Breaking News – Cyber Threats (last 6h)
Generated: 2026-04-16 13:00 PDT
- [Guest Diary] Compromised DVRs and Finding Them in the Wild, (Thu, Apr 16th)
SANS ISC Diary (full) • 2026-04-16 12:20 • isc.sans.edu[This is a Guest Diary by Alec Jaffe, an ISC intern as part of the SANS.edu Bachelor&#;39;s Degree in Applied Cybersecurity (BACS) program [1].
- Newly Discovered PowMix Botnet Hits Czech Workers Using Randomized C2 Traffic
The Hacker News • 2026-04-16 10:52 • thehackernews.com
Cybersecurity researchers have warned of an active malicious campaign that’s targeting the workforce in the Czech Republic with a previously undocumented botnet dubbed PowMix since at least December 2025.
“PowMix employs randomized command-and-control (C2) beaconing intervals, rather than persistent connection to the C2 server, to evade the network signature detections,” Cisco Talos
https://thehackernews.com/2026/04/newly-discovered-powmix-botnet-hits.html - Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face
BleepingComputer • 2026-04-16 09:58 • www.bleepingcomputer.com
Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware hosted on Hugging Face Spaces. […]
https://www.bleepingcomputer.com/news/security/hackers-exploit-marimo-flaw-to-deploy-nkabuse-malware-from-hugging-face/ - Google expands Gemini AI use to fight malicious ads on its platform
BleepingComputer • 2026-04-16 08:24 • www.bleepingcomputer.com
Google says it is increasingly using its Gemini AI models to detect and block harmful ads on its advertising platforms, as scammers and threat actors continue to evolve their tactics to evade detection. […]
https://www.bleepingcomputer.com/news/google/google-expands-gemini-ai-use-to-fight-malicious-ads-on-its-platform/ - New ATHR vishing platform uses AI voice agents for automated attacks
BleepingComputer • 2026-04-16 07:09 • www.bleepingcomputer.com
A new cybercrime platform called ATHR can harvest credentials via fully automated voice phishing attacks that use both human operators and AI agents for the social engineering phase. […]
https://www.bleepingcomputer.com/news/security/new-athr-vishing-platform-uses-ai-voice-agents-for-automated-attacks/ - Most "AI SOCs" Are Just Faster Triage. That's Not Enough.
BleepingComputer • 2026-04-16 07:02 • www.bleepingcomputer.com
AI-powered SOC tools promise automation, but most only speed up triage instead of reducing real workload. Tines shows how real gains come from end-to-end workflows that execute actions across systems, not just summarize alerts. […]
https://www.bleepingcomputer.com/news/security/most-ai-socs-are-just-faster-triage-thats-not-enough/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
