Cyber Daily News

Cyber Daily News for May 14, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Microsoft Patch Tuesday for May 2026 fix 138 bugs, some of them are alarming https://securityaffairs.com/192086/uncategorized/microsoft-patch-tuesday-for-may-2026-fix-138-bugs-some-of-them-are-alarming.html - Quest KACE SMA flaw CVE-2025-32975: when one unpatched tool opens the door to 60 organizations https://securityaffairs.com/192067/security/quest-kace-sma-flaw-cve-2025-32975-when-one-unpatched-tool-opens-the-door-to-60-organizations.html - Foxconn Confirms North American Factories Hit by Cyberattack https://www.securityweek.com/foxconn-confirms-north-american-factories-hit-by-cyberattack/ - Exim BDAT Vulnerability Exposes Email Servers to Remote Attacks https://thecyberexpress.com/exim-bdat-vulnerability-cve-2026-45185/ - OpenLoop Health confirms January 2026 Data breach affecting 716,000 https://securityaffairs.com/192066/uncategorized/openloop-health-confirms-january-2026-data-breach-affecting-716000.html - Hackers Targeted PraisonAI Vulnerability Hours After Disclosure https://www.securityweek.com/hackers-targeted-praisonai-vulnerability-hours-after-disclosure/ - FamousSparrow targets Azerbaijani energy sector in multi-wave espionage campaign https://securityaffairs.com/192113/apt/famoussparrow-targets-azerbaijani-energy-sector-in-multi-wave-espionage-campaign.html - Researcher Drops YellowKey, GreenPlasma Windows Zero-Days https://www.securityweek.com/researcher-drops-yellowkey-greenplasma-windows-zero-days/

Cyber Daily News for May 13, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Microsoft Patches Critical Zero-Click Outlook Vulnerability Threatening Enterprises https://www.securityweek.com/microsoft-patches-critical-zero-click-outlook-vulnerability-threatening-enterprises/ - Microsoft Patches 137 Vulnerabilities in May Patch Tuesday https://www.securityweek.com/microsoft-patches-137-vulnerabilities/ - Critical Fortinet vulnerabilities fixed in FortiSandbox and FortiAuthenticator https://securityaffairs.com/192047/security/critical-fortinet-vulnerabilities-fixed-in-fortisandbox-and-fortiauthenticator.html - Mini Shai-Hulud Hits TanStack npm Packages https://www.infosecurity-magazine.com/news/mini-shai-hulud-tanstack-npm/ - Hundreds of Malicious Packages Force RubyGems to Suspend Registrations https://www.securityweek.com/hundreds-of-malicious-packages-force-rubygems-to-suspend-registrations/ - Hackers accessed BWH Hotels reservation system for months https://securityaffairs.com/192038/data-breach/hackers-accessed-bwh-hotels-reservation-system-for-months.html - End-to-End Encrypted RCS Messaging Arrives Across iPhone and Android https://www.infosecurity-magazine.com/news/apple-google-rcs-end-to-end/ - The world's most Dangerous AI, Anthropic's Mythos, found only one flaw in curl https://securityaffairs.com/192029/hacking/the-worlds-most-dangerous-ai-anthropics-mythos-found-only-one-flaw-in-curl.html

Cyber Daily News for May 12, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Google Detects First AI-Generated Zero-Day Exploit https://www.securityweek.com/google-detects-first-ai-generated-zero-day-exploit/ - TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack https://www.securityweek.com/tanstack-mistral-ai-uipath-hit-in-fresh-supply-chain-attack/ - WannaCry, the ransomware attack that changed the history of cybersecurity https://securityaffairs.com/192015/malware/wannacry-the-ransomware-attack-that-changed-the-history-of-cybersecurity.html - Rushed Patches Follow Broken Embargo on New Linux Kernel Vulnerabilities https://www.infosecurity-magazine.com/news/dirty-frag-linux-kernel/ - Identity security firm SailPoint discloses GitHub repository breach https://securityaffairs.com/191997/data-breach/identity-security-firm-sailpoint-discloses-github-repository-breach.html - Fake Claude Code Page Pushes PowerShell Stealer at Devs https://www.infosecurity-magazine.com/news/fake-claude-code-installer/ - TrickMo Variant Routes Android Trojan Traffic Through TON https://www.infosecurity-magazine.com/news/trickmo-c-ton-network-android/ - OpenAI Introduces AI Security Platform as Cyber Defense Race Heats Up https://thecyberexpress.com/openai-daybreak-introduces-gpt-5-5/

Cyber Daily News for May 11, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - ShinyHunters Escalates Canvas Extortion with School by School Ransom Campaign https://www.infosecurity-magazine.com/news/shinyhunters-escalates-canvas/ - New 'Dirty Frag' Linux Vulnerability Possibly Exploited in Attacks https://www.securityweek.com/new-dirty-frag-linux-vulnerability-possibly-exploited-in-attacks/ - Checkmarx Jenkins AST Plugin Compromised in Supply Chain Attack https://www.securityweek.com/checkmarx-jenkins-ast-plugin-compromised-in-supply-chain-attack/ - Zara Data Breach Impacts Nearly 200,000 Customers https://www.infosecurity-magazine.com/news/zara-data-breach-impacts-200000/ - Official JDownloader site served malware to Windows and Linux users between May 6 and May 7 https://securityaffairs.com/191920/malware/official-jdownloader-site-served-malware-to-windows-and-linux-users.html - SailPoint Discloses GitHub Repository Hack https://www.securityweek.com/sailpoint-discloses-github-repository-hack/ - Over 500 Organizations Hit in Years-Long Phishing Campaign https://www.securityweek.com/over-500-organizations-hit-in-years-long-phishing-campaign/ - U.S. CISA adds a flaw in BerriAI LiteLLM to its Known Exploited Vulnerabilities catalog https://securityaffairs.com/191964/security/u-s-cisa-adds-a-flaw-in-berriai-litellm-to-its-known-exploited-vulnerabilities-catalog.html

Cyber Daily News for May 10, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Dirty Frag: A new Linux privilege escalation vulnerability is already in the wild https://securityaffairs.com/191847/hacking/dirty-frag-a-new-linux-privilege-escalation-vulnerability-is-already-in-the-wild.html - Cyberattacks on Poland's Water Plants: A Blueprint for Hybrid Warfare https://securityaffairs.com/191868/security/cyberattacks-on-polands-water-plants-a-blueprint-for-hybrid-warfare.html - RansomHouse says it breached Trellix and exposes internal systems https://securityaffairs.com/191879/cyber-crime/ransomhouse-says-it-breached-trellix-and-exposes-internal-systems.html - Quasar Linux RAT (QLNX): A Fileless Linux Implant Built for Stealth and Persistence https://securityaffairs.com/191898/malware/quasar-linux-rat-qlnx-a-fileless-linux-implant-built-for-stealth-and-persistence.html - Braintrust security incident raises concerns over AI supply chain risks https://securityaffairs.com/191888/data-breach/braintrust-security-incident-raises-concerns-over-ai-supply-chain-risks.html - Zara Data Breach: 197,000 Customers Exposed in Third-Party Security Incident https://securityaffairs.com/191859/cyber-crime/zara-data-breach-197000-customers-exposed-in-third-party-security-incident.html - In Other News: Train Hacker Arrested, PamDOORa Linux Backdoor, New CISA Director Frontrunner https://www.securityweek.com/in-other-news-train-hacker-arrested-pamdoora-linux-backdoor-new-cisa-director-frontrunner/ - Fake Moustache Trick Raises Questions Over UK Online Safety Act Age Checks https://thecyberexpress.com/online-safety-act-age-verification/

Cyber Daily News for May 9, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - RansomHouse says it breached Trellix and exposes internal systems https://securityaffairs.com/191879/cyber-crime/ransomhouse-says-it-breached-trellix-and-exposes-internal-systems.html - Cyberattacks on Poland's Water Plants: A Blueprint for Hybrid Warfare https://securityaffairs.com/191868/security/cyberattacks-on-polands-water-plants-a-blueprint-for-hybrid-warfare.html - Braintrust security incident raises concerns over AI supply chain risks https://securityaffairs.com/191888/data-breach/braintrust-security-incident-raises-concerns-over-ai-supply-chain-risks.html - Zara Data Breach: 197,000 Customers Exposed in Third-Party Security Incident https://securityaffairs.com/191859/cyber-crime/zara-data-breach-197000-customers-exposed-in-third-party-security-incident.html - In Other News: Train Hacker Arrested, PamDOORa Linux Backdoor, New CISA Director Frontrunner https://www.securityweek.com/in-other-news-train-hacker-arrested-pamdoora-linux-backdoor-new-cisa-director-frontrunner/ - The Cyber Express Weekly Roundup: EU AI Act Updates, Malware Expansion, Critical Vulnerabilities, and Rising Cybercrime Trends https://thecyberexpress.com/tce-weekly-roundup-ai-malware-fbi-cyber-alerts/

Cyber Daily News for May 8, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking https://www.securityweek.com/palo-alto-zero-day-exploited-in-campaign-bearing-hallmarks-of-chinese-state-hacking/ - Dirty Frag Linux Vulnerability Exposes Major Distributions to Root Access Attacks https://thecyberexpress.com/dirty-frag-linux-lpe-cve-2026-31431/ - OpenAI and Anthropic LLMs Used in Critical Infrastructure Cyber-Attack, Warns Dragos https://www.infosecurity-magazine.com/news/llm-critical-infrastructure/ - Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks https://www.securityweek.com/ivanti-patches-epmm-zero-day-exploited-in-targeted-attacks/ - Cyberattack Hits Canvas System Used by Thousands of Schools as Finals Loom https://www.securityweek.com/cyberattack-hits-canvas-system-used-by-thousands-of-schools-as-finals-loom/ - Ransomware Group Takes Credit for Trellix Hack https://www.securityweek.com/ransomware-group-takes-credit-for-trellix-hack/ - Claude Code OAuth Tokens Can Be Stolen Through Stealthy MCP Hijacking https://www.securityweek.com/claude-code-oauth-tokens-can-be-stolen-through-stealthy-mcp-hijacking/ - Vulnerability in Claude Extension for Chrome Exposes AI Agent to Takeover https://www.securityweek.com/vulnerability-in-claude-extension-for-chrome-exposes-ai-agent-to-takeover/

Cyber Daily News for May 7, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Daemon Tools Developer Confirms Software Was Trojanized https://www.infosecurity-magazine.com/news/daemon-tools-confirms-software/ - U.S. CISA adds a flaw in Palo Alto Networks PAN-OS to its Known Exploited Vulnerabilities catalog https://securityaffairs.com/191780/security/u-s-cisa-adds-a-flaw-in-palo-alto-networks-pan-os-to-its-known-exploited-vulnerabilities-catalog.html - Global Instructure Breach Hits Queensland Schools Through QLearn Platform https://thecyberexpress.com/qlearn-cybersecurity-incident-hits-schools/ - Claude AI Guided Hackers Toward OT Assets During Water Utility Intrusion https://www.securityweek.com/claude-ai-guided-hackers-toward-ot-assets-during-water-utility-intrusion/ - Taiwan High-Speed Rail Emergency Braking Hack https://securityaffairs.com/191785/hacking/taiwan-high-speed-rail-emergency-braking-hack-how-a-student-stopped-the-trains-and-exposed-a-major-security-gap.html - Iran-Linked APT Posed as Chaos Ransomware Member in Espionage Campaign https://www.infosecurity-magazine.com/news/iran-linked-apt-chaos-ransomware/ - CloudZ Malware Abuses Phone Link to Steal SMS OTPs https://www.infosecurity-magazine.com/news/cloudz-rat-pheno-phone-link-otp/ - Gemini CLI Vulnerability Could Have Led to Code Execution, Supply Chain Attack https://www.securityweek.com/gemini-cli-vulnerability-could-have-led-to-code-execution-supply-chain-attack/

Cyber Daily News for May 6, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Palo Alto Networks PAN-OS flaw exploited for remote code execution https://securityaffairs.com/191748/security/palo-alto-networks-pan-os-flaw-exploited-for-remote-code-execution.html - Malicious PyTorch Lightning update hits AI supply chain security https://securityaffairs.com/191732/ai/malicious-pytorch-lightning-update-hits-ai-supply-chain-security.html - Vimeo confirms breach via third-party vendor impacts 119K users https://securityaffairs.com/191715/data-breach/vimeo-confirms-breach-via-third-party-vendor-impacts-119k-users.html - Microsoft Warns of Sophisticated Phishing Campaign Targeting US Organizations https://www.securityweek.com/microsoft-warns-of-sophisticated-phishing-campaign-targeting-us-organizations/ - New Infostealer Dubbed 'Pheno' Hijacks Windows' Phone Link App to Steal MFA OTPs https://thecyberexpress.com/new-infostealer-pheno-steals-mfa-otps/ - Critical Android vulnerability CVE-2026-0073 fixed by Google https://securityaffairs.com/191710/breaking-news/critical-android-vulnerability-cve-2026-0073-fixed-by-google.html - U.S. court sentences Karakurt ransomware negotiator to 8.5 years https://securityaffairs.com/191722/cyber-crime/u-s-court-sentences-karakurt-ransomware-negotiator-to-8-5-years.html - Critical Bug Could Expose 300,000 Ollama Deployments to Information Theft https://www.securityweek.com/critical-bug-could-expose-300000-ollama-deployments-to-information-theft/

Cyber Daily News for May 5, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Microsoft warns of global campaign stealing auth tokens from 35K users https://securityaffairs.com/191695/security/microsoft-warns-of-global-campaign-stealing-auth-tokens-from-35k-users.html - MOVEit automation flaws could enable full system compromise https://securityaffairs.com/191681/security/moveit-automation-flaws-could-enable-full-system-compromise.html - Hackers target governments and MSPs via critical cPanel flaw CVE-2026-41940 https://securityaffairs.com/191666/breaking-news/hackers-target-governments-and-msps-via-critical-cpanel-flaw-cve-2026-41940.html - Trellix Source Code Repository Breached https://www.securityweek.com/trellix-source-code-repository-breached/ - DigiCert Revokes Certificates After Support Portal Hack https://www.securityweek.com/digicert-revokes-certificates-after-support-portal-hack/ - Instructure Confirms Canvas Cybersecurity Incident, User Data Accessed https://thecyberexpress.com/canvas-cybersecurity-incident/ - NCSC Warns of an AI-Fuelled Vulnerability Patch Wave https://www.infosecurity-magazine.com/news/ncsc-warns-aifuelled-vulnerability/ - Cisco Moves to Acquire Astrix Security to Tackle Non-Human Identity Risks https://www.securityweek.com/cisco-moves-to-acquire-astrix-security-to-tackle-non-human-identity-risks/

Cyber Daily News for May 4, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - AI speeds flaw discovery, forcing rapid updates, UK NCSC warns https://securityaffairs.com/191657/security/ai-speeds-flaw-discovery-forcing-rapid-updates-uk-ncsc-warns.html - Over 40,000 Servers Compromised in Ongoing cPanel Exploitation https://www.securityweek.com/over-40000-servers-compromised-in-ongoing-cpanel-exploitation/ - Salt Typhoon breach IBM subsidiary in Italy: a warning for Europe's digital defenses https://securityaffairs.com/191638/apt/salt-typhoon-breach-ibm-subsidiary-in-italy-a-warning-for-europes-digital-defenses.html - Bluekit phishing kit enables automated phishing with 40+ templates and AI tools https://securityaffairs.com/191646/cyber-crime/bluekit-phishing-kit-enables-automated-phishing-with-40-templates-and-ai-tools.html - Exploitation of 'Copy Fail' Linux Vulnerability Begins https://www.securityweek.com/exploitation-of-copy-fail-linux-vulnerability-begins/ - OpenAI Rolls Out Advanced Security for ChatGPT Accounts https://www.securityweek.com/openai-rolls-out-advanced-security-for-chatgpt-accounts/ - FBI Warns of Surge in Cyber-Enabled Cargo Theft Targeting Logistics Firms https://thecyberexpress.com/cyber-enabled-cargo-theft-fbi-issues-alert/ - Edtech Firm Instructure Discloses Data Breach Amid Hacker Leak Threats https://www.securityweek.com/edtech-firm-instructure-discloses-data-breach/

Cyber Daily News for May 3, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Trellix discloses the breach of a code repository https://securityaffairs.com/191584/data-breach/trellix-discloses-the-breach-of-a-code-repository.html - Google Revamps Bug Bounty Programs: Android Rewards Rise, Chrome Payouts Drop in the Age of AI https://securityaffairs.com/191600/security/google-revamps-bug-bounty-programs-android-rewards-rise-chrome-payouts-drop-in-the-age-of-ai.html - Two US cybersecurity experts sentenced in ransomware case, third awaits July ruling https://securityaffairs.com/191591/cyber-crime/two-us-cybersecurity-experts-sentenced-in-ransomware-case-third-awaits-july-ruling.html

Cyber Daily News for May 2, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - New Deep#Door RAT uses stealth and persistence to target Windows https://securityaffairs.com/191567/malware/new-deepdoor-rat-uses-stealth-and-persistence-to-target-windows.html - Scattered Spider Hacker Arrested https://www.securityweek.com/in-other-news-scattered-spider-hacker-arrested-soc-effectiveness-metrics-nsa-tool-vulnerability/ - Carding service Jerry's Store leak exposes 345,000 stolen payment cards https://securityaffairs.com/191536/cyber-crime/carding-service-jerrys-store-leak-exposes-345000-stolen-payment-cards.html - Digital attacks drive a new wave of cargo theft, FBI says https://securityaffairs.com/191556/cyber-crime/digital-attacks-drive-a-new-wave-of-cargo-theft-fbi-says.html - New Bluekit Phishing Kit Features AI Assistant https://www.securityweek.com/new-bluekit-phishing-kit-features-ai-assistant/ - Google Adjusts Bug Bounties: Chrome Payouts Drop as Android Rewards Rise Amid AI Surge https://www.securityweek.com/google-adjusts-bug-bounties-chrome-payouts-drop-as-android-rewards-rise-amid-ai-surge/ - OFAC sanctions Iranian central bank crypto reserves https://www.securityweek.com/in-other-news-scattered-spider-hacker-arrested-soc-effectiveness-metrics-nsa-tool-vulnerability/ - ADT discloses data leak https://www.securityweek.com/in-other-news-scattered-spider-hacker-arrested-soc-effectiveness-metrics-nsa-tool-vulnerability/

Cyber Daily News for May 1, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Copy Fail: New Linux bug enables Root via page-cache corruption https://securityaffairs.com/191519/hacking/copy-fail-new-linux-bug-enables-root-via-page-cache-corruption.html - Nine-Year-Old Zero-Day Flaw in Linux Kernel Discovered by AI-Equipped Security Researcher https://www.infosecurity-magazine.com/news/zero-day-2017-linux-kernel/ - SonicWall patches three SonicOS flaws in Gen 6, 7 and 8 firewalls https://securityaffairs.com/191527/security/sonicwall-patches-three-sonicos-flaws-in-gen-6-7-and-8-firewalls-patch-them-now.html - 1,800 Hit in Mini Shai-Hulud Attack on SAP, Lightning, Intercom https://www.securityweek.com/1800-hit-in-mini-shai-hulud-attack-on-sap-lightning-intercom/ - Anthropic launches Claude Security to counter rapid AI-Powered exploits https://securityaffairs.com/191532/ai/anthropic-launches-claude-security-to-counter-rapid-ai-powered-exploits.html - Agent's claims on WhatsApp access spark security concerns https://securityaffairs.com/191515/social-networks/agents-claims-on-whatsapp-access-spark-security-concerns.html - Critical Gemini CLI Flaw Enabled Host Code Execution, Supply Chain Attacks https://www.securityweek.com/critical-gemini-cli-flaw-enabled-host-code-execution-supply-chain-attacks/ - Three Arrested for Hacking Over 610,000 Roblox Accounts https://www.infosecurity-magazine.com/news/three-arrested-over-roblox-hacking/

Cyber Daily News for April 30, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - 'Copy Fail' Logic Flaw in Linux Kernel Enables System Takeover https://www.securityweek.com/copy-fail-logic-flaw-in-linux-kernel-enables-system-takeover/ - CVE-2026-41940: Critical cPanel Authentication Bypass Exposes Hosting Systems https://thecyberexpress.com/cpanel-cve-2026-41940-auth-bypass/ - CVE-2026-42208: LiteLLM bug exploited 36 hours after its disclosure https://securityaffairs.com/191483/hacking/cve-2026-42208-litellm-bug-exploited-36-hours-after-its-disclosure.html - Cursor Extension Flaw Exposes Developer API Keys https://www.infosecurity-magazine.com/news/cursor-extension-flaw-exposes-api/ - Researchers Track 2.9 Billion Compromised Credentials https://www.infosecurity-magazine.com/news/29-billion-compromised-credentials/ - Malicious npm Dependency Linked to AI Assisted Commit Targets Crypto Wallets https://www.infosecurity-magazine.com/news/ai-npm-dependency-targets-crypto/ - Sandhills Medical Says Ransomware Breach Affects 170,000 https://www.securityweek.com/sandhills-medical-says-ransomware-breach-affects-170000/ - Hundreds of Internet-Facing VNC Servers Expose ICS/OT https://www.securityweek.com/hundreds-of-internet-facing-vnc-servers-expose-ics-ot/

Cyber Daily News for April 29, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Critical GitHub Vulnerability Exposed Millions of Repositories https://www.securityweek.com/critical-github-vulnerability-exposed-millions-of-repositories/ - AI Agent Deleted Production Database in 9 Secs; Then Confessed Every Rule It Broke https://thecyberexpress.com/ai-agent-deleted-production-database-in-9-secs/ - Vimeo Confirms User and Customer Data Breach https://www.securityweek.com/vimeo-confirms-user-and-customer-data-breach/ - Medtronic Confirms Data Breach After ShinyHunters Claims https://www.infosecurity-magazine.com/news/medtronic-data-breach-shinyhunters/ - U.S. CISA adds Microsoft Windows Shell and ConnectWise ScreenConnect flaws to its Known Exploited Vulnerabilities catalog https://securityaffairs.com/191442/security/u-s-cisa-adds-microsoft-windows-shell-and-connectwise-screenconnect-flaws-to-its-known-exploited-vulnerabilities-catalog.html - Critical Flaw Turns Vect Ransomware into Data Destroying Wiper https://www.infosecurity-magazine.com/news/critical-flaw-vect-ransomware-data/ - Iranian Cyber Group Handala Targets US Troops in Bahrain https://www.securityweek.com/iranian-cyber-group-handala-targets-us-troops-in-bahrain/ - Signal Phishing Campaign Targets German Officials in Suspected Russian Operation https://securityaffairs.com/191425/intelligence/signal-phishing-campaign-targets-german-officials-in-suspected-russian-operation.html

Cyber Daily News for April 28, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Medtronic Hack Confirmed After ShinyHunters Threatens Data Leak https://www.securityweek.com/medtronic-hack-confirmed-after-shinyhunters-threatens-data-leak/ - OpenSSH Flaw Allowing Full Root Shell Access Lurked for 15 Years https://www.securityweek.com/openssh-flaw-allowing-full-root-shell-access-lurked-for-15-years/ - Incomplete Windows Patch Opens Door to Zero-Click Attacks https://www.securityweek.com/incomplete-windows-patch-opens-door-to-zero-click-attacks/ - North Korean Hackers Target Crypto Firms with ClickFix and AI-Made Zoom Lures https://www.infosecurity-magazine.com/news/bluenoroff-dprk-hackers-target/ - Germany Suspects Russia Is Behind Signal Phishing That Targeted Top Officials https://www.securityweek.com/germany-suspects-russia-is-behind-signal-phishing-that-targeted-top-officials/ - LinkedIn BrowserGate https://securityaffairs.com/191383/security/linkedin-browsergate.html - Notepad++ Releases 8.9.4 Patch to Fix String Injection Vulnerability (CVE-2026-3008) https://thecyberexpress.com/notepad-cve-2026-3008-vulnerability/ - New Android spyware Morpheus linked to Italian surveillance firm https://securityaffairs.com/191398/malware/new-android-spyware-morpheus-linked-to-italian-surveillance-firm.html

Cyber Daily News for April 27, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Critical bug in CrowdStrike LogScale let attackers access files https://securityaffairs.com/191343/hacking/critical-bug-in-crowdstrike-logscale-let-attackers-access-files.html - Firefox bug CVE-2026-6770 enabled cross-site tracking and Tor fingerprinting https://securityaffairs.com/191374/security/firefox-bug-cve-2026-6770-enabled-cross-site-tracking-and-tor-fingerprinting.html - Easily Exploitable 'Pack2TheRoot' Linux Vulnerability Leads to Root Access https://www.securityweek.com/easily-exploitable-pack2theroot-linux-vulnerability-leads-to-root-access/ - U.S. utility giant Itron discloses a security breach https://securityaffairs.com/191360/data-breach/u-s-utility-giant-itron-discloses-a-security-breach.html - Researchers Identify Fast16 Sabotage Malware That Pre-Dates Stuxnet https://securityaffairs.com/191325/malware/fast16-pre-stuxnet-malware-that-targeted-precision-engineering-software.html - Italy moves to extradite Chinese national to the U.S. over hacking charges https://securityaffairs.com/191368/apt/italy-moves-to-extradite-chinese-national-to-the-u-s-over-hacking-charges.html - eBay Struggles with Widespread Outage, Disrupting Transactions and API Access https://thecyberexpress.com/ebay-outage-april-2026-ddos-attack/ - US Launches Sweeping Crackdown on Southeast Asia Cyberscams and Sanctions Cambodian Senator https://www.securityweek.com/us-launches-sweeping-crackdown-on-southeast-asia-cyberscams-and-sanctions-cambodian-senator/

Cyber Daily News for April 26, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - U.S. CISA adds SimpleHelp, Samsung, and D-Link flaws to its Known Exploited Vulnerabilities catalog https://securityaffairs.com/191281/security/u-s-cisa-adds-simplehelp-samsung-and-d-link-flaws-to-its-known-exploited-vulnerabilities-catalog.html - Checkmarx supply chain attack impacts Bitwarden npm distribution path https://securityaffairs.com/191215/uncategorized/checkmarx-supply-chain-attack-impacts-bitwarden-npm-distribution-path.html - Over 400,000 sites at risk as hackers exploit Breeze Cache plugin flaw (CVE-2026-3844) https://securityaffairs.com/191267/uncategorized/over-400000-sites-at-risk-as-hackers-exploit-breeze-cache-plugin-flaw-cve-2026-3844.html - CISA reports persistent FIRESTARTER backdoor on Cisco ASA device in federal network https://securityaffairs.com/191241/hacking/cisa-reports-persistent-firestarter-backdoor-on-cisco-asa-device-in-federal-network.html - Trigona ransomware adopts custom tool to steal data and evade detection https://securityaffairs.com/191294/cyber-crime/trigona-ransomware-adopts-custom-tool-to-steal-data-and-evade-detection.html - 12-year-old Pack2TheRoot bug lets Linux users gain root privileges https://securityaffairs.com/191231/security/12-year-old-pack2theroot-bug-lets-linux-users-gain-root-privileges.html - Signal phishing campaign targets Germany's Bundestag President Julia Klockner https://securityaffairs.com/191224/intelligence/signal-phishing-campaign-targets-germanys-bundestag-president-julia-klockner.html - Security Affairs newsletter Round 574 by Pierluigi Paganini - INTERNATIONAL EDITION https://securityaffairs.com/191305/breaking-news/security-affairs-newsletter-round-574-by-pierluigi-paganini-international-edition.html

Cyber Daily News for April 25, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - UK Biobank Data Breach: Health Data of 500,000 Listed for Sale in China https://www.infosecurity-magazine.com/news/uk-biobank-data-beach-health-data/ - CISA reports persistent FIRESTARTER backdoor on Cisco ASA device in federal network https://securityaffairs.com/191241/hacking/cisa-reports-persistent-firestarter-backdoor-on-cisco-asa-device-in-federal-network.html - 12-year-old Pack2TheRoot bug lets Linux users gain root privileges https://securityaffairs.com/191231/security/12-year-old-pack2theroot-bug-lets-linux-users-gain-root-privileges.html - Signal phishing campaign targets Germany's Bundestag President Julia Klöckner https://securityaffairs.com/191224/intelligence/signal-phishing-campaign-targets-germanys-bundestag-president-julia-klockner.html - China-Linked APT GopherWhisper Abuses Legitimate Services in Government Attacks https://www.securityweek.com/china-linked-apt-gopherwhisper-abuses-legitimate-services-in-government-attacks/ - Locked Shields 2026: 41 Nations Strengthen Cyber Resilience in World's Biggest Exercise https://www.securityweek.com/locked-shields-2026-41-nations-strengthen-cyber-resilience-in-worlds-biggest-exercise/ - Pre-Stuxnet Sabotage Malware 'Fast16' Linked to US-Iran Cyber Tensions https://www.securityweek.com/pre-stuxnet-sabotage-malware-fast16-linked-to-us-iran-cyber-tensions/ - AI Rush is Reviving Old Cybersecurity Mistakes, Mandiant VP Warns https://www.infosecurity-magazine.com/news/ai-old-cybersecurity-mistakes/

Cyber Daily News for April 24, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Bitwarden NPM Package Hit in Supply Chain Attack https://www.securityweek.com/bitwarden-npm-package-hit-in-supply-chain-attack/ - China-linked threat actors use consumer device botnets to evade detection, warn UK and partners https://securityaffairs.com/191202/security/china-linked-threat-actors-use-consumer-device-botnets-to-evade-detection-warn-uk-and-partners.html - UK Biobank Leak Prompts Urgent Review of Data Protection in Biomedical Research https://thecyberexpress.com/uk-biobank-data-breach-healthcare/ - Apple Fixes iOS Notification Bug Exposing Deleted Messages https://www.infosecurity-magazine.com/news/apple-ios-notification-bug-deleted/ - Vulnerabilities Patched in CrowdStrike, Tenable Products https://www.securityweek.com/vulnerabilities-patched-in-crowdstrike-tenable-products/ - Chinese Cybersecurity Firm's AI Hacking Claims Draw Comparisons to Claude Mythos https://www.securityweek.com/chinese-cybersecurity-firms-ai-hacking-claims-draw-comparisons-to-claude-mythos/ - Luxury cosmetics giant Rituals discloses data breach impacting member personal details https://securityaffairs.com/191192/data-breach/rituals-discloses-a-data-breach-impacting-member-personal-details.html - Google Favors General-Purpose Gemini Models Over Cybersecurity-Specific AI https://www.infosecurity-magazine.com/news/google-gemini-over-cyber-specific/

Cyber Daily News for April 23, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - U.S. CISA adds a flaw in Microsoft Defender to its Known Exploited Vulnerabilities catalog https://securityaffairs.com/191164/hacking/u-s-cisa-adds-a-flaw-in-microsoft-defender-to-its-known-exploited-vulnerabilities-catalog.html - Microsoft out-of-band updates fixed critical ASP.NET Core privilege escalation flaw https://securityaffairs.com/191130/security/microsoft-out-of-band-updates-fixed-critical-asp-net-core-privilege-escalation-flaw.html - Apple Patches iOS Flaw Allowing Recovery of Deleted Chats https://www.securityweek.com/apple-patches-ios-flaw-allowing-recovery-of-deleted-chats/ - AI Can Autonomously Hack Cloud Systems With Minimal Oversight: Researchers https://www.securityweek.com/ai-can-autonomously-hack-cloud-systems-with-minimal-oversight-researchers/ - Hacker Active Well Beyond Context.ai Compromise, Says Vercel CEO https://thecyberexpress.com/vercel-hacker-active-beyond-context-ai-hack/ - University of Warsaw Data Breach Exposes 200,000+ Sensitive Files on Darknet https://thecyberexpress.com/university-of-warsaw-cyberattack/ - Exposed Server Reveals AI-Assisted Credential Harvesting Factory https://thecyberexpress.com/bissa-scanner-ai-assisted-credential-factory/ - Researchers Uncover 10 In-the-Wild Prompt Injection Payloads Targeting AI Agents https://www.infosecurity-magazine.com/news/researchers-10-wild-indirect/

Cyber Daily News for April 22, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - North Korea's Lazarus APT stole $290M from Kelp DAO https://securityaffairs.com/191092/digital-id/north-koreas-lazarus-apt-stole-290m-from-kelp-dao.html - Oracle Patches 450 Vulnerabilities With April 2026 CPU https://www.securityweek.com/oracle-patches-450-vulnerabilities-with-april-2026-cpu/ - Venezuela energy sector targeted by highly destructive Lotus wiper https://securityaffairs.com/191106/malware/venezuela-energy-sector-targeted-by-highly-destructive-lotus-wiper.html - Ransomware negotiator caught secretly assisting BlackCat extortion scheme https://securityaffairs.com/191100/security/ransomware-negotiator-caught-secretly-assisting-blackcat-extortion-scheme.html - North Korean Hackers Use AppleScript, ClickFix in Fresh macOS Attacks https://www.securityweek.com/north-korean-hackers-use-applescript-clickfix-in-fresh-macos-attacks/ - Unchecked AI Agents Cause Cybersecurity Incidents at Two Thirds of Firms https://www.infosecurity-magazine.com/news/unchecked-ai-agents-cause/ - Google Antigravity in Crosshairs of Security Researchers, Cybercriminals https://www.securityweek.com/google-antigravity-in-crosshairs-of-security-researchers-cybercriminals/ - UK Faces a Cyber 'Perfect Storm' Driven by Tech Advances and Nation State Threats, NCSC Warns https://www.infosecurity-magazine.com/news/uk-faces-a-cyber-perfect-storm-ncsc/

Cyber Daily News for April 21, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - North Korean Blamed for $290m KelpDAO Crypto Heist https://www.infosecurity-magazine.com/news/north-korean-blamed-290m-kelpdao/ - U.S. CISA adds Cisco Catalyst, Kentico Xperience, PaperCut NG/MF, Synacor ZCS, Quest KACE SMA, and JetBrains TeamCity flaws to its Known Exploited Vulnerabilities catalog https://securityaffairs.com/191080/hacking/u-s-cisa-adds-cisco-catalyst-kentico-xperience-papercut-ng-mf-synacor-zcs-quest-kace-sma-and-jetbrains-teamcity-flaws-to-its-known-exploited-vulnerabilities-catalog.html - The US NSA is using Anthropic's Claude Mythos despite supply chain risk https://securityaffairs.com/191087/ai/the-us-nsa-is-using-anthropics-claude-mythos-despite-supply-chain-risk.html - ZionSiphon Malware Targets Water Infrastructure Systems https://www.infosecurity-magazine.com/news/zionsiphon-malware-water/ - Vercel Confirms Cyber Incident After Sophisticated Attacker Exploits Third-Party Tool https://www.infosecurity-magazine.com/news/vercel-cyber-incident-threat-actor/ - Bluesky hit by 24-hour DDoS attack as pro-Iran group claims responsibility https://securityaffairs.com/191059/security/bluesky-hit-by-24-hour-ddos-attack-as-pro-iran-group-claims-responsibility.html - France's ANTS ID System website hit by cyberattack, possible data breach https://securityaffairs.com/191069/data-breach/frances-ants-id-system-website-hit-by-cyberattack-possible-data-breach.html - Scattered Spider member Tyler Buchanan pleads guilty to major crypto theft https://securityaffairs.com/191052/cyber-crime/scattered-spider-member-tyler-buchanan-pleads-guilty-to-major-crypto-theft.html

Cyber Daily News for April 20, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Next.js Creator Vercel Hacked https://www.securityweek.com/next-js-creator-vercel-hacked/ - AI Model Claude Opus turns bugs into exploits for just $2,283 https://securityaffairs.com/191018/ai/ai-model-claude-opus-turns-bugs-into-exploits-for-just-2283.html - Cisco Patches Critical ISE Vulnerabilities Allowing Remote Code Execution Attacks https://thecyberexpress.com/cisco-ise-vulnerabilities-enable-rce/ - Senate Extends Surveillance Powers Until April 30 After Chaotic Votes in House https://www.securityweek.com/senate-extends-surveillance-powers-until-april-30-after-chaotic-votes-in-house/ - Cyber attacks fuel surge in cargo theft across logistics industry https://securityaffairs.com/191008/security/cyber-attacks-fuel-surge-in-cargo-theft-across-logistics-industry.html - Half of the 6 Million Internet-Facing FTP Servers Lack Encryption https://www.securityweek.com/half-of-the-6-million-internet-facing-ftp-servers-lack-encryption/ - UAE Cyber Security Council Warns 1 in 4 Public Files Contain Sensitive Personal Data https://thecyberexpress.com/cyber-security-council-alerts-on-public/ - Crypto Exchange Grinex Blames Western Spies for $13m Theft https://www.infosecurity-magazine.com/news/crypto-exchange-grinex-western/

Cyber Daily News for April 19, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Microsoft Defender under attack as three zero-days, two of them still unpatched, enable elevated access https://securityaffairs.com/190961/hacking/microsoft-defender-under-attack-as-three-zero-days-two-of-them-still-unpatched-enable-elevated-access.html - Operation PowerOFF: 53 DDoS domains seized and 3 Million criminal accounts uncovered https://securityaffairs.com/190932/cyber-crime/operation-poweroff-53-ddos-domains-seized-and-3-million-criminal-accounts-uncovered.html - Hidden VMs: how hackers leverage QEMU to stealthily steal data and spread malware https://securityaffairs.com/190982/security/hidden-vms-how-hackers-leverage-qemu-to-stealthily-steal-data-and-spread-malware.html - Commercial AI Models Show Rapid Gains in Vulnerability Research https://www.infosecurity-magazine.com/news/ai-models-rapid-gains/ - Kyrgyzstan-based crypto exchange Grinex shuts down after $13.7M cyber heist, blames Western Intelligence https://securityaffairs.com/190950/security/kyrgyzstan-based-crypto-exchange-grinex-shuts-down-after-13-7m-cyber-heist-blames-western-intelligence.html - Tycoon 2FA Loses Phishing Kit Crown Amid Surge in Attacks https://www.securityweek.com/tycoon-2fa-loses-phishing-kit-crown-amid-surge-in-attacks/ - Nexcorium Mirai variant exploits TBK DVR flaw to launch DDoS attacks https://securityaffairs.com/190974/malware/nexcorium-mirai-variant-exploits-tbk-dvr-flaw-to-launch-ddos-attacks.html - DraftKings hacker sentenced to prison, ordered to pay $1.4 Million https://securityaffairs.com/190943/cyber-crime/draftkings-hacker-sentenced-to-prison-ordered-to-pay-1-4-million.html

Cyber Daily News for April 18, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Microsoft Defender under attack as three zero-days, two of them still unpatched, enable elevated access https://securityaffairs.com/190961/hacking/microsoft-defender-under-attack-as-three-zero-days-two-of-them-still-unpatched-enable-elevated-access.html - Commercial AI Models Show Rapid Gains in Vulnerability Research https://www.infosecurity-magazine.com/news/ai-models-rapid-gains/ - Nexcorium Mirai variant exploits TBK DVR flaw to launch DDoS attacks https://securityaffairs.com/190974/malware/nexcorium-mirai-variant-exploits-tbk-dvr-flaw-to-launch-ddos-attacks.html - Operation PowerOFF: 53 DDoS domains seized and 3 Million criminal accounts uncovered https://securityaffairs.com/190932/cyber-crime/operation-poweroff-53-ddos-domains-seized-and-3-million-criminal-accounts-uncovered.html - Kyrgyzstan-based crypto exchange Grinex shuts down after $13.7M cyber heist, blames Western Intelligence https://securityaffairs.com/190950/security/kyrgyzstan-based-crypto-exchange-grinex-shuts-down-after-13-7m-cyber-heist-blames-western-intelligence.html - Tycoon 2FA Loses Phishing Kit Crown Amid Surge in Attacks https://www.securityweek.com/tycoon-2fa-loses-phishing-kit-crown-amid-surge-in-attacks/ - DraftKings hacker sentenced to prison, ordered to pay $1.4 Million https://securityaffairs.com/190943/cyber-crime/draftkings-hacker-sentenced-to-prison-ordered-to-pay-1-4-million.html - White House Chief of Staff to Meet With Anthropic CEO Over Its New AI Technology https://www.securityweek.com/white-house-chief-of-staff-to-meet-ith-anthropic-ceo-over-its-new-ai-technology/

Cyber Daily News for April 17, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Russian GRU Cyber Campaign Targets Western Logistics Firms Supporting Ukraine https://thecyberexpress.com/russian-gru-cyber-campaign-targets-logistics/ - Two North Korean IT Worker Scheme Facilitators Jailed in the US https://www.securityweek.com/two-north-korean-it-worker-scheme-facilitators-jailed-in-the-us/ - NIST Drops NVD Enrichment for Pre-March 2026 Vulnerabilities https://www.infosecurity-magazine.com/news/nvd-enrichment-premarch-2026/ - ZionSiphon Malware Targets ICS in Water Facilities https://www.securityweek.com/zionsiphon-malware-targets-ics-in-water-facilities/ - Cisco Fixed Four Critical Flaws in Identity Services and Webex https://securityaffairs.com/190909/security/cisco-fixed-four-critical-flaws-in-identity-services-and-webex.html - Recent Apache ActiveMQ Vulnerability Exploited in the Wild https://www.securityweek.com/recent-apache-activemq-vulnerability-exploited-in-the-wild/ - Critical nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover https://thecyberexpress.com/cve-2026-33032-nginx-ui-server-takeover/ - 53 DDoS Domains Taken Down by Law Enforcement https://www.securityweek.com/53-ddos-domains-taken-down-by-law-enforcement/

Cyber Daily News for April 16, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Systemic Flaw in MCP Protocol Could Expose 150 Million Downloads https://www.infosecurity-magazine.com/news/systemic-flaw-mcp-expose-150/ - Critical Nginx-ui MCP Flaw Actively Exploited in the Wild https://www.infosecurity-magazine.com/news/nginx-ui-mcp-flaw-actively/ - Claude Code, Gemini CLI, GitHub Copilot Agents Vulnerable to Prompt Injection via Comments https://www.securityweek.com/claude-code-gemini-cli-github-copilot-agents-vulnerable-to-prompt-injection-via-comments/ - 'I'm Just Scared': Teen Hacker Jailed After Massive U.S. School Data Breach https://thecyberexpress.com/hacker-matthew-lane-powerschool-data-breach/ - 100 Chrome Extensions Steal User Data, Create Backdoor https://www.securityweek.com/100-chrome-extensions-steal-user-data-open-backdoor/ - Signed Adware Operation Disables Antivirus Across 23,000 Hosts https://www.infosecurity-magazine.com/news/dragon-boss-adware-disables/ - Sweden Blames Pro-Russian Group for Cyberattack on Its Energy Infrastructure https://www.securityweek.com/sweden-blames-pro-russian-group-for-cyberattack-last-year-on-its-energy-infrastructure/ - OpenAI Unveils GPT-5.4-Cyber for Improving Cyber Defense With AI https://www.infosecurity-magazine.com/news/openai-unveils-gpt-54-cyber-defense/

Cyber Daily News for April 15, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Microsoft Patches Exploited SharePoint Zero-Day and 160+ Other Vulnerabilities https://www.securityweek.com/microsoft-patches-exploited-sharepoint-zero-day-and-160-other-vulnerabilities/ - $10 Domain Could Have Handed Hackers 25k Endpoints, Including in OT and Gov Networks https://www.securityweek.com/10-domain-could-have-handed-hackers-25k-endpoints-including-in-ot-and-gov-networks/ - Fortinet Patches Critical FortiSandbox Vulnerabilities https://www.securityweek.com/fortinet-patches-critical-fortisandbox-vulnerabilities/ - Personal Data of 1 Million Gym Members Compromised in Basic-Fit Security Incident https://securityaffairs.com/190815/data-breach/personal-data-of-1-million-gym-members-compromised-in-basic-fit-security-incident.html - PHP Composer Flaws Enable Remote Command Execution via Perforce VCS https://securityaffairs.com/190824/security/php-composer-flaws-enable-remote-command-execution-via-perforce-vcs.html - US, UK and Canada Disrupt $45M Crypto Theft in Operation Atlantic https://securityaffairs.com/190805/cyber-crime/us-uk-and-canada-disrupt-45m-crypto-theft-in-operation-atlantic.html - AI Companies To Play Bigger Role in CVE Program, Says CISA https://www.infosecurity-magazine.com/news/ai-companies-to-play-bigger-role/ - Researchers Spot Surge in Brute-Force Attacks from Middle East https://www.infosecurity-magazine.com/news/researchers-surge-bruteforce/

Cyber Daily News for April 14, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - OpenAI Impacted by North Korea-Linked Axios Supply Chain Hack https://www.securityweek.com/openai-impacted-by-north-korea-linked-axios-supply-chain-hack/ - Organizations Warned of Exploited Windows, Adobe Acrobat Vulnerabilities https://www.securityweek.com/organizations-warned-of-exploited-windows-adobe-acrobat-vulnerabilities/ - Triad Nexus Evades Sanctions to Fuel Cybercrime https://www.securityweek.com/triad-nexus-evades-sanctions-to-fuel-cybercrime/ - Massive Cyberattack Hits Europe's Largest Fitness Chain, Member Data Exposed https://thecyberexpress.com/basic-fit-data-breach-exposes-member-data/ - Booking.com Says Hackers Accessed User Information https://www.securityweek.com/booking-com-says-hackers-accessed-user-information/ - Mailbox Rule Abuse Emerges as Stealthy Post-Compromise Threat https://www.infosecurity-magazine.com/news/mailbox-rule-abuse-stealthy-post/ - Hackers Exploit Kali Forms Vulnerability to Take Over WordPress Sites https://thecyberexpress.com/kali-forms-vulnerability-wordpress-plugin/ - Mirax Android Trojan Turns Devices Into Residential Proxy Nodes https://www.infosecurity-magazine.com/news/mirax-trojan-devices-proxy-nodes/

Cyber Daily News for April 13, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - OpenAI Responds to Axios npm Supply Chain Attack, Rotates macOS Certificates https://thecyberexpress.com/axios-npm-supply-chain-attack-escalating/ - Adobe Patches Actively Exploited Acrobat Reader Flaw CVE-2026-34621 https://thecyberexpress.com/acrobat-reader-flaw-adobe-cve-2026-34621/ - CPUID Hacked to Serve Trojanized CPU-Z and HWMonitor Downloads https://www.securityweek.com/cpuid-hacked-to-serve-trojanized-cpu-z-and-hwmonitor-downloads/ - Rockstar Cyberattack Confirmed; ShinyHunters Claims Breach, Issues Extortion Threat https://thecyberexpress.com/rockstar-cyberattack-gta-5/ - Citizen Lab: Webloc Tracked 500M Devices for Global Law Enforcement https://securityaffairs.com/190715/intelligence/citizen-lab-webloc-tracked-500m-devices-for-global-law-enforcement.html - Ransomware Attack on Dutch Software Vendor Disrupts Hospital Systems https://thecyberexpress.com/chipsoft-ransomware-incident/ - Authorities Dismantle W3LL Phishing Empire Powering Global Business Email Attacks https://thecyberexpress.com/authorities-dismantle-w3ll-phishing-kit/ - Fake Claude Website Distributes PlugX RAT https://www.securityweek.com/fake-claude-website-distributes-plugx-rat/

Cyber Daily News for April 12, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Adobe Patches Reader Zero-Day Exploited for Months https://www.securityweek.com/adobe-patches-reader-zero-day-exploited-for-months/ - Censys finds 5,219 devices exposed to attacks by Iranian APTs, majority in U.S. https://securityaffairs.com/190646/ics-scada/censys-finds-5219-devices-exposed-to-attacks-by-iranian-apts-majority-in-u-s.html - Ransomware attack on ChipSoft knocks EHR services offline across hospitals in the Netherlands and Belgium https://securityaffairs.com/190615/cyber-crime/ransomware-attack-on-chipsoft-knocks-ehr-services-offline-across-hospitals-in-the-netherlands-and-belgium.html - EngageLab SDK flaw opens door to private data on 50M Android devices https://securityaffairs.com/190586/hacking/engagelab-sdk-flaw-opens-door-to-private-data-on-50m-android-devices.html - Bitcoin Depot hack leads to 3.6M Bitcoin theft via stolen credentials https://securityaffairs.com/190578/cyber-crime/bitcoin-depot-hack-leads-to-3-6m-bitcoin-theft-via-stolen-credentials.html - GlassWorm evolves with Zig dropper to infect multiple developer tools https://securityaffairs.com/190638/malware/glassworm-evolves-with-zig-dropper-to-infect-multiple-developer-tools.html - CVE-2026-39987: Marimo RCE exploited in hours after disclosure https://securityaffairs.com/190623/hacking/cve-2026-39987-marimo-rce-exploited-in-hours-after-disclosure.html - UAT-10362 linked to LucidRook attacks targeting Taiwan-based institutions https://securityaffairs.com/190598/security/uat-10362-linked-to-lucidrook-attacks-targeting-taiwan-based-institutions.html

Cyber Daily News for April 11, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - CVE-2026-39987: Marimo RCE Exploited in Hours After Disclosure https://securityaffairs.com/190623/hacking/cve-2026-39987-marimo-rce-exploited-in-hours-after-disclosure.html - Ransomware Attack on ChipSoft Knocks EHR Services Offline Across Dutch and Belgian Hospitals https://securityaffairs.com/190615/cyber-crime/ransomware-attack-on-chipsoft-knocks-ehr-services-offline-across-hospitals-in-the-netherlands-and-belgium.html - Iran-Linked Hackers Targeting ICS and SCADA Systems in Critical Infrastructure https://www.securityweek.com/industry-reactions-to-iran-hacking-ics-in-critical-infrastructure-feedback-friday/ - APT28 DNS Hijacking Campaign Exploiting Vulnerable Routers https://thecyberexpress.com/weekly-roundup-cybersecurity-global-threats/ - Juniper Networks Patches Dozens of Junos OS Vulnerabilities Including Critical RCE https://www.securityweek.com/juniper-networks-patches-dozens-of-junos-os-vulnerabilities/ - New Windows Zero-Day Vulnerability Disclosed https://www.securityweek.com/in-other-news-cyberattack-stings-stryker-windows-zero-day-china-supercomputer-hack/ - Cyberattack Stings Medical Technology Giant Stryker https://www.securityweek.com/in-other-news-cyberattack-stings-stryker-windows-zero-day-china-supercomputer-hack/ - New Mac Stealer Malware Variant Discovered https://www.securityweek.com/in-other-news-cyberattack-stings-stryker-windows-zero-day-china-supercomputer-hack/

Cyber Daily News for April 10, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Malicious PDF reveals active Adobe Reader zero-day in the wild https://securityaffairs.com/190558/hacking/malicious-pdf-reveals-active-adobe-reader-zero-day-in-the-wild.html - Chrome 147 Patches 60 Vulnerabilities, Including Two Critical Flaws Worth $86,000 https://www.securityweek.com/chrome-147-patches-60-vulnerabilities-including-two-critical-flaws-worth-86000/ - EngageLab SDK flaw opens door to private data on 50M Android devices https://securityaffairs.com/190586/hacking/engagelab-sdk-flaw-opens-door-to-private-data-on-50m-android-devices.html - Microsoft Recall Flaw Exposes Decrypted User Data, Researchers Find https://thecyberexpress.com/totalrecall-windows-recall-security-gap/ - Bitcoin Depot Reports $3.6m Crypto Theft After System Breach https://www.infosecurity-magazine.com/news/bitcoin-depot-dollar36m-crypto/ - Critical Marimo Flaw Exploited Hours After Public Disclosure https://www.securityweek.com/critical-marimo-flaw-exploited-hours-after-public-disclosure/ - Not a Signal Flaw: iPhone Notifications Became a Backdoor for Deleted Messages https://thecyberexpress.com/not-a-signal-flaw-iphone-notifications/ - Google Rolls Out Cookie Theft Protections in Chrome https://www.securityweek.com/google-rolls-out-cookie-theft-protections-in-chrome/

Cyber Daily News for April 9, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Alleged Breach of China's National Supercomputing Center — 10+ PB of Military Data Stolen https://securityaffairs.com/190536/hacking/the-alleged-breach-of-chinas-national-supercomputing-center-can-have-serious-geopolitical-consequences.html - Adobe Reader Zero-Day Exploited for Months: Researcher https://www.securityweek.com/adobe-reader-zero-day-exploited-for-months-researcher/ - Russia-linked APT28 Deploys PRISMEX Malware Against Ukraine and Allied Infrastructure https://securityaffairs.com/190510/apt/russia-linked-apt28-uses-prismex-to-infiltrate-ukraine-and-allied-infrastructure-with-advanced-tactics.html - CISA Adds Critical Ivanti EPMM Flaw to Known Exploited Vulnerabilities Catalog https://securityaffairs.com/190519/security/u-s-cisa-adds-a-flaw-in-ivanti-epmm-to-its-known-exploited-vulnerabilities-catalog-2.html - Signature Healthcare Cyberattack Diverts Ambulances, Cancels Chemotherapy https://thecyberexpress.com/signature-healthcare-cyberattack/ - Google Warns of New Threat Group UNC6783 Targeting BPOs and Helpdesks https://www.securityweek.com/google-warns-of-new-campaign-targeting-bpos-to-steal-corporate-data/ - ClickFix macOS Attack Shifts to Script Editor to Bypass Security Controls https://thecyberexpress.com/clickfix-style-macos-attack/ - AI Agents Drive 76% Surge in Non-Human Identities, Exposing Governance Gaps https://www.infosecurity-magazine.com/news/governance-gaps-agents-76-increase/

Cyber Daily News for April 8, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - US Thwarts DNS Hijacking Network Controlled by Russian APT28 Hackers https://www.infosecurity-magazine.com/news/us-thwarts-dns-hijacking-network/ - Iran-Linked Hackers Disrupt US Critical Infrastructure via PLC Attacks https://www.securityweek.com/iran-linked-hackers-disrupt-us-critical-infrastructure-via-plc-attacks/ - Gov. Tim Walz Deploys National Guard After Winona Cyberattack Disrupts Services https://thecyberexpress.com/winona-county-cyberattack-update/ - Critical Flowise RCE Vulnerability Actively Exploited, Thousands of Systems at Risk https://thecyberexpress.com/flowise-rce-vulnerability-cve-2025-59528/ - Fast-moving Storm-1175 uses new exploits to breach networks and drop Medusa https://securityaffairs.com/190440/cyber-crime/fast-moving-storm-1175-uses-new-exploits-to-breach-networks-and-drop-medusa.html - GPU Rowhammer Attack Enables Privilege Escalation and Full System Compromise https://www.infosecurity-magazine.com/news/gpu-based-rowhammer-attack/ - Researchers Find a Zero-Day Attack Targeting Adobe Reader Users https://thecyberexpress.com/zero-day-fingerprinting-attack-on-adobe-reader/ - Claude Discovers Apache ActiveMQ Bug Hidden for 13 Years https://www.infosecurity-magazine.com/news/claude-apache-activemq-bug-hidden/

Cyber Daily News for April 7, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Fortinet Releases Emergency Patch After FortiClient EMS Zero-Day Exploited in the Wild https://www.infosecurity-magazine.com/news/fortinet-emergency-patch-ems-bug/ - Researchers Publish Unpatched Windows Zero-Day BlueHammer https://securityaffairs.com/190400/breaking-news/experts-published-unpatched-windows-zero-day-bluehammer.html - Attackers Exploit RCE Flaw as 14,000 F5 BIG-IP APM Instances Remain Exposed https://securityaffairs.com/190384/security/attackers-exploit-rce-flaw-as-14000-f5-big-ip-apm-instances-remain-exposed.html - Storm-1175 Exploits Flaws in High-Velocity Medusa Attacks https://www.infosecurity-magazine.com/news/storm1175-medusa-attacks/ - German Police Unmask REvil Ransomware Leader https://www.securityweek.com/german-police-unmask-revil-ransomware-leader/ - $20 Billion Lost to Cybercrime as AI and Investment Scams Surge: FBI Report https://thecyberexpress.com/fbi-internet-crime-report-2025/ - White House Seeks to Slash CISA Funding by $707 Million https://www.securityweek.com/white-house-seeks-to-slash-cisa-funding-by-707-million/ - Wynn Resorts Says 21,000 Employees Affected by ShinyHunters Hack https://www.securityweek.com/wynn-resorts-says-21000-employees-affected-by-shinyhunters-hack/

Cyber Daily News for April 6, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Fortinet Rushes Emergency Patches for Actively Exploited Zero-Day (CVE-2026-35616) https://securityaffairs.com/190392/hacking/cve-2026-35616-fortinet-fixes-actively-exploited-high-severity-flaw.html - North Korea Drains $285M from Drift Protocol in 12 Minutes After 6-Month Infiltration https://thecyberexpress.com/drift-protocol-draining-285m-in-12-mins/ - European Commission Hit by 91GB Data Leak via Compromised Trivy Security Tool https://thecyberexpress.com/european-commission-cloud-breach/ - North Korea-Linked Actors Compromise Axios NPM Package in Supply Chain Attack https://securityaffairs.com/190379/malware/security-affairs-malware-newsletter-round-91.html - Cyberattack Disrupts Massachusetts Emergency Dispatch Systems https://thecyberexpress.com/massachusetts-emergency-cyberattack/ - Education Authority Cyberattack Disrupts Schools Across Northern Ireland https://thecyberexpress.com/education-authority-cyberattack-ni-schools/ - FCC Moves to Fine Voxbeam $4.5 Million in Robocall Enforcement Case https://thecyberexpress.com/voxbeam-robocall-case-fcc-fines-firm/ - New Malware Threats: Infiniti Stealer Targets macOS, RoadK1ll Implant Uses WebSockets https://securityaffairs.com/190379/malware/security-affairs-malware-newsletter-round-91.html

Cyber Daily News for April 5, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - North Korea-Linked Hackers Drain $285M from Drift in Sophisticated Attack https://securityaffairs.com/190330/hacking/north-korea-linked-hackers-drain-285m-from-drift-in-sophisticated-attack.html - European Commission Breach Exposed Data of 30 EU Entities https://securityaffairs.com/190333/security/european-commission-breach-exposed-data-of-30-eu-entities-cert-eu-says.html - CISA Adds TrueConf Client Flaw CVE-2026-3502 to Known Exploited Vulnerabilities Catalog https://securityaffairs.com/190341/security/u-s-cisa-adds-a-flaw-in-trueconf-client-to-its-known-exploited-vulnerabilities-catalog.html - Qilin Ransomware Group Claims Hack of German Political Party Die Linke https://securityaffairs.com/190348/cyber-crime/qilin-ransomware-group-claims-the-hack-of-german-political-party-die-linke.html - Hasbro Hit by Cyberattack, Investigates Possible Data Breach https://securityaffairs.com/190306/data-breach/hasbro-hit-by-cyberattack-investigates-possible-data-breach.html - CrystalX RAT: New MaaS Malware Combines Spyware, Stealer, and Remote Access https://securityaffairs.com/190310/cyber-crime/crystalx-rat-new-maas-malware-combines-spyware-stealer-and-remote-access.html - Pro-Iran Handala Group Breached Israeli Defence Contractor PSK Wind Technologies https://securityaffairs.com/190319/data-breach/pro-iran-handala-group-breached-israeli-defence-contractor-psk-wind-technologies.html - Obfuscated .cmd Malware Delivered via Email Escalates Privileges and Evades Detection https://securityaffairs.com/190358/hacking/image-or-malware-read-until-the-end-and-answer-in-comments.html

Cyber Daily News for April 4, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - European Commission Breach Exposes 300GB of Data from 30 EU Entities https://www.securityweek.com/european-commission-confirms-data-breach-linked-to-trivy-supply-chain-attack/ - North Korea-Linked Hackers Drain $285M from Drift Protocol https://securityaffairs.com/190330/hacking/north-korea-linked-hackers-drain-285m-from-drift-in-sophisticated-attack.html - TrueConf Zero-Day Exploited in Asian Government Attacks https://www.securityweek.com/trueconf-zero-day-exploited-in-asian-government-attacks/ - Critical ShareFile Flaws Lead to Unauthenticated RCE https://www.securityweek.com/critical-sharefile-flaws-lead-to-unauthenticated-rce/ - CrystalX RAT: New MaaS Malware Combines Spyware, Stealer, and Remote Access https://securityaffairs.com/190310/cyber-crime/crystalx-rat-new-maas-malware-combines-spyware-stealer-and-remote-access.html - ChatGPT Data Leak Exposes User Information https://www.securityweek.com/in-other-news-chatgpt-data-leak-android-rootkit-water-facility-hit-by-ransomware/ - New Android Rootkit Discovered Targeting Mobile Users https://www.securityweek.com/in-other-news-chatgpt-data-leak-android-rootkit-water-facility-hit-by-ransomware/ - Water Treatment Facility Hit by Ransomware Attack https://www.securityweek.com/in-other-news-chatgpt-data-leak-android-rootkit-water-facility-hit-by-ransomware/

Cyber Daily News for April 3, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - North Korean Hackers Drain $285 Million From Drift in 10 Seconds https://www.securityweek.com/north-korean-hackers-drain-285-million-from-drift-in-10-seconds/ - React2Shell Exploited in Large-Scale Credential Harvesting Campaign https://www.securityweek.com/react2shell-exploited-in-large-scale-credential-harvesting-campaign/ - Researchers Observe Sub-One-Hour Ransomware Attacks https://www.infosecurity-magazine.com/news/researchers-subonehour-ransomware/ - Cisco Patches Critical and High-Severity Vulnerabilities https://securityaffairs.com/190295/security/cisco-fixed-critical-and-high-severity-flaws.html - Apple Expands iOS 18 Security Updates Amid DarkSword Threat https://www.infosecurity-magazine.com/news/apple-ios-18-updates-darksword/ - Critical Vulnerability in Claude Code Emerges Days After Source Leak https://www.securityweek.com/critical-vulnerability-in-claude-code-emerges-days-after-source-leak/ - Hasbro Hit by Cyberattack, Investigates Possible Data Breach https://securityaffairs.com/190306/security/hasbro-hit-by-cyberattack-investigates-possible-data-breach.html - T-Mobile Sets the Record Straight on Latest Data Breach Filing https://www.securityweek.com/t-mobile-sets-the-record-straight-on-latest-data-breach-filing/

Cyber Daily News for April 2, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Google fixes fourth actively exploited Chrome zero-day of 2026 https://securityaffairs.com/190265/hacking/google-fixes-fourth-actively-exploited-chrome-zero-day-of-2026.html - Mercor Hit by LiteLLM Supply Chain Attack https://www.securityweek.com/mercor-hit-by-litellm-supply-chain-attack/ - Google links Axios npm supply chain attack to North Korea-linked APT UNC1069 https://securityaffairs.com/190256/security/google-links-axios-npm-supply-chain-attack-to-north-korea-linked-apt-unc1069.html - Toy Giant Hasbro Hit by Cyberattack https://www.securityweek.com/toy-giant-hasbro-hit-by-cyberattack/ - Italian spyware vendor creates Fake WhatsApp app, targeting 200 users https://securityaffairs.com/190276/malware/italian-spyware-vendor-creates-fake-whatsapp-app-targeting-200-users.html - FBI Warns of AVrecon Malware Targeting Network Devices Across 163 Countries https://thecyberexpress.com/fbi-warns-of-avrecon-malware/ - Most CNI Firms Face Up to £5m in Downtime from OT Attacks https://www.infosecurity-magazine.com/news/most-cni-firms-5m-downtime-ot/ - FBI Warns of Data Security Risks From China-Made Mobile Apps https://www.securityweek.com/fbi-warns-of-data-security-risks-from-china-made-mobile-apps/

Cyber Daily News for April 1, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - North Korea's Lazarus Group Behind Axios npm Supply Chain Attack https://www.securityweek.com/axios-npm-package-breached-in-north-korean-supply-chain-attack/ - AI Startup Mercor Hit by Supply Chain Attack Linked to LiteLLM https://thecyberexpress.com/mercor-cyberattack/ - Iran-Linked Hackers Breach FBI Director Kash Patel's Personal Email https://thecyberexpress.com/what-kash-patel-email-hack-is-really-about/ - Anthropic Accidentally Leaks Claude Code Source via npm https://securityaffairs.com/190229/data-breach/anthropic-accidentally-leaks-claude-code.html - ChatGPT Security Issue Enabled Data Theft via Single Prompt https://www.infosecurity-magazine.com/news/chatgpt-security-issue-steal-data/ - Nearly Half a Million Lloyds Banking Group Customers Affected by Data Incident https://securityaffairs.com/190213/data-breach/nearly-half-a-million-mobile-customers-of-lloyds-banking-group-affected-by-a-security-incident.html - TeamPCP Moves From Open Source to AWS Environments https://www.securityweek.com/teampcp-moves-from-oss-to-aws-environments/ - CrewAI Vulnerabilities Expose Devices to Hacking via Sandbox Escape https://www.securityweek.com/crewai-vulnerabilities-expose-devices-to-hacking/

Cyber Daily News for March 31, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Axios Supply Chain Attack Exposes Developers to Hidden Malware https://thecyberexpress.com/axios-supply-chain-attack-npm-malware/ - Alleged Unpatched Telegram Zero-Day Allows Device Takeover, but Telegram Denies https://securityaffairs.com/190167/security/its-a-mystery-alleged-unpatched-telegram-zero-day-allows-device-takeover-but-telegram-denies.html - CISA Adds Citrix NetScaler Flaw to Known Exploited Vulnerabilities Catalog https://securityaffairs.com/190197/security/u-s-cisa-adds-a-flaw-in-citrix-netscaler-to-its-known-exploited-vulnerabilities-catalog.html - Qilin Ransomware Allegedly Breached Chemical Giant Dow Inc https://securityaffairs.com/190186/cyber-crime/qilin-ransomware-allegedly-breached-chemical-manufacturer-giant-dow-inc.html - Lloyds Data Security Incident Impacts 450,000 Individuals https://www.securityweek.com/lloyds-data-security-incident-impacts-450000-individuals/ - Intesa Sanpaolo Data Breach Exposes 3,500+ Customers, Draws 31.8M Euro Penalty https://thecyberexpress.com/intesa-sanpaolo-data-breach/ - StrongSwan Flaw Allows Unauthenticated Attackers to Crash VPNs https://www.securityweek.com/strongswan-flaw-allows-unauthenticated-attackers-to-crash-vpns/ - Critical Vulnerability in OpenAI Codex Allowed GitHub Token Compromise https://www.securityweek.com/critical-vulnerability-in-openai-codex-allowed-github-token-compromise/

Cyber Daily News for March 30, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Critical Fortinet FortiClient EMS flaw exploited for Remote Code Execution https://securityaffairs.com/190158/security/critical-fortinet-forticlient-ems-flaw-exploited-for-remote-code-execution.html - F5 BIG-IP DoS Flaw Upgraded to Critical RCE, Now Exploited in the Wild https://www.securityweek.com/f5-big-ip-dos-flaw-upgraded-to-critical-rce-now-exploited-in-the-wild/ - Citrix NetScaler CVE-2026-3055 Actively Probed by Attackers https://securityaffairs.com/190131/hacking/urgent-alert-netscaler-bug-cve-2026-3055-probed-by-attackers-could-leak-sensitive-data.html - European Commission Confirms Cloud Data Breach https://www.infosecurity-magazine.com/news/european-commission-cloud-data/ - FBI Confirms Kash Patel Email Hack as US Offers $10M Reward for Hackers https://www.securityweek.com/fbi-confirms-kash-patel-email-hack-as-us-offers-10m-reward-for-hackers/ - Russia-linked APT TA446 uses DarkSword exploit to target iPhone users https://securityaffairs.com/190139/apt/russia-linked-apt-ta446-uses-darksword-exploit-to-target-iphone-users-in-phishing-wave.html - New macOS Infinity Stealer uses Nuitka Python payload and ClickFix https://securityaffairs.com/190147/security/new-macos-infinity-stealer-uses-nuitka-python-payload-and-clickfix.html - Hackers Impersonate Ukrainian CERT to Plant RAT on Government, Hospital Networks https://thecyberexpress.com/hackers-impersonate-cert-ua-agewheeze-rat/

Cyber Daily News for March 29, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - ShinyHunters Claims Massive European Commission Breach https://securityaffairs.com/190095/data-breach/shinyhunters-claims-the-hack-of-the-european-commission.html - Apple Pushes Urgent Lock Screen Warnings to Unpatched iPhones and iPads https://securityaffairs.com/190109/security/apple-issues-urgent-lock-screen-warnings-for-unpatched-iphones-and-ipads.html - Iran-Linked Handala Group Hacked FBI Director Kash Patel's Personal Email https://securityaffairs.com/190088/intelligence/iran-linked-group-handala-hacked-fbi-director-kash-patels-personal-email-account.html - European Commission Confirms Cyberattack on Cloud Infrastructure https://securityaffairs.com/190067/data-breach/the-european-commission-confirmed-a-cyberattack-affecting-part-of-its-cloud-systems.html - New AITM Phishing Campaign Hijacks TikTok Business Accounts https://securityaffairs.com/190058/security/new-aitm-phishing-wave-hijacks-tiktok-business-accounts.html - CISA Adds F5 BIG-IP AMP Flaw to Known Exploited Vulnerabilities Catalog https://securityaffairs.com/190076/uncategorized/u-s-cisa-adds-a-flaw-in-f5-big-ip-amp-to-its-known-exploited-vulnerabilities-catalog.html - CISA and BSI Warn of Critical PTC Windchill and FlexPLM Vulnerability https://securityaffairs.com/190049/security/cisa-and-bsi-warn-orgs-of-critical-ptc-windchill-and-flexplm-flaw.html - CISA Adds Aquasecurity Trivy Flaw to KEV Catalog https://securityaffairs.com/190044/security/u-s-cisa-adds-an-aquasecurity-trivy-flaw-to-its-known-exploited-vulnerabilities-catalog.html

Cyber Daily News for March 28, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Iran-linked Handala Group Claims Hack of FBI Director Kash Patel's Personal Email https://securityaffairs.com/190088/intelligence/iran-linked-group-handala-hacked-fbi-director-kash-patels-personal-email-account.html - European Commission Confirms Cyberattack on Cloud Systems, Data Potentially Stolen https://securityaffairs.com/190067/data-breach/the-european-commission-confirmed-a-cyberattack-affecting-part-of-its-cloud-systems.html - CISA and BSI Warn of Critical CVSS 10.0 Flaw in PTC Windchill — No Patch Available https://securityaffairs.com/190049/security/cisa-and-bsi-warn-orgs-of-critical-ptc-windchill-and-flexplm-flaw.html - CISA Adds Actively Exploited F5 BIG-IP RCE Flaw to KEV Catalog https://securityaffairs.com/190076/uncategorized/u-s-cisa-adds-a-flaw-in-f5-big-ip-amp-to-its-known-exploited-vulnerabilities-catalog.html - Google Warns Quantum Computing Threat to Encryption Could Arrive by 2029 https://www.infosecurity-magazine.com/news/quantum-encryption-q-day-closer/ - Cloudflare-Themed ClickFix Attack Drops Infiniti Stealer on Macs https://www.securityweek.com/cloudflare-themed-clickfix-attack-drops-infiniti-stealer-on-macs/ - New AiTM Phishing Wave Hijacks TikTok Business Accounts for Malvertising https://www.infosecurity-magazine.com/news/phishing-targets-tiktok-for/ - TeamPCP Targets Telnyx Package in PyPI Supply Chain Attack https://www.infosecurity-magazine.com/news/teampcp-targets-telnyx-pypi-package/

Cyber Daily News for March 27, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - China-linked Red Menshen APT deploys stealthy BPFDoor implants in telecom networks https://securityaffairs.com/190029/malware/china-linked-red-menshen-apt-deploys-stealthy-bpfdoor-implants-in-telecom-networks.html - U.S. CISA adds an Aquasecurity Trivy flaw to its Known Exploited Vulnerabilities catalog https://securityaffairs.com/190044/security/u-s-cisa-adds-an-aquasecurity-trivy-flaw-to-its-known-exploited-vulnerabilities-catalog.html - U.S. CISA adds a Langflow flaw to its Known Exploited Vulnerabilities catalog https://securityaffairs.com/190018/security/u-s-cisa-adds-a-langflow-flaw-to-its-known-exploited-vulnerabilities-catalog.html - Attackers Rapidly Weaponize Critical Oracle WebLogic RCE, Honeypot Study Finds https://www.infosecurity-magazine.com/news/critical-oracle-weblogic-rce/ - Coruna iOS Exploit Kit Likely an Update to Operation Triangulation https://www.securityweek.com/coruna-ios-exploit-kit-likely-an-update-to-operation-triangulation/ - EtherRAT Techniques Bypass Security Via Ethereum Smart Contracts https://www.infosecurity-magazine.com/news/etherrat-bypass-security-ethereum/ - Security Researchers Sound the Alarm on Vulnerabilities in AI-Generated Code https://www.infosecurity-magazine.com/news/ai-generated-code-vulnerabilities/ - Congress Wants a GPS Tracker on Every Advanced AI Chip America Exports https://thecyberexpress.com/advanced-ai-chip-chip-security-act/

Cyber Daily News for March 26, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Alleged RedLine Malware Administrator Extradited to US https://www.securityweek.com/alleged-redline-malware-administrator-extradited-to-us/ - FCC Bans Foreign-Made Routers Over National Security Concerns https://www.infosecurity-magazine.com/news/us-fcc-bans-foreign-made-routers/ - Three Individuals Charged for Trying to Smuggle 'America-Made' AI Tech Worth $170M https://thecyberexpress.com/charged-for-smuggling-america-made-ai-tech/ - Port of Vigo Hit by Ransomware Attack, Cargo Systems Disrupted https://thecyberexpress.com/port-of-vigo-cyberattack-disrupts-systems/ - Iran-Linked Pay2Key Ransomware Group Re-Emerges https://www.infosecurity-magazine.com/news/iranlinked-pay2key-ransomware/ - Patch now: TP-Link Archer NX Routers Vulnerable to Firmware Takeover https://securityaffairs.com/189980/iot/patch-now-tp-link-archer-nx-routers-vulnerable-to-firmware-takeover.html - Russian authorities arrest alleged LeakBase admin behind stolen data marketplace https://securityaffairs.com/189994/cyber-crime/russian-authorities-arrest-alleged-leakbase-admin-behind-stolen-data-marketplace.html - Node.js Fixes Critical Flaws, Patches DoS Risk in Latest Security Update https://thecyberexpress.com/nodejs-cve-2026-21637/