92Articles
8Categories
2026-04-13Date
🚨 CISA KEV 1[−]
13 Apr KEVCISA Adds Seven Known Exploited Vulnerabilities to CatalogCISA has added seven new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2012-1854 Microsoft Visual Basic for Applications Insecure Library Loading Vulnerability CVE-2020-9715 Adobe Acrobat Use-After-Free Vulner…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 7[−]
13 Apr KEVAdobe Fixes Actively Exploited Zero-Day in Acrobat ReaderAdobe has released an emergency security update to address a critical zero-day vulnerability in Acrobat and Reader for Windows and macOS. According to Adobe’s APSB26-43 bulletin, the flaw is currently being exploited in the wild, prompting a Priority 1 rating from the compa…GBHACKERS.COM
13 AprWordPress Plugin Vulnerability Enables Admin Takeover via Auth BypassA newly disclosed vulnerability, tracked as CVE-2026-1492, has been identified in the User Registration & Membership plugin for WordPress, exposing websites to critical authentication bypass and privilege escalation risks. Affecting versions up to 5.1.2, the vulnerability all…GBHACKERS.COM
13 Apr KEVMarimo RCE Vulnerability Exploited Within 10 Hours of Public DisclosureA critical remote code execution (RCE) vulnerability in the open-source Python notebook platform Marimo was actively exploited less than 10 hours after its public disclosure. The flaw, initially tracked as GHSA-2679-6mx9-h9xc and later assigned CVE-2026-39987, carries a critical …GBHACKERS.COM
13 AprCritical Axios Vulnerability Enables Remote Code Execution, PoC ReleasedA critical security vulnerability has been discovered in Axios, one of the most widely used HTTP client libraries, exposing applications to Remote Code Execution (RCE) and full cloud infrastructure compromise. Tracked as CVE-2026-40175, this flaw carries a critical CVSS 3.1 score…GBHACKERS.COM
13 AprSeven IBM WebSphere Liberty flaws can be chained into full takeoverSecurity researchers are warning of a set of flaws affecting IBM WebSphere Liberty, a lightweight, modular Java application server, that can be chained into a full server compromise. The flaws, a total of seven, that led to the ultimate compromise of the server were initiated by …CSOONLINE.COM
13 Apr KEVCritical flaw in Marimo Python notebook exploited within 10 hours of disclosureA critical pre-authentication remote code execution vulnerability in Marimo, an open-source Python notebook platform owned by AI cloud company CoreWeave, was exploited in the wild less than 10 hours after its public disclosure, according to the Sysdig Threat Research Team. The vu…CSOONLINE.COM
13 AprAdobe rolls out emergency fix for Acrobat, Reader zero-day flawAdobe has released an emergency security update for Acrobat Reader to fix a vulnerability, tracked as CVE-2026-34621, that has been exploited in zero-day attacks since at least December. [...]BLEEPINGCOMPUTER.COM
⚠️ VULNERABILITY DISCLOSURE 24[−]
13 AprBanks Panic As Anthropic Mythos Exposes Software VulnerabiltiesMythos Sparks Urgent Bank Meetings, AI Shrinks Exploit Windows, CEO Phishing Beats MFA + Crypto Fraud Bust Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one…CYBERSECURITYTODAY.LIBSYN.COM
13 AprApache Tomcat Flaws Enable EncryptInterceptor BypassThe Apache Software Foundation has released critical security updates for Apache Tomcat to address three newly disclosed vulnerabilities. Because Apache Tomcat is a widely deployed open-source web server, these flaws pose a significant risk to many enterprise environments. The ne…GBHACKERS.COM
13 AprCISOs tackle the AI visibility gapDale Hoak found himself asking a question that has become familiar to CISOs through the decades: What am I missing? More specifically, Hoak , CISO at software firm RegScale, was wondering what he might be missing around his company’s AI deployments. “The business was moving so fa…CSOONLINE.COM
13 AprWe catch up on the news, including AI vuln hunting; also more RSAC interviews! - ESW #454Segment 1: We cover the weekly enterprise news! Segment 2: RSAC interviews from ArmorCode and Filigran ArmorCode: AI Exposure Management and Governing Shadow AI AI is moving faster than most governance models can keep up. As organizations race to adopt new AI tools, developer wor…YOUTUBE.COM
13 AprAI Chatbots and TrustAll the leading AI chatbots are sycophantic, and that’s a problem : Participants rated sycophantic AI responses as more trustworthy than balanced ones. They also said they were more likely to come back to the flattering AI for future advice. And critically ­ they couldnR…SCHNEIER.COM
13 AprInternational Operation Targets Multimillion-Dollar Crypto Theft SchemesLaw enforcement in the US, UK and Canada identified more than $45 million in cryptocurrency and froze $12 million. The post International Operation Targets Multimillion-Dollar Crypto Theft Schemes appeared first on SecurityWeek .SECURITYWEEK.COM
13 AprHackers Exploit MSBuild LOLBin to Evade Detection in Fileless Windows AttacksCyber attackers are increasingly using Living Off the Land Binaries (LOLBins) to bypass security detection. By leveraging legitimate system tools, these attacks avoid signature-based defenses and operate without dropping traditional malware files. One such LOLBin now gaining atte…GBHACKERS.COM
13 AprCritical Marimo pre-auth RCE flaw now under active exploitationsubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/critical-marimo-pre-auth-rce-flaw-now-under-active-exploitation/SH.ITJUST.WORKS
13 AprYour MTTD Looks Great. Your Post-Alert Gap Doesn'tAnthropic restricted its Mythos Preview model last week after it autonomously found and exploited zero-day vulnerabilities in every major operating system and browser. Palo Alto Networks' Wendi Whitmorewarned that similar capabilities are weeks or months from proliferat…THEHACKERNEWS.COM
13 Apr⚡ Weekly Recap: Fiber Optic Spying, Windows Rootkit, AI Vulnerability Hunting and MoreMonday is back, and the weekend’s backlog of chaos is officially hitting the fan. We are tracking a critical zero-day that has been quietly living in your PDFs for months, plus some aggressive state-sponsored meddling in infrastructure that is finally coming to light. I…THEHACKERNEWS.COM
13 AprToo Many Vulnerabilities to FixOrganizations struggle to apply patches because uptime is prioritized, and remediation is disruptive. Vulnerability management teams often can’t get fixes deployed. An overload of vulnerabilities doesn’t improve security—it creates paralysis. Teams lose the ability to prioritize,…YOUTUBE.COM
13 AprFrom Compliance to Code: Rethinking Cloud Security - Richard Marcus - CSP #223Jess talks with Rich about what it takes to secure a cloud-first organization at scale. Rich explains how compliance as code helps teams build secure-by-default environments in AWS and Azure. He also shares why continuous monitoring gives organizations stronger visibility and a m…YOUTUBE.COM
13 AprOn Anthropic’s Mythos Preview and Project GlasswingThe cybersecurity industry is obsessing over Anthropic’s new model, Claude Mythos Preview, and its effects on cybersecurity. Anthropic said that it is not releasing it to the general public because of its cyberattack capabilities, and has launched Project Glasswing to run t…SCHNEIER.COM
13 AprAnthropic's Mythos Preview: Why the Human Layer Matters More, Not LessThe human layer is not impacted by Anthropic's Mythos Preview announcement. If anything, it is reinforced, and for reasons that deserve to be spelled out clearly.KNOWBE4.COM
13 AprAnthropic’s Mythos signals a structural cybersecurity shiftOver the past week, reaction to Anthropic’s Glasswing disclosure has split along familiar lines. At one end: alarm over an AI system capable of autonomously identifying and exploiting vulnerabilities. At the other: dismissive hot takes, arguing there is nothing new here. A more g…CSOONLINE.COM
13 AprMarch 2026 CVE Landscape: 31 High-Impact Vulnerabilities Identified, Interlock Ransomware Group Exploits Cisco FMC Zero-DayMarch 2026 saw a 139% increase in high-impact vulnerabilities, with Recorded Future's Insikt Group® identifying 31 vulnerabilities requiring immediate remediation, up from 13 in February 2026.RECORDEDFUTURE.COM
13 Apr KEVSimply opening a PDF could trigger this Adobe Reader zero-dayEven though it’s patched, Adobe confirmed it was exploited in the wild, so updating is urgent, not optional.MALWAREBYTES.COM
13 AprCitizen Lab: Webloc tracked 500M devices for global law enforcementCitizen Lab reported that law enforcement used the surveillance tool Webloc to track up to 500M devices via ad data globally. A report by Citizen Lab revealed that law enforcement agencies in the U.S., Hungary, and El Salvador used a surveillance tool called Webloc to track devic…SECURITYAFFAIRS.COM
13 AprGrafanaGhost: The AI That Leaked Everything Without Being HackedA newly disclosed vulnerability reveals how AI assistants can become invisible channels for data exfiltration — and why security enforcement must shift to the data layer. The post GrafanaGhost: The AI That Leaked Everything Without Being Hacked appeared first on TechRepublic .TECHREPUBLIC.COM
13 AprGet Secure Cloud Storage on a 2TB Lifetime Plan with Internxt for $100This secure storage platform uses open source code, zero-knowledge file systems, and end-to-end encryption to keep your online data truly private. The post Get Secure Cloud Storage on a 2TB Lifetime Plan with Internxt for $100 appeared first on TechRepublic .TECHREPUBLIC.COM
13 AprRockstar Games confirms data breach as ShinyHunters leaks 78 million recordsRockstar Games has confirmed that it suffered a data breach incident that exposed internal analytics data. Earlier today, the ShinyHunters threat group leaked the data online, claiming access to Snowflake-hosted datasets tied to the company’s online services. The incident first s…CYBERINSIDER.COM
13 AprBooking.com data breach exposed users’ reservation detailsBooking.com has notified customers of a security incident involving unauthorized access to reservation data, warning that personal and booking-related information may have been exposed. The company says it has taken steps to contain the issue, but has not disclosed how many users…CYBERINSIDER.COM
13 AprStandard fiber optic cables can be turned into remote microphonesResearchers have demonstrated that standard fiber-optic internet cables can be covertly repurposed into highly sensitive listening devices, capable of capturing speech and tracking human activity inside buildings. The study shows that, under realistic conditions, attackers could …CYBERINSIDER.COM
13 AprHallmark data breach exposed information of 1.7 million accountsA newly surfaced dataset tied to Hallmark has been added to the Have I Been Pwned (HIBP) breach notification service. The leaked data exposed the personal information of approximately 1.7 million users following an alleged March 2026 intrusion, claimed by the ShinyHunters extorti…CYBERINSIDER.COM
📢 SECURITY ADVISORIES 7[−]
13 AprGoogle Brings End-to-End Encrypted Gmail to Android and iPhoneGoogle has officially expanded Gmail’s end-to-end encryption (E2EE) feature to Android and iOS devices, empowering organizations and users to protect the confidentiality of email content directly from their mobile devices. This enhancement is part of Gmail’s client-side encryptio…GBHACKERS.COM
13 AprNew Nginx 1.29.8 and FreeNginx Versions Patch Critical Security FlawsWeb server administrators need to prioritize a crucial update this week. The developers behind Nginx and the community-driven FreeNginx project have released new versions to address critical security flaws and introduce key enhancements. Released on April 7, 2026, Nginx version 1…GBHACKERS.COM
🔥 INCIDENT REPORTING 15[−]
13 AprEDR Killers Broaden Ransomware Tactics, ESET WarnsRansomware gangs are rapidly expanding their use of EDR killers, moving beyond vulnerable drivers to a broader mix of scripts, anti‑rootkits, and driverless techniques. The company’s latest telemetry-backed study tracks almost 90 distinct EDR killers actively used in the wild. It…GBHACKERS.COM
13 AprAPT37 Uses Facebook, Telegram, and Trojanzied Installer in New Targeted CyberattackAPT37 is running a new targeted intrusion campaign that abuses Facebook, Telegram, and a tampered Wondershare PDFelement installer to gain stealthy access and exfiltrate sensitive data, likely from defense‑related targets. The operation shows a continued evolution of APT37’s soci…GBHACKERS.COM
13 AprOpenAI Revokes macOS App Certificate After Malicious Axios Supply Chain IncidentOpenAI revealed a GitHub Actions workflow used to sign its macOS apps, which downloaded the malicious Axios library on March 31, but noted that no user data or internal system was compromised. "Out of an abundance of caution, we are taking steps to protect the proc…THEHACKERNEWS.COM
13 AprBasic-Fit Suffers Data Breach Affecting Millions Across Multiple NationsEuropean fitness operator Basic-Fit has confirmed a significant data breach affecting approximately one million members across its network. The incident heavily impacted users in the Netherlands, which accounted for 200,000 of the compromised accounts. This breach underscores the…GBHACKERS.COM
13 AprCPUID Hacked to Serve Trojanized CPU-Z and HWMonitor DownloadsDownload links were replaced by a Russian-speaking threat actor to distribute a recently emerged malware named STX RAT. The post CPUID Hacked to Serve Trojanized CPU-Z and HWMonitor Downloads appeared first on SecurityWeek .SECURITYWEEK.COM
13 AprHow to protect your privacy while using smart sex toys | Kaspersky official blogWe explore the risks of smart sex toys — from data breaches and tracking to vulnerabilities — and offer practical tips to keep your intimate life both private and secure.KASPERSKY.COM
13 AprNearly 4,000 US industrial devices exposed to Iranian cyberattackssubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/nearly-4-000-us-industrial-devices-exposed-to-iranian-cyberattacks/SH.ITJUST.WORKS
13 AprOpenAI Impacted by North Korea-Linked Axios Supply Chain HackThe AI giant is taking action after determining that a macOS code signing certificate may have been compromised. The post OpenAI Impacted by North Korea-Linked Axios Supply Chain Hack appeared first on SecurityWeek .SECURITYWEEK.COM
13 AprHacker Used Claude Code, GPT-4.1 to Exfiltrate Hundreds of Millions of Mexican Recordssubmitted by kid to cybersecurity 2 points | 0 comments https://hackread.com/hacker-claude-code-gpt-4-1-mexican-records/SH.ITJUST.WORKS
13 AprHack at Anodot leaves over a dozen breached companies facing extortionThe data breach at Anodot, which affects customers like Rockstar Games, is the latest hack aimed at stealing data from a large number of corporate giants.TECHCRUNCH.COM
13 AprBooking.com confirms hackers accessed customers’ dataThe travel giant notified customers that their personal data, including names, email addresses, and phone numbers, may have been accessed in a security incident.TECHCRUNCH.COM
13 AprRockstar Games receives “pay or leak” warning after cyberattacksubmitted by kid to cybersecurity 20 points | 1 comments https://www.helpnetsecurity.com/2026/04/13/rockstar-games-data-breach-shinyhunters/SH.ITJUST.WORKS
13 AprIran-linked group Handala claims to have breached three major UAE organizationsIran-linked group Handala claims to have breached three major UAE organizations, Dubai Courts, Dubai Land Department, and Dubai Roads & Transport Authority The group Handala claimed a major cyberattack against the UAE, targeting Dubai Courts Department, Dubai Land Department,…SECURITYAFFAIRS.COM
13 AprCPUID watering hole attack spreads STX RAT malwareThreat actors compromised the CPUID website and spread STX RAT through fake CPU-Z and HWMonitor downloads. Attackers breached the website CPUID and replaced download links for CPU-Z and HWMonitor with malicious files for several hours. Users who downloaded them got infected with …SECURITYAFFAIRS.COM
13 AprBooking.com Hack Exposes Customer Data, Sparks Travel Scam FearsBooking.com confirms a data breach that exposed traveler details, raising urgent concerns about highly targeted phishing scams and customer safety. The post Booking.com Hack Exposes Customer Data, Sparks Travel Scam Fears appeared first on TechRepublic .TECHREPUBLIC.COM
🕵️ THREAT INTELLIGENCE 23[−]
13 AprISC Stormcast For Monday, April 13th, 2026 https://isc.sans.edu/podcastdetail/9888, (Mon, Apr 13th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
13 AprWhatsApp’s “End-to-End Encryption by Default” Claim Called Consumer Fraud by Pavel DurovTelegram founder Pavel Durov has publicly criticized WhatsApp, labeling its “end-to-end encryption by default” claim as a massive consumer fraud. He argues that while messages may be encrypted during transit, the default backup settings leave the vast majority of user…GBHACKERS.COM
13 AprElon Musk Announces XChat Launch With Self-Destructing MessagesElon Musk has officially announced the launch of XChat, a new secure messaging application scheduled to release on iOS devices on April 17. The platform builds upon the existing direct messaging infrastructure of X (formerly Twitter) but introduces a dedicated environment with ad…GBHACKERS.COM
13 AprGmail Brings End-to-End Encryption to Android and iOS for Enterprise UsersThe feature allows enterprise users to compose and read end-to-end encrypted messages natively on their mobile devices. The post Gmail Brings End-to-End Encryption to Android and iOS for Enterprise Users appeared first on SecurityWeek .SECURITYWEEK.COM
13 AprVIPERTUNNEL Python Backdoor Hidden in Fake DLL, Obfuscated Loader ChainHackers are abusing a stealthy Python backdoor called VIPERTUNNEL, hiding it behind a fake DLL file and a multi‑stage obfuscated loader to quietly tunnel traffic out of victim networks. A review of persistence mechanisms revealed a sitecustomize.py file in C:\ProgramData\cp49s\Li…GBHACKERS.COM
13 AprFake Claude Website Distributes PlugX RATThe malware mimics the legitimate Anthropic installation, relies on DLL sideloading, and cleans up after itself. The post Fake Claude Website Distributes PlugX RAT appeared first on SecurityWeek .SECURITYWEEK.COM
13 AprNorth Korea's APT37 Uses Facebook Social Engineering to Deliver RokRAT MalwareThe North Korean hacking group tracked as APT37 (aka ScarCruft) has been attributed to a fresh multi-stage, social engineering campaign in which threat actors approached targets on Facebook and added them as friends on the social media platform, turning the trust-building ex…THEHACKERNEWS.COM
13 AprIran-Linked CyberAv3ngers Target Water Utilities, Industrial ControllersIran-linked threat group CyberAv3ngers is intensifying attacks on U.S. water utilities and industrial control systems, shifting from noisy hacktivism to sustained disruption of operational technology (OT) environments. CyberAv3ngers operates as a state-directed persona for Iran’s…GBHACKERS.COM
13 AprJuniper Networks Patches Dozens of Junos OS Vulnerabilities - SecurityWeeksubmitted by kid to cybersecurity 1 points | 0 comments https://www.securityweek.com/juniper-networks-patches-dozens-of-junos-os-vulnerabilities/SH.ITJUST.WORKS
13 AprMicrosoft: Canadian employees targeted in payroll pirate attackssubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/microsoft/microsoft-canadian-employees-targeted-in-payroll-pirate-attacks/SH.ITJUST.WORKS
13 AprNew Phishing Kit Streamlines ClickFix AttacksA new commodity phishing kit called “Venom Stealer” allows threat actors to automate ClickFix attacks, according to researchers at BlackFog. ClickFix is a social engineering technique that tricks users into executing malicious commands on their computer, usually resulting in malw…KNOWBE4.COM
13 AprGitHub and Jira Alerts Hijacked for Trusted-SaaS PhishingHackers are abusing GitHub and Jira’s built‑in notification systems to send phishing emails that appear completely legitimate. Because these emails are sent from the platforms’ own mail servers, they pass standard checks like SPF, DKIM, and DMARC, making them very hard for tradit…GBHACKERS.COM
13 AprBrowserGate: Claims of LinkedIn ‘Spying’ Clash With Security Research FindingsClaims that “Microsoft is running one of the largest corporate espionage operations in modern history” face scrutiny as researchers analyze LinkedIn’s browser extension probing The post BrowserGate: Claims of LinkedIn ‘Spying’ Clash With Security Research Findings appeared first …SECURITYWEEK.COM
13 AprBooking.com Says Hackers Accessed User InformationThe online travel platform has not said how many customers’ booking information was exposed, but said the issue has been contained. The post Booking.com Says Hackers Accessed User Information appeared first on SecurityWeek .SECURITYWEEK.COM
13 AprThe Risk of Trusted System AccessThe clip describes a case where authorized access to sensitive databases was misused to obtain personal images and generate AI-based deepfakes. This highlights a critical security gap: trusted access can become a major attack vector if monitoring, controls, and data protections a…YOUTUBE.COM
13 AprOutlook Breaks on Moon MissionAstronauts reportedly joked about encountering Microsoft Outlook issues during the Artemis mission context, highlighting software reliability problems even in extreme environments. Even highly advanced systems and missions rely on everyday software tools. When those tools fail, i…YOUTUBE.COM
13 AprJust 21 IP Addresses Are Now Behind Nearly Half of All RDP Scanning on the Internetsubmitted by kid to cybersecurity 50 points | 10 comments https://www.greynoise.io/blog/ip-addresses-behind-nearly-half-rdp-internet-scanningSH.ITJUST.WORKS
13 AprGoogle’s ‘Tap to Share’ Could Finally Give Android Its AirDrop MomentA new Android leak points to Google’s Tap to Share feature, which could let nearby phones share files and contact info with a quick NFC gesture. The post Google’s ‘Tap to Share’ Could Finally Give Android Its AirDrop Moment appeared first on TechRepublic .TECHREPUBLIC.COM
13 AprGoogle Rolls Out End-to-End Encryption to Eligible Gmail Users on MobileGoogle has brought end-to-end encrypted Gmail to Android and iOS for eligible Workspace users, extending secure mobile email without extra apps. The post Google Rolls Out End-to-End Encryption to Eligible Gmail Users on Mobile appeared first on TechRepublic .TECHREPUBLIC.COM
13 AprOwn Windows 11 Pro and Microsoft Office 2024 for just $105Set up your own complete, work-ready system with essential apps and a pro-grade OS without subscriptions. The post Own Windows 11 Pro and Microsoft Office 2024 for just $105 appeared first on TechRepublic .TECHREPUBLIC.COM
13 AprYour Data, Always Within Reach – 2TB of Lifetime Cloud Storage Is $75Say goodbye to recurring fees and complicated systems with FileJump’s straightforward and secure cloud storage platform — with lifetime access to your files. The post Your Data, Always Within Reach – 2TB of Lifetime Cloud Storage Is $75 appeared first on TechRepublic .TECHREPUBLIC.COM
13 AprApple Car Key Support Coming to Lexus Vehicles: What We Know So FarApple may be preparing Car Key support for Lexus vehicles, with backend code hints pointing to future Apple Wallet integration. The post Apple Car Key Support Coming to Lexus Vehicles: What We Know So Far appeared first on TechRepublic .TECHREPUBLIC.COM
13 AprSurfshark unveils new Dausos VPN protocol with dedicated user tunnelsSurfshark has announced a new proprietary VPN protocol named “Dausos,” claiming it delivers significantly faster speeds and improved security compared to existing standards by assigning each user a dedicated encrypted tunnel. The company says the protocol has already undergone an…CYBERINSIDER.COM
🌐 CYBER THREAT LANDSCAPE 6[−]
13 AprThe silent “Storm”: New infostealer hijacks sessions, decrypts server-sideNew "Storm" infostealer skips local decryption, sending browser data to attacker servers. Varonis shows how server-side decryption enables session hijacking, bypassing passwords and MFA. [...]BLEEPINGCOMPUTER.COM
13 AprJanelaRAT Malware Targets Latin American Banks with 14,739 Attacks in Brazil in 2025Banks and financial institutions in Latin American countries like Brazil and Mexico have continued to be the target of a malware family called JanelaRAT. A modified version of BX RAT, JanelaRAT is known to steal financial and cryptocurrency data associated with specific financial…THEHACKERNEWS.COM
13 AprA week in security (April 6 – April 12)A list of topics we covered in the week of April 6 to April 12 of 2026MALWAREBYTES.COM
13 AprJanelaRAT: a financial threat targeting users in Latin AmericaKaspersky GReAT experts describe the latest JanelaRAT campaign detailing infection chain and malware functionality updates.SECURELIST.COM
13 ApriPhone forensics expose Signal messages after app removal in U.S. caseAn FBI case in Texas shows Signal messages can still be recovered from iPhones even after app uninstall, via system artifacts, challenging privacy assumptions. The recent revelations about FBI forensic access to Signal messages on an iPhone have reignited a long-standing misunder…SECURITYAFFAIRS.COM
13 Apr„ClickFix“-Angriffe auf macOS jetzt auch via Script EditorEine aktuell laufende Malware-Kampagne nutzt Apples Script Editor statt des Terminals, um den Datenklauer Atomic Stealer auf Macs einzuschleusen.HEISE.DE
📡 INFOSEC NEWS 9[−]
13 AprScans for EncystPHP Webshell, (Mon, Apr 13th)Last week, I wrote about attackers scanning for various webshells, hoping to find some that do not require authentication or others that use well-known credentials. But some attackers are paying attention and are deploying webshells with more difficult-to-guess credentials. Today…ISC.SANS.EDU
13 AprFBI and Indonesian Police Dismantle W3LL Phishing Network Behind $20M Fraud AttemptsThe U.S. Federal Bureau of Investigation (FBI), in partnership with the Indonesian National Police, has dismantled the infrastructure associated with a global phishing operation that leveraged an off-the-shelf toolkit called W3LL to steal thousands of victims' account creden…THEHACKERNEWS.COM
13 AprFBI announces takedown of phishing operation that targeted thousands of victimsCybercriminals allegedly used the W3LL phishing kit to target more than 17,000 victims worldwide, stealing their passwords and multi-factor authentication codes.TECHCRUNCH.COM
13 AprThe Iran War: What You Need to KnowInsikt Group tracks the cyber, physical, and geopolitical components of the US-Israeli strikes on Iran — with continuously updated threat analysis and scenarios.RECORDEDFUTURE.COM
13 AprHackers access Booking.com user data, company secures systemsHackers accessed some Booking.com user data, including names, emails, phone numbers, and booking details. The issue is now contained. Booking.com warned that hackers may have accessed customer data linked to travel reservations. Exposed details could include names, email addresse…SECURITYAFFAIRS.COM
13 AprKI-Betrug: Deutsche überschätzen ihre Fähigkeit, Deepfakes zu entlarvenEine Sonderauswertung des Cybersicherheitsmonitor von BSI und ProPK zeigt gefährliche Wissenslücken beim Erkennen von KI-Manipulationen und Online-Anlagebetrug.HEISE.DE
13 AprFitnesskette Basic-Fit: Rund eine Million Mitglieder von Datenleck betroffenBei einem IT-Vorfall haben sich Unbekannte Zugriff auf das System von Basic-Fit verschafft und dabei persönliche Informationen abgegriffen.HEISE.DE
13 AprSSL-Konfigurationsfehler gefährdet VMware Tanzu Spring Cloud GatewayEin Sicherheitsupdate schließt eine Lücke im API-Gateway VMware Tanzu Spring Cloud Gateway.HEISE.DE
13 AprAngreifer attackieren Python-Notebook MarimoAufgrund von zurzeit laufenden Attacken sollten Softwareentwickler Marimo zügig auf den aktuellen Stand bringen.HEISE.DE