Latest Cybersecurity News and Articles
NASA Employees Duped in Chinese Phishing Scheme Targeting U.S. Defense Software
24 April 2026
The Office of Inspector General (OIG) of the U.S. National Aeronautics and Space Administration (NASA) has revealed how a Chinese national posed as a U.S. researcher as part of a spear-phishing campaign to obtain sensitive information from the space agency, as well as from government entities, universities, and private companies, in violation of export control laws.
"For years, NASA employees
One CISO For 10,000 companies: Cybersecurity On Too Few Shoulders
24 April 2026
This week in cybersecurity from the editors at Cybercrime Magazine Sausalito, Calif. – Apr. 24, 2026 – Read the full story in it-daily.net According to the 2026 CISO Report, published by Cybersecurity Ventures in collaboration with Sophos, a massive gap exists in strategic security leadership. Worldwide,
The post One CISO For 10,000 companies: Cybersecurity On Too Few Shoulders appeared first on Cybercrime Magazine.
Why Cybersecurity Must Rethink Defense in the Age of Autonomous Agents
24 April 2026
From autonomous code generation to decision-making systems that initiate actions without human intervention, the industry is entering a new phase.
The post Why Cybersecurity Must Rethink Defense in the Age of Autonomous Agents appeared first on SecurityWeek.
Locked Shields 2026: 41 Nations Strengthen Cyber Resilience in World’s Biggest Exercise
24 April 2026
Locked Shields has grown significantly over the past 16 years, with only four nations participating in the first edition.
The post Locked Shields 2026: 41 Nations Strengthen Cyber Resilience in World’s Biggest Exercise appeared first on SecurityWeek.
Bridging the AI Agent Authority Gap: Continuous Observability as the Decision Engine
24 April 2026
The AI Agent Authority Gap - From Ungoverned to Delegation
As discussed in our previous article, AI agents are exposing a structural gap in enterprise security, but the problem is often framed too narrowly.
The issue is not simply that agents are new actors. It is that agents are delegated actors. They do not emerge with independent authority. They are triggered, invoked, provisioned, or
26 FakeWallet Apps Found on Apple App Store Targeting Crypto Seed Phrases
24 April 2026
Cybersecurity researchers have discovered a set of malicious apps on the Apple App Store that impersonate popular cryptocurrency wallets in an attempt to steal recovery phrases and private keys since at least fall 2025.
"Once launched, these apps redirect users to browser pages designed to look similar to the App Store and distribute trojanized versions of legitimate wallets," Kaspersky
US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor
24 April 2026
The malware provides remote access and control of infected devices and maintains post-patching persistence.
The post US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor appeared first on SecurityWeek.
Trump Administration Vows Crackdown on Chinese Companies ‘Exploiting’ AI Models Made in US
24 April 2026
The Trump administration is vowing to crack down on foreign tech companies’ exploitation of U.S. artificial intelligence models.
The post Trump Administration Vows Crackdown on Chinese Companies ‘Exploiting’ AI Models Made in US appeared first on SecurityWeek.
Vulnerabilities Patched in CrowdStrike, Tenable Products
24 April 2026
CrowdStrike has fixed a critical LogScale vulnerability, while Tenable addressed a high-severity Nessus flaw.
The post Vulnerabilities Patched in CrowdStrike, Tenable Products appeared first on SecurityWeek.
Tropic Trooper Uses Trojanized SumatraPDF and GitHub to Deploy AdaptixC2
24 April 2026
Chinese-speaking individuals are the target of a new campaign that uses a trojanized version of SumatraPDF reader to deploy the AdaptixC2 Beacon post-exploitation agent and ultimately facilitate the abuse of Microsoft Visual Studio Code (VS Code) tunnels for remote access.
Zscaler ThreatLabz, which discovered the campaign last month, has attributed it with high confidence to Tropic Trooper (aka
Bitwarden NPM Package Hit in Supply Chain Attack
24 April 2026
Tied to a fresh Checkmarx supply chain attack claimed by TeamPCP, the incident references the Shai-Hulud worm.
The post Bitwarden NPM Package Hit in Supply Chain Attack appeared first on SecurityWeek.
Copperhelm Raises $7 Million for Agentic Cloud Security Platform
24 April 2026
The Israel-based company, which just emerged from stealth mode, was founded by cloud and security experts from RSA, McAfee, and Unity.
The post Copperhelm Raises $7 Million for Agentic Cloud Security Platform appeared first on SecurityWeek.
LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure
24 April 2026
A high-severity security flaw in LMDeploy, an open-source toolkit for compressing, deploying, and serving LLMs, has come under active exploitation in the wild less than 13 hours after its public disclosure.
The vulnerability, tracked as CVE-2026-33626 (CVSS score: 7.5), relates to a Server-Side Request Forgery (SSRF) vulnerability that could be exploited to access sensitive data.
"A server-side
How a simple consumer data breach spiralled into a national security crisis in US-South Korea relations
23 April 2026
Washington’s focus on online retailer Coupang has led to accusations that the Trump administration is tying issues of national security to domestic corporate matters When South Korea’s biggest online retailer revealed last year that a data breach had compromised tens of millions of customer accounts, it appeared to be a corporate crisis. But five months later the issue has grown into a diplomatic storm, threatening to further degrade relations between Seoul and the Trump administration.Coupang – often described as South Korea’s answer to Amazon – is nominally a Korean company but operates from Seattle, is listed on the New York Stock Exchange, and is run by Korean-American billionaire Bom Kim. In November last year the company disclosed that a former employee had stolen an internal security key, enabling unauthorised access to data from 33.7 million users. Continue reading...
Anthropic’s Mythos Preview Just Changed The Threat Landscape In Ways The Security Industry Isn’t Fully Prepared For
23 April 2026
The attacker’s blind spot just disappeared –Mayuresh Ektare, Senior Vice President, Product Management San Jose, Calif. – Apr. 23, 2026 Today’s attackers largely treat software as a black box. Some study open-source software (OSS) to tailor their techniques, but doing this at scale has always
The post Anthropic’s Mythos Preview Just Changed The Threat Landscape In Ways The Security Industry Isn’t Fully Prepared For appeared first on Cybercrime Magazine.
UNC6692 Impersonates IT Helpdesk via Microsoft Teams to Deploy SNOW Malware
23 April 2026
A previously undocumented threat activity cluster known as UNC6692 has been observed leveraging social engineering tactics via Microsoft Teams to deploy a custom malware suite on compromised hosts.
"As with many other intrusions in recent years, UNC6692 relied heavily on impersonating IT helpdesk employees, convincing their victim to accept a Microsoft Teams chat invitation from an account
Cloudsmith Raises $72 Million in Series C Funding
23 April 2026
The company will use the investment to accelerate product development and grow go-to-market efforts.
The post Cloudsmith Raises $72 Million in Series C Funding appeared first on SecurityWeek.
Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaign
23 April 2026
Bitwarden CLI has been compromised as part of the newly discovered and ongoing Checkmarx supply chain campaign, according to new findings from Socket.
"The affected package version appears to be @bitwarden/cli@2026.4.0, and the malicious code was published in 'bw1.js,' a file included in the package contents," the application security company said.
"The attack appears to have leveraged a
Private health records of half a million Britons offered for sale on Chinese website
23 April 2026
Technology minister tells Commons ‘de-identified’ information from UK Biobank advertised for sale on AlibabaUK politics live – latest updatesThe confidential health records of half a million British volunteers have been offered for sale on Chinese website Alibaba, the UK government has confirmed.The data, belonging to participants in the UK Biobank project, was found for sale on three separate listings last week. The records have now been removed and it is not believed any sales were made. Continue reading...
ThreatsDay Bulletin: $290M DeFi Hack, macOS LotL Abuse, ProxySmart SIM Farms +25 New Stories
23 April 2026
You scroll past one incident and see another that feels familiar, like it should have been fixed years ago, but it still works with small changes. Same bugs. Same mistakes.
The supply chain is messy. Packages you did not check are stealing data, adding backdoors, and spreading. Attacking the systems behind apps is easier than breaking the apps themselves. The exploits are simple but still work