← Latest brief

Security news.

·Afternoon Brief

Critical vulnerabilities in widely-used libraries and applications are under active exploitation, including a zero-day in Adobe Reader that's been weaponized for months and a severe flaw in wolfSSL affecting certificate validation. Law enforcement scored major wins dismantling phishing infrastructure and cryptocurrency fraud networks, while supply chain attacks continue targeting developers through compromised tools and malicious packages.

BLEEPINGVULN
Apr 13READ

Critical wolfSSL vulnerability enables forged ECDSA signatures

A critical flaw in the wolfSSL SSL/TLS library weakens security by improperly verifying hash algorithms when checking Elliptic Curve Digital Signature Algorithm signatures, potentially allowing attackers to forge certificates.

BLEEPINGZERO-DAY
Apr 13READ

Adobe patches actively exploited Reader zero-day CVE-2026-34621

Adobe released an emergency update for Acrobat Reader to fix a critical vulnerability (CVSS 8.6) that has been exploited in the wild since at least December, allowing arbitrary code execution.

CISAKEV
Apr 13READ

CISA adds seven known exploited vulnerabilities to KEV catalog

CISA added seven vulnerabilities with active exploitation evidence, including CVE-2023-21529 (Exchange deserialization) and CVE-2023-36424, requiring immediate patching under BOD 22-01.

BLEEPINGPHISHING
Apr 13READ

FBI and Indonesian police dismantle W3LL phishing platform, arrest developer

The FBI and Indonesian National Police dismantled the W3LL global phishing service responsible for $20+ million in fraud attempts, seizing infrastructure and arresting the alleged developer in the first coordinated US-Indonesia enforcement action against a phishing kit developer.

BLEEPINGSUPPLY CHAIN
Apr 13READ

OpenAI rotates macOS certificates after Axios supply chain attack

OpenAI is rotating potentially exposed macOS code-signing certificates after a malicious Axios package was executed in a GitHub Actions workflow, though no user data or internal systems were compromised.

BLEEPINGBREACH
Apr 13READ

Booking.com confirms data breach, forces reservation PIN resets

Booking.com detected unauthorized system access exposing sensitive reservation and user data, prompting PIN resets for affected customers.

THNMALWARE
Apr 13READ

JanelaRAT malware targets Latin American banks with 14,739 attacks in Brazil

A modified BX RAT variant called JanelaRAT is actively targeting financial institutions across Brazil and Mexico, stealing financial and cryptocurrency data while logging keystrokes, tracking mouse inputs, and capturing screenshots.

DARK READINGNATION-STATE
Apr 13READ

APT41 deploys 'zero-detection' backdoor targeting major cloud providers

The China-backed APT41 group is targeting AWS, Google Cloud, Azure, and Alibaba cloud environments using typosquatting to obscure command-and-control communications while harvesting cloud credentials.

Generated twice daily from public security RSS feeds. Informational only.