April, 2026 - Security Ticks

US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor

backdoor, Cisco, Firestarter, Malware & Threats / SecurityTicks

US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor 2026-04-24 at 14:35 By Ionut Arghire The malware provides remote access and control of infected devices and maintains post-patching persistence. The post US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor Read More »

Trump Administration Vows Crackdown on Chinese Companies ‘Exploiting’ AI Models Made in US

AI, Artificial Intelligence, China / SecurityTicks

Trump Administration Vows Crackdown on Chinese Companies ‘Exploiting’ AI Models Made in US 2026-04-24 at 14:35 By Associated Press The Trump administration is vowing to crack down on foreign tech companies’ exploitation of U.S. artificial intelligence models. The post Trump Administration Vows Crackdown on Chinese Companies ‘Exploiting’ AI Models Made in US appeared first on

Trump Administration Vows Crackdown on Chinese Companies ‘Exploiting’ AI Models Made in US Read More »

The grim warning sign from AI influencers that keep racking up comments from lonely men: ‘Societal loss of humanity’

Uncategorized / SecurityTicks

The grim warning sign from AI influencers that keep racking up comments from lonely men: ‘Societal loss of humanity’ 2026-04-24 at 13:18 By Georgia Worrell Roses are red/ violets are blue/ these girls are AI/ would they fool you, too? This article is an excerpt from Latest Technology News | New York Post View Original

The grim warning sign from AI influencers that keep racking up comments from lonely men: ‘Societal loss of humanity’ Read More »

Greece relaxes Euro biometric border entry rules amid airport chaos

Uncategorized / SecurityTicks

Greece relaxes Euro biometric border entry rules amid airport chaos 2026-04-24 at 13:17 By SA Mathieson Missed flights and more means something has got to give at the border Greece is taking a flexible approach to introducing the European Union’s biometric Entry/Exit System (EES), after some British passport holders missed flights home following the system’s

Greece relaxes Euro biometric border entry rules amid airport chaos Read More »

Compromised everyday devices power Chinese cyber espionage operations

China, cyber espionage, cybersecurity, Government, NCSC, News, UK / SecurityTicks

Compromised everyday devices power Chinese cyber espionage operations 2026-04-24 at 13:17 By Sinisa Markovic China-linked threat actors have shifted from individually procured infrastructure to large-scale covert networks, botnets built from compromised routers and other edge devices, the National Cyber Security Centre (NCSC) warns. To help organizations address this threat, the NCSC, together with the Cyber

Compromised everyday devices power Chinese cyber espionage operations Read More »

New Cisco firewall malware can only be killed by pulling the plug

backdoor, CISA, Cisco, Don't miss, firewall, government-backed attacks, Hot stuff, NCSC, News / SecurityTicks

New Cisco firewall malware can only be killed by pulling the plug 2026-04-24 at 13:17 By Zeljka Zorz Suspected state-sponsored attackers are using a custom backdoor to persistently compromise Cisco security devices (firewalls), the US CISA and the UK National Cyber Security Centre warned on Thusday. “The [Firestarter] malware (…) is relevant for both Cisco

New Cisco firewall malware can only be killed by pulling the plug Read More »

Meta is overhauling how you sign in, manage settings, and protect your accounts

account protection, Facebook, Facebook Messenger, Instagram, Meta, News, Privacy, social media, WhatsApp / SecurityTicks

Meta is overhauling how you sign in, manage settings, and protect your accounts 2026-04-24 at 13:17 By Anamarija Pogorelec Meta Account gives users of Meta apps and devices a simpler way to access and manage their accounts. Accounts Center will automatically be updated to a Meta Account as part of a gradual rollout over the

Meta is overhauling how you sign in, manage settings, and protect your accounts Read More »

Vulnerabilities Patched in CrowdStrike, Tenable Products

CrowdStrike, Endpoint Security, Tenable, Vulnerabilities, vulnerability / SecurityTicks

Vulnerabilities Patched in CrowdStrike, Tenable Products 2026-04-24 at 13:17 By Eduard Kovacs CrowdStrike has fixed a critical LogScale vulnerability, while Tenable addressed a high-severity Nessus flaw. The post Vulnerabilities Patched in CrowdStrike, Tenable Products appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Vulnerabilities Patched in CrowdStrike, Tenable Products Read More »

Tropic Trooper Uses Trojanized SumatraPDF and GitHub to Deploy AdaptixC2

Uncategorized / SecurityTicks

Tropic Trooper Uses Trojanized SumatraPDF and GitHub to Deploy AdaptixC2 2026-04-24 at 13:17 By Chinese-speaking individuals are the target of a new campaign that uses a trojanized version of SumatraPDF reader to deploy the AdaptixC2 Beacon post-exploitation agent and ultimately facilitate the abuse of Microsoft Visual Studio Code (VS Code) tunnels for remote access. Zscaler

Tropic Trooper Uses Trojanized SumatraPDF and GitHub to Deploy AdaptixC2 Read More »

UK gov pays public £550 to discuss Digital ID – then bans journalists from the room

Uncategorized / SecurityTicks

UK gov pays public £550 to discuss Digital ID – then bans journalists from the room 2026-04-24 at 11:37 By SA Mathieson Nothing says ‘We want honest opinions’ like a 36,000-letter mailshot with no awkward questions allowed Members of the UK government’s People’s Panel on Digital ID will spend two weekends in Birmingham and three

UK gov pays public £550 to discuss Digital ID – then bans journalists from the room Read More »

Betting shop bug ends in kidnap plot as staff turn ransom artists

Uncategorized / SecurityTicks

Betting shop bug ends in kidnap plot as staff turn ransom artists 2026-04-24 at 11:27 By Connor Jones Computer glitch spawns duplicate jackpots, disgruntled punters, and one very bad career choice A computer glitch in a Spanish betting shop triggered a chain of events that ended with the store manager being kidnapped and held for

Betting shop bug ends in kidnap plot as staff turn ransom artists Read More »

Ubuntu 26.04 LTS delivers memory-safe system tools and live patching for Arm servers

Linux, News, open source, operating system, Ubuntu / SecurityTicks

Ubuntu 26.04 LTS delivers memory-safe system tools and live patching for Arm servers 2026-04-24 at 11:27 By Mirko Zorz Linux distributions have spent the past few years absorbing GPU vendor toolchains, Rust-based system components, and more stringent encryption defaults. Ubuntu 26.04 LTS, codenamed Resolute Raccoon, pulls most of those threads together into a single release

Ubuntu 26.04 LTS delivers memory-safe system tools and live patching for Arm servers Read More »

OpenAI’s GPT-5.5 is out with expanded cybersecurity safeguards

AI, ChatGPT, Don't miss, News, OpenAI / SecurityTicks

OpenAI’s GPT-5.5 is out with expanded cybersecurity safeguards 2026-04-24 at 11:27 By Sinisa Markovic Competition to release stronger AI models is accelerating, and just weeks after the release of GPT-5.4, OpenAI has introduced GPT-5.5, pointing to expanded safeguards in the new model. GPT-5.5 is being rolled out to Plus, Pro, Business, and Enterprise users in

OpenAI’s GPT-5.5 is out with expanded cybersecurity safeguards Read More »

Bitwarden NPM Package Hit in Supply Chain Attack

Bitwarden, NPM, Shai-Hulud, supply chain attack, Supply Chain Security, TeamPCP / SecurityTicks

Bitwarden NPM Package Hit in Supply Chain Attack 2026-04-24 at 11:27 By Ionut Arghire Tied to a fresh Checkmarx supply chain attack claimed by TeamPCP, the incident references the Shai-Hulud worm. The post Bitwarden NPM Package Hit in Supply Chain Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Bitwarden NPM Package Hit in Supply Chain Attack Read More »

Copperhelm Raises $7 Million for Agentic Cloud Security Platform

AI, Artificial Intelligence, Copperhelm, Cybersecurity Funding, funding / SecurityTicks

Copperhelm Raises $7 Million for Agentic Cloud Security Platform 2026-04-24 at 11:27 By SecurityWeek News The Israel-based company, which just emerged from stealth mode, was founded by cloud and security experts from RSA, McAfee, and Unity. The post Copperhelm Raises $7 Million for Agentic Cloud Security Platform appeared first on SecurityWeek. This article is an

Copperhelm Raises $7 Million for Agentic Cloud Security Platform Read More »

LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure

Uncategorized / SecurityTicks

LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure 2026-04-24 at 11:27 By A high-severity security flaw in LMDeploy, an open-source toolkit for compressing, deploying, and serving LLMs, has come under active exploitation in the wild less than 13 hours after its public disclosure. The vulnerability, tracked as CVE-2026-33626 (CVSS score: 7.5), relates to a

LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure Read More »

AI is speeding up nation-state cyber programs

CISO, cyber risk, cybersecurity, Don't miss, Features, Government, Hot stuff, Microsoft, NATO, News, North Korea, opinion, strategy / SecurityTicks

AI is speeding up nation-state cyber programs 2026-04-24 at 08:40 By Mirko Zorz Im this Help Net Security interview, Kaja Ciglic, Senior Director, Cybersecurity Policy and Diplomacy at Microsoft, discusses how nation-state cyber programs have changed over three years. Cyber has become a core instrument of state power, integrated with military, economic, and diplomatic tools.

AI is speeding up nation-state cyber programs Read More »

Weak security means attackers could disable all of a city’s public EV chargers

Uncategorized / SecurityTicks

Weak security means attackers could disable all of a city’s public EV chargers 2026-04-24 at 08:22 By Simon Sharwood Demonstrated in China, probably applicable elsewhere Black Hat Asia Developers of rented internet of things infrastructure – stuff like public EV chargers and shared e-bikes – are prioritizing user convenience over security, and leaving themselves exposed

Weak security means attackers could disable all of a city’s public EV chargers Read More »

A study of 1,000 Android apps finds a privacy policy logging gap

Android, CCPA, Compliance, data analysis, Data Protection, Don't miss, GDPR, News, Privacy, regulation, research, software / SecurityTicks

A study of 1,000 Android apps finds a privacy policy logging gap 2026-04-24 at 08:22 By Anamarija Pogorelec Android developers write log statements for the same reasons they always have: debugging crashes, tracing performance issues, and understanding how features behave in production. Legal and privacy teams, working from templates and regulatory checklists, draft policies describing

A study of 1,000 Android apps finds a privacy policy logging gap Read More »

IT spending to hit $6.31 trillion record, thanks to AI

AI, Gartner, hardware, investment, News, report, software / SecurityTicks

IT spending to hit $6.31 trillion record, thanks to AI 2026-04-24 at 08:22 By Anamarija Pogorelec Global spending on IT is expected to reach $6.31 trillion in 2026, according to the latest quarterly forecast from Gartner, marking a 13.5% increase from the previous year. The forecast shows that growth is spread across all major segments,

IT spending to hit $6.31 trillion record, thanks to AI Read More »

April 2026