AttackFeed by Joe Wagner

AttackFeed by Joe Wagner https://validator.w3.org/feed/docs/rss2.html Triad Nexus Expands Global Fraud Operations Despite US Sanctions – NIST narrows scope of CVE analysis to keep up with rising tide of vulnerabilities – CyberScoop Fake Ledger Live App on Apple Store Linked to $9.5M Crypto Theft – Hackread – Cybersecurity News, Data Breaches, AI and More Executive orders likely ahead in next steps for national cyber strategy – CyberScoop n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails – The Hacker News OpenAI Unveils GPT-5.4-Cyber for Improving Cyber Defense With AI – Malicious Chrome Extensions Campaign Exposes User Data – Signed Adware Operation Disables Antivirus Across 23,000 Hosts – European Cybersecurity Agency ENISA Seeks Top-Tier Status in CVE Program – OpenAI expands Trusted Access for Cyber program with new GPT 5.4 Cyber model – CyberScoop Critical Nginx-ui MCP Flaw Actively Exploited in the Wild – ShinyHunters Leak Rockstar Games Data, No Player Records Impacted – Hackread – Cybersecurity News, Data Breaches, AI and More April Patch Tuesday Fixes Critical Flaws Across SAP, Adobe, Microsoft, Fortinet, and More – The Hacker News Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover – The Hacker News Deterministic + Agentic AI: The Architecture Exposure Validation Requires – The Hacker News Retaining defensive advantage in the age of frontier AI cyber capabilities – All Feed 108 malicious Chrome extensions caught stealing Google and Telegram data from 20,000 users – GRAHAM CLULEY Active HanGhost Loader Campaign Targets Enterprise Payment and Logistics Workflows – Hackread – Cybersecurity News, Data Breaches, AI and More 13.5M Device Botnet Drives 2 Tbps DDoS Attacks on FinTech, Qrator Finds – Hackread – Cybersecurity News, Data Breaches, AI and More We’re only seeing the tip of the chip-smuggling iceberg – CyberScoop Researchers Spot Surge in Brute-Force Attacks from Middle East – AI Companies To Play Bigger Role in CVE Program, Says CISA – Microsoft Issues Patches for SharePoint Zero-Day and 168 Other New Vulnerabilities – The Hacker News Microsoft Fixes Two Zero-Days in April Patch Tuesday – PCI DSS 4.0 roadmap for DPOs using vault – JISA Softech Pvt Ltd OpenAI Launches GPT-5.4-Cyber with Expanded Access for Security Teams – The Hacker News Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution – Cyber Security Advisories – MS-ISAC Multiple Vulnerabilities in Fortinet Products Could Allow for Arbitrary Code Execution – Cyber Security Advisories – MS-ISAC Critical Patches Issued for Microsoft Products, April 14, 2026 – Cyber Security Advisories – MS-ISAC CISA cancels summer internships for cyber scholarship students amid DHS funding lapse – CyberScoop How Digital Annotations Are Replacing Paper Markups in Business – Hackread – Cybersecurity News, Data Breaches, AI and More Patch Tuesday, April 2026 Edition – Krebs on Security Microsoft drops its second-largest monthly batch of defects on record – CyberScoop Fake Ledger Live app on Apple’s App Store stole $9.5M in crypto – BleepingComputer Windows 11 cumulative updates KB5083769 & KB5082052 released – BleepingComputer Microsoft April 2026 Patch Tuesday fixes 167 flaws, 2 zero-days – BleepingComputer McGraw-Hill confirms data breach following extortion threat – BleepingComputer Microsoft releases Windows 10 KB5082200 extended security update – BleepingComputer Space Force official touts AI’s impact on cyber compliance – CyberScoop Security Risk Advisors Purple Team Participants Can Now Earn CPE Credits – Hackread – Cybersecurity News, Data Breaches, AI and More wolfSSL Vulnerability Hits IoT, Routers and Military Systems, Update to 5.9.1 Now – Hackread – Cybersecurity News, Data Breaches, AI and More The April 2026 Security Update Review – Zero Day Initiative – Blog SEC Consult SA-20260414-0 :: Improper Enforcement of Locked Accounts in WebUI (SSO) in Kiuwan SAST on-premise (KOP) & cloud/SaaS – Full Disclosure CyberDanube Security Research 20260408-0 | Remote Operation Denial of Service in Siemens SICAM A8000 – Full Disclosure CyberDanube Security Research 20260408-1 | Multiple Vulnerabilities in Siemens SICAM A8000 – Full Disclosure New PHP Composer Flaws Enable Arbitrary Command Execution — Patches Released – The Hacker News Kraken Exchange Faces Extortion After Insider Recorded System Footage – Hackread – Cybersecurity News, Data Breaches, AI and More Black Basta’s playbook lives on as former affiliates launch fast-scale intrusion campaign – CyberScoop AI-Driven Pushpaganda Scam Exploits Google Discover to Spread Scareware and Ad Fraud – The Hacker News CISOs Urged to Innovate with Talent Retention as Job Satisfaction Declines –