Auteur/autrice : Cyber Redaction
[Cybersécurité] Patch Tuesday, April 2026 Edition
Microsoft today pushed software updates to fix a staggering 167 security vulnerabilities in its Windows operating systems and related software, including a SharePoint Server zero-day and a publicly di
[Cybersécurité] Iran-Backed Hackers Claim Wiper Attack on Medtech Firm Stryker
A hacktivist group with links to Iran’s intelligence agencies is claiming responsibility for a data-wiping attack against Stryker, a global medical technology company based in Michigan. News reports o
[Cybersécurité] Hackers Used AI to Develop First Known Zero-Day 2FA Bypass for Mass Exploitation
Google on Monday disclosed that it identified an unknown threat actor using a zero-day exploit that it said was likely developed with an artificial intelligence (AI) system, marking the first time the
[Cybersécurité] ThreatsDay Bulletin: Edge Plaintext Passwords, ICS 0-Days, Patch-or-Die Alerts and 25+ New Stories
Bad week.
Turns out the easiest way to get hacked in 2026 is still the same old garbage: shady packages, fake apps, forgotten DNS junk, scam ads, and stolen logins getting dumped into Discord channels
[Cybersécurité] Canvas Breach Disrupts Schools & Colleges Nationwide
An ongoing data extortion attack targeting the widely-used education technology platform Canvas disrupted classes and coursework at school districts and universities across the United States today, af
[Cybersécurité] Feds Disrupt IoT Botnets Behind Huge DDoS Attacks
The U.S. Justice Department joined authorities in Canada and Germany in dismantling the online infrastructure behind four highly disruptive botnets that compromised more than three million hacked Inte
[Cybersécurité] PraisonAI CVE-2026-44338 Auth Bypass Targeted Within Hours of Disclosure
Threat actors have been observed attempting to exploit a recently disclosed security vulnerability in PraisonAI, an open-source multi-agent orchestration framework, within four hours of its public dis
[Cybersécurité] PAN-OS RCE Exploit Under Active Use Enabling Root Access and Espionage
Palo Alto Networks has disclosed that threat actors may have attempted to unsuccessfully exploit a recently disclosed critical security flaw as early as April 9, 2026.
The vulnerability in question is
[Cybersécurité] Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access
Ivanti is warning that a new security flaw impacting Endpoint Manager Mobile (EPMM) has been explored in limited attacks in the wild.
The high-severity vulnerability, CVE-2026-6973 (CVSS score: 7.2),
[Cybersécurité] Popular node-ipc npm package compromised to steal credentials
Hackers have injected credential-stealing malware into newly published versions of node-ipc, a popular inter-process communication package, in a new supply chain attack targeting npm. […]
![[Cybersécurité] Patch Tuesday, April 2026 Edition](https://cyber.kiminox.net/wp-content/uploads/2026/05/cyber-4205-1780687503-100x100.png)
![[Cybersécurité] Iran-Backed Hackers Claim Wiper Attack on Medtech Firm Stryker](https://cyber.kiminox.net/wp-content/uploads/2026/05/cyber-4209-1780678855-100x100.png)
![[Cybersécurité] Hackers Used AI to Develop First Known Zero-Day 2FA Bypass for Mass Exploitation](https://cyber.kiminox.net/wp-content/uploads/2026/05/cyber-4203-1780687716-100x100.png)
![[Cybersécurité] ThreatsDay Bulletin: Edge Plaintext Passwords, ICS 0-Days, Patch-or-Die Alerts and 25+ New Stories](https://cyber.kiminox.net/wp-content/uploads/2026/05/cyber-4212-1780664506-100x100.png)
![[Cybersécurité] Canvas Breach Disrupts Schools & Colleges Nationwide](https://cyber.kiminox.net/wp-content/uploads/2026/05/cyber-4198-1781519183-100x100.png)
![[Cybersécurité] Feds Disrupt IoT Botnets Behind Huge DDoS Attacks](https://cyber.kiminox.net/wp-content/uploads/2026/05/cyber-4218-1780643303-100x100.png)
![[Cybersécurité] PraisonAI CVE-2026-44338 Auth Bypass Targeted Within Hours of Disclosure](https://cyber.kiminox.net/wp-content/uploads/2026/05/cyber-4200-1780738679-100x100.png)
![[Cybersécurité] PAN-OS RCE Exploit Under Active Use Enabling Root Access and Espionage](https://cyber.kiminox.net/wp-content/uploads/2024/10/cybersecurity_img2-100x100.png)
![[Cybersécurité] Popular node-ipc npm package compromised to steal credentials](https://cyber.kiminox.net/wp-content/uploads/2026/05/cyber-4193-1781507736-100x100.png)