ICYMI: 2026-05-04
Latest Headlines
Phishing Campaign Hits 80+ Orgs Using SimpleHelp and ScreenConnect RMM Tools
Progress Patches Critical MOVEit Automation Bug Enabling Authentication Bypass
⚡ Weekly Recap: AI-Powered Phishing, Android Spying Tool, Linux Exploit, GitHub RCE & More
Silver Fox Deploys ABCDoor Malware via Tax-Themed Phishing in India and Russia
Critical cPanel Vulnerability Weaponized to Target Government and MSP Networks
Global Crackdown Arrests 276, Shuts 9 Crypto Scam Centers, Seizes $701M
DHS Demanded Google Surrender Data on Canadian’s Activity, Location Over Anti-ICE Posts
Cisco Moves to Acquire Astrix Security to Tackle Non-Human Identity Risks
Over 40,000 Servers Compromised in Ongoing cPanel Exploitation
Edtech Firm Instructure Discloses Data Breach Amid Hacker Leak Threats
DigiCert Hacked via Weaponized Screensaver File to Obtain EV Code Signing Certificates
New MicroStealer Malware Actively Attacking Telecom & Education Sectors
Bluekit Phishing Kit Automates Domains, 2FA Lures, and Session Hijacking in One Panel
Malicious Tanstack Package Uses Postinstall Script to Steal Developer Environment Files
New xlabs_v1 Botnet Targets Minecraft Servers Through ADB-Exposed Android Devices
DOJ Sentences Two Americans to Prison for ALPHV BlackCat Attacks on U.S. Victims
Attackers Weaponize SAP npm Packages to Steal GitHub, Cloud, and AI Coding Tool Secrets
CISA Warns of Linux “Copy Fail” 0-Day Vulnerability Exploited to Root Systems
Apache MINA Vulnerabilities Enables Remote Code Execution Attacks
CISA Warns of cPanel & WHM Vulnerability Exploited in Attacks
Weaver E-cology critical bug exploited in attacks since March
Amazon SES increasingly abused in phishing to evade detection
Backdoored PyTorch Lightning package drops credential stealer
Trellix discloses data breach after source code repository hack
They don’t hack, they borrow: How fraudsters target credit unions
Progress warns of critical MOVEit Automation auth bypass flaw
Webinar: Why MSPs must rethink security and backup strategies
CISA says ‘Copy Fail’ flaw now exploited to root Linux systems
Microsoft confirms April Windows updates cause backup failures
– MTZ