12 News Items
HN · BleepingComputer · Krebs · Dark Reading · SANS · THN Intel · Unit 42 · Security.com
HN · BleepingComputer · Krebs · Dark Reading · SANS · THN Intel · Unit 42 · Security.com
📰 Cybersecurity News Headlines
Top stories from leading cybersecurity publications as of April 10, 2026.
-
New ‘LucidRook’ malware used in targeted attacks on NGOs, universities
— Bleeping Computer
A new Lua-based malware, called LucidRook, is being used in spear-phishing campaigns targeting non-governmental organizations and universiti… -
New VENOM phishing attacks steal senior executives' Microsoft logins
— Bleeping Computer
Threat actors using a previously undocumented phishing-as-a-service (PhaaS) platform called "VENOM" are targeting credentials of C-suite exe… -
Russia's 'Fancy Bear' APT Continues Its Global Onslaught
— Dark Reading
Victims don't need to match the cybercrime group's technical sophistication, experts say. But patching and some form of zero trust are now n… -
'BlueHammer' Windows Zero-Day Exploit Signals Microsoft Bug Disclosure Issues
— Dark Reading
Under the alias 'Chaotic Eclipse,' a researcher released a PoC exploit for a zero-day flaw that allows for system takeover by a local user, … -
Healthcare IT solutions provider ChipSoft hit by ransomware attack
— Bleeping Computer
Dutch healthcare software vendor ChipSoft has been impacted by a ransomware attack that forced the company to take offline its website and d… -
Do Ceasefires Slow Cyberattacks? History Suggests Not
— Dark Reading
The cybersecurity community is waiting with bated breath to see if Iranian hackers will honor a ceasefire that doesn't actually name or dire… -
EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallets
— The Hacker News
-
UAT-10362 Targets Taiwanese NGOs with LucidRook Malware in Spear-Phishing Campaigns
— The Hacker News
A previously undocumented threat cluster dubbed UAT-10362 has been attributed to spear-phishing campaigns targeting Taiwanese non-governmen… -
ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories
— The Hacker News
Thursday. Another week, another batch of things that probably should've been caught sooner but weren't. This one's got some range — old … -
ISC Stormcast For Thursday, April 9th, 2026 https://isc.sans.edu/podcastdetail/9886, (Thu, Apr 9th)
— SANS ISC
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. -
Number Usage in Passwords: Take Two, (Thu, Apr 9th)
— SANS ISC
In a previous diary [1], we looked to see how numbers were used within passwords submitted to honeypots. One of the items of interest was ho… -
Cracks in the Bedrock: Agent God Mode
— Unit 42
Unit 42 reveals "Agent God Mode" in Amazon Bedrock AgentCore. Broad IAM permissions lead to privilege escalation and data exfiltration risks…
Generated by CryptXNet.ai Threat Intelligence Platform · April 10, 2026 · Sources: The Hacker News, Bleeping Computer, Krebs on Security, Dark Reading, SANS ISC, THN Threat Intel, Unit 42, Security.com