Weekly Recap: Fast16 Malware, XChat Launch, Federal Backdoor, AI Employee Tracking & More

April 27, 2026

Ravie LakshmananApr 27, 2026Cybersecurity / Hacking Everything is dumb again. This week feels broken in a very familiar way. Old

North Korean Hackers Attacking Drug Companies to Deploy Malware Via Weaponized Excel Files

April 27, 2026

North Korean state-sponsored hackers from the Kimsuky group have launched a targeted campaign against prescription pharmaceutical companies, using a cleverly

Fake CAPTCHA IRSF Scam and 120 Keitaro Campaigns Drive Global SMS, Crypto Fraud

April 27, 2026

Cybersecurity researchers have disclosed details of a telecommunications fraud campaign that uses fake CAPTCHA verification tricks to dupe unsuspecting users

Nessus Agent Vulnerability on Windows Enables Arbitrary Code Execution with SYSTEM Privileges

April 26, 2026

A newly disclosed security vulnerability in Tenable’s Nessus Agent for Windows could allow attackers to execute malicious code with the

American utility firm Itron discloses breach of internal IT network

April 26, 2026

Utility technology company Itron, Inc. has disclosed that an unauthorized third party accessed some of its internal systems during a

73 Open VSX Sleeper Extensions Linked to GlassWorm Activate New Malware Campaign

April 26, 2026

The GlassWorm supply chain attack targeting the Open VSX marketplace has escalated with the discovery of 73 new “sleeper” extensions.

Litecoin Zero-Day Vulnerability Exploited in DoS Attack, Disrupts Major Mining Pools

April 26, 2026

A critical zero-day vulnerability in the Litecoin network was actively exploited to launch a denial-of-service (DoS) attack, temporarily disrupting operations

New Windows RPC Vulnerability Lets Attackers Escalate Privileges Across All Windows Versions

April 25, 2026

PhantomRPC, a newly identified architectural vulnerability in Windows Remote Procedure Call (RPC) that enables local privilege escalation to SYSTEM-level access,

CISA Warns of Multiple SimpleHelp Vulnerabilities Exploited in Attack

April 25, 2026

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert regarding two actively exploited vulnerabilities in SimpleHelp remote

Microsoft rolls out revamped Windows Insider Program

April 25, 2026

Microsoft says it’s rolling out a revamped Windows Insider Program experience as part of the broader plans to address reliability

Threat actor uses Microsoft Teams to deploy new Snow malware

April 25, 2026

A threat group tracked as UNC6692 uses social engineering to deploy a new, custom malware suite named “Snow,” which includes

GPT5.5 Bio Bug Bounty to Strengthen Advanced AI Capabilities

April 25, 2026

OpenAI has announced a new Bio Bug Bounty program for GPT-5.5 as part of its efforts to improve safety controls

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.