The Hacker News

Anthropic’s Claude Mythos Finds Thousands of Zero-Day Flaws Across Major Systems

April 9, 2026 add comment
Artificial Intelligence (AI) company Anthropic announced a new cybersecurity initiative called Project Glasswing that will use a preview version of its new frontier model, Claude Mythos, to find and address security vulnerabilities. The model... Read more »

Multi-OS Cyberattacks: How SOCs Close a Critical Risk in 3 Steps

April 8, 2026 add comment
Your attack surface no longer lives on one operating system, and neither do the campaigns targeting it. In enterprise environments, attackers move across Windows endpoints, executive MacBooks, Linux infrastructure, and mobile devices,... Read more »

[Webinar] How to Close Identity Gaps in 2026 Before AI Exploits Enterprise Risk

April 7, 2026 add comment
In the rapid evolution of the 2026 threat landscape, a frustrating paradox has emerged for CISOs and security leaders: Identity programs are maturing, yet the risk is actually increasing. According to new... Read more »

China-Linked Storm-1175 Exploits Zero-Days to Rapidly Deploy Medusa Ransomware

April 7, 2026 add comment
A China-based threat actor known for deploying Medusa ransomware has been linked to the weaponization of a combination of zero-day and N-day vulnerabilities to orchestrate “high-velocity” attacks and break into... Read more »

Citrix NetScaler Under Active Recon for CVE-2026-3055 (CVSS 9.3) Memory Overread Bug

April 7, 2026 add comment
A recently disclosed critical security flaw impacting Citrix NetScaler ADC and NetScaler Gateway is witnessing active reconnaissance activity, according to Defused Cyber and watchTowr. The vulnerability, CVE-2026-3055 (CVSS score:... Read more »

Cisco Patches 9.8 CVSS IMC and SSM Flaws Allowing Remote System Compromise

April 6, 2026 add comment
Cisco has released updates to address a critical security flaw in the Integrated Management Controller (IMC) that, if successfully exploited, could allow an unauthenticated, remote attacker to bypass authentication and... Read more »

Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials

April 6, 2026 add comment
A large-scale credential harvesting operation has been observed exploiting the React2Shell vulnerability as an initial infection vector to steal database credentials, SSH private keys, Amazon Web Services (AWS) secrets, shell command history,... Read more »

Why Third-Party Risk Is the Biggest Gap in Your Clients’ Security Posture

April 4, 2026 add comment
The next major breach hitting your clients probably won’t come from inside their walls. It’ll come through a vendor they trust, a SaaS tool their finance team signed up for, or a... Read more »

Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers

April 4, 2026 add comment
Threat actors are increasingly using HTTP cookies as a control channel for PHP-based web shells on Linux servers and to achieve remote code execution, according to findings from the Microsoft... Read more »

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

April 4, 2026 add comment
A China-aligned threat actor has set its sights on European government and diplomatic organizations since mid-2025, following a two-year period of minimal targeting in the region. The campaign has been attributed to TA416,... Read more »
Subscribe to our Newsletter