https://www.darkreading.com/events/black-hat-usa ThreatAft en 2026-08-01T11:00:00.000Z Black Hat USA https://www.securityweek.com/fortinet-rushes-emergency-fixes-for-exploited-zero-day/ ThreatAft en 2026-04-06T09:37:28.000Z Fortinet Rushes Emergency Fixes for Exploited Zero-Day https://www.reddit.com/r/cybersecurity/comments/1sdtqh2/found_a_forgotten_public_s3_bucket_with_40k/ ThreatAft en 2026-04-06T09:11:19.000Z Found a "forgotten" public S3 bucket with 40k+ customer KYC docs at my new gig https://isc.sans.edu/diary/rss/32870 ThreatAft en 2026-04-06T08:50:27.000Z How often are redirects used in phishing in 2026?, (Mon, Apr 6th) https://www.reddit.com/r/cybersecurity/comments/1sdt12c/gave_everything_to_a_technical_assessment_only_to/ ThreatAft en 2026-04-06T08:27:33.000Z Gave everything to a technical assessment only to get rejected because the position was already filled - how do you handle this? https://www.reddit.com/r/cybersecurity/comments/1sds2bv/is_oneman_ciso_role_worth_it/ ThreatAft en 2026-04-06T07:28:21.000Z Is one-man CISO role worth it? https://www.malwarebytes.com/blog/news/2026/04/a-week-in-security-march-30-april-5-2 ThreatAft en 2026-04-06T07:01:00.000Z A week in security (March 30 – April 5) https://thehackernews.com/2026/04/bka-identifies-revil-leaders-behind-130.html ThreatAft en 2026-04-06T06:59:00.000Z BKA Identifies REvil Leaders Behind 130 German Ransomware Attacks https://www.reddit.com/r/cybersecurity/comments/1sdrh2y/htb_media_machine_walkthrough/ ThreatAft en 2026-04-06T06:53:13.000Z HTB Media Machine Walkthrough https://www.reddit.com/r/cybersecurity/comments/1sdrc73/interesting_leakixnet_scanning/ ThreatAft en 2026-04-06T06:44:51.000Z Interesting leakix.net scanning https://www.reddit.com/r/cybersecurity/comments/1sdr9ip/built_a_tool_to_find_which_of_your_gcp_api_keys/ ThreatAft en 2026-04-06T06:40:26.000Z Built a tool to find which of your GCP API keys now have Gemini access https://www.helpnetsecurity.com/2026/04/06/residential-proxy-attack-traffic-ip-reputation-enterprise-security/ ThreatAft en 2026-04-06T05:30:05.000Z Residential proxies make a mockery of IP-based defenses https://www.helpnetsecurity.com/2026/04/06/product-showcase-proton-authenticator-encrypted-open-source-2fa-app/ ThreatAft en 2026-04-06T05:00:39.000Z Product showcase: Proton Authenticator is an end-to-end encrypted, open source 2FA app https://www.reddit.com/r/cybersecurity/comments/1sdp8wh/고배당_특정_숫자_베팅에_쏠리는_데이터_패턴의_기술적_해석/ ThreatAft en 2026-04-06T04:46:00.000Z 고배당 특정 숫자 베팅에 쏠리는 데이터 패턴의 기술적 해석 https://www.reddit.com/r/cybersecurity/comments/1sdp2zz/hidomgdetect_linux_driver_in_development_to/ ThreatAft en 2026-04-06T04:36:55.000Z hid-omg-detect: Linux driver in development to detect malicious HID devices https://www.helpnetsecurity.com/2026/04/06/enterprise-wireless-networks-security-exposure/ ThreatAft en 2026-04-06T04:30:10.000Z IT talent looks the other way as wireless security incidents pile up https://www.helpnetsecurity.com/2026/04/06/rh-isac-enterprise-security-spending-report/ ThreatAft en 2026-04-06T04:00:36.000Z CISOs grapple with AI demands within flat budgets https://www.reddit.com/r/cybersecurity/comments/1sdnuib/how_md5_hashing_works_and_does_it_actually_detect/ ThreatAft en 2026-04-06T03:33:40.000Z How MD5 hashing works and does it actually detect file changes. and can you still trust it today? https://www.reddit.com/r/cybersecurity/comments/1sdmipk/teampcp_used_trivy_to_breach_cisco_the_eu/ ThreatAft en 2026-04-06T02:30:33.000Z TeamPCP used Trivy to breach Cisco, the EU Commission, and 1,000+ orgs—IOCs inside, April 3 deadline just passed with no statement from Cisco https://krebsonsecurity.com/2026/04/germany-doxes-unkn-head-of-ru-ransomware-gangs-revil-gandcrab/ ThreatAft en 2026-04-06T02:07:17.000Z Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab https://isc.sans.edu/diary/rss/32868 ThreatAft en 2026-04-06T02:00:02.000Z ISC Stormcast For Monday, April 6th, 2026 https://isc.sans.edu/podcastdetail/9880, (Mon, Apr 6th) https://www.reddit.com/r/netsec/comments/1sdlisb/the_attack_with_no_attacker_domain_microsoft/ ThreatAft en 2026-04-06T01:45:04.000Z The Attack With No Attacker Domain: Microsoft Entra B2B Guest Invitation Phishing https://www.reddit.com/r/cybersecurity/comments/1sdjzyp/bi_developer_here_should_i_pivot_to_ai/ ThreatAft en 2026-04-06T00:35:55.000Z BI Developer here… should I pivot to AI, cybersecurity, or something else? https://www.reddit.com/r/cybersecurity/comments/1sdj7y0/mentorship_monday_post_all_career_education_and/ ThreatAft en 2026-04-06T00:00:30.000Z Mentorship Monday - Post All Career, Education and Job questions here! https://www.reddit.com/r/cybersecurity/comments/1sdi3vt/why_isnt_pgp_used_more_often_with_email_security/ ThreatAft en 2026-04-05T23:11:31.000Z Why isn't PGP used more often with email security? https://www.malwarebytes.com/blog/podcast/2026/04/killer-robots-are-here-now-what-lock-and-code-s07e07 ThreatAft en 2026-04-05T23:10:20.000Z Killer robots are here. Now what? (Lock and Code S07E07) https://www.reddit.com/r/cybersecurity/comments/1sdh7fr/i_have_16_hours_of_mostly_free_time_whats_a_skill/ ThreatAft en 2026-04-05T22:33:05.000Z I have 16 hours of mostly free time. What’s a skill I should learn? Mostly for fun https://www.reddit.com/r/cybersecurity/comments/1sdgj6n/cyber_security_freelancers_smaller_nontech/ ThreatAft en 2026-04-05T22:04:38.000Z Cyber Security Freelancers - smaller non-tech companies? https://www.reddit.com/r/cybersecurity/comments/1sdg874/anyone_have_blackwin_v4_iso_i_wanna_try_it_out/ ThreatAft en 2026-04-05T21:52:02.000Z Anyone have blackwin v4 iso I wanna try it out but the pads is under maintenance https://www.reddit.com/r/cybersecurity/comments/1sdg5g1/i_have_to_choose_my_ug_program_i_want_to_choose/ ThreatAft en 2026-04-05T21:48:55.000Z I have to choose my ug program i want to choose cyb sec over BS CS cz thats too general but i am hesitant that AI might replace it too? https://www.reddit.com/r/cybersecurity/comments/1sdfgwo/what_sources_are_you_following_for_ai_agentic/ ThreatAft en 2026-04-05T21:21:03.000Z What sources are you following for AI / Agentic security news, writeups, etc? https://www.reddit.com/r/cybersecurity/comments/1sdfddc/tools_at_work/ ThreatAft en 2026-04-05T21:17:02.000Z Tools at work https://www.reddit.com/r/cybersecurity/comments/1sdf8mw/any_good_newslettersblogs_on_infosec/ ThreatAft en 2026-04-05T21:11:44.000Z Any good newsletters/blogs on infosec? https://www.reddit.com/r/cybersecurity/comments/1sdd6l8/cysa_renewal_question/ ThreatAft en 2026-04-05T19:49:57.000Z CySA+ renewal question https://www.bleepingcomputer.com/news/security/traffic-violation-scams-switch-to-qr-codes-in-new-phishing-texts/ ThreatAft en 2026-04-05T19:44:10.000Z Traffic violation scams switch to QR codes in new phishing texts https://www.reddit.com/r/cybersecurity/comments/1sdck5c/fake_claude_code_source_downloads_actually/ ThreatAft en 2026-04-05T19:25:03.000Z Fake Claude Code source downloads actually delivered malware https://www.reddit.com/r/cybersecurity/comments/1sdcamw/for_my_security_compliance_folks_and_individuals/ ThreatAft en 2026-04-05T19:14:34.000Z For my security compliance folks and individuals creating response documentation, what tools or templates do you use? Im trying "responseprep" at the moment. It makes the initial work so much easier for final edits. With all the new shiny tools out there, who's using what or are you hand writing? https://www.bleepingcomputer.com/news/security/new-fortinet-forticlient-ems-flaw-cve-2026-35616-exploited-in-attacks/ ThreatAft en 2026-04-05T18:45:17.000Z New FortiClient EMS flaw exploited in attacks, emergency patch released https://thehackernews.com/2026/04/285-million-drift-hack-traced-to-six.html ThreatAft en 2026-04-05T18:25:00.000Z $285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation https://www.reddit.com/r/cybersecurity/comments/1sdas5w/linux_70rc7_adding_more_documentation_for_ai/ ThreatAft en 2026-04-05T18:15:44.000Z Linux 7.0-rc7 adding more documentation for AI tools to send better security bug reports https://www.reddit.com/r/cybersecurity/comments/1sda9ce/a_deeper_look_at_rustimplant/ ThreatAft en 2026-04-05T17:55:41.000Z A Deeper Look at RustImplant https://www.reddit.com/r/Malware/comments/1sda8qp/reverse_engineering_rustimplant/ ThreatAft en 2026-04-05T17:54:59.000Z Reverse Engineering RustImplant https://www.reddit.com/r/cybersecurity/comments/1sd9uaa/quieres_aprender_a_cazar_amenazas_en_la_dark_web/ ThreatAft en 2026-04-05T17:39:31.000Z 🔥 ¿Quieres aprender a cazar amenazas en la Dark Web? La próxima semana iniciamos el curso de Dark Cyber Threat Intelligence. Te llevamos de lo básico a lo avanzado: investigación en foros oscuros, análisis de malware underground y mucho más. 👉 Obtén un 60% de descuento usando el cupón WILLIE60 https://www.reddit.com/r/cybersecurity/comments/1sd8mc1/cyber_awareness_jeff_3d_figure/ ThreatAft en 2026-04-05T16:51:57.000Z Cyber Awareness Jeff 3D Figure! https://www.reddit.com/r/cybersecurity/comments/1sd8a5e/is_ai_making_cybersecurity_stronger_or_just/ ThreatAft en 2026-04-05T16:38:35.000Z Is AI making cybersecurity stronger or just supercharging hackers too? https://www.reddit.com/r/cybersecurity/comments/1sd7rtm/anthropic_ran_an_ai_bug_bounty_on_open_source_for/ ThreatAft en 2026-04-05T16:18:37.000Z Anthropic ran an AI bug bounty on open source for a month. It found 500+ zero-days. https://www.reddit.com/r/netsec/comments/1sd7hzh/gddrhammer_and_geforge_gddr6_gpu_rowhammer_to/ ThreatAft en 2026-04-05T16:08:04.000Z GDDRHammer and GeForge: GDDR6 GPU Rowhammer to root shell (IEEE S&P 2026, exploit code available) https://www.reddit.com/r/cybersecurity/comments/1sd720i/is_cybersecurity_still_at_its_core_a_human_problem/ ThreatAft en 2026-04-05T15:50:41.000Z Is cybersecurity still, at its core, a human problem? https://www.reddit.com/r/cybersecurity/comments/1sd71k6/your_email_gateway_has_a_blind_spot_apts_already/ ThreatAft en 2026-04-05T15:50:11.000Z Your Email Gateway Has a Blind Spot. APTs Already Know About It. https://www.reddit.com/r/cybersecurity/comments/1sd6is7/syd_doing_a_full_exploit/ ThreatAft en 2026-04-05T15:29:14.000Z syd doing a full exploit https://www.bleepingcomputer.com/news/security/hackers-exploit-react2shell-in-automated-credential-theft-campaign/ ThreatAft en 2026-04-05T14:17:23.000Z Hackers exploit React2Shell in automated credential theft campaign https://www.reddit.com/r/cybersecurity/comments/1sd30zy/certified_network_security_practitioner_cnsp/ ThreatAft en 2026-04-05T13:00:30.000Z Certified Network Security Practitioner (CNSP) Study Materials? https://www.reddit.com/r/cybersecurity/comments/1sd2vtq/anyone_interested_in_offline_ctf_event_in_india/ ThreatAft en 2026-04-05T12:53:30.000Z Anyone interested in Offline ctf event in india ? https://www.reddit.com/r/cybersecurity/comments/1sd1wh3/built_a_tool_to_stop_the_pain_of_manual_evtx/ ThreatAft en 2026-04-05T12:04:57.000Z Built a tool to stop the pain of manual EVTX triage https://www.reddit.com/r/cybersecurity/comments/1sd1cgd/can_you_guys_me_suggestions_should_i_do_bca_in/ ThreatAft en 2026-04-05T11:34:43.000Z Can you guys me suggestions, should i do BCA in Cyber Security or something else to get into CS field ? https://www.reddit.com/r/cybersecurity/comments/1sd0tzy/36_malicious_npm_packages_exploited_redis/ ThreatAft en 2026-04-05T11:05:25.000Z 36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants https://www.reddit.com/r/cybersecurity/comments/1sd0qbj/deployed_goadlight_on_virtualbox_ubuntu_2404/ ThreatAft en 2026-04-05T10:59:57.000Z Deployed GOAD-Light on VirtualBox (Ubuntu 24.04) - sharing my guide with the real errors I hit https://www.reddit.com/r/netsec/comments/1sd0q71/36_malicious_npm_packages_exploited_redis/ ThreatAft en 2026-04-05T10:59:45.000Z 36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants https://www.reddit.com/r/cybersecurity/comments/1sd0nzk/36_malicious_npm_packages_exploited_redis/ ThreatAft en 2026-04-05T10:56:03.000Z 36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants https://www.reddit.com/r/cybersecurity/comments/1sd0667/soc_analyst_1/ ThreatAft en 2026-04-05T10:25:46.000Z SOC Analyst 1 https://www.wired.com/story/inside-the-hack-that-exposed-syrias-security-failures/ ThreatAft en 2026-04-05T09:00:00.000Z The Hack That Exposed Syria’s Sweeping Security Failures https://www.reddit.com/r/cybersecurity/comments/1scyj3y/feeling_stuck_and_looking_for_honest_advice_on/ ThreatAft en 2026-04-05T08:41:38.000Z feeling stuck and looking for honest advice on whats next https://www.reddit.com/r/cybersecurity/comments/1scy246/about_to_take_ejpt_help/ ThreatAft en 2026-04-05T08:11:26.000Z About to take eJPT. help.. https://www.reddit.com/r/cybersecurity/comments/1scxx6w/cyber_crimes_attempt_preperation/ ThreatAft en 2026-04-05T08:02:50.000Z Cyber crimes & attempt - preperation https://www.helpnetsecurity.com/2026/04/05/week-in-review-axios-npm-supply-chain-compromise-critical-forticlient-ems-bug-exploited/ ThreatAft en 2026-04-05T08:00:49.000Z Week in review: Axios npm supply chain compromise, critical FortiClient EMS bugs exploited https://www.reddit.com/r/Malware/comments/1scx6s9/database_of_malicious_chromeedge_extensions/ ThreatAft en 2026-04-05T07:17:46.000Z Database of malicious Chrome/Edge extensions - auto-updated daily https://industrialcyber.co/features/rising-breach-costs-and-operational-downtime-redefine-economics-of-ot-cybersecurity-making-it-boardroom-priority/ ThreatAft en 2026-04-05T06:55:32.000Z Rising breach costs and operational downtime redefine economics of OT cybersecurity making it boardroom priority https://www.reddit.com/r/cybersecurity/comments/1scwnd9/the_visible_key_a_new_way_to_verify_source/ ThreatAft en 2026-04-05T06:45:42.000Z The Visible Key — A New Way to Verify Source https://www.reddit.com/r/cybersecurity/comments/1scwfwe/are_companies_pushing_the_good_guys_to_go_rogue/ ThreatAft en 2026-04-05T06:33:08.000Z Are companies pushing the good guys to go rogue? https://thehackernews.com/2026/04/36-malicious-npm-packages-exploited.html ThreatAft en 2026-04-05T05:07:00.000Z 36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants https://thehackernews.com/2026/04/fortinet-patches-actively-exploited-cve.html ThreatAft en 2026-04-05T04:32:00.000Z Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS https://www.reddit.com/r/cybersecurity/comments/1sct8hp/do_you_guys_think_risk_based_alerting_is_dead_in/ ThreatAft en 2026-04-05T03:38:21.000Z Do you guys think Risk Based Alerting is dead in water with the AI landscape. https://www.reddit.com/r/cybersecurity/comments/1sct022/i_created_a_small_lab_demo_showing_how_responder/ ThreatAft en 2026-04-05T03:26:18.000Z I created a small lab demo showing how #Responder can capture NTLM hashes over a local network. https://www.reddit.com/r/cybersecurity/comments/1scsq79/which_cyber_roles_are_truly_aiproof/ ThreatAft en 2026-04-05T03:12:41.000Z Which cyber roles are truly "AI-proof"? https://www.reddit.com/r/cybersecurity/comments/1scsguv/linkedin_is_spying_on_you_according_to_a_new/ ThreatAft en 2026-04-05T03:00:11.000Z LinkedIn is spying on you, according to a new 'BrowserGate' security report — scripts stealthily scan visitors' browsers for over 6,000 Chrome extensions and harvest hardware data https://www.reddit.com/r/cybersecurity/comments/1scpul1/offering_free_help_with_penetration_testing/ ThreatAft en 2026-04-05T00:51:52.000Z Offering Free Help with Penetration Testing Projects (Looking to Build Experience) https://www.reddit.com/r/cybersecurity/comments/1scphzz/after_the_mercor_breach_i_built_a_local_secret/ ThreatAft en 2026-04-05T00:35:24.000Z After the Mercor breach, I built a local secret scanner for AI-generated code https://www.reddit.com/r/cybersecurity/comments/1scojim/uk_about_to_be_over_employed_have_i_ruined_future/ ThreatAft en 2026-04-04T23:50:23.000Z UK -About to be over employed - have I ruined future chances at obtaining SC? https://www.reddit.com/r/cybersecurity/comments/1scmq9l/website_provider_gave_client_an_spf_include_to_a/ ThreatAft en 2026-04-04T22:29:52.000Z Website provider gave client an SPF include to a domain they did not control, and it was set to +all https://www.reddit.com/r/cybersecurity/comments/1scm5bc/fortinet_cve202635616_actively_exploited_as_zero/ ThreatAft en 2026-04-04T22:04:19.000Z Fortinet CVE-2026-35616 Actively Exploited as Zero Day https://www.reddit.com/r/netsec/comments/1sclo8j/how_i_stole_aes_keys_from_a_microcontroller_using/ ThreatAft en 2026-04-04T21:44:25.000Z How I stole AES keys from a microcontroller using power analysis (ChipWhisperer walkthrough) https://www.reddit.com/r/netsec/comments/1sckmlw/i_have_refactored_slurp_s3_bucket_enumerator_to/ ThreatAft en 2026-04-04T21:01:45.000Z I have refactored slurp s3 bucket enumerator to work with any s3 compatible cloud https://www.reddit.com/r/cybersecurity/comments/1sck5t9/5_yoe_appsec_at_faang_microsoft_what_is_the/ ThreatAft en 2026-04-04T20:43:02.000Z 5 YOE AppSec at FAANG (Microsoft). What is the market like for mid career candidates? https://www.reddit.com/r/cybersecurity/comments/1sck4e3/cisco_patched_a_9810_cve_yesterday_authentication/ ThreatAft en 2026-04-04T20:41:34.000Z Cisco patched a 9.8/10 CVE yesterday — authentication bypass on IMC that gives full admin access with one HTTP request, no credentials needed https://www.bleepingcomputer.com/news/security/axios-npm-hack-used-fake-teams-error-fix-to-hijack-maintainer-account/ ThreatAft en 2026-04-04T20:30:42.000Z Axios npm hack used fake Teams error fix to hijack maintainer account https://www.reddit.com/r/cybersecurity/comments/1scg2ml/open_source_tool_for_supply_chain_malware/ ThreatAft en 2026-04-04T18:01:15.000Z Open source tool for supply chain malware detection: CTWall https://www.reddit.com/r/cybersecurity/comments/1sce4um/how_good_is_recruitment_in_this_space/ ThreatAft en 2026-04-04T16:46:46.000Z How good is recruitment in this space https://www.reddit.com/r/cybersecurity/comments/1scczit/where_to_start_in_reverse_engineering_as_an/ ThreatAft en 2026-04-04T16:01:54.000Z Where to start in reverse engineering as an absolutely beginner with no knowledge whatsoever? Ghidra perhaps or something else https://www.reddit.com/r/netsec/comments/1sccnjb/browsergate_linkedinmicrosoft_allegedly_scans/ ThreatAft en 2026-04-04T15:48:42.000Z BrowserGate: LinkedIn/Microsoft allegedly scans 6,000+ browser extensions & links them to real identities, all without user consent https://www.reddit.com/r/cybersecurity/comments/1scbniy/burp_suite/ ThreatAft en 2026-04-04T15:08:37.000Z Burp Suite https://www.reddit.com/r/cybersecurity/comments/1scbc8y/removed_by_reddit/ ThreatAft en 2026-04-04T14:56:19.000Z [ Removed by Reddit ] https://www.reddit.com/r/cybersecurity/comments/1scb95s/browsergate_report_alleges_linkedin_is_scanning/ ThreatAft en 2026-04-04T14:52:51.000Z BrowserGate: Report alleges LinkedIn is scanning 6,000+ browser extensions without consent https://www.reddit.com/r/cybersecurity/comments/1scb86j/what_can_be_done_with_an_ip_address/ ThreatAft en 2026-04-04T14:51:45.000Z what can be done with an ip address https://www.reddit.com/r/netsec/comments/1scak6p/apples_spotlight_search_results_come_with/ ThreatAft en 2026-04-04T14:24:13.000Z Apple's Spotlight Search Results Come With Engagement Metrics. No One Knew. https://www.bleepingcomputer.com/news/security/device-code-phishing-attacks-surge-37x-as-new-kits-spread-online/ ThreatAft en 2026-04-04T14:17:38.000Z Device code phishing attacks surge 37x as new kits spread online https://www.helpnetsecurity.com/2026/04/04/forticlient-ems-zero-day-cve-2026-35616/ ThreatAft en 2026-04-04T14:09:54.000Z FortiClient EMS zero-day exploited, emergency hotfixes available (CVE-2026-35616) https://www.reddit.com/r/Malware/comments/1sc7s4w/pcmag_hackers_are_using_claude_code_leak_as_bait/ ThreatAft en 2026-04-04T12:18:17.000Z PCMag: Hackers Are Using Claude Code Leak As Bait to Spread Malware https://www.reddit.com/r/netsec/comments/1sc5xhj/researchers_uncover_mining_operation_using_iso/ ThreatAft en 2026-04-04T10:37:24.000Z Researchers Uncover Mining Operation Using ISO Lures to Spread RATs and Crypto Miners https://www.securityweek.com/european-commission-confirms-data-breach-linked-to-trivy-supply-chain-attack/ ThreatAft en 2026-04-04T10:31:00.000Z European Commission Confirms Data Breach Linked to Trivy Supply Chain Attack https://www.wired.com/story/security-news-this-week-hackers-are-posting-the-claude-code-leak-with-bonus-malware/ ThreatAft en 2026-04-04T10:30:00.000Z Hackers Are Posting the Claude Code Leak With Bonus Malware