107Articles
10Categories
2026-04-08Date
🚨 CISA KEV 2[−]
8 Apr KEVTeamPCP Supply Chain Campaign: Update 007 - Cisco Source Code Stolen via Trivy-Linked Breach, Google GTIG Tracks TeamPCP as UNC6780, and CISA KEV Deadline Arrives with No Standalone Advisory, (Wed, Apr 8th)This is the seventh update to the TeamPCP supply chain campaign threat intelligence report,&#;x26;#;xc2;&#;x26;#;xa0; "When the Security Scanner Became the Weapon" &#;x26;#;xc2;&#;x26…ISC.SANS.EDU
8 Apr KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-1340 Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability This type of vulnerability is a frequent attack vector for malici…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 7[−]
8 AprClaude Identifies Critical 13-Year-Old RCE Vulnerability in Apache ActiveMQAn AI assistant recently uncovered a critical remote code execution (RCE) vulnerability in Apache ActiveMQ Classic that went unnoticed for 13 years. Tracked as CVE-2026-34197, this flaw allows attackers to force the message broker to download a remote configuration file and execu…GBHACKERS.COM
8 AprCVE-2026-35177 Path traversal issue with zip.vim in VimInformation published.MSRC.MICROSOFT.COM
8 AprDocker Authorization Bypass Flaw Exposed Hosts to Potential AttackersA high-severity security vulnerability has been discovered in Docker Engine, exposing hosts to potential authorization bypass attacks. Tracked as CVE-2026-34040, the flaw allows attackers to evade authorization plugins (AuthZ) by manipulating API request bodies. While the base li…GBHACKERS.COM
8 AprMultiple OpenSSL Flaws Expose Sensitive Data in RSA KEM HandlingA newly disclosed flaw in OpenSSL could allow attackers to access sensitive data stored in application memory. Tracked as CVE-2026-31790, this moderate-severity vulnerability affects the handling of RSA Key Encapsulation Mechanism (KEM) RSASVE encapsulation. OpenSSL issued the se…GBHACKERS.COM
8 AprHackers exploit a critical Flowise flaw affecting thousands of AI workflowsThreat actors have found a way to inject arbitrary JavaScript into the Flowise low-code platform for building custom LLM and agentic systems. The code injection was possible due to a design oversight, rated at max-severity, in the platform’s custom MCP node, which acts as a plug-…CSOONLINE.COM
8 AprDocker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Accesssubmitted by kid to cybersecurity 1 points | 0 comments https://thehackernews.com/2026/04/docker-cve-2026-34040-lets-attackers.htmlSH.ITJUST.WORKS
⚠️ VULNERABILITY DISCLOSURE 37[−]
8 AprCybercriminals Use Fake Zoom, Teams Calls to Deliver MalwareHackers are increasingly using fake Zoom and Microsoft Teams meetings to trick victims into infecting their own systems with malware. SEAL says it has blocked 164 malicious domains tied to this operation using MetaMask’s eth-phishing-detect system. The campaign primarily targets …GBHACKERS.COM
8 AprClaude Code Leak Exploited to Spread Vidar and GhostSocks via GitHub ReleasesHackers are turning the Claude Code source leak into an active malware-delivery channel, using GitHub Releases to push the Vidar stealer and GhostSocks under the guise of “leaked” Anthropic tooling. The incident shows how human and governance failures around AI development can ra…GBHACKERS.COM
8 AprRemus Infostealer Debuts With Stealthy New Credential-Theft TacticsHackers are rolling out a new 64‑bit infostealer dubbed Remus. The code strongly suggests it is a direct successor to the notorious Lumma Stealer, arriving just months after law‑enforcement disruption and public doxxing of Lumma’s core operators in 2025. Remus is a 64‑bit informa…GBHACKERS.COM
8 AprAssessing Claude Mythos Preview’s cybersecurity capabilitiessubmitted by codeinabox to security 1 points | 0 comments https://red.anthropic.com/2026/mythos-preview/ During our testing, we found that Mythos Preview is capable of identifying and then exploiting zero-day vulnerabilities in every major operating system and every major web bro…PROGRAMMING.DEV
8 AprGreyNoise Launches C2 Detection for Exploited Edge DevicesGreyNoise has introduced a new capability, C2 Detection, to identify compromised edge devices such as firewalls, routers, and VPN systems assets that are increasingly targeted but often lack visibility in traditional security tools. Unlike endpoints, these devices rarely generate…GBHACKERS.COM
8 AprTop 10 Best Multi-Factor Authentication (MFA) Providers in 2026In the digital realm of 2026, the traditional password stands as a flimsy barrier against an onslaught of sophisticated cyber threats. From phishing campaigns and credential stuffing to ever-evolving malware, attackers are relentlessly targeting the weakest link in cybersecurity:…GBHACKERS.COM
8 AprThe tabletop exercise grows upIn the early 1800s, Prussian officers began rehearsing battles around sand tables. They called it Kriegsspiel, and it worked because it forced them to make high-stakes decisions under pressure. Fast forward to today, and that same concept has become cybersecurity’s go-to tool for…CSOONLINE.COM
8 AprMicrosoft’s new Agent Governance Toolkit targets top OWASP risks for AI agentsMicrosoft has quietly introduced the Agent Governance Toolkit, an open-source project designed to monitor and control AI agents during execution as enterprises try to move them into production workflows. The toolkit, which is a response to the Open Worldwide Application Security …CSOONLINE.COM
8 AprAnthropic's Claude Mythos Finds Thousands of Zero-Day Flaws Across Major SystemsArtificial Intelligence (AI) company Anthropic announced a new cybersecurity initiative called Project Glasswing that will use a preview version of its new frontier model, Claude Mythos, to find and address security vulnerabilities. The model will be…THEHACKERNEWS.COM
8 AprThe zero-day timeline just collapsed. Here’s what security leaders do nextA zero-day is not frightening because it is sophisticated. It is frightening because it is unknown. There is no patch in the moment it matters most. That single condition undermines the comfort most security programs rely on: time. In the past, attackers didn’t need zero-days bec…CSOONLINE.COM
8 AprUS Disrupts Russian Espionage Operation Involving Hacked Routers and DNS HijackingThe APT28 threat group exploited vulnerable TP-Link and MikroTik routers to conduct adversary-in-the-middle (AitM) attacks. The post US Disrupts Russian Espionage Operation Involving Hacked Routers and DNS Hijacking appeared first on SecurityWeek .SECURITYWEEK.COM
8 AprLLM-generated passwords are indefensible. Your codebase may already prove itTwo independent research programs, one from AI security firm Irregular, one from Kaspersky, have now converged on the same conclusion: Every frontier LLM generates structurally predictable passwords that standard entropy meters catastrophically overrate. AI coding agents are auto…CSOONLINE.COM
8 AprForest Blizzard leverages router compromises to launch AiTM attacks, target Outlook sessionsRussian threat actor Forest Blizzard has been exploiting unsecured home and small-office internet equipment, such as routers, to redirect traffic through attacker-controlled DNS servers. The group has leveraged this DNS hijacking activity to support post-compromise adversary-in-t…CSOONLINE.COM
8 AprHackers Targeting Ninja Forms Vulnerability That Exposes WordPress Sites to TakeoverThe vulnerability allows hackers to upload arbitrary files to a site’s server and achieve remote code execution. The post Hackers Targeting Ninja Forms Vulnerability That Exposes WordPress Sites to Takeover appeared first on SecurityWeek .SECURITYWEEK.COM
8 AprHackers Target Adobe Reader Users With Sophisticated Zero-Day ExploitSecurity researchers at EXPMON have uncovered a highly sophisticated, unpatched zero-day vulnerability actively targeting Adobe Reader users. The exploit, first detected in the wild late last month, allows threat actors to silently steal local files, gather sensitive system infor…GBHACKERS.COM
8 AprIran‑linked PLC attacks cause real‑world disruption at critical US infra sitesAs the US and Iran agreed to a ceasefire on Tuesday, six US federal agencies have warned that Iran-affiliated threat actors have compromised internet-exposed programmable logic controllers at critical infrastructure facilities in the US. The attacks, which the agencies linked to …CSOONLINE.COM
8 AprMassachusetts Hospital Diverts Ambulances as Cyberattack Causes DisruptionSignature Healthcare was forced to cancel some services, and pharmacies are unable to fill prescriptions due to the hacker attack. The post Massachusetts Hospital Diverts Ambulances as Cyberattack Causes Disruption appeared first on SecurityWeek .SECURITYWEEK.COM
8 AprAnthropic Launches Claude Mythos Preview Focused on Zero-Day Vulnerability DiscoveryAnthropic recently unveiled Claude Mythos Preview, a groundbreaking general-purpose language model demonstrating an unprecedented, emergent ability to autonomously discover and exploit zero-day vulnerabilities. In response to these powerful capabilities, the company introduced Pr…GBHACKERS.COM
8 AprRussian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaignsubmitted by kid to cybersecurity 1 points | 0 comments https://thehackernews.com/2026/04/russian-state-linked-apt28-exploits.htmlSH.ITJUST.WORKS
8 AprVoice Phishing is a Growing Social Engineering ThreatVoice phishing (vishing) overtook email-based phishing as a top initial intrusion vector in 2025, according to a new report from Mandiant. Notably, vishing is live and interactive, giving the attacker more control over the social engineering objectives.KNOWBE4.COM
8 AprRCE Bug Lurked in Apache ActiveMQ Classic for 13 YearsThe vulnerability requires authentication for successful exploitation, but another flaw exposes the Jolokia API without authentication. The post RCE Bug Lurked in Apache ActiveMQ Classic for 13 Years appeared first on SecurityWeek .SECURITYWEEK.COM
8 AprGrafanaGhost Exploit Bypasses AI Guardrails for Silent Data Exfiltratisubmitted by kid to cybersecurity 2 points | 0 comments https://www.infosecurity-magazine.com/news/grafanaghost-silent-data/SH.ITJUST.WORKS
8 AprDeveloper of VeraCrypt encryption software says Windows users may face boot-up issues after Microsoft locked his accountThe maker of the popular open-source file encryption software VeraCrypt said Microsoft locked his online account, which may prevent device owners from booting up their computers.TECHCRUNCH.COM
8 AprData Leakage Vulnerability Patched in OpenSSLA total of seven vulnerabilities, most of which can be exploited for DoS attacks, have been patched in OpenSSL. The post Data Leakage Vulnerability Patched in OpenSSL appeared first on SecurityWeek .SECURITYWEEK.COM
8 AprYael Nardi joins Minimus as Chief Business Officer to drive hyper-growthNew York, NY: Minimus, a provider of hardened container images and secure container images designed to reduce CVE risk, today announced the appointment of Yael Nardi as Chief Business Officer (CBO). In this newly created role, Nardi will lead the company’s next phase of operation…CSOONLINE.COM
8 AprLegit Login Flow Turned AttackDevice code phishing leverages the OAuth 2.0 device authorization grant flow, a legitimate login method designed for devices with limited input like TVs and printers. Attackers exploit the split authentication process, where users complete login on a second device. This creates a…YOUTUBE.COM
8 Apr13-year-old bug in ActiveMQ lets hackers remotely execute commandsSecurity researchers discovered a remote code execution (RCE) vulnerability in Apache ActiveMQ Classic that has gone undetected for 13 years and could be exploited to execute arbitrary commands. [...]BLEEPINGCOMPUTER.COM
8 AprHow botnet-driven DDoS attacks evolved in 2H 2025The second half of 2025 marked a pivotal shift in the world of distributed denial-of-service (DDoS) attacks . Organizations across the globe faced a perfect storm: Artificial intelligence (AI) matured as an offensive weapon, botnet infrastructure reached new heights with multiter…CSOONLINE.COM
8 AprCISA orders feds to patch exploited Ivanti EPMM flaw by SundayCISA has given U.S. government agencies four days to secure their systems against a critical-severity vulnerability in Ivanti Endpoint Manager Mobile (EPMM) that has been exploited in attacks since January. [...]BLEEPINGCOMPUTER.COM
8 AprArelion employs NETSCOUT Arbor DDoS protection productsArelion operates the world’s best-connected IP fiber backbone, providing high-capacity transit services to a variety of the globe’s leading ISPs as well as many large enterprises. They provide an award-winning customer experience to clients in 129 countries worldwide, and their g…CSOONLINE.COM
8 AprWireGuard VPN developer can’t ship software updates after Microsoft locks accountThe popular open source VPN maker is the second high-profile developer to say Microsoft locked his account without notifying him and are blocking their ability to send software updates to users.TECHCRUNCH.COM
8 AprHackers use pixel-large SVG trick to hide credit card stealerA massive campaign impacting nearly 100 online stores using the Magento e-commerce platform hides credit card-stealing code in a pixel-sized Scalable Vector Graphics (SVG) image. [...]BLEEPINGCOMPUTER.COM
8 Apr[webapps] FortiWeb 8.0.2 - Remote Code ExecutionFortiWeb 8.0.2 - Remote Code ExecutionEXPLOIT-DB.COM
8 Apr[webapps] xibocms 3.3.4 - RCExibocms 3.3.4 - RCEEXPLOIT-DB.COM
8 Apr[webapps] Horilla v1.3 - RCEHorilla v1.3 - RCEEXPLOIT-DB.COM
8 AprRisky Business #832 -- Anthropic unveils magical 0day computer GodOn this week’s show, Patrick Gray, Adam Boileau and James Wilson discuss the week’s cybersecurity news. They cover: Anthropic’s new Mythos model hunts bugs and chains exploits together so well that… you cant have it… …Unless you’re one of their Project Glasswing partners The worl…RISKY.BIZ
📋 SECURITY BULLETINS 1[−]
8 AprIBM Security Verify Access Flaws Let Remote Attackers Access Sensitive DataIBM has issued an urgent security bulletin addressing a slew of vulnerabilities impacting IBM Verify Identity Access and IBM Security Verify Access. These flaws span across critical dependencies and internal mechanisms, exposing organizations to risks ranging from remote data the…GBHACKERS.COM
📢 SECURITY ADVISORIES 11[−]
8 AprA framework for securely collecting forensic artifacts into S3 bucketsWhen customers experience a security incident, they need to acquire forensic artifacts to identify root cause, extract indicators of compromise (IoCs), and validate remediation efforts. NIST 800-86, Guide to Integrating Forensic Techniques into Incident Response, defines digital …AWS.AMAZON.COM
8 AprRussian hacking group targets home and small office routers to spy on usersThe FBI, NCSC, and Microsoft warn of an ongoing Russian campaign hijacking DNS settings on home and small office routers to spy on users.MALWAREBYTES.COM
🔥 INCIDENT REPORTING 6[−]
8 AprSnowflake customers hit in data theft attacks after SaaS integrator breachsubmitted by return2ozma to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/snowflake-customers-hit-in-data-theft-attacks-after-saas-integrator-breach/SH.ITJUST.WORKS
8 AprMy Lovely AI - 106,271 breached accountsIn April 2026, the NSFW AI girlfriend platform My Lovely AI suffered a data breach that exposed over 100k users . The data included user-created prompts and links to the resulting AI-generated images, along with a small number of Discord and X usernames.HAVEIBEENPWNED.COM
8 AprFBI Takes Down Russian Campaign That Compromised Thousands of RoutersIn a major counter-cyberespionage action dubbed “Operation Masquerade,” the U.S. Justice Department and the FBI successfully neutralized a global network of compromised small office/home office (SOHO) routers. The infrastructure was controlled by Russia’s Main Intelli…GBHACKERS.COM
8 AprZero Trust Readiness and Two RSAC 2026 Interviews from Fenix24 and Absolute Security - BSW #442Autonomous AI agents are creating a new attack surface for enterprise security teams, particularly as organizations deploy agents for operational tasks such as customer support automation, data analysis, and incident response. How can we align our Zero Trust initiatives to also a…YOUTUBE.COM
8 AprHackers steal and leak sensitive LAPD police documentsThe LAPD said the breach affected “a digital storage system” belonging to the city’s Attorney's Office. The World Leaks extortion gang was reported to be behind the attack.TECHCRUNCH.COM
8 AprThousands of consumer routers hacked by Russia's militarysubmitted by supersquirrel to cybersecurity 2 points | 0 comments https://arstechnica.com/security/2026/04/russias-military-hacks-thousands-of-consumer-routers-to-steal-credentials/SH.ITJUST.WORKS
🕵️ THREAT INTELLIGENCE 24[−]
8 AprISC Stormcast For Wednesday, April 8th, 2026 https://isc.sans.edu/podcastdetail/9884, (Wed, Apr 8th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
8 AprIran-Linked Hackers Disrupt US Critical Infrastructure via PLC AttacksFederal agencies warn attackers are manipulating PLC and SCADA systems across multiple sectors, triggering operational disruptions and raising concerns over broader OT targeting. The post Iran-Linked Hackers Disrupt US Critical Infrastructure via PLC Attacks appeared first on Sec…SECURITYWEEK.COM
8 AprComfyUI Servers Hijacked for Cryptomining, Proxy Botnet OpsHackers are aggressively hijacking Internet-exposed ComfyUI servers and converting them into high‑value cryptomining rigs and proxy botnet nodes, abusing weakly secured AI image-generation setups for long‑term monetization. More than 1,000 ComfyUI servers are currently reachable …GBHACKERS.COM
8 AprFiber Optic Cables Turned Into Hidden Microphones to Spy on Private ConversationsInternet users worldwide rely on fiber optic cables for blazing-fast and secure web connections. However, a groundbreaking discovery reveals that these very cables can be turned into covert listening devices. In a newly published 2026 cybersecurity research paper, experts demonst…GBHACKERS.COM
8 AprRussian Threat Actors Abuse Home Routers in Expanding DNS Hijacking WaveRussian military-linked hackers are actively compromising poorly secured home and small-office routers to hijack internet traffic and spy on organizations worldwide. Microsoft Threat Intelligence recently exposed this massive global campaign by a group known as Forest Blizzard, w…GBHACKERS.COM
8 AprMinimum Release Age is an Underrated Supply Chain Defensesubmitted by codeinabox to security 2 points | 0 comments https://daniakash.com/posts/simplest-supply-chain-defense/PROGRAMMING.DEV
8 AprN. Korean Hackers Spread 1,700 Malicious Packages Across npm, PyPI, Go, RustThe North Korea-linked persistent campaign known as Contagious Interview has spread its tentacles by publishing malicious packages targeting the Go, Rust, and PHP ecosystems. "The threat actor's packages were designed to impersonate legitimate developer tooling [...], w…THEHACKERNEWS.COM
8 AprPython Supply-Chain CompromiseThis is news : A malicious supply chain compromise has been identified in the Python Package Index package litellm version 1.82.8. The published wheel contains a malicious .pth file (litellm_init.pth, 34,628 bytes) which is automatically executed by the Python interpreter on ever…SCHNEIER.COM
8 AprMasjesu Botnet Targets Routers in Commercial DDoS AttacksHackers are abusing the Masjesu botnet to run high-volume DDoS-for-hire attacks against routers, gateways, and other exposed IoT infrastructure, turning everyday network hardware into commercial attack firepower. Operating quietly since early 2023 and still active in 2026, Masjes…GBHACKERS.COM
8 AprEvasive Masjesu DDoS Botnet Targets IoT DevicesFocused on persistence, the botnet does not engage in widespread infection and avoids blacklisted IPs and critical infrastructure entities. The post Evasive Masjesu DDoS Botnet Targets IoT Devices appeared first on SecurityWeek .SECURITYWEEK.COM
8 AprEvilTokens Uses Stolen Microsoft 365 Tokens, AI to Supercharge BECEvilTokens is a new Phishing-as-a-Service (PhaaS) platform that turns stolen Microsoft 365 tokens and AI into an end‑to‑end factory for Business Email Compromise (BEC) at scale. By combining device-code phishing, custom tooling, and large language models, it enables low- to mid-s…GBHACKERS.COM
8 AprAnthropic Unveils ‘Claude Mythos’ – A Cybersecurity Breakthrough That Could Also Supercharge Attackssubmitted by kid to cybersecurity 2 points | 0 comments https://www.securityweek.com/anthropic-unveils-claude-mythos-a-cybersecurity-breakthrough-that-could-also-supercharge-attacks/SH.ITJUST.WORKS
8 AprWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
8 AprFBI: Cybercrime Losses Neared $21 Billion in 2025The FBI received over 1 million complaints of malicious activity in 2025, with investment, BEC, and tech support scams causing the highest losses. The post FBI: Cybercrime Losses Neared $21 Billion in 2025 appeared first on SecurityWeek .SECURITYWEEK.COM
8 AprMajor outage cripples Russian banking apps and metro payments nationwidesubmitted by kid to cybersecurity 1 points | 0 comments https://securityaffairs.com/190464/security/major-outage-cripples-russian-banking-apps-and-metro-payments-nationwide.htmlSH.ITJUST.WORKS
8 AprLLMs vs Machine Learning for SecurityMachine learning and large language models serve different roles in cybersecurity. ML excels at analyzing large datasets and detecting anomalies, while LLMs may produce unreliable or hallucinated results in that context. Misapplying AI tools can introduce risk instead of reducing…YOUTUBE.COM
8 AprAPT28 Deploys PRISMEX Malware in Campaign Targeting Ukraine and NATO AlliesThe Russian threat actor known as APT28 (aka Forest Blizzard and Pawn Storm) has been linked to a fresh spear-phishing campaign targeting Ukraine and its allies to deploy a previously undocumented malware suite codenamed PRISMEX. "PRISMEX combines advanced steganography…THEHACKERNEWS.COM
8 Apr6 Winter 2026 G2 Leader Badges prove this DDoS protection stands outNETSCOUT’s Arbor Threat Mitigation System (TMS) was honored with five badges, while Arbor Sightline earned one badge on G2 for the winter 2026 quarter. These badges span multiple categories. Arbor TMS was awarded badges in the following categories for winter 2026: Leader – Enterp…CSOONLINE.COM
8 AprVeraCrypt lockdownsubmitted by Alb to cybersecurity 1 points | 0 comments https://techcrunch.com/2026/04/08/veracrypt-encryption-software-windows-microsoft-lock-boot-issues/ Encryption : Windows users of VeraCrypt may face boot-up issues after Microsoft locked founder’s account. https://techcrunch…SH.ITJUST.WORKS
8 AprDon’t Know Your Data? ProblemKnowing where sensitive data resides—such as PII (personally identifiable information) and CUI—is a foundational requirement for security, especially when preparing for AI adoption. Without data visibility, organizations can’t apply the right controls. AI systems may access or pr…YOUTUBE.COM
8 AprGoogle: New UNC6783 hackers steal corporate Zendesk support ticketsA threat actor tracked as UNC6783 is compromising business process outsourcing (BPO) providers to gain access to high-value companies across multiple sectors. [...]BLEEPINGCOMPUTER.COM
8 AprAnnouncing ADEM Universal AgentThe ADEM Universal Agent for Prisma Access unifies network data across branch sites to fuel agentic autonomous operations. Get full-stack visibility. The post Announcing ADEM Universal Agent appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
8 AprUnderstanding and Anticipating Venezuelan Government ActionsExplore an in-depth analysis of Venezuela’s political landscape following the January 2026 US operation to capture Nicolás Maduro. This executive summary examines Acting President Delcy Rodríguez’s transition strategy, her pragmatic re-engagement with Washington, and the internal…RECORDEDFUTURE.COM
8 AprBuilding Phishing Detection That Works: 3 Steps for CISOs90% of attacks start with phishing. For CISOs, the real pain begins when the SOC cannot quickly tell whether a suspicious alert is just noise or the start of credential theft, account compromise, malware delivery, or wider business disruption.  …ANY.RUN
🌐 CYBER THREAT LANDSCAPE 6[−]
8 AprIran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCsIran-affiliated cyber actors are targeting internet-facing operational technology (OT) devices across critical infrastructures in the U.S., including programmable logic controllers (PLCs), cybersecurity and intelligence agencies warned Tuesday. "These attacks have led t…THEHACKERNEWS.COM
8 AprMasjesu Botnet Emerges as DDoS-for-Hire Service Targeting Global IoT DevicesCybersecurity researchers have lifted the curtain on a stealthy botnet that's designed for distributed denial-of-service (DDoS) attacks. Called Masjesu, the botnet has been advertised via Telegram as a DDoS-for-hire service since it first surfaced in 2023. It's capable of ta…THEHACKERNEWS.COM
8 AprNew Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS ProxyCybersecurity researchers have flagged a new variant ofmalware called Chaosthat'scapable of hitting misconfigured cloud deployments, marking an expansion of the botnet's targeting infrastructure. "Chaos malware is increasingly targeting misconfigured cloud deployme…THEHACKERNEWS.COM
8 AprNew macOS stealer campaign uses Script Editor in ClickFix attackA new campaign delivering the Atomic Stealer malware to macOS users abuses the Script Editor in a variation of the ClickFix attack that tricked users into executing commands in Terminal. [...]BLEEPINGCOMPUTER.COM
8 AprHack-for-hire group caught targeting Android devices and iCloud backupsSecurity researchers exposed a spying campaign by a hack-for-hire group that used Android spyware and phishing to steal iCloud credentials and hack victims’ devices.TECHCRUNCH.COM
8 AprFinancial cyberthreats in 2025 and the outlook for 2026In this report, Kaspersky experts share their insights into the 2025 financial threat landscape, including regional statistics and trends in phishing, PC malware, and infostealers.SECURELIST.COM
🎙️ PODCASTS 1[−]
8 AprSmashing Security podcast #462: LinkedIn is spying on you, and you agreed to nothingLinkedIn has been secretly scanning your browser for over 6,000 installed extensions — on every single click you make. It can tell if you're job hunting, what religion you are, and whether you have ADHD. And none of this is mentioned anywhere in their privacy policy. Meanwhile, C…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 12[−]
8 AprWeekly Threat Bulletin – April 8th, 2026These are the top threats you should know about this week.F5.COM
8 AprMicrosoft rolls out fix for broken Windows Start Menu searchMicrosoft has pushed a server-side fix for a known issue that broke the Windows Start Menu search feature on some Windows 11 23H2 devices. [...]BLEEPINGCOMPUTER.COM
8 AprShrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP)The Fragmented State of Modern Enterprise Identity Enterprise IAM is approaching a breaking point. As organizations scale, identity becomes increasingly fragmented across thousands of applications, decentralized teams, machine identities, and autonomous systems.&nb…THEHACKERNEWS.COM
8 AprIs a $30,000 GPU Good at Password Cracking?A $30,000 AI GPU doesn't outperform consumer GPUs at password cracking. Specops explains why attackers don't need exotic hardware to break weak passwords. [...]BLEEPINGCOMPUTER.COM
8 AprFinal 3 days to save up to $500 on your TechCrunch Disrupt 2026 passSave up to $500 on your TechCrunch Disrupt 2026 pass until April 10, 11:59 p.m. PT. Secure your spot at the center of the tech ecosystem. Register here.TECHCRUNCH.COM
8 AprMore Honeypot Fingerprinting Scans, (Wed, Apr 8th)One question that often comes up when I talk about honeypots: Are attackers able to figure out if they are connected to a honeypot? The answer is pretty simple: Yes! ISC.SANS.EDU
8 AprHardening security management console settings | Kaspersky official blogA complete checklist for strengthening security in the Kaspersky Security Center console.KASPERSKY.COM
8 Apr[local] 7-Zip 24.00 - Directory Traversal7-Zip 24.00 - Directory TraversalEXPLOIT-DB.COM
8 Apr[local] SQLite 3.50.1 - Heap OverflowSQLite 3.50.1 - Heap OverflowEXPLOIT-DB.COM
8 Apr[local] Microsoft MMC MSC EvilTwin - Local Admin CreationMicrosoft MMC MSC EvilTwin - Local Admin CreationEXPLOIT-DB.COM
8 AprYour extensions leak clues about you, so we made sure Browser Guard doesn’tYour browser extensions can be used to build a profile of you for advertisers and scammers. We're making sure our Browser Guard extension stays private.MALWAREBYTES.COM
8 AprTimeshare owners warned to watch out for cartel-linked scamsAuthorities warn that Mexican drug cartels are targeting timeshare owners with advance-fee fraud. Here’s what to watch for.MALWAREBYTES.COM