soc

soc

OSINT Tools for Cybersecurity: A Practical Guide for Security Teams

von SOCRadar • 24.04.2026

OSINT Tools for Cybersecurity: A Practical Guide for Security Teams Attackers are already running open source intelligence operations against your organization. They are mapping your exposed infrastructure, harvesting employee credentials from breach databases, and identifying unpatched systems, all before writing a single line of exploit code. The question is whether your security team is doing […]

Mehr lesen →

security

Why Cybersecurity Must Rethink Defense in the Age of Autonomous Agents

von SecurityWeek • 24.04.2026

From autonomous code generation to decision-making systems that initiate actions without human intervention, the industry is entering a new phase. The post Why Cybersecurity Must Rethink Defense in the Age of Autonomous Agents appeared first on SecurityWeek.

Mehr lesen →

security

Locked Shields 2026: 41 Nations Strengthen Cyber Resilience in World’s Biggest Exercise

von SecurityWeek • 24.04.2026

Locked Shields has grown significantly over the past 16 years, with only four nations participating in the first edition. The post Locked Shields 2026: 41 Nations Strengthen Cyber Resilience in World’s Biggest Exercise appeared first on SecurityWeek.

Mehr lesen →

soc

Bitwarden CLI Hijacked in npm Supply Chain Attack Linked to TeamPCP & Checkmarx Breach

von SOCRadar • 24.04.2026

Bitwarden CLI Hijacked in npm Supply Chain Attack Linked to TeamPCP & Checkmarx Breach A malicious version of the Bitwarden CLI circulated on npm for roughly 90 minutes on April 22, 2026, silently stealing developer credentials, cloud secrets, and CI/CD tokens before exfiltrating them through encrypted channels. The attack is part of a broader wave […]

Mehr lesen →

security

CISA Adds Four Known Exploited Vulnerabilities to Catalog

von CISA Current Activity • 24.04.2026

CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2024-7399 Samsung MagicINFO 9 Server Path Traversal Vulnerability CVE-2024-57726 SimpleHelp Missing Authorization Vulnerability CVE-2024-57728 SimpleHelp Path Traversal Vulnerability CVE-2025-29635 D-Link DIR-823X Command Injection Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Binding Operational Directive (BOD) 22-01: […]

Mehr lesen →

security

US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor

von SecurityWeek • 24.04.2026

The malware provides remote access and control of infected devices and maintains post-patching persistence. The post US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor appeared first on SecurityWeek.

Mehr lesen →

security

Trump Administration Vows Crackdown on Chinese Companies ‘Exploiting’ AI Models Made in US

von SecurityWeek • 24.04.2026

The Trump administration is vowing to crack down on foreign tech companies’ exploitation of U.S. artificial intelligence models. The post Trump Administration Vows Crackdown on Chinese Companies ‘Exploiting’ AI Models Made in US appeared first on SecurityWeek.

Mehr lesen →

security

Vulnerabilities Patched in CrowdStrike, Tenable Products

von SecurityWeek • 24.04.2026

CrowdStrike has fixed a critical LogScale vulnerability, while Tenable addressed a high-severity Nessus flaw. The post Vulnerabilities Patched in CrowdStrike, Tenable Products appeared first on SecurityWeek.

Mehr lesen →

security

Bitwarden NPM Package Hit in Supply Chain Attack

von SecurityWeek • 24.04.2026

Tied to a fresh Checkmarx supply chain attack claimed by TeamPCP, the incident references the Shai-Hulud worm. The post Bitwarden NPM Package Hit in Supply Chain Attack appeared first on SecurityWeek.

Mehr lesen →

security

Copperhelm Raises $7 Million for Agentic Cloud Security Platform

von SecurityWeek • 24.04.2026

The Israel-based company, which just emerged from stealth mode, was founded by cloud and security experts from RSA, McAfee, and Unity. The post Copperhelm Raises $7 Million for Agentic Cloud Security Platform appeared first on SecurityWeek.

Mehr lesen →

📅 Kalender