ADT Breached by ShinyHunters, China's Covert Router Networks Exposed, and New 'FIRESTARTER' Backdoor Hits US Gov

ADT Confirms Data Breach by ShinyHunters After Vishing Attack Compromises Okta and Salesforce

Home security giant ADT has confirmed a data breach orchestrated by the notorious ShinyHunters extortion group. The attackers gained initial access by compromising an employee's Okta single sign-on (SSO) account through a sophisticated voice phishing (vishing)...

CISA Discovers 'FIRESTARTER' Backdoor on Federal Cisco Firewall; Malware Survives Patches

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has disclosed that a Cisco Firepower device at an unnamed federal agency was compromised with a new, sophisticated backdoor named FIRESTARTER. An Advanced Persistent Threat (APT) actor exploited...

26 Malicious 'FakeWallet' Crypto Apps Found on Apple App Store, Stealing Seed Phrases

A coordinated malware campaign dubbed "FakeWallet" has been discovered on Apple's official App Store, involving 26 fraudulent applications that impersonated popular cryptocurrency wallets. Active since at least fall 2025, these malicious apps were designed to...

Indian Finance Minister Warns of AI-Driven Cyberattacks and Deepfakes Threatening Financial Markets

At the 38th Foundation Day of the Securities and Exchange Board of India (SEBI), Union Finance Minister Nirmala Sitharaman delivered a stark warning about the growing threat of sophisticated cyberattacks on India's financial markets. She highlighted the risks...

Pre-Stuxnet Cyber Sabotage Malware 'fast16' Discovered, Dating Back to 2005

Security researchers at SentinelOne have unearthed 'fast16', a previously unknown malware framework from 2005 designed for industrial sabotage. This Lua-based malware predates the infamous Stuxnet worm by at least five years and was engineered to subtly manipu...

Cherokee Federal Achieves CMMC Level 2 Certification, Preparing for Upcoming DoD Contract Requirements

Cherokee Federal, the federal contracting division of Cherokee Nation Businesses, has successfully achieved Cybersecurity Maturity Model Certification (CMMC) Level 2. This critical certification, which is aligned with NIST SP 800-171, validates the company's i...

Coinbase Cartel Ransomware Group Claims Attack on Engineering Firm Aptim, Threatens Data Leak

The ransomware group known as 'Coinbase Cartel' has claimed responsibility for a cyberattack against Aptim, a U.S.-based engineering, program management, and construction firm. On April 23, the group posted the claim on its leak site, threatening to release co...

Qilin Ransomware Group Targets City of Napoleon, Ohio, Threatening Municipal Data Leak

The City of Napoleon, Ohio, has become the latest government entity to be targeted by the Qilin ransomware group. The group claimed responsibility for the cyberattack on April 23, 2026, adding the city to its data leak site. Qilin is employing a double extorti...

TeamPCP Weaponizes npm with Malicious Bitwarden CLI in Sophisticated Supply Chain Attack

A sophisticated supply chain attack targeting the npm ecosystem has been uncovered by Unit 42, attributed to the threat actor group TeamPCP. The attackers published a malicious package, `@bitwarden/cli` version `2026.4.0`, which perfectly impersonates the legi...

Actively Exploited SharePoint Zero-Day Prompts Urgent Patching

Update:Microsoft has officially released security updates for the actively exploited SharePoint zero-day, CVE-2026-32201, as part of its April 2026 Patch Tuesday. Security researchers identified over 1,300 internet-exposed SharePoint servers vulnerable at the time of...