ICYMI: 2026-04-13
Latest Headlines
JanelaRAT Malware Targets Latin American Banks with 14,739 Attacks in Brazil in 2025
FBI and Indonesian Police Dismantle W3LL Phishing Network Behind $20M Fraud Attempts
⚡ Weekly Recap: Fiber Optic Spying, Windows Rootkit, AI Vulnerability Hunting and More
North Korea’s APT37 Uses Facebook Social Engineering to Deliver RokRAT Malware
OpenAI Revokes macOS App Certificate After Malicious Axios Supply Chain Incident
Meta Is Warned That Facial Recognition Glasses Will Arm Sexual Predators
BrowserGate: Claims of LinkedIn ‘Spying’ Clash With Security Research Findings
OpenAI Impacted by North Korea-Linked Axios Supply Chain Hack
International Operation Targets Multimillion-Dollar Crypto Theft Schemes
CPUID Hacked to Serve Trojanized CPU-Z and HWMonitor Downloads
Gmail Brings End-to-End Encryption to Android and iOS for Enterprise Users
Claude AI Reportedly Down for Hundreds of Users With Intermittent 500 Errors
Hackers Abuse GitHub and Jira Notifications to Deliver Phishing Through Trusted SaaS Channels
Mozilla Criticizes Microsoft for Installing Copilot on Windows Without User Consent
How Threat Intelligence Drives a Real ROI Boost for Your SOC
Nginx 1.29.8 and FreeNginx Released With Critical Security Updates
Marimo RCE Vulnerability Exploited in the Within 10 Hours of Disclosure
Critical Axios Vulnerability Allows Remote Code Execution – PoC Released
Hackers Abuse MSBuild LOLBin to Evade Detection and Launch Fileless Windows Attacks
Apache Tomcat Vulnerabilities Enables Bypass of EncryptInterceptor
Iran-Linked CyberAv3ngers Sets Sights on Water Utilities and Industrial Controllers
European Gym giant Basic-Fit data breach affects 1 million members
Stolen Rockstar Games analytics data leaked by extortion gang
Critical flaw in wolfSSL library enables forged certificate use
FBI takedown of W3LL phishing service leads to developer arrest
OpenAI rotates macOS certs after Axios attack hit code-signing workflow
Adobe rolls out emergency fix for Acrobat, Reader zero-day flaw
The silent “Storm”: New infostealer hijacks sessions, decrypts server-side
– MTZ