Breaking News – Cyber Threats (last 6h)
Generated: 2026-04-01 03:00 PDT
- A Taxonomy of Cognitive Security
Schneier on Security • 2026-04-01 02:59 • www.schneier.comLast week, I listened to a fascinating talk by K. Melton on cognitive security, cognitive hacking, and reality pentesting. The slides from the talk are here, but—even better—Menton has a long essay laying out the basic concepts and ideas.
The whole thing is important and well worth reading, and I hesitate to excerpt. Here’s a taste:
- Alleged RedLine malware developer extradited to United States
Graham Cluley • 2026-04-01 02:00 • www.bitdefender.com
A man has appeared in federal court in Austin, Texas, after being extradited to the United States to face charges related to his alleged role as a key developer of the notorious RedLine malware.Read more in my article on the Hot for Security blog.
https://www.bitdefender.com/en-us/blog/hotforsecurity/redline-malware-developer-extradited - Google Attributes Axios npm Supply Chain Attack to North Korean Group UNC1069
The Hacker News • 2026-04-01 00:44 • thehackernews.com
Google has formally attributed the supply chain compromise of the popular Axios npm package to a financially motivated North Korean threat activity cluster tracked as UNC1069.
“We have attributed the attack to a suspected North Korean threat actor we track as UNC1069,” John Hultquist, chief analyst at Google Threat Intelligence Group (GTIG), told The Hacker News in a statement.
“North Korean
https://thehackernews.com/2026/04/google-attributes-axios-npm-supply.html - Google Drive ransomware detection now on by default for paying users
BleepingComputer • 2026-03-31 23:35 • www.bleepingcomputer.com
Google announced that the AI-powered Google Drive ransomware detection feature has reached general availability and is now enabled by default for all paying users. […]
https://www.bleepingcomputer.com/news/security/google-drive-ransomware-detection-now-on-by-default-for-paying-users/ - Claude Code Source Leaked via npm Packaging Error, Anthropic Confirms
The Hacker News • 2026-03-31 23:12 • thehackernews.com
Anthropic on Tuesday confirmed that internal code for its popular artificial intelligence (AI) coding assistant, Claude Code, had been inadvertently released due to a human error.
“No sensitive customer data or credentials were involved or exposed,” an Anthropic spokesperson said in a statement shared with CNBC News. “This was a release packaging issue caused by human error, not a security
https://thehackernews.com/2026/04/claude-code-tleaked-via-npm-packaging.html - A laughing RAT: CrystalX combines spyware, stealer, and prankware features
Securelist • 2026-03-31 23:00 • securelist.com
Kaspersky researchers analyze a new CrystalX RAT distributed as MaaS and featuring extensive spyware, stealer, and prankware capabilities.
https://securelist.com/crystalx-rat-with-prankware-features/119283/ - New Windows 11 emergency update fixes preview update install issues
BleepingComputer • 2026-03-31 22:33 • www.bleepingcomputer.com
Microsoft released an emergency update to fix the March 2026 KB5079391 non-security preview update, which was pulled over the weekend due to installation issues. […]
https://www.bleepingcomputer.com/news/microsoft/new-windows-11-kb5086672-emergency-update-fixes-install-issues/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
