Breaking News – Cyber Threats (last 6h)
Generated: 2026-04-10 08:00 PDT
- Analysis of one billion CISA KEV remediation records exposes limits of human-scale security
BleepingComputer • 2026-04-10 07:01 • www.bleepingcomputer.com
Analysis of 1 billion CISA KEV remediation records reveal a breaking point for human-scale security. Qualys shows most critical flaws are exploited before defenders can patch them. […]
https://www.bleepingcomputer.com/news/security/analysis-of-one-billion-cisa-kev-remediation-records-exposes-limits-of-human-scale-security/ - GlassWorm Campaign Uses Zig Dropper to Infect Multiple Developer IDEs
The Hacker News • 2026-04-10 06:23 • thehackernews.com
Cybersecurity researchers have flagged yet another evolution of the ongoing GlassWorm campaign, which employs a new Zig dropper that’s designed to stealthily infect all integrated development environments (IDEs) on a developer’s machine.
The technique has been discovered in an Open VSX extension named “specstudio.code-wakatime-activity-tracker,” which masquerades as WakaTime, a
https://thehackernews.com/2026/04/glassworm-campaign-uses-zig-dropper-to.html - Supply chain attack at CPUID pushes malware with CPU-Z/HWMonitor
BleepingComputer • 2026-04-10 06:12 • www.bleepingcomputer.com
Hackers gained access to an API for the CPUID project and changed the download links on the official website to serve malicious executables for the popular CPU-Z and HWMonitor tools. […]
https://www.bleepingcomputer.com/news/security/supply-chain-attack-at-cpuid-pushes-malware-with-cpu-z-hwmonitor/ - Microsoft: Canadian employees targeted in payroll pirate attacks
BleepingComputer • 2026-04-10 04:56 • www.bleepingcomputer.com
A financially motivated threat actor tracked as Storm-2755 is stealing Canadian employees’ salary payments after hijacking their accounts in payroll pirate attacks. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-canadian-employees-targeted-in-payroll-pirate-attacks/ - Browser Extensions Are the New AI Consumption Channel That No One Is Talking About
The Hacker News • 2026-04-10 04:00 • thehackernews.com
While much of the discussion on AI security centers around protecting ‘shadow’ AI and GenAI consumption, there’s a wide-open window nobody’s guarding: AI browser extensions.
A new report from LayerX exposes just how deep this blind spot goes, and why AI extensions may be the most dangerous AI threat surface in your network that isn’t on anyone’s
https://thehackernews.com/2026/04/browser-extensions-are-new-ai.html - Google rolls out Gmail end-to-end encryption on mobile devices
BleepingComputer • 2026-04-10 03:44 • www.bleepingcomputer.com
Google says Gmail end-to-end encryption (E2EE) is now available on all Android and iOS devices, allowing enterprise users to read and compose emails without additional tools. […]
https://www.bleepingcomputer.com/news/google/google-rolls-out-gmail-end-to-end-encryption-on-mobile-devices/ - Sen. Sanders Talks to Claude About AI and Privacy
Schneier on Security • 2026-04-10 03:41 • www.schneier.comClaude is actually pretty good on the issues.
https://www.schneier.com/blog/archives/2026/04/sen-sanders-talks-to-claude-about-ai-and-privacy.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
