MATLOCK.CA
114Articles
8Categories
2026-04-20Date
🐛
Security Researcher Goes To War Against Microsoft
CYBERSECURITYTODAY.LIBSYN.COM — 20 Apr 2026
🐛
NIST Adopts Risk-Based NVD Model as CVE Submissions Jump 263% Since 2020
GBHACKERS.COM — 20 Apr 2026
🐛
Copilot & Agentforce offen für Prompt-Injection-Tricks
CSOONLINE.COM — 20 Apr 2026
🐛
Claude Mythos – ist der Hype gerechtfertigt?
CSOONLINE.COM — 20 Apr 2026
🐛
TBK DVR Vulnerability CVE-2024-3721 Exploited to Spread Nexcorium DDoS Malware
GBHACKERS.COM — 20 Apr 2026
🐛
VU#915947: SGLang is vulnerable to remote code execution when rendering chat templates from a model file
KB.CERT.ORG — 2026-04-20
🐛
Attackers Exploit DVR Command Injection Flaw to Deploy Mirai-Based Botnet
INFOSECURITY-MAGAZINE.COM — 20 Apr 2026
🐛
CVE-2023-33538 under attack for a year, but exploitation still unsuccessful
SECURITYAFFAIRS.COM — 20 Apr 2026
🐛
National Vulnerability Database (NVD) Shifts to Selective Enrichment as CVE Volume Surges | Flashpoint
SH.ITJUST.WORKS — 20 Apr 2026
🐛
SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files
THEHACKERNEWS.COM — 20 Apr 2026
⚠️
deleteduser.com - a $15 Personally Identifiable Information (PII) Magnet
SH.ITJUST.WORKS — 20 Apr 2026
⚠️
Vercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials
THEHACKERNEWS.COM — 20 Apr 2026
⚠️
Vercel Reports Data Breach Amid Claims of Compromised Internal Infrastructure
GBHACKERS.COM — 20 Apr 2026
⚠️
QEMU Hijacked as Stealth Backdoor for Credential Theft, Ransomware
GBHACKERS.COM — 20 Apr 2026
⚠️
Critical Gardyn Flaws Open Smart Garden Devices to Remote Hijacking
GBHACKERS.COM — 20 Apr 2026
⚠️
Handling the CVE Flood With EPSS, (Mon, Apr 20th)
ISC.SANS.EDU — 20 Apr 2026
⚠️
Ungepatchte Windows-Zero-Days RedSun, UnDefend und BlueHammer werden attackiert
HEISE.DE — 2026-04-20
⚠️
AI Model Claude Opus turns bugs into exploits for just $2,283
SECURITYAFFAIRS.COM — 20 Apr 2026
⚠️
Angriff auf Next.js-Hersteller Vercel: Kundendaten abgegriffen
HEISE.DE — 2026-04-20
⚠️
Making AI actually work in the enterprise and more RSAC Conference 2026 interviews - A... - ESW #455
YOUTUBE.COM — 2026-04-20
⚠️
Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain
THEHACKERNEWS.COM — 20 Apr 2026
⚠️
CISOs reshape their roles as business risk strategists
CSOONLINE.COM — 20 Apr 2026
⚠️
Network ‘background noise’ may predict the next big edge-device vulnerability
CYBERSCOOP.COM — 20 Apr 2026
⚠️
Fracturing Software Security With Frontier AI Models
UNIT42.PALOALTONETWORKS.COM — 20 Apr 2026
⚠️
Third-party AI hack triggers Vercel breach, internal environments accessed
SECURITYAFFAIRS.COM — 20 Apr 2026
⚠️
Anthropic MCP Hit by Critical Vulnerability Enabling Remote Code Execution
GBHACKERS.COM — 20 Apr 2026
⚠️
Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched
KEVSH.ITJUST.WORKS — 20 Apr 2026
⚠️
Attackers abuse Microsoft Teams to impersonate the IT helpdesk in a new enterprise intrusion playbook
CSOONLINE.COM — 20 Apr 2026
⚠️
Hackers exploit Vercel’s trust in AI integration
CSOONLINE.COM — 20 Apr 2026
⚠️
CISA flags Apache ActiveMQ flaw as actively exploited in attacks
KEVSH.ITJUST.WORKS — 20 Apr 2026
⚠️
Vercel confirms breach as hackers claim to be selling stolen data
SH.ITJUST.WORKS — 20 Apr 2026
⚠️
Gh0st RAT, CloverPlus Hit Victims in Dual-Malware Campaign
GBHACKERS.COM — 20 Apr 2026
⚠️
ShowDoc Vulnerability Patched in 2020 Now Used in Active Server Takeovers
SH.ITJUST.WORKS — 20 Apr 2026
⚠️
⚡ Weekly Recap: Vercel Hack, Push Fraud, QEMU Abused, New Android RATs Emerge & More
THEHACKERNEWS.COM — 20 Apr 2026
⚠️
App host Vercel says it was hacked and customer data stolen
TECHCRUNCH.COM — 20 Apr 2026
⚠️
AI Agents Are Insider Risk
YOUTUBE.COM — 2026-04-20
⚠️
Fireside Chat: PKI has carried digital trust through every tech advance—now comes the hardest one
LASTWATCHDOG.COM — 20 Apr 2026
⚠️
Vulnerability exploitation surges often precede disclosure, offering possible early warnings
CYBERSECURITYDIVE.COM — 20 Apr 2026
⚠️
Vercel systems targeted after third-party tool compromised
CYBERSECURITYDIVE.COM — 20 Apr 2026
⚠️
Cloud development platform Vercel confirms breach.
THECYBERWIRE.COM — 20 Apr 2026
⚠️
2026’s Breach List So Far: FBI Hacked, 1B Androids at Risk, 270M iPhones Vulnerable
TECHREPUBLIC.COM — 20 Apr 2026
⚠️
Vercel Confirms Major Security Incident as Hacker Claims $2M Ransom Demand
TECHREPUBLIC.COM — 20 Apr 2026
⚠️
Survey: Security Leaders Emphasize Need for Workforce Education
KNOWBE4.COM — 20 Apr 2026
⚠️
Microsoft Defender Flaws Exploited on Windows, Two Left Unpatched
TECHREPUBLIC.COM — 20 Apr 2026
⚠️
The MCP Disclosure Is the AI Era’s ‘Open Redirect’ Moment
TECHREPUBLIC.COM — 20 Apr 2026
⚠️
When one weak link is enough.
THECYBERWIRE.COM — 20 Apr 2026
⚠️
The FTC’s AI portfolio is about to get bigger
CYBERSCOOP.COM — 20 Apr 2026
⚠️
Vercel’s security breach started with malware disguised as Roblox cheats
CYBERSCOOP.COM — 20 Apr 2026
⚠️
Small Banks at Risk of Collapse
YOUTUBE.COM — 2026-04-20
⚠️
Vuln in Google’s Antigravity AI agent manager could escape sandbox, give attackers remote code execution
CYBERSCOOP.COM — 20 Apr 2026
📢
NCSC Outlines Coordinated Plan to Boost NHS Cyber Resilience
INFOSECURITY-MAGAZINE.COM — 20 Apr 2026
📢
Iran’s MOIS Tied to Coordinated Cyber Campaign Using Multiple Hacker Personas
GBHACKERS.COM — 20 Apr 2026
📢
Minister: Swedish heating plant targeted by pro-Russian cyberattack
SH.ITJUST.WORKS — 20 Apr 2026
📢
Cyberattack at French identity document agency may have exposed personal data
THERECORD.MEDIA — 20 Apr 2026
🔥
Fake Helpdesk Attack Uses Teams and Quick Assist to Breach Targets
GBHACKERS.COM — 20 Apr 2026
🔥
British Hacker Admits Stealing Millions in Virtual Currency From Targeted Companies
GBHACKERS.COM — 20 Apr 2026
🔥
JanaWare Ransomware Hits Turkish Users via Tailored Adwind RAT
GBHACKERS.COM — 20 Apr 2026
🔥
DFIR Report – The Gentlemen & SystemBC: A Sneak Peek Behind the Proxy
RESEARCH.CHECKPOINT.COM — 20 Apr 2026
🔥
Bluesky blames app outage on ‘sophisticated’ DDoS attack
THERECORD.MEDIA — 20 Apr 2026
🔥
20th April – Threat Intelligence Report
RESEARCH.CHECKPOINT.COM — 20 Apr 2026
🔥
Crypto infrastructure company blames $290 million theft on North Korean hackers
THERECORD.MEDIA — 20 Apr 2026
🔥
Scattered Spider member Tyler Buchanan pleads guilty to major crypto theft
SECURITYAFFAIRS.COM — 20 Apr 2026
🔥
Amtrak Data Breach Exposes 2.1M Records, Reports Suggest Larger Leak
TECHREPUBLIC.COM — 20 Apr 2026
🔥
France’s ANTS ID System website hit by cyberattack, possible data breach
SECURITYAFFAIRS.COM — 20 Apr 2026
🕵️
ISC Stormcast For Monday, April 20th, 2026 https://isc.sans.edu/podcastdetail/9898, (Mon, Apr 20th)
ISC.SANS.EDU — 20 Apr 2026
🕵️
Public Notion Pages Expose Editors’ Profile Photos and Email Addresses
GBHACKERS.COM — 20 Apr 2026
🕵️
ZionSiphon Hits Israeli Water Systems With OT Sabotage Malware
GBHACKERS.COM — 20 Apr 2026
🕵️
NSA Confirms Use of Anthropic’s Mythos Despite Pentagon Blacklist
GBHACKERS.COM — 20 Apr 2026
🕵️
Top ERP Software Vendors in 2026
TECHREPUBLIC.COM — 20 Apr 2026
🕵️
Windows 11 Dev Build Introduces Improved Secure Boot Oversight and Storage Security
GBHACKERS.COM — 20 Apr 2026
🕵️
iTerm2 Flaw Turns SSH Escape Sequences Into Arbitrary Code Execution
GBHACKERS.COM — 20 Apr 2026
🕵️
Microsoft-Signed Malware Built With FUD Crypt Packs Persistence and C2
GBHACKERS.COM — 20 Apr 2026
🕵️
MiningDropper Spreads Infostealers, RATs, Banking Malware on Android
GBHACKERS.COM — 20 Apr 2026
🕵️
Is “Satoshi Nakamoto” Really Adam Back?
SCHNEIER.COM — 2026-04-20
🕵️
North Korea-Linked UNC1069 Hacks Crypto Pros via Fake Meetings
GBHACKERS.COM — 20 Apr 2026
🕵️
Notion pages have leaked user data via an unauthenticated API since 2022
CYBERINSIDER.COM — 20 Apr 2026
🕵️
Intel Utility Hijacked in AppDomain Attack to Launch Malware
GBHACKERS.COM — 20 Apr 2026
🕵️
New RecruitRat, SaferRat, Astrinox, Massiv Android Malware Found Targeting 800 Apps
SH.ITJUST.WORKS — 20 Apr 2026
🕵️
Critical sandbox bypass fixed in popular Thymeleaf Java template engine | CSO Online
SH.ITJUST.WORKS — 20 Apr 2026
🕵️
This $20 Career Prep Bundle Teaches Something Others Neglect
TECHREPUBLIC.COM — 20 Apr 2026
🕵️
Why the Axios attack proves AI is mandatory for supply chain security
CYBERSCOOP.COM — 20 Apr 2026
🕵️
Meta Plans Up to 8,000 Job Cuts in New Round of Layoffs
TECHREPUBLIC.COM — 20 Apr 2026
🕵️
Anthropic secretly installs spyware when you install Claude Desktop
PROGRAMMING.DEV — 20 Apr 2026
🕵️
Stellantis teams with Microsoft to strengthen digital capabilities
CYBERSECURITYDIVE.COM — 20 Apr 2026
🕵️
Apple’s App Store found hosting ‘FakeWallet’ crypto-stealing apps
CYBERINSIDER.COM — 20 Apr 2026
🕵️
North Korea hackers blamed for $290M crypto theft
TECHCRUNCH.COM — 20 Apr 2026
🕵️
Chrome Privacy Concerns Rise as Expert Warns of Fingerprinting Risks
TECHREPUBLIC.COM — 20 Apr 2026
🕵️
Amazon Debuts ‘Slimmest Ever’ Fire TV Stick HD Starting at $34.99
TECHREPUBLIC.COM — 20 Apr 2026
🕵️
Italy fines national postal service $14.7M over invasive data collection
CYBERINSIDER.COM — 20 Apr 2026
🕵️
Over 800 Android Apps Targeted in PIN-Stealing Trojan Campaign
TECHREPUBLIC.COM — 20 Apr 2026
🕵️
Bad Data Breaks AI Systems
YOUTUBE.COM — 2026-04-20
🕵️
Mac Studio 2026: Apple’s New Desktop Faces a Delayed Timeline
TECHREPUBLIC.COM — 20 Apr 2026
🕵️
China’s Robot Half Marathon Was More Than a Stunt
TECHREPUBLIC.COM — 20 Apr 2026
🕵️
This VPN Lets You Verify Your Business Privacy For $130
TECHREPUBLIC.COM — 20 Apr 2026
🌐
A week in security (April 13 – April 19)
MALWAREBYTES.COM — 20 Apr 2026
🌐
Researchers Detect ZionSiphon Malware Targeting Israeli Water, Desalination OT Systems
THEHACKERNEWS.COM — 20 Apr 2026
🌐
ZionSiphon Malware Targets Water Infrastructure Systems
INFOSECURITY-MAGAZINE.COM — 20 Apr 2026
🌐
Formbook Malware Campaign Uses Multiple Obfuscation Techniques to Avoid Detection
INFOSECURITY-MAGAZINE.COM — 20 Apr 2026
🎙️
Beyond IT: Cybersecurity is a strategic business risk
CYBERSECURITYDIVE.COM — 20 Apr 2026
🎙️
Big Tech can stop scams. They just don’t (Lock and Code S07E08)
MALWAREBYTES.COM — 20 Apr 2026
🎙️
Building a unified security ecosystem with Melissa K. Smith from SentinelOne
THECYBERWIRE.COMHTTPS: — 20 Apr 2026
📡
Microsoft: Update außer der Reihe gegen ungewollte Server-Reboots
HEISE.DE — 2026-04-20
📡
Zahlreiche Attacken auf Dell PowerProtect Data Domain möglich
HEISE.DE — 2026-04-20
📡
FakeWallet crypto stealer spreading through iOS apps in the App Store
SECURELIST.COM — 20 Apr 2026
📡
FakeWallet crypto stealer spreading through iOS apps in the App Store
SECURELIST.COM — 20 Apr 2026
📡
The Weird, Twisting Tale of How China Spied on Alysa Liu and Her Dad
WIRED.COM — 20 Apr 2026
📡
Crypto Exchange Grinex Blames Western Spies for $13m Theft
INFOSECURITY-MAGAZINE.COM — 20 Apr 2026
📡
Why Most AI Deployments Stall After the Demo
THEHACKERNEWS.COM — 20 Apr 2026
📡
British hacker tied to Scattered Spider campaign pleads guilty in $8M scheme
THERECORD.MEDIA — 20 Apr 2026
📡
Mythos: An AI tool too powerful for public release
MALWAREBYTES.COM — 20 Apr 2026
📡
How to clone an AWS CloudHSM cluster across Regions
AWS.AMAZON.COM — 20 Apr 2026
📡
Elon Musk fails to appear for questioning by French police over sexualized AI images on X
THERECORD.MEDIA — 20 Apr 2026
📡
Mastodon says its flagship server was hit by a DDoS attack
TECHCRUNCH.COM — 20 Apr 2026
📡
Italian regulator fines national postal service orgs $15 million for data privacy violations
THERECORD.MEDIA — 20 Apr 2026