Hundreds of Internet-Facing VNC Servers Expose ICS/OT

/in

Forescout has identified tens of thousands of exposed RDP and VNC servers that can be mapped to specific industries.

The post Hundreds of Internet-Facing VNC Servers Expose ICS/OT appeared first on SecurityWeek.

SecurityWeek – ​Read More

Lotus Wiper Attack Targeted Venezuelan Energy Firms, Utilities

/in

An analysis of the destructive malware reveals sophisticated living-off-the-land (LotL) techniques and detailed strategies for the widespread deletion of data.

darkreading – ​Read More

Brinker Introduces a Novel Approach to Deepfake Detection

/in

WILMINGTON, Delaware, 29th April 2026, CyberNewswire

Hackread – Cybersecurity News, Data Breaches, AI and More – ​Read More

Fresh LiteLLM Vulnerability Exploited Shortly After Disclosure

/in

The vulnerability allows attackers to read data from a LiteLLM proxy’s database and potentially modify it.

The post Fresh LiteLLM Vulnerability Exploited Shortly After Disclosure appeared first on SecurityWeek.

SecurityWeek – ​Read More

38 Vulnerabilities Found in OpenEMR Medical Software

/in

Some of the vulnerabilities discovered by Aisle can be exploited to access and alter sensitive patient information.

The post 38 Vulnerabilities Found in OpenEMR Medical Software appeared first on SecurityWeek.

SecurityWeek – ​Read More

Iranian Cyber Group Handala Targets US Troops in Bahrain

/in

US service members received WhatsApp messages claiming they would be targeted with drones and missiles.

The post Iranian Cyber Group Handala Targets US Troops in Bahrain appeared first on SecurityWeek.

SecurityWeek – ​Read More

Amazon Prime Day 2026 is likely coming earlier. Here’s everything to know so far

/in

Amazon’s summer Prime Day event is on its way, but it may not be in July. Here’s what you need to know right now.

Latest news – ​Read More

Checkmarx Confirms Data Stolen in Supply Chain Attack

/in

The hackers exfiltrated the data from Checkmarx’s GitHub environment on March 30, a week after publishing malicious code.

The post Checkmarx Confirms Data Stolen in Supply Chain Attack appeared first on SecurityWeek.

SecurityWeek – ​Read More

CISA Adds Actively Exploited ConnectWise and Windows Flaws to KEV

/in

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added two security flaws impacting ConnectWise ScreenConnect and Microsoft Windows to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
The vulnerabilities are listed below –

CVE-2024-1708 (CVSS score: 8.4) – A path traversal vulnerability in  ConnectWise ScreenConnect

The Hacker News – ​Read More

Top AI-Powered Vendor Risk Management Platforms for SaaS Companies in 2026

/in

Top AI-powered vendor risk platforms for SaaS companies in 2026, compare tools, features, and how to choose the…

Hackread – Cybersecurity News, Data Breaches, AI and More – ​Read More