ICYMI: 2026-04-01
Latest Headlines
CERT-UA Impersonation Campaign Spread AGEWHEEZE Malware to 1 Million Emails
Microsoft Warns of WhatsApp-Delivered VBS Malware Hijacking Windows via UAC Bypass
Casbaneiro Phishing Targets Latin America and Europe Using Dynamic PDF Lures
New Chrome Zero-Day CVE-2026-5281 Under Active Exploitation — Patch Released
3 Reasons Attackers Are Using Your Trusted Tools Against You (And Why You Don’t See It Coming)
Google Attributes Axios npm Supply Chain Attack to North Korean Group UNC1069
Claude Code Source Leaked via npm Packaging Error, Anthropic Confirms
Apple Will Push Out Rare ‘Backported’ Patches to Protect iOS 18 Users From DarkSword Hacking Tool
Exploited Zero-Day Among 21 Vulnerabilities Patched in Chrome
FBI Warns of Data Security Risks From China-Made Mobile Apps
Axios NPM Package Breached in North Korean Supply Chain Attack
Google Addresses Vertex Security Issues After Researchers Weaponize AI Agents
Magecart Hackers Uses 100+ Domains to Hijack eStores Checkouts and Steal Card Data
Google Cloud’s Vertex AI platform Vulnerability Allow Attackers to Access Sensitive Data
Hackers Actively Exploiting Critical WebLogic RCE Vulnerabilities in Attacks
Russian Hackers Using Remote Access Toolkit “CTRL” for RDP Hijacking
New Chrome Zero-Day Vulnerability Actively Exploited in Attacks — Patch Now
Hackers Use EtherRAT and EtherHiding to Hide Malware Infrastructure on Ethereum
Hackers Push CrystalX Malware-as-a-Service Through Telegram With Stealer and RAT Features
Hackers Hijack Hotel Booking Workflows to Scam Guests With Fake Payment Requests
Cisco Source Code and Data Leak Allegedly Claimed by ShinyHunters
New CrystalRAT malware adds RAT, stealer and prankware features
Apple expands iOS 18 updates to more iPhones to block DarkSword attacks
Hackers exploit TrueConf zero-day to push malicious software updates
New EvilTokens service fuels Microsoft device code phishing attacks
‘NoVoice’ Android malware on Google Play infected 2.3 million devices
Routine Access Is Powering Modern Intrusions, a New Threat Report Finds
FBI warns against using Chinese mobile apps due to privacy risks
Google fixes fourth Chrome zero-day exploited in attacks in 2026
Google Drive ransomware detection now on by default for paying users
New Windows 11 emergency update fixes preview update install issues
– MTZ