Kitefall

30 WordPress Plugins Turned Into Malware After Ownership Change 2026-04-18 23:01 Slashdot Wednesday BleepingComputer reported that more than 30 WordPress plugins "have been compromised with malicious code that allows unauthorized access to websites running them." A malicious actor planted the backdoor code last year but only recently …
Nigeria’s Company Registry Hit by Cyberattack, Portal Shut for Three Days 2026-04-18 22:01 News Ghana Nigeria’s Corporate Affairs Commission (CAC), the country’s primary company registration body, has confirmed a cyberattack on its information systems, prompting a temporary suspension of its online portal and triggering a formal investigation by data …
How to file a payout claim in Comcast's $117.5 million data breach settlement 2026-04-18 21:02 Philly Voice - Pennsylvania More than 30 million people in the United States are estimated to be eligible for payouts in Comcast's $117.5 million settlement of a class-action lawsuit that stemmed from a data breach in October 2023. The Philadelphia-based cable and internet giant …
NDPC probes suspected data breach at CAC, orders system-wide security review 2026-04-18 19:50 Abuja Inquirer The Nigeria Data Protection Commission, NDPC, has commenced an investigation into a suspected data breach at the Corporate Affairs Commission, CAC, in line with its mandate under the Nigeria Data Protection Act, 2023. The move highlights the Commission’s …
Fake Proton VPN sites and gaming mods spread NWHStealer in new Windows malware campaign 2026-04-18 19:32 VPNCentral A new malware campaign is pushing NWHStealer through fake Proton VPN sites, gaming mods, hardware tools, and download links shared across GitHub, GitLab, SourceForge, MediaFire, and YouTube. Malwarebytes says the stealer targets browser data, saved …
Hackers abuse n8n AI workflow automation to deliver malware through trusted webhooks 2026-04-18 19:32 VPNCentral Threat actors are abusing n8n, a legitimate workflow automation platform, to send phishing emails, fingerprint devices, and deliver malware through trusted *.app.n8n.cloud webhook URLs. Cisco Talos says the activity ran from at least October 2025 through …
Hackers target old TP-Link routers in Mirai malware campaign tied to CVE-2023-33538 2026-04-18 19:32 VPNCentral Hackers are actively trying to compromise several older TP-Link routers through CVE-2023-33538, a command injection flaw that affects end-of-life models. The risk is real because CISA has already listed the bug in its Known Exploited Vulnerabilities …
From a Booking.com Breach to YouTube Phishing: The Internet's Security Problem Just Got Worse This Week 2026-04-18 18:09 PC Magazine We need to talk about Anthropic’s Claude Mythos AI model. It’s not even out yet, and Anthropic is keeping it close to its pocket for the time being, but it’s already sent the security world into a tailspin. The model is apparently powerful enough to find …
Police Send 'Warning Emails' to 75,000 Suspected DDoS Attackers 2026-04-18 18:07 PC Magazine To stop people from buying services to launch DDoS attacks, European law enforcement has decided to message over 75,000 suspected culprits, telling them to knock it off. Europol announced the measure as part of a new crackdown on DDoS attack services, …
Microsoft, Apple, Google, Amazon Top Phishing Targets as Check Point Flags Surge in Brand Impersonation Attacks 2026-04-18 17:24 International Business Times Singapore Cybercriminals are increasingly exploiting trusted tech giants like Microsoft, Apple, Google and Amazon as primary entry points for phishing attacks, according to new research by Check Point. In its Q1 2026 analysis, Check Point Research found that …
McGraw Hill confirms data breach after leaked dataset exposes 13.5 million email addresses 2026-04-18 17:08 VPNCentral McGraw Hill has confirmed a data breach tied to a Salesforce-related misconfiguration, after an extortion attempt ended with stolen data being released online. Independent breach tracking by Have I Been Pwned says the exposed dataset contains 13.5 million …
#housing: Facebook Group Admin Fined for Privacy Breach in Landmark Tenant Case 2026-04-18 16:46 Waatea News A Facebook group administrator has been ordered to pay $7,500 in damages after breaching the Privacy Act, in a case highlighting growing concerns around the sharing of personal information online. The Human Rights Review Tribunal ruled against the …
NDPC investigates CAC’s alleged data breach, issues data protection advisory 2026-04-18 15:54 Premium Times The Nigeria Data Protection Commission (NDPC) says it has commenced an investigation into the alleged breach of information systems at the Corporate Affairs Commission (CAC), issuing a regulatory advisory to counter the escalating threats to data security …
NDPC probes alleged data breach at CAC 2026-04-18 15:22 Eagle Online The Nigeria Data Protection Commission (NDPC) has opened an investigation into an alleged data breach at the Corporate Affairs Commission (CAC). Babatunde Bamigboye, Head of Legal, Enforcement and Regulations, confirmed this in a statement issued on Friday …
US joins nearly two dozen other countries in striking back against DDoS-for-hire platforms 2026-04-18 14:42 Cybersecurity Dive The U.S. and 20 other countries teamed up this week to take down dozens of websites behind cyberattack-for-hire services. As part of an ongoing campaign dubbed Operation PowerOFF, authorities seized 53 web domains linked to distributed denial-of-service ( …
Techie buys fake Ledger Nano S+ hardware crypto wallet and almost falls for phishing — a convincing clone would have caught newbies unaware 2026-04-18 13:24 Tom's Hardware Follow us Add us as a preferred source on Google Newsletter Tom's Hardware Stay On the Cutting Edge: Get the Tom's Hardware Newsletter Get Tom's Hardware's best news and in-depth reviews, straight to your inbox. You are now subscribed Your …
Wexford hotel warns of phishing attacks following third party data breach 2026-04-18 13:10 Irish Independent Hotel Curracloe published a statement this week to notify guests of a “security breach”, suffered by GuestDiary.com in late March. They say the breach resulted in limited guest contact details being accessed through their partner’s platform. “Importantly, …
JanelaRAT Malware Now Hijacking Banking Sessions of Users in Latin America : Research 2026-04-18 12:28 Crowdfund Insider Cybersecurity professionals at Kaspersky have uncovered a freshly updated version of the JanelaRAT malware, which is actively targeting online banking users throughout Latin America. Researchers from the company’s Global Research and Analysis Team (GReAT) …
Organisations delusional about ransomware recovery capability 2026-04-18 12:18 ITWeb Anand Eswaran, CEO at Veeam. There is a growing disconnect between how confident organisations feel about cyber resilience and the reality of recovery outcomes, according to Veeam Software’s recently released Data Trust and Resilience Report 2026. The …
Operation PowerOFF: 53 DDoS domains seized and 3 Million criminal accounts uncovered 2026-04-18 11:14 Security Affairs Operation PowerOFF: 53 DDoS domains seized and 3 Million criminal accounts uncovered Operation PowerOFF shut down 53 DDoS-for-hire domains, arrested four suspects, and exposed data on over 3 million criminal user accounts. Operation PowerOFF is an …
Nexcorium Mirai variant exploits TBK DVR flaw to launch DDoS attacks 2026-04-18 11:12 Security Affairs Nexcorium Mirai variant exploits TBK DVR flaw to launch DDoS attacks A Mirai variant called Nexcorium exploits a flaw in TBK DVRs to infect devices and use them in DDoS attacks, along with outdated TP-Link routers. Fortinet researchers found that threat …
Europol supports global operation targeting over 75,000 users engaged in DDoS attacks 2026-04-18 11:02 Insight EU Monitoring The Hague, 16 April 2026 On 13 April 2026, 21 countries joined forces in a coordinated action week that focused on enforcement and prevention measures against over 75 000 criminal users engaging in distributed denial-of-service (DDoS)-for-hire services. …
Data breach in Nigeria’s financial ecosystem 2026-04-18 11:01 The Cable Stay connected via Google News BY GABRIEL AKINREMI Nigeria’s digital financial landscape has grown at an astonishing pace, and it has connected people to opportunities that once felt out of reach. For millions of Nigerians, digital banking is no longer a …
Dundee hacker could face 22 years in prison over role in £6mil phishing scam in USA 2026-04-18 10:29 Daily Record & Sunday Mail 10:30, 18 Apr 2026Updated 10:57, 18 Apr 2026 Tyler Buchanan, from Dundee, could face decades in jail(Image: Spanish National Police Corps) A Scottish man has pleaded guilty to plotting to hack into the computer systems of at least a dozen companies to …
Additional arrests made in $80 million phishing scam case 2026-04-18 09:16 Jamaica Observer April 17, 2026 KINGSTON, Jamaica — Two more people have been arrested in connection with an $80 million phishing scam at the National Commercial Bank (NCB) following operations on Wednesday. The Major Organised Crime and Anti-Corruption Agency (MOCA) …
Zara parent hit by data breach, no customer data compromised 2026-04-18 07:26 NewsBytes What's the story Inditex, the world's largest clothing retailer and parent company of popular brands like Zara and Bershka, has suffered a major data breach. The incident was caused by a third-party technology provider and has affected multiple …
Cyber attack blamed for delay telling schools music tutor in court facing child sex offence charges 2026-04-18 05:03 The Irish News The Northern Ireland Education Authority blamed a cyber attack on its IT systems for hampering efforts to tell schools a music tutor had appeared in court facing sex charges. The Education Authority told The Irish News they were not notified in advance of …
Privacy Tip #487 – Eurail Notifies 300,000+ Individuals of Data Breach 2026-04-18 03:56 JD Supra - California I have very fond memories of using a Eurail pass back in the day while backpacking through Europe as a student. I was saddened to see that Eurail was the victim of a data breach in December 2025 when attackers obtained access to travelers’ full names and …
Two more suspects charged in multimillion dollar phishing scam at NCB 2026-04-18 03:13 Radio Jamaica By Kimone Witter Charges have been laid against two more suspects in the ongoing investigation into the multimillion dollar phishing scam at the National Commercial Bank (NCB). The Major Organised Crime and Anti-Corruption Agency (MOCA) says 26- …
Comcast’s $117.5M Data Breach Settlement: What 30M Customers Need to Know 2026-04-18 01:49 Times News Global Comcast has agreed to a $117.5 million class action settlement following a 2023 cybersecurity incident that exposed sensitive customer information. The proposed settlement stems from a lawsuit filed after an October 2023 cyberattack in which unauthorized …
Judge lets investigation into data breach affecting BCBS members move forward 2026-04-18 01:13 KXLF 4 - Montana HELENA — This week, a state district judge in Helena issued a ruling, allowing the Montana State Auditor’s Office to move forward with its investigation into a data breach that may have affected hundreds of thousands of customers with Blue Cross Blue …
Hackers Target Israeli Desalination Plants With ZionSiphon Sabotage Malware 2026-04-18 00:02 Cyber Security News A newly discovered piece of malware called ZionSiphon has raised serious concerns about the security of critical water infrastructure in Israel. The malware was built with a clear focus: to infiltrate and potentially sabotage Israeli water treatment and …
NDPC probes alleged data breach at Corporate Affairs Commission 2026-04-18 00:00 Nairametrics The Nigeria Data Protection Commission has launched an investigation into a reported data breach at the Corporate Affairs Commission. This was disclosed in a statement signed by the Head of Legal, Enforcement and Regulations, Babatunde Bamigboye, citing …
NDPC probes CAC data breach, signals tighter enforcement 2026-04-17 23:59 Business Day Nigeria’s data protection regulator has commenced an investigation into the reported breach of the Corporate Affairs Commission (CAC) database, in a development that points to a more assertive enforcement approach under the Nigeria Data Protection Act (NDP …
NDPC probes CAC data breach as NITDA orders cybersecurity tightening 2026-04-17 23:50 Biz Watch Nigeria By Boluwatife Oshadiya | April 17, 2026 Key Points NDPC launches investigation into alleged data breach at Corporate Affairs Commission NITDA directs all MDAs to immediately strengthen cybersecurity frameworks and controls CAC announces scheduled portal …
NDPC Launches Probe Into Alleged Data Breach At CAC 2026-04-17 23:36 TVC News Nigeria The Nigeria Data Protection Commission (NDPC) has commenced an investigation into a reported data breach involving the Corporate Affairs Commission (CAC), in accordance with Section 46(3) of the Nigeria Data Protection Act, 2023. The Commission stated that …
Payouts King Rises as New Ransomware Threat Linked to Former BlackBasta Affiliates 2026-04-17 23:17 Cyber Security News A relatively unknown ransomware group called Payouts King has emerged as a serious cybersecurity threat, carrying the torch of the now-defunct BlackBasta operation. Since its appearance in April 2025, the group has quietly carried out targeted attacks …
Hackers Use ATHR to Run AI-Powered Vishing, Credential Theft, and Phone-Based Phishing at Scale 2026-04-17 23:15 Cyber Security News A new cybercrime platform called ATHR is making it much easier for attackers to run large-scale phone-based phishing operations, also known as vishing. Instead of relying on malicious links or infected email attachments, this platform sends simple-looking …
Fake Zoom SDK Update Delivers Sapphire Sleet Malware in New macOS Intrusion Chain 2026-04-17 23:10 Cyber Security News A North Korean threat actor known as Sapphire Sleet has launched a new campaign against macOS users, using a fake Zoom SDK update to trick victims into running malicious files that steal passwords, cryptocurrency assets, and personal data. Unlike attacks …
Hackers Target TP-Link Routers With Mirai Malware in CVE-2023-33538 Exploitation Attempts 2026-04-17 23:08 Cyber Security News A known security flaw in several end-of-life TP-Link Wi-Fi routers is being actively targeted by hackers trying to install Mirai-based botnet malware on vulnerable devices. The vulnerability, tracked as CVE-2023-33538, affects multiple TP-Link models that …
3 hookup sites that have never been part of a data breach 2026-04-17 23:06 Mashable Here's an open secret: almost every major dating site and most of the internet's hookup sites have been victims of major data breaches at one time or another. In fact, some of them have even undergone multiple data breaches. We're talking full …
U.S. authorities seize services associated with eight DDoS-for-hire domains 2026-04-17 22:55 Alaska's News Source ANCHORAGE, Alaska (KTUU) - U.S. authorities have seized services associated with eight Distributed Denial of Service-for-hire domains, which purportedly launch tens of thousands of DDoS attacks a day, according to the U.S. Justice Department. A DDoS attack …
Russia-friendly exchange says "western special service" behind $15 million cyberattack 2026-04-17 22:27 Ars Technica Grinex, a US-sanctioned cryptocurrency exchange registered in Kyrgyzstan, said it’s halting operations after experiencing a $13 million heist carried out by “western special services” hackers. Researchers from TRM, which has confirmed the theft, put the …
FBI Urges Everyone to Reboot Routers Following Russian Cyber Attack 2026-04-17 21:59 Must Read Alaska Following the disruption of a cyber attack by Russian actors involving several small-office home-office (SOHO) Wi-Fi routers, the FBI and U.S. Department of Justice is urging everyone to reset their routers. According to a Public Service Announcement from …
Russia-Linked Crypto Exchange Grinex Says Lost Over $13Mln in Cyberattack 2026-04-17 21:26 The Moscow Times A cryptocurrency exchange linked to Russia said it had suspended operations after a cyberattack resulted in the loss of more than 1 billion rubles ($13 million) belonging to Russian users. Grinex said in a statement that the breach bore “signs of …
To Fight Ransomware, Turn to Incident Response Professionals 2026-04-17 21:23 Royal United Services Institute In practice, this establishes two tracks: one relying on the market to provide specialised response and negotiation support through accredited providers and another where the government provides those services directly. In both tracks, the obligation to …
IT system for Northern Ireland schools ‘largely restored’ after cyber attack 2026-04-17 20:10 Belfast Live The Education Authority issued their latest update on Friday(Image: Justin Millar/Belfast Live) An IT system for Northern Ireland schools has been “largely restored” following a cyber attack, the Education Authority has said. The C2k system was …
Tycoon 2FA is down, but not out – researchers warn the phishing as a service operation is still a huge threat to businesses 2026-04-17 20:01 IT Pro Follow us Add us as a preferred source on Google Newsletter ITPro Get the ITPro daily newsletter Sign up today and you will receive a free copy of our Future Focus 2025 report - the leading guidance on AI, cybersecurity and other IT challenges as per 700+ …
Foreign ministry website briefly down after DDoS attack 2026-04-17 19:59 Yonhap News Agency SEOUL, April 17 (Yonhap) -- The foreign ministry's website briefly went down Friday following a distributed denial-of-service (DDoS) attack before being restored, the ministry said. After the DDoS attack on the website at around 5 p.m., the ministry …
7 Best DDoS Attack Simulation Service Providers & Testing Platforms for 2026 2026-04-17 19:39 iTWire Regulators took note. Europe’s NIS2 directive and tighter U.S. outage-disclosure rules now ask every operator to show they can survive that kind of firestorm. The surest answer is a DDoS attack simulation—an approved drill that slams real packets into your …

TRENDING INFOSEC

Trending