The RapperBot botnet, operated by Ethan Foltz, has been disrupted as part of the broader international Operation PowerOFF, which has now identified over 75,000 DDoS-for-hire users and taken down 53 domains across 21 countries. The operation, supported by Europol, has arrested four individuals, dismantled illegal booter services, and is transitioning into a prevention phase to curb future misuse. RapperBot has been responsible for over 370,000 DDoS attacks on victims in over 80 countries since 2021, primarily targeting U.S. government systems, major media platforms, gaming companies, and large tech firms. The botnet, also known as Eleven Eleven Botnet and CowBot, infected DVRs and Wi-Fi routers to launch attacks and mine Monero. Foltz was charged with aiding and abetting computer intrusions, and the botnet’s command-and-control infrastructure was seized in August 2025. The botnet added a cryptomining module in 2023 and conducted attacks ranging from several terabits to over 1 billion packets per second, with the largest exceeding 6 Tbps. Operation PowerOFF’s latest actions build on prior phases that dismantled key infrastructure and seized databases with over 3 million criminal accounts.

A new operational technology (OT)-focused malware named ZionSiphon has been identified with capabilities to manipulate water treatment and desalination systems in Israel. The malware contains sabotage logic designed to increase chlorine levels to dangerous concentrations and adjust hydraulic pressures via a function named 'IncreaseChlorineLevel().' It also includes a flawed encryption-based validation mechanism that currently prevents execution, triggering a self-destruct routine instead. Targeting is confirmed by IP range checks and OT software detection, though an XOR-based logic error causes these checks to fail. The malware’s current iteration remains non-functional, but researchers warn that a minor fix could activate its destructive payload.

A proof-of-concept exploit for a previously undisclosed Microsoft Defender local privilege escalation (LPE) zero-day tracked as "RedSun" has been published, enabling SYSTEM-level access on fully patched Windows 10, Windows 11, and Windows Server systems with Defender enabled. The vulnerability leverages Defender’s cloud file handling behavior to overwrite critical system binaries via the Cloud Files API, exploiting a race condition in volume shadow copy operations and junction points to redirect file rewrites to an attacker-controlled executable in a protected system directory. The disclosure follows a second Microsoft Defender zero-day exploit ("BlueHammer", CVE-2026-33825) published by the same researcher within two weeks, both intended as protest against Microsoft’s handling of vulnerability disclosures with the MSRC.

A signed adware ecosystem from Dragon Boss Solutions LLC leveraging browsers like Chromstera and Artificius deployed SYSTEM-level antivirus-killing scripts via an abused Advanced Installer update mechanism across at least 23,500 hosts in 124 countries. The campaign’s malicious payload was pushed globally on March 22, 2025, using AI-assisted scripts to disable protections for ESET, McAfee, Kaspersky, and Malwarebytes while establishing persistence via scheduled tasks and Windows Defender exclusions. The primary update domain (chromsterabrowser[.]com) remained unregistered until researchers sinkholed it, exposing a latent risk where arbitrary payloads could have been delivered to already compromised systems. High-value targets included government entities, OT networks in energy/transport, 221 higher education institutions, 35 municipal governments, and Fortune 500 networks, with some infections dating back to 2022.

A pre-authenticated remote code execution (RCE) vulnerability in Marimo, tracked as CVE-2026-39987 (CVSS 9.3), was exploited in the wild within hours of public disclosure, enabling attackers to gain full PTY shells on exposed instances via the unauthenticated /terminal/ws WebSocket endpoint. The flaw, affecting Marimo versions prior to 0.23.0, initially led to rapid, human-driven exploitation campaigns focused on credential theft. Recent attacks have expanded to deploy a new NKAbuse malware variant hosted on Hugging Face Spaces, using typosquatted repositories to evade detection and establish persistent remote access. Additional exploitation activity includes sophisticated lateral movement, such as reverse-shell techniques and database enumeration, indicating a shift toward multi-stage attacks beyond initial credential harvesting. Threat actors validated the vulnerability within seconds, harvested credentials in under three minutes, and conducted reconnaissance from 125 IP addresses within the first 12 hours post-disclosure. GitHub assessed the flaw with a critical CVSS score of 9.3, and Marimo developers confirmed impact on instances deployed as editable notebooks or exposed via --host 0.0.0.0 in edit mode.

North Korean state actors continue to exploit fake employee schemes to infiltrate companies, particularly in blockchain and technology sectors, funneling stolen virtual currency and funds to North Korea's weapons program. The practice has escalated with remote work and AI, enabling fraudsters to impersonate employees and gain privileged access to company networks. Labyrinth Chollima, a prolific North Korean-linked cyber threat group, has evolved into three distinct hacking groups: Labyrinth Chollima (cyber espionage targeting industrial, logistics, and defense), Golden Chollima (smaller-scale cryptocurrency theft), and Pressure Chollima (high-value heists). Each group uses distinct toolsets derived from the same malware framework used by Labyrinth Chollima in the 2000s and 2011s. A joint investigation uncovered a network of remote IT workers tied to Lazarus Group's Famous Chollima division, with researchers capturing live activity of Lazarus operators on sandboxed laptops. The scheme, tracked as Jasper Sleet, PurpleDelta, and Wagemole, involves stealing or borrowing identities, using AI tools for interviews, and funneling salaries to the DPRK. Thousands of North Korean IT workers have infiltrated companies over the past two years, exploiting hiring processes and remote work environments. The U.S. Treasury has sanctioned individuals and entities involved, while Japan, South Korea, and the U.S. collaborate to combat the threat. Five U.S. citizens pleaded guilty to assisting North Korea's illicit revenue generation schemes, and two additional U.S. nationals, Kejia Wang and Zhenxing Wang, have now been sentenced to prison for operating a 'laptop farm' that facilitated the infiltration of over 100 companies, generating $5 million in illicit revenue and causing $3 million in damages to victim companies.

A widespread evasion technique involving deliberate APK malformation has been documented in more than 3,000 malicious Android samples spanning families such as Teabot, TrickMo, Godfather, and SpyNote. The technique manipulates APK structure (e.g., Local File Header vs Central Directory inconsistencies) to break static analysis pipelines while remaining installable and functional on Android devices. Static analysis tools including JADX crash or misinterpret malformed APKs, whereas the native Android installer tolerates inconsistencies, enabling malware to evade detection and complicate reverse engineering efforts.

Google has expanded the use of its Gemini AI models to detect and block malicious advertisements on its ad platforms, addressing a surge in sophisticated malvertising campaigns. In 2025, the company removed or blocked 8.3 billion ads and suspended 24.9 million advertiser accounts, including 602 million ads linked to scams. Threat actors are leveraging generative AI to scale deceptive advertising techniques, including cloaking, phishing, malware distribution, and cryptocurrency theft. These campaigns often impersonate legitimate services such as Google Authenticator and Homebrew, or pose as cryptocurrency platforms to drain wallets. Google’s AI-driven detection now analyzes advertiser behavior, campaign patterns, and intent in real time, enabling instant review and blocking of harmful content at submission.

Cookeville Regional Medical Center (CRMC) in Tennessee confirmed that more than 337,917 patients were notified in April 2026 of a July 2025 ransomware attack conducted by the Rhysida group, a Russia-linked ransomware-as-a-service operation active since May 2023. The intrusion, detected internally in mid-July 2025, resulted in the theft of sensitive data including names, addresses, dates of birth, Social Security numbers, driver’s license numbers, financial account details, medical records, and health insurance information. Rhysida claimed responsibility on August 2, 2025, demanding 10 Bitcoin (~$1.15 million at the time) before publishing the dataset publicly after failing to secure a buyer. CRMC has begun mailing breach notifications and is offering 12 months of free identity theft protection through Experian. The incident ranks as the eighth-largest US healthcare ransomware breach of 2025 by records compromised, amid a broader wave of Rhysida attacks targeting healthcare providers nationwide.

A cybercrime platform named ATHR is being sold on underground forums for $4,000 plus a 10% profit commission to conduct fully automated telephone-oriented attack delivery (TOAD) campaigns that combine email lures with AI voice agents to harvest credentials for Google, Microsoft, Coinbase, Binance, Gemini, Crypto.com, Yahoo, and AOL accounts. The platform automates the entire attack chain from targeted email delivery through social engineering to credential theft, routing victims via Asterisk and WebRTC to AI agents that mimic support staff during fraudulent account recovery workflows designed to extract six-digit verification codes. Attackers can optionally escalate calls to human operators, but the AI agent capability enables low-skill threat actors to execute sophisticated vishing campaigns without specialized infrastructure or large teams, significantly lowering the barrier to entry for large-scale credential harvesting operations.

Security operations centers (SOCs) increasingly adopt AI systems marketed as "AI SOCs" but most implementations primarily accelerate alert triage rather than automate end-to-end incident handling. Production deployments reveal that while AI enhances alert summarization, enrichment, and next-step suggestions, it does not address the core operational challenges of fragmented workflows, manual coordination across tools, and the need for consistent execution across identity, endpoint, and cloud systems. Teams achieving measurable impact integrate AI into automated end-to-end workflows that gather cross-tool context, apply consistent logic, trigger actions across systems, and involve humans only for judgment-based decisions, shifting focus from reactive triage to proactive security outcomes.

NIST’s National Vulnerability Database (NVD) will implement a risk-based triage model for CVE enrichment due to unsustainable growth in vulnerability disclosures, marking a strategic shift in how prioritization and processing are conducted. Effective immediately, NVD analysts will deprioritize enrichment for vulnerabilities reported prior to March 1, 2026, while focusing on vulnerabilities impacting U.S. federal government software, critical software per Executive Order 14028, and entries listed in CISA’s Known Exploited Vulnerabilities (KEV) catalog. All submitted CVEs will still be cataloged but labeled as “Not Scheduled” if they do not meet enrichment criteria. The decision follows a 263% increase in CVE submissions from 2020 to 2025 and continued acceleration in 2026, with forecasts projecting up to 70,135 CVEs by year-end. This operational pivot aims to focus limited resources on vulnerabilities most likely to pose immediate risk to critical infrastructure and federal systems.

Cisco has released patches addressing four critical vulnerabilities (CVSS 9.8–9.9) in Identity Services Engine (ISE) and Webex Services. The flaws include improper certificate validation in Webex SSO integration (CVE-2026-20184) enabling unauthenticated remote attackers to impersonate any user and gain unauthorized access to Webex services, and insufficient input validation in ISE (CVE-2026-20147, CVE-2026-20180, CVE-2026-20186) allowing authenticated remote code execution and command injection with potential root access. CVE-2026-20184 requires customer action—uploading a new SAML certificate for the identity provider (IdP) to Control Hub—to avoid service interruption. Successful exploitation of ISE vulnerabilities could render single-node ISE deployments unavailable, causing a denial of service. As of publication, Cisco PSIRT has no evidence of active exploitation in attacks.

McGraw-Hill confirmed a data breach affecting 13.5 million user accounts after ShinyHunters exploited a Salesforce environment misconfiguration to steal and leak non-sensitive data, including names, addresses, phone numbers, and email addresses. The company stated the breach did not impact its core Salesforce accounts, customer databases, courseware, or internal systems, though ShinyHunters claimed possession of 45 million records with PII. The affected webpages were secured promptly, and McGraw-Hill is collaborating with Salesforce to remediate the issue. Have I Been Pwned verified the leak of over 100GB of data tied to 13.5 million accounts.

A tracked redirect chain from Taboola’s sync endpoint to Temu’s tracking infrastructure was observed executing on logged-in banking pages across a European financial platform in February 2026. The chain leveraged a 302 redirect and CORS credentials header to enable cross-origin cookie access, allowing Temu to associate authenticated session behavior with tracking identifiers without explicit user consent or bank knowledge. Conventional security controls including WAFs, static analyzers, and CSP allow-lists failed to detect the outbound runtime behavior due to reliance on declared origins rather than terminal destinations.

A critical architectural vulnerability in Anthropic’s Model Context Protocol (MCP) SDKs enables arbitrary command execution across systems using the protocol, exposing sensitive data, internal databases, API keys, and chat histories. The flaw stems from unchecked command execution in MCP’s STDIO interface, where commands execute regardless of process success, and affects all supported SDK languages (Python, TypeScript, Java, Rust). Over 200 open source projects, 150 million downloads, 7,000+ publicly accessible MCP servers, and up to 200,000 vulnerable instances are potentially impacted. Anthropic has declined to patch the flaw, asserting it is expected behavior and shifting responsibility to developers for sanitization. The vulnerability allows complete system takeover, creating significant risks across the AI supply chain.

Ransomware now represents 44% of all cyberattacks against global automotive manufacturers in 2025, more than doubling compared to previous years, driven by the sector’s rapid adoption of connected technologies, cloud services, and interconnected third-party supply chains. The industry’s low tolerance for operational downtime and reliance on privileged supplier access have elevated attack opportunities, with incidents spanning OEMs, suppliers, and connected vehicle platforms. High-profile impacts include a five-week production outage at Jaguar Land Rover (JLR) in 2024, costing approximately £108 million per week and generating £1.9 billion in macroeconomic losses. Attackers increasingly exploit expanded corporate attack surfaces including connected vehicle systems, OTA update mechanisms, and cloud environments, while targeting smaller suppliers with weaker security postures that often have privileged access to OEM networks.

Microsoft has confirmed that the April 2026 KB5082063 security update for Windows Server 2025 is causing two distinct issues: BitLocker recovery prompts on first reboot for systems with PCR7-bound Group Policy configurations, and installation failures marked by 0x800F0983 errors on some devices. Both issues primarily impact enterprise-managed systems and require administrative intervention—either key entry for BitLocker recovery or troubleshooting update installation. Microsoft is investigating both problems and has provided temporary workarounds, including Known Issue Rollback (KIR) for BitLocker recovery and diagnostic reviews for update installation failures. Home users are unlikely to be affected by either issue.

A sustained ransomware campaign operating since at least 2020 has targeted Turkish individuals and small-to-medium businesses (SMBs) with low-dollar demands between $200 and $400 per victim. The operation uses a phishing email leading to a cloud-hosted Java archive containing a modified Adwind RAT variant, which establishes persistence, disables defenses, and drops a ransomware module named JanaWare. Geofencing ensures execution only on systems with Turkish language settings, minimizing collateral exposure. The campaign’s high-volume, low-value approach exploits weaker defenses in SMBs and individuals, enabling steady revenue while evading broader detection and response efforts.

CVE-2026-33032 in nginx-ui (CVSS 9.8) remains a critical, actively exploited authentication bypass flaw affecting over 2,600 internet-accessible instances and 430,000 Docker pulls. Researchers disclosed the flaw to nginx-ui developers in March 2026, with a patch released in version 2.3.4 within one day. The vulnerability stems from the unprotected MCP-enabled '/mcp_message' endpoint, enabling unauthenticated attackers to execute privileged MCP tools and fully compromise nginx servers. Exploitation requires establishing an SSE connection, opening an MCP session, and using the returned sessionID to send unauthenticated requests. Recorded Future's CVE Landscape report confirms active exploitation, while geographic analysis shows vulnerable instances predominantly located in China, the United States, Indonesia, Germany, and Hong Kong. Technical details and proof-of-concept exploits are publicly available, exacerbating the risk of widespread abuse.

A backdoor implanted in over 30 WordPress plugins distributed as part of the EssentialPlugin suite allowed attackers to push malware to websites running affected plugins. The compromise originated from a malicious code injection introduced after the project’s acquisition in August 2025, which remained dormant until recently activated via updates. The malware injected malicious code into wp-config.php and generated spam pages or redirects visible only to search engine crawlers such as Googlebot. The attack leveraged a command-and-control (C2) server using Ethereum-based address resolution for evasion. WordPress.org responded by forcibly removing the plugins and issuing updates to neutralize the backdoor’s communication channels.

Microsoft awarded $2.3 million to security researchers following the 2026 Zero Day Quest hacking contest, where over 80 high-impact cloud and AI security vulnerabilities were identified. The event, held at Microsoft’s Redmond campus, engaged researchers from 20+ countries, including students and academics, who tested within authorized environments to identify critical flaws such as credential exposure, SSRF chains, and cross-tenant access risks. No customer data or tenant systems were accessed during testing. The total payout marks a significant investment in Microsoft’s Secure Future Initiative (SFI), aimed at improving Cloud and AI security by integrating findings across its engineering practices.

The European Union Agency for Cybersecurity (ENISA) is undergoing onboarding to achieve top-level root Common Vulnerabilities and Exposures (CVE) Numbering Authority (TL-Root CNA) status, as announced by Nuno Rodrigues Carvalho, Head of Sector for Incidents and Vulnerability Services at ENISA, during VulnCon26 in Scottsdale, Arizona on April 14, 2026. If granted, ENISA will join CISA and MITRE as the third TL-Root CNA, enabling it to manage the CVE Program alongside them, including global policy setting, consistency enforcement across Root CNAs and CNAs, and representation in the program’s Board. ENISA aims to achieve this status by 2026 or early 2027.

A Windows Task Host privilege escalation vulnerability (CVE-2025-60710) is being actively exploited by attackers to gain SYSTEM privileges on Windows 11 and Windows Server 2025 systems. The vulnerability, stemming from a link following weakness in the Host Process for Windows Tasks, allows local attackers with basic user permissions to escalate privileges through low-complexity attacks. Microsoft patched the flaw in November 2025, but exploitation has now been confirmed in the wild. CISA has mandated Federal Civilian Executive Branch agencies to remediate within two weeks under BOD 22-01.

A signed adware operation attributed to Dragon Boss Solutions LLC disabled antivirus and endpoint security products on more than 23,000 hosts across 124 countries by deploying a PowerShell-based payload (ClockRemoval.ps1) that terminated processes, uninstalled security tools, and blocked reinstallation. The campaign abused a legitimate code-signing certificate and an update mechanism to deliver MSI-based payloads, leveraging SYSTEM privileges, WMI event subscriptions, and scheduled tasks to maintain persistence and evade detection. High-value targets included 221 universities, 41 operational technology networks, 35 government entities, and three healthcare organizations.

North American transportation logistics faces escalating cyber-enabled cargo theft targeting high-value freight, with attackers exploiting GPS spoofing, fraudulent broker identities, and stolen credentials to divert shipments. Large trucking fleets operate as interconnected networks with vulnerable telematics, onboard systems, and enterprise infrastructure, creating multiple attack surfaces. Cybercriminals weaponize operational and cybersecurity weaknesses to impersonate legitimate brokers, manipulate GPS tracking, and coerce unwitting drivers into facilitating theft. The financial impact of cargo crime exceeds $725 million in reported losses for 2025 alone, with high-value goods such as specialty alcohol targeted for diversion and resale on black markets or counterfeit retail platforms.

CISA’s Chief of the Vulnerability Response & Coordination (VRC) Branch, Lindsey Cerkovnik, emphasized the need for AI companies such as OpenAI and Anthropic to play a more formal role in the Common Vulnerabilities and Exposures (CVE) program during VulnCon26. The call follows rapid growth in vulnerability disclosures, with 2026 projections ranging from 50,000 to 70,135 CVEs—a 45.6% increase from 2025—driven in part by AI-driven discovery tools. New AI models like Anthropic’s Claude Mythos Preview and OpenAI’s GPT-5.4-Cyber have demonstrated capabilities to autonomously identify critical zero-day vulnerabilities, including a 27-year-old flaw in OpenBSD and a 16-year-old flaw in FFmpeg, as well as chains of vulnerabilities in the Linux kernel enabling privilege escalation. CISA’s push aligns with a broader diversification strategy for the CVE program, including the establishment of new working groups and a goal to expand the roster of CVE Numbering Authorities (CNAs).

The U.S. Congress is preparing to reauthorize Section 702 of the Foreign Intelligence Surveillance Act (FISA), a warrantless surveillance program that allows intelligence agencies to collect and analyze communications of non-U.S. persons abroad, with incidental collection of Americans' communications. The program’s authority expires on Monday, prompting bipartisan debate over warrant requirements for accessing Americans’ data, limitations on government use of commercial data brokers, and broader civil liberties implications. President Donald Trump has endorsed an 18-month extension despite past criticism of the program and its potential misuse for political surveillance, citing national security benefits in recent operations in Venezuela and Iran. Critics argue the program constitutes a persistent infringement on privacy rights and civil liberties, particularly due to the incidental capture of Americans’ communications without warrants. Supporters emphasize its critical role in preventing terrorist attacks and protecting national security, though questions persist about transparency, oversight, and the adequacy of recent reforms.

Microsoft has resolved a previously reported bug that caused systems running Windows Server 2019 and 2022 to automatically upgrade to Windows Server 2025 without explicit user action or licensing. The issue, first acknowledged in September 2024, led to unexpected overnight upgrades across multiple enterprise environments, prompting investigations into the root cause and mitigation steps. Microsoft attributed the problem to misconfigured third-party update management tools, though affected vendors disputed this and cited procedural errors on Microsoft’s side. The bug’s resolution restores the intended upgrade workflow via Windows Update settings, allowing administrators to control upgrade eligibility and timing. The fix follows a prolonged period of disruption and reactive out-of-band patches addressing related installation failures and authentication issues.

A significant increase in brute-force attacks aimed at SonicWall and Fortinet internet-facing VPN and firewall appliances has been observed, with 88% of detected attempts originating from infrastructure in the Middle East. The majority of these attacks were unsuccessful due to blocking by security tools or targeting invalid usernames, though persistent probing heightens the risk of eventual compromise through weak credentials or misconfigurations. Timing suggests possible correlation with regional geopolitical tensions, including US and Israeli actions against Iran.