Latest Cybersecurity News

Stay informed with real-time threat intelligence, vulnerability disclosures, and expert analysis from the cybersecurity community.

All Malware & Threats472 Vulnerabilities240 Data Breaches20 Ransomware0 APT & Threat Actors0 Cloud Security0 MENA Cybersecurity0 Compliance & Frameworks0 Tools & Tutorials0 Industry News1129

Life imprisonment for Cambodian scam compound operators – but will it make a difference?

Graham Cluley

Industry News

Life imprisonment for Cambodian scam compound operators – but will it make a difference?

Cambodia has taken a dramatic step in its fight against scam compounds that have imprisoned innocent people, and forced them to work as virtual slaves defrauding victims via the internet around the world with romance scams and dodgy investment schemes.

Graham CluleyApr 7, 20263m5

New GPUBreach Attack Enables Full CPU Privilege Escalation via GDDR6 Bit-Flips

The Hacker News

Industry News

New GPUBreach Attack Enables Full CPU Privilege Escalation via GDDR6 Bit-Flips

GPUBreach achieves full CPU privilege escalation via GDDR6 RowHammer in July 2025 research, threatening cloud AI systems.

The Hacker NewsApr 7, 20264m5

White House Seeks to Slash CISA Funding by $707 Million

SecurityWeek

Industry News

White House Seeks to Slash CISA Funding by $707 Million

The Trump administration says the FY2027 budget refocuses CISA on its core mission: protecting federal agencies and critical infrastructure.

SecurityWeekApr 7, 20262m5

China-Linked Storm-1175 Exploits Zero-Days to Rapidly Deploy Medusa Ransomware

The Hacker News

Industry News

China-Linked Storm-1175 Exploits Zero-Days to Rapidly Deploy Medusa Ransomware

Storm-1175 exploits 16+ CVEs since 2023, including zero-days, enabling rapid Medusa ransomware attacks within 24 hours.

The Hacker NewsApr 7, 20263m5

Wynn Resorts Says 21,000 Employees Affected by ShinyHunters Hack

SecurityWeek

Industry News

Wynn Resorts Says 21,000 Employees Affected by ShinyHunters Hack

The high-end casino and hotel operator has likely paid a ransom to avoid a data leak.

SecurityWeekApr 7, 20262m5

Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed

The Hacker News

Industry News

Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed

CVE-2025-59528 exploited in Flowise for over six months across 12,000+ exposed instances, enabling full system compromise.

The Hacker NewsApr 7, 20262m5

Vulnerabilities

ISC Stormcast For Tuesday, April 7th, 2026 https://isc.sans.edu/podcastdetail/9882, (Tue, Apr 7th)

SANS ISC

Vulnerabilities

ISC Stormcast For Tuesday, April 7th, 2026 https://isc.sans.edu/podcastdetail/9882, (Tue, Apr 7th)

No description available.

SANS ISCApr 7, 20261m5

German authorities identify REvil and GandCrab ransomware bosses

BleepingComputer

Malware & Threats

German authorities identify REvil and GandCrab ransomware bosses

The Federal Police in Germany (BKA) has identified two Russian nationals as the leaders of GandCrab and REvil ransomware operations between 2019 and 2021.

BleepingComputerApr 6, 20263m5

German authorities identify REvil and GangCrab ransomware bosses

BleepingComputer

Malware & Threats

German authorities identify REvil and GangCrab ransomware bosses

The Federal Police in Germany (BKA) has identified two Russian nationals as the leaders of GandCrab and REvil ransomware operations between 2019 and 2021.

BleepingComputerApr 6, 20263m5

New GPUBreach attack enables system takeover via GPU rowhammer

BleepingComputer

Malware & Threats

New GPUBreach attack enables system takeover via GPU rowhammer

A new attack, dubbed GPUBreach, can induce Rowhammer bit-flips on GPU GDDR6 memories to escalate privileges and lead to a full system compromise.

BleepingComputerApr 6, 20263m5

Industry News

AI-Assisted Supply Chain Attack Targets GitHub

Dark Reading

Industry News

AI-Assisted Supply Chain Attack Targets GitHub

PRT-scan is the second in recent months where a threat actor appears to have leveraged AI for automated targeting of a widespread GitHub misconfiguration.

Dark ReadingApr 6, 20261m5

Industry News

Axios Attack Shows Social Complex Engineering Is Industrialized

Dark Reading

Industry News

Axios Attack Shows Social Complex Engineering Is Industrialized

The attack on the popular NPM package Axios is just one of many targeting maintainers and has shone a light on how threat actors can scale sophisticated social engineering campaigns.

Dark ReadingApr 6, 20261m5