Latest Cybersecurity News

Stay informed with real-time threat intelligence, vulnerability disclosures, and expert analysis from the cybersecurity community.

All Malware & Threats468 Vulnerabilities240 Data Breaches20 Ransomware0 APT & Threat Actors0 Cloud Security0 MENA Cybersecurity0 Compliance & Frameworks0 Tools & Tutorials0 Industry News1128

DORA and operational resilience: Credential management as a financial risk control

BleepingComputer

Malware & Threats

DORA and operational resilience: Credential management as a financial risk control

Article 9 of DORA makes authentication and access control a legal obligation for EU financial entities. Here is what the regulation requires, and what a breach looks like when those controls are missing.

BleepingComputerApr 24, 20269m4

Over 10,000 Zimbra servers vulnerable to ongoing XSS attacks

BleepingComputer

Malware & Threats

Over 10,000 Zimbra servers vulnerable to ongoing XSS attacks

Over 10,000 Zimbra Collaboration Suite (ZCS) instances exposed online are vulnerable to ongoing attacks exploiting a cross-site scripting (XSS) security flaw.

BleepingComputerApr 24, 20263m4

Industry News

AI Phishing Is No. 1 With a Bullet for Cyberattackers

Dark Reading

Industry News

AI Phishing Is No. 1 With a Bullet for Cyberattackers

In the last six months, companies have seen a significant influx of AI-powered phishing, as cyberattackers progress from small campaigns to 1-to-1 personalized attacks.

Dark ReadingApr 24, 20261m4

Industry News

North Korea's Lazarus Targets macOS Users via ClickFix

Dark Reading

Industry News

North Korea's Lazarus Targets macOS Users via ClickFix

Lazarus continues leveraging ClickFix for initial access and data theft, in this case, against Mac-centric organizations and their high-value leaders.

Dark ReadingApr 24, 20261m4

Why Cybersecurity Must Rethink Defense in the Age of Autonomous Agents

SecurityWeek

Industry News

Why Cybersecurity Must Rethink Defense in the Age of Autonomous Agents

From autonomous code generation to decision-making systems that initiate actions without human intervention, the industry is entering a new phase.

SecurityWeekApr 24, 20264m4

Locked Shields 2026: 41 Nations Strengthen Cyber Resilience in World’s Biggest Exercise

SecurityWeek

Industry News

Locked Shields 2026: 41 Nations Strengthen Cyber Resilience in World’s Biggest Exercise

Locked Shields has grown significantly over the past 16 years, with only four nations participating in the first edition.

SecurityWeekApr 24, 20262m4

Vulnerabilities

CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA Alerts

Vulnerabilities

CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

CISA AlertsApr 24, 20261m4

Bridging the AI Agent Authority Gap: Continuous Observability as the Decision Engine

The Hacker News

Industry News

Bridging the AI Agent Authority Gap: Continuous Observability as the Decision Engine

AI agents inherit hidden authority from fragmented identities, creating a delegation gap that demands real-time governance.

The Hacker NewsApr 24, 20265m4

26 FakeWallet Apps Found on Apple App Store Targeting Crypto Seed Phrases

The Hacker News

Industry News

26 FakeWallet Apps Found on Apple App Store Targeting Crypto Seed Phrases

26 FakeWallet apps since fall 2025 hijack crypto recovery phrases via Apple App Store China accounts, enabling wallet theft.

The Hacker NewsApr 24, 20264m4

Microsoft now lets admins uninstall Copilot on enterprise devices

BleepingComputer

Malware & Threats

Microsoft now lets admins uninstall Copilot on enterprise devices

Microsoft says IT administrators can now uninstall the AI-powered Copilot digital assistant from enterprise devices using a new policy setting, which has become broadly available after the April 2026 Patch Tuesday.

BleepingComputerApr 24, 20262m4

US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor

SecurityWeek

Industry News

US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor

The malware provides remote access and control of infected devices and maintains post-patching persistence.

SecurityWeekApr 24, 20263m4

Trump Administration Vows Crackdown on Chinese Companies ‘Exploiting’ AI Models Made in US

SecurityWeek

Industry News

Trump Administration Vows Crackdown on Chinese Companies ‘Exploiting’ AI Models Made in US

The Trump administration is vowing to crack down on foreign tech companies’ exploitation of U.S. artificial intelligence models.

SecurityWeekApr 24, 20264m4