Newly Discovered PowMix Botnet Hits Czech Workers Using Randomized C2 Traffic
î „Ravie Lakshmananî ‚Apr 16, 2026Botnet / Cryptomining Cybersecurity researchers have warned of an active malicious campaign that’s targeting the workforce in…
Defender 0-Day, SonicWall Brute-Force, 17-Year-Old Excel RCE and 15 More Stories
î „Ravie Lakshmananî ‚Apr 16, 2026Hacking News / Cybersecurity News You know that feeling when you open your feed on a Thursday morning…
![[Webinar] Find and Eliminate Orphaned Non-Human Identities in Your Environment](https://blogs.grocliq.com/wp-content/uploads/2026/04/ghost-660x470.jpg)
[Webinar] Find and Eliminate Orphaned Non-Human Identities in Your Environment
î „Mohit Kumarî ‚Apr 16, 2026Artificial Intelligence / Enterprise Security In 2024, compromised service accounts and forgotten API keys were behind 68%…
Hidden Passenger? How Taboola Routes Logged-In Banking Sessions to Temu
î „The Hacker Newsî ‚Apr 16, 2026Data Privacy / Compliance A bank approved a Taboola pixel. That pixel quietly redirected logged-in users to a…
Obsidian Plugin Abuse Delivers PHANTOMPULSE RAT in Targeted Finance, Crypto Attacks
î „Ravie Lakshmananî ‚Apr 16, 2026Application Security / Threat Intelligence A “novel” social engineering campaign has been observed abusing Obsidian, a cross-platform…
Cisco Patches Four Critical Identity Services, Webex Flaws Enabling Code Execution
î „Ravie Lakshmananî ‚Apr 16, 2026Vulnerability / Network Security Cisco has announced patches to address four critical security flaws impacting Identity Services…
UAC-0247 Targets Ukrainian Clinics and Government in Data-Theft Malware Campaign
î „Ravie Lakshmananî ‚Apr 16, 2026Malware / Threat Intelligence The Computer Emergencies Response Team of Ukraine (CERT-UA) has disclosed details of a new campaign…
n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails
î „Ravie Lakshmananî ‚Apr 15, 2026Threat Intelligence / Cloud Security Threat actors have been observed weaponizing n8n, a popular artificial intelligence (AI) workflow automation…
April Patch Tuesday Fixes Critical Flaws Across SAP, Adobe, Microsoft, Fortinet, and More
î „Ravie Lakshmananî ‚Apr 15, 2026Vulnerability / Data Breach A number of critical vulnerabilities impacting products from Adobe, Fortinet, Microsoft, and SAP have…
Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover
î „Ravie Lakshmananî ‚Apr 15, 2026Web Security / Vulnerability A recently disclosed critical security flaw impacting nginx-ui, an open-source, web-based Nginx management…