Breaking News – Cyber Threats (last 6h)
Generated: 2026-04-17 08:00 PDT
- Inside an Underground Guide: How Threat Actors Vet Stolen Credit Card Shops
BleepingComputer • 2026-04-17 07:01 • www.bleepingcomputer.com
In cybercrime markets, trust isn’t assumed, it’s verified. Flare reveals how underground guides teach actors to evaluate carding shops based on data quality, reputation, and survivability. […]
https://www.bleepingcomputer.com/news/security/inside-an-underground-guide-how-threat-actors-vet-stolen-credit-card-shops/ - Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched
The Hacker News • 2026-04-17 06:21 • thehackernews.com
Huntress is warning that threat actors are exploiting three recently disclosed security flaws in Microsoft Defender to gain elevated privileges in compromised systems.
The activity involves the exploitation of three vulnerabilities that are codenamed BlueHammer (requires GitHub sign-in), RedSun, and UnDefend, all of which were released as zero-days by a researcher known as Chaotic Eclipse (
https://thehackernews.com/2026/04/three-microsoft-defender-zero-days.html - Webinar: From phishing to fallout — Why MSPs must rethink both security and recovery
BleepingComputer • 2026-04-17 05:20 • www.bleepingcomputer.com
Cyberattacks are evolving faster than many MSP and corporate defenses can keep up, with phishing driving much of today’s cybercrime. Join our upcoming webinar to learn how to combine security and recovery strategies to reduce risk and maintain business continuity. […]
https://www.bleepingcomputer.com/news/security/webinar-from-phishing-to-fallout-why-msps-must-rethink-both-security-and-recovery/ - Singer loses life savings to fake wallet downloaded from the Apple App Store
Graham Cluley • 2026-04-17 04:36 • www.bitdefender.com
If you hold cryptocurrency, there’s a very simple golden rule that you should always follow. Never hand over your seed phrase.Garrett Dutton, better known as G. Love – the front man of blues-hip-hop outfit G. Love & Special Sauce – has learnt that lesson the hard way.
Read more in my article on the Hot for Security blog.
https://www.bitdefender.com/en-us/blog/hotforsecurity/singer-loses-life-savings-fake-wallet - Mythos and Cybersecurity
Schneier on Security • 2026-04-17 04:02 • www.schneier.comLast week, Anthropic pulled back the curtain on Claude Mythos Preview, an AI model so capable at finding and exploiting software vulnerabilities that the company decided it was too dangerous to release to the public. Instead, access has been restricted to roughly 50 organizations—Microsoft, Apple, Amazon Web Services, CrowdStrike and other vendors…
https://www.schneier.com/blog/archives/2026/04/mythos-and-cybersecurity.html - Google Blocks 8.3B Policy-Violating Ads in 2025, Launches Android 17 Privacy Overhaul
The Hacker News • 2026-04-17 03:47 • thehackernews.com
Google this week announced a new set of Play policy updates to strengthen user privacy and protect businesses against fraud, even as it revealed it blocked or removed over 8.3 billion ads globally and suspended 24.9 million accounts in 2025.
The new policy updates relate to contact and location permissions in Android, allowing third-party apps to access the contact lists and a user’s location in
https://thehackernews.com/2026/04/google-blocks-83b-policy-violating-ads.html - CISA flags Apache ActiveMQ flaw as actively exploited in attacks
BleepingComputer • 2026-04-17 02:30 • www.bleepingcomputer.com
CISA warned that attackers are now exploiting a high-severity Apache ActiveMQ vulnerability, which was patched earlier this month after going undetected for 13 years. […]
https://www.bleepingcomputer.com/news/security/cisa-flags-apache-activemq-flaw-as-actively-exploited-in-attacks/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
