Apple strengthens Mac security, widens bug bounty push

Apple is strengthening macOS security with a mix of built-in malware protections, behavioural detection systems and expanded ...

Avast Free Antivirus: The Go-To Software for Millions of Users

Discover Avast’s free version. Get full details on its key features, how it protects your device, how to safely install it, ...
SecurityWeek

In Other News: Train Hacker Arrested, PamDOORa Linux Backdoor, New CISA Director Frontrunner

US gov targets 72-hour patch cycles, malware uses Windows Phone Link to steal OTPs, spy operation targets Eurasian drone industry.
Daily News Hungary

Russia’s key spy university revealed with Budapest connection

A prestigious Moscow university has been exposed as a key hub in Russia’s cyber warfare strategy that includes hacking, ...
Dark Reading

After Replacing TeamPCP Malware, 'PCPJack' Steals Cloud Secrets

PCPJack makes innovative use of parquet files for stealthy, pre-validated target discovery as it canvasses multiple cloud ...

New PCPJack worm steals credentials, cleans TeamPCP infections

A new malware framework called PCPJack is stealing credentials from exposed cloud infrastructure while actively removing ...
Microsoft

ClickFix campaign uses fake macOS utilities lures to deliver infostealers

Threat actors are targeting macOS users with fake utility fixes that trick them into running malicious Terminal commands.

SecureIQLab Opens Post-Quantum Validation of Cloud-Native Firewalls

Independent AMTSO-registered methodology validates cloud-native firewalls against NIST post-quantum standards as CISA ...

These 5 critical Windows Defender settings are off by default - turn them on ASAP

Windows Defender has several security settings, including some you need to switch on to get the utmost protection. Here's why ...
Hackaday

This Week In Security: State Malware, State Hardware Bans, And Stuxnet Before Stuxnet Was Cool

Making headlines everywhere is the CopyFail Linux kernel vulnerability, which allows local privilege escalation (LPE) from any user to root privileges on most kernels and distributions. Local ...
The Hacker News

New Python Backdoor Uses Tunneling Service to Steal Browser and Cloud Credentials

DEEP#DOOR embeds a Python RAT in a dropper script, using bore[.]pub C2 to steal credentials and evade Windows defenses, ...
The Hacker News

SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack

SAP npm packages poisoned on April 29, 2026 + AES-256-GCM encrypted credential theft + AI coding tools abused for spread.