MATLOCK.CA
103Articles
9Categories
2026-04-27Date
🚨
As the NVD scales back CVE enrichment, here’s what Tenable customers need to knowNIST’s shift toward selective CVE enrichment creates significant visibility gaps for teams relying solely on the National Vulnerability Database. As AI accelerates vulnerability disclosure rates, organizations need independent, high-fidelity intelligence to prioritize risks that …
KEVTENABLE.COM — 27 Apr 2026
🚨
TeamPCP Supply Chain Campaign: Update 008 - 26-Day Pause Ends with Three Concurrent Compromises (Checkmarx KICS, Bitwarden CLI Cascade, xinference PyPI), CanisterSprawl npm Worm Identified, and Tier 1 Coverage Returns, (Mon, Apr 27th)This update succeeds&#;x26;#;xc2;&#;x26;#;xa0; TeamPCP Supply Chain Campaign Update 007 , published April 8, 2026, which left the campaign in credential-monetization mode following the Cisco source code theft via Trivy-linke…
KEVISC.SANS.EDU — 27 Apr 2026
🐛
CVE-2018-0734 Timing attack against DSA
MSRC.MICROSOFT.COM — 27 Apr 2026
🐛
CVE-2018-0735 Timing attack against ECDSA signature generation
MSRC.MICROSOFT.COM — 27 Apr 2026
🐛
Nessus Agent Windows Flaw Enables SYSTEM-Level Code Execution
GBHACKERS.COM — 27 Apr 2026
🐛
Metabase Enterprise RCE Flaw Now Has Public Proof-of-Concept Exploit
GBHACKERS.COM — 27 Apr 2026
🐛
AI is reshaping DevSecOps to bring security closer to the code
CSOONLINE.COM — 27 Apr 2026
🐛
Firefox bug CVE-2026-6770 enabled cross-site tracking and Tor fingerprinting
SECURITYAFFAIRS.COM — 27 Apr 2026
⚠️
Fake CAPTCHA IRSF Scam and 120 Keitaro Campaigns Drive Global SMS, Crypto Fraud
THEHACKERNEWS.COM — 27 Apr 2026
⚠️
Critical Gemini CLI Flaw Raises Supply Chain Security Concerns
GBHACKERS.COM — 27 Apr 2026
⚠️
Attackers Chain CODESYS Vulnerabilities to Backdoor Applications
GBHACKERS.COM — 27 Apr 2026
⚠️
ADT - 5,488,888 breached accounts
HAVEIBEENPWNED.COM — 27 Apr 2026
⚠️
U.S. utility giant Itron discloses a security breach
SECURITYAFFAIRS.COM — 27 Apr 2026
⚠️
25 open-source cybersecurity tools that don’t care about your budget
HELPNETSECURITY.COM — 27 Apr 2026
⚠️
Product showcase: LuLu reveals unauthorized outbound connections from Mac apps
HELPNETSECURITY.COM — 27 Apr 2026
⚠️
OpenClaw Flaws Expose Systems to Policy Bypass Attacks
GBHACKERS.COM — 27 Apr 2026
⚠️
The ‘manager of agents’: How AI evolves the SOC analyst role
CSOONLINE.COM — 27 Apr 2026
⚠️
Rethinking Security from the OS Up in the Age of AI and more RSAC 2026 Interviews - ESW #456
YOUTUBE.COM — 2026-04-27
⚠️
Fake Income Tax Notices Used to Spread Malware
GBHACKERS.COM — 27 Apr 2026
⚠️
Itron Discloses Data Breach After Hackers Access Internal Systems
GBHACKERS.COM — 27 Apr 2026
⚠️
Mythos Changed the Math on Vulnerability Discovery. Most Teams Aren't Ready for the Remediation Side
THEHACKERNEWS.COM — 27 Apr 2026
⚠️
PhantomCore Exploits TrueConf Vulnerabilities to Breach Russian Networks
THEHACKERNEWS.COM — 27 Apr 2026
⚠️
Microsoft patched an ‘agent-only’ role that was not
CSOONLINE.COM — 27 Apr 2026
⚠️
27th April – Threat Intelligence Report
RESEARCH.CHECKPOINT.COM — 27 Apr 2026
⚠️
EU Proposes Forcing Google to Share Search Data With Rivals Under DMA
GBHACKERS.COM — 27 Apr 2026
⚠️
US, UK authorities warn that Firestarter backdoor malware survives patching
CYBERSECURITYDIVE.COM — 27 Apr 2026
⚠️
Medical device giant Medtronic confirms data breach incident
CYBERINSIDER.COM — 27 Apr 2026
⚠️
Checkmarx Confirms GitHub Repository Data Posted on Dark Web After March 23 Attack
THEHACKERNEWS.COM — 27 Apr 2026
⚠️
Unpatched 'PhantomRPC' Flaw in Windows Enables Privilege Escalation
DARKREADING.COM — 27 Apr 2026
⚠️
Optimize security operations through an AWS Security Hub POC
AWS.AMAZON.COM — 27 Apr 2026
⚠️
Open source package with 1 million monthly downloads stole user credentials
PROGRAMMING.DEV — 27 Apr 2026
📋
Microsoft Releases Enterprise Policy Option to Disable Windows 11 Copilot
GBHACKERS.COM — 27 Apr 2026
📢
TLS Connect gives SMBs a right-sized automated tool to manage TLS certificates
HELPNETSECURITY.COM — 27 Apr 2026
🔥
Cyber Weapon in Toronto, Grid Attack, Stuxnet Lie Exposed
CYBERSECURITYTODAY.LIBSYN.COM — 27 Apr 2026
🔥
Critical infrastructure giant Itron says it was hacked
TECHCRUNCH.COM — 27 Apr 2026
🔥
Hackers impersonate Microsoft Teams help desk to breach corporate networks
THERECORD.MEDIA — 27 Apr 2026
🔥
Utilities Tech Supplier Itron Discloses Cyber-Attack, Operations Unaffected
INFOSECURITY-MAGAZINE.COM — 27 Apr 2026
🔥
LINKEDIN BROWSERGATE
SECURITYAFFAIRS.COM — 27 Apr 2026
🔥
FIRESIDE CHAT: Leaked secrets are now the go-to attack vector — and AI is accelerating exposures
LASTWATCHDOG.COM — 27 Apr 2026
🔥
Ransomware Uses Your Own Permissions
YOUTUBE.COM — 2026-04-27
🔥
Major critical infrastructure supplier reports cyberattack
CYBERSECURITYDIVE.COM — 27 Apr 2026
🔥
Senators seek answers about hackers obtaining sensitive student data from ostensibly anonymous tip line
CYBERSCOOP.COM — 27 Apr 2026
🔥
Hacker who allegedly carried out cyberattacks for China is extradited to U.S.
TECHCRUNCH.COM — 27 Apr 2026
🔥
Simplicity Stops Data Exfiltration
YOUTUBE.COM — 2026-04-27
🔥
Medtronic discloses security incident after ShinyHunters claimed theft of 9M+ records
SECURITYAFFAIRS.COM — 27 Apr 2026
🔥
The Supreme Court sits on the geofence.
THECYBERWIRE.COM — 27 Apr 2026
🔥
Pitney Bowes - 8,243,989 breached accounts
HAVEIBEENPWNED.COM — 27 Apr 2026
🕵️
NPM Worm Hits Namastex Packages, Steals Secrets Across Registries
GBHACKERS.COM — 27 Apr 2026
🕵️
ClickFix Attack Swaps PowerShell for Cmdkey, Remote Regsvr32 Payloads
GBHACKERS.COM — 27 Apr 2026
🕵️
Vidar Malware Conceals Payloads in JPEG, TXT Files to Evade Detection
GBHACKERS.COM — 27 Apr 2026
🕵️
Fast16 Malware Targets High-Value Systems With Sabotage Capabilities
GBHACKERS.COM — 27 Apr 2026
🕵️
Suspicious Microsoft Store App Vibing.exe Allegedly Harvests Screens and Audio
GBHACKERS.COM — 27 Apr 2026
🕵️
Italy moves to extradite Chinese national to the U.S. over hacking charges
SECURITYAFFAIRS.COM — 27 Apr 2026
🕵️
Aptori expands its platform with autonomous offensive testing to reduce security bottlenecks
HELPNETSECURITY.COM — 27 Apr 2026
🕵️
Your IAM was built for humans, AI agents don’t care
HELPNETSECURITY.COM — 27 Apr 2026
🕵️
The AI criminal mastermind is already hiring on gig platforms
HELPNETSECURITY.COM — 27 Apr 2026
🕵️
North Korean Hackers Target Pharma Firms with Malware-Laced Excel Attacks
GBHACKERS.COM — 27 Apr 2026
🕵️
Why I Chose This $19.97 Lifetime Deal Over MasterClass
TECHREPUBLIC.COM — 27 Apr 2026
🕵️
7 Best Project Budgeting Software in 2026
TECHREPUBLIC.COM — 27 Apr 2026
🕵️
Linux ELF Malware Generator Evades ML Detection With Semantic-Preserving Changes
GBHACKERS.COM — 27 Apr 2026
🕵️
Researchers Warn macOS textutil, KeePassXC Can Fuel Automation Attacks
GBHACKERS.COM — 27 Apr 2026
🕵️
Medieval Encrypted Letter Decoded
SCHNEIER.COM — 2026-04-27
🕵️
Price Drop: Upgrade to Windows 11 Pro for Only $10
TECHREPUBLIC.COM — 27 Apr 2026
🕵️
New Malware Hides Behind Obfuscation and Staged Payloads
GBHACKERS.COM — 27 Apr 2026
🕵️
Fake YouTube Downloads Spread Vidar Malware to Steal Corporate Logins
GBHACKERS.COM — 27 Apr 2026
🕵️
Anthropic Draws Google’s $40B Bet in Latest AI Megadeal
TECHREPUBLIC.COM — 27 Apr 2026
🕵️
Get Lifetime Access to Microsoft Office 2021 for Just $30
TECHREPUBLIC.COM — 27 Apr 2026
🕵️
BlackFile actively extorting data-theft victims in retail and hospitality sector
CYBERSCOOP.COM — 27 Apr 2026
🕵️
New Hack Lets 30-Year-Old Windows PCs Run Modern Linux
TECHREPUBLIC.COM — 27 Apr 2026
🕵️
China’s Honor Just Launched an iPhone Lookalike in Europe
TECHREPUBLIC.COM — 27 Apr 2026
🕵️
Apple Watch Blood Oxygen Monitoring Gets Major Breakthrough
TECHREPUBLIC.COM — 27 Apr 2026
🕵️
EU’s proposed Google data access rule could enable large-scale surveillance
CYBERINSIDER.COM — 27 Apr 2026
🕵️
EU Funds Sovereign Cloud Infrastructure with €180 Million Contract
TECHREPUBLIC.COM — 27 Apr 2026
🕵️
China Startup Secures $8.4B in Credit Lines for Orbital Data Center Push
TECHREPUBLIC.COM — 27 Apr 2026
🕵️
The Prompt Engineering Cheat Sheet: How to Write Better AI Prompts
TECHREPUBLIC.COM — 27 Apr 2026
🕵️
China Shuts Down Meta’s $2.5B Bid for AI Startup Manus
TECHREPUBLIC.COM — 27 Apr 2026
🕵️
Apple ‘Ultra’ 2026: A New iPhone, MacBook Tier May Be Coming
TECHREPUBLIC.COM — 27 Apr 2026
🕵️
Truecaller Faces New Pressure in India as Growth Matures
TECHREPUBLIC.COM — 27 Apr 2026
🕵️
WhatsApp to End Support for Millions of Older Android Phones in 2026
TECHREPUBLIC.COM — 27 Apr 2026
🕵️
UNC6692 Combines Social Engineering, Malware, Cloud Abuse
DARKREADING.COM — 27 Apr 2026
🕵️
Supreme Court justices skeptically question both sides in geofence surveillance case
CYBERSCOOP.COM — 27 Apr 2026
🌐
A week in security (April 20 – April 26)
MALWAREBYTES.COM — 27 Apr 2026
🌐
Fast16: Pre-Stuxnet malware that targeted precision engineering software
SECURITYAFFAIRS.COM — 27 Apr 2026
🌐
Researchers Identify Fast16 Sabotage Malware That Pre-Dates Stuxnet
INFOSECURITY-MAGAZINE.COM — 27 Apr 2026
🌐
Researchers Uncover 73 Fake VS Code Extensions Delivering GlassWorm v2 Malware
THEHACKERNEWS.COM — 27 Apr 2026
🌐
20-Year-Old Malware Rewrites History of Cyber Sabotage
DARKREADING.COM — 27 Apr 2026
🌐
⚡ Weekly Recap: Fast16 Malware, XChat Launch, Federal Backdoor, AI Employee Tracking & More
THEHACKERNEWS.COM — 27 Apr 2026
🌐
Phishing crypto-wallet clones in the App Store and other attacks on iOS and macOS crypto owners | Kaspersky official blog
KASPERSKY.COM — 27 Apr 2026
📡
When security becomes the attack surface: Why endpoint protection must evolve
CYBERSECURITYDIVE.COM — 27 Apr 2026
📡
BlackFile Group Targets Retail and Hospitality with Vishing Attacks
INFOSECURITY-MAGAZINE.COM — 27 Apr 2026
📡
Most Cybersecurity Professionals Feel Undervalued and Underpaid
INFOSECURITY-MAGAZINE.COM — 27 Apr 2026
📡
Parsing Agentic Offensive Security's Existential Threat
DARKREADING.COM — 27 Apr 2026
📡
Widely Used Browser Extensions Selling User Data
INFOSECURITY-MAGAZINE.COM — 27 Apr 2026
📡
Chinese spy posed as researcher in spear-phishing campaign targeting NASA to steal defense software
SECURITYAFFAIRS.COM — 27 Apr 2026
📡
US Sanctions Target Cambodian Scam Network Leaders
INFOSECURITY-MAGAZINE.COM — 27 Apr 2026
📡
Disinformation campaign targeted Tibetan parliament-in-exile elections
THERECORD.MEDIA — 27 Apr 2026
📡
Italy extradites alleged Chinese state hacker to US
THERECORD.MEDIA — 27 Apr 2026
📡
Can I do that with policy? Understanding the AWS Service Authorization Reference
AWS.AMAZON.COM — 27 Apr 2026
📡
US Supreme Court weighs legality of geofence warrants.
THECYBERWIRE.COM — 27 Apr 2026
📡
Money launderer for crypto thieves given 5-year sentence
THERECORD.MEDIA — 27 Apr 2026
📡
Cole Allen Charged With Attempting to Assassinate Trump
WIRED.COM — 27 Apr 2026
📡
Supreme Court signals location data searches should require a warrant
THERECORD.MEDIA — 27 Apr 2026
📡
Tennessee becomes second state to ban cryptocurrency ATMs over scam concerns
THERECORD.MEDIA — 27 Apr 2026