All Recent Posts

Internet Security

U.S. CISA adds a flaw in Microsoft Defender to its Known Exploited Vulnerabilities catalog

April 23, 2026 add comment
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in Microsoft Defender to its Known Exploited Vulnerabilities catalog The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a flaw... Read more »
Internet Security

Microsoft Graph API misused by new GoGra Linux malware for hidden communication

April 23, 2026 add comment
A new GoGra Linux malware uses Microsoft Graph API and an Outlook inbox to deliver payloads, making it stealthy and hard to detect. A new Linux version of the... Read more »
IT Security

Chinese hackers using compromised networks to spy on Western companies, says Five Eyes

April 23, 2026 add comment
Companies urged to take countermeasures as Chinese hacking groups use networks of infected home and office devices ‘at scale’ to evade security monitoring systems Read more »
The Hacker News

NGate Campaign Targets Brazil, Trojanizes HandyPay to Steal NFC Data and PINs

April 23, 2026 add comment
Cybersecurity researchers have discovered a new iteration of an Android malware family called NGate that has been found to abuse a legitimate application called HandyPay instead of NFCGate. “The threat actors took... Read more »
The Hacker News

22 BRIDGE:BREAK Flaws Expose Thousands of Lantronix and Silex Serial-to-IP Converters

April 23, 2026 add comment
Cybersecurity researchers have identified 22 new vulnerabilities in popular models of serial-to-IP converters from Lantronix and Silex that could be exploited to hijack susceptible devices and tamper with data... Read more »
The Hacker News

Lotus Wiper Malware Targets Venezuelan Energy Systems in Destructive Attack

April 23, 2026 add comment
Cybersecurity researchers have discovered a previously undocumented data wiper that has been used in attacks targeting Venezuela at the end of last year and the start of 2026. Dubbed... Read more »
The Hacker News

Mustang Panda’s New LOTUSLITE Variant Targets India Banks, South Korea Policy Circles

April 22, 2026 add comment
Cybersecurity researchers have discovered a new variant of a known malware called LOTUSLITE that’s distributed via a theme related to India’s banking sector. “The backdoor communicates with a dynamic... Read more »

No Exploit Needed: How Attackers Walk Through the Front Door via Identity-Based Attacks

April 22, 2026 add comment
The cybersecurity industry has spent the last several years chasing sophisticated threats like zero-days, supply chain compromises, and AI-generated exploits. However, the most reliable entry point for attackers still... Read more »
Security of TechRepublic

Microsoft Patch Still Leaves 1,300 SharePoint Servers Exposed

April 22, 2026 add comment
More than 1,300 internet-exposed SharePoint servers remain unpatched against CVE-2026-32201, a spoofing flaw Microsoft says was exploited as a zero-day. The post Microsoft Patch Still Leaves 1,300 SharePoint Servers... Read more »
The Hacker News

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

April 22, 2026 add comment
Cybersecurity researchers have flagged a fresh set of packages that have been compromised by bad actors to deliver a self-propagating worm that spreads through stolen developer npm tokens. The... Read more »
Subscribe to our Newsletter