security

security

New Wiper Malware Targeted Venezuelan Energy Sector Prior to US Intervention

von SecurityWeek • 22.04.2026

Dubbed Lotus Wiper, the malware targets recovery mechanisms, overwrites drives, and systematically deletes files. The post New Wiper Malware Targeted Venezuelan Energy Sector Prior to US Intervention appeared first on SecurityWeek.

Mehr lesen →

security

Datenübermittlung in die USA ist rechtmäßig

von Security Insider • 22.04.2026

Ein Nutzer wehrt sich dagegen, dass seine Facebook- und Instagram-Daten in die USA fließen und klagt. Wie das Gericht die Lage beurteilt und welche Rolle ein EU-Beschluss dabei spielt.

Mehr lesen →

security

CISA Adds One Known Exploited Vulnerability to Catalog

von CISA Current Activity • 22.04.2026

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-33825 Microsoft Defender Insufficient Granularity of Access Control Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise. Binding Operational Directive (BOD) 22-01: Reducing […]

Mehr lesen →

security

Datenleck bei Parfümeriekette Rituals

von Heise Security • 22.04.2026

Die Parfümeriekette Rituals informiert Kunden derzeit in E-Mails über den Abfluss von Mitgliederdaten an Unbefugte.

Mehr lesen →

security

Mirai Botnet Targets Flaw in Discontinued D-Link Routers

von SecurityWeek • 22.04.2026

The exploitation of the command injection vulnerability started one year after public disclosure and PoC exploit code publication. The post Mirai Botnet Targets Flaw in Discontinued D-Link Routers appeared first on SecurityWeek.

Mehr lesen →

soc

DetectFlow: Deploying Detections at Scale Without the Engineering Overhead

von SOC Prime • 22.04.2026

The Problem: Achieving Threat Detections at Scale At SOC Prime, we have spent over a decade making detection engineering easier for organizations of every size. Each year, as threats multiply and environments grow more complex, the traditional approach puts SOC Managers in an impossible position — responsible for coverage they cannot achieve with the tools […]

Mehr lesen →

security

Are SBOMs Failing? Supply Chain Attacks Rise as Security Teams Struggle With SBOM Data

von SecurityWeek • 22.04.2026

Researcher says the missing piece is a governance-driven intelligence layer that turns SBOM and VEX data into explainable security decisions. The post Are SBOMs Failing? Supply Chain Attacks Rise as Security Teams Struggle With SBOM Data appeared first on SecurityWeek.

Mehr lesen →

security

Claude Mythos Finds 271 Firefox Vulnerabilities

von SecurityWeek • 22.04.2026

All the flaws could have also been found by an elite human researcher, according to Mozilla. The post Claude Mythos Finds 271 Firefox Vulnerabilities appeared first on SecurityWeek.

Mehr lesen →

security

North Korean Hackers Use AppleScript, ClickFix in Fresh macOS Attacks

von SecurityWeek • 22.04.2026

The campaigns focus on financial organizations, including cryptocurrency, venture capital, and blockchain entities. The post North Korean Hackers Use AppleScript, ClickFix in Fresh macOS Attacks appeared first on SecurityWeek.

Mehr lesen →

security

IT-Vorfall bei Anodot: Modekette Zara betroffen

von Heise Security • 22.04.2026

Die Cybergang ShinyHunters ist kürzlich bei Anodot eingebrochen. Dabei hat sie auch Daten der Modekette Zara abgegriffen.

Mehr lesen →

📅 Kalender