SecurityTicks

EtherRAT Distribution Spoofing Administrative Tools via GitHub Facades 2026-04-30 at 16:02 By Intro A sophisticated, high-resilience malicious campaign was identified by Atos Threat Research Center (TRC) in March 2026. This operation specifically targets the high-privilege professional accounts of enterprise administrators, DevOps engineers, and security analysts by impersonating administrative utilities they rely on for daily operations. […]

New Python Backdoor Uses Tunneling Service to Steal Browser and Cloud Credentials 2026-04-30 at 16:02 By Cybersecurity researchers have disclosed details of a stealthy Python-based backdoor framework called DEEP#DOOR that comes with capabilities to establish persistent access and harvest a wide range of sensitive information from compromised hosts. “The intrusion chain begins with execution of

Fewer users, fatter wallets is why Anthropic tops OpenAI in LLM revenue stakes 2026-04-30 at 15:32 By Carly Page AI boom splits between companies hoarding eyeballs and those actually charging for them Anthropic is pulling in more LLM revenue than OpenAI, despite having a fraction of the users.… This article is an excerpt from The

What type of ‘C2 on a sleep cycle’ do they leave behind? Novel Chinese spy group found in critical networks in Poland, Asia 2026-04-30 at 14:51 By Jessica Lyons Just in time for the Trump-Xi summit Exclusive  A novel China-linked threat group infiltrated more than a dozen critical networks in Poland, Asian countries, and possibly

Nearly half of UK businesses pwned last year as phishing keeps doing the job like it’s 2005 2026-04-30 at 14:51 By Carly Page Turns out the real problem is not AI but staff still clicking on dodgy emails from ‘IT support’ Nearly half of UK businesses are still getting breached, and in many cases, the

The New Partner-Vendor Relationship 2026-04-30 at 13:57 By Alan Maxwell Part 4 of 6: Aligning co-marketing for conversion This article is an excerpt from SECURITY.COM View Original Source

Bug of the year (so far): Nasty cPanel vulnerability probably exploited as a 0-day 2026-04-30 at 13:57 By Connor Jones Emergency patches out now for those managing the millions of domains assumed to be affected Emergency patches are available for a critical vulnerability in cPanel and WHM that allows attackers to bypass authentication and gain

Met Police’s Palantir deployment has its own officers watching their backs 2026-04-30 at 13:04 By SA Mathieson Federation warns members to ditch work devices off duty as force uses AI to probe 600+ cops London cops are being told by their staff association to be “extremely cautious” about carrying work devices off duty, after the

Britain’s £6B armoured sickener Ajax cleared for duty despite injuring troops 2026-04-30 at 13:04 By Dan Robinson Investigation finds no single cause for soldiers falling ill, just bad bolts, cold air, and apparently the soldiers themselves Britain’s notorious Ajax armored vehicles are being accepted back from the manufacturer after investigations found no single cause for

New Linux ‘Copy Fail’ Vulnerability Enables Root Access on Major Distributions 2026-04-30 at 13:03 By Cybersecurity researchers have disclosed details of a Linux local privilege escalation (LPE) flaw that could allow an unprivileged local user to obtain root. The high-severity vulnerability tracked as CVE-2026-31431 (CVSS score: 7.8) has been codenamed Copy Fail by Xint.io and

Finance company stores DB credentials in helpfully labeled spreadsheet 2026-04-30 at 11:02 By Avram Piltch Great idea, guys. Let’s keep all of the data in an Excel file with weak password protection PWNED  Welcome, once again, to PWNED, the weekly column where we recount the adventures of IT explorers who found their own pile of