https://therecord.media/big-tech-fails-to-opt-out-users-requesting-not-to-be-tracked ThreatAft en 2026-04-16T00:44:00.000Z Big tech fails to opt-out users requesting not to be tracked much of the time, new research says https://www.reddit.com/r/cybersecurity/comments/1smd2tu/feeling_left_behind_untechnical/ ThreatAft en 2026-04-15T17:37:57.000Z Feeling left behind untechnical https://www.reddit.com/r/cybersecurity/comments/1smcn94/ethical_hacking_cybersecurity_how_do_i_make/ ThreatAft en 2026-04-15T17:22:51.000Z Ethical hacking Cybersecurity. How do I make friends along the way? https://thehackernews.com/2026/04/n8n-webhooks-abused-since-october-2025.html ThreatAft en 2026-04-15T17:09:00.000Z n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails https://www.securityweek.com/sweden-blames-pro-russian-group-for-cyberattack-last-year-on-its-energy-infrastructure/ ThreatAft en 2026-04-15T16:46:48.000Z Sweden Blames Pro-Russian Group for Cyberattack Last Year on Its Energy Infrastructure https://www.reddit.com/r/cybersecurity/comments/1smbaos/for_those_of_you_that_have_found_cves_do_you_feel/ ThreatAft en 2026-04-15T16:35:58.000Z For those of you that have found CVE's do you feel recognized? https://www.bleepingcomputer.com/news/microsoft/microsoft-pays-23-million-for-cloud-and-ai-flaws-at-zero-day-quest/ ThreatAft en 2026-04-15T16:20:21.000Z Microsoft pays $2.3M for cloud and AI flaws at Zero Day Quest https://www.microsoft.com/en-us/security/blog/2026/04/15/incident-response-for-ai-same-fire-different-fuel/ ThreatAft en 2026-04-15T16:00:45.000Z Incident response for AI: Same fire, different fuel https://www.infosecurity-magazine.com/news/openai-unveils-gpt-54-cyber-defense/ ThreatAft en 2026-04-15T16:00:00.000Z OpenAI Unveils GPT-5.4-Cyber for Improving Cyber Defense With AI https://therecord.media/anthropic-mythos-uk-cyber-risk ThreatAft en 2026-04-15T16:00:00.000Z UK warns businesses to address cyber risks amid Anthropic AI panic https://www.reddit.com/r/cybersecurity/comments/1sma6yz/crypto_faces_increased_threat_from_quantum_attacks/ ThreatAft en 2026-04-15T15:57:35.000Z Crypto Faces Increased Threat from Quantum Attacks https://www.infosecurity-magazine.com/news/enisa-europe-seeks-top-level-root/ ThreatAft en 2026-04-15T15:31:00.000Z European Cybersecurity Agency ENISA Seeks Top-Tier Status in CVE Program https://www.reddit.com/r/cybersecurity/comments/1sm98vw/demonstrating_context_injection_oversharing_in_ai/ ThreatAft en 2026-04-15T15:24:07.000Z Demonstrating Context Injection & Over-Sharing in AI Agents (with Lab + Analysis) https://www.reddit.com/r/cybersecurity/comments/1sm95a2/avanan_checkpoint_issues/ ThreatAft en 2026-04-15T15:20:29.000Z Avanan Checkpoint Issues https://www.darkreading.com/cyber-risk/preparing-q-day-quantum-risk-management ThreatAft en 2026-04-15T15:12:01.000Z Prepping for 'Q-Day': Why Quantum Risk Management Should Start Now https://www.reddit.com/r/cybersecurity/comments/1sm8sde/ibm_warns_aipowered_hackers_are_coming_so_it/ ThreatAft en 2026-04-15T15:07:54.000Z IBM warns AI-powered hackers are coming, so it built AI to fight them https://www.bleepingcomputer.com/news/security/cisa-flags-windows-task-host-vulnerability-as-exploited-in-attacks/ ThreatAft en 2026-04-15T14:51:05.000Z CISA flags Windows Task Host vulnerability as exploited in attacks https://www.reddit.com/r/cybersecurity/comments/1sm8b0b/black_bastalinked_attacks_target_executives_via/ ThreatAft en 2026-04-15T14:50:56.000Z Black Basta-linked attacks target executives via Teams phishing https://www.securityweek.com/exploited-vulnerability-exposes-nginx-servers-to-hacking/ ThreatAft en 2026-04-15T14:45:58.000Z Exploited Vulnerability Exposes Nginx Servers to Hacking https://www.infosecurity-magazine.com/news/dragon-boss-adware-disables/ ThreatAft en 2026-04-15T14:40:00.000Z Signed Adware Operation Disables Antivirus Across 23,000 Hosts https://www.reddit.com/r/cybersecurity/comments/1sm7zkp/antimalware_question/ ThreatAft en 2026-04-15T14:39:25.000Z Anti-malware question https://www.darkreading.com/cyber-risk/audit-big-tech-ignores-data-collection-requests ThreatAft en 2026-04-15T14:38:53.000Z Audit: Big Tech Often Ignores CA Privacy Law Opt-Out Requests https://www.reddit.com/r/cybersecurity/comments/1sm7sme/how_can_i_properly_securitycheck_an_aibuilt_web/ ThreatAft en 2026-04-15T14:32:00.000Z How can I properly security-check an AI-built web platform if I’m not a developer? https://therecord.media/mcgraw-hill-data-leak-tied-to-salesforce-misconfiguration ThreatAft en 2026-04-15T14:28:00.000Z Educational company McGraw Hill says Salesforce misconfiguration led to data leak https://www.reddit.com/r/cybersecurity/comments/1sm708g/is_it_legal_to_publish_rev_shell_on_github/ ThreatAft en 2026-04-15T14:02:23.000Z Is it legal to publish Rev Shell on GitHub? https://www.reddit.com/r/cybersecurity/comments/1sm6yg5/engaging_vs_timesaving_training_whats_better/ ThreatAft en 2026-04-15T14:00:33.000Z Engaging vs. time-saving training. What's better? https://www.bleepingcomputer.com/news/security/rolling-networks-securing-the-transportation-sector/ ThreatAft en 2026-04-15T14:00:10.000Z Rolling Networks: Securing the Transportation Sector https://www.helpnetsecurity.com/2026/04/15/capsule-security-platform/ ThreatAft en 2026-04-15T13:59:55.000Z Capsule Security debuts with $7 million funding to secure AI agent behavior https://cyberscoop.com/openai-expands-trusted-access-for-cyber-to-thousands-for-cybersecurity/ ThreatAft en 2026-04-15T13:59:27.000Z OpenAI expands Trusted Access for Cyber program with new GPT 5.4 Cyber model https://www.securityweek.com/capsule-security-emerges-from-stealth-with-7-million-in-funding/ ThreatAft en 2026-04-15T13:56:50.000Z Capsule Security Emerges From Stealth With $7 Million in Funding https://www.reddit.com/r/cybersecurity/comments/1sm6m73/running_crowdstrike_and_defender_edr/ ThreatAft en 2026-04-15T13:47:29.000Z Running Crowdstrike and Defender EDR simultaneously - worth it or redundant? https://www.helpnetsecurity.com/2026/04/15/broadcom-vmware-tanzu-platform/ ThreatAft en 2026-04-15T13:44:37.000Z Broadcom introduces zero-trust runtime for scalable AI agents https://www.securityweek.com/by-design-flaw-in-mcp-could-enable-widespread-ai-supply-chain-attacks/ ThreatAft en 2026-04-15T13:34:48.000Z ‘By Design’ Flaw in MCP Could Enable Widespread AI Supply Chain Attacks https://www.helpnetsecurity.com/2026/04/15/bitdefender-gravityzone-extended-email-security/ ThreatAft en 2026-04-15T13:28:35.000Z Bitdefender extends GravityZone with continuous email threat protection https://www.reddit.com/r/cybersecurity/comments/1sm62ac/persistent_multilayer_compromise/ ThreatAft en 2026-04-15T13:25:44.000Z Persistent multi-layer compromise (devices/SIM/identity) — need help isolating root cause https://www.securityweek.com/100-chrome-extensions-steal-user-data-open-backdoor/ ThreatAft en 2026-04-15T13:24:13.000Z 100 Chrome Extensions Steal User Data, Create Backdoor https://www.malwarebytes.com/blog/threat-intel/2026/04/fake-youtube-copyright-notices-can-steal-your-google-login ThreatAft en 2026-04-15T13:21:25.000Z Fake YouTube copyright notices can steal your Google login https://www.helpnetsecurity.com/2026/04/15/tenable-ot-discovery-engine/ ThreatAft en 2026-04-15T13:14:17.000Z Tenable unveils OT discovery engine to expose cyber-physical risks https://www.reddit.com/r/netsec/comments/1sm5hi0/replacing_falco_with_an_embedded_ebpf_sensor_for/ ThreatAft en 2026-04-15T13:02:42.000Z Replacing Falco with an embedded eBPF sensor for Kubernetes runtime enforcement https://www.helpnetsecurity.com/2026/04/15/webinar-the-it-leaders-guide-to-ai-governance/ ThreatAft en 2026-04-15T13:00:36.000Z Webinar: The IT Leader’s Guide to AI Governance https://www.infosecurity-magazine.com/news/nginx-ui-mcp-flaw-actively/ ThreatAft en 2026-04-15T13:00:00.000Z Critical Nginx-ui MCP Flaw Actively Exploited in the Wild https://www.securityweek.com/ciso-conversations-ross-mckerchar-ciso-at-sophos/ ThreatAft en 2026-04-15T13:00:00.000Z CISO Conversations: Ross McKerchar, CISO at Sophos https://thehackernews.com/2026/04/critical-nginx-ui-vulnerability-cve.html ThreatAft en 2026-04-15T12:56:00.000Z Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover https://www.tenable.com/blog/ot-vulnerability-management-cyber-physical-systems-cybersecurity ThreatAft en 2026-04-15T12:50:00.000Z Unlocking foundational visibility for cyber-physical systems with OT vulnerability management https://www.helpnetsecurity.com/2026/04/15/axonius-expands-asset-cloud/ ThreatAft en 2026-04-15T12:42:16.000Z Axonius updates Asset Cloud with AI, exposure management, and asset trust standard https://thehackernews.com/2026/04/april-patch-tuesday-fixes-critical.html ThreatAft en 2026-04-15T12:37:00.000Z April Patch Tuesday Fixes Critical Flaws Across SAP, Adobe, Microsoft, Fortinet, and More https://www.reddit.com/r/Malware/comments/1sm4dgi/what_can_potentially_happen_if_i_open_this/ ThreatAft en 2026-04-15T12:16:38.000Z What can potentially happen if I open this https://www.reddit.com/r/cybersecurity/comments/1sm4cd4/build_a_secure_scalable_and_compliant/ ThreatAft en 2026-04-15T12:15:21.000Z Build a secure, scalable, and compliant infrastructure with experts you can trust. https://therecord.media/sweden-hackers-russia-power-plant ThreatAft en 2026-04-15T12:15:00.000Z Sweden says pro-Russian hackers attempted to breach thermal power plant https://www.securityweek.com/mirax-rat-targeting-android-users-in-europe/ ThreatAft en 2026-04-15T12:10:08.000Z Mirax RAT Targeting Android Users in Europe https://www.reddit.com/r/cybersecurity/comments/1sm41rz/best_ai_soc_platforms_2026_i_am_not_convinced/ ThreatAft en 2026-04-15T12:02:26.000Z Best AI SOC platforms 2026? I am not convinced about AI https://www.darkreading.com/cloud-security/microsoft-salesforce-patch-ai-agent-data-leak-flaws ThreatAft en 2026-04-15T12:00:00.000Z Microsoft, Salesforce Patch AI Agent Data Leak Flaws https://www.bleepingcomputer.com/news/microsoft/microsoft-some-windows-servers-ask-for-bitlocker-key-after-april-updates/ ThreatAft en 2026-04-15T11:41:35.000Z Microsoft: April updates trigger BitLocker key prompts on some servers https://www.securityweek.com/two-vulnerabilities-patched-in-ivanti-neurons-for-itsm/ ThreatAft en 2026-04-15T11:38:21.000Z Two Vulnerabilities Patched in Ivanti Neurons for ITSM https://thehackernews.com/2026/04/deterministic-agentic-ai-architecture.html ThreatAft en 2026-04-15T11:30:00.000Z Deterministic + Agentic AI: The Architecture Exposure Validation Requires https://www.reddit.com/r/cybersecurity/comments/1sm382i/upgrading_riptides_to_tls_13_forward_secrecy_and/ ThreatAft en 2026-04-15T11:23:56.000Z Upgrading Riptides to TLS 1.3: Forward Secrecy and a Path to Post-Quantum mTLS https://www.securityweek.com/10-domain-could-have-handed-hackers-25k-endpoints-including-in-ot-and-gov-networks/ ThreatAft en 2026-04-15T10:58:12.000Z $10 Domain Could Have Handed Hackers 25k Endpoints, Including in OT and Gov Networks https://www.reddit.com/r/cybersecurity/comments/1sm2hb3/how_to_secure_shared_devices_without_shared/ ThreatAft en 2026-04-15T10:47:35.000Z How to secure shared devices without shared credentials (Cyber Essentials compliance)? https://www.reddit.com/r/cybersecurity/comments/1sm2gzl/we_built_a_tool_for_data_exfiltration_via_audio/ ThreatAft en 2026-04-15T10:47:08.000Z We built a tool for data exfiltration via audio Bluetooth (looking for feedback) https://www.reddit.com/r/cybersecurity/comments/1sm2fju/thesis_idea/ ThreatAft en 2026-04-15T10:45:11.000Z Thesis Idea https://www.helpnetsecurity.com/2026/04/15/sitehop-safecore-edge-pqc-device/ ThreatAft en 2026-04-15T10:38:38.000Z Sitehop’s SAFEcore Edge enables ultra-low-latency, hardware-enforced post-quantum encryption https://www.malwarebytes.com/blog/threat-intel/2026/04/from-fake-proton-vpn-sites-to-gaming-mods-this-windows-infostealer-is-everywhere ThreatAft en 2026-04-15T10:37:33.000Z From fake Proton VPN sites to gaming mods, this Windows infostealer is everywhere https://www.infosecurity-magazine.com/news/ai-companies-to-play-bigger-role/ ThreatAft en 2026-04-15T10:30:00.000Z AI Companies To Play Bigger Role in CVE Program, Says CISA https://www.securityweek.com/trump-urges-extending-foreign-surveillance-program-as-some-lawmakers-push-for-us-privacy-protections/ ThreatAft en 2026-04-15T10:25:56.000Z Trump Urges Extending Foreign Surveillance Program as Some Lawmakers Push for US Privacy Protections https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-bug-behind-windows-server-2025-automatic-upgrades/ ThreatAft en 2026-04-15T10:24:53.000Z Microsoft fixes bug behind Windows Server 2025 automatic upgrades https://www.reddit.com/r/cybersecurity/comments/1sm204b/we_had_three_employees_locked_out_this_quarter/ ThreatAft en 2026-04-15T10:22:45.000Z We had three employees locked out this quarter because of lost authenticator apps. Time to rethink our recovery story. https://www.reddit.com/r/netsec/comments/1sm1xbz/minimus_openclaw_red_team_agent_read_its_own_docs/ ThreatAft en 2026-04-15T10:18:22.000Z Minimus OpenClaw red team: agent read its own docs, escaped the sandbox via exec tool's host parameter, rewrote WhatsApp config, messaged real people. 635 tests, 131 failures, zero CVEs exploited https://www.reddit.com/r/cybersecurity/comments/1sm1xbi/how_are_you_actually_building_a_cybertechnical/ ThreatAft en 2026-04-15T10:18:21.000Z How are you actually building a cyber/technical BIA? hitting a wall at the asset-to-business-service mapping step. https://cyberscoop.com/ai-chip-smuggling-china-export-controls-enforcement-op-ed/ ThreatAft en 2026-04-15T10:00:00.000Z We’re only seeing the tip of the chip-smuggling iceberg https://www.wired.com/story/deepfake-nudify-schools-global-crisis/ ThreatAft en 2026-04-15T10:00:00.000Z The Deepfake Nudes Crisis in Schools Is Much Worse Than You Thought https://www.reddit.com/r/cybersecurity/comments/1sm1kc6/be_safe_fiverr_is_leaking_server_credentials_and/ ThreatAft en 2026-04-15T09:58:49.000Z Be Safe : Fiverr Is Leaking Server Credentials and VPN Passwords on Google Right Now https://www.malwarebytes.com/blog/news/2026/04/april-patch-tuesday-fixes-two-zero-days-including-one-under-active-attack ThreatAft en 2026-04-15T09:57:15.000Z April Patch Tuesday fixes two zero-days, including one under active attack https://industrialcyber.co/industrial-cyber-attacks/black-shrantac-exposes-industrial-environments-to-stealth-ransomware-risk-through-lotl-double-extortion-tactics/ ThreatAft en 2026-04-15T09:47:16.000Z Black Shrantac exposes industrial environments to stealth ransomware risk through LOTL, double extortion tactics https://industrialcyber.co/manufacturing/manufacturing-absorbs-56-ransomware-surge-of-global-attacks-in-2025-as-raas-legacy-ot-supply-chains-fuel-spike/ ThreatAft en 2026-04-15T09:42:34.000Z Manufacturing absorbs 56% ransomware surge of global attacks in 2025, as RaaS, legacy OT, supply chains fuel spike https://industrialcyber.co/industrial-cyber-attacks/ababil-of-minab-claims-cyberattack-on-lacmta-exposing-risks-to-rail-control-systems-and-critical-transit-infrastructure/ ThreatAft en 2026-04-15T09:42:20.000Z Ababil of Minab claims cyberattack on LACMTA, exposing risks to rail control systems and critical transit infrastructure https://www.securityweek.com/fortinet-patches-critical-fortisandbox-vulnerabilities/ ThreatAft en 2026-04-15T09:37:24.000Z Fortinet Patches Critical FortiSandbox Vulnerabilities https://industrialcyber.co/news/claroty-launches-visibility-orchestration-in-xdome-to-boost-cps-asset-visibility-and-security-eliminate-blind-spots/ ThreatAft en 2026-04-15T09:34:44.000Z Claroty launches Visibility Orchestration in xDome to boost CPS asset visibility and security, eliminate blind spots https://www.infosecurity-magazine.com/news/researchers-surge-bruteforce/ ThreatAft en 2026-04-15T09:30:00.000Z Researchers Spot Surge in Brute-Force Attacks from Middle East https://www.reddit.com/r/cybersecurity/comments/1sm104g/do_companies_usually_do_whitebox_testing_in/ ThreatAft en 2026-04-15T09:25:57.000Z Do companies usually do white-box testing in pentests, or do they stick to more limited access approaches? https://www.infosecurity-magazine.com/news/microsoft-two-zerodays-april-patch/ ThreatAft en 2026-04-15T09:10:00.000Z Microsoft Fixes Two Zero-Days in April Patch Tuesday https://www.malwarebytes.com/blog/news/2026/04/credit-resources-vault-why-this-credit-email-set-off-our-scam-alarms ThreatAft en 2026-04-15T09:08:47.000Z Credit Resources Vault: Why this credit email set off our scam alarms https://www.reddit.com/r/cybersecurity/comments/1sm0g6r/what_i_wished_someone_told_me_before_my_first/ ThreatAft en 2026-04-15T08:53:15.000Z What I wished someone told me before my first real cybersecurity job https://www.helpnetsecurity.com/2026/04/15/raspberry-pi-os-6-2-sudo-security-update/ ThreatAft en 2026-04-15T08:50:51.000Z Raspberry Pi OS 6.2 disables passwordless sudo by default https://www.reddit.com/r/netsec/comments/1sm0afg/kerberoasting_detection_gaps_in_mixedencryption/ ThreatAft en 2026-04-15T08:43:37.000Z Kerberoasting detection gaps in mixed-encryption environments and why 0x17 filtering alone isn't enough https://thehackernews.com/2026/04/microsoft-issues-patches-for-sharepoint.html ThreatAft en 2026-04-15T08:40:00.000Z Microsoft Issues Patches for SharePoint Zero-Day and 168 Other New Vulnerabilities https://www.helpnetsecurity.com/2026/04/15/nginx-1-30-0-released/ ThreatAft en 2026-04-15T08:22:57.000Z What changed in nginx 1.30.0 and what it means for your upstream config https://www.reddit.com/r/cybersecurity/comments/1slztb2/microsoft_adds_windows_protections_for_malicious/ ThreatAft en 2026-04-15T08:14:22.000Z Microsoft adds Windows protections for malicious Remote Desktop files https://www.reddit.com/r/cybersecurity/comments/1slzss6/microsoft_april_2026_patch_tuesday_fixes_167/ ThreatAft en 2026-04-15T08:13:32.000Z Microsoft April 2026 Patch Tuesday fixes 167 flaws, 2 zero-days https://www.reddit.com/r/cybersecurity/comments/1slz9la/resources_for_python_secure_coding/ ThreatAft en 2026-04-15T07:42:15.000Z Resources for python secure coding. https://www.reddit.com/r/netsec/comments/1slz48l/two_adminlevel_api_keys_publicly_exposed_for/ ThreatAft en 2026-04-15T07:33:19.000Z Two Admin-level API keys publicly exposed for years, both dismissed as "Out of scope" by official bug bounty programs. Case analysis + proposed NHI Exposure Severity Index https://www.securityweek.com/ics-patch-tuesday-8-industrial-giants-publish-new-security-advisories/ ThreatAft en 2026-04-15T07:14:08.000Z ICS Patch Tuesday: 8 Industrial Giants Publish New Security Advisories https://www.reddit.com/r/cybersecurity/comments/1slyld2/i_got_a_malicious_files_to_my_extension/ ThreatAft en 2026-04-15T07:02:19.000Z I Got A Malicious Files To My Extension https://www.helpnetsecurity.com/2026/04/15/openai-gpt-5-4-cyber/ ThreatAft en 2026-04-15T06:24:41.000Z OpenAI expands its cyber defense program with GPT-5.4-Cyber for vetted researchers https://www.reddit.com/r/cybersecurity/comments/1slxndr/need_a_template_for_vulnerability_management/ ThreatAft en 2026-04-15T06:08:19.000Z Need a template for Vulnerability management reports https://www.reddit.com/r/cybersecurity/comments/1slxlzx/how_many_head_counts_does_your_team_have_for/ ThreatAft en 2026-04-15T06:06:03.000Z How many head counts does your team have for vulnerability management ? https://www.helpnetsecurity.com/2026/04/15/anthropic-claude-mythos-ai-vulnerability-discovery/ ThreatAft en 2026-04-15T06:00:34.000Z The exploit gap is closing, and your patch cycle wasn’t built for this https://www.reddit.com/r/cybersecurity/comments/1slx5ag/the_rise_of_ai_pentesting_agents_a_technical/ ThreatAft en 2026-04-15T05:40:13.000Z The Rise of AI Pentesting Agents: A Technical Analysis https://www.reddit.com/r/cybersecurity/comments/1slx57s/research_partner_needed_paper_publication/ ThreatAft en 2026-04-15T05:40:07.000Z Research partner needed - paper publication https://www.helpnetsecurity.com/2026/04/15/nuno-rodrigues-carvalho-enisa-cve-program-vulnerability-disclosure/ ThreatAft en 2026-04-15T05:30:18.000Z Coordinated vulnerability disclosure is now an EU obligation, but cultural change takes time https://www.reddit.com/r/cybersecurity/comments/1slwxg7/looking_for_ukrainians_in_cybersecurity/ ThreatAft en 2026-04-15T05:28:18.000Z Looking for Ukrainians in Cybersecurity https://www.helpnetsecurity.com/2026/04/15/legitify-open-source-scanner-security-misconfigurations-github-gitlab/ ThreatAft en 2026-04-15T05:00:34.000Z Legitify: Open-source scanner for security misconfigurations on GitHub and GitLab https://www.helpnetsecurity.com/2026/04/15/product-showcase-gitguardian-ggshield-ai-hook/ ThreatAft en 2026-04-15T04:30:50.000Z Product showcase: Stop secrets from leaking through AI coding tools with GitGuardian https://thehackernews.com/2026/04/openai-launches-gpt-54-cyber-with.html ThreatAft en 2026-04-15T04:30:00.000Z OpenAI Launches GPT-5.4-Cyber with Expanded Access for Security Teams https://www.helpnetsecurity.com/2026/04/15/network-segmentation-failure-research/ ThreatAft en 2026-04-15T04:00:26.000Z Network segmentation projects fail in predictable patterns https://www.reddit.com/r/cybersecurity/comments/1slv34o/linux_anomaly_detection_agent_using_ebpf_and/ ThreatAft en 2026-04-15T03:53:26.000Z Linux Anomaly Detection Agent using eBPF and Isolation Forest https://www.reddit.com/r/cybersecurity/comments/1slufwp/how_do_you_manage_dependency_and_supply_chain/ ThreatAft en 2026-04-15T03:23:00.000Z How do you manage dependency and supply chain risk in modern application security? https://www.reddit.com/r/cybersecurity/comments/1slt9jg/how_is_the_job_market_for_those_in_grc_and_audit/ ThreatAft en 2026-04-15T02:29:31.000Z How is the job market for those in GRC and Audit roles ? https://www.reddit.com/r/cybersecurity/comments/1slt49s/addicted_to_hacking_young_hacker_behind_historic/ ThreatAft en 2026-04-15T02:22:48.000Z 'Addicted to hacking': Young hacker behind historic breach speaks out for 1st time, before reporting to prison https://www.reddit.com/r/cybersecurity/comments/1slsr0c/building_a_username_osint_correlator_struggling/ ThreatAft en 2026-04-15T02:06:05.000Z Building a username OSINT correlator — struggling with false positives https://isc.sans.edu/diary/rss/32900 ThreatAft en 2026-04-15T02:00:02.000Z ISC Stormcast For Wednesday, April 15th, 2026 https://isc.sans.edu/podcastdetail/9892, (Wed, Apr 15th) https://www.reddit.com/r/netsec/comments/1slsl59/anthropics_claude_mythos_found_individual_bugs/ ThreatAft en 2026-04-15T01:58:48.000Z Anthropic's Claude Mythos Found Individual Bugs. Mythos SI (Structured Intelligence) Found the Class They Belong To. https://www.reddit.com/r/cybersecurity/comments/1slsaen/software_development_and_it/ ThreatAft en 2026-04-15T01:45:36.000Z Software Development and IT https://www.reddit.com/r/cybersecurity/comments/1sls6iy/after_doing_ctfs_how_confident_are_you_applying/ ThreatAft en 2026-04-15T01:40:55.000Z After doing CTFs, how confident are you applying them to real‑world systems? https://www.reddit.com/r/Malware/comments/1slruao/yara_rules_tool/ ThreatAft en 2026-04-15T01:25:35.000Z YARA Rules Tool https://www.reddit.com/r/cybersecurity/comments/1slr2sb/removed_by_reddit/ ThreatAft en 2026-04-15T00:51:05.000Z [ Removed by Reddit ] https://www.reddit.com/r/cybersecurity/comments/1slr2sb/identity_governance_sailpoint_the_rising_demand/ ThreatAft en 2026-04-15T00:51:05.000Z Identity Governance & SailPoint: The Rising Demand for IAM Professionals in 2026 https://www.reddit.com/r/netsec/comments/1slqr27/removed_by_reddit/ ThreatAft en 2026-04-15T00:36:27.000Z [ Removed by Reddit ] https://www.reddit.com/r/cybersecurity/comments/1slqg5b/fall_in_the_thermaltake_captcha/ ThreatAft en 2026-04-15T00:23:20.000Z Fall in the thermaltake captcha https://isc.sans.edu/diary/rss/32896 ThreatAft en 2026-04-15T00:19:53.000Z Scanning for AI Models, (Tue, Apr 14th) https://www.darkreading.com/cloud-security/microsoft-bets-10-billion-to-boost-japan-s-ai-cybersecurity ThreatAft en 2026-04-15T00:00:08.000Z Microsoft Bets $10 Billion to Boost Japan's AI, Cybersecurity https://www.recordedfuture.com/blog/your-supply-chain-breach-is-someone-else-payday ThreatAft en 2026-04-15T00:00:00.000Z Your Supply Chain Breach Is Someone Else's Payday https://www.reddit.com/r/cybersecurity/comments/1slp3jo/how_to_grow_professionally_and_change_jobs/ ThreatAft en 2026-04-14T23:25:01.000Z How to grow professionally and change jobs https://cyberscoop.com/cisa-cancels-cybercorps-internships-dhs-funding-crisis/ ThreatAft en 2026-04-14T23:17:33.000Z CISA cancels summer internships for cyber scholarship students amid DHS funding lapse https://www.sentinelone.com/blog/securing-the-software-supply-chain-how-sentinelones-ai-edr-autonomously-blocked-the-cpu-z-watering-hole-cyber-attack/ ThreatAft en 2026-04-14T22:59:27.000Z Securing the Software Supply Chain: How SentinelOne’s AI EDR Autonomously Blocked the CPU-Z Watering Hole Cyber Attack https://www.bleepingcomputer.com/news/microsoft/microsoft-adds-windows-protections-for-malicious-remote-desktop-files/ ThreatAft en 2026-04-14T22:23:33.000Z Microsoft adds Windows protections for malicious Remote Desktop files https://www.reddit.com/r/cybersecurity/comments/1slnljb/capstone_help/ ThreatAft en 2026-04-14T22:23:27.000Z Capstone Help https://www.reddit.com/r/cybersecurity/comments/1sln81x/orbyx_ai_spm_open_source_ai_security_posture/ ThreatAft en 2026-04-14T22:08:46.000Z Orbyx AI SPM - Open Source AI Security Posture Management https://www.reddit.com/r/cybersecurity/comments/1sln5jf/4_years_as_fullstack_dev_want_to_pivot_to_a_role/ ThreatAft en 2026-04-14T22:06:09.000Z 4 years as Full-Stack Dev → Want to pivot to a role that combines development + cybersecurity. https://www.helpnetsecurity.com/2026/04/15/microsoft-office-sensitivity-labels-permissions/ ThreatAft en 2026-04-14T22:05:41.000Z Microsoft ends desktop detour for sensitivity labels in Office web apps https://www.bleepingcomputer.com/news/security/crypto-exchange-kraken-extorted-by-hackers-after-insider-breach/ ThreatAft en 2026-04-14T21:58:31.000Z Crypto-exchange Kraken extorted by hackers after insider breach https://krebsonsecurity.com/2026/04/patch-tuesday-april-2026-edition/ ThreatAft en 2026-04-14T21:47:59.000Z Patch Tuesday, April 2026 Edition https://www.reddit.com/r/cybersecurity/comments/1slmoev/orbyx_ai_spm_open_source_ai_security_posture/ ThreatAft en 2026-04-14T21:47:29.000Z Orbyx AI SPM - open source AI Security Posture Management https://www.darkreading.com/vulnerabilities-threats/privilege-elevation-dominates-microsoft-patch-update ThreatAft en 2026-04-14T21:22:07.000Z Privilege Elevation Dominates Massive Microsoft Patch Update https://www.reddit.com/r/netsec/comments/1sllxth/using_nix_or_docker_for_reproducible_development/ ThreatAft en 2026-04-14T21:19:58.000Z Using Nix or Docker for reproducible Development Environments https://www.tenable.com/blog/claude-mythos-prepare-for-AI-cybersecurity-questions-from-your-board-of-directors ThreatAft en 2026-04-14T20:45:00.000Z Claude Mythos: Prepare for your board’s cybersecurity questions about the latest AI model from Anthropic https://www.bleepingcomputer.com/news/security/over-100-chrome-extensions-in-web-store-target-users-accounts-and-data/ ThreatAft en 2026-04-14T20:33:00.000Z Over 100 Chrome extensions in Web Store target users accounts and data https://www.reddit.com/r/Malware/comments/1slkjnq/behavioral_analysis_xworm_v65_rat_dropper_via/ ThreatAft en 2026-04-14T20:28:04.000Z Behavioral Analysis: XWorm v6.5 RAT Dropper via Batch File https://cyberscoop.com/microsoft-patch-tuesday-april-2026/ ThreatAft en 2026-04-14T20:27:39.000Z Microsoft drops its second-largest monthly batch of defects on record https://www.darkreading.com/vulnerabilities-threats/edr-killer-ecosystem-expansion-requires-stronger-byovd-defenses ThreatAft en 2026-04-14T20:20:34.000Z EDR-Killer Ecosystem Expansion Requires Stronger BYOVD Defenses https://blog.qualys.com/vulnerabilities-threat-research/2026/04/14/microsoft-and-adobe-patch-tuesday-april-2026-security-update-review ThreatAft en 2026-04-14T20:16:14.000Z Microsoft and Adobe Patch Tuesday, April 2026 Security Update Review https://cyberscoop.com/space-force-ciso-touts-ai-impact-cyber-compliance/ ThreatAft en 2026-04-14T20:00:34.000Z Space Force official touts AI’s impact on cyber compliance https://www.wired.com/story/in-the-wake-of-anthropics-mythos-openai-has-a-new-cybersecurity-model-and-strategy/ ThreatAft en 2026-04-14T20:00:17.000Z In the Wake of Anthropic's Mythos, OpenAI Has a New Cybersecurity Model—and Strategy https://therecord.media/new-janaware-ransomware-targeting-turkey ThreatAft en 2026-04-14T19:35:00.000Z New ‘JanaWare’ ransomware targeting Turkish citizens as cybercriminal ecosystem fragments https://www.reddit.com/r/cybersecurity/comments/1sli56g/i_compiled_years_of_active_directory_admin_notes/ ThreatAft en 2026-04-14T19:03:11.000Z I compiled years of Active Directory admin notes into a 28-page quick reference (PowerShell, GPO, Event IDs, attacks) https://www.wired.com/story/telegram-is-still-hosting-a-sanctioned-21-billion-crypto-scammer-black-market/ ThreatAft en 2026-04-14T18:56:08.000Z Telegram Is Still Hosting a Sanctioned $21 Billion Crypto Scammer Black Market https://www.reddit.com/r/cybersecurity/comments/1slhr2x/suspicious_but_not_critical_alerts_act/ ThreatAft en 2026-04-14T18:49:32.000Z Suspicious but not critical alerts: act immediately or monitor first? https://www.reddit.com/r/cybersecurity/comments/1slgu4f/my_osint_platform_with_1300_tools_in_30_languages/ ThreatAft en 2026-04-14T18:17:33.000Z My OSINT platform with 1300+ tools in 30 languages! https://www.securityweek.com/microsoft-patches-exploited-sharepoint-zero-day-and-160-other-vulnerabilities/ ThreatAft en 2026-04-14T18:14:37.000Z Microsoft Patches Exploited SharePoint Zero-Day and 160 Other Vulnerabilities https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-10-kb5082200-extended-security-update/ ThreatAft en 2026-04-14T18:09:39.000Z Microsoft releases Windows 10 KB5082200 extended security update https://www.bleepingcomputer.com/news/security/mcgraw-hill-confirms-data-breach-following-extortion-threat/ ThreatAft en 2026-04-14T18:07:07.000Z McGraw-Hill confirms data breach following extortion threat https://www.tenable.com/blog/microsofts-april-2026-patch-tuesday-addresses-163-cves-cve-2026-32201 ThreatAft en 2026-04-14T17:52:08.000Z Microsoft’s April 2026 Patch Tuesday Addresses 163 CVEs (CVE-2026-32201) https://www.bleepingcomputer.com/news/microsoft/windows-11-cumulative-updates-kb5083769-and-kb5082052-released/ ThreatAft en 2026-04-14T17:46:31.000Z Windows 11 cumulative updates KB5083769 & KB5082052 released https://isc.sans.edu/diary/rss/32898 ThreatAft en 2026-04-14T17:46:09.000Z Microsoft Patch Tuesday April 2026., (Tue, Apr 14th) https://www.bleepingcomputer.com/news/microsoft/microsoft-april-2026-patch-tuesday-fixes-167-flaws-2-zero-days/ ThreatAft en 2026-04-14T17:41:13.000Z Microsoft April 2026 Patch Tuesday fixes 167 flaws, 2 zero-days https://www.reddit.com/r/cybersecurity/comments/1slfplo/kraken_insider_threat/ ThreatAft en 2026-04-14T17:38:42.000Z Kraken Insider threat https://www.reddit.com/r/cybersecurity/comments/1sleual/a_critical_vulnerability_found_in_one_of_gpuzs/ ThreatAft en 2026-04-14T17:08:22.000Z A critical vulnerability found in one of GPU-Z's drivers https://therecord.media/virginia-enacts-ban-on-precise-geolocation-data ThreatAft en 2026-04-14T16:51:00.000Z Virginia enacts ban on precise geolocation data sales as momentum for similar prohibitions builds https://www.securityweek.com/adobe-patches-55-vulnerabilities-across-11-products/ ThreatAft en 2026-04-14T16:48:03.000Z Adobe Patches 55 Vulnerabilities Across 11 Products https://www.bleepingcomputer.com/news/security/fake-ledger-live-app-on-apples-app-store-stole-95m-in-crypto/ ThreatAft en 2026-04-14T16:37:01.000Z Fake Ledger Live app on Apple’s App Store stole $9.5M in crypto https://cyberscoop.com/black-basta-affiliates-senior-executives-reliaquest/ ThreatAft en 2026-04-14T16:25:05.000Z Black Basta’s playbook lives on as former affiliates launch fast-scale intrusion campaign https://www.darkreading.com/cyber-risk/wargame-demonstrates-social-media-manipulation ThreatAft en 2026-04-14T16:06:14.000Z Wargame Exercise Demonstrates How Social Media Manipulation Works https://thehackernews.com/2026/04/new-php-composer-flaws-enable-arbitrary.html ThreatAft en 2026-04-14T15:57:00.000Z New PHP Composer Flaws Enable Arbitrary Command Execution — Patches Released https://www.reddit.com/r/cybersecurity/comments/1slcq0l/need_advice_backend_soar_engineer_offered_insider/ ThreatAft en 2026-04-14T15:54:10.000Z Need advice: Backend SOAR engineer offered Insider Threat Role, dont know what to do https://www.bleepingcomputer.com/news/microsoft/microsoft-rolls-out-fast-track-to-reinstate-windows-hardware-dev-accounts/ ThreatAft en 2026-04-14T15:53:50.000Z Microsoft rolls out fast-track to reinstate Windows hardware dev accounts https://www.helpnetsecurity.com/2026/04/14/openssl-4-0-0-released/ ThreatAft en 2026-04-14T15:46:52.000Z OpenSSL 4.0.0 release cuts deprecated protocols and gains post-quantum support https://www.reddit.com/r/cybersecurity/comments/1slcdzs/cheat_sheet_for_discovering_agentic_identity/ ThreatAft en 2026-04-14T15:42:21.000Z Cheat Sheet for Discovering Agentic Identity Owners https://www.reddit.com/r/cybersecurity/comments/1slbphu/stuck_in_dilemma/ ThreatAft en 2026-04-14T15:18:02.000Z Stuck in dilemma https://www.wired.com/story/the-fcc-has-a-fast-lane-for-complaints-about-trumps-media-critics/ ThreatAft en 2026-04-14T15:12:28.000Z The FCC Has a Fast Lane for Complaints About Trump’s Media Critics https://www.helpnetsecurity.com/2026/04/14/claude-mythos-test-attack-capabilities-limits/ ThreatAft en 2026-04-14T15:06:53.000Z Testing reveals Claude Mythos’s offensive capabilities and limits https://www.reddit.com/r/cybersecurity/comments/1slaxa6/mobile_number_getting_random_verification_codes/ ThreatAft en 2026-04-14T14:50:19.000Z Mobile number getting random verification codes from apps I’ve never used — should I be worried? https://www.reddit.com/r/cybersecurity/comments/1slapup/would_git_for_networks_actually_be_useful/ ThreatAft en 2026-04-14T14:42:43.000Z Would “Git for networks” actually be useful? https://thehackernews.com/2026/04/ai-driven-pushpaganda-scam-exploits.html ThreatAft en 2026-04-14T14:30:00.000Z AI-Driven Pushpaganda Scam Exploits Google Discover to Spread Scareware and Ad Fraud https://www.reddit.com/r/cybersecurity/comments/1slaaih/axios_10_10_cve_is_not_realistically_exploitable/ ThreatAft en 2026-04-14T14:26:58.000Z Axios 10 / 10 CVE is not realistically exploitable - CVE-2026-40175 https://www.reddit.com/r/netsec/comments/1sla6ju/common_entra_id_security_assessment_findings_part/ ThreatAft en 2026-04-14T14:22:54.000Z Common Entra ID Security Assessment Findings – Part 4: Weak Conditional Access Policies https://www.helpnetsecurity.com/2026/04/14/fbi-w3ll-phishing-kit-takedown/ ThreatAft en 2026-04-14T14:15:18.000Z W3LL phishing service sold for $500 dismantled by the FBI https://www.reddit.com/r/cybersecurity/comments/1sl9res/google_cloud_phishing_drops_remcos_rat/ ThreatAft en 2026-04-14T14:07:37.000Z Google Cloud Phishing Drops Remcos RAT https://www.bleepingcomputer.com/news/security/5-ways-zero-trust-maximizes-identity-security/ ThreatAft en 2026-04-14T14:02:12.000Z 5 Ways Zero Trust Maximizes Identity Security https://thehackernews.com/2026/04/google-adds-rust-based-dns-parser-into.html ThreatAft en 2026-04-14T13:55:00.000Z Google Adds Rust-Based DNS Parser into Pixel 10 Modem to Enhance Security https://therecord.media/russia-cracks-down-bluesky-internet ThreatAft en 2026-04-14T13:51:00.000Z Russia appears to block social media platform Bluesky amid wider internet restrictions https://www.helpnetsecurity.com/2026/04/14/claroty-visibility-orchestration/ ThreatAft en 2026-04-14T13:40:16.000Z Claroty advances CPS security with Visibility Orchestration in xDome https://industrialcyber.co/reports/black-veatch-takepoint-research-finds-fragmented-ownership-slows-secure-by-design-adoption-pushing-cyber-risk/ ThreatAft en 2026-04-14T13:30:01.000Z Black & Veatch-Takepoint Research finds fragmented ownership slows secure-by-design adoption, pushing cyber risk https://www.helpnetsecurity.com/2026/04/14/oligo-enables-real-time-exploit-detection-and-blocking-at-application-runtime/ ThreatAft en 2026-04-14T13:27:33.000Z Oligo enables real-time exploit detection and blocking at application runtime https://www.reddit.com/r/netsec/comments/1sl8l4h/prometheus_alerting_rules_for_ebpf_snmp_wireguard/ ThreatAft en 2026-04-14T13:22:29.000Z Prometheus alerting rules for eBPF, SNMP, WireGuard, Cilium and cert-manager added to awesome-prometheus-alerts https://www.reddit.com/r/cybersecurity/comments/1sl89jf/argus_found_18_validated_exploits_in_ffmpeg_curl/ ThreatAft en 2026-04-14T13:09:53.000Z Argus – found 18 validated exploits in ffmpeg, curl, OpenSSL, SQLite, and Django using LLM-driven autonomous vulnerability discovery https://www.reddit.com/r/cybersecurity/comments/1sl88yb/certification_recommendations/ ThreatAft en 2026-04-14T13:09:15.000Z Certification recommendations https://www.reddit.com/r/cybersecurity/comments/1sl88cu/edrxdr_bypass_and_detection_evasion_techniques_an/ ThreatAft en 2026-04-14T13:08:34.000Z EDR/XDR Bypass and Detection Evasion Techniques: An Investigation of Advanced Evasion Strategies from a Red Team Perspective https://www.reddit.com/r/cybersecurity/comments/1sl8845/ransomware_is_growing_three_times_faster_than_the/ ThreatAft en 2026-04-14T13:08:17.000Z Ransomware Is Growing Three Times Faster Than the Spending Meant to Stop It https://www.infosecurity-magazine.com/news/cisos-innovate-talent-retention/ ThreatAft en 2026-04-14T13:00:00.000Z CISOs Urged to Innovate with Talent Retention as Job Satisfaction Declines https://www.helpnetsecurity.com/2026/04/14/davmail-6-6-0-released/ ThreatAft en 2026-04-14T12:58:40.000Z DavMail 6.6.0 patches a regex flaw and advances its Microsoft Graph backend https://www.securityweek.com/mythos-ready-security-csa-urges-cisos-to-prepare-for-accelerated-ai-threats/ ThreatAft en 2026-04-14T12:53:55.000Z ‘Mythos-Ready’ Security: CSA Urges CISOs to Prepare for Accelerated AI Threats https://industrialcyber.co/utilities-energy-power-water-waste/epa-proposes-19-million-information-security-boost-to-guard-water-systems-from-cyber-threats-moves-resilience-to-forefront/ ThreatAft en 2026-04-14T12:51:52.000Z EPA proposes $19 million information security boost to guard water systems from cyber threats, moves resilience to forefront https://www.helpnetsecurity.com/2026/04/14/basic-fit-data-breach-1-million-members-europe/ ThreatAft en 2026-04-14T12:50:54.000Z Basic-Fit hack compromises data of up to 1 million members https://www.securityweek.com/europes-largest-gym-chain-says-data-breach-impacts-1-million-members/ ThreatAft en 2026-04-14T12:43:30.000Z Europe’s Largest Gym Chain Says Data Breach Impacts 1 Million Members https://www.reddit.com/r/cybersecurity/comments/1sl7e4x/release_stegoforge_a_hybrid_python_framework_for/ ThreatAft en 2026-04-14T12:34:13.000Z Release: StegoForge - A hybrid Python framework for multimedia steganography, zero-knowledge ML forensics, and deniable encryption https://www.reddit.com/r/netsec/comments/1sl6thg/new_report_digital_exposure_of_european_telecoms/ ThreatAft en 2026-04-14T12:09:30.000Z New Report: Digital Exposure of European Telecoms https://www.reddit.com/r/cybersecurity/comments/1sl6rsc/hallmark_breach_17m_records_including_names/ ThreatAft en 2026-04-14T12:07:23.000Z Hallmark Breach: 1.7M records, including names, phones, addresses and support tickets https://www.cisa.gov/news-events/alerts/2026/04/14/cisa-adds-two-known-exploited-vulnerabilities-catalog ThreatAft en 2026-04-14T12:00:00.000Z CISA Adds Two Known Exploited Vulnerabilities to Catalog https://www.infosecurity-magazine.com/news/triad-nexus-expands-fraud/ ThreatAft en 2026-04-14T12:00:00.000Z Triad Nexus Expands Global Fraud Operations Despite US Sanctions https://www.helpnetsecurity.com/2026/04/14/datavisor-vera/ ThreatAft en 2026-04-14T11:59:42.000Z DataVisor brings conversational AI agents to fraud and AML operations https://www.malwarebytes.com/blog/news/2026/04/omnistealer-uses-the-blockchain-to-steal-everything-it-can ThreatAft en 2026-04-14T11:52:15.000Z Omnistealer uses the blockchain to steal everything it can https://www.reddit.com/r/cybersecurity/comments/1sl6e5d/controversial_take_cyber_sec_more_important_than/ ThreatAft en 2026-04-14T11:50:49.000Z Controversial take? Cyber sec more important than ever in a world with AI https://www.reddit.com/r/cybersecurity/comments/1sl6b3r/adobes_pdf_reader_five_month_active_zeroday/ ThreatAft en 2026-04-14T11:46:58.000Z Adobe's PDF Reader Five Month Active Zero-Day https://industrialcyber.co/nist/nist-develops-trustworthy-ai-in-critical-infrastructure-profile-to-align-risk-resilience-and-infrastructure-security/ ThreatAft en 2026-04-14T11:46:39.000Z NIST develops Trustworthy AI in Critical Infrastructure Profile to align risk, resilience, and infrastructure security https://www.reddit.com/r/cybersecurity/comments/1sl677j/were_building_a_cyber_residency_to_bridge_the/ ThreatAft en 2026-04-14T11:41:48.000Z We’re building a cyber residency to bridge the "Junior Gap," and the biggest hurdle isn't the technical skill—it's the noise. https://www.reddit.com/r/cybersecurity/comments/1sl672x/musician_loses_lifes_savings_after_downloading/ ThreatAft en 2026-04-14T11:41:38.000Z Musician loses life's savings after downloading fake app from Apple App Store https://www.helpnetsecurity.com/2026/04/14/booking-com-data-breach-customer-reservation-data-exposed/ ThreatAft en 2026-04-14T11:40:39.000Z Booking.com data breach: Customer reservation data exposed https://www.helpnetsecurity.com/2026/04/14/binary-defense-nightbeacon-detect/ ThreatAft en 2026-04-14T11:37:02.000Z Binary Defense expands NightBeacon with threat-aligned Detection Coverage Index https://www.infosecurity-magazine.com/news/chrome-extensions-expose-user-data/ ThreatAft en 2026-04-14T11:30:00.000Z Malicious Chrome Extensions Campaign Exposes User Data https://www.securityweek.com/sap-patches-critical-abap-vulnerability/ ThreatAft en 2026-04-14T11:21:12.000Z SAP Patches Critical ABAP Vulnerability https://www.reddit.com/r/cybersecurity/comments/1sl5qj2/хочу_услышать_ваше_мнение/ ThreatAft en 2026-04-14T11:19:21.000Z Хочу услышать ваше мнение https://www.reddit.com/r/cybersecurity/comments/1sl5oha/detecting_uk_pii_inbrowser_before_exfiltration/ ThreatAft en 2026-04-14T11:16:24.000Z Detecting UK PII in-browser before exfiltration — viable approach? https://www.securityweek.com/triad-nexus-evades-sanctions-to-fuel-cybercrime/ ThreatAft en 2026-04-14T10:53:32.000Z Triad Nexus Evades Sanctions to Fuel Cybercrime https://www.reddit.com/r/cybersecurity/comments/1sl4zrc/european_gym_giant_basicfit_data_breach_affects_1/ ThreatAft en 2026-04-14T10:41:24.000Z European Gym giant Basic-Fit data breach affects 1 million members https://www.reddit.com/r/cybersecurity/comments/1sl4t88/fedramp_vulnerability_remediation/ ThreatAft en 2026-04-14T10:31:41.000Z FedRamp Vulnerability Remediation https://www.reddit.com/r/cybersecurity/comments/1sl4npx/the_forensic_readiness_market_is_fragmented_what/ ThreatAft en 2026-04-14T10:23:39.000Z The Forensic Readiness Market Is Fragmented: What Enterprises Really Purchase https://www.securityweek.com/google-adds-rust-dns-parser-to-pixel-phones-for-better-security/ ThreatAft en 2026-04-14T10:21:33.000Z Google Adds Rust DNS Parser to Pixel Phones for Better Security https://thehackernews.com/2026/04/mirax-android-rat-turns-devices-into.html ThreatAft en 2026-04-14T10:20:00.000Z Mirax Android RAT Turns Devices into SOCKS5 Proxies, Reaching 220,000 via Meta Ads https://www.helpnetsecurity.com/2026/04/14/google-back-button-hijacking/ ThreatAft en 2026-04-14T10:04:12.000Z Google to penalize sites that hijack the back button https://thehackernews.com/2026/04/analysis-of-216m-security-findings.html ThreatAft en 2026-04-14T10:00:00.000Z Analysis of 216M Security Findings Shows a 4x Increase In Critical Risk (2026 Report) https://cyberscoop.com/national-security-ntsc-op-ed-sean-plankey-cisa-confirmed-director/ ThreatAft en 2026-04-14T10:00:00.000Z Secretary Mullin must help finish the job: Urge the Senate to confirm Plankey https://www.reddit.com/r/Malware/comments/1sl442h/a_private_company_now_has_powerful_zeroday/ ThreatAft en 2026-04-14T09:55:01.000Z A private company now has powerful zero-day exploits of almost every software project you've heard of. https://www.malwarebytes.com/blog/ai/2026/04/chatgpt-under-scrutiny-as-florida-investigates-campus-shooting ThreatAft en 2026-04-14T09:45:35.000Z ChatGPT under scrutiny as Florida investigates campus shooting https://www.securityweek.com/nightclub-giant-rci-hospitality-reports-data-breach/ ThreatAft en 2026-04-14T09:35:06.000Z Nightclub Giant RCI Hospitality Reports Data Breach https://www.infosecurity-magazine.com/news/ai-security-institute-best/ ThreatAft en 2026-04-14T09:30:00.000Z AI Security Institute Advocates Security Best Practices After Mythos Test https://www.helpnetsecurity.com/2026/04/14/ai-adoption-safety-transparency-report/ ThreatAft en 2026-04-14T09:22:41.000Z AI adoption is outpacing the safeguards around it https://www.securityweek.com/organizations-warned-of-exploited-windows-adobe-acrobat-vulnerabilities/ ThreatAft en 2026-04-14T08:57:18.000Z Organizations Warned of Exploited Windows, Adobe Acrobat Vulnerabilities https://www.reddit.com/r/cybersecurity/comments/1sl2yrv/is_it_really_necessary_to_stick_to_any_particular/ ThreatAft en 2026-04-14T08:48:11.000Z Is it really necessary to stick to any particular domain of cybersecurity to get the internship in it? https://thehackernews.com/2026/04/108-malicious-chrome-extensions-steal.html ThreatAft en 2026-04-14T08:35:00.000Z 108 Malicious Chrome Extensions Steal Google and Telegram Data, Affecting 20,000 Users https://www.reddit.com/r/cybersecurity/comments/1sl1oay/im_pretty_confident_that_i_have_some_form_of/ ThreatAft en 2026-04-14T07:31:10.000Z I'm pretty confident that I have some form of malware, but I'm unsure of what it is. I have 102 instances of wsl.exe and 54 instances of conhost.exe all running at once. What should I do? https://www.reddit.com/r/cybersecurity/comments/1sl1nrb/how_do_teams_decide_what_to_fix_first/ ThreatAft en 2026-04-14T07:30:18.000Z How do teams decide what to fix first? https://www.helpnetsecurity.com/2026/04/14/idan-habler-cisco-agentic-ai-memory-attacks/ ThreatAft en 2026-04-14T06:00:18.000Z Agentic AI memory attacks spread across sessions and users, and most organizations aren’t ready https://www.reddit.com/r/cybersecurity/comments/1skzynb/preparing_for_postquantum_cryptography_the_secure/ ThreatAft en 2026-04-14T05:52:06.000Z Preparing for Post-Quantum Cryptography: The Secure Firewall Roadmap https://thehackernews.com/2026/04/showdoc-rce-flaw-cve-2025-0520-actively.html ThreatAft en 2026-04-14T05:50:00.000Z ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers https://www.reddit.com/r/cybersecurity/comments/1skzu2z/pros_and_cons_of_btl1_vs_htb_cdsa_for_getting_and/ ThreatAft en 2026-04-14T05:45:14.000Z Pros and cons of BTL1 vs HTB CDSA for getting and passing an interview for SOC Analyst entry level job https://thehackernews.com/2026/04/cisa-adds-6-known-exploited-flaws-in.html ThreatAft en 2026-04-14T05:39:00.000Z CISA Adds 6 Known Exploited Flaws in Fortinet, Microsoft, and Adobe Software https://www.helpnetsecurity.com/2026/04/14/review-the-psychology-of-information-security/ ThreatAft en 2026-04-14T05:30:08.000Z Review: The Psychology of Information Security https://www.reddit.com/r/cybersecurity/comments/1skzb17/security_fatigue/ ThreatAft en 2026-04-14T05:16:42.000Z Security Fatigue https://www.reddit.com/r/cybersecurity/comments/1skz7hm/shadownet_v350_deadlock_6hop_integration_tormixnet/ ThreatAft en 2026-04-14T05:11:29.000Z ShadowNet v3.5.0 - Deadlock (6-Hop Integration) TorMixnet https://www.helpnetsecurity.com/2026/04/14/gitguardian-ai-agents-credentials-leak/ ThreatAft en 2026-04-14T05:00:40.000Z 29 million leaked secrets in 2025: Why AI agents credentials are out of control https://www.crowdstrike.com/en-us/blog/patch-tuesday-analysis-april-2026/ ThreatAft en 2026-04-14T05:00:00.000Z April 2026 Patch Tuesday: Two Zero-Days and Eight Critical Vulnerabilities Among 164 CVEs https://www.helpnetsecurity.com/2026/04/14/zero-trust-identity-security-video/ ThreatAft en 2026-04-14T04:30:18.000Z Zero trust at year two: What nobody planned for https://www.helpnetsecurity.com/2026/04/14/cybersecurity-jobs-available-right-now-april-14-2026/ ThreatAft en 2026-04-14T04:00:57.000Z Cybersecurity jobs available right now: April 14, 2026 https://www.reddit.com/r/cybersecurity/comments/1skxpmm/cyber_security_from_having_a_job_that_is/ ThreatAft en 2026-04-14T03:55:06.000Z Cyber Security from having a job that is prestigious and genuinely cool to "AI is taking all of our jobs away https://www.reddit.com/r/cybersecurity/comments/1skxo64/what_are_peoples_opinions_about_didit_as_a_human/ ThreatAft en 2026-04-14T03:53:01.000Z What are people’s opinions about Didit as a human verification tool? https://www.reddit.com/r/cybersecurity/comments/1skx19m/how_do_you_actually_stay_safe_from_phishing_these/ ThreatAft en 2026-04-14T03:22:30.000Z How do you actually stay safe from phishing these days? https://www.reddit.com/r/netsec/comments/1skwr2x/codex_hacked_a_samsung_tv/ ThreatAft en 2026-04-14T03:09:24.000Z Codex Hacked a Samsung TV https://www.reddit.com/r/cybersecurity/comments/1skw31d/wordpress_google_authenticator_up_to_055/ ThreatAft en 2026-04-14T02:39:18.000Z 🚨 Wordpress | Google Authenticator up to 0.55 - Cross-Site Request Forgery to 2FA Secret Overwrite https://www.reddit.com/r/cybersecurity/comments/1skvvvm/how_much_do_you_rely_on_automation_vs_manual_work/ ThreatAft en 2026-04-14T02:30:12.000Z How much do you rely on automation vs manual work in vulnerability hunting? https://isc.sans.edu/diary/rss/32894 ThreatAft en 2026-04-14T02:00:02.000Z ISC Stormcast For Tuesday, April 14th, 2026 https://isc.sans.edu/podcastdetail/9890, (Tue, Apr 14th) https://www.reddit.com/r/cybersecurity/comments/1sktmgu/built_a_preexecution_authorization_gate_for_ai/ ThreatAft en 2026-04-14T00:51:43.000Z Built a pre-execution authorization gate for AI agents after watching the Meta incident — v1.6.0 now has model identity verification too https://www.recordedfuture.com/blog/recorded-future-solutions-packages ThreatAft en 2026-04-14T00:00:00.000Z A New Way to Buy Recorded Future: Solutions and Packages Built for the 2026 Threat Landscape https://www.recordedfuture.com/blog/pricing-blog ThreatAft en 2026-04-14T00:00:00.000Z A New Way to Buy Recorded Future: Solutions and Packages Built for the 2026 Threat Landscape https://www.recordedfuture.com/research/iran-war-future-scenario-and-business-improvements ThreatAft en 2026-04-14T00:00:00.000Z Iran War: Future Scenario and Business Improvements https://www.elastic.co/security-labs/phantom-in-the-vault ThreatAft en 2026-04-14T00:00:00.000Z Phantom in the vault: Obsidian abused to deliver PhantomPulse RAT https://www.reddit.com/r/cybersecurity/comments/1sks8tj/4_years_of_cybersecurity_consulting_and_any_tips/ ThreatAft en 2026-04-13T23:50:59.000Z 4 years of cybersecurity consulting and any tips on getting back into hands on work? https://www.reddit.com/r/cybersecurity/comments/1skr498/vulnerability_scanning_build_package_vs_app_at/ ThreatAft en 2026-04-13T23:03:58.000Z Vulnerability Scanning Build Package vs App at Run Time https://www.bleepingcomputer.com/news/security/european-gym-giant-basic-fit-data-breach-affects-1-million-members/ ThreatAft en 2026-04-13T21:50:01.000Z European Gym giant Basic-Fit data breach affects 1 million members https://www.darkreading.com/cloud-security/test-networks-withstand-ddos-attacks-peak-loads ThreatAft en 2026-04-13T21:48:09.000Z Why Orgs Need to Test Networks to Withstand DDoS Attacks During Peak Loads https://cyberscoop.com/claude-mythos-ai-cybersecurity-threat-report/ ThreatAft en 2026-04-13T21:43:37.000Z Here’s how cyber heavyweights in the US and UK are dealing with Claude Mythos https://www.darkreading.com/cloud-security/csa-cisos-prepare-post-mythos-exploit-storm ThreatAft en 2026-04-13T21:29:31.000Z CSA: CISOs Should Prepare for Post-Mythos Exploit Storm https://www.reddit.com/r/Malware/comments/1skomzl/open_source_static_analysis_tool_with_payload/ ThreatAft en 2026-04-13T21:26:44.000Z Open source static analysis tool with payload deobfuscation for detecting malicious patterns in source code and binaries https://www.darkreading.com/application-security/adobe-patches-actively-exploited-zero-day ThreatAft en 2026-04-13T20:52:38.000Z Adobe Patches Actively Exploited Zero-Day That Lingered for Months https://cyberscoop.com/openai-axios-supply-chain-attack/ ThreatAft en 2026-04-13T20:24:37.000Z OpenAI’s Mac apps needs an update thanks to the Axios hack https://therecord.media/social-media-ban-australia-research ThreatAft en 2026-04-13T20:21:31.000Z Majority of Australian youth still use social media despite ban, researchers find https://www.bleepingcomputer.com/news/security/stolen-rockstar-games-analytics-data-leaked-by-extortion-gang/ ThreatAft en 2026-04-13T20:08:10.000Z Stolen Rockstar Games analytics data leaked by extortion gang https://www.reddit.com/r/cybersecurity/comments/1skmaqg/systemic_cyber_risk_when_data_breaches_become_a/ ThreatAft en 2026-04-13T20:05:01.000Z Systemic Cyber Risk: When Data Breaches Become a National Security Issue | Ralph Ehlers https://www.bleepingcomputer.com/news/security/critical-flaw-in-wolfssl-library-enables-forged-certificate-use/ ThreatAft en 2026-04-13T19:56:03.000Z Critical flaw in wolfSSL library enables forged certificate use https://www.reddit.com/r/cybersecurity/comments/1sklcop/finding_invisible_remoted_sockets_evidence_of/ ThreatAft en 2026-04-13T19:32:40.000Z Finding "Invisible" remoted Sockets: Evidence of LotO (Living off the Orchard) Surveillance on Gifted macOS Hardware https://www.darkreading.com/ics-ot-security/ot-lacks-tools-cryptographic-readiness ThreatAft en 2026-04-13T19:10:55.000Z Empty Attestations: OT Lacks the Tools for Cryptographic Readiness https://www.bleepingcomputer.com/news/security/fbi-takedown-of-w3ll-phishing-service-leads-to-developer-arrest/ ThreatAft en 2026-04-13T18:55:50.000Z FBI takedown of W3LL phishing service leads to developer arrest https://www.cisa.gov/news-events/bulletins/sb26-103 ThreatAft en 2026-04-13T18:34:53.000Z Vulnerability Summary for the Week of April 6, 2026 https://www.reddit.com/r/cybersecurity/comments/1skjm2l/built_an_opensource_fair_tool_because_enterprise/ ThreatAft en 2026-04-13T18:32:41.000Z Built an open-source FAIR tool because enterprise risk quantification platforms are broken