Latest IT News, Cybersecurity Alerts & Tech Innovations

Fake Claude AI Site Spreads PlugX RAT via DLL Sideloading

Cybercriminals are distributing PlugX remote access trojan through fake Anthropic Claude AI websites using sophisticated DLL sideloading techniques.

5m3

apt37 April 13 — 11:15 AM

APT37 Deploys RokRAT via Facebook Social Engineering

North Korean APT37 hackers use Facebook friend requests to deliver RokRAT malware through sophisticated social engineering attacks.

4m8

cve-2026-1847 April 12 — 04:20 PM

Marimo RCE Flaw Under Active Attack Hours After Disclosure

Critical pre-authentication remote code execution vulnerability in Marimo notebook platform exploited for credential theft within hours of public disclosure.

5m10

cve-2026-34621 April 12 — 06:25 AM

Adobe Patches Critical Acrobat Reader Zero-Day Under Attack

Adobe released emergency patches for CVE-2026-34621, a critical Acrobat Reader vulnerability actively exploited by attackers worldwide.

5m103

cryptocurrency-fraud April 11 — 04:20 PM

UK-Led Operation Exposes 20,000 Crypto Fraud Victims

International law enforcement operation coordinated by UK's National Crime Agency identifies over 20,000 cryptocurrency fraud victims across three countries.

5m7

iranian-hackers April 10 — 05:52 PM

Iranian Hackers Target Thousands of Rockwell PLCs in US Grid

Iranian-linked threat groups are actively targeting thousands of exposed Rockwell Automation programmable logic controllers across US critical infrastructure networks.

6m13

cpuid-compromise April 10 — 03:12 PM

CPUID Website Compromised: CPU-Z Downloads Serve Malware

Attackers compromised CPUID's API to replace legitimate CPU-Z and HWMonitor downloads with malicious executables on the official website.

5m36

storm-2755 April 10 — 01:56 PM

Storm-2755 Hackers Target Canadian Payroll Systems

Storm-2755 threat group hijacks Canadian employee accounts to steal salary payments through sophisticated payroll system attacks.

5m21

windows-11 April 10 — 01:10 PM

Windows 11 Update Issues Persist Despite Clean Documentation

Microsoft's official documentation claims Windows 11 has no known issues, but users continue reporting post-update glitches across multiple system configurations.

4m13

chrome-147 April 10 — 12:44 PM

Chrome 147 Patches 60 Vulnerabilities Including Critical WebML Flaws

Google releases Chrome 147 with fixes for 60 security vulnerabilities, including two critical WebML component flaws worth $86,000 in bug bounties.

5m21

gmail-e2ee April 10 — 12:44 PM

Gmail E2EE Now Available on All Android and iOS Devices

Google enables end-to-end encryption for Gmail on mobile devices, allowing enterprise users to secure emails without additional tools.

4m10

lucidrook-malware April 10 — 12:04 AM

LucidRook Malware Targets Taiwan NGOs in Spear-Phishing Attacks

Chinese threat actors deploy new Lua-based LucidRook malware against Taiwanese NGOs and universities through sophisticated spear-phishing campaigns.

5m19

venom-phaas April 9 — 11:37 PM

VENOM PhaaS Platform Targets C-Suite Credentials

Threat actors deploy VENOM phishing-as-a-service platform to steal executive credentials across multiple industries through sophisticated social engineering campaigns.

5m20

windows-zero-day April 9 — 10:13 PM

Zero-Day Windows Exploit Released by Disgruntled Researcher

Security researcher 'Chaotic Eclipse' published proof-of-concept code for an undisclosed Windows zero-day vulnerability enabling local privilege escalation attacks.

5m21

chipsoft-ransomware April 9 — 09:46 PM

ChipSoft Healthcare Software Hit by Ransomware Attack

Dutch healthcare software vendor ChipSoft suffered a ransomware attack forcing offline services for patients and healthcare providers.

5m33

device-bound-session-credentials April 9 — 08:33 PM

Chrome 146 Adds Device Bound Session Credentials on Windows

Google deploys Device Bound Session Credentials in Chrome 146 for Windows to prevent malware from stealing authentication cookies.

5m11

engagelab-sdk April 9 — 07:26 PM

EngageLab SDK Flaw Exposed Millions of Crypto Wallets

Microsoft discovered a critical vulnerability in EngageLab SDK that allowed Android apps to bypass security sandboxes and access cryptocurrency wallet data.

5m15

smart-slider-3-pro April 9 — 06:15 PM

Smart Slider 3 Pro Plugin Hijacked via Supply Chain Attack

Attackers compromised the Smart Slider 3 Pro plugin update system, pushing malicious backdoors to WordPress and Joomla sites worldwide.

5m34

ios-26-4-1 April 9 — 04:11 PM

Apple Patches iOS 26.4.1 iCloud Sync Bug

Apple released iOS 26.4.1 and iPadOS 26.4.1 on April 8, 2026 to fix critical iCloud data syncing failures affecting third-party apps.

4m19

notepad-ai-tools April 9 — 01:38 PM

Microsoft Replaces Copilot with AI Writing Tools in Notepad

Microsoft begins reducing Copilot's presence on Windows 11 by introducing AI-powered writing tools in Notepad for Windows Insiders.

4m32

xbox-edge April 9 — 01:28 PM

Xbox Edge Browser Gets Major Security Enhancement

Microsoft's Edge browser on Xbox consoles receives a significant security update that addresses multiple vulnerabilities affecting gaming sessions.

5m12

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18