April 2026

, ,

Vulnerability in LEX Baza Dokumentów software

Cross-site Scripting vulnerability (CVE-2026-1493) has been found in LEX Baza Dokumentów software. Introduction to Malware Binary Triage (...

Sp123 30 Apr, 2026
, ,

The New Partner-Vendor Relationship

Part 4 of 6: Aligning co-marketing for conversion Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Ge...

Sp123 30 Apr, 2026
, ,

Fusion Fireside #18: How Fraud Fuels Human Trafficking with Neil Giles

Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any fl...

Sp123 30 Apr, 2026
, ,

How the Booking Phishing Campaign Works and What Defenders Should Watch For

The phishing attack begins with a persuasive cancellation email from Booking.com that features recognizable branding and reassuring language...

Sp123 30 Apr, 2026
, ,

GitHub e GitHub Enterprise Server: vulnerabilità RCE CVE-2026-3854

GitHub ha risolto una vulnerabilità critica, catalogata come CVE-2026-3854, che interessa sia l’infrastruttura cloud sia le installazioni on...

Sp123 29 Apr, 2026
, ,

US Law Enforcement Agencies Aim at Romance Scam Centers in Southeast Asia

In an effort to protect Americans from online romance scams and other forms of cyber fraud, the US government has imposed sanctions on ten...

Sp123 29 Apr, 2026
, ,

Q1 2026 Cyber Attack Statistics

I aggregated the statistics created from the cyber attacks timelines published in the first quarter of 2026. In this period, I collected a t...

Sp123 28 Apr, 2026
, ,

Chinese engineer stole US military and NASA software for years

International espionage isn’t always about sophisticated malware and zero-day bugs. Sometimes it’s as simple as pretending to be someone els...

Sp123 28 Apr, 2026
, ,

New 2026 ‘IOCTA’ highlights sophisticated tactics and emerging challenges in the digital landscape

Europol today published the new edition of the Internet Organised Crime Threat Assessment (IOCTA) 2026, providing an in-depth analysis of th...

Sp123 28 Apr, 2026
, ,

European Risks Linked to the U.S. – Iran Conflict

European policy appears to focus on securing a role for Europe in maintaining the peace after a peace agreement is signed, including support...

Sp123 28 Apr, 2026
, ,

BlueNoroff Uses ClickFix, Fileless PowerShell, and AI-Generated Fake Zoom Meetings to Target Web3 Sector

Executive Summary Arctic Wolf has identified a targeted intrusion against a North American Web3/cryptocurrency company, which we attribute w...

Sp123 27 Apr, 2026
, ,

The EU Digital Wallet: Why Waiting is Not an Option

Why decentralized identity will change authentication and trust across Europe Introduction to Malware Binary Triage (IMBT) Course Looking...

Sp123 27 Apr, 2026
, ,

My impression of Botconf 2026

For the 2026 edition of Botconf, and the 13th edition overall, we found ourselves in Reims. From the 14th through the 17th of April, nearly ...

Sp123 27 Apr, 2026
, ,

A week in security (April 20 – April 26)

Last week on Malwarebytes Labs: Medical data of 500,000 UK volunteers listed for sale on Alibaba How cyberattacks on companies affect eve...

Sp123 27 Apr, 2026
, ,

KR: Data of 100,000 leaked from Lee & Lee Country golf club; N. Korean hacking suspected

Oh Seok-min reports: Personal information of around 100,000 customers has been leaked from a golf course, prompting a police investigation, ...

Sp123 26 Apr, 2026
, ,

TH: Hacker steals personal data of 350,000 engineers

The Bangkok Post reports: The Council of Engineers Thailand has warned about 350,000 members their personal data was stolen when its databas...

Sp123 26 Apr, 2026
, ,

김수키(Kimsuky) 전문의약품 제약 회사를 노리는 악성코드-화이트 생명과학 ERP 사양서

오늘은 북한 해킹 조직 김수키(Kimsuky)에서는 만든 전문의약품 제약 회사를 노리는 악성코드-화이트 생명과학 ERP 사양서 에 대해서 알아보겠습니다.일단 ERP 사양서는 회사의 업무를 컴퓨터 프로그램으로 옮기려고 누가, 언제,&n… In...

Sp123 26 Apr, 2026
, ,

Prompt Injection leads to RCE and Sandbox Escape in Antigravity

Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any fla...

Sp123 26 Apr, 2026
, ,

Korean matchmaking service Duo fined over £600,000 over sensitive data leak from Infostealer infection

Original report – https://ift.tt/okPRtKE Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off...

Sp123 26 Apr, 2026
, ,

Introducing Proactive Hardening and Attack Surface Reduction (PHASR) for Linux and macOS

Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any fl...

Sp123 26 Apr, 2026
, ,

Child sexual exploitation: 12 children identified during Europol’s Victim Identification Taskforce

From 13 to 24 April 2026, 34 specialists in victim identification from Europol, INTERPOL and 31 countries worldwide gathered at Europol’s he...

Sp123 24 Apr, 2026
, ,

PhantomRPC: A new privilege escalation technique in Windows RPC

Intro Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for...

Sp123 24 Apr, 2026
, ,

Credential stuffing tools and how to stop them

Credential stuffing is one of the most common ways attackers get into online accounts because it exploits a familiar human habit: password ...

Sp123 24 Apr, 2026