U.S. CISA adds a flaw in Ivanti EPMM to its Known Exploited Vulnerabilities catalog

GlobalDefenseBot 9 April

2 minutes

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in Ivanti EPMM to its Known Exploited Vulnerabilities catalog The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a flaw in Ivanti EPMM, tracked as CVE-2026-1340 (CVSS score of 9.8), to its Known Exploited Vulnerabilities (KEV) catalog. The critical vulnerability is a code injection in Ivanti Endpoint Manager Mobile […]

Russia-linked APT28 uses PRISMEX to infiltrate Ukraine and allied infrastructure with advanced tactics

GlobalDefenseBot 8 April

5 minutes

APT28 targets Ukraine and allies with PRISMEX malware, using stealthy techniques for espionage and command-and-control. Russia-linked group APT28 (aka UAC-0001, aka Fancy Bear, Pawn Storm, Sofacy Group, Sednit, BlueDelta, and STRONTIUM) is running a spear-phishing campaign against Ukraine and its allies, deploying a new malware suite called PRISMEX. Active since September 2025, the campaign uses advanced stealth techniques like steganography and […]

Operation Masquerade: FBI Disrupts Russian Router Hacking Campaign

CySecBot 8 April

1 minute

Operation Masquerade: The FBI and DoJ disrupted a Russian GRU campaign that hijacked routers via DNS attacks to spy on users and steal credentials.

Operation Masquerade: FBI Disrupts Russian Router Hacking Campaign

CySecBot 8 April

1 minute

Operation Masquerade: The FBI and DoJ disrupted a Russian GRU campaign that hijacked routers via DNS attacks to spy on users and steal credentials.

breaking news

Signature Healthcare hit by cyberattack, services and pharmacies impacted

GlobalDefenseBot 8 April

2 minutes

Massachusetts’ Signature Healthcare diverts ambulances and cancels services after a cyberattack disrupts hospital operations and pharmacy access. The hospital Signature Healthcare in Brockton, Massachusetts, diverted ambulances and canceled some services after a cyberattack disrupted operations. Pharmacies couldn’t fill prescriptions, though urgent care and walk-in services remained open. Signature Healthcare Brockton Hospital is a non-profit community […]

Storm-1175 Deploys Medusa Ransomware Within 24 Hours of Flaw Disclosure

CySecBot 8 April

1 minute

Microsoft researchers have uncovered a fast-moving group, Storm-1175, launching high-speed Medusa ransomware attacks against healthcare and education sectors in the UK, US, and Australia by exploiting security flaws in as little as 24 hours.

Data Optimization in Security: A Splunk Architect’s Perspective

CySecBot 8 April

1 minute

Learn how to design security data optimization around detection engineering, Splunk architecture, and faster incident response outcomes.

Russian Forest Blizzard Hackers Hijack Home Routers for Global Spying

CySecBot 8 April

1 minute

Microsoft Threat Intelligence reveals how Russian hacking group Forest Blizzard uses home routers for DNS hijacking and spying.

breaking news

Project Glasswing powered by Claude Mythos: defending software before hackers do

GlobalDefenseBot 8 April

4 minutes

Anthropic unveiled Claude Mythos, a powerful AI for cybersecurity that could also be misused to enhance cyberattacks. Anthropic has unveiled Claude Mythos, a new AI model designed to strengthen cybersecurity through Project Glasswing, aiming to secure critical software before it can be abused. Interest in Mythos grew after a leak of nearly 3,000 internal files […]

New ClickFix Attack Uses Node.js Malware via Tor to Steal Crypto

CySecBot 8 April

1 minute

Netskope Threat Labs report a new ClickFix attack using fake CAPTCHAs to deploy Tor-backed NodeJS malware and drain crypto wallets on Windows.