SpankRAT Exploits Windows Explorer Processes for Stealth and Delayed Detection

April 16, 2026

A newly identified two-component Remote Access Trojan (RAT) toolkit built in Rust, dubbed SpankRAT, is being used by threat actors

Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face

April 16, 2026

Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware hosted on

Two U.S. Nationals Sentenced for Running Laptop Farm for DPRK Remote Workers

April 16, 2026

Two American nationals have been sentenced to federal prison for operating a sophisticated “laptop farm” scheme. The operation successfully infiltrated

Cisco Patches Four Critical Identity Services, Webex Flaws Enabling Code Execution

April 16, 2026

Ravie LakshmananApr 16, 2026Vulnerability / Network Security Cisco has announced patches to address four critical security flaws impacting Identity Services

Data breach at edtech giant McGraw Hill affects 13.5 million accounts

April 16, 2026

The ShinyHunters extortion group has leaked data from 13.5 million McGraw Hill user accounts, stolen after breaching the company’s Salesforce

Critical Nginx UI auth bypass flaw now actively exploited in the wild

April 15, 2026

A critical vulnerability in Nginx UI with Model Context Protocol (MCP) support is now being exploited in the wild for

Signed software abused to deploy antivirus-killing scripts

April 15, 2026

A digitally signed adware tool has deployed payloads running with SYSTEM privileges that disabled antivirus protections on thousands of endpoints,

n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails

April 15, 2026

Ravie LakshmananApr 15, 2026Threat Intelligence / Cloud Security Threat actors have been observed weaponizing n8n, a popular artificial intelligence (AI) workflow automation

Google, Microsoft, Meta Tracking You Even if You Opt Out New Research

April 15, 2026

In a massive blow to consumer privacy, a new forensic audit reveals that tech giants Google, Microsoft, and Meta are

Microsoft Releases Cumulative Update KB5083769 for Windows 11, Version 25H2 and 24H2

April 15, 2026

Microsoft has officially released the April 2026 Patch Tuesday cumulative update, KB5083769, for Windows 11 versions 25H2 and 24H2. Released

Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover

April 15, 2026

Ravie LakshmananApr 15, 2026Web Security / Vulnerability A recently disclosed critical security flaw impacting nginx-ui, an open-source, web-based Nginx management

Microsoft: April updates trigger BitLocker key prompts on some servers

April 15, 2026

Microsoft confirmed on Tuesday that some Windows Server 2025 devices will boot into BitLocker recovery after installing the April 2026

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.