Latest Cybersecurity News

Shadow AI in Healthcare is Here to Stay

Dark Reading

Dark ReadingApr 6, 20261m5

Shadow AI in Healthcare is Here to Stay

Medical professionals are not going to stop using AI tools to manage growing workloads. Organizations should prioritize bolstering security protocols to limit their blast radius.

Why Simple Breach Monitoring is No Longer Enough

BleepingComputer

Malware & Threats

Why Simple Breach Monitoring is No Longer Enough

Infostealers are harvesting credentials and session cookies at scale, bypassing traditional defenses. Lunar explains why simple breach monitoring alone can't keep up with modern credential-based attacks.

BleepingComputerApr 6, 20267m5

OWASP GenAI Security Project Gets Update, New Tools Matrix

Dark Reading

Dark ReadingApr 6, 20261m5

OWASP GenAI Security Project Gets Update, New Tools Matrix

In recognition of 21 generative AI risks, the standards groups recommends that companies take separate but linked approaches to defending GenAI and agentic AI systems.

Multi-OS Cyberattacks: How SOCs Close a Critical Risk in 3 Steps

The Hacker NewsApr 6, 20266m5

Multi-OS Cyberattacks: How SOCs Close a Critical Risk in 3 Steps

ANY.RUN cuts MTTR by 21 minutes per case, reducing escalations and breach exposure in multi-OS attacks.

⚡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More

The Hacker NewsApr 6, 202619m6

⚡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More

Phishing surge, LinkedIn tracking claims, spyware use, and rising stealers expose growing abuse of trusted systems.

CISA Adds One Known Exploited Vulnerability to Catalog

CISA Alerts

CISA AlertsApr 6, 20261m5

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

How LiteLLM Turned Developer Machines Into Credential Vaults for Attackers

The Hacker NewsApr 6, 20266m5

How LiteLLM Turned Developer Machines Into Credential Vaults for Attackers

LiteLLM 1.82.7–1.82.8 supply chain attack exposed 33,185 secrets across 6,943 machines, leaving 3,760 valid credentials active.

Guardarian Users Targeted With Malicious Strapi NPM Packages

SecurityWeek

SecurityWeekApr 6, 20262m5

Guardarian Users Targeted With Malicious Strapi NPM Packages

Hackers published 36 NPM packages posing as Strapi plugins to execute shells, escape containers, and harvest credentials.

SecurityWeek

SecurityWeekApr 6, 20263m5

North Korean Hackers Target High-Profile Node.js Maintainers

The threat actor behind the Axios supply chain attack has been aiming at other maintainers in its social engineering campaign.

Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools

The Hacker NewsApr 6, 20264m5

Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools

Qilin disables 300+ EDR drivers using BYOVD in 2025 attacks, delaying encryption six days, increasing breach impact.

Fortinet Rushes Emergency Fixes for Exploited Zero-Day

SecurityWeek

SecurityWeekApr 6, 20262m5

Fortinet Rushes Emergency Fixes for Exploited Zero-Day

The improper access control bug in FortiClient EMS allows unauthenticated attackers to execute arbitrary code remotely.

How often are redirects used in phishing in 2026?, (Mon, Apr 6th)

SANS ISC