Breaking News – Cyber Threats (last 6h)
Generated: 2026-04-05 03:00 PDT
- 36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants
The Hacker News • 2026-04-04 22:07 • thehackernews.com
Cybersecurity researchers have discovered 36 malicious packages in the npm registry that are disguised as Strapi CMS plugins but come with different payloads to facilitate Redis and PostgreSQL exploitation, deploy reverse shells, harvest credentials, and drop a persistent implant.
“Every package contains three files (package.json, index.js, postinstall.js), has no description, repository,
https://thehackernews.com/2026/04/36-malicious-npm-packages-exploited.html - Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS
The Hacker News • 2026-04-04 21:32 • thehackernews.com
Fortinet has released out-of-band patches for a critical security flaw impacting FortiClient EMS that it said has been exploited in the wild.
The vulnerability, tracked as CVE-2026-35616 (CVSS score: 9.1), has been described as a pre-authentication API access bypass leading to privilege escalation.
“An improper access control vulnerability [CWE-284] in FortiClient EMS may allow an
https://thehackernews.com/2026/04/fortinet-patches-actively-exploited-cve.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
