https://www.reddit.com/r/cybersecurity/comments/1sox2em/microsoft_threat_intelligence_helpdesk/ ThreatAft en 2026-04-18T13:02:01.000Z Microsoft Threat Intelligence: Helpdesk impersonation via Teams used for cross-tenant access and data exfiltration https://www.reddit.com/r/cybersecurity/comments/1sox28t/how_to_pivot_to_cybersecurity_from_being_sysadmin/ ThreatAft en 2026-04-18T13:01:50.000Z How to pivot to cybersecurity from being sysadmin / network engineer? https://www.reddit.com/r/cybersecurity/comments/1sowoo5/good_day_folks_please_refer_a_scrm_program_that/ ThreatAft en 2026-04-18T12:45:10.000Z Good day folks ! Please refer a SCRM program that can provide a full report with ( Geopolitical, FOCI, cyber security posture, business dev, financial and legal court filings for a vendor ) a solution that can write the report for me NIST-800-161 https://www.reddit.com/r/cybersecurity/comments/1sow9z4/why_do_most_realworld_breaches_still_come_down_to/ ThreatAft en 2026-04-18T12:26:09.000Z Why do most real-world breaches still come down to simple mistakes? https://www.reddit.com/r/cybersecurity/comments/1sovmcj/common_pricetags_vulnerable/ ThreatAft en 2026-04-18T11:54:22.000Z Common pricetags vulnerable https://www.reddit.com/r/netsec/comments/1sou4zz/mad_bugs_even_cat_readmetxt_is_not_safe/ ThreatAft en 2026-04-18T10:35:38.000Z MAD Bugs: Even "cat readme.txt" is not safe https://www.wired.com/story/security-news-this-week-it-takes-2-minutes-to-hack-the-eus-new-age-verification-app/ ThreatAft en 2026-04-18T10:30:00.000Z It Takes 2 Minutes to Hack the EU’s New Age-Verification App https://www.securityweek.com/tycoon-2fa-loses-phishing-kit-crown-amid-surge-in-attacks/ ThreatAft en 2026-04-18T10:30:00.000Z Tycoon 2FA Loses Phishing Kit Crown Amid Surge in Attacks https://www.reddit.com/r/netsec/comments/1sotxf6/the_smart_tv_in_your_living_room_is_a_node_in_the/ ThreatAft en 2026-04-18T10:23:53.000Z The Smart TV in Your Living Room Is a Node in the AI Scraping Economy https://www.reddit.com/r/Malware/comments/1sotb5t/tamperedchef_within_gta_vfivem_mods_report/ ThreatAft en 2026-04-18T09:48:33.000Z TamperedChef within GTA V/FiveM mods report - ModsHub / Network Graphics https://www.reddit.com/r/cybersecurity/comments/1sosim2/why_is_it_so_hard_to_find_the_right_cybersecurity/ ThreatAft en 2026-04-18T09:01:57.000Z Why is it so hard to find the right cybersecurity course? https://www.reddit.com/r/cybersecurity/comments/1sosedv/things_i_wish_i_knew_before_starting_in/ ThreatAft en 2026-04-18T08:54:49.000Z Things I wish I knew before starting in cybersecurity https://thehackernews.com/2026/04/1374m-hack-shuts-down-sanctioned-grinex.html ThreatAft en 2026-04-18T07:59:00.000Z $13.74M Hack Shuts Down Sanctioned Grinex Exchange After Intelligence Claims https://www.reddit.com/r/cybersecurity/comments/1soreu0/is_cybersecurity_still_a_good_career_option_in/ ThreatAft en 2026-04-18T07:55:49.000Z Is cybersecurity still a good career option in 2026? https://www.reddit.com/r/cybersecurity/comments/1soqyxw/prototype_adaptive_deception_environment_that/ ThreatAft en 2026-04-18T07:30:07.000Z Prototype: Adaptive deception environment that models attacker behaviour and generates dynamic decoys https://www.reddit.com/r/cybersecurity/comments/1soqmir/postquantum_cryptography_migration_at_meta/ ThreatAft en 2026-04-18T07:10:41.000Z Post-Quantum Cryptography Migration at Meta: Framework, Lessons, and Takeaways https://www.reddit.com/r/cybersecurity/comments/1soq002/recently_leaked_windows_zerodays_now_exploited_in/ ThreatAft en 2026-04-18T06:35:45.000Z Recently leaked Windows zero-days now exploited in attacks https://www.reddit.com/r/cybersecurity/comments/1sopwww/payouts_king_ransomware_uses_qemu_vms_to_bypass/ ThreatAft en 2026-04-18T06:30:57.000Z Payouts King ransomware uses QEMU VMs to bypass endpoint security https://thehackernews.com/2026/04/mirai-variant-nexcorium-exploits-cve.html ThreatAft en 2026-04-18T06:01:00.000Z Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet https://www.reddit.com/r/cybersecurity/comments/1sonz62/que_se_necesita_para_entrar_al_mundo_de_la/ ThreatAft en 2026-04-18T04:48:53.000Z Que se necesita para entrar al mundo de la Ciberseguridad? https://www.reddit.com/r/cybersecurity/comments/1sonx43/request_arxiv_endorsement_cscr_primary_csai/ ThreatAft en 2026-04-18T04:45:56.000Z [Request] arXiv Endorsement — cs.CR (primary) + cs.AI https://www.reddit.com/r/cybersecurity/comments/1sontp4/35f_with_ets_in_2028_realizing_intel_may_not_be/ ThreatAft en 2026-04-18T04:41:03.000Z 35F with ETS in 2028, realizing intel may not be for me. Looking at cyber and could use some honest advice https://www.reddit.com/r/cybersecurity/comments/1soneqx/crowdstrike_mobile_agent/ ThreatAft en 2026-04-18T04:20:07.000Z CrowdStrike Mobile Agent https://www.reddit.com/r/cybersecurity/comments/1som352/auditing_my_entire_personal_security_stack_what/ ThreatAft en 2026-04-18T03:15:32.000Z Auditing my entire personal security stack — what are you running in 2026? https://www.reddit.com/r/cybersecurity/comments/1solx2e/whats_your_current_wifi_hardening_playbook/ ThreatAft en 2026-04-18T03:07:19.000Z What’s your current WiFi hardening playbook? https://www.reddit.com/r/cybersecurity/comments/1sokjj3/claude_code_security_permissions_native_sandboxing/ ThreatAft en 2026-04-18T02:01:36.000Z Claude Code Security - Permissions & Native Sandboxing https://www.reddit.com/r/cybersecurity/comments/1sojxfx/5_minute_crafts_has_a_cybercrime_problemvideo/ ThreatAft en 2026-04-18T01:32:58.000Z „5 Minute Crafts Has a Cybercrime Problem“-Video deleted https://www.reddit.com/r/cybersecurity/comments/1sogntz/where_can_i_find_a_good_opensource_ddos/ ThreatAft en 2026-04-17T23:07:12.000Z Where can I find a good open-source DDoS protection solution? https://www.reddit.com/r/netsec/comments/1soghe0/ai_uncovered_thousands_of_zeroday_vulnerabilities/ ThreatAft en 2026-04-17T22:59:58.000Z AI uncovered thousands of zero-day vulnerabilities for every major operating system and browser. Including a bug dating back to 1996 in OpenBSD. Patch everything is officially obsolete. https://www.reddit.com/r/cybersecurity/comments/1sof5tn/red_teaming_is_no_longer_optional_heres_a/ ThreatAft en 2026-04-17T22:05:22.000Z Red Teaming is no longer optional. Here’s a breakdown of the tools securing LLMs against adversarial attacks. https://www.reddit.com/r/cybersecurity/comments/1soerdy/bay_area_job_market/ ThreatAft en 2026-04-17T21:49:27.000Z Bay Area job market? https://www.reddit.com/r/cybersecurity/comments/1soeehl/fear_of_being_hacked/ ThreatAft en 2026-04-17T21:35:37.000Z Fear of being hacked https://www.reddit.com/r/cybersecurity/comments/1sodrtj/taking_sans_sec504_next_month_im_feeling_kinda/ ThreatAft en 2026-04-17T21:12:01.000Z Taking SANS SEC504 next month. I’m feeling kinda scared ngl. https://www.reddit.com/r/cybersecurity/comments/1sodjux/claude_opus_wrote_a_chrome_exploit_for_2283/ ThreatAft en 2026-04-17T21:03:30.000Z Claude Opus wrote a Chrome exploit for 2,283 https://www.reddit.com/r/cybersecurity/comments/1socexa/automated_a_parallel_pentest_workflow_with/ ThreatAft en 2026-04-17T20:21:08.000Z Automated a parallel pentest workflow with specialized AI agents. Each runs its domain, Lead correlates findings into one report https://www.reddit.com/r/netsec/comments/1sobv0s/anonymous_credentials_an_illustrated_primer_part_2/ ThreatAft en 2026-04-17T20:00:48.000Z Anonymous credentials: an illustrated primer (Part 2) https://www.darkreading.com/threat-intelligence/nist-cutbacks-nvd-handling-impacts-cyber-teams ThreatAft en 2026-04-17T19:51:57.000Z How NIST's Cutback of CVE Handling Impacts Cyber Teams https://www.reddit.com/r/cybersecurity/comments/1sobccp/first_pentest_contract/ ThreatAft en 2026-04-17T19:41:26.000Z First Pentest Contract https://www.bleepingcomputer.com/news/security/payouts-king-ransomware-uses-qemu-vms-to-bypass-endpoint-security/ ThreatAft en 2026-04-17T19:10:19.000Z Payouts King ransomware uses QEMU VMs to bypass endpoint security https://www.reddit.com/r/cybersecurity/comments/1soad14/how_to_test_ai_agent/ ThreatAft en 2026-04-17T19:06:04.000Z How to test AI agent? https://www.darkreading.com/threat-intelligence/tycoon-2fa-hackers-device-code-phishing ThreatAft en 2026-04-17T19:05:51.000Z Tycoon 2FA Phishers Scatter, Adopt Device Code Phishing https://www.securityweek.com/white-house-chief-of-staff-to-meet-ith-anthropic-ceo-over-its-new-ai-technology/ ThreatAft en 2026-04-17T19:00:00.000Z White House Chief of Staff to Meet With Anthropic CEO Over Its New AI Technology https://therecord.media/ransomware-nhs-cyberattack-disruption ThreatAft en 2026-04-17T18:45:00.000Z Ransomware attack continues to disrupt healthcare in London nearly two years later https://therecord.media/ddos-hire-europol-doj-crackdown ThreatAft en 2026-04-17T18:30:00.000Z Four arrested in latest ‘PowerOFF’ DDoS-for-hire takedown https://www.reddit.com/r/cybersecurity/comments/1so917h/is_it_true_that_google_secopschronicle_siem_does/ ThreatAft en 2026-04-17T18:18:18.000Z Is it true that Google SecOps/Chronicle SIEM does NOT perform compression on ingested data? https://www.reddit.com/r/cybersecurity/comments/1so8ilu/im_the_cto_cofounder_of_chainguard_ask_me/ ThreatAft en 2026-04-17T17:59:52.000Z I’m the CTO & Co-Founder of Chainguard — Ask Me Anything about building and securing the software supply chain in the age of AI! https://www.reddit.com/r/Malware/comments/1so7v0k/givemrecipeexe/ ThreatAft en 2026-04-17T17:36:20.000Z givemrecipe.exe https://cyberscoop.com/section-702-fisa-surveillance-law-renewal-congress-debate/ ThreatAft en 2026-04-17T17:31:13.000Z The surveillance law Congress can’t quit — and can’t explain https://www.reddit.com/r/cybersecurity/comments/1so7obf/three_microsoft_defender_zerodays_actively/ ThreatAft en 2026-04-17T17:29:36.000Z Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched https://www.reddit.com/r/cybersecurity/comments/1so7koo/givemrecipeexe/ ThreatAft en 2026-04-17T17:26:01.000Z givemrecipe.exe https://www.reddit.com/r/cybersecurity/comments/1so78op/exposing_russian_malicious_infrastructure_1250_c2/ ThreatAft en 2026-04-17T17:13:55.000Z Exposing Russian Malicious Infrastructure: 1,250+ C2 Servers Mapped Across 165 Providers https://www.reddit.com/r/cybersecurity/comments/1so74oj/undefend_windows_defenders_third_zeroday_this/ ThreatAft en 2026-04-17T17:09:57.000Z UnDefend: Windows Defender's third zero-day this month blocks all signature updates from a standard user account https://www.reddit.com/r/netsec/comments/1so72tn/undefend_chaotic_eclipses_third_defender_zeroday/ ThreatAft en 2026-04-17T17:08:04.000Z UnDefend: Chaotic Eclipse's third Defender zero-day blocks all signature updates from a standard user — no admin required https://www.reddit.com/r/cybersecurity/comments/1so6ub3/shinyhunters_salesforce_campaign_continues_with_7/ ThreatAft en 2026-04-17T16:59:54.000Z ShinyHunters Salesforce campaign continues with 7 new victims being listed today https://www.reddit.com/r/cybersecurity/comments/1so5kfk/cve202633825_deepdive_the_researcher_commented/ ThreatAft en 2026-04-17T16:14:37.000Z CVE-2026-33825 deep-dive: The researcher commented out the full credential dump. Here's what that means. https://www.reddit.com/r/netsec/comments/1so5hal/cve202633825_deepdive_the_researcher_commented/ ThreatAft en 2026-04-17T16:11:29.000Z CVE-2026-33825 deep-dive: The researcher commented out the full credential dump. Here's what that means. https://www.reddit.com/r/Malware/comments/1so4fcw/post_random_pourquoi_pas_les_comptes/ ThreatAft en 2026-04-17T15:33:44.000Z Post random : pourquoi pas les comptes 😭 https://www.reddit.com/r/cybersecurity/comments/1so4buc/fractional_gpu_security_every_sharing_mode_mig/ ThreatAft en 2026-04-17T15:30:15.000Z Fractional GPU Security: Every sharing mode (MIG, MPS, vGPU, container) has been broken in published research. NVIDIA's own documentation confirms the gaps. https://www.bleepingcomputer.com/news/security/grinex-exchange-blames-western-intelligence-for-137m-crypto-hack/ ThreatAft en 2026-04-17T15:08:53.000Z Grinex exchange blames "Western intelligence" for $13.7M crypto hack https://www.reddit.com/r/cybersecurity/comments/1so3jml/6_months_cant_get_hired/ ThreatAft en 2026-04-17T15:02:19.000Z 6 months cant get hired https://www.securityweek.com/cochat-launches-ai-collaboration-platform-to-combat-shadow-ai/ ThreatAft en 2026-04-17T15:00:00.000Z CoChat Launches AI Collaboration Platform to Combat Shadow AI https://www.microsoft.com/en-us/security/blog/2026/04/17/domain-compromise-predictive-shielding-shut-down-lateral-movement/ ThreatAft en 2026-04-17T14:51:01.000Z Containing a domain compromise: How predictive shielding shut down lateral movement https://www.darkreading.com/vulnerabilities-threats/every-old-vulnerability-ai-vulnerability ThreatAft en 2026-04-17T14:47:18.000Z Every Old Vulnerability Is Now an AI Vulnerability https://www.reddit.com/r/cybersecurity/comments/1so30qb/brussels_launched_an_age_checking_app_hackers_say/ ThreatAft en 2026-04-17T14:43:12.000Z Brussels launched an age checking app. Hackers say it takes 2 minutes to break it. https://www.reddit.com/r/cybersecurity/comments/1so2ync/linux_71_crypto_code_rework_enables_more/ ThreatAft en 2026-04-17T14:41:01.000Z Linux 7.1 crypto code rework enables more optimizations by default https://www.malwarebytes.com/blog/news/2026/04/this-old-school-scam-is-still-working ThreatAft en 2026-04-17T14:34:17.000Z This old-school scam is still working https://therecord.media/ukraine-confirms-suspected-apt28-campaign-targeting-prosecutors ThreatAft en 2026-04-17T14:12:00.000Z Ukraine confirms suspected APT28 campaign targeting prosecutors, anti-corruption agencies https://www.wired.com/story/republican-mutiny-sinks-trumps-push-to-extend-warrantless-surveillance/ ThreatAft en 2026-04-17T14:07:02.000Z Republican Mutiny Sinks Trump's Push to Extend Warrantless Surveillance https://www.bleepingcomputer.com/news/security/inside-an-underground-guide-how-threat-actors-vet-stolen-credit-card-shops/ ThreatAft en 2026-04-17T14:01:11.000Z Inside an Underground Guide: How Threat Actors Vet Stolen Credit Card Shops https://www.reddit.com/r/cybersecurity/comments/1so1bhg/congress_should_start_planning_to_limit_worker/ ThreatAft en 2026-04-17T13:40:21.000Z Congress Should Start Planning to Limit Worker Surveillance, New Vanderbilt Report Says https://www.reddit.com/r/cybersecurity/comments/1so15z9/how_private_chats_were_leaked_and_being_stalked/ ThreatAft en 2026-04-17T13:34:13.000Z How private chats were leaked and being stalked by multiple numbers https://thehackernews.com/2026/04/three-microsoft-defender-zero-days.html ThreatAft en 2026-04-17T13:21:00.000Z Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched https://www.infosecurity-magazine.com/news/ai-models-rapid-gains/ ThreatAft en 2026-04-17T13:20:00.000Z Commercial AI Models Show Rapid Gains in Vulnerability Research https://therecord.media/fisa--trump-congress-extension-surveillance ThreatAft en 2026-04-17T13:15:00.000Z In defeat for Trump, House extends electronic spying program for just 10 days https://www.sentinelone.com/blog/the-good-the-bad-and-the-ugly-in-cybersecurity-week-16-7/ ThreatAft en 2026-04-17T13:00:33.000Z The Good, the Bad and the Ugly in Cybersecurity – Week 16 https://www.darkreading.com/cybersecurity-operations/coast-guards-cybersecurity-rules-lessons-cisos ThreatAft en 2026-04-17T13:00:00.000Z Coast Guard's New Cybersecurity Rules Offers Lessons for CISOs https://www.reddit.com/r/cybersecurity/comments/1snzyuj/how_did_you_guys_actually_start_in_cybersecurity/ ThreatAft en 2026-04-17T12:47:03.000Z How did you guys ACTUALLY start in cybersecurity? https://www.bleepingcomputer.com/news/security/webinar-from-phishing-to-fallout-why-msps-must-rethink-both-security-and-recovery/ ThreatAft en 2026-04-17T12:20:28.000Z Webinar: From phishing to fallout — Why MSPs must rethink both security and recovery https://www.securityweek.com/in-other-news-satellite-cybersecurity-act-90k-chrome-flaw-teen-hacker-arrested/ ThreatAft en 2026-04-17T12:00:00.000Z In Other News: Satellite Cybersecurity Act, $90K Chrome Flaw, Teen Hacker Arrested https://www.reddit.com/r/cybersecurity/comments/1snyavv/is_grc_a_bad_fit_if_you_hate_presenting_to_groups/ ThreatAft en 2026-04-17T11:31:30.000Z Is GRC a bad fit if you hate presenting to groups? https://www.infosecurity-magazine.com/news/ddos-services-hit-by-police/ ThreatAft en 2026-04-17T11:30:00.000Z DDoS-For-Hire Services Disrupted by International Police Action in ‘Operation PowerOff’ https://www.reddit.com/r/cybersecurity/comments/1snxye5/anthropics_mcp_protocol_has_critical_flaw/ ThreatAft en 2026-04-17T11:14:24.000Z Anthropic's MCP Protocol has critical flaw affecting 200,000 servers https://www.reddit.com/r/cybersecurity/comments/1snxqpu/cve202627913/ ThreatAft en 2026-04-17T11:03:42.000Z CVE-2026-27913 https://www.reddit.com/r/cybersecurity/comments/1snxq67/built_a_free_cybersecurity_app_for_everyday/ ThreatAft en 2026-04-17T11:03:00.000Z Built a free cybersecurity app for everyday people and open sourced it, looking for contributors or someone to take it further https://www.helpnetsecurity.com/2026/04/17/google-gemini-harmful-ads-blocking/ ThreatAft en 2026-04-17T10:59:38.000Z Google wipes out 602 million scam ads with Gemini on duty https://thehackernews.com/2026/04/google-blocks-83b-policy-violating-ads.html ThreatAft en 2026-04-17T10:47:00.000Z Google Blocks 8.3B Policy-Violating Ads in 2025, Launches Android 17 Privacy Overhaul https://www.securityweek.com/another-draftkings-hacker-sentenced-to-prison/ ThreatAft en 2026-04-17T10:45:13.000Z Another DraftKings Hacker Sentenced to Prison https://www.securityweek.com/lawmakers-gathered-quietly-to-talk-about-ai-angst-and-fears-of-destruction-followed/ ThreatAft en 2026-04-17T10:15:00.000Z Lawmakers Gathered Quietly to Talk About AI. Angst and Fears of ‘Destruction’ Followed https://www.helpnetsecurity.com/2026/04/17/microsoft-defender-zero-days-exploited/ ThreatAft en 2026-04-17T10:04:26.000Z Researcher drops two more Microsoft Defender zero-days, all three now exploited in the wild https://industrialcyber.co/regulation-standards-and-compliance/tsa-seeks-stakeholder-input-on-cybersecurity-reporting-requirements-assessment-burden-estimates-by-june-15/ ThreatAft en 2026-04-17T10:02:58.000Z TSA seeks stakeholder input on cybersecurity reporting requirements, assessment burden estimates by June 15 https://www.wired.com/story/madison-square-garden-jim-dolan-surveillance-machine/ ThreatAft en 2026-04-17T10:00:00.000Z The Shocking Secrets of Madison Square Garden's Surveillance Machine https://www.reddit.com/r/cybersecurity/comments/1snwj97/if_i_want_my_end_goal_to_be_in_grc_should_i_avoid/ ThreatAft en 2026-04-17T09:59:53.000Z If I want my end goal to be in GRC, should I avoid technical roles? https://industrialcyber.co/nist/nist-advances-cmvp-modernization-to-close-gap-between-cryptographic-innovation-and-validation-capacity/ ThreatAft en 2026-04-17T09:57:33.000Z NIST advances CMVP modernization to close gap between cryptographic innovation and validation capacity https://industrialcyber.co/news/emerson-partners-with-opswat-to-embed-ot-patch-management-into-ovation-platform-for-critical-infrastructure/ ThreatAft en 2026-04-17T09:54:27.000Z Emerson partners with OPSWAT to embed OT patch management into Ovation platform for critical infrastructure https://www.securityweek.com/recent-apache-activemq-vulnerability-exploited-in-the-wild/ ThreatAft en 2026-04-17T09:50:22.000Z Recent Apache ActiveMQ Vulnerability Exploited in the Wild https://www.helpnetsecurity.com/2026/04/17/gitlab-18-11-agentic-ai/ ThreatAft en 2026-04-17T09:35:45.000Z GitLab 18.11 brings agentic AI to security fixes, CI pipelines, and delivery analytics https://www.bleepingcomputer.com/news/security/cisa-flags-apache-activemq-flaw-as-actively-exploited-in-attacks/ ThreatAft en 2026-04-17T09:30:15.000Z CISA flags Apache ActiveMQ flaw as actively exploited in attacks https://www.reddit.com/r/cybersecurity/comments/1snvyeu/i_found_a_fake_crypto_app_in_an_official_store/ ThreatAft en 2026-04-17T09:26:06.000Z I found a fake crypto app in an official store… this is getting scary https://www.helpnetsecurity.com/2026/04/17/liongard-expands-liongardiq/ ThreatAft en 2026-04-17T09:23:17.000Z Liongard upgrades LiongardIQ with AI access, live asset data, and deeper discovery https://www.securityweek.com/two-north-korean-it-worker-scheme-facilitators-jailed-in-the-us/ ThreatAft en 2026-04-17T09:21:02.000Z Two North Korean IT Worker Scheme Facilitators Jailed in the US https://www.helpnetsecurity.com/2026/04/17/mozilla-thunderbolt-open-source-ai-client-enterprise-data-control/ ThreatAft en 2026-04-17T09:03:30.000Z Mozilla challenges enterprise AI providers with Thunderbolt, open-source AI client under your control https://www.welivesecurity.com/en/scams/data-breach-alert-might-be-trap/ ThreatAft en 2026-04-17T09:00:00.000Z That data breach alert might be a trap https://www.reddit.com/r/cybersecurity/comments/1snvged/new_microsoft_defender_redsun_zeroday_poc_grants/ ThreatAft en 2026-04-17T08:58:05.000Z New Microsoft Defender “RedSun” zero-day PoC grants SYSTEM privileges https://www.reddit.com/r/cybersecurity/comments/1snvfj6/crtp_suggestions_about_the_exam/ ThreatAft en 2026-04-17T08:56:40.000Z CRTP suggestions about the exam https://www.reddit.com/r/cybersecurity/comments/1snv57e/built_a_job_board_for_offensive_roles/ ThreatAft en 2026-04-17T08:39:26.000Z Built a job board for offensive roles https://www.helpnetsecurity.com/2026/04/17/openai-codex-desktop-update-macos/ ThreatAft en 2026-04-17T08:38:04.000Z Codex can now operate between apps. Where are the boundaries? https://www.securityweek.com/zionsiphon-malware-targets-ics-in-water-facilities/ ThreatAft en 2026-04-17T08:30:00.000Z ZionSiphon Malware Targets ICS in Water Facilities https://www.bleepingcomputer.com/news/microsoft/microsoft-warns-of-reboot-loops-affecting-some-domain-controllers/ ThreatAft en 2026-04-17T07:59:47.000Z Microsoft: Some Windows servers enter reboot loops after April patches https://www.reddit.com/r/cybersecurity/comments/1snu59o/whats_everyones_go_to_ccsp_cram_tools_got_a_month/ ThreatAft en 2026-04-17T07:41:44.000Z What’s everyone’s go to CCSP cram tools. Got a month til the exam and struggling. https://www.malwarebytes.com/blog/news/2026/04/your-shipment-has-arrived-email-hides-remote-access-software ThreatAft en 2026-04-17T07:40:03.000Z “Your shipment has arrived” email hides remote access software https://www.reddit.com/r/cybersecurity/comments/1snu2it/what_do_you_actually_do_after_getting_rce_in_a/ ThreatAft en 2026-04-17T07:37:16.000Z What do you actually do after getting RCE in a Kubernetes pod? https://www.securityweek.com/cursor-ai-vulnerability-exposed-developer-devices/ ThreatAft en 2026-04-17T07:29:16.000Z Cursor AI Vulnerability Exposed Developer Devices https://thehackernews.com/2026/04/nist-limits-cve-enrichment-after-263.html ThreatAft en 2026-04-17T07:14:00.000Z NIST Limits CVE Enrichment After 263% Surge in Vulnerability Submissions https://www.bleepingcomputer.com/news/security/man-gets-30-months-for-selling-thousands-of-hacked-draftkings-accounts/ ThreatAft en 2026-04-17T07:10:32.000Z Man gets 30 months for selling thousands of hacked DraftKings accounts https://www.reddit.com/r/cybersecurity/comments/1sntcdg/is_the_google_certification_a_good_first_step/ ThreatAft en 2026-04-17T06:56:12.000Z Is the Google Certification a good first step? https://www.securityweek.com/53-ddos-domains-taken-down-by-law-enforcement/ ThreatAft en 2026-04-17T06:40:21.000Z 53 DDoS Domains Taken Down by Law Enforcement https://www.reddit.com/r/cybersecurity/comments/1snsvza/t_mobile_cdrs/ ThreatAft en 2026-04-17T06:30:41.000Z T Mobile CDRS https://www.reddit.com/r/cybersecurity/comments/1snstph/preparing_for_summer_soc_analyst_internship/ ThreatAft en 2026-04-17T06:27:12.000Z Preparing for Summer SOC Analyst Internship https://www.bleepingcomputer.com/news/security/recently-leaked-windows-zero-days-now-exploited-in-attacks/ ThreatAft en 2026-04-17T06:14:52.000Z Recently leaked Windows zero-days now exploited in attacks https://www.helpnetsecurity.com/2026/04/17/android-17-beta-4-released/ ThreatAft en 2026-04-17T06:14:13.000Z Android 17 Beta 4 arrives with post-quantum cryptography and new memory limits https://thehackernews.com/2026/04/operation-poweroff-seizes-53-ddos.html ThreatAft en 2026-04-17T05:46:00.000Z Operation PowerOFF Seizes 53 DDoS Domains, Exposes 3 Million Criminal Accounts https://www.helpnetsecurity.com/2026/04/17/apple-airtag-relay-attack-location/ ThreatAft en 2026-04-17T05:30:35.000Z Apple AirTag tracking can be misled by replayed Bluetooth signals https://www.helpnetsecurity.com/2026/04/17/children-social-media-ban-cybersecurity-risks/ ThreatAft en 2026-04-17T05:00:17.000Z Social media bans might steer kids into riskier corners of the internet https://www.helpnetsecurity.com/2026/04/17/workplace-stress-report-2026/ ThreatAft en 2026-04-17T04:30:16.000Z Workplace stress in 2026 is still worse than before the pandemic https://www.reddit.com/r/cybersecurity/comments/1snpe1s/the_fcc_now_requires_telecom_licensees_to/ ThreatAft en 2026-04-17T03:28:37.000Z the fcc now requires telecom licensees to disclose if foreign adversaries control their networks https://thehackernews.com/2026/04/apache-activemq-cve-2026-34197-added-to.html ThreatAft en 2026-04-17T03:22:00.000Z Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation https://www.reddit.com/r/cybersecurity/comments/1snoe20/do_i_have_a_shot_at_cybersecurity_career/ ThreatAft en 2026-04-17T02:42:28.000Z Do I have a shot at cybersecurity career? https://www.reddit.com/r/cybersecurity/comments/1snno7g/open_grid_works/ ThreatAft en 2026-04-17T02:09:49.000Z Open Grid Works https://isc.sans.edu/diary/rss/32906 ThreatAft en 2026-04-17T02:00:03.000Z ISC Stormcast For Friday, April 17th, 2026 https://isc.sans.edu/podcastdetail/9896, (Fri, Apr 17th) https://www.reddit.com/r/cybersecurity/comments/1snn9e5/what_are_some_of_the_best_antiphishing_tool_in/ ThreatAft en 2026-04-17T01:51:13.000Z What are some of the best anti-phishing tool in the market as of 2026 for small to medium business as MSSP? https://www.reddit.com/r/cybersecurity/comments/1snn342/most_postadvisory_salesforce_reviews_missed_the/ ThreatAft en 2026-04-17T01:43:08.000Z Most post-advisory Salesforce reviews missed the sharing rules layer. ShinyHunters didn't. https://www.reddit.com/r/cybersecurity/comments/1snm2i8/clicked_on_a_phishing_link/ ThreatAft en 2026-04-17T00:57:11.000Z Clicked on a phishing link https://isc.sans.edu/diary/rss/32904 ThreatAft en 2026-04-17T00:30:27.000Z Lumma Stealer infection with Sectop RAT (ArechClient2), (Fri, Apr 17th) https://www.reddit.com/r/cybersecurity/comments/1snlc4c/what_is_the_outlook_for_web3_security/ ThreatAft en 2026-04-17T00:24:45.000Z What is the outlook for Web3 security? https://www.reddit.com/r/cybersecurity/comments/1snl1px/we_all_know_compliance_security_what_is_the_most/ ThreatAft en 2026-04-17T00:12:06.000Z We all know compliance != security. What is the most frustrating "security theater" control you have to prove for SOC 2? https://cyberscoop.com/us-nationals-sentenced-facilitate-north-korea-tech-worker-scheme/ ThreatAft en 2026-04-16T23:05:57.000Z US nationals sentenced for aiding North Korea’s tech worker scheme https://www.reddit.com/r/cybersecurity/comments/1snj2va/studying_for_security_and_looking_for_free_study/ ThreatAft en 2026-04-16T22:48:14.000Z Studying for Security+ and looking for free study tools — what actually worked for you? https://www.bleepingcomputer.com/news/security/operation-poweroff-identifies-75k-ddos-users-takes-down-53-domains/ ThreatAft en 2026-04-16T22:26:34.000Z Operation PowerOFF identifies 75k DDoS users, takes down 53 domains https://www.bleepingcomputer.com/news/security/zionsiphon-malware-designed-to-sabotage-water-treatment-systems/ ThreatAft en 2026-04-16T22:04:53.000Z ZionSiphon malware designed to sabotage water treatment systems https://unit42.paloaltonetworks.com/exploitation-of-cve-2023-33538/ ThreatAft en 2026-04-16T22:00:13.000Z A Deep Dive Into Attempted Exploitation of CVE-2023-33538 https://www.darkreading.com/vulnerabilities-threats/nist-revamps-cve-framework-to-focus-on-high-impact-vulnerabilities ThreatAft en 2026-04-16T21:47:31.000Z NIST Revamps CVE Framework to Focus on High-Impact Vulnerabilities https://www.reddit.com/r/cybersecurity/comments/1snhiil/on_quantum_cryptography_what_if_hackers_already/ ThreatAft en 2026-04-16T21:46:07.000Z On quantum cryptography; What if hackers already have our encrypted passwords and they'll be able to easily hack into tons of accounts when they have the tools to decrypt it? https://www.reddit.com/r/cybersecurity/comments/1sngpac/haproxy_http3_http1_desync_crossprotocol/ ThreatAft en 2026-04-16T21:15:19.000Z HAProxy HTTP/3 -> HTTP/1 Desync: Cross-Protocol Smuggling via a Standalone QUIC FIN (CVE-2026-33555) https://www.reddit.com/r/netsec/comments/1snglu3/redsun_how_windows_defenders_remediation_became_a/ ThreatAft en 2026-04-16T21:11:50.000Z RedSun: How Windows Defender's Remediation Became a SYSTEM File Write https://www.reddit.com/r/cybersecurity/comments/1sngj6u/secure_file_transfer_into_a_malware_sandbox_vm/ ThreatAft en 2026-04-16T21:09:02.000Z Secure File Transfer into a Malware Sandbox VM (ISO Method) https://www.reddit.com/r/netsec/comments/1sngbf6/world_leaks_rdp_access_leads_to_custom/ ThreatAft en 2026-04-16T21:01:07.000Z World Leaks: RDP Access Leads to Custom Exfiltration and Personalized Extortion https://www.reddit.com/r/cybersecurity/comments/1snfxb6/custombuilt_python_implant_analysis_deploying/ ThreatAft en 2026-04-16T20:46:44.000Z Custom-Built Python Implant Analysis - Deploying Commodity RATs and Ransomware Reconnaissance https://www.reddit.com/r/cybersecurity/comments/1snfkw2/website_vulnerability/ ThreatAft en 2026-04-16T20:34:20.000Z Website vulnerability https://www.bleepingcomputer.com/news/microsoft/new-microsoft-defender-redsun-zero-day-poc-grants-system-privileges/ ThreatAft en 2026-04-16T20:19:31.000Z New Microsoft Defender “RedSun” zero-day PoC grants SYSTEM privileges https://www.reddit.com/r/netsec/comments/1snem8w/haproxy_http3_http1_desync_crossprotocol/ ThreatAft en 2026-04-16T19:59:49.000Z HAProxy HTTP/3 -> HTTP/1 Desync: Cross-Protocol Smuggling via a Standalone QUIC FIN (CVE-2026-33555) https://www.darkreading.com/application-security/north-korea-clickfix-target-macos-users-data ThreatAft en 2026-04-16T19:42:45.000Z North Korea Uses ClickFix to Target macOS Users' Data https://www.sentinelone.com/blog/frontier-ai-reinforces-the-future-of-modern-cyber-defense/ ThreatAft en 2026-04-16T19:33:10.000Z Frontier AI Reinforces the Future of Modern Cyber Defense https://www.darkreading.com/cyberattacks-data-breaches/harmless-global-adware-av-killer ThreatAft en 2026-04-16T19:07:26.000Z 'Harmless' Global Adware Transforms Into an AV Killer https://www.wired.com/story/europes-online-age-verification-app-is-here/ ThreatAft en 2026-04-16T18:54:20.000Z Europe’s Online Age Verification App Is Here https://www.tenable.com/blog/beating-the-mythos-clock-using-tenable-hexa-ai-custom-agents-for-automated-patching ThreatAft en 2026-04-16T18:35:00.000Z Beating the Mythos clock: Using Tenable Hexa AI custom agents for automated patching https://www.reddit.com/r/cybersecurity/comments/1snb22f/now_you_can_break_up_with_big_tech_at_a_bar/ ThreatAft en 2026-04-16T17:54:05.000Z Now you can break up with big tech at a bar: ‘cybersecurity disguised as a party’ https://thehackernews.com/2026/04/newly-discovered-powmix-botnet-hits.html ThreatAft en 2026-04-16T17:52:00.000Z Newly Discovered PowMix Botnet Hits Czech Workers Using Randomized C2 Traffic https://cyberscoop.com/ddos-for-hire-takedowns-operation-poweroff/ ThreatAft en 2026-04-16T17:26:16.000Z Officials seize 53 DDoS-for-hire domains in ongoing crackdown https://www.securityweek.com/government-cant-win-the-cyber-war-without-the-private-sector/ ThreatAft en 2026-04-16T17:00:00.000Z Government Can’t Win the Cyber War Without the Private Sector https://www.bleepingcomputer.com/news/security/hackers-exploit-marimo-flaw-to-deploy-nkabuse-malware-from-hugging-face/ ThreatAft en 2026-04-16T16:58:06.000Z Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face https://www.reddit.com/r/cybersecurity/comments/1sn9987/two_americans_sentenced_for_helping_north_korea/ ThreatAft en 2026-04-16T16:52:34.000Z Two Americans sentenced for helping North Korea steal 5 million in fake IT worker scheme https://therecord.media/new-jersey-men-sentenced-north-korean-laptop-farms ThreatAft en 2026-04-16T16:38:00.000Z New Jersey men given lengthy sentences for running North Korean laptop farms https://www.reddit.com/r/cybersecurity/comments/1sn8a0b/in_your_experience_whats_the_most_effective/ ThreatAft en 2026-04-16T16:17:51.000Z In your experience, what's the most effective cybersecurity awareness tip for employees? https://www.infosecurity-magazine.com/news/us-nationals-jailed-north-korea/ ThreatAft en 2026-04-16T16:00:00.000Z US Nationals Jailed for Operating Fake Remote Worker Laptop Farms for North Korea https://www.microsoft.com/en-us/security/blog/2026/04/16/building-your-cryptographic-inventory-a-customer-strategy-for-cryptographic-posture-management/ ThreatAft en 2026-04-16T16:00:00.000Z Building your cryptographic inventory: A customer strategy for cryptographic posture management https://www.reddit.com/r/cybersecurity/comments/1sn7fx9/the_rise_and_fall_of_conti_marked_a_major_moment/ ThreatAft en 2026-04-16T15:48:52.000Z The rise and fall of Conti marked a major moment in cybersecurity history. It showed how organized and profitable ransomware had become, while also proving that internal leaks and poor decisions can destroy even powerful criminal groups. https://www.reddit.com/r/cybersecurity/comments/1sn7d9j/known_vulnerability_on_maternity_leave/ ThreatAft en 2026-04-16T15:46:10.000Z Known vulnerability on maternity leave https://www.infosecurity-magazine.com/news/apk-malformation-android-malware/ ThreatAft en 2026-04-16T15:45:00.000Z APK Malformation Found in Thousands of Android Malware Samples https://www.darkreading.com/endpoint-security/two-factor-authentication-breaks-free-from-the-desktop ThreatAft en 2026-04-16T15:28:15.000Z Two-Factor Authentication Breaks Free from the Desktop https://www.bleepingcomputer.com/news/google/google-expands-gemini-ai-use-to-fight-malicious-ads-on-its-platform/ ThreatAft en 2026-04-16T15:24:14.000Z Google expands Gemini AI use to fight malicious ads on its platform https://www.reddit.com/r/cybersecurity/comments/1sn6kle/manager_is_inexperienced_and_relying_on_ai/ ThreatAft en 2026-04-16T15:17:50.000Z Manager is inexperienced and relying on AI prompts to articulate ideas https://www.darkreading.com/endpoint-security/microsoftoriginal-windows-secure-boot-certificates-expire ThreatAft en 2026-04-16T15:16:30.000Z Microsoft's Original Windows Secure Boot Certificate Is Expiring https://www.helpnetsecurity.com/2026/04/16/claude-opus-4-7-released/ ThreatAft en 2026-04-16T15:06:44.000Z Anthropic releases Claude Opus 4.7 with automated cybersecurity safeguards https://www.reddit.com/r/cybersecurity/comments/1sn67ks/certs_are_not_enough/ ThreatAft en 2026-04-16T15:05:21.000Z Certs are not enough https://www.infosecurity-magazine.com/news/cookeville-medical-center-data/ ThreatAft en 2026-04-16T15:01:00.000Z Cookeville Medical Center Notifies Patients After July 2025 Ransomware Attack https://www.microsoft.com/en-us/security/blog/2026/04/16/dissecting-sapphire-sleets-macos-intrusion-from-lure-to-compromise/ ThreatAft en 2026-04-16T15:00:00.000Z Dissecting Sapphire Sleet’s macOS intrusion from lure to compromise https://www.reddit.com/r/cybersecurity/comments/1sn5yen/google_play_is_changing_how_android_apps_access/ ThreatAft en 2026-04-16T14:56:46.000Z Google Play is changing how Android apps access your contacts and location https://industrialcyber.co/analysis/hidden-risks-in-chinese-cellular-modules-grow-across-us-critical-infrastructure-as-market-dominance-amplifies-exposure/ ThreatAft en 2026-04-16T14:41:12.000Z Hidden risks in Chinese cellular modules grow across US critical infrastructure as market dominance amplifies exposure https://industrialcyber.co/news/axonius-brings-ai-driven-exposure-management-to-ot-iot-environments-as-persistent-asset-visibility-gaps-hinder-security-operations/ ThreatAft en 2026-04-16T14:36:30.000Z Axonius brings AI-driven exposure management to OT, IoT environments, as persistent asset visibility gaps hinder security operations https://industrialcyber.co/news/tenable-embeds-native-ot-visibility-into-tenable-one-to-streamline-cyber-physical-security-remove-deployment-friction/ ThreatAft en 2026-04-16T14:33:51.000Z Tenable embeds native OT visibility into Tenable One to streamline cyber-physical security, remove deployment friction https://www.securityweek.com/openai-widens-access-to-cybersecurity-model-after-anthropics-mythos-reveal/ ThreatAft en 2026-04-16T14:27:06.000Z OpenAI Widens Access to Cybersecurity Model After Anthropic’s Mythos Reveal https://www.reddit.com/r/cybersecurity/comments/1sn4pid/fashion_retailer_express_left_customers_personal/ ThreatAft en 2026-04-16T14:11:53.000Z Fashion retailer Express left customers' personal data and order details exposed to the internet https://www.bleepingcomputer.com/news/security/new-athr-vishing-platform-uses-ai-voice-agents-for-automated-attacks/ ThreatAft en 2026-04-16T14:09:11.000Z New ATHR vishing platform uses AI voice agents for automated attacks https://www.reddit.com/r/cybersecurity/comments/1sn4kug/trying_to_validate_an_idea_around_cloud_security/ ThreatAft en 2026-04-16T14:07:06.000Z Trying to validate an idea around cloud security + critical systems https://www.bleepingcomputer.com/news/security/most-ai-socs-are-just-faster-triage-thats-not-enough/ ThreatAft en 2026-04-16T14:02:12.000Z Most "AI SOCs" Are Just Faster Triage. That's Not Enough. https://cloud.google.com/blog/topics/threat-intelligence/defending-enterprise-ai-vulnerabilities/ ThreatAft en 2026-04-16T14:00:00.000Z Defending Your Enterprise When AI Models Can Find Vulnerabilities Faster Than Ever https://www.reddit.com/r/cybersecurity/comments/1sn49qp/eu_age_verification_app_already_hacked/ ThreatAft en 2026-04-16T13:55:59.000Z EU age verification app already hacked. https://www.reddit.com/r/cybersecurity/comments/1sn49cg/are_companies_overestimating_their_cloud_security/ ThreatAft en 2026-04-16T13:55:34.000Z Are companies overestimating their cloud security maturity? https://www.reddit.com/r/cybersecurity/comments/1sn3xty/good_read_cybersecuritys_dirty_secret_why_most/ ThreatAft en 2026-04-16T13:43:30.000Z Good Read: Cybersecurity’s Dirty Secret: Why Most Budgets Go to Waste https://www.reddit.com/r/cybersecurity/comments/1sn3twv/codex_hacked_a_samsung_tv/ ThreatAft en 2026-04-16T13:39:17.000Z Codex Hacked a Samsung TV