Cisco has fixed ten vulnerabilities affecting its Integrated Management Controller (IMC), the most critical of which (CVE-2026-20093) could allow an unauthenticated, remote attacker to bypass authentication and gain access to the system as Admin. Cisco ICM riddled with vulnerabilities Cisco…
IT Security News Hourly Summary 2026-04-03 15h : 16 posts
16 posts were published in the last hour 12:37 : Infrastructure Engineer Pleads Guilty to Locking 254 Windows Servers at Former Employer 12:37 : Microsoft Forces Unmanaged Windows 11 Devices to Upgrade to Version 24H2 12:36 : Company that Secretly…
Infrastructure Engineer Pleads Guilty to Locking 254 Windows Servers at Former Employer
Daniel Rhyne, a 59-year-old former core infrastructure engineer, pleaded guilty on April 1, 2026, to federal hacking and extortion charges. He admitted to locking out administrators and sabotaging systems at his former New Jersey-based employer in an attack that began…
Microsoft Forces Unmanaged Windows 11 Devices to Upgrade to Version 24H2
Microsoft has officially initiated an automated, machine-learning-based rollout for Windows 11, version 25H2, targeting unmanaged systems. As part of its ongoing efforts to keep devices secure, similar to routine patch deployments that address critical system vulnerabilities, the tech giant is…
Company that Secretly Records and Publishes Zoom Meetings
WebinarTV searches the internet for public Zoom invites, joins the meetings, secretly records them, and publishes (alternate link) the recordings. It doesn’t use the Zoom record feature, so Zoom can’t do anything about it. This article has been indexed from…
Critical ShareFile Flaws Lead to Unauthenticated RCE
The vulnerabilities can be chained together to bypass authentication and upload arbitrary files to the server. The post Critical ShareFile Flaws Lead to Unauthenticated RCE appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…
Why Third-Party Risk Is the Biggest Gap in Your Clients’ Security Posture
The next major breach hitting your clients probably won’t come from inside their walls. It’ll come through a vendor they trust, a SaaS tool their finance team signed up for, or a subcontractor nobody in IT knows about. That’s the new attack surface,…
UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack
The maintainer of the Axios npm package has confirmed that the supply chain compromise was the result of a highly-targeted social engineering campaign orchestrated by North Korean threat actors tracked as UNC1069. Maintainer Jason Saayman said the attackers tailored their social engineering…
Hasbro Hit in Cyberattack Disrupting Ops
Hasbro recently reported a cyberattack that forced the company to disable various systems, potentially leading to significant disruptions in order processing and product distribution. This article has been indexed from CyberMaterial Read the original article: Hasbro Hit in Cyberattack Disrupting…
Drift Hit By North Korean Hackers Seize Funds
The Drift Protocol suffered a loss of over 280 million dollars after a sophisticated attacker seized control of its Security Council administrative powers. This article has been indexed from CyberMaterial Read the original article: Drift Hit By North Korean Hackers…
Man Admits Locking Thousands of Windows PCs
A former core infrastructure engineer has admitted to orchestrating a failed extortion plot that involved locking administrators out of hundreds of servers at his New Jersey-based employer. This article has been indexed from CyberMaterial Read the original article: Man Admits…
CERT-EU Reports EC Hack Affecting EU Data
The European Union’s Cybersecurity Service has linked a significant breach of the European Commission’s cloud infrastructure to the TeamPCP threat actor group. This article has been indexed from CyberMaterial Read the original article: CERT-EU Reports EC Hack Affecting EU Data
Free VPNs Leak Data Despite Privacy Claims
Many free Android VPNs function as data collection tools rather than privacy protectors by tracking user activity and requesting invasive permissions. This article has been indexed from CyberMaterial Read the original article: Free VPNs Leak Data Despite Privacy Claims
Hackers Use Venom Stealer to Turn ClickFix Lures Into Full Data Exfiltration Pipelines
A new malware has been quietly spreading across cybercrime networks, and security researchers say it is far more capable than most tools of its kind. Called Venom Stealer, this malware-as-a-service platform does not just harvest credentials — it builds an…
Hackers Use Phorpiex Botnet to Spread Ransomware, Sextortion, and Crypto-Clipping Malware
A botnet that has been running since 2011 is back in the spotlight — not because it is new, but because it keeps reinventing itself. Phorpiex, also known as Trik, has grown from a basic spam tool into a full-scale…
Malicious Chrome Extension “ChatGPT Ad Blocker” Steals ChatGPT Conversations
As OpenAI introduces advertisements to its free tier, cybercriminals are seizing the opportunity to trick users with fake utility tools. Security researchers have discovered a malicious Google Chrome extension named “ChatGPT Ad Blocker.” While it claims to hide unwanted ads,…
The Future of Cyber Warfare and its Impact on Global Business Stability
Cyber warfare is no longer an obscure strategy—it’s the primary arena of global conflict. Explore how Generative AI, “Living off the Land” techniques, and vendor concentration are creating a new era of systemic risk for enterprises. The post The Future of Cyber Warfare and its Impact…
Windows Security app gets Secure Boot certificate status indicators as 2026 expiration approaches
Microsoft’s Secure Boot certificates, issued in 2011, are approaching expiration in 2026. To help IT administrators track whether devices have received replacement certificates, Microsoft has added new status indicators to the Windows Security app, under Device security > Secure Boot.…
Mobile Attack Surface Expands as Enterprises Lose Control
Shadow AI embedded in everyday apps, combined with outdated mobile devices and zero-click exploits, is creating a new and largely unseen mobile risk. The post Mobile Attack Surface Expands as Enterprises Lose Control appeared first on SecurityWeek. This article has…
HIPAA – I Do Not Think That Word Means What You Say It Means
HIPAA is often used as a shorthand for “no,” but the law is a nuanced permissions framework, not a blanket prohibition. Explore why “HIPAA-compliant” software often enforces a caricature of the actual 45 C.F.R. pt. 164. The post HIPAA –…
Why Privileged Access is Becoming the Control Plane for Agentic AI
AI agents are the new “high-speed insiders.” Discover why traditional identity models fail autonomous systems and how Privileged Access Management (PAM) is evolving into a real-time authorization control plane. The post Why Privileged Access is Becoming the Control Plane for Agentic AI…
Ask Me Anything Cyber
A recording from CyberMaterial’s live video This article has been indexed from CyberMaterial Read the original article: Ask Me Anything Cyber
14,000+ F5 BIG-IP APM Instances Exposed Online as Attackers Exploit RCE Vulnerability
Cybersecurity researchers have identified a massive attack surface involving F5 BIG-IP Access Policy Manager (APM) devices. Following a critical severity upgrade to a recently disclosed flaw, over 17,100 instances are currently exposed to the internet, leaving enterprise networks vulnerable to…
CISA Includes TrueConf Security Flaw in KEV Catalog After Exploitation in the Wild
The Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical security flaw affecting the TrueConf Client to its Known Exploited Vulnerabilities (KEV) catalog. This addition follows clear evidence that threat actors are actively exploiting the bug in real-world…