← Latest brief

Security news.

·Morning Brief

Today's cybersecurity landscape is marked by critical vulnerabilities and active exploitation, particularly in supply chain attacks and destructive wiper malware campaigns. Microsoft has released emergency patches for a critical ASP.NET flaw, while a new npm supply chain attack is actively stealing developer credentials.

BLEEPINGSUPPLY CHAIN
Apr 22READ

New npm Supply-Chain Attack Self-Spreads to Steal Auth Tokens

A novel supply chain attack targets the Node Package Manager (npm) ecosystem, stealing developer credentials and spreading through packages published from compromised accounts.

THNPATCH
Apr 22READ

Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug

Microsoft has issued out-of-band updates to address CVE-2026-40372, a critical privilege escalation vulnerability in ASP.NET Core with a CVSS score of 9.1.

SECURITYWEEKMALWARE
Apr 22READ

New Wiper Malware Targeted Venezuelan Energy Sector

Dubbed "Lotus Wiper," a previously undocumented malware was used in destructive attacks against Venezuela's energy and utilities sector, targeting recovery mechanisms and overwriting drives.

BLEEPING
Apr 22READ

Over 1,300 Microsoft SharePoint Servers Vulnerable to Spoofing Attacks

More than 1,300 Microsoft SharePoint servers exposed online remain unpatched against a spoofing vulnerability that was exploited as a zero-day and is still being actively abused.

SECURITYWEEKMALWARE
Apr 22READ

Mirai Botnet Targets Flaw in Discontinued D-Link Routers

The Mirai botnet is exploiting a command injection vulnerability in discontinued D-Link routers, a year after its public disclosure and the release of PoC exploit code.

SECURITYWEEKPATCH
Apr 22READ

North Korean Hackers Use AppleScript, ClickFix in Fresh macOS Attacks

North Korean threat actors are employing AppleScript and ClickFix in new macOS campaigns, primarily targeting financial organizations, including cryptocurrency, venture capital, and blockchain entities.

SECURITYWEEK
Apr 22READ

Google Antigravity in Crosshairs of Security Researchers, Cybercriminals

A remote code execution vulnerability has been discovered in Google's AI-based "Antigravity" tool, while cybercriminals are leveraging its reputation to deliver malware.

GIZMODO SECURITYRANSOMWARE
Apr 22READ

Ransomware Negotiator Pleads Guilty to Aiding BlackCat/ALPHV

A Florida-based ransomware negotiator has pleaded guilty to collaborating with the BlackCat/ALPHV ransomware group, helping them maximize payouts from victims.

Generated twice daily from public security RSS feeds. Informational only.