Archiv für April 2026

📄
soc

Pro-Iran Cyberattacks on Financial Services: 144 Incidents

von SOCRadar

Pro-Iran Cyberattacks on Financial Services: 144 Incidents Financial services is the #2 most targeted sector in the entire campaign, and for reasons that are deliberate, documented, and rooted in more than a decade of Iranian cyber doctrine. Between February 28 and April 6, 2026, SOCRadar tracked 1,583 verified incidents across Operation Epic Fury. Of those, […]

Mehr lesen →
📄
security

CISA Adds One Known Exploited Vulnerability to Catalog

von CISA Current Activity

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-35616 – Fortinet FortiClient EMS Improper Access Control Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise. Binding Operational Directive (BOD) 22-01: Reducing […]

Mehr lesen →
📄
security

Iranian-Affiliated Cyber Actors Exploit Programmable Logic Controllers Across US Critical Infrastructure

von CISA Alerts

Advisory at a Glance Title Iranian-Affiliated Cyber Actors Exploit Programmable Logic Controllers Across US Critical Infrastructure Original Publication April 7, 2026 Executive Summary Iran-affiliated advanced persistent threat (APT) actors are conducting exploitation activity targeting internet-facing operational technology (OT) devices, including programmable logic controllers (PLCs) manufactured by Rockwell Automation/Allen-Bradley. This activity has led to PLC disruptions […]

Mehr lesen →
📄
soc

CVE-2026-35616: FortiClient EMS API Auth Bypass Enables Command Execution

von SOCRadar

CVE-2026-35616: FortiClient EMS API Auth Bypass Enables Command Execution Fortinet disclosed a critical vulnerability in Fortinet FortiClient EMS (Enterprise Management Server) tracked as CVE-2026-35616. Fortinet also says it has observed in-the-wild exploitation and released out-of-band hotfix guidance for affected builds. This post breaks down what CVE-2026-Adresse geschuetzt, who is affected, and what defenders should do […]

Mehr lesen →
📄
security

Salt Typhoon: Systematischer und verdeckter Angriff

von Security Insider

Eine Analyse von Darktrace zeigt, wie die APT-Gruppe Salt Typhoon mit Zero-Day-Exploits, DLL-Sideloading und verschleierter Kommunikation westliche Netze unterwandert. Der Fall verdeutlicht, warum klassische Abwehrmechanismen an ihre Grenzen stoßen.

Mehr lesen →
📄
gaming

Schöpfer von Resident Evil tut sich mit Stellar-Blade-Studio zusammen, um ein neues Horrorspiel zu entwickeln

von GameStar Videos

Shinji Mikami, Erfinder von Resident Evil, gründete 2023 ein neues Studio namens Unbound, das jetzt Teil des südkoreanischen Entwicklerstudios Shift Up ist. In dem Ankündigungsvideo der beiden Partner wird bereits angedeutet, was wir von dem ersten gemeinsamen Spiel erwarten könnten: jede Menge Monster. Hinter Shift Up steckt das Studio von Kim Hyung Tae, das bereits Spiele wie Goddess […]

Mehr lesen →