Latest Cybersecurity News

Africa Relinquishes Cyberattack Lead to Latin America — For Now

Dark Reading

Dark ReadingApr 23, 20261m5

Africa Relinquishes Cyberattack Lead to Latin America — For Now

The volume of cyberattacks targeting Africa declined in the past year, with weekly attacks down 22%, as attackers seemingly shifted their focus to other regions.

Vulnerabilities

ISC Stormcast For Thursday, April 23rd, 2026 https://isc.sans.edu/podcastdetail/9904, (Thu, Apr 23rd)

SANS ISC

Vulnerabilities

ISC Stormcast For Thursday, April 23rd, 2026 https://isc.sans.edu/podcastdetail/9904, (Thu, Apr 23rd)

No description available.

SANS ISCApr 23, 20261m5

Smashing Security podcast #464: Rockstar got hacked. The data was junk. The secrets it revealed were not

Graham Cluley

Graham CluleyApr 22, 202648m5

Smashing Security podcast #464: Rockstar got hacked. The data was junk. The secrets it revealed were not

A company that ran anonymous tip lines for 35,000 American schools – handling reports of bullying, weapons, and self-harm – boasted on its website that it had…

Apple fixes iOS bug that retained deleted notification data

Apple fixes iOS bug that retained deleted notification data

Apple has released out-of-band security updates for iPhone and iPad devices to fix a Notification Services flaw that could allow notifications marked for deletion to remain stored on the device.

'The Gentlemen' Rapidly Rises to Ransomware Prominence

Dark Reading

Dark ReadingApr 22, 20261m5

'The Gentlemen' Rapidly Rises to Ransomware Prominence

Not nearly as polite as the name suggests, the ransomware gang has impressed researchers with its speed in scaling up operations — and its sophistication.

New Mirai campaign exploits RCE flaw in EoL D-Link routers

New Mirai campaign exploits RCE flaw in EoL D-Link routers

A new Mirai-based malware campaign is actively exploiting CVE-2025-29635, a high-severity command-injection vulnerability affecting D-Link DIR-823X routers, to enlist devices into the botnet.

Kyber ransomware gang toys with post-quantum encryption on Windows

Kyber ransomware gang toys with post-quantum encryption on Windows

A new Kyber ransomware operation is targeting Windows systems and VMware ESXi endpoints in recent attacks, with one variant implementing Kyber1024 post-quantum encryption.

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

The Hacker News

The Hacker NewsApr 22, 20262m5

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

Malicious KICS Docker tags and VS Code versions 1.17.0, 1.19.0 enabled data exfiltration, risking exposed infrastructure secrets.

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

The Hacker News

The Hacker NewsApr 22, 20265m5

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Self-propagating npm worm steals tokens via postinstall hooks, impacting six packages and expanding supply chain attacks.

Harvester Deploys Linux GoGra Backdoor in South Asia Using Microsoft Graph API

The Hacker News

The Hacker NewsApr 22, 20263m5

Harvester Deploys Linux GoGra Backdoor in South Asia Using Microsoft Graph API

Harvester deploys Linux GoGra via Microsoft Graph API in South Asia, targeting India and Afghanistan since 2021, enabling covert espionage

Spain dismantles major $4.7M manga piracy platform, arrests four

Spain dismantles major $4.7M manga piracy platform, arrests four

The Spanish police have dismantled the largest Spanish-language manga piracy platform, operating since 2014, with millions of monthly users from around the globe.

DPRK Fake Job Scams Self-Propagate in 'Contagious Interview'

Dark Reading