Clustered news

---

Cluster

China-Linked Storm-1175 Exploits Zero-Days to Rapidly Deploy Medusa Ransomware 2026-04-07
Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign 2026-04-07
Iranian-Affiliated Cyber Actors Exploit Programmable Logic Controllers Across US Critical Infrastructure 2026-04-06
Claude Code source leak exploited to spread malware 2026-04-03
Claude Code leak used to push infostealer malware on GitHub 2026-04-02
Malware detectors trained on one dataset often stumble on another 2026-04-01
"NoVoice" Android malware on Google Play infected 2.3 million devices 2026-04-01
CERT-UA Impersonation Campaign Spread AGEWHEEZE Malware to 1 Million Emails 2026-04-01
TeamPCP’s attack spree slows, but threat escalates with ransomware pivot 2026-03-30
DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser Credentials 2026-03-30
TeamPCP strikes again: Backdoored Telnyx PyPI package delivers malware 2026-03-27
Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security Checks 2026-03-27
Fake VS Code alerts on GitHub spread malware to developers 2026-03-27
Backdoored Telnyx PyPI package pushes malware hidden in WAV audio 2026-03-27
Suspected RedLine infostealer malware admin extradited to US 2026-03-26
GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data 2026-03-25
North Korea-linked threat actors abuse VS Code auto-run to spread StoatWaffle malware 2026-03-24
Tax Search Ads Deliver ScreenConnect Malware Using Huawei Driver to Disable EDR 2026-03-24

---

Cluster

Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools 2026-04-06
BKA Identifies REvil Leaders Behind 130 German Ransomware Attacks 2026-04-06
German authorities identify REvil and GangCrab ransomware bosses 2026-04-06
Evolution of Ransomware: Multi-Extortion Ransomware Attacks 2026-04-03
Die Linke German political party confirms data stolen by Qilin ransomware 2026-04-03
OpenSSH 10.3 patches five security bugs and drops legacy rekeying support 2026-04-02
Bearlyfy Hits 70+ Russian Firms with Custom GenieLocker Ransomware 2026-03-27
Manager of botnet used in ransomware attacks gets 2 years in prison 2026-03-25
Botnet operator behind $14 million in ransomware extortion payments gets 24 months behind bars 2026-03-25
Russian Hacker Sentenced to 2 Years for TA551 Botnet-Driven Ransomware Attacks 2026-03-25
U.S. Sentences Russian Hacker to 6.75 Years for Role in $9M Ransomware Damage 2026-03-24
Yanluowang ransomware access broker gets 81 months in prison 2026-03-24
Russian initial access broker helped ransomware gangs extort millions, sentenced to 81 months 2026-03-24

---

Cluster

Max severity Flowise RCE vulnerability now exploited in attacks 2026-04-07
Hackers exploit critical flaw in Ninja Forms WordPress plugin 2026-04-07
Week in review: Axios npm supply chain compromise, critical FortiClient EMS bugs exploited 2026-04-05
Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS 2026-04-05
New FortiClient EMS flaw exploited in attacks, emergency patch released 2026-04-05
FortiClient EMS zero-day exploited, emergency hotfixes available (CVE-2026-35616) 2026-04-04
Google Drive ransomware detection now on by default for paying users 2026-04-01
Google Drive now detects ransomware and helps restore affected files 2026-03-31
Critical Fortinet Forticlient EMS flaw now exploited in attacks 2026-03-30
Hackers now exploit critical F5 BIG-IP flaw in attacks, patch now 2026-03-30
Critical NetScaler ADC, Gateway flaw may soon be exploited (CVE-2026-3055) 2026-03-24
PTC warns of imminent threat from critical Windchill, FlexPLM RCE bug 2026-03-24

---

Cluster

Anthropic’s new AI model finds and exploits zero-days across every major OS and browser 2026-04-08
Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed 2026-04-07
[Webinar] How to Close Identity Gaps in 2026 Before AI Exploits Enterprise Risk 2026-04-07
⚡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More 2026-04-06
Google fixes fourth Chrome zero-day exploited in attacks in 2026 2026-04-01
Google fixes Chrome zero-day with in-the-wild exploit (CVE-2026-5281) 2026-04-01
New Chrome Zero-Day CVE-2026-5281 Under Active Exploitation — Patch Released 2026-04-01
Citrix NetScaler Under Active Recon for CVE-2026-3055 (CVSS 9.3) Memory Overread Bug 2026-03-28
New Infinity Stealer malware grabs macOS data via ClickFix lures 2026-03-28
Apple Sends Lock Screen Alerts to Outdated iPhones Over Active Web-Based Exploits 2026-03-27
New Torg Grabber infostealer malware targets 728 crypto wallets 2026-03-25

---

Cluster

Disgruntled researcher leaks “BlueHammer” Windows zero-day exploit 2026-04-06
Microsoft links Medusa ransomware affiliate to zero-day attacks 2026-04-06
36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants 2026-04-05
Hackers exploit React2Shell in automated credential theft campaign 2026-04-05
Adversaries Exploit Vacant Homes to Intercept Mail in Hybrid Cybercrime 2026-04-02
Hackers exploit TrueConf zero-day to push malicious software updates 2026-04-01
Hackers compromise Axios npm package to drop cross-platform malware 2026-03-31
TrueConf Zero-Day Exploited in Attacks on Southeast Asian Government Networks 2026-03-31

---

Cluster

Cisco IMC auth bypass vulnerability allows attackers to alter user passwords (CVE-2026-20093) 2026-04-03
Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials 2026-04-02
Claude AI finds Vim, Emacs RCE bugs that trigger on file open 2026-03-31
Vertex AI Vulnerability Exposes Google Cloud Data and Private Artifacts 2026-03-31
OpenAI Patches ChatGPT Data Exfiltration Flaw and Codex GitHub Token Vulnerability 2026-03-30
CISA Adds CVE-2025-53521 to KEV After Active F5 BIG-IP APM Exploitation 2026-03-28
Attackers are exploiting RCE vulnerability in BIG-IP APM systems (CVE-2025-53521) 2026-03-28

---

Cluster

AI-enabled device code phishing campaign exploits OAuth flow for account takeover 2026-04-07
Apple Expands iOS 18.7.7 Update to More Devices to Block DarkSword Exploit 2026-04-02
TA446 Deploys Leaked DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign 2026-03-28
Coruna iOS exploit framework linked to Triangulation attacks 2026-03-26
Coruna iOS Kit Reuses 2023 Triangulation Exploit Code in Recent Mass Attacks 2026-03-26
Coruna exploit reveals evolution of Triangulation iOS exploitation framework 2026-03-26

---

Cluster

New CrystalRAT malware adds RAT, stealer and prankware features 2026-04-01
U.S. CISA adds a flaw in F5 BIG-IP AMP to its Known Exploited Vulnerabilities catalog 2026-03-28
CISA sounds alarm on Langflow RCE, Trivy supply chain compromise after rapid exploitation 2026-03-27
U.S. CISA adds an Aquasecurity Trivy flaw to its Known Exploited Vulnerabilities catalog 2026-03-27
U.S. CISA adds a Langflow flaw to its Known Exploited Vulnerabilities catalog 2026-03-26
GitHub adds AI-powered bug detection to expand security coverage 2026-03-25

---

Cluster

The case for fixing CWE weakness patterns instead of patching one bug at a time 2026-04-07
Microsoft fixes Classic Outlook bug causing email delivery issues 2026-04-06
Microsoft Warns of WhatsApp-Delivered VBS Malware Hijacking Windows via UAC Bypass 2026-04-01
Microsoft fixes bug causing Classic Outlook sync issues with Gmail 2026-03-24

---

Cluster

CISA orders feds to patch exploited Fortinet EMS flaw by Friday 2026-04-06
CISA orders feds to patch actively exploited Citrix flaw by Thursday 2026-03-31
Critical Citrix NetScaler memory flaw actively exploited in attacks 2026-03-30
CISA: New Langflow flaw actively exploited to hijack AI workflows 2026-03-26