Newspaper

Industry News

General cybersecurity industry news, market trends, and analysis

LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure

The Hacker News

LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure

A high-severity security flaw in LMDeploy, an open-source toolkit for compressing, deploying, and serving LLMs, has come under active exploitation in the wild less than 13 hours after its public disclosure. The vulnerability, tracked as CVE-2026-33626 (CVSS score: 7.5), relates to a Server-Side R...

The Hacker NewsApr 24, 20261m4

Tropic Trooper APT Takes Aim at Home Routers, Japanese Targets

Tropic Trooper APT Takes Aim at Home Routers, Japanese Targets

The Chinese state-sponsored cyber threat is known for moving fast and trying odd attack vectors; now it's branching out in tools, victimology, and TTPs.

Dark ReadingApr 24, 20261m4

Chinese APT Abuses Multiple Cloud Tools to Spy on Mongolia

Chinese APT Abuses Multiple Cloud Tools to Spy on Mongolia

The threat actor gave itself plenty of options to support command and control, tapping Microsoft Outlook, Slack, Discord, and file.io for online espionage.

Dark ReadingApr 24, 20261m6

China-Backed Hackers Are Industrializing Botnets

China-Backed Hackers Are Industrializing Botnets

China's state-backed groups are now using covert networks of compromised devices to execute attacks in a low-cost, low-risk, and deniable way.

Dark ReadingApr 23, 20261m4

UNC6692 Impersonates IT Helpdesk via Microsoft Teams to Deploy SNOW Malware

The Hacker News

UNC6692 Impersonates IT Helpdesk via Microsoft Teams to Deploy SNOW Malware

UNC6692 targeted 77% senior employees between March 1–April 1, 2026, via Teams impersonation, enabling malware, data theft.

The Hacker NewsApr 23, 20265m5

Cloudsmith Raises $72 Million in Series C Funding

Cloudsmith Raises $72 Million in Series C Funding

The company will use the investment to accelerate product development and grow go-to-market efforts.

SecurityWeekApr 23, 20262m6

Bad Memories Still Haunt AI Agents

Bad Memories Still Haunt AI Agents

Cisco found and fixed a significant vulnerability in the way Anthropic handles memories, but experts warn that mishandled memory files will continue threaten AI systems.

Dark ReadingApr 23, 20261m6

Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaign

The Hacker News

Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaign

Bitwarden CLI 2026.4.0 was compromised via GitHub Actions in Checkmarx campaign, exposing secrets and distributing malicious npm code

The Hacker NewsApr 23, 20262m6

ThreatsDay Bulletin: $290M DeFi Hack, macOS LotL Abuse, ProxySmart SIM Farms +25 New Stories

The Hacker News

ThreatsDay Bulletin: $290M DeFi Hack, macOS LotL Abuse, ProxySmart SIM Farms +25 New Stories

You scroll past one incident and see another that feels familiar, like it should have been fixed years ago, but it still works with small changes. Same bugs. Same mistakes. The supply chain is messy. Packages you did not check are stealing data, adding backdoors, and spreading. Attacking the syst...

The Hacker NewsApr 23, 20261m6

Chinese Cybersecurity Firm’s AI Hacking Claims Draw Comparisons to Claude Mythos

Chinese Cybersecurity Firm’s AI Hacking Claims Draw Comparisons to Claude Mythos

360 Digital Security Group claims to have uncovered 1,000 vulnerabilities using AI, including at the Tianfu Cup hacking contest.

SecurityWeekApr 23, 20263m6

[Webinar] Mythos Reality Check: Beating Automated Exploitation at AI Speed

The Hacker News

[Webinar] Mythos Reality Check: Beating Automated Exploitation at AI Speed

AI-driven attacks collapse exploit windows, widening the patch gap and forcing faster vulnerability prioritization strategies.

The Hacker NewsApr 23, 20262m6

Rilian Raises $17.5 Million for AI-Native Security Orchestration

Rilian Raises $17.5 Million for AI-Native Security Orchestration

The company will hire new talent and expand operations across the US and other allied countries.

SecurityWeekApr 23, 20262m5