matlock.ca // THREAT INTELLIGENCE

109Articles

9Categories

2026-04-09Date

🚨

Patch windows collapse as time-to-exploit acceleratesThe gap between vulnerability disclosure and exploitation is drastically decreasing, putting security teams’ patching practices on notice. According to Rapid7’s latest Cyber Threat Landscape Report , confirmed exploitation of newly disclosed high- and critical-severity vulnerabil…

KEVCSOONLINE.COM — 09 Apr 2026

🚨

What to Know About CyberAv3ngers: The IRGC-Linked Group Targeting Critical InfrastructureAn Iran-affiliated threat group has evolved from defacing water utility displays to deploying custom ICS malware and exploiting Rockwell Automation PLCs across multiple U.S. critical infrastructure sectors. Key takeaways: CyberAv3ngers is a state-directed threat group operating u…

KEVTENABLE.COM — 09 Apr 2026

🐛

Fortinet EMS Zero-Day, Anthropic's AI Finds Thousands of Bugs, Iranian Hackers Target US ICS

KEVCYBERSECURITYTODAY.LIBSYN.COM — 09 Apr 2026

🐛

Palo Alto Cortex XSOAR Flaw in Microsoft Teams Integration Lets Attackers Access Data

GBHACKERS.COM — 09 Apr 2026

🐛

CVE-2026-34933 Avahi: Reachable assertion in `transport_flags_from_domain()` via conflicting publish flags crashes avahi-daemon

MSRC.MICROSOFT.COM — 09 Apr 2026

🐛

CVE-2026-39314 CUPS has an integer underflow in `_ppdCreateFromIPP` causes root cupsd crash via negative `job-password-supported`

MSRC.MICROSOFT.COM — 09 Apr 2026

🐛

CVE-2026-31789 Heap Buffer Overflow in Hexadecimal Conversion

MSRC.MICROSOFT.COM — 09 Apr 2026

🐛

CVE-2026-28387 Potential Use-after-free in DANE Client Code

MSRC.MICROSOFT.COM — 09 Apr 2026

🐛

CVE-2026-31790 Incorrect Failure Handling in RSA KEM RSASVE Encapsulation

MSRC.MICROSOFT.COM — 09 Apr 2026

🐛

CVE-2026-28388 NULL Pointer Dereference When Processing a Delta CRL

MSRC.MICROSOFT.COM — 09 Apr 2026

🐛

CVE-2026-34446 ONNX: Arbitrary File Read via ExternalData Hardlink Bypass in ONNX load

MSRC.MICROSOFT.COM — 09 Apr 2026

🐛

CVE-2026-39316 CUPS has a use-after-free in `cupsdDeleteTemporaryPrinters` via dangling subscription pointer

MSRC.MICROSOFT.COM — 09 Apr 2026

🐛

CVE-2026-35093 Libinput: libinput: unauthorized code execution and information disclosure through lua bytecode plugins

MSRC.MICROSOFT.COM — 09 Apr 2026

🐛

CVE-2026-34445 ONNX: Malicious ONNX models can crash servers by exploiting unprotected object settings.

MSRC.MICROSOFT.COM — 09 Apr 2026

🐛

CISA Issues Warning on Critical Ivanti EPMM Flaw Exploited in Ongoing Attacks

KEVGBHACKERS.COM — 09 Apr 2026

🐛

Technical Details Released for Critical Cisco SSM Command Execution Vulnerability

GBHACKERS.COM — 09 Apr 2026

🐛

Vulnerability-Lookup 4.4.0

KEVINFOSEC.PUB — 9 Apr 2026

🐛

Hackers have been exploiting an unpatched Adobe Reader vulnerability for months

KEVCSOONLINE.COM — 09 Apr 2026

🐛

VU#536588: Multiple Heap Buffer Overflows in Orthanc DICOM Server

KB.CERT.ORG — 2026-04-09

⚠️

Questions raised about how LinkedIn uses the petabytes of data it collects

CSOONLINE.COM — 09 Apr 2026

⚠️

GitLab Addresses Multiple Vulnerabilities Linked to DoS and Code Injection

GBHACKERS.COM — 09 Apr 2026

⚠️

Multiple SonicWall Flaws Enable SQL Injection and Privilege Escalation Attacks

GBHACKERS.COM — 09 Apr 2026

⚠️

Microsoft suspends dev accounts for high-profile open source projects

BLEEPINGCOMPUTER.COM — 09 Apr 2026

⚠️

Linux Foundation Leader Impersonated in Slack Attack on Open Source Developers

GBHACKERS.COM — 09 Apr 2026

⚠️

Adobe Reader Zero-Day Exploited for Months: Researcher

SECURITYWEEK.COM — 09 Apr 2026

⚠️

Weak at the seams

CSOONLINE.COM — 09 Apr 2026

⚠️

Hackers exploiting Acrobat Reader zero-day flaw since December

BLEEPINGCOMPUTER.COM — 09 Apr 2026

⚠️

Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025

THEHACKERNEWS.COM — 09 Apr 2026

⚠️

Critical Vulnerability in Ninja Forms Exposes WordPress Sites - Infosecurity Magazine

SH.ITJUST.WORKS — 9 Apr 2026

⚠️

Palo Alto Networks, SonicWall Patch High-Severity Vulnerabilities

SECURITYWEEK.COM — 09 Apr 2026

⚠️

New ClickFix variant bypasses Apple safeguards with one‑click script execution

CSOONLINE.COM — 09 Apr 2026

⚠️

New Phishing Campaign Exploits Google Storage to Deliver Remcos RAT

GBHACKERS.COM — 09 Apr 2026

⚠️

Attackers Deploy Hidden Magecart Skimmer on Magento Using SVG onload Abuse

GBHACKERS.COM — 09 Apr 2026

⚠️

Hackers Actively Attacking Adobe Reader Users Using Sophisticated 0-Day Exploit

SH.ITJUST.WORKS — 9 Apr 2026

⚠️

ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories

THEHACKERNEWS.COM — 09 Apr 2026

⚠️

Intent redirection vulnerability in third-party SDK exposed millions of Android wallets to potential risk

MICROSOFT.COM — 09 Apr 2026

⚠️

Microsoft BANNED WireGuard, VeraCrypt & Windscribe With Zero Warning

INFOSEC.PUB — 9 Apr 2026

⚠️

Cloudflare ‘actively adjusting’ quantum priorities in wake of Google warning

CSOONLINE.COM — 09 Apr 2026

⚠️

EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallets

THEHACKERNEWS.COM — 09 Apr 2026

⚠️

Healthcare IT solutions provider ChipSoft hit by ransomware attack

BLEEPINGCOMPUTER.COM — 09 Apr 2026

⚠️

AI Makes All Bug Shallow? - PSW #921

YOUTUBE.COM — 2026-04-09

⚠️

U.S. Public Sector Under Siege: Threat Intelligence for Q1 2026

TRENDMICRO.COM — 09 Apr 2026

⚠️

[webapps] React Server 19.2.0 - Remote Code Execution

EXPLOIT-DB.COM — 09 Apr 2026

⚠️

[webapps] Jumbo Website Manager - Remote Code Execution

EXPLOIT-DB.COM — 09 Apr 2026

⚠️

[local] ZSH 5.9 - RCE

EXPLOIT-DB.COM — 09 Apr 2026

⚠️

Master C and C++ with our new Testing Handbook chapter

TRAILOFBITS.COM — 09 Apr 2026

📋

Critical Chrome Flaws Let Attackers Execute Arbitrary Code

GBHACKERS.COM — 09 Apr 2026

📋

AI Can Catch Malicious Updates

YOUTUBE.COM — 2026-04-09

📢

Microsoft Details How Defender Protects High-Value Assets in Real-World Attacks

GBHACKERS.COM — 09 Apr 2026

📢

The Hidden ROI of Visibility: Better Decisions, Better Behavior, Better Security

SECURITYWEEK.COM — 09 Apr 2026

📢

STX RAT Hides Remote Desktop, Steals Data to Dodge Detection

GBHACKERS.COM — 09 Apr 2026

📢

Juniper Networks security advisory (AV26-334)

CYBER.GC.CA — 2026-04-09

📢

HPE security advisory (AV26-333)

CYBER.GC.CA — 2026-04-09

📢

Qualcomm security advisory – April 2026 monthly rollup (AV26-335)

CYBER.GC.CA — 2026-04-09

📢

Tenable security advisory (AV26-336)

CYBER.GC.CA — 2026-04-09

📢

Elastic on Defence Cyber Marvel 2026: A Technical overview from the Exercise Floor

ELASTIC.CO — 09 Apr 2026

🔥

Shaky Ceasefire Unlikely to Stop Cyberattacks From Iran-Linked Hackers for Long

SECURITYWEEK.COM — 09 Apr 2026

🔥

Microsoft Confirms Windows 11 Update Breaks Start Menu Search

GBHACKERS.COM — 09 Apr 2026

🔥

Hackers steal $3.6 million from crypto ATM giant Bitcoin Depot

BLEEPINGCOMPUTER.COM — 09 Apr 2026

🔥

300,000 People Impacted by Eurail Data Breach

SECURITYWEEK.COM — 09 Apr 2026

🔥

China’s Tianjin Supercomputer Center Allegedly Hit in 10-Petabyte Data Theft

GBHACKERS.COM — 09 Apr 2026

🔥

Fake Security Tool Spreads LucidRook in Taiwan Cyberattacks

GBHACKERS.COM — 09 Apr 2026

🔥

Eurail says December data breach impacts 300,000 individuals

BLEEPINGCOMPUTER.COM — 09 Apr 2026

🔥

Google API Keys in Android Apps Expose Gemini Endpoints to Unauthorized Access

SECURITYWEEK.COM — 09 Apr 2026

🔥

Apple Intelligence AI Guardrails Bypassed in New Attack

SECURITYWEEK.COM — 09 Apr 2026

🔥

Investigating Storm-2755: “Payroll pirate” attacks targeting Canadian employees

MICROSOFT.COM — 09 Apr 2026

🔥

Eurail says December data breach impacts 300,000 individuals

SH.ITJUST.WORKS — 9 Apr 2026

🔥

Protecting Cookies with Device Bound Session Credentials

SECURITY.GOOGLEBLOG.COM — 2026-04-09

🔥

CASI Leaderboard Shifts: Developer Role Attack, and Three Concerning Incidents

F5.COM — 09 Apr 2026

🕵️

ISC Stormcast For Thursday, April 9th, 2026 https://isc.sans.edu/podcastdetail/9886, (Thu, Apr 9th)

ISC.SANS.EDU — 09 Apr 2026

🕵️

Meta Business Alerts Abused for Phishing Campaigns

GBHACKERS.COM — 09 Apr 2026

🕵️

Silver Fox Campaign Spreads ValleyRAT via Fake Chinese Telegram Language Pack

GBHACKERS.COM — 09 Apr 2026

🕵️

$3.6 Million Stolen in Bitcoin Depot Hack

SECURITYWEEK.COM — 09 Apr 2026

🕵️

RoningLoader Campaign Uses DLL Side-Loading, Code Injection to Slip Past Defenses

GBHACKERS.COM — 09 Apr 2026

🕵️

Package Security Problems for AI Agents

PROGRAMMING.DEV — 9 Apr 2026

🕵️

LinkedIn Hidden Code Secretly Searches Your Browser for Installed Extensions

SH.ITJUST.WORKS — 9 Apr 2026

🕵️

Google Warns of New Campaign Targeting BPOs to Steal Corporate Data

SECURITYWEEK.COM — 09 Apr 2026

🕵️

On Microsoft’s Lousy Cloud Security

SCHNEIER.COM — 2026-04-09

🕵️

ClickFix Campaign Abuses macOS Script Editor to Deploy Atomic Stealer

GBHACKERS.COM — 09 Apr 2026

🕵️

Iran Disrupts US Critical Infrastructure Via Exposed PLCs

SH.ITJUST.WORKS — 9 Apr 2026

🕵️

Bitter-Linked Hack-for-Hire Campaign Targets Journalists Across MENA Region

THEHACKERNEWS.COM — 09 Apr 2026

🕵️

13-year-old bug in ActiveMQ lets hackers remotely execute commands

SH.ITJUST.WORKS — 9 Apr 2026

🕵️

Webinar: From noise to signal - What threat actors are targeting next

BLEEPINGCOMPUTER.COM — 09 Apr 2026

🕵️

FBI: Cybercrime Losses Neared $21 Billion in 2025 - SecurityWeek

SH.ITJUST.WORKS — 9 Apr 2026

🕵️

Phishing Campaign Impersonates Palo Alto Networks Recruiters

KNOWBE4.COM — 09 Apr 2026

🕵️

Can we Trust AI? No – But Eventually We Must

SECURITYWEEK.COM — 09 Apr 2026

🕵️

ClickFix, Malicious DMGs Push notnullOSX to macOS Users

GBHACKERS.COM — 09 Apr 2026

🕵️

AI Phishing Attack Prevention Strategies: How AI Identifies and Limits Human Risk

KNOWBE4.COM — 09 Apr 2026

🕵️

U.S. Treasury to loop in crypto sector on hacker warnings shared with traditional firms

SH.ITJUST.WORKS — 9 Apr 2026

🕵️

The agentic SOC—Rethinking SecOps for the next decade

MICROSOFT.COM — 09 Apr 2026

🕵️

New VENOM phishing attacks steal senior executives' Microsoft logins

BLEEPINGCOMPUTER.COM — 09 Apr 2026

🕵️

The long road to your crypto: ClipBanker and its marathon infection chain

SECURELIST.COM — 09 Apr 2026

🕵️

How Phishing Is Targeting Germany’s Economy: Active Threats from Finance to Manufacturing

ANY.RUN — 09 Apr 2026

🌐

Smart Slider updates hijacked to push malicious WordPress, Joomla versions

BLEEPINGCOMPUTER.COM — 09 Apr 2026

🌐

UAT-10362 Targets Taiwanese NGOs with LucidRook Malware in Spear-Phishing Campaigns

THEHACKERNEWS.COM — 09 Apr 2026

🌐

Google Chrome adds infostealer protection against session cookie theft

BLEEPINGCOMPUTER.COM — 09 Apr 2026

🌐

New ‘LucidRook’ malware used in targeted attacks on NGOs, universities

BLEEPINGCOMPUTER.COM — 09 Apr 2026

🌐

This fake Windows support website delivers password-stealing malware

MALWAREBYTES.COM — 09 Apr 2026

📡

Number Usage in Passwords: Take Two, (Thu, Apr 9th)

ISC.SANS.EDU — 09 Apr 2026

📡

The Hidden Security Risks of Shadow AI in Enterprises

THEHACKERNEWS.COM — 09 Apr 2026

📡

Fake BTS ARIRANG tour tickets: K-pop fans being targeted by scammers | Kaspersky official blog

KASPERSKY.COM — 09 Apr 2026

📡

When attackers already have the keys, MFA is just another door to open

BLEEPINGCOMPUTER.COM — 09 Apr 2026

📡

Hacker stole £700,000 from U.K. energy company by redirecting payment

TECHCRUNCH.COM — 09 Apr 2026

📡

Tearing down a car telematic unit (and finding an accident on Facebook)

QUARKSLAB.COM — 2026-04-09

📡

Third-Party Risk Is an Intelligence Operation. It's Time We Treated It Like One.

RECORDEDFUTURE.COM — 09 Apr 2026

📡

[webapps] RomM 4.4.0 - XSS_CSRF Chain

EXPLOIT-DB.COM — 09 Apr 2026

📡

Scammers pose as Amazon support to steal your account

MALWAREBYTES.COM — 09 Apr 2026

📡

NSFW app leak exposes 70,000 prompts linked to individual users

MALWAREBYTES.COM — 09 Apr 2026

📡

30,000 private Facebook images allegedly downloaded by Meta employee

MALWAREBYTES.COM — 09 Apr 2026