Microsoft April 2026 Patch Tuesday fixes 167 flaws, 2 zero-days

Today is Microsoft's April 2026 Patch Tuesday with security updates for 167 flaws, including 2 zero-day vulnerabilities.

Signed software abused to deploy antivirus-killing scripts

A digitally signed adware tool has deployed payloads running with SYSTEM privileges that disabled antivirus protections on ...
Dark Reading

Microsoft's Original Windows Secure Boot Certificate Is Expiring

The Secure Boot refresh is one of the largest coordinated security maintenance efforts across the Windows ecosystem, ...
Security Boulevard

Emulating the Persuasive NightSpire Ransomware

AttackIQ has released a new attack graph that emulates the behaviors of NightSpire Ransomware, a financially motivated ...

Check and Update Windows Secure Boot Certificates expiring in 2026

Secure Boot Certificates are set to expire soon. This guide shows how to check and update them and covers a roadmap for ...
Infosecurity Magazine

Signed Adware Operation Disables Antivirus Across 23,000 Hosts

A signed software operation linked to a company called Dragon Boss Solutions LLC has reportedly been silently disabling ...
Bitdefender

AgingFly malware hits local authorities and hospitals in Ukraine

CERT-UA links the AgingFly credential-stealing campaign to phishing, browser theft, and modular remote access.
DataBreachToday

Freight Hacker Wields Code-Signing Service to Evade Defenses

Cargo-stealing hackers have a new trick up their sleeve: using a third-party code-signing service makes their remote ...
The Hacker News

Obsidian Plugin Abuse Delivers PHANTOMPULSE RAT in Targeted Finance, Crypto Attacks

PHANTOMPULSE spreads via Obsidian plugin abuse in REF6598 campaign, targeting finance and crypto users, bypassing AV controls ...
SecurityWeek

$10 Domain Could Have Handed Hackers 25k Endpoints, Including in OT and Gov Networks

A single unregistered domain available for as little as $10 could have granted hackers control over 25,000 compromised ...
Infosecurity Magazine

Researchers Spot Surge in Brute-Force Attacks from Middle East

Security researchers have detected a “sharp rise” in brute-force attempts to hijack SonicWall and Fortinet devices, with the ...

Official CPU-Z And HWMonitor Installers Infected With Malware After Site Breach

The CPU-Z And HWMonitor installers being compromised is notable because a user could do everything correctly and still get pwned.