Ghost RAT, CloverPlus Hit Victims in Dual-Malware Campaign
A new malware campaign is bundling a powerful remote access trojan (RAT) with intrusive adware, giving attackers both long-term control of infected systems and an…
Author: Cybernoz
Fake TikTok Downloaders on Chrome and Edge Spying on 130,000 Users
New research from LayerX Security reveals a new malicious campaign called “StealTok” involving more than a dozen browser extensions that target TikTok users over major…
Big Tech can stop scams. They just don’t (Lock and Code S07E08)
This week on the Lock and Code podcast… A dreadful thing happens far too often whenever an older adult falls for a scam: They get…
Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain
Ravie LakshmananApr 20, 2026Artificial Intelligence / Vulnerability Cybersecurity researchers have discovered a critical “by design” weakness in the Model Context Protocol’s (MCP) architecture that could…
Serial-to-IP Converter Flaws Expose OT and Healthcare Systems to Hacking
Serial-to-IP converters are affected by potentially serious vulnerabilities that can expose operational technology (OT), healthcare, and other types of systems to remote attacks. Serial-to-IP converters,…
CVE-2023-33538 under attack for a year, but exploitation still unsuccessful
CVE-2023-33538 under attack for a year, but exploitation still unsuccessful Pierluigi Paganini April 20, 2026 Hackers have targeted CVE-2023-33538 flaw in old TP-Link routers for…
Stellantis teams with Microsoft to strengthen digital capabilities
As part of the 5-year agreement, collaborative teams will co-develop more than 100 initiatives relating to AI and cybersecurity. Source link
Why the Axios attack proves AI is mandatory for supply chain security
Two weeks ago, a suspected North Korean threat actor slipped malicious code into a package within Axios, a widely used JavaScript library. The immediate concern…
China threatens EU firms over cybersecurity plans targeting Chinese companies
China will hit EU firms with reciprocal measures if the bloc targets Chinese firms as planned under its proposed cybersecurity regulations, Beijing has warned. In…
Attackers abuse Microsoft Teams to impersonate the IT helpdesk in a new enterprise intrusion playbook
“Collaboration platforms are often configured for convenience first, with easy external chat, calls, screen sharing, and remote assistance, without fully considering how those features can…
New OT-ISAC advisory exposes critical flaws across industrial control and management systems
A new OT-ISAC vulnerability advisory underscores the breadth and severity of cyber risk across industrial environments, consolidating multiple April 2026 disclosures affecting everything from legacy…
WEF urges intelligence sharing as port cyber threats outpace siloed defences
New analysis published by the World Economic Forum (WEF) argues that as ports become increasingly digitized and interconnected, their exposure to cyber risk is no…