April 2026 – Page 23

⚡ Weekly Recap: Vercel Hack, Push Fraud, QEMU Abused, New Android RATs Emerge & More

Monday’s recap shows the same pattern in different places. A third-party tool becomes a way in, then leads to internal access. A trusted download path is briefly swapped to deliver malware. Browser extensions act normally while pulling data and running code. Even update channels are used to push payloads. It’s not breaking systems—it’s bending trust.
There’s also a shift in how attacks run.

British Scattered Spider hacker pleads guilty to crypto theft charges

A British man, believed to be the leader of the Scattered Spider cybercrime collective, has pleaded guilty in the United States to charges of wire fraud and aggravated identity theft. […]

British Scattered Spider Hacker Pleads Guilty in the US

Tyler Buchanan admitted in court to hacking into various companies, defrauding them, and stealing cryptocurrency from multiple individuals.

The post British Scattered Spider Hacker Pleads Guilty in the US appeared first on SecurityWeek.

Microsoft tests Windows Explorer speed, performance improvements

Microsoft is rolling out multiple File Explorer changes to Windows 11 users in the Insider program, including improvements to launch speed and performance. […]

Hackers Abuse QEMU for Defense Evasion

The machine emulator has been abused in at least two different campaigns distributing ransomware and remote access tools.

The post Hackers Abuse QEMU for Defense Evasion appeared first on SecurityWeek.

Why Most AI Deployments Stall After the Demo

The fastest way to fall in love with an AI tool is to watch the demo.
Everything moves quickly. Prompts land cleanly. The system produces impressive outputs in seconds. It feels like the beginning of a new era for your team.
But most AI initiatives don’t fail because of bad technology. They stall because what worked in the demo doesn’t survive contact with real operations. The gap between a

Bluesky Disrupted by Sophisticated DDoS Attack

A pro-Iran hacker group has taken credit for the attack on Bluesky, which appears to have lasted 24 hours.

The post Bluesky Disrupted by Sophisticated DDoS Attack appeared first on SecurityWeek.

Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain

Cybersecurity researchers have discovered a critical “by design” weakness in the Model Context Protocol’s (MCP) architecture that could pave the way for remote code execution and have a cascading effect on the artificial intelligence (AI) supply chain.
“This flaw enables Arbitrary Command Execution (RCE) on any system running a vulnerable MCP implementation, granting attackers direct access to

Senate Extends Surveillance Powers Until April 30 After Chaotic Votes in House

The Senate approved a short-term renewal until April 30 of a controversial surveillance program used by U.S. spy agencies.

The post Senate Extends Surveillance Powers Until April 30 After Chaotic Votes in House appeared first on SecurityWeek.

Half of the 6 Million Internet-Facing FTP Servers Lack Encryption

The continued use of the half-century-old protocol exposes enterprises and end users to various types of attacks.

The post Half of the 6 Million Internet-Facing FTP Servers Lack Encryption appeared first on SecurityWeek.

Month: April 2026