Hackers Use ClickFix and Malicious DMG Files to Deliver notnullOSX on macOS
A new macOS info-stealer named notnullOSX has surfaced, targeting crypto holders with wallets above $10,000. Written in Go, it uses two parallel attack paths —…
Latest Cybersecurity News — Page 17
View all →
Black Duck Names Dom Glavach as CISO to Bolster Supply Chain and AI Security Push
Application security firm Black Duck has appointed Dom Glavach as its new Chief Information Security Officer, bringing in a seasoned executive with more than two…
Attackers Deploy Hidden Magecart Skimmer on Magento Using SVG onload Abuse
Security researchers at Sansec uncovered a large-scale Magecart campaign targeting Magento e-commerce platforms. Nearly 100 online stores were infected with a sophisticated credit card skimmer.…
Trustworthy AI: Navigating Conformity with the EU Cyber Resilience Act
The European digital landscape is currently navigating one of the most profound shifts in its regulatory history. For years, cybersecurity was largely a matter of…
Adobe Reader Zero-Day Exploited to Steal Data via Malicious PDFs
Hackers have been exploiting an as-yet unidentified flaw in Adobe Reader since at least November 2025. This zero-day vulnerability was first discovered by security expert…
113,000 explicit prompts from AI girlfriend platform exposed, many linked to user IDs
MyLovely.AI, an AI girlfriend platform, suffered a data breach that exposed over 100,000 users. MyLovely.AI allows people to create personalized not safe for work (NSFW)…
NSFW app leak exposes 70,000 prompts linked to individual users
MyLovely.AI, an AI “artwork” generation platform, has reportedly been compromised, affecting 106,362 registered users. The AI girlfriend app allows users to generate personalized NSFW content…
EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallets
Ravie LakshmananApr 09, 2026Vulnerability / Mobile Security Details have emerged about a now-patched security vulnerability in a widely used third-party Android software development kit (SDK) called EngageLab SDK…
UK Navy deters Russian submarines near critical undersea cables
The Royal Navy has deterred Russian submarines identified in the vicinity of undersea cables and other critical under water infrastructure. A Russian attack submarine and…
ClickFix-Style MacOS Attack Uses Script Editor Trick
A newly identified ClickFix-style macOS attack demonstrates how threat actors are refining their techniques to evade security defenses. The campaign moves away from the traditional reliance on Terminal…
SOHO Router Compromise: Forest Blizzard DNS Attacks
The rise of SOHO router compromise campaigns has exposed a critical weakness in global network security, particularly as threat actors like Forest Blizzard continue to exploit poorly secured home…
Meta unveils first AI model from superintelligence team
Meta Platforms has unveiled Muse Spark, the first artificial intelligence model from a costly team it assembled last year to catch up with rivals in…