🚨 CISA KEV 4[−]
14 Apr KEVCISA Adds 6 Known Exploited Flaws in Fortinet, Microsoft, and Adobe SoftwareThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added half a dozen security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The list of vulnerabilities is as follows - CVE-2026-21643 (CVSS score: 9.1) …THEHACKERNEWS.COM
14 Apr KEVHow AI is transforming threat detectionArtificial intelligence is rapidly reshaping how security teams detect and hunt cyber threats by helping analyze vast volumes of security data, uncovering subtle signs of malicious activity, and identifying potential attacks faster than traditional tools or human analysts alone. …CSOONLINE.COM
14 Apr KEVU.S. CISA adds Adobe, Fortinet, Microsoft Exchange Server, and Microsoft Windows flaws to its Known Exploited Vulnerabilities catalogU.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Adobe, Fortinet, Microsoft Exchange Server, and Microsoft Windows flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Apple, Laravel Livewire…SECURITYAFFAIRS.COM
14 Apr KEVClaude Mythos: Prepare for your board’s cybersecurity questions about the latest AI model from AnthropicWith the Federal Reserve Chairman meeting with bank CEOs to discuss the security implications of Claude Mythos, you can bet that your board of directors will ask you about the impact of the AI model on your cybersecurity strategy. Here’s how to prepare. Key takeaways Anthro…TENABLE.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 194[−]
14 Apr KEVShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched ServersA critical security vulnerability impacting ShowDoc, a document management and collaboration service popular in China, has come under active exploitation in the wild. The vulnerability in question is CVE-2025-0520 (aka CNVD-2020-26585), which carries a CVSS score o…THEHACKERNEWS.COM
14 AprCVE-2025-1147 GNU Binutils nm nm.c internal_strlen buffer overflowInformation published.MSRC.MICROSOFT.COM
14 AprCVE-2025-1148 GNU Binutils ld ldelfgen.c link_order_scan memory leakInformation published.MSRC.MICROSOFT.COM
14 AprCVE-2025-11839 GNU Binutils prdbg.c tg_tag_type return valueInformation published.MSRC.MICROSOFT.COM
14 AprCVE-2026-31416 netfilter: nfnetlink_log: account for netlink header sizeInformation published.MSRC.MICROSOFT.COM
14 AprCVE-2026-31423 net/sched: sch_hfsc: fix divide-by-zero in rtsc_min()Information published.MSRC.MICROSOFT.COM
14 AprCVE-2026-31424 netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARPInformation published.MSRC.MICROSOFT.COM
14 AprCVE-2026-31427 netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdpInformation published.MSRC.MICROSOFT.COM
14 AprCVE-2026-31419 net: bonding: fix use-after-free in bond_xmit_broadcast()Information published.MSRC.MICROSOFT.COM
14 AprCVE-2026-31421 net/sched: cls_fw: fix NULL pointer dereference on shared blocksInformation published.MSRC.MICROSOFT.COM
14 AprCVE-2026-31428 netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOADInformation published.MSRC.MICROSOFT.COM
14 AprCVE-2026-31418 netfilter: ipset: drop logically empty buckets in mtype_delInformation published.MSRC.MICROSOFT.COM
14 AprCVE-2026-31417 net/x25: Fix overflow when accumulating packetsInformation published.MSRC.MICROSOFT.COM
14 AprCVE-2026-31422 net/sched: cls_flow: fix NULL pointer dereference on shared blocksInformation published.MSRC.MICROSOFT.COM
14 AprCVE-2026-31414 netfilter: nf_conntrack_expect: use expect->helperInformation published.MSRC.MICROSOFT.COM
14 AprCVE-2026-31426 ACPI: EC: clean up handlers on probe failure in acpi_ec_setup()Information published.MSRC.MICROSOFT.COM
14 AprCVE-2026-31420 bridge: mrp: reject zero test interval to avoid OOM panicInformation published.MSRC.MICROSOFT.COM
14 AprHackers Exploit Critical ShowDoc RCE Flaw in Ongoing AttacksCybersecurity researchers have highlighted a critical vulnerability in ShowDoc, a widely used online document-sharing platform designed for IT teams. Tracked as CNVD-2020-26585, this severe security flaw allows unauthenticated remote code execution (RCE) on compromised servers. T…GBHACKERS.COM
14 Apr KEVCISA Warns Fortinet SQL Injection Flaw Is Being Actively ExploitedThe Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning regarding a critical security flaw in Fortinet software. On April 13, 2026, CISA added CVE-2026-21643 to its Known Exploited Vulnerabilities (KEV) catalog. This action confirms that threat ac…GBHACKERS.COM
14 Apr KEVAttackers target unpatched ShowDoc servers via CVE-2025-0520A critical RCE flaw, tracked as CVE-2025-0520, in ShowDoc is being actively exploited, putting unpatched servers at serious risk. A critical remote code execution flaw, tracked as CVE-2025-0520 (CVSS score of 9.4), affecting ShowDoc is under active exploitation in the wild. ShowD…SECURITYAFFAIRS.COM
14 AprCritical etcd Vulnerability Allows Unauthorized Access to Sensitive Cluster APIsAn autonomous AI security agent developed by Strix has discovered a critical authentication bypass vulnerability in etcd, the widely used distributed key-value store that underpins countless backend systems worldwide. Tracked as CVE-2026-33413 and assigned a CVSS score of 8.8, th…GBHACKERS.COM
14 Apr KEVAdobe issues emergency fix for Acrobat Reader flaw exploited in the wild (CVE-2026-34621) - Help Net Securitysubmitted by kid to cybersecurity 4 points | 0 comments https://www.helpnetsecurity.com/2026/04/13/adobe-acrobat-reader-cve-2026-34621-emergency-fix/SH.ITJUST.WORKS
14 AprNew PHP Composer Flaws Enable Arbitrary Command Execution — Patches ReleasedTwo high-severity security vulnerabilities have been disclosed in Composer, a package manager for PHP, that, if successfully exploited, could result in arbitrary command execution. The vulnerabilities have been described as command injection flaws affecti…THEHACKERNEWS.COM
14 AprCVE-2026-20930 Windows Management Services Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Management Services allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-25250 MITRE: CVE-2026-25250 Secure Boot disable Eazy FixMissing cryptographic step in Windows Secure Boot allows an authorized attacker to bypass a security feature locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-23653 GitHub Copilot and Visual Studio Code Information Disclosure VulnerabilityImproper neutralization of special elements used in a command ('command injection') in GitHub Copilot and Visual Studio Code allows an authorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-25184 Applocker Filter Driver (applockerfltr.sys) Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Applocker Filter Driver (applockerfltr.sys) allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-20945 Microsoft SharePoint Server Spoofing VulnerabilityImproper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-23670 Windows Virtualization-Based Security (VBS) Security Feature Bypass VulnerabilityUntrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to bypass a security feature locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26149 Microsoft Power Apps Security Feature BypassImproper neutralization of escape, meta, or control sequences in Microsoft Power Apps allows an authorized attacker to bypass a security feature over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-26151 Remote Desktop Spoofing VulnerabilityInsufficient ui warning of dangerous operations in Windows Remote Desktop allows an unauthorized attacker to perform spoofing over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-26154 Windows Server Update Service (WSUS) Tampering VulnerabilityImproper input validation in Windows Server Update Service allows an unauthorized attacker to perform tampering over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-26155 Microsoft Local Security Authority Subsystem Service Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
14 AprCVE-2026-26160 Remote Desktop Licensing Service Elevation of Privilege VulnerabilityMissing authentication for critical function in Windows Remote Desktop Licensing Service allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26161 Windows Sensor Data Service Elevation of Privilege VulnerabilityUntrusted pointer dereference in Windows Sensor Data Service allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26162 Windows OLE Elevation of Privilege VulnerabilityAccess of resource using incompatible type ('type confusion') in Windows OLE allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26165 Windows Shell Elevation of Privilege VulnerabilityUse after free in Windows Shell allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26166 Windows Shell Elevation of Privilege VulnerabilityDouble free in Windows Shell allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26167 Windows Push Notifications Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26174 Windows Server Update Service (WSUS) Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Server Update Service allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26175 Windows Boot Manager Security Feature Bypass VulnerabilityUse of uninitialized resource in Windows Boot Manager allows an unauthorized attacker to bypass a security feature with a physical attack.MSRC.MICROSOFT.COM
14 AprCVE-2026-26179 Windows Kernel Elevation of Privilege VulnerabilityDouble free in Windows Kernel allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26180 Windows Kernel Elevation of Privilege VulnerabilityHeap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26181 Microsoft Brokering File System Elevation of Privilege VulnerabilityUse after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26183 Remote Access Management service/API (RPC server) Elevation of Privilege VulnerabilityImproper access control in Windows RPC API allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27906 Windows Hello Security Feature Bypass VulnerabilityImproper input validation in Windows Hello allows an authorized attacker to bypass a security feature locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27907 Windows Storage Spaces Controller Elevation of Privilege VulnerabilityInteger underflow (wrap or wraparound) in Windows Storage Spaces Controller allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27908 Windows TDI Translation Driver (tdx.sys) Elevation of Privilege VulnerabilityUse after free in Windows TDI Translation Driver (tdx.sys) allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27915 Windows UPnP Device Host Elevation of Privilege VulnerabilityUse after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27917 Windows WFP NDIS Lightweight Filter Driver (wfplwfs.sys) Elevation of Privilege VulnerabilityUse after free in Windows WFP NDIS Lightweight Filter Driver (wfplwfs.sys) allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27918 Windows Shell Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Shell allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27919 Windows UPnP Device Host Elevation of Privilege VulnerabilityUntrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27921 Windows TDI Translation Driver (tdx.sys) Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27924 Desktop Window Manager Elevation of Privilege VulnerabilityUse after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27926 Windows Cloud Files Mini Filter Driver Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27927 Windows Projected File System Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Projected File System allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27929 Windows LUA File Virtualization Filter Driver Elevation of Privilege VulnerabilityTime-of-check time-of-use (toctou) race condition in Windows LUAFV allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27931 Windows GDI Information Disclosure VulnerabilityOut-of-bounds read in Windows GDI allows an unauthorized attacker to disclose information locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32071 Windows Local Security Authority Subsystem Service (LSASS) Denial of Service VulnerabilityNull pointer dereference in Windows Local Security Authority Subsystem Service (LSASS) allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-32073 Windows Ancillary Function Driver for WinSock Elevation of Privilege VulnerabilityUse after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32075 Windows UPnP Device Host Elevation of Privilege VulnerabilityUse after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32081 Package Catalog Information Disclosure VulnerabilityExposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32082 Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows SSDP Service allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32083 Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows SSDP Service allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32085 Remote Procedure Call Information Disclosure VulnerabilityExposure of sensitive information to an unauthorized actor in Windows Remote Procedure Call allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32087 Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege VulnerabilityHeap-based buffer overflow in Function Discovery Service (fdwsd.dll) allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32089 Windows Speech Brokered Api Elevation of Privilege VulnerabilityUse after free in Windows Speech Brokered Api allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32090 Windows Speech Brokered Api Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Speech Brokered Api allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32093 Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Function Discovery Service (fdwsd.dll) allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32152 Desktop Window Manager Elevation of Privilege VulnerabilityUse after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32154 Desktop Window Manager Elevation of Privilege VulnerabilityUse after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32156 Windows UPnP Device Host Remote Code Execution VulnerabilityUse after free in Windows Universal Plug and Play (UPnP) Device Host allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32157 Remote Desktop Client Remote Code Execution VulnerabilityUse after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-32158 Windows Push Notifications Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32159 Windows Push Notifications Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32160 Windows Push Notifications Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-0390 UEFI Secure Boot Security Feature Bypass VulnerabilityReliance on untrusted inputs in a security decision in Windows Boot Loader allows an authorized attacker to bypass a security feature locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32165 Windows User Interface Core Elevation of Privilege VulnerabilityUse after free in Windows User Interface Core allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32167 SQL Server Elevation of Privilege VulnerabilityImproper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32168 Azure Monitor Agent Elevation of Privilege VulnerabilityImproper input validation in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32178 .NET Spoofing VulnerabilityImproper neutralization of special elements in .NET allows an unauthorized attacker to perform spoofing over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-32181 Connected User Experiences and Telemetry Service Denial of Service VulnerabilityImproper privilege management in Microsoft Windows allows an authorized attacker to deny service locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32183 Windows Snipping Tool Remote Code Execution VulnerabilityImproper neutralization of special elements used in a command ('command injection') in Windows Snipping Tool allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32184 Microsoft High Performance Compute (HPC) Pack Elevation of Privilege VulnerabilityDeserialization of untrusted data in Microsoft High Performance Compute Pack (HPC) allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32188 Microsoft Excel Information Disclosure VulnerabilityOut-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32189 Microsoft Excel Remote Code Execution VulnerabilityUse after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32192 Azure Monitor Agent Elevation of Privilege VulnerabilityDeserialization of untrusted data in Azure Monitor Agent allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32195 Windows Kernel Elevation of Privilege VulnerabilityStack-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32202 Windows Shell Spoofing VulnerabilityProtection mechanism failure in Windows Shell allows an unauthorized attacker to perform spoofing over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-32215 Windows Kernel Information Disclosure VulnerabilityInsertion of sensitive information into log file in Windows Kernel allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32216 Windows Redirected Drive Buffering System Denial of Service VulnerabilityNull pointer dereference in Windows Redirected Drive Buffering allows an authorized attacker to deny service locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32217 Windows Kernel Information Disclosure VulnerabilityInsertion of sensitive information into log file in Windows Kernel allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32218 Windows Kernel Information Disclosure VulnerabilityInsertion of sensitive information into log file in Windows Kernel allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
14 AprCVE-2023-20585 AMD: CVE-2023-20585 IOMMU Write Buffer VulnerabilityThe vulnerability assigned to this CVE could lead to corruption of guest encrypted memory. The mitigation for this vulnerability requires a Windows update. This CVE is being documented in the Security Update Guide to announce that the latest builds of Windows enable the mitigatio…MSRC.MICROSOFT.COM
14 AprCVE-2026-32219 Microsoft Brokering File System Elevation of Privilege VulnerabilityDouble free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32220 UEFI Secure Boot Security Feature Bypass VulnerabilityImproper access control in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to bypass a security feature locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32221 Windows Graphics Component Remote Code Execution VulnerabilityHeap-based buffer overflow in Microsoft Graphics Component allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32222 Windows Win32k Elevation of Privilege VulnerabilityUntrusted pointer dereference in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32223 Windows USB Printing Stack (usbprint.sys) Elevation of Privilege VulnerabilityHeap-based buffer overflow in Windows USB Print Driver allows an unauthorized attacker to elevate privileges with a physical attack.MSRC.MICROSOFT.COM
14 AprCVE-2026-32224 Windows Server Update Service (WSUS) Elevation of Privilege VulnerabilityUse after free in Windows Server Update Service allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32226 .NET Framework Denial of Service VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in .NET Framework allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-33095 Microsoft Word Remote Code Execution VulnerabilityUse after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-33096 HTTP.sys Denial of Service VulnerabilityOut-of-bounds read in Windows HTTP.sys allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-33098 Windows Container Isolation FS Filter Driver Elevation of Privilege VulnerabilityUse after free in Windows Container Isolation FS Filter Driver allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-33116 .NET, .NET Framework, and Visual Studio Denial of Service VulnerabilityLoop with unreachable exit condition ('infinite loop') in .NET, .NET Framework, Visual Studio allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-33120 Microsoft SQL Server Remote Code Execution VulnerabilityUntrusted pointer dereference in SQL Server allows an authorized attacker to execute code over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-33822 Microsoft Word Information Disclosure VulnerabilityOut-of-bounds read in Microsoft Office Word allows an unauthorized attacker to disclose information locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-33826 Windows Active Directory Remote Code Execution VulnerabilityImproper input validation in Windows Active Directory allows an authorized attacker to execute code over an adjacent network.MSRC.MICROSOFT.COM
14 AprCVE-2026-32212 Universal Plug and Play (upnp.dll) Information Disclosure VulnerabilityImproper link resolution before file access ('link following') in Universal Plug and Play (upnp.dll) allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32631 GitHub: CVE-2026-32631 'git clone' from manipulated repositories can leak NTLM hashes[CVE-2026-32631](https://www.cve.org/CVERecord?id=CVE-2026-32631) is regarding a vulnerability where it is possible to obtain a user's NTLM hash by tricking them into cloning a malicious repository, or checking out a malicious branch that accesses an attacker-controlled server. B…MSRC.MICROSOFT.COM
14 AprCVE-2026-21637 HackerOne: CVE-2026-21637 TLS PSK/ALPN Callback Exceptions Bypass Error Handlers[CVE-2026-21637](https://www.cve.org/CVERecord?id=CVE-2026-21637) is regarding a vulnerability in Node.js TLS error handling allows remote attackers to crash or exhaust resources of a TLS server when pskCallback or ALPNCallback are in use. Synchronous exceptions thrown during the…MSRC.MICROSOFT.COM
14 AprCVE-2026-20928 Windows Recovery Environment Security Feature Bypass VulnerabilityImproper removal of sensitive information before storage or transfer in Windows Recovery Environment Agent allows an unauthorized attacker to bypass a security feature with a physical attack.MSRC.MICROSOFT.COM
14 AprCVE-2026-20806 Windows COM Server Information Disclosure VulnerabilityAccess of resource using incompatible type ('type confusion') in Windows COM allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-23657 Microsoft Word Remote Code Execution VulnerabilityUse after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-23666 .NET Framework Denial of Service VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in .NET Framework allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-26143 Microsoft PowerShell Security Feature Bypass VulnerabilityImproper input validation in Microsoft PowerShell allows an unauthorized attacker to bypass a security feature locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26152 Microsoft Cryptographic Services Elevation of Privilege VulnerabilityInsecure storage of sensitive information in Windows Cryptographic Services allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26153 Windows Encrypted File System (EFS) Elevation of Privilege VulnerabilityOut-of-bounds read in Windows Encrypting File System (EFS) allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26156 Windows Hyper-V Remote Code Execution VulnerabilityHeap-based buffer overflow in Windows Hyper-V allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26159 Remote Desktop Licensing Service Elevation of Privilege VulnerabilityMissing authentication for critical function in Windows Remote Desktop Licensing Service allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26163 Windows Kernel Elevation of Privilege VulnerabilityDouble free in Windows Kernel allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26168 Windows Ancillary Function Driver for WinSock Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26169 Windows Kernel Memory Information Disclosure VulnerabilityBuffer over-read in Windows Kernel Memory allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26170 PowerShell Elevation of Privilege VulnerabilityImproper input validation in Microsoft PowerShell allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26172 Windows Push Notifications Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26173 Windows Ancillary Function Driver for WinSock Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26176 Windows Client Side Caching driver (csc.sys) Elevation of Privilege VulnerabilityHeap-based buffer overflow in Windows Client Side Caching driver (csc.sys) allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26177 Windows Ancillary Function Driver for WinSock Elevation of Privilege VulnerabilityUse after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26178 Windows Advanced Rasterization Platform Elevation of Privilege VulnerabilityInteger size truncation in Windows Advanced Rasterization Platform (WARP) allows an unauthorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26182 Windows Ancillary Function Driver for WinSock Elevation of Privilege VulnerabilityUse after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-26184 Windows Projected File System Elevation of Privilege VulnerabilityBuffer over-read in Windows Projected File System allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27909 Windows Search Service Elevation of Privilege VulnerabilityUse after free in Microsoft Windows Search Component allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27910 Windows Installer Elevation of Privilege VulnerabilityImproper handling of insufficient permissions or privileges in Windows Installer allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27911 Windows User Interface Core Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows User Interface Core allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27912 Windows Kerberos Elevation of Privilege VulnerabilityImproper authorization in Windows Kerberos allows an authorized attacker to elevate privileges over an adjacent network.MSRC.MICROSOFT.COM
14 AprCVE-2026-27913 Windows BitLocker Security Feature Bypass VulnerabilityImproper input validation in Windows BitLocker allows an unauthorized attacker to bypass a security feature locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27914 Microsoft Management Console Elevation of Privilege VulnerabilityImproper access control in Microsoft Management Console allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27916 Windows UPnP Device Host Elevation of Privilege VulnerabilityUse after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27920 Windows UPnP Device Host Elevation of Privilege VulnerabilityUntrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27922 Windows Ancillary Function Driver for WinSock Elevation of Privilege VulnerabilityUse after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27923 Desktop Window Manager Elevation of Privilege VulnerabilityUse after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-27925 Windows UPnP Device Host Information Disclosure VulnerabilityUse after free in Windows Universal Plug and Play (UPnP) Device Host allows an unauthorized attacker to disclose information over an adjacent network.MSRC.MICROSOFT.COM
14 AprCVE-2026-27928 Windows Hello Security Feature Bypass VulnerabilityImproper input validation in Windows Hello allows an unauthorized attacker to bypass a security feature over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-27930 Windows GDI Information Disclosure VulnerabilityOut-of-bounds read in Windows GDI allows an unauthorized attacker to disclose information locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32068 Windows Simple Search and Discovery Protocol (SSDP) Service Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows SSDP Service allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32069 Windows Projected File System Elevation of Privilege VulnerabilityDouble free in Windows Projected File System allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32070 Windows Common Log File System Driver Elevation of Privilege VulnerabilityUse after free in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32072 Active Directory Spoofing VulnerabilityImproper authentication in Windows Active Directory allows an unauthorized attacker to perform spoofing locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32074 Windows Projected File System Elevation of Privilege VulnerabilityDouble free in Windows Projected File System allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32076 Windows Storage Spaces Controller Elevation of Privilege VulnerabilityOut-of-bounds read in Windows Storage Spaces Controller allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32077 Windows UPnP Device Host Elevation of Privilege VulnerabilityUntrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32078 Windows Projected File System Elevation of Privilege VulnerabilityUse after free in Windows Projected File System allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32079 Web Account Manager Information Disclosure VulnerabilityExposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32080 Windows WalletService Elevation of Privilege VulnerabilityUse after free in Windows WalletService allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32084 Windows Print Spooler Information Disclosure VulnerabilityExposure of sensitive information to an unauthorized actor in Windows File Explorer allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32086 Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Function Discovery Service (fdwsd.dll) allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32088 Windows Biometric Service Security Feature Bypass VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Biometric Service allows an unauthorized attacker to bypass a security feature with a physical attack.MSRC.MICROSOFT.COM
14 AprCVE-2026-32091 Microsoft Brokering File System Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32149 Windows Hyper-V Remote Code Execution VulnerabilityImproper input validation in Windows Hyper-V allows an authorized attacker to execute code locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32150 Windows Function Discovery Service (fdwsd.dll) Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Function Discovery Service (fdwsd.dll) allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32151 Windows Shell Information Disclosure VulnerabilityExposure of sensitive information to an unauthorized actor in Windows Shell allows an authorized attacker to disclose information over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-32153 Windows Speech Runtime Elevation of Privilege VulnerabilityUse after free in Microsoft Windows Speech allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32155 Desktop Window Manager Elevation of Privilege VulnerabilityUse after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32162 Windows COM Elevation of Privilege VulnerabilityAcceptance of extraneous untrusted data with trusted data in Windows COM allows an unauthorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32163 Windows User Interface Core Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows User Interface Core allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32164 Windows User Interface Core Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows User Interface Core allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32171 Azure Logic Apps Elevation of Privilege VulnerabilityInsufficiently protected credentials in Azure Logic Apps allows an authorized attacker to elevate privileges over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-32176 SQL Server Elevation of Privilege VulnerabilityImproper neutralization of special elements used in an sql command ('sql injection') in SQL Server allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32190 Microsoft Office Remote Code Execution VulnerabilityUse after free in Microsoft Office allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32196 Windows Admin Center Spoofing VulnerabilityImproper neutralization of input during web page generation ('cross-site scripting') in Windows Admin Center allows an unauthorized attacker to perform spoofing over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-32197 Microsoft Excel Remote Code Execution VulnerabilityUse after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32198 Microsoft Excel Remote Code Execution VulnerabilityUse after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32199 Microsoft Excel Remote Code Execution VulnerabilityUse after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32200 Microsoft PowerPoint Remote Code Execution VulnerabilityUse after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-32201 Microsoft SharePoint Server Spoofing VulnerabilityImproper input validation in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-26171 .NET Denial of Service VulnerabilityUncontrolled resource consumption in .NET allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-32203 .NET and Visual Studio Denial of Service VulnerabilityStack-based buffer overflow in .NET and Visual Studio allows an unauthorized attacker to deny service over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-32225 Windows Shell Security Feature Bypass VulnerabilityProtection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-33099 Windows Ancillary Function Driver for WinSock Elevation of Privilege VulnerabilityUse after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-33100 Windows Ancillary Function Driver for WinSock Elevation of Privilege VulnerabilityUse after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-33101 Windows Print Spooler Elevation of Privilege VulnerabilityUse after free in Windows Print Spooler Components allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-33103 Microsoft Dynamics 365 (On-Premises) Information Disclosure VulnerabilityImproper access control in Microsoft Dynamics 365 (on-premises) allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-33104 Win32k Elevation of Privilege VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-33114 Microsoft Word Remote Code Execution VulnerabilityUntrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-33115 Microsoft Word Remote Code Execution VulnerabilityUse after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-33827 Windows TCP/IP Remote Code Execution VulnerabilityConcurrent execution using shared resource with improper synchronization ('race condition') in Windows TCP/IP allows an unauthorized attacker to execute code over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-33824 Windows Internet Key Exchange (IKE) Service Extensions Remote Code Execution VulnerabilityDouble free in Windows IKE Extension allows an unauthorized attacker to execute code over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-33829 Windows Snipping Tool Spoofing VulnerabilityExposure of sensitive information to an unauthorized actor in Windows Snipping Tool allows an unauthorized attacker to perform spoofing over a network.MSRC.MICROSOFT.COM
14 AprCVE-2026-32214 Universal Plug and Play (upnp.dll) Information Disclosure VulnerabilityImproper access control in Universal Plug and Play (upnp.dll) allows an authorized attacker to disclose information locally.MSRC.MICROSOFT.COM
14 AprCVE-2026-33825 Microsoft Defender Elevation of Privilege VulnerabilityInsufficient granularity of access control in Microsoft Defender allows an authorized attacker to elevate privileges locally.MSRC.MICROSOFT.COM
14 Apr KEVMicrosoft’s April 2026 Patch Tuesday Addresses 163 CVEs (CVE-2026-32201)8 Critical 154 Important 1 Moderate 0 Low Microsoft addresses 163 CVEs in the April 2026 Patch Tuesday release, including two zero-day vulnerabilities, one of which was exploited in the wild. Microsoft patched 163 CVEs in its April 2026 Patch Tuesday release, with eight rated cri…TENABLE.COM
⚠️ VULNERABILITY DISCLOSURE 24[−]
14 AprHow Hackers Are Thinking About AIInteresting paper: “ What hackers talk about when they talk about AI: Early-stage diffusion of a cybercrime innovation. ” Abstract: The rapid expansion of artificial intelligence (AI) is raising concerns about its potential to transform cybercrime. Beyond empowering n…SCHNEIER.COM
14 AprAnalysis of 216M Security Findings Shows a 4x Increase In Critical Risk (2026 Report)OX Security recently analyzed 216 million security findings across 250 organizations over a 90-day period. The primary takeaway: while raw alert volume grew by 52% year-over-year, prioritized critical risk grew by nearly 400%. The surge in AI-assisted development is cre…THEHACKERNEWS.COM
14 Apr KEVCISA Alerts on Exploited Microsoft Exchange and Windows CLFS Security FlawsThe Cybersecurity and Infrastructure Security Agency (CISA) has issued a high-priority alert regarding two actively exploited security vulnerabilities in Microsoft products. Added to the Known Exploited Vulnerabilities (KEV) catalog on April 13, 2026, these flaws impact the Micro…GBHACKERS.COM
14 AprHackers Exploit Obsidian Plugin to Deploy Cross-Platform MalwareHackers are abusing Obsidian’s Shell Commands plugin and shared cloud vaults to deliver a new cross‑platform malware chain that ends with the PHANTOMPULSE remote access trojan. Attackers pose as a venture capital firm targeting financial and cryptocurrency professionals, first en…GBHACKERS.COM
14 AprSynology SSL VPN Client Vulnerability Enabled Remote Access to Sensitive FilesSynology has recently released a crucial security update to fix two notable vulnerabilities in its SSL VPN Client utility. Tracked under the security advisory Synology-SA-26:05, these flaws could allow remote attackers to access sensitive system files and intercept secure network…GBHACKERS.COM
14 AprThe AI inflection point: What security leaders must do nowAI is no longer a speculative topic for security leaders. It has moved from experimentation to implementation, and increasingly, to measurable production impact. Over the past year, my conversations with CISOs have shifted. The question is no longer whether AI belongs in cybersec…CSOONLINE.COM
14 AprSecuring Software's Journey with the OWASP SPVS - ASW #378It's one thing to write secure code, it's another to release it into the wild. That code needs to be designed, built, tested, released, and maintained. Farshad Abasi and Cameron Walters explain how the OWASP Secure Pipeline Verification Standard picks up from where ASVS left off,…YOUTUBE.COM
14 AprAI Codex Exploits Samsung TV Driver Flaw to Gain Root AccessA new experiment has shown how an AI coding assistant, Codex, can independently escalate privileges on a Samsung Smart TV by abusing dangerously exposed kernel drivers in Samsung’s KantS2 Tizen firmware. Working from an existing browser foothold, Codex chained together source-cod…GBHACKERS.COM
14 AprChina-linked cloud credential heist runs on typos and SMTPChina-aligned hackers have deployed a Linux-based ELF backdoor to steal cloud credentials at scale from workloads across AWS, GCP, Azure, and Alibaba Cloud environments. According to Breakglass Intelligence findings, the backdoor uses a “zero-detection” technique, employing SMTP …CSOONLINE.COM
14 AprSecuring non-human identities: automated revocation, OAuth, and scoped permissionsCloudflare is introducing scannable API tokens, enhanced OAuth visibility, and GA for resource-scoped permissions. These tools help developers implement a true least-privilege architecture while protecting against credential leakage.CLOUDFLARE.COM
14 AprUS, UK and Canada disrupt $45M crypto theft in Operation AtlanticUS, UK and Canada ran Operation Atlantic, uncovering $45M in crypto theft and freezing $12M to return to victims. An international law enforcement operation from the US, UK and Canada, codenamed Operation Atlantic, has targeted large-scale cryptocurrency theft schemes. Authoritie…SECURITYAFFAIRS.COM
14 AprAdobe fixes PDF zero-day security bug that hackers have exploited for monthsIt's not clear how many people were compromised by this hacking campaign, but a security researcher said the hackers were targeting victims since at least November 2025.TECHCRUNCH.COM
14 AprAI-Driven Pushpaganda Scam Exploits Google Discover to Spread Scareware and Ad FraudCybersecurity researchers have unmasked a novel ad fraud scheme that has been found to leverage search engine poisoning (SEO) techniques and artificial intelligence (AI)-generated content to push deceptive news stories into Google's Discover feed and trick users into en…THEHACKERNEWS.COM
14 AprEU regulators largely denied access to Anthropic MythosEuropean regulators have largely been frozen out of early access to Anthropic’s new Mythos model, Politico reports . The AI technology, aimed at cybersecurity use cases , is said to be able to identify and exploit technical vulnerabilities at a level that surpasses most humans — …CSOONLINE.COM
14 AprKali Forms Vulnerability Enables Remote Code Execution RCEsubmitted by kid to cybersecurity 6 points | 0 comments https://thecyberexpress.com/kali-forms-vulnerability-wordpress-plugin/SH.ITJUST.WORKS
14 AprHack the AI agent: Build agentic AI security skills with the GitHub Secure Code GameLearn to find and exploit real-world agentic AI vulnerabilities through five progressive challenges in this free, open source game that over 10,000 developers have already used to sharpen their security skills. The post Hack the AI agent: Build agentic AI security skills with the…GITHUB.BLOG
14 AprPersonal data of 1 million gym members compromised in Basic-Fit security incidentA breach at Basic-Fit exposed data of 1M members, including names, birth dates and bank details after unauthorized access. Basic-Fit, Europe’s largest gym chain, has disclosed a data breach affecting around 1 million members. Hackers gained unauthorized access to the company syst…SECURITYAFFAIRS.COM
14 AprAdobe Issues Emergency Patch for Critical PDF Flaw Exploited For MonthsAdobe patches a critical PDF flaw exploited for months, allowing attackers to bypass sandbox protections and deliver malware. Users urged to update now. The post Adobe Issues Emergency Patch for Critical PDF Flaw Exploited For Months appeared first on TechRepublic .TECHREPUBLIC.COM
14 Apr4 questions to ask before outsourcing MDRSecurity teams are stretched thin. Alerts never stop, attackers move faster, and expectations for uptime and resilience keep rising. For many IT and security leaders, Managed Detection and Response (MDR) has become less of a “nice to have” and more of a practical way to stay ahea…CSOONLINE.COM
14 Apr5 trends defining the future of AI-powered cybersecurityThe new N-able and Futurum Report reveals how AI is reshaping cyber resilience as it accelerates both business innovation and adversarial tradecraft. Attackers are scaling their operations with unprecedented speed, leveraging automation to bypass traditional defenses. For IT secu…CSOONLINE.COM
14 Apr KEVPatch Tuesday, April 2026 EditionMicrosoft today pushed software updates to fix a staggering 167 security vulnerabilities in its Windows operating systems and related software, including a SharePoint Server zero-day and a publicly disclosed weakness in Windows Defender dubbed "BlueHammer." Separately, Google Chr…KREBSONSECURITY.COM
14 AprZuckbot, Rockstar, Klaude, Browsers Galore, Microsoft 365, ATC, Kieran Human and more - SWN #572Amish Conversion, Zuckbot, Rockstar, Klaude, Browsers Galore, Microsoft 365, Outlook Lite, Air Traffic Control, Kieran Human, and More on the Security Weekly News. Segment Resources: https://www.bleepingcomputer.com/news/security/medtech-giant-stryker-fully-operational-after-data…YOUTUBE.COM
14 Apr KEVMicrosoft’s April Windows update fixes 165 flaws, one exploited zero-dayMicrosoft has released its April 2026 Patch Tuesday updates for Windows 11 versions 24H2 and 25H2, to fix security bugs across the operating system. The security release addresses 165 flaws, including one actively exploited SharePoint spoofing flaw and multiple “more likely to be…CYBERINSIDER.COM
14 AprSecure AI agent access patterns to AWS resources using Model Context ProtocolAI agents and coding assistants interact with AWS resources through the Model Context Protocol (MCP). Unlike traditional applications with deterministic code paths, agents reason dynamically, choosing different tools or accessing different data depending on context. You must assu…AWS.AMAZON.COM
📋 SECURITY BULLETINS 3[−]
14 AprSAP Patch Day Fixes Critical SQL Injection, DoS, and Code Injection FlawsSAP released its monthly Security Patch Day updates, addressing 19 new security notes and one update to a previously released note. According to the official SAP Support Portal, these patches resolve severe vulnerabilities, including critical SQL injection, Denial of Service (DoS…GBHACKERS.COM
14 AprMicrosoft Patch Tuesday April 2026., (Tue, Apr 14th)This month&#;x26;#;39;s Microsoft Patch Tuesday looks like a record one, but let&#;x26;#;39;s look at it a bit closer to understand what is happening
ISC.SANS.EDU
14 AprMicrosoft Patch Tuesday for April 2026 - Snort Rule and Prominent VulnerabilitiesOverview of patch tuesday release from Microsoft for April 2026.TALOSINTELLIGENCE.COM
📢 SECURITY ADVISORIES 4[−]
14 AprAngriffe auf sieben Sicherheitslücken beobachtet – eine ist 14 Jahre altDie US-Cybersicherheitsbehörde CISA warnt vor Angriffen auf sieben Sicherheitslücken. Eine davon hat 14 Jahre auf dem Buckel.HEISE.DE
14 AprOmnistealer uses the blockchain to steal everything it canThis malware is coming for your password managers, saved logins, cloud storage, crypto wallets, and just about anything else it can reach.MALWAREBYTES.COM
14 AprAnthropic co-founder confirms the company briefed the Trump administration on MythosIn an interview at the Semafor World Economy summit this week, Anthropic co-founder Jack Clark explained why the company was still engaged with the U.S. government while simultaneously suing them.TECHCRUNCH.COM
14 AprAI Breaks Identity ModelsTraditional identity models separate humans and services, both of which are relatively predictable in behavior. AI disrupts this model by introducing unpredictability. It behaves neither fully like a human nor a deterministic service, which creates gaps in how identity and access…YOUTUBE.COM
🔥 INCIDENT REPORTING 10[−]
14 AprWeekly Update 499Presently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite I'm starting to become pretty fond of Bruce. Actually, I've had a bit of an epiphany: an AI assistant like Bruce isn't j…TROYHUNT.COM
14 AprOkta Under Attack as Hackers Skip Phishing for Identity SystemsHackers are shifting away from email phishing and are directly targeting Okta and other identity providers using voice‑based social engineering, or “Okta vishing.” This trend turns what used to be a single account compromise into an immediate, organization‑wide cloud data breach …GBHACKERS.COM
14 AprRockstar’s GTA Game Hacked, 78.6 Million Records Published OnlineRockstar Games has suffered a significant data breach after the infamous threat group ShinyHunters leaked over 78.6 million internal records on April 14, 2026. The incident did not involve a direct attack on Rockstar’s primary network infrastructure. Instead, the hackers executed…GBHACKERS.COM
14 AprIs Booking.com compromised ?submitted by ecards to cybersecurity 6 points | 3 commentsSH.ITJUST.WORKS
14 AprJanela RAT Spreads via Fake MSI Installers, Malicious ExtensionsJanela Remote Access Trojan (RAT) campaign using fake Windows MSI installers and malicious browser extensions to infiltrate financial networks and exfiltrate sensitive data. The latest Janela RAT samples are being distributed through public GitLab repositories, where attackers ho…GBHACKERS.COM
14 AprBooking.com breach sparks scam wave targeting travelers’ bookingssubmitted by kid to cybersecurity 1 points | 0 comments https://cybernews.com/news/booking-com-breach-phishing-travel-data-exposed/SH.ITJUST.WORKS
14 AprMirax Android RAT Hijacks Infected Phones as Residential ProxiesA new Android banking trojan called Mirax is rapidly gaining traction in the cybercrime ecosystem, combining powerful remote access features with residential proxy capabilities to turn victims’ smartphones into high-value infrastructure nodes. Mirax is marketed as a premium Andro…GBHACKERS.COM
14 AprEuropean Gym giant Basic-Fit data breach affects 1 million memberssubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/european-gym-giant-basic-fit-data-breach-affects-1-million-members/SH.ITJUST.WORKS
14 AprThree Rowhammer attacks targeting GDDR6 | Kaspersky official blogGDDRHammer, GeForge, and GPUBreach: three new research papers on Rowhammer attacks with major security implications.KASPERSKY.COM
14 AprFrance builds its own digital future.France pushes digital sovereignty. Adobe rushes an Acrobat Reader patch. Booking.com confirms a targeted breach. SAP fixes a critical SQL injection bug. A sanctions-dodging fraud network resurfaces. ViperTunnel infiltrates U.S. and U.K. firms. GlassWorm spreads across developer t…THECYBERWIRE.COM
🕵️ THREAT INTELLIGENCE 41[−]
14 AprISC Stormcast For Tuesday, April 14th, 2026 https://isc.sans.edu/podcastdetail/9890, (Tue, Apr 14th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
14 AprAPT41 Targets Linux Cloud Servers With New Winnti BackdoorA previously undocumented Linux backdoor attributed to China-linked threat group APT41 (Winnti) has been uncovered, targeting cloud workloads across AWS, GCP, Azure, and Alibaba Cloud. The ELF-based implant, currently showing zero detections on VirusTotal, transforms Linux server…GBHACKERS.COM
14 AprFake Proxifier GitHub Installer Spreads ClipBanker Crypto MalwareHackers are abusing a fake Proxifier installer hosted on GitHub to deliver a multi‑stage ClipBanker malware that silently hijacks cryptocurrency transactions from infected systems. The campaign combines search‑engine poisoning, trojanized installers, and fileless techniques to st…GBHACKERS.COM
14 AprGUEST ESSAY: Google’s 2029 deadline exposes readiness gap as move to quantum-safe crypto lagsFor years, quantum risk was easy for most institutions to treat as premature: real in theory, urgent someday, but not yet an operational problem. That is no longer tenable. Related: AI spawns semantic attacks Two developments this month brought the … (more…) The post GUEST …LASTWATCHDOG.COM
14 AprCyber-Inspekteur: Hybride Attacken nehmen weiter zuDeutschland ist im Visier staatlicher Hacker. Mdisk – shutterstock.com Hybride Attacken auf kritische Infrastruktur in Deutschland und Bundeswehr-Truppen im Ausland nehmen weiter zu. Spätestens seit 2022 sei ein spürbarer Zuwachs zu verzeichnen, sagte der Bundeswehr-Inspekteur Cy…CSOONLINE.COM
14 AprSomeone Bought 30 WordPress Plugins and Planted a Backdoor in All of Them.submitted by cm0002 to cybersecurity 27 points | 2 comments https://anchor.host/someone-bought-30-wordpress-plugins-and-planted-a-backdoor-in-all-of-them/INFOSEC.PUB
14 AprWhen Trust Becomes a Weapon: Google Cloud Storage Phishing Deploying Remcos RATModern phishing campaigns increasingly abuse legitimate services. Cloud platforms, file-sharing tools, trusted domains, and widely used SaaS applications are now part of the attacker’s toolkit. Instead of breaking trust, attackers borrow it. This shift creates a danger…ANY.RUN
14 AprChina Clean Tech and the Gulf Energy ShockHigher oil and fuel costs are pushing APAC buyers to move faster on solar, batteries, and EVs, but China’s clean-tech dominance creates a new dependency risk. The post China Clean Tech and the Gulf Energy Shock appeared first on TechRepublic .TECHREPUBLIC.COM
14 Apr108 Chrome extensions caught stealing user data and hijacking sessions108 Chrome extensions have been harvesting user identities, hijacking sessions, and silently backdooring users’ web browsers. The activity was identified by Socket researchers following an in-depth analysis of Chrome Web Store extensions tied to the domain cloudapi[.]stream. The …CYBERINSIDER.COM
14 AprNew KnowBe4 Agent Risk Manager Addresses Pervasive AI Agent RiskBy Roger A. Grimes and Matthew DurenKNOWBE4.COM
14 AprMirax Android Trojan Turns Devices Into Residential Proxy Nodes - Infosecurity Magazinesubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/mirax-trojan-devices-proxy-nodes/SH.ITJUST.WORKS
14 AprMozilla Criticizes Microsoft for Installing Copilot on Windows Without User Consentsubmitted by kid to cybersecurity 7 points | 0 comments https://cybersecuritynews.com/mozilla-criticizes-microsoft-for-copilot/SH.ITJUST.WORKS
14 AprJanelaRAT Malware Targets Latin American Banks with 14,739 Attacks in Brazil in 2025submitted by kid to cybersecurity 1 points | 0 comments https://thehackernews.com/2026/04/janelarat-malware-targets-latin.htmlSH.ITJUST.WORKS
14 AprBuild Real Coding Skills for $43 with Visual Studio 2026 BundleMicrosoft Visual Studio Professional 2026 bundle pairs dev tools with courses in Python, JavaScript, and SQL. The post Build Real Coding Skills for $43 with Visual Studio 2026 Bundle appeared first on TechRepublic .TECHREPUBLIC.COM
14 AprAPT41 Delivers 'Undetectable' Backdoor to Steal Cloud Credentialssubmitted by kid to cybersecurity 1 points | 0 comments https://www.darkreading.com/cloud-security/apt41-zero-detection-backdoor-harvest-cloud-credentialsSH.ITJUST.WORKS
14 AprPlugX USB Worm Hits Multiple Continents via DLL SideloadingA new PlugX USB worm variant is driving fresh infection waves across several continents, using DLL sideloading and stealthy USB-based propagation to evade detection. First observed in Papua New Guinea in August 2022, the same strain resurfaced months later not only in the Pacific…GBHACKERS.COM
14 AprBotnet Exposed: Hackers Leave Worker Access and Root Passwords Wide OpenHackers have left a live Twitter/X credential‑stuffing botnet effectively unlocked, exposing its full command‑and‑control stack, worker fleet, and root passwords to anyone who knows where to look. The C2 runs on a Windows Server 2019 instance hosted by Hetzner in Falkenstein, Ger…GBHACKERS.COM
14 AprOur evaluation of Claude Mythos Preview’s cyber capabilitiessubmitted by codeinabox to security 1 points | 0 comments https://www.aisi.gov.uk/blog/our-evaluation-of-claude-mythos-previews-cyber-capabilities The AI Security Institute (AISI) conducted evaluations of Anthropic’s Claude Mythos Preview (announced on 7th April) to assess its cy…PROGRAMMING.DEV
14 AprOpenAI Impacted by North Korea-Linked Axios Supply Chain Hack - SecurityWeeksubmitted by kid to cybersecurity 2 points | 0 comments https://www.securityweek.com/openai-impacted-by-north-korea-linked-axios-supply-chain-hack/SH.ITJUST.WORKS
14 AprFake Ledger app on the Apple App Store steals $9.5 million from 50 usersA malicious “Ledger Live” app briefly listed on Apple’s Mac App Store has been linked to at least $9.5 million in cryptocurrency theft, affecting more than 50 victims across multiple blockchains. The app was removed by Apple after reports surfaced, but not before significant loss…CYBERINSIDER.COM
14 AprSAP Patch Day Fixes Critical SQL Injection, DoS, and Code Injection Flawssubmitted by kid to cybersecurity 1 points | 0 comments https://cyberpress.org/sap-patch-day-fixes-critical-sql-injection-dos-and-code-injection-flaws/SH.ITJUST.WORKS
14 AprTurn Your Expertise Into Published Books Using Advanced AI TechnologyAivolut uses GPT-5 and Claude to help professionals create full-length, KDP-ready manuscripts in minutes. The post Turn Your Expertise Into Published Books Using Advanced AI Technology appeared first on TechRepublic .TECHREPUBLIC.COM
14 AprTop 10 Security Isn’t EnoughCommon frameworks like the OWASP Top 10 are too broad, grouping complex issues like authentication and authorization into single categories. Without breaking these down into specific components—sessions, cookies, parameter handling—teams risk incomplete fixes. Security becomes a …YOUTUBE.COM
14 AprHow exposed is your code? Find out in minutes—for freeThe new Code Security Risk Assessment gives you a one-click view of vulnerabilities across your organization, at no cost. The post How exposed is your code? Find out in minutes—for free appeared first on The GitHub Blog .GITHUB.BLOG
14 AprUpcoming Speaking EngagementsThis is a current list of where and when I am scheduled to speak: I’m speaking at DemocracyXChange 2026 in Toronto, Ontario, Canada, on April 18, 2026. I’m speaking at the SANS AI Cybersecurity Summit 2026 in Arlington, Virginia, USA, at 9:40 AM ET on April 20, 2026. I’m speaking…SCHNEIER.COM
14 AprCyberheistNews Vol 16 #15 Anthropic's Mythos Is Not Just a Tool. It's Something You Have to Contain.KNOWBE4.COM
14 AprSecurity Risk Advisors Purple Team Participants Can Now Earn CPE CreditsPhiladelphia, United States / Pennsylvania, April 14th, 2026, CyberNewswire GIAC and ISC2 now recognize active participation in SRA Purple Team exercises as an eligible Continuing Professional Education (CPE) activity. Teams can earn CPE credits while str…GBHACKERS.COM
14 AprAI “Watershed Moment” or expensive pen tester? The AISI Mythos Datasubmitted by codeinabox to security 2 points | 0 comments https://blog.robbowley.net/2026/04/14/ai-watershed-moment-or-expensive-pen-tester-the-aisi-mythos-data/PROGRAMMING.DEV
14 AprAnalysis of 216M Security Findings Shows a 4x Increase In Critical Risk (2026 Report)submitted by kid to cybersecurity 2 points | 0 comments https://thehackernews.com/2026/04/analysis-of-216m-security-findings.htmlSH.ITJUST.WORKS
14 AprState-sponsored threats: Different objectives, similar access pathsA look at 2025 state-sponsored threats, exploring how actors linked to China, Russia, North Korea, and Iran use vulnerabilities, identity, and trusted access paths to achieve their goals.TALOSINTELLIGENCE.COM
14 AprJeff Bezos-Backed EV Startup Raises $650M to Launch $25K Electric PickupSlate Auto, the EV startup backed by Jeff Bezos, secures $650 million in funding for an affordable pickup truck slated for delivery by the end of the year. The post Jeff Bezos-Backed EV Startup Raises $650M to Launch $25K Electric Pickup appeared first on TechRepublic .TECHREPUBLIC.COM
14 AprX Cuts Clickbait Payouts and Exposes a Creator Program ProblemX is cutting clickbait payouts, but the bigger problem may be a creator program that rewarded attention-chasing behavior before trying to punish it. The post X Cuts Clickbait Payouts and Exposes a Creator Program Problem appeared first on TechRepublic .TECHREPUBLIC.COM
14 AprMicrosoft to Retire Outlook Lite, Impacting Millions of Android UsersMicrosoft will soon shut down Outlook Lite, forcing Android users to switch to Outlook Mobile after months of phased shutdowns. The post Microsoft to Retire Outlook Lite, Impacting Millions of Android Users appeared first on TechRepublic .TECHREPUBLIC.COM
14 AprWhat is AEO SEO? Why Answer Engine Optimization Is the Next Evolution of SEOAI search is reshaping how users find information, shifting visibility from rankings to AI-generated answers. HubSpot’s new AEO tool highlights how answer engine optimization is emerging as the next phase of SEO. The post What is AEO SEO? Why Answer Engine Optimization Is the Nex…TECHREPUBLIC.COM
14 AprHubSpot Launches AEO Tool to Help Brands Compete in AI SearchHubSpot launches an AEO tool inside Marketing Hub to track AI visibility, citations, and competitors. See what this HubSpot news means for marketers. The post HubSpot Launches AEO Tool to Help Brands Compete in AI Search appeared first on TechRepublic .TECHREPUBLIC.COM
14 AprMotorola Razr 70 Ultra Specs Leak Raises Familiar ConcernsMotorola Razr 70 Ultra specs leak shows minimal upgrades, with only a slightly larger battery expected. The post Motorola Razr 70 Ultra Specs Leak Raises Familiar Concerns appeared first on TechRepublic .TECHREPUBLIC.COM
14 AprToyota Unveils Basketball-Shooting Robot With Vision TechToyota unveils CUE7, its latest AI basketball-shooting robot, with a lighter build, dynamic controls, and a record-setting history. The post Toyota Unveils Basketball-Shooting Robot With Vision Tech appeared first on TechRepublic .TECHREPUBLIC.COM
14 AprGoogle $135M Settlement: Millions of Android Users May Qualify for PayoutAndroid users may be eligible for a payout from Google’s $135 million settlement over background data use. Here’s who qualifies and how to claim. The post Google $135M Settlement: Millions of Android Users May Qualify for Payout appeared first on TechRepublic .TECHREPUBLIC.COM
14 AprApple’s Mac mini 2026: New Leak Teases M5 Upgrade, Release TimelineA new Mac mini leak points to an M5 upgrade in 2026 as Apple faces high-end stock shortages and growing questions over memory supply. The post Apple’s Mac mini 2026: New Leak Teases M5 Upgrade, Release Timeline appeared first on TechRepublic .TECHREPUBLIC.COM
14 AprProton boosts Drive performance and expands encrypted workspace featuresProton has rolled out a set of updates to its Proton Drive service, introducing significant speed improvements, new mobile capabilities, and expanded functionality for its end-to-end encrypted spreadsheet tool, Proton Sheets. Proton says file uploads on iOS are now up to 60% fast…CYBERINSIDER.COM
14 AprAmazon to Acquire Globalstar in $11.6B Bid to Power Future iPhonesAmazon plans to acquire Globalstar to boost its satellite network, challenge Starlink, and enable direct-to-device connectivity for future smartphones. The post Amazon to Acquire Globalstar in $11.6B Bid to Power Future iPhones appeared first on TechRepublic .TECHREPUBLIC.COM
🌐 CYBER THREAT LANDSCAPE 3[−]
14 AprFake Claude AI installer abuses DLL sideloading to deploy PlugXFake Claude website impersonates Anthropic and delivers PlugX RAT via ZIP download using DLL sideloading. A fake website impersonating Anthropic’s Claude service was found distributing the PlugX remote access trojan, according to Malwarebytes. The rogue site abuses the chatbot’s …SECURITYAFFAIRS.COM
14 AprCPUID: Angreifer haben über Webseite Malware-Installer verteiltDie Webseite CPUID der System-Analyse-Tools CPU-Z und HWMonitor wurde von Angreifern manipuliert. Sie verteilte Malware.HEISE.DE
14 AprSomeone planted backdoors in dozens of WordPress plug-ins used in thousands of websitesDozens of WordPress plug-ins were allegedly hijacked to push malware after they were sold to a new corporate owner.TECHCRUNCH.COM
📡 INFOSEC NEWS 12[−]
14 Apr108 Malicious Chrome Extensions Steal Google and Telegram Data, Affecting 20,000 UsersCybersecurity researchers have discovered a new campaign in which a cluster of 108 Google Chrome extensions has been found to communicate with the same command-and-control (C2) infrastructure with the goal of collecting user data and enabling browser-level abuse by injecting ads …THEHACKERNEWS.COM
14 AprFIFA World Cup 2026: More than One-Third of Official Partners Expose the Public to the Risk of Email FraudPROOFPOINT.COM
14 AprPhantom in the vault: Obsidian abused to deliver PhantomPulse RATElastic Security Labs uncovers a novel social engineering campaign that abuses the popular note-taking application, Obsidian's legitimate community plugin ecosystem. The campaign, which we track as REF6598, targets individuals in the financial and cryptocurrency sectors through e…ELASTIC.CO
14 AprChatGPT under scrutiny as Florida investigates campus shootingNew cases and research suggest AI chatbots don’t always shut down dangerous conversations.MALWAREBYTES.COM
14 AprSicherheitslücke: wolfSSL-Bibliothek winkt manipulierte Zertifikate durchEin Sicherheitsupdate schließt unter anderem eine kritische Lücke in wolfSSL.HEISE.DE
14 AprRockstar Games: Kriminelle Gang veröffentlicht DatenDie kriminelle Bande ShinyHunters hat die Daten aus einem Cyberangriff auf Rockstar Games veröffentlicht. Der „GTA“-Entwickler wollte kein Lösegeld zahlen.HEISE.DE
14 AprLinux 7.0 erschienen – mehr als ein NummernsprungDer neue Linux-Kernel 7.0 bringt selbstheilende Dateisysteme, sorgt für robusteren Code und heißt Rust als nicht-experimentelles Feature willkommen.HEISE.DE
14 AprSAP-Patchday: Eine kritische SQL-Injection-Lücke – und 18 weitereAm April-Patchday behandelt SAP Schwachstellen mit 19 Sicherheitsnotizen. Eine kritische erlaubt das Einschleusen von SQL-Befehlen.HEISE.DE
14 AprScaling MCP adoption: Our reference architecture for simpler, safer and cheaper enterprise deployments of MCPWe share Cloudflare's internal strategy for governing MCP using Access, AI Gateway, and MCP server portals. We also launch Code Mode to slash token costs and recommend new rules for detecting Shadow MCP in Cloudflare Gateway.CLOUDFLARE.COM
14 AprManaged OAuth for Access: make internal apps agent-ready in one clickManaged OAuth for Cloudflare Access helps AI agents securely navigate internal applications. By adopting RFC 9728, agents can authenticate on behalf of users without using insecure service accounts.CLOUDFLARE.COM
14 AprGoogle Adds Rust-Based DNS Parser into Pixel 10 Modem to Enhance SecurityGoogle has announced the integration of a Rust-based Domain Name System (DNS) parser into the modem firmware as part of its ongoing efforts to beef up the security of Pixel devices and push memory-safe code at a more foundational level. "The new Rust-based DNS parser signifi…THEHACKERNEWS.COM
14 AprUK gov's Mythos AI tests help separate cybersecurity threat from hypeNew model is the first AI system to complete a difficult multi-step infiltration challenge.ARSTECHNICA.COM