I once tried to assemble IKEA furniture this week without looking at the instructions. Got halfway through before realising I’d built something structurally sound but utterly useless. Feels like a decent metaphor for most security programmes.

America Discovers It Doesn’t Make Routers Anymore

The US just banned foreign-made routers because malicious actors kept using them to break in. Now people realise there are barely any routers actually made in America. Economics meets security theatre.

https://www.bbc.co.uk/news/articles/c74787w149zo

Your Transcription Service Knows Everything

You’re uploading your confidential interview to a transcription service and trusting they won’t peek. They technically can. They won’t say if they’ve given it to the government. That’s not paranoia, that’s just how it works right now. Freedom of the Press Foundation dug into how secure these tools actually are, and the answer is: less than you’d hope.

https://freedom.press/digisec/blog/how-secure-are-journalists-favorite-transcription-tools/

The European Commission Got Breached and Shrugged

The European Commission got breached, said “data may have been taken,” then went silent. It’s the institutional equivalent of finding your front door open, shrugging, and hoping nobody notices the missing silverware. They write the regulations everyone else has to follow, by the way.

https://www.theregister.com/2026/03/30/european_commission_breach/

Shadow AI Is a Symptom, Not a Disease

Shadow AI isn’t the problem. Your employees using it because they’re drowning in work is. Before you ban it, ask yourself: why are they reaching for it? Then actually listen to the answer. Most organisations won’t, because the answer involves admitting their processes are broken.

https://www.csoonline.com/article/4143302/the-cisos-guide-to-responding-to-shadow-ai.html

RSAC Had an Outbreak of Honesty

RSAC 2026 keynotes had something unusual: speakers admitting we don’t know how to secure AI agents yet. No vendor claiming to have solved it. Of course, down on the expo floor, everyone was still flogging AI-powered solutions to AI-powered problems they’d invented that morning.

https://www.defendersinitiative.com/p/i-watched-all-11-main-stage-keynotes?r=jefan

What People Actually Want From AI

80,000 people asked what they want from AI. The honest answer wasn’t “make me more productive.” It was “give me my life back.” That’s not a product survey, that’s a cry for time. For space. For their mothers. Maybe the technology industry should listen to that bit.

https://thenextweb.com/news/the-largest-ai-survey-ever-reveals-what-humans-actually-want

Someone Nicked 12 Tonnes of KitKats

Someone stole 413,793 KitKat bars from a truck in Italy. That’s 12 tonnes of chocolate. No security lesson here. Just wanted you to know that somewhere out there, someone’s living their best life in a warehouse full of stolen confectionery.

https://www.wantedinrome.com/news/someone-stole-413793-f1-kitkat-bars-from-a-truck-in-italy.html

That’s your lot for this week. If you’ve got stories, thoughts, or you’re the person with the KitKats, reply to this email. I read them all, even the unhinged ones. Especially the unhinged ones.

Stay cynical.

*** This is a Security Bloggers Network syndicated blog from Javvad Malik authored by j4vv4d. Read the original post at: https://javvadmalik.com/2026/04/03/breach-of-confidence-3-april-2026/