Internet Security

CVE-2026-39987: Marimo RCE exploited in hours after disclosure

April 11, 2026 add comment
A critical flaw, tracked as CVE-2026-39987, in the open-source Python notebook tool Marimo was exploited within 10 hours of disclosure. A critical flaw in Marimo, tracked as CVE-2026-39987 (CVSS... Read more »

Ransomware attack on ChipSoft knocks EHR services offline across hospitals in the Netherlands and Belgium

April 10, 2026 add comment
Dutch healthcare IT firm ChipSoft suffered a ransomware attack, forcing services and its HiX platform offline, impacting hospitals and patients. ChipSoft, a major Dutch provider of EHR systems, was... Read more »

UAT-10362 linked to LucidRook attacks targeting Taiwan-based institutions

April 10, 2026 add comment
LucidRook is Lua malware used in phishing attacks on NGOs and universities in Taiwan, linked to UAT-10362, spread via password-protected emails. LucidRook is a new Lua-based malware used in... Read more »

EngageLab SDK flaw opens door to private data on 50M Android devices

April 10, 2026 add comment
A flaw in EngageLab SDK exposed up to 50M Android users, including 30M crypto wallets, letting apps bypass security and access private data. Microsoft researchers found a critical flaw... Read more »

Bitcoin Depot hack leads to $3.6M Bitcoin theft via stolen credentials

April 10, 2026 add comment
Hackers breached Bitcoin Depot, stole credentials, and took about 50 BTC worth $3.6M from its wallets after a March 23 intrusion. Hackers breached the largest US Bitcoin ATM operator,... Read more »

Eurail data breach impacted 308,777 people

April 9, 2026 add comment
Hackers breached Eurail in Dec 2025, stole names and passport data, and exposed over 300,000 travelers’ personal information. Threat actors breached Eurail in December 2025 and stole names and... Read more »

Malicious PDF reveals active Adobe Reader zero-day in the wild

April 9, 2026 add comment
Hackers used an Adobe Reader zero-day for months. Researcher Haifei Li found a malicious PDF and asks the community to help analyze it. Hackers used an Adobe Reader zero-day... Read more »

Masjesu botnet targets IoT devices while evading high-profile networks

April 9, 2026 add comment
Masjesu is a stealthy DDoS-for-hire botnet targeting IoT devices, active since 2023 and designed to stay hidden by avoiding high-profile networks. Masjesu is a stealthy botnet active since 2023,... Read more »

The alleged breach of China’s National Supercomputing Center can have serious geopolitical consequences

April 9, 2026 add comment
A hacker allegedly stole 10+ PB of sensitive military and aerospace data from China’s National Supercomputing Center, risking national security. A massive alleged breach has hit China’s National Supercomputing... Read more »

Internet-Exposed ICS Devices Raise Alarm for Critical Sectors

April 9, 2026 add comment
Exposed ICS devices and insecure protocols like Modbus increase risks to critical infrastructure, enabling disruption, data access, and potential sabotage. Malware targeting industrial control systems (ICS) poses a serious... Read more »
Subscribe to our Newsletter