Breaking News – Cyber Threats (last 6h)
Generated: 2026-04-03 13:00 PDT
- Hims & Hers warns of data breach after Zendesk support ticket breach
BleepingComputer • 2026-04-03 10:41 • www.bleepingcomputer.com
Telehealth giant Hims & Hers Health is warning that it suffered a data breach after support tickets were stolen from a third-party customer service platform. […]
https://www.bleepingcomputer.com/news/security/hims-and-hers-warns-of-data-breach-after-zendesk-support-ticket-breach/ - China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing
The Hacker News • 2026-04-03 10:34 • thehackernews.com
A China-aligned threat actor has set its sights on European government and diplomatic organizations since mid-2025, following a two-year period of minimal targeting in the region.
The campaign has been attributed to TA416, a cluster of activity that overlaps with DarkPeony, RedDelta, Red Lich, SmugX, UNC6384, and Vertigo Panda.
“This TA416 activity included multiple
https://thehackernews.com/2026/04/china-linked-ta416-targets-european.html - Die Linke German political party confirms data stolen by Qilin ransomware
BleepingComputer • 2026-04-03 09:36 • www.bleepingcomputer.com
The Qilin ransomware group has claimed responsibility for an attack against Die Linke (‘The Left’), forcing an IT systems outage at the political party, and threatening sensitive data leak. […]
https://www.bleepingcomputer.com/news/security/die-linke-german-political-party-confirms-data-stolen-by-qilin-ransomware/ - Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers
The Hacker News • 2026-04-03 08:32 • thehackernews.com
Threat actors are increasingly using HTTP cookies as a control channel for PHP-based web shells on Linux servers and to achieve remote code execution, according to findings from the Microsoft Defender Security Research Team.
“Instead of exposing command execution through URL parameters or request bodies, these web shells rely on threat actor-supplied cookie values to gate execution,
https://thehackernews.com/2026/04/microsoft-details-cookie-controlled-php.html - Evolution of Ransomware: Multi-Extortion Ransomware Attacks
BleepingComputer • 2026-04-03 07:05 • www.bleepingcomputer.com
Multi-extortion ransomware relies on stolen data to pressure victims with public leaks. Penta Security explains how its D.AMO platform keeps exfiltrated files encrypted and useless to attackers. […]
https://www.bleepingcomputer.com/news/security/evolution-of-ransomware-multi-extortion-ransomware-attacks/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
