency hit by network compromise
Incident
H score21
First: 24.04.2026 23:34
Last: 24.04.2026 23:34
Sources 1
About this happening:
A **federal civilian executive branch agency** was compromised in an **early September 2025** intrusion that left attackers with persistent access on **Cisco Firepower** and **Sec...
Federal civilian executive branch agency hit by network compromise
IncidentAbout this happening: A **federal civilian executive branch agency** was compromised in an **early September 2025** intrusion that left attackers with persistent access on **Cisco Firepower** and **Sec...
FIRESTARTER malware on Cisco ASA and FTD devices
Malware Activity
H score33
First: 23.04.2026 15:00
Last: 23.04.2026 15:00
Sources 1
About this happening:
CISA has published analysis of **FIRESTARTER**, a malware strain that enables **remote access and control** on **Cisco Firepower** and **Secure Firewall** devices, raising the ris...
FIRESTARTER malware on Cisco ASA and FTD devices
Malware ActivityAbout this happening: CISA has published analysis of **FIRESTARTER**, a malware strain that enables **remote access and control** on **Cisco Firepower** and **Secure Firewall** devices, raising the ris...
Latest development: 24.04.2026 23:34
CISA, NCSC-UK, and Cisco detailed Firestarter persistence on Cisco Firepower and Secure Firewall devices running ASA or FTD software, attributing the backdoor to UAT-4356 and linking the activity to ArcaneDoor. The malware modifies CSP_MOUNT_LIST, stores a copy in /opt/cisco/platform/logs/var/log/svc_samcore.log, restores itself to /usr/bin/lina_cs, and relaunches after termination or reboot; Cisco recommends reimaging and upgrading to fixed releases, or using a cold restart only if reimaging is not possible.
Timeline
-
22.04.2026 18:00 1 articles · 2mo ago
SilentGlass launches at CYBERUK
Industry Or Public Sector UpdateThe UK National Cyber Security Centre launched SilentGlass at CYBERUK on April 22, 2026, presenting it as a plug-and-play device that blocks unexpected or malicious activity between HDMI or display port connections and monitor screens and saying it had already been deployed on government estates.
Show sources
- NCSC Unveils SilentGlass, a Plug-In Device to Protect Monitors from Cyber-Attacks — www.infosecurity-magazine.com — 22.04.2026 18:00
-
22.04.2026 18:00 2 articles · 2mo ago
NCSC details SilentGlass commercialization and use case
Initial DisclosureThe UK National Cyber Security Centre, Goldilock Labs and Sony UK say SilentGlass is now globally available and is intended to protect display interfaces that the agency says are attractive targets because they hold valuable, sensitive or personal data.
Show sources
- NCSC Unveils SilentGlass, a Plug-In Device to Protect Monitors from Cyber-Attacks — www.infosecurity-magazine.com — 22.04.2026 18:00
- In Other News: Unauthorized Mythos Access, Plankey CISA Nomination Ends, New Display Security Device — www.securityweek.com — 24.04.2026 17:31