Breaking News – Cyber Threats (last 6h)
Generated: 2026-04-21 03:00 PDT
- NGate Android malware uses HandyPay NFC app to steal card data
BleepingComputer • 2026-04-21 02:00 • www.bleepingcomputer.com
A new variant of the NGate malware that steals NFC payment data is targeting Android users by hiding in a trojanized version of HandyPay, a legitimate mobile payments processing tool. […]
https://www.bleepingcomputer.com/news/security/ngate-android-malware-uses-handypay-nfc-app-to-steal-card-data/ - A .WAV With A Payload, (Tue, Apr 21st)
SANS ISC Diary (full) • 2026-04-21 00:14 • isc.sans.eduThere have been reports of threat actors using a .wav file as a vector for malware.
- 173: Tarjeteros
Darknet Diaries • 2026-04-21 00:00 • darknetdiaries.comIn the streets of the Dominican Republic, a new economy thrives in the shadows. It’s built not on tourism or sugar, but on stolen data. They call them tarjeteros. And they are making a lot of money from stolen credit cards. This is a story about one group of tarjeteros who came to the US, and let loose on New York city.
Sponsors
Support for this show comes from ThreatLocker®. ThreatLocker® is a Zero Trust Endpoint Protection Platform that strengthens your infrastructure from the ground up. With ThreatLocker® Allow…
https://darknetdiaries.com/episode/173/ - CISA Adds 8 Exploited Flaws to KEV, Sets April-May 2026 Federal Deadlines
The Hacker News • 2026-04-20 23:23 • thehackernews.com
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added eight new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, including three flaws impacting Cisco Catalyst SD-WAN Manager, citing evidence of active exploitation.
The list of vulnerabilities is as follows –CVE-2023-27351 (CVSS score: 8.2) – An improper authentication vulnerability in PaperCut
https://thehackernews.com/2026/04/cisa-adds-8-exploited-flaws-to-kev-sets.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
