Illinois Representative Delia Ramirez has been appointed as the top Democrat on the House Homeland Security Committee's Cybersecurity and Infrastructure Protection Subcommittee, replacing Eric Swalwell following his resignation from Congress.
Threat actors are actively exploiting three leaked Windows privilege escalation vulnerabilities in the wild, with only one patched so far. Huntress Labs confirmed all three exploits deployed in real attacks as of mid-April 2026.
Kamerin Stokes, 23, of Memphis, Tennessee, received a 30-month federal prison sentence for purchasing and reselling access to compromised DraftKings accounts stolen in a 2022 credential-stuffing attack that hit nearly 68,000 users.
A chained attack dubbed NomShub could allow adversaries to silently hijack developer machines through malicious repositories opened in Cursor AI, requiring no user interaction beyond a single click.
Darktrace researchers have uncovered ZionSiphon, a developing malware strain designed to sabotage water treatment and desalination facilities in Israel by tampering with chlorine levels and pressure controls via ICS protocols.
Threat actors are exploiting Apple's own account-change notification system to embed phishing messages inside genuine emails sent directly from Apple's servers, complete with authentic SPF, DKIM, and DMARC authentication.
Cloud development platform Vercel has confirmed unauthorized access to internal systems after a threat actor claiming to be ShinyHunters posted on a hacking forum offering stolen data for sale, including API keys and source code.
NIST has announced it will stop assigning severity scores and additional details to lower-priority vulnerabilities in the National Vulnerability Database, citing a 263% surge in submission volumes it can no longer keep pace with.
Kejia Wang and Zhenxing Wang, both New Jersey residents, have been sentenced to prison for facilitating a North Korean IT worker fraud scheme that generated over $5 million for Pyongyang and caused more than $3 million in losses to US companies.
CISA has added CVE-2026-34197, a high-severity Apache ActiveMQ vulnerability discovered after 13 years, to its Known Exploited Vulnerabilities catalog and ordered federal agencies to patch by April 30.