Knowledge Hub

ISC Stormcast For Thursday, April 9th, 2026 https://isc.sans.edu/podcastdetail/9886, (Thu, Apr 9th)

SANS ISC

ISC Stormcast For Thursday, April 9th, 2026 https://isc.sans.edu/podcastdetail/9886, (Thu, Apr 9th)

No description available.

SANS ISCApr 9, 20261m2

Shaky Ceasefire Unlikely to Stop Cyberattacks From Iran-Linked Hackers for Long

SecurityWeek

SecurityWeekApr 9, 20264m1

Shaky Ceasefire Unlikely to Stop Cyberattacks From Iran-Linked Hackers for Long

Hackers vowed to revive its efforts against America when the time was right — demonstrating how digital warfare has become ingrained in military conflict.

Russia's Forest Blizzard Nabs Rafts of Logins Via SOHO Routers

Dark Reading

Dark ReadingApr 9, 20261m1

Russia's Forest Blizzard Nabs Rafts of Logins Via SOHO Routers

Heard of fileless malware? How about malwareless cyber espionage? Russia's APT28 is spying on global organizations by modifying just one DNS setting in vulnerable routers.

Number Usage in Passwords: Take Two, (Thu, Apr 9th)

SANS ISC

Number Usage in Passwords: Take Two, (Thu, Apr 9th)

In a previous diary [1], we looked to see how numbers were used within passwords submitted to honeypots. One of the items of interest was how dates, and more specifically years, were represented within the data and how that changed over time. It is often seen that years and seasons are used in pa...

SANS ISCApr 9, 20261m2

Smashing Security podcast #462: LinkedIn is spying on you, and you agreed to nothing

Graham Cluley

Graham CluleyApr 8, 20263m1

Smashing Security podcast #462: LinkedIn is spying on you, and you agreed to nothing

LinkedIn has been secretly scanning your browser for over 6,000 installed extensions — on every single click you make. It can tell if you’re job hunting…

Hackers use pixel-large SVG trick to hide credit card stealer

Hackers use pixel-large SVG trick to hide credit card stealer

A massive campaign impacting nearly 100 online stores using the Magento e-commerce platform hides credit card-stealing code in a pixel-sized Scalable Vector Graphics (SVG) image.

Google: New UNC6783 hackers steal corporate Zendesk support tickets

Google: New UNC6783 hackers steal corporate Zendesk support tickets

A threat actor tracked as UNC6783 is compromising business process outsourcing (BPO) providers to gain access to high-value companies across multiple sectors.

Threat Actors Get Crafty With Emojis to Escape Detection

Dark Reading

Dark ReadingApr 8, 20261m1

Threat Actors Get Crafty With Emojis to Escape Detection

When 🤖 means "bot available," 🧰 signifies "toolkit," or 💰💰💰 translates to "big ransom," bad actors can evade filters and keep it all on the down-low.

AI-Led Remediation Crisis Prompts HackerOne to Pause Bug Bounties

Dark Reading

Dark ReadingApr 8, 20261m1

AI-Led Remediation Crisis Prompts HackerOne to Pause Bug Bounties

Discovery used to be the bottleneck for open source bugs, but with automated discovery, remediation's the bottleneck, which bounties don't fund.

New macOS stealer campaign uses Script Editor in ClickFix attack

New macOS stealer campaign uses Script Editor in ClickFix attack

A new campaign delivering the Atomic Stealer malware to macOS users abuses the Script Editor in a variation of the ClickFix attack that tricked users into executing commands in Terminal.

CISA orders feds to patch exploited Ivanti EPMM flaw by Sunday

CISA orders feds to patch exploited Ivanti EPMM flaw by Sunday

CISA has given U.S. government agencies four days to secure their systems against a critical-severity vulnerability in Ivanti Endpoint Manager Mobile (EPMM) that has been exploited in attacks since January.

New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy

The Hacker News