Breaking News – Cyber Threats (last 6h)
Generated: 2026-04-22 13:00 PDT
- Kyber ransomware gang toys with post-quantum encryption on Windows
BleepingComputer • 2026-04-22 11:52 • www.bleepingcomputer.com
A new Kyber ransomware operation is targeting Windows systems and VMware ESXi endpoints in recent attacks, with one variant implementing Kyber1024 post-quantum encryption. […]
https://www.bleepingcomputer.com/news/security/kyber-ransomware-gang-toys-with-post-quantum-encryption-on-windows/ - Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain
The Hacker News • 2026-04-22 10:55 • thehackernews.com
Cybersecurity researchers have warned of malicious images pushed to the official “checkmarx/kics” Docker Hub repository.
In an alert published today, software supply chain security company Socket revealed that unknown threat actors managed to have overwritten existing tags, including v2.1.20 and alpine, while also introducing a new v2.1.21 tag that does not correspond to an official release. The
https://thehackernews.com/2026/04/malicious-kics-docker-images-and-vs.html - Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens
The Hacker News • 2026-04-22 10:33 • thehackernews.com
Cybersecurity researchers have flagged a fresh set of packages that have been compromised by bad actors to deliver a self-propagating worm that spreads through stolen developer npm tokens.
The supply chain worm has been detected by both Socket and StepSecurity, with the companies tracking the activity under the name CanisterSprawl owing to the use of an ICP canister to exfiltrate the stolen data
https://thehackernews.com/2026/04/self-propagating-supply-chain-worm.html - Harvester Deploys Linux GoGra Backdoor in South Asia Using Microsoft Graph API
The Hacker News • 2026-04-22 08:28 • thehackernews.com
The threat actor known as Harvester has been attributed to a new Linux version of its GoGra backdoor deployed as part of attacks likely targeting entities in South Asia.
“The malware uses the legitimate Microsoft Graph API and Outlook mailboxes as a covert command-and-control (C2) channel, allowing it to bypass traditional perimeter network defenses,” the Symantec and Carbon Black Threat Hunter
https://thehackernews.com/2026/04/harvester-deploys-linux-gogra-backdoor.html - Spain dismantles major $4.7M manga piracy platform, arrests four
BleepingComputer • 2026-04-22 08:06 • www.bleepingcomputer.com
The Spanish police have dismantled the largest Spanish-language manga piracy platform, operating since 2014, with millions of monthly users from around the globe. […]
https://www.bleepingcomputer.com/news/security/spain-dismantles-major-47m-manga-piracy-platform-arrests-four/ - Inside Caller-as-a-Service Fraud: The Scam Economy Has a Hiring Process
BleepingComputer • 2026-04-22 07:01 • www.bleepingcomputer.com
Fraud operations now operate like call centers, complete with hiring, training, and performance tracking. Flare reveals how cybercriminals manage “Caller-as-a-Service” operations like a professional sales team. […]
https://www.bleepingcomputer.com/news/security/inside-caller-as-a-service-fraud-the-scam-economy-has-a-hiring-process/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
