Why Are You Still Paying for Antivirus?
Don’t worry, this isn’t one of those “AV is dead” articles. I read that headline almost ten years ago—I didn’t believe it then, and I…
Month: April 2026
Video service Vimeo confirms Anodot breach exposed user data
Vimeo has disclosed that data belonging to some of its customers and users has been accessed without authorization following the recent breach at the Anodot…
New BlueNoroff Campaign Uses Fileless PowerShell and AI-Generated Zoom Lures
A dangerous new cyber campaign from North Korea’s Lazarus Group is targeting cryptocurrency and Web3 professionals using fake Zoom meeting interfaces, fileless PowerShell scripts, and…
CISA Warns of Windows Shell Zero-Day Exploited in Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding a newly discovered zero-day vulnerability affecting Microsoft Windows. On April 28, 2026,…
Pack2TheRoot: 12-Year-Old Linux PackageKit Flaw Enables Full Compromise
Researchers from Deutsche Telekom’s Red Team have identified a high-severity security flaw in PackageKit, the software that helps in managing packages across different Linux systems.…
The Exchange Online security controls organizations keep getting wrong
In this Help Net Security interview, Scott Schnoll, Microsoft MVP for Exchange, breaks down the Shared Responsibility Model, where Microsoft secures the cloud while organizations…
LiteLLM CVE-2026-42208 SQL Injection Exploited within 36 Hours of Disclosure
Ravie LakshmananApr 29, 2026Vulnerability / Cloud Security In yet another instance of threat actors quickly jumping on the exploitation bandwagon, a newly disclosed critical security…
Vect ransomware actually destructive wiper malware
The authors of a new strain of ransomware called Vect are drawing attention thanks to a partnership with the TeamPCP gang and an ambitious collaboration…
ClickUp Disclosed Feature Flag Misconfiguration Exposed 893 Email Addresses
A security researcher’s public disclosure on April 27 forced ClickUp to confront a misconfiguration its own engineering review process had missed for months. 893 customer…
ABA says big tech tax gap putting payments at risk
The Australian Banking Association has warned that national payment systems are being placed at risk by a widening gap in the tax and regulatory obligations…
The Mythos Moment: Enterprises Must Fight Agents with Agents
When Anthropic introduced its Claude Mythos Preview, it realized the enormous cyber risk it posed and decided it was too dangerous for public release. The…
NCSC launches SilentGlass, a plug-in device to secure HDMI and DisplayPort links
NCSC launches SilentGlass, a plug-in device to secure HDMI and DisplayPort links Pierluigi Paganini April 28, 2026 NCSC’s SilentGlass blocks malicious HDMI/DisplayPort links, protecting monitors…