Latest Cybersecurity News

Venom Stealer MaaS Platform Commoditizes ClickFix Attacks

Dark Reading

Dark ReadingApr 1, 20261m5

Venom Stealer MaaS Platform Commoditizes ClickFix Attacks

A new service on the cybercrime market provides automated capabilities to create persistent information-stealing social engineering attacks.

Exploited Zero-Day Among 21 Vulnerabilities Patched in Chrome

SecurityWeekApr 1, 20262m5

Exploited Zero-Day Among 21 Vulnerabilities Patched in Chrome

Google has announced fixes for CVE-2026-5281, a zero-day affecting Chrome’s Dawn component.

FBI Warns of Data Security Risks From China-Made Mobile Apps

SecurityWeekApr 1, 20262m5

FBI Warns of Data Security Risks From China-Made Mobile Apps

The agency has not named the problematic foreign-made applications, but TikTok and Temu come to mind.

US Charges Uranium Crypto Exchange Hacker

SecurityWeekApr 1, 20262m5

US Charges Uranium Crypto Exchange Hacker

Jonathan Spalletta exploited smart contract vulnerabilities to steal approximately $55 million in cryptocurrency and cause Uranium to shut down.

Webinar Today: Agentic AI vs. Identity’s Last Mile Problem

SecurityWeekApr 1, 20261m5

Webinar Today: Agentic AI vs. Identity’s Last Mile Problem

Join the webcast as we explore what Agentic AI can and cannot solve today, and real world breach scenarios linked to disconnected applications.

Block the Prompt, Not the Work: The End of "Doctor No"

The Hacker NewsApr 1, 20265m5

Block the Prompt, Not the Work: The End of "Doctor No"

70% installed AI extensions after DeepSeek block at U.S. law firm, routing traffic to China servers, exposing compliance risk.

Casbaneiro Phishing Targets Latin America and Europe Using Dynamic PDF Lures

The Hacker NewsApr 1, 20263m5

Casbaneiro Phishing Targets Latin America and Europe Using Dynamic PDF Lures

Augmented Marauder targets Latin America and Europe since 2020, using dynamic PDF phishing to spread Casbaneiro via Horabot.

Microsoft Warns of WhatsApp-Delivered VBS Malware Hijacking Windows via UAC Bypass

The Hacker NewsApr 1, 20263m5

Microsoft Warns of WhatsApp-Delivered VBS Malware Hijacking Windows via UAC Bypass

WhatsApp VBS campaign began February 2026, abusing AWS and UAC bypass to gain persistent remote access.

New Chrome Zero-Day CVE-2026-5281 Under Active Exploitation — Patch Released

The Hacker NewsApr 1, 20262m5

New Chrome Zero-Day CVE-2026-5281 Under Active Exploitation — Patch Released

Chrome patches 21 flaws including exploited CVE-2026-5281 in Dawn, marking fourth zero-day fixed in 2026, reducing active attack risk.

3 Reasons Attackers Are Using Your Trusted Tools Against You (And Why You Don’t See It Coming)

The Hacker NewsApr 1, 20264m5

3 Reasons Attackers Are Using Your Trusted Tools Against You (And Why You Don’t See It Coming)

84% of attacks abuse legitimate tools across 700,000 incidents, expanding internal attack surfaces and evading detection defenses.

Are We Training AI Too Late?

Dark Reading

Dark ReadingApr 1, 20261m5

Are We Training AI Too Late?

Ask the Expert: Cybersecurity teams need to expand their field of view to include new, unique threat sources, rather than relying on past, proven threat actors.

Alleged RedLine malware developer extradited to United States

Graham Cluley