23 updates from 7 sources:

The Hacker News: Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug
https://thehackernews.com/2026/04/microsoft-patches-critical-aspnet-core.html

Security Boulevard: Sendmarc Review: Features, User Experiences, Pros & Cons (2026)
https://securityboulevard.com/2026/04/sendmarc-review-features-user-experiences-pros-cons-2026/

SecurityWeek: Google Antigravity in Crosshairs of Security Researchers, Cybercriminals
https://www.securityweek.com/google-antigravity-in-crosshairs-of-security-researchers-cybercriminals/

BleepingComputer: New GoGra malware for Linux uses Microsoft Graph API for comms
https://www.bleepingcomputer.com/news/security/new-gogra-malware-for-linux-uses-microsoft-graph-api-for-comms/

Unit 42: When Wi-Fi Encryption Fails: Protecting Your Enterprise from AirSnitch Attacks
https://unit42.paloaltonetworks.com/air-snitch-enterprise-wireless-attacks/

BleepingComputer: Microsoft traces Universal Print issues to Graph API code change
https://www.bleepingcomputer.com/news/microsoft/microsoft-graph-api-code-change-causes-universal-print-share-issues/

The Hacker News: Toxic Combinations: When Cross-App Permissions Stack into Risk
https://thehackernews.com/2026/04/toxic-combinations-when-cross-app.html

SecurityWeek: North Korean Hackers Use AppleScript, ClickFix in Fresh macOS Attacks
https://www.securityweek.com/north-korean-hackers-use-applescript-clickfix-in-fresh-macos-attacks/

The Hacker News: Lotus Wiper Malware Targets Venezuelan Energy Systems in Destructive Attack
https://thehackernews.com/2026/04/lotus-wiper-malware-targets-venezuelan.html

SecurityWeek: Claude Mythos Finds 271 Firefox Vulnerabilities
https://www.securityweek.com/claude-mythos-finds-271-firefox-vulnerabilities/

SecurityWeek: Are SBOMs Failing? Supply Chain Attacks Rise as Security Teams Struggle With SBOM Data
https://www.securityweek.com/are-sboms-failing-supply-chain-attacks-rise-as-security-teams-struggle-with-sbom-data/

SecurityWeek: Mirai Botnet Targets Flaw in Discontinued D-Link Routers
https://www.securityweek.com/mirai-botnet-targets-flaw-in-discontinued-d-link-routers/

🦠 Malwarebytes: Researcher claims Claude Desktop installs “spyware” on macOS
https://www.malwarebytes.com/blog/news/2026/04/researcher-claims-claude-desktop-installs-spyware-on-macos

SecurityWeek: New Wiper Malware Targeted Venezuelan Energy Sector Prior to US Intervention
https://www.securityweek.com/new-wiper-malware-targeted-venezuelan-energy-sector-prior-to-us-intervention/

Security Boulevard: Unauthorized Users Reportedly Gain Access to Anthropic’s Mythos AI Model
https://securityboulevard.com/2026/04/unauthorized-users-reportedly-gain-access-to-anthropics-mythos-ai-model/

BleepingComputer: Microsoft Teams to get efficiency mode on PCs with limited resources
https://www.bleepingcomputer.com/news/microsoft/microsoft-teams-gets-efficiency-mode-for-hardware-constrained-devices/

The Record from Recorded Future News: New Defense Department cyber strategy imminent, official says
https://therecord.media/defense-cyber-strategy-warfare

🦠 Malwarebytes: Malicious trading website drops malware that hands your browser to attackers
https://www.malwarebytes.com/blog/threat-intel/2026/04/malicious-trading-website-drop-malware-that-hands-over-your-browser-to-attackers

The Record from Recorded Future News: UK cyber agency handling four major incidents a week as nation-state attacks surge
https://therecord.media/UK-cyberattacks-ncsc-china

SecurityWeek: Most Serious Cyberattacks Against the UK Now From Russia, Iran and China, Cyber Chief Says
https://www.securityweek.com/most-serious-cyberattacks-against-the-uk-now-from-russia-iran-and-china-cyber-chief-says/

BleepingComputer: New npm supply-chain attack self-spreads to steal auth tokens
https://www.bleepingcomputer.com/news/security/new-npm-supply-chain-attack-self-spreads-to-steal-auth-tokens/

Security Boulevard: The Time Is Now to Prepare for CRA Enforcement
https://securityboulevard.com/2026/04/the-time-is-now-to-prepare-for-cra-enforcement/

The Record from Recorded Future News: China’s cyber capabilities now equal to the US, warns Dutch intelligence
https://therecord.media/china-cyber-capabilities-match-us-dutch-intel-says

#InfoSec #SecurityNews