https://www.darkreading.com/events/black-hat-usa ThreatAft en 2026-08-01T11:00:00.000Z Black Hat USA https://www.bleepingcomputer.com/news/security/new-gpubreach-attack-enables-system-takeover-via-gpu-rowhammer/ ThreatAft en 2026-04-06T21:44:15.000Z New GPUBreach attack enables system takeover via GPU rowhammer https://cyberscoop.com/fortinet-forticlient-ems-zero-day-cve-2026-35616-hotfix-known-exploited/ ThreatAft en 2026-04-06T21:12:01.000Z Fortinet customers confront actively exploited zero-day, with a full patch still pending https://www.darkreading.com/threat-intelligence/axios-attack-complex-social-engineering-industrialized ThreatAft en 2026-04-06T20:55:44.000Z Axios Attack Shows Social Complex Engineering Is Industrialized https://www.darkreading.com/vulnerabilities-threats/fortinet-emergency-patch-forticlient-zero-day ThreatAft en 2026-04-06T20:24:19.000Z Fortinet Issues Emergency Patch for FortiClient Zero-Day https://therecord.media/cyber-fraud-surges-to-17-billion-fbi-ic3 ThreatAft en 2026-04-06T20:24:00.000Z FBI: Cyber fraud surges to $17.6 billion in losses as scams, crypto theft soar https://www.reddit.com/r/cybersecurity/comments/1sea5v2/is_it_realistic_to_make_consistent_income_from/ ThreatAft en 2026-04-06T20:14:10.000Z Is it realistic to make consistent income from bug bounty programs? https://therecord.media/medusa-ransomware-group-zero-days-microsoft ThreatAft en 2026-04-06T20:08:00.000Z Medusa ransomware group using zero-days to launch attacks within 24 hours of breach, Microsoft says https://blog.qualys.com/qualys-insights/2026/04/06/why-every-enterprise-needs-a-risk-operations-center-roc ThreatAft en 2026-04-06T20:00:57.000Z Why Every Enterprise Needs a Risk Operations Center (ROC) https://therecord.media/big-tech-vows-to-continue-csam-scanning ThreatAft en 2026-04-06T19:20:00.000Z Big tech vows to continue CSAM scanning in Europe despite expiration of law allowing it https://www.bleepingcomputer.com/news/security/disgruntled-researcher-leaks-bluehammer-windows-zero-day-exploit/ ThreatAft en 2026-04-06T19:19:27.000Z Disgruntled researcher leaks “BlueHammer” Windows zero-day exploit https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-classic-outlook-bug-causing-email-delivery-issues/ ThreatAft en 2026-04-06T19:19:24.000Z Microsoft fixes Classic Outlook bug causing email delivery issues https://www.reddit.com/r/cybersecurity/comments/1se8l4f/free_owasp_top_10_for_llm_applications_exercises/ ThreatAft en 2026-04-06T19:19:10.000Z Free OWASP Top 10 for LLM Applications exercises for AI security training. Fully white-labeled for your teaching / learning needs, no strings attached https://www.reddit.com/r/netsec/comments/1se8h0q/responsible_disclosure_is_structurally_dead_not/ ThreatAft en 2026-04-06T19:15:31.000Z Responsible disclosure is structurally dead — not dying. Here's the analysis and what replaces it. https://www.reddit.com/r/cybersecurity/comments/1se7qle/the_fccs_recent_ban_on_new_foreignmade_consumer/ ThreatAft en 2026-04-06T18:50:08.000Z The FCC’s recent ban on new foreign-made consumer routers may not have an immediate impact for consumers, but one cybersecurity expert says it could have long-term consequences. https://thehackernews.com/2026/04/iran-linked-password-spraying-campaign.html ThreatAft en 2026-04-06T18:37:00.000Z Iran-Linked Password-Spraying Campaign Targets 300+ Israeli Microsoft 365 Organizations https://therecord.media/german-police-unmask-suspects-linked-revil-gandcrab ThreatAft en 2026-04-06T18:34:00.000Z German police unmask two suspects linked to REvil ransomware gang https://www.wired.com/story/us-border-patrol-challenge-coins-nonprofits/ ThreatAft en 2026-04-06T18:16:27.000Z Border Patrol Agents Sold Challenge Coins With ‘Charlotte’s Web’ Characters in Riot Gear https://www.reddit.com/r/cybersecurity/comments/1se64xz/education_help/ ThreatAft en 2026-04-06T17:52:35.000Z Education help https://www.bleepingcomputer.com/news/microsoft/microsoft-removes-support-and-recovery-assistant-from-windows/ ThreatAft en 2026-04-06T17:45:57.000Z Microsoft removes Support and Recovery Assistant from Windows https://www.reddit.com/r/cybersecurity/comments/1se5x4i/fuse_powerful_wordlist_generator/ ThreatAft en 2026-04-06T17:45:09.000Z Fuse: Powerful wordlist generator https://www.reddit.com/r/cybersecurity/comments/1se5olb/what_does_your_daily_socmdr_work_look_like_3_yoe/ ThreatAft en 2026-04-06T17:36:58.000Z “What does your daily SOC/MDR work look like? (3 YOE, looking to compare), ready to switch? https://therecord.media/stalkerware-maker-receives-no-jail-time ThreatAft en 2026-04-06T17:33:00.000Z First stalkerware maker prosecuted since 2014 receives no jail time https://cyberscoop.com/pctattletale-stalkerware-maker-sentence-includes-fine-supervised-release/ ThreatAft en 2026-04-06T17:21:23.000Z pcTattleTale stalkerware maker sentence includes fine, supervised release https://www.reddit.com/r/cybersecurity/comments/1se4r27/cyber_secuiry_is_it_high_stress/ ThreatAft en 2026-04-06T17:04:09.000Z Cyber secuiry is it high stress? https://www.bleepingcomputer.com/news/security/microsoft-links-medusa-ransomware-affiliate-to-zero-day-attacks/ ThreatAft en 2026-04-06T16:56:01.000Z Microsoft links Medusa ransomware affiliate to zero-day attacks https://www.bleepingcomputer.com/news/security/drift-280m-crypto-theft-linked-to-6-month-in-person-operation/ ThreatAft en 2026-04-06T16:35:03.000Z Drift $280M crypto theft linked to 6-month in-person operation https://www.microsoft.com/en-us/security/blog/2026/04/06/ai-enabled-device-code-phishing-campaign-april-2026/ ThreatAft en 2026-04-06T16:34:17.000Z Inside an AI‑enabled device code phishing campaign https://www.reddit.com/r/Malware/comments/1se3t0e/10_free_interactive_exercises_for_ai_security/ ThreatAft en 2026-04-06T16:30:05.000Z 10 free interactive exercises for AI security training. Fully white-labeled, no strings attached https://thehackernews.com/2026/04/dprk-linked-hackers-use-github-as-c2-in.html ThreatAft en 2026-04-06T16:24:00.000Z DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea https://therecord.media/singapore-us-warn-of-fortinet-bug-exploited ThreatAft en 2026-04-06T16:20:00.000Z Singapore, US warn of latest Fortinet bug being exploited in wild https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-fortinet-flaw-exploited-in-attacks-by-friday/ ThreatAft en 2026-04-06T16:02:14.000Z CISA orders feds to patch exploited Fortinet EMS flaw by Friday https://www.microsoft.com/en-us/security/blog/2026/04/06/storm-1175-focuses-gaze-on-vulnerable-web-facing-assets-in-high-tempo-medusa-ransomware-operations/ ThreatAft en 2026-04-06T16:00:00.000Z Storm-1175 focuses gaze on vulnerable web-facing assets in high-tempo Medusa ransomware operations https://www.reddit.com/r/cybersecurity/comments/1se2hdg/how_do_you_think/ ThreatAft en 2026-04-06T15:42:36.000Z How do you think ? https://www.securityweek.com/google-deepmind-researchers-map-web-attacks-against-ai-agents/ ThreatAft en 2026-04-06T15:32:54.000Z Google DeepMind Researchers Map Web Attacks Against AI Agents https://www.reddit.com/r/cybersecurity/comments/1se27dc/research_we_scanned_3471_mcp_servers_for/ ThreatAft en 2026-04-06T15:32:41.000Z [RESEARCH] We scanned 3,471 MCP servers for invisible Unicode — GPT-5.4 follows hidden instructions 100% of the time https://www.reddit.com/r/cybersecurity/comments/1se263o/do_you_all_know_anybody_that_likes_microsoft/ ThreatAft en 2026-04-06T15:31:23.000Z Do you all know anybody that likes Microsoft Purview DLP? https://www.darkreading.com/cyberattacks-data-breaches/automated-credential-harvesting-campaign-react2shell ThreatAft en 2026-04-06T15:31:09.000Z Automated Credential Harvesting Campaign Exploits React2Shell Flaw https://www.reddit.com/r/cybersecurity/comments/1se21el/web_filtering_test_sites/ ThreatAft en 2026-04-06T15:26:40.000Z Web filtering test sites https://www.reddit.com/r/netsec/comments/1se1qs6/using_cloudflares_postquantum_tunnel_to_protect/ ThreatAft en 2026-04-06T15:16:00.000Z Using Cloudflare’s Post-Quantum Tunnel to Protect Plex Remote Access on a Synology NAS https://www.reddit.com/r/cybersecurity/comments/1se1nc3/why_is_the_worlds_web_encryption_100_dependent_on/ ThreatAft en 2026-04-06T15:12:26.000Z Why is the world’s web encryption 100% dependent on a single US-based non-profit? https://www.reddit.com/r/cybersecurity/comments/1se0z5o/has_anyone_used_cardinalops_tidal_cyber_picus_or/ ThreatAft en 2026-04-06T14:48:10.000Z Has anyone used CardinalOps, Tidal Cyber, Picus, or AttackIQ for detection gap analysis and did they actually solve the prioritization problem? https://www.reddit.com/r/netsec/comments/1se0u4e/trivy_supply_chain_attack_enabled_european/ ThreatAft en 2026-04-06T14:42:57.000Z Trivy supply chain attack enabled European Commission cloud breach https://www.reddit.com/r/cybersecurity/comments/1se0n5h/passive_hid_monitor_that_scores_potentially/ ThreatAft en 2026-04-06T14:35:35.000Z Passive HID monitor that scores potentially malicious keyboard-like USB devices https://www.reddit.com/r/cybersecurity/comments/1se0a4t/did_anyone_hear_about_this_linkedin_data_leak/ ThreatAft en 2026-04-06T14:21:54.000Z Did anyone hear about this LinkedIn data leak?! https://www.tenable.com/blog/cve-2026-35616-fortinet-forticlientems-improper-access-control-vulnerability-exploited-in-the ThreatAft en 2026-04-06T14:21:05.000Z CVE-2026-35616: Fortinet FortiClientEMS improper access control vulnerability exploited in the wild https://www.darkreading.com/cyber-risk/shadow-ai-in-healthcare-is-here-to-stay ThreatAft en 2026-04-06T14:07:50.000Z Shadow AI in Healthcare is Here to Stay https://www.bleepingcomputer.com/news/security/why-simple-breach-monitoring-is-no-longer-enough/ ThreatAft en 2026-04-06T14:02:12.000Z Why Simple Breach Monitoring is No Longer Enough https://www.reddit.com/r/cybersecurity/comments/1sdzev8/ai_empowered_vulnerability_scanner_tool_for_cloud/ ThreatAft en 2026-04-06T13:49:53.000Z AI Empowered Vulnerability scanner tool for cloud based application https://www.darkreading.com/application-security/owasp-genai-security-project-update-matrix ThreatAft en 2026-04-06T13:49:27.000Z OWASP GenAI Security Project Gets Update, New Tools Matrix https://www.reddit.com/r/cybersecurity/comments/1sdylur/how_are_teams_thinking_about_security_for_llm/ ThreatAft en 2026-04-06T13:17:10.000Z How are teams thinking about security for LLM agents right now? https://www.reddit.com/r/cybersecurity/comments/1sdykyq/how_do_most_orgs_cope_with_selinux/ ThreatAft en 2026-04-06T13:16:08.000Z How do most orgs cope with SELinux? https://www.reddit.com/r/cybersecurity/comments/1sdye93/cracking_a_malvertising_dga_from_the_device_side/ ThreatAft en 2026-04-06T13:08:32.000Z Cracking a Malvertising DGA From the Device Side https://www.reddit.com/r/cybersecurity/comments/1sdyd16/weblet_a_security_focused_cms/ ThreatAft en 2026-04-06T13:07:07.000Z Weblet: A security focused CMS https://www.reddit.com/r/cybersecurity/comments/1sdy6s7/latest_interesting_cybersecurity_news_6th_of/ ThreatAft en 2026-04-06T13:00:07.000Z Latest Interesting Cybersecurity News - 6th of April 2026 https://thehackernews.com/2026/04/multi-os-cyberattacks-how-socs-close.html ThreatAft en 2026-04-06T13:00:00.000Z Multi-OS Cyberattacks: How SOCs Close a Critical Risk in 3 Steps https://thehackernews.com/2026/04/weekly-recap-axios-hack-chrome-0-day.html ThreatAft en 2026-04-06T12:46:00.000Z ⚡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More https://industrialcyber.co/threats-attacks/check-point-tracks-iranian-password-spraying-waves-targeting-government-and-energy-sectors-in-israel-and-uae/ ThreatAft en 2026-04-06T12:42:01.000Z Check Point tracks Iranian password-spraying waves targeting government and energy sectors in Israel and UAE https://therecord.media/outage-hits-russian-banking-apps ThreatAft en 2026-04-06T12:37:00.000Z Major outage hits Russian banking apps, metro payments across regions https://industrialcyber.co/reports/darktrace-finds-chinese-nexus-intrusions-reveal-dual-mode-tactics-targeting-critical-infrastructure-at-scale/ ThreatAft en 2026-04-06T12:36:58.000Z Darktrace finds Chinese-nexus intrusions reveal dual-mode tactics targeting critical infrastructure at scale https://therecord.media/hackers-threaten-to-leak-german-political-party-data ThreatAft en 2026-04-06T12:29:00.000Z Hackers threaten to leak data after cyberattack on German party Die Linke https://industrialcyber.co/reports/sans-2026-report-flags-cybersecurity-skills-crisis-putting-critical-infrastructure-and-ot-sectors-at-measurable-breach-risk/ ThreatAft en 2026-04-06T12:24:00.000Z SANS 2026 report flags cybersecurity skills crisis, putting critical infrastructure and OT sectors at measurable breach risk https://www.reddit.com/r/netsec/comments/1sdxbxj/closing_the_kernel_backport_gap_automated_cve/ ThreatAft en 2026-04-06T12:22:16.000Z Closing the Kernel Backport Gap: Automated CVE Detection https://www.reddit.com/r/cybersecurity/comments/1sdxafb/traffic_violation_scams_switch_to_qr_codes_in_new/ ThreatAft en 2026-04-06T12:20:20.000Z Traffic violation scams switch to QR codes in new phishing texts https://www.reddit.com/r/cybersecurity/comments/1sdwya8/axios_maintainers_post_mortem_confirms_social/ ThreatAft en 2026-04-06T12:04:48.000Z Axios maintainer’s post mortem confirms social engineering by UNC1069 https://www.cisa.gov/news-events/alerts/2026/04/06/cisa-adds-one-known-exploited-vulnerability-catalog ThreatAft en 2026-04-06T12:00:00.000Z CISA Adds One Known Exploited Vulnerability to Catalog https://thehackernews.com/2026/04/how-litellm-turned-developer-machines.html ThreatAft en 2026-04-06T11:45:00.000Z How LiteLLM Turned Developer Machines Into Credential Vaults for Attackers https://www.reddit.com/r/cybersecurity/comments/1sdwgyh/new_rowhammer_attacks_give_complete_control_of/ ThreatAft en 2026-04-06T11:42:40.000Z New Rowhammer attacks give complete control of machines running Nvidia GPUs https://www.securityweek.com/guardarian-users-targeted-with-malicious-strapi-npm-packages/ ThreatAft en 2026-04-06T11:40:56.000Z Guardarian Users Targeted With Malicious Strapi NPM Packages https://www.securityweek.com/north-korean-hackers-target-high-profile-node-js-maintainers/ ThreatAft en 2026-04-06T11:02:36.000Z North Korean Hackers Target High-Profile Node.js Maintainers https://www.reddit.com/r/cybersecurity/comments/1sdvk2q/controls_shape_attacks/ ThreatAft en 2026-04-06T10:56:35.000Z Controls Shape Attacks https://www.reddit.com/r/netsec/comments/1sdv8dm/cracking_a_malvertising_dga_from_the_device_side/ ThreatAft en 2026-04-06T10:39:02.000Z Cracking a Malvertising DGA From the Device Side https://thehackernews.com/2026/04/qilin-and-warlock-ransomware-use.html ThreatAft en 2026-04-06T10:07:00.000Z Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools https://www.securityweek.com/fortinet-rushes-emergency-fixes-for-exploited-zero-day/ ThreatAft en 2026-04-06T09:37:28.000Z Fortinet Rushes Emergency Fixes for Exploited Zero-Day https://www.reddit.com/r/cybersecurity/comments/1sdtqh2/found_a_forgotten_public_s3_bucket_with_40k/ ThreatAft en 2026-04-06T09:11:19.000Z Found a "forgotten" public S3 bucket with 40k+ customer KYC docs at my new gig https://www.reddit.com/r/cybersecurity/comments/1sdtqh2/removed_by_reddit/ ThreatAft en 2026-04-06T09:11:19.000Z [ Removed by Reddit ] https://isc.sans.edu/diary/rss/32870 ThreatAft en 2026-04-06T08:50:27.000Z How often are redirects used in phishing in 2026?, (Mon, Apr 6th) https://www.reddit.com/r/cybersecurity/comments/1sdt12c/gave_everything_to_a_technical_assessment_only_to/ ThreatAft en 2026-04-06T08:27:33.000Z Gave everything to a technical assessment only to get rejected because the position was already filled - how do you handle this? https://www.reddit.com/r/cybersecurity/comments/1sds2bv/is_oneman_ciso_role_worth_it/ ThreatAft en 2026-04-06T07:28:21.000Z Is one-man CISO role worth it? https://www.malwarebytes.com/blog/news/2026/04/a-week-in-security-march-30-april-5-2 ThreatAft en 2026-04-06T07:01:00.000Z A week in security (March 30 – April 5) https://thehackernews.com/2026/04/bka-identifies-revil-leaders-behind-130.html ThreatAft en 2026-04-06T06:59:00.000Z BKA Identifies REvil Leaders Behind 130 German Ransomware Attacks https://www.reddit.com/r/cybersecurity/comments/1sdrh2y/htb_media_machine_walkthrough/ ThreatAft en 2026-04-06T06:53:13.000Z HTB Media Machine Walkthrough https://www.reddit.com/r/cybersecurity/comments/1sdrc73/interesting_leakixnet_scanning/ ThreatAft en 2026-04-06T06:44:51.000Z Interesting leakix.net scanning https://www.reddit.com/r/cybersecurity/comments/1sdr9ip/built_a_tool_to_find_which_of_your_gcp_api_keys/ ThreatAft en 2026-04-06T06:40:26.000Z Built a tool to find which of your GCP API keys now have Gemini access https://www.helpnetsecurity.com/2026/04/06/residential-proxy-attack-traffic-ip-reputation-enterprise-security/ ThreatAft en 2026-04-06T05:30:05.000Z Residential proxies make a mockery of IP-based defenses https://www.helpnetsecurity.com/2026/04/06/product-showcase-proton-authenticator-encrypted-open-source-2fa-app/ ThreatAft en 2026-04-06T05:00:39.000Z Product showcase: Proton Authenticator is an end-to-end encrypted, open source 2FA app https://www.crowdstrike.com/en-us/blog/how-crowdstrike-accelerates-exposure-evaluation-against-threats/ ThreatAft en 2026-04-06T05:00:00.000Z How CrowdStrike is Accelerating Exposure Evaluation as Adversaries Gain Speed https://www.reddit.com/r/cybersecurity/comments/1sdp8wh/고배당_특정_숫자_베팅에_쏠리는_데이터_패턴의_기술적_해석/ ThreatAft en 2026-04-06T04:46:00.000Z 고배당 특정 숫자 베팅에 쏠리는 데이터 패턴의 기술적 해석 https://www.reddit.com/r/cybersecurity/comments/1sdp2zz/hidomgdetect_linux_driver_in_development_to/ ThreatAft en 2026-04-06T04:36:55.000Z hid-omg-detect: Linux driver in development to detect malicious HID devices https://www.helpnetsecurity.com/2026/04/06/enterprise-wireless-networks-security-exposure/ ThreatAft en 2026-04-06T04:30:10.000Z IT talent looks the other way as wireless security incidents pile up https://www.helpnetsecurity.com/2026/04/06/rh-isac-enterprise-security-spending-report/ ThreatAft en 2026-04-06T04:00:36.000Z CISOs grapple with AI demands within flat budgets https://www.reddit.com/r/cybersecurity/comments/1sdnuib/how_md5_hashing_works_and_does_it_actually_detect/ ThreatAft en 2026-04-06T03:33:40.000Z How MD5 hashing works and does it actually detect file changes. and can you still trust it today? https://www.reddit.com/r/cybersecurity/comments/1sdmipk/teampcp_used_trivy_to_breach_cisco_the_eu/ ThreatAft en 2026-04-06T02:30:33.000Z TeamPCP used Trivy to breach Cisco, the EU Commission, and 1,000+ orgs—IOCs inside, April 3 deadline just passed with no statement from Cisco https://krebsonsecurity.com/2026/04/germany-doxes-unkn-head-of-ru-ransomware-gangs-revil-gandcrab/ ThreatAft en 2026-04-06T02:07:17.000Z Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab https://isc.sans.edu/diary/rss/32868 ThreatAft en 2026-04-06T02:00:02.000Z ISC Stormcast For Monday, April 6th, 2026 https://isc.sans.edu/podcastdetail/9880, (Mon, Apr 6th) https://www.reddit.com/r/netsec/comments/1sdlisb/the_attack_with_no_attacker_domain_microsoft/ ThreatAft en 2026-04-06T01:45:04.000Z The Attack With No Attacker Domain: Microsoft Entra B2B Guest Invitation Phishing https://www.reddit.com/r/cybersecurity/comments/1sdjzyp/bi_developer_here_should_i_pivot_to_ai/ ThreatAft en 2026-04-06T00:35:55.000Z BI Developer here… should I pivot to AI, cybersecurity, or something else? https://www.reddit.com/r/cybersecurity/comments/1sdj7y0/mentorship_monday_post_all_career_education_and/ ThreatAft en 2026-04-06T00:00:30.000Z Mentorship Monday - Post All Career, Education and Job questions here! https://www.exploit-db.com/exploits/52491 ThreatAft en 2026-04-06T00:00:00.000Z [webapps] Grafana 11.6.0 - SSRF https://www.exploit-db.com/exploits/52490 ThreatAft en 2026-04-06T00:00:00.000Z [webapps] Zhiyuan OA - arbitrary file upload leading https://www.exploit-db.com/exploits/52489 ThreatAft en 2026-04-06T00:00:00.000Z [webapps] WBCE CMS 1.6.4 - Remote Code Execution https://www.exploit-db.com/exploits/52488 ThreatAft en 2026-04-06T00:00:00.000Z [webapps] RiteCMS 3.1.0 - Authenticated Remote Code Execution https://www.exploit-db.com/exploits/52487 ThreatAft en 2026-04-06T00:00:00.000Z [webapps] WordPress Madara - Local File Inclusion https://www.exploit-db.com/exploits/52496 ThreatAft en 2026-04-06T00:00:00.000Z [local] is-localhost-ip 2.0.0 - SSRF https://www.exploit-db.com/exploits/52495 ThreatAft en 2026-04-06T00:00:00.000Z [webapps] Fortinet FortiWeb v8.0.1 - Auth Bypass https://www.exploit-db.com/exploits/52494 ThreatAft en 2026-04-06T00:00:00.000Z [local] Windows Kernel - Elevation of Privilege https://www.exploit-db.com/exploits/52493 ThreatAft en 2026-04-06T00:00:00.000Z [local] Desktop Window Manager Core Library 10.0.10240.0 - Privilege Escalation https://www.exploit-db.com/exploits/52492 ThreatAft en 2026-04-06T00:00:00.000Z [webapps] ASP.net 8.0.10 - Bypass https://www.reddit.com/r/cybersecurity/comments/1sdi3vt/why_isnt_pgp_used_more_often_with_email_security/ ThreatAft en 2026-04-05T23:11:31.000Z Why isn't PGP used more often with email security? https://www.malwarebytes.com/blog/podcast/2026/04/killer-robots-are-here-now-what-lock-and-code-s07e07 ThreatAft en 2026-04-05T23:10:20.000Z Killer robots are here. Now what? (Lock and Code S07E07) https://www.reddit.com/r/cybersecurity/comments/1sdh7fr/i_have_16_hours_of_mostly_free_time_whats_a_skill/ ThreatAft en 2026-04-05T22:33:05.000Z I have 16 hours of mostly free time. What’s a skill I should learn? Mostly for fun https://www.reddit.com/r/cybersecurity/comments/1sdgj6n/cyber_security_freelancers_smaller_nontech/ ThreatAft en 2026-04-05T22:04:38.000Z Cyber Security Freelancers - smaller non-tech companies? https://www.reddit.com/r/cybersecurity/comments/1sdg874/anyone_have_blackwin_v4_iso_i_wanna_try_it_out/ ThreatAft en 2026-04-05T21:52:02.000Z Anyone have blackwin v4 iso I wanna try it out but the pads is under maintenance https://www.reddit.com/r/cybersecurity/comments/1sdg5g1/i_have_to_choose_my_ug_program_i_want_to_choose/ ThreatAft en 2026-04-05T21:48:55.000Z I have to choose my ug program i want to choose cyb sec over BS CS cz thats too general but i am hesitant that AI might replace it too? https://www.reddit.com/r/cybersecurity/comments/1sdfgwo/what_sources_are_you_following_for_ai_agentic/ ThreatAft en 2026-04-05T21:21:03.000Z What sources are you following for AI / Agentic security news, writeups, etc? https://www.reddit.com/r/cybersecurity/comments/1sdfddc/tools_at_work/ ThreatAft en 2026-04-05T21:17:02.000Z Tools at work https://www.reddit.com/r/cybersecurity/comments/1sdf8mw/any_good_newslettersblogs_on_infosec/ ThreatAft en 2026-04-05T21:11:44.000Z Any good newsletters/blogs on infosec? https://www.reddit.com/r/cybersecurity/comments/1sdd6l8/cysa_renewal_question/ ThreatAft en 2026-04-05T19:49:57.000Z CySA+ renewal question https://www.bleepingcomputer.com/news/security/traffic-violation-scams-switch-to-qr-codes-in-new-phishing-texts/ ThreatAft en 2026-04-05T19:44:10.000Z Traffic violation scams switch to QR codes in new phishing texts https://www.reddit.com/r/cybersecurity/comments/1sdck5c/fake_claude_code_source_downloads_actually/ ThreatAft en 2026-04-05T19:25:03.000Z Fake Claude Code source downloads actually delivered malware https://www.reddit.com/r/cybersecurity/comments/1sdcamw/for_my_security_compliance_folks_and_individuals/ ThreatAft en 2026-04-05T19:14:34.000Z For my security compliance folks and individuals creating response documentation, what tools or templates do you use? Im trying "responseprep" at the moment. It makes the initial work so much easier for final edits. With all the new shiny tools out there, who's using what or are you hand writing? https://www.bleepingcomputer.com/news/security/new-fortinet-forticlient-ems-flaw-cve-2026-35616-exploited-in-attacks/ ThreatAft en 2026-04-05T18:45:17.000Z New FortiClient EMS flaw exploited in attacks, emergency patch released https://thehackernews.com/2026/04/285-million-drift-hack-traced-to-six.html ThreatAft en 2026-04-05T18:25:00.000Z $285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation https://www.reddit.com/r/cybersecurity/comments/1sdas5w/linux_70rc7_adding_more_documentation_for_ai/ ThreatAft en 2026-04-05T18:15:44.000Z Linux 7.0-rc7 adding more documentation for AI tools to send better security bug reports https://www.reddit.com/r/cybersecurity/comments/1sda9ce/a_deeper_look_at_rustimplant/ ThreatAft en 2026-04-05T17:55:41.000Z A Deeper Look at RustImplant https://www.reddit.com/r/Malware/comments/1sda8qp/reverse_engineering_rustimplant/ ThreatAft en 2026-04-05T17:54:59.000Z Reverse Engineering RustImplant https://www.reddit.com/r/cybersecurity/comments/1sd9uaa/quieres_aprender_a_cazar_amenazas_en_la_dark_web/ ThreatAft en 2026-04-05T17:39:31.000Z 🔥 ¿Quieres aprender a cazar amenazas en la Dark Web? La próxima semana iniciamos el curso de Dark Cyber Threat Intelligence. Te llevamos de lo básico a lo avanzado: investigación en foros oscuros, análisis de malware underground y mucho más. 👉 Obtén un 60% de descuento usando el cupón WILLIE60 https://www.reddit.com/r/cybersecurity/comments/1sd8mc1/cyber_awareness_jeff_3d_figure/ ThreatAft en 2026-04-05T16:51:57.000Z Cyber Awareness Jeff 3D Figure! https://www.reddit.com/r/cybersecurity/comments/1sd8a5e/is_ai_making_cybersecurity_stronger_or_just/ ThreatAft en 2026-04-05T16:38:35.000Z Is AI making cybersecurity stronger or just supercharging hackers too? https://www.reddit.com/r/cybersecurity/comments/1sd7rtm/anthropic_ran_an_ai_bug_bounty_on_open_source_for/ ThreatAft en 2026-04-05T16:18:37.000Z Anthropic ran an AI bug bounty on open source for a month. It found 500+ zero-days. https://www.reddit.com/r/netsec/comments/1sd7hzh/gddrhammer_and_geforge_gddr6_gpu_rowhammer_to/ ThreatAft en 2026-04-05T16:08:04.000Z GDDRHammer and GeForge: GDDR6 GPU Rowhammer to root shell (IEEE S&P 2026, exploit code available) https://www.reddit.com/r/cybersecurity/comments/1sd720i/is_cybersecurity_still_at_its_core_a_human_problem/ ThreatAft en 2026-04-05T15:50:41.000Z Is cybersecurity still, at its core, a human problem? https://www.reddit.com/r/cybersecurity/comments/1sd71k6/your_email_gateway_has_a_blind_spot_apts_already/ ThreatAft en 2026-04-05T15:50:11.000Z Your Email Gateway Has a Blind Spot. APTs Already Know About It. https://www.reddit.com/r/cybersecurity/comments/1sd6is7/syd_doing_a_full_exploit/ ThreatAft en 2026-04-05T15:29:14.000Z syd doing a full exploit https://www.bleepingcomputer.com/news/security/hackers-exploit-react2shell-in-automated-credential-theft-campaign/ ThreatAft en 2026-04-05T14:17:23.000Z Hackers exploit React2Shell in automated credential theft campaign https://www.reddit.com/r/cybersecurity/comments/1sd30zy/certified_network_security_practitioner_cnsp/ ThreatAft en 2026-04-05T13:00:30.000Z Certified Network Security Practitioner (CNSP) Study Materials? https://www.reddit.com/r/cybersecurity/comments/1sd2vtq/anyone_interested_in_offline_ctf_event_in_india/ ThreatAft en 2026-04-05T12:53:30.000Z Anyone interested in Offline ctf event in india ? https://www.reddit.com/r/cybersecurity/comments/1sd1wh3/built_a_tool_to_stop_the_pain_of_manual_evtx/ ThreatAft en 2026-04-05T12:04:57.000Z Built a tool to stop the pain of manual EVTX triage https://www.reddit.com/r/cybersecurity/comments/1sd1cgd/can_you_guys_me_suggestions_should_i_do_bca_in/ ThreatAft en 2026-04-05T11:34:43.000Z Can you guys me suggestions, should i do BCA in Cyber Security or something else to get into CS field ? https://www.reddit.com/r/cybersecurity/comments/1sd0tzy/36_malicious_npm_packages_exploited_redis/ ThreatAft en 2026-04-05T11:05:25.000Z 36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants https://www.reddit.com/r/cybersecurity/comments/1sd0qbj/deployed_goadlight_on_virtualbox_ubuntu_2404/ ThreatAft en 2026-04-05T10:59:57.000Z Deployed GOAD-Light on VirtualBox (Ubuntu 24.04) - sharing my guide with the real errors I hit https://www.reddit.com/r/netsec/comments/1sd0q71/36_malicious_npm_packages_exploited_redis/ ThreatAft en 2026-04-05T10:59:45.000Z 36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants https://www.reddit.com/r/cybersecurity/comments/1sd0nzk/36_malicious_npm_packages_exploited_redis/ ThreatAft en 2026-04-05T10:56:03.000Z 36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants https://www.reddit.com/r/cybersecurity/comments/1sd0667/soc_analyst_1/ ThreatAft en 2026-04-05T10:25:46.000Z SOC Analyst 1 https://www.wired.com/story/inside-the-hack-that-exposed-syrias-security-failures/ ThreatAft en 2026-04-05T09:00:00.000Z The Hack That Exposed Syria’s Sweeping Security Failures https://www.reddit.com/r/cybersecurity/comments/1scyj3y/feeling_stuck_and_looking_for_honest_advice_on/ ThreatAft en 2026-04-05T08:41:38.000Z feeling stuck and looking for honest advice on whats next https://www.reddit.com/r/cybersecurity/comments/1scy246/about_to_take_ejpt_help/ ThreatAft en 2026-04-05T08:11:26.000Z About to take eJPT. help.. https://www.reddit.com/r/cybersecurity/comments/1scxx6w/cyber_crimes_attempt_preperation/ ThreatAft en 2026-04-05T08:02:50.000Z Cyber crimes & attempt - preperation https://www.helpnetsecurity.com/2026/04/05/week-in-review-axios-npm-supply-chain-compromise-critical-forticlient-ems-bug-exploited/ ThreatAft en 2026-04-05T08:00:49.000Z Week in review: Axios npm supply chain compromise, critical FortiClient EMS bugs exploited https://www.reddit.com/r/Malware/comments/1scx6s9/database_of_malicious_chromeedge_extensions/ ThreatAft en 2026-04-05T07:17:46.000Z Database of malicious Chrome/Edge extensions - auto-updated daily https://industrialcyber.co/features/rising-breach-costs-and-operational-downtime-redefine-economics-of-ot-cybersecurity-making-it-boardroom-priority/ ThreatAft en 2026-04-05T06:55:32.000Z Rising breach costs and operational downtime redefine economics of OT cybersecurity making it boardroom priority https://www.reddit.com/r/cybersecurity/comments/1scwnd9/the_visible_key_a_new_way_to_verify_source/ ThreatAft en 2026-04-05T06:45:42.000Z The Visible Key — A New Way to Verify Source https://www.reddit.com/r/cybersecurity/comments/1scwfwe/are_companies_pushing_the_good_guys_to_go_rogue/ ThreatAft en 2026-04-05T06:33:08.000Z Are companies pushing the good guys to go rogue? https://thehackernews.com/2026/04/36-malicious-npm-packages-exploited.html ThreatAft en 2026-04-05T05:07:00.000Z 36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants https://thehackernews.com/2026/04/fortinet-patches-actively-exploited-cve.html ThreatAft en 2026-04-05T04:32:00.000Z Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS https://www.reddit.com/r/cybersecurity/comments/1sct8hp/do_you_guys_think_risk_based_alerting_is_dead_in/ ThreatAft en 2026-04-05T03:38:21.000Z Do you guys think Risk Based Alerting is dead in water with the AI landscape. https://www.reddit.com/r/cybersecurity/comments/1sct022/i_created_a_small_lab_demo_showing_how_responder/ ThreatAft en 2026-04-05T03:26:18.000Z I created a small lab demo showing how #Responder can capture NTLM hashes over a local network. https://www.reddit.com/r/cybersecurity/comments/1scsq79/which_cyber_roles_are_truly_aiproof/ ThreatAft en 2026-04-05T03:12:41.000Z Which cyber roles are truly "AI-proof"? https://www.reddit.com/r/cybersecurity/comments/1scsguv/linkedin_is_spying_on_you_according_to_a_new/ ThreatAft en 2026-04-05T03:00:11.000Z LinkedIn is spying on you, according to a new 'BrowserGate' security report — scripts stealthily scan visitors' browsers for over 6,000 Chrome extensions and harvest hardware data https://www.reddit.com/r/cybersecurity/comments/1scpul1/offering_free_help_with_penetration_testing/ ThreatAft en 2026-04-05T00:51:52.000Z Offering Free Help with Penetration Testing Projects (Looking to Build Experience) https://www.reddit.com/r/cybersecurity/comments/1scphzz/after_the_mercor_breach_i_built_a_local_secret/ ThreatAft en 2026-04-05T00:35:24.000Z After the Mercor breach, I built a local secret scanner for AI-generated code https://www.reddit.com/r/cybersecurity/comments/1scojim/uk_about_to_be_over_employed_have_i_ruined_future/ ThreatAft en 2026-04-04T23:50:23.000Z UK -About to be over employed - have I ruined future chances at obtaining SC? https://www.reddit.com/r/cybersecurity/comments/1scmq9l/website_provider_gave_client_an_spf_include_to_a/ ThreatAft en 2026-04-04T22:29:52.000Z Website provider gave client an SPF include to a domain they did not control, and it was set to +all