Breaking News – Cyber Threats (last 6h)
Generated: 2026-04-08 17:00 PDT
- Smashing Security podcast #462: LinkedIn is spying on you, and you agreed to nothing
Graham Cluley • 2026-04-08 16:27 • grahamcluley.com
LinkedIn has been secretly scanning your browser for over 6,000 installed extensions — on every single click you make. It can tell if you’re job hunting, what religion you are, and whether you have ADHD. And none of this is mentioned anywhere in their privacy policy.Meanwhile, California’s crypto millionaires are learning that no amount of encryption can protect you from someone who knocks on your door pretending to deliver a pizza.
All this and more in episode 462 of the “Smashing Security” podcast with cybersecurity expert and keynote speaker Graham Cluley, joined this week by special …
https://grahamcluley.com/smashing-security-podcast-462/ - Hackers use pixel-large SVG trick to hide credit card stealer
BleepingComputer • 2026-04-08 15:34 • www.bleepingcomputer.com
A massive campaign impacting nearly 100 online stores using the Magento e-commerce platform hides credit card-stealing code in a pixel-sized Scalable Vector Graphics (SVG) image. […]
https://www.bleepingcomputer.com/news/security/hackers-use-pixel-large-svg-trick-to-hide-credit-card-stealer/ - Google: New UNC6783 hackers steal corporate Zendesk support tickets
BleepingComputer • 2026-04-08 14:46 • www.bleepingcomputer.com
A threat actor tracked as UNC6783 is compromising business process outsourcing (BPO) providers to gain access to high-value companies across multiple sectors. […]
https://www.bleepingcomputer.com/news/security/google-new-unc6783-hackers-steal-corporate-zendesk-support-tickets/ - New macOS stealer campaign uses Script Editor in ClickFix attack
BleepingComputer • 2026-04-08 11:55 • www.bleepingcomputer.com
A new campaign delivering the Atomic Stealer malware to macOS users abuses the Script Editor in a variation of the ClickFix attack that tricked users into executing commands in Terminal. […]
https://www.bleepingcomputer.com/news/security/new-macos-stealer-campaign-uses-script-editor-in-clickfix-attack/ - CISA orders feds to patch exploited Ivanti EPMM flaw by Sunday
BleepingComputer • 2026-04-08 11:15 • www.bleepingcomputer.com
CISA has given U.S. government agencies four days to secure their systems against a critical-severity vulnerability in Ivanti Endpoint Manager Mobile (EPMM) that has been exploited in attacks since January. […]
https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-exploited-ivanti-epmm-flaw-by-sunday/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
