Security News - NetmanageIT CTO Corner

Security News

Breaking Cyber Security and Threat Intel News fresh off the wire!

Newly Discovered PowMix Botnet Hits Czech Workers Using Randomized C2 Traffic

Newly Discovered PowMix Botnet Hits Czech Workers Using Randomized C2 Traffic

Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face

Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face

BleepingComputer

Google expands Gemini AI use to fight malicious ads on its platform

Google expands Gemini AI use to fight malicious ads on its platform

BleepingComputer

New ATHR vishing platform uses AI voice agents for automated attacks

New ATHR vishing platform uses AI voice agents for automated attacks

BleepingComputer

Most "AI SOCs" Are Just Faster Triage. That's Not Enough.

Most "AI SOCs" Are Just Faster Triage. That's Not Enough.

BleepingComputer

ThreatsDay Bulletin: 17-Year-Old Excel RCE, Defender 0-Day, SonicWall Brute-Force and 15 More Stories

ThreatsDay Bulletin: 17-Year-Old Excel RCE, Defender 0-Day, SonicWall Brute-Force and 15 More Stories

Cisco says critical Webex Services flaw requires customer action

Cisco says critical Webex Services flaw requires customer action

BleepingComputer

[Webinar] Find and Eliminate Orphaned Non-Human Identities in Your Environment

[Webinar] Find and Eliminate Orphaned Non-Human Identities in Your Environment

Cisco Patches Four Critical Identity Services, Webex Flaws Enabling Code Execution

Cisco Patches Four Critical Identity Services, Webex Flaws Enabling Code Execution

Obsidian Plugin Abuse Delivers PHANTOMPULSE RAT in Targeted Finance, Crypto Attacks

Obsidian Plugin Abuse Delivers PHANTOMPULSE RAT in Targeted Finance, Crypto Attacks

Data breach at edtech giant McGraw Hill affects 13.5 million accounts

Data breach at edtech giant McGraw Hill affects 13.5 million accounts

BleepingComputer

Hidden Passenger? How Taboola Routes Logged-In Banking Sessions to Temu

Hidden Passenger? How Taboola Routes Logged-In Banking Sessions to Temu

US nationals behind DPRK IT worker 'laptop farm' sent to prison

US nationals behind DPRK IT worker 'laptop farm' sent to prison

BleepingComputer

Microsoft: April Windows Server 2025 update may fail to install

Microsoft: April Windows Server 2025 update may fail to install

BleepingComputer

UAC-0247 Targets Ukrainian Clinics and Government in Data-Theft Malware Campaign

UAC-0247 Targets Ukrainian Clinics and Government in Data-Theft Malware Campaign

Critical Nginx UI auth bypass flaw now actively exploited in the wild

Critical Nginx UI auth bypass flaw now actively exploited in the wild

BleepingComputer

New AgingFly malware used in attacks on Ukraine govt, hospitals

New AgingFly malware used in attacks on Ukraine govt, hospitals

BleepingComputer

WordPress plugin suite hacked to push malware to thousands of sites

WordPress plugin suite hacked to push malware to thousands of sites

BleepingComputer

Signed software abused to deploy antivirus-killing scripts

Signed software abused to deploy antivirus-killing scripts

BleepingComputer

n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails

n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails

Microsoft pays $2.3M for cloud and AI flaws at Zero Day Quest

Microsoft pays $2.3M for cloud and AI flaws at Zero Day Quest

BleepingComputer

CISA flags Windows Task Host vulnerability as exploited in attacks

CISA flags Windows Task Host vulnerability as exploited in attacks

BleepingComputer

Rolling Networks: Securing the Transportation Sector

Rolling Networks: Securing the Transportation Sector

BleepingComputer

Critical nginx-ui Vulnerability CVE-2026-33032 Allows Unauthenticated Nginx Takeover

Critical nginx-ui Vulnerability CVE-2026-33032 Allows Unauthenticated Nginx Takeover

April Patch Tuesday Fixes Critical Flaws Across SAP, Adobe, Microsoft, Fortinet, and More

April Patch Tuesday Fixes Critical Flaws Across SAP, Adobe, Microsoft, Fortinet, and More