Breaking News – Cyber Threats (last 6h)
Generated: 2026-04-02 17:00 PDT
- Claude Code leak used to push infostealer malware on GitHub
BleepingComputer • 2026-04-02 13:30 • www.bleepingcomputer.com
Threat actors are exploiting the recent Claude Code source code leak by using fake GitHub repositories to deliver Vidar information-stealing malware. […]
https://www.bleepingcomputer.com/news/security/claude-code-leak-used-to-push-infostealer-malware-on-github/ - Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials
The Hacker News • 2026-04-02 12:30 • thehackernews.com
A large-scale credential harvesting operation has been observed exploiting the React2Shell vulnerability as an initial infection vector to steal database credentials, SSH private keys, Amazon Web Services (AWS) secrets, shell command history, Stripe API keys, and GitHub tokens at scale.
Cisco Talos has attributed the operation to a threat cluster it tracks as
https://thehackernews.com/2026/04/hackers-exploit-cve-2025-55182-to.html - Drift loses $280 million as hackers seize Security Council powers
BleepingComputer • 2026-04-02 12:03 • www.bleepingcomputer.com
The Drift Protocol lost at least $280 million after a threat actor took control of its Security Council administrative powers in a planned, sophisticated operation. […]
https://www.bleepingcomputer.com/news/security/drift-loses-280-million-as-hackers-seize-security-council-powers/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
