Bleeping Computer.com

"New Microsoft Defender 'Red Sun' zero-day PoC grants SYSTEM privileges."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 16 April 2026, 2152 UTC.

Content and Source:  "BleepingComputer.com."

https://www.bleepingcomputer.com/

Please check URL or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Latest Articles

• 
   
  Microsoft, Security

  New Microsoft Defender “RedSun” zero-day PoC grants SYSTEM privileges

  A researcher known as "Chaotic Eclipse" has published a proof-of-concept exploit for a second Microsoft Defender zero-day, dubbed "RedSun," in the past two weeks, protesting how the company works with cybersecurity researchers.

  • Lawrence Abrams
   
  • April 16, 2026
   
  • 04:19 PM
   
  •  0
• 
   
  Deals

  Add Azure Architect & Administrator skills to your resume for $40

  Get lifetime access to the 2026 Microsoft Azure Architect & Administrator Exam Certification Prep Bundle for only $39.99 (MSRP $117).

  • BleepingComputer Deals
   
  • April 16, 2026
   
  • 02:11 PM
   
  •  0
• 
   

  State of Browser Attacks: Learn from John Hammond, Troy Hunt & Matt Johansen 

  Join Push Security's free three-part webinar series where top security researchers break down the browser-based attacks driving today's biggest breaches - from AiTM phishing and ConsentFix to compromised credentials and session hijacking.

  • Push Security Sponsorship
• 
   
  Security

  Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face

  Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware hosted on Hugging Face Spaces.

  • Bill Toulas
   
  • April 16, 2026
   
  • 12:58 PM
   
  •  0
• 
   
  Google, Security

  Google expands Gemini AI use to fight malicious ads on its platform

  Google says it is increasingly using its Gemini AI models to detect and block harmful ads on its advertising platforms, as scammers and threat actors continue to evolve their tactics to evade detection.

  • Lawrence Abrams
   
  • April 16, 2026
   
  • 11:24 AM
   
  •  0
• 
   
  Security, Artificial Intelligence

  New ATHR vishing platform uses AI voice agents for automated attacks

  A new cybercrime platform called ATHR can harvest credentials via fully automated voice phishing attacks that use both human operators and AI agents for the social engineering phase.

  • Bill Toulas
   
  • April 16, 2026
   
  • 10:09 AM
   
  •  0
• 
   
  Security

  Most "AI SOCs" Are Just Faster Triage. That's Not Enough.

  AI-powered SOC tools promise automation, but most only speed up triage instead of reducing real workload. Tines shows how real gains come from end-to-end workflows that execute actions across systems, not just summarize alerts.

  • Tines
   
  • April 16, 2026
   
  • 10:02 AM
   
  •  0
• 
   
  Security

  Cisco says critical Webex Services flaw requires customer action

  Cisco has released security updates to patch four critical vulnerabilities, including a fixed improper certificate validation flaw in the company's cloud-based Webex Services platform that requires further customer action.

  • Sergiu Gatlan
   
  • April 16, 2026
   
  • 08:01 AM
   
  •  0
• 
   
  Deals

  Get 3 years of Surfshark VPN for $67.20 with this coupon

  A Surfshark VPN Starter Plan: 3-Year Subscription is available for $83.99 (reg. $430), and using the coupon code VPN20 at checkout drops the price further to $67.20. Note that this deal is only available to new Surfshark users.

  • BleepingComputer Deals
   
  • April 16, 2026
   
  • 07:12 AM
   
  •  0
• 
   
  Security, Education

  Data breach at edtech giant McGraw Hill affects 13.5 million accounts

  The ShinyHunters extortion group has leaked data from 13.5 million McGraw Hill user accounts, stolen after breaching the company's Salesforce environment earlier this month.

  • Sergiu Gatlan
   
  • April 16, 2026
   
  • 06:35 AM
   
  •  0
• 
   
  Security

  US nationals behind DPRK IT worker 'laptop farm' sent to prison

  Two U.S. nationals have been sent to prison for helping North Korean remote information technology (IT) workers to pose as U.S. residents and get hired by over 100 companies across the country, including many Fortune 500 firms.

  • Sergiu Gatlan
   
  • April 16, 2026
   
  • 04:32 AM
   
  •  0
• 
   
  Microsoft

  Microsoft: April Windows Server 2025 update may fail to install

  Microsoft is investigating an issue causing this month's KB5082063 security update to fail to install on some Windows Server 2025 systems.

  • Sergiu Gatlan
   
  • April 16, 2026
   
  • 03:37 AM
   
  •  0
• 
   
  Security

  Critical Nginx UI auth bypass flaw now actively exploited in the wild

  A critical vulnerability in Nginx UI with Model Context Protocol (MCP) support is now being exploited in the wild for full server takeover without authentication.

  • Bill Toulas
   
  • April 15, 2026
   
  • 06:35 PM
   
  •  1
• 
   
  Security

  New AgingFly malware used in attacks on Ukraine govt, hospitals

  A new malware family named 'AgingFly' has been identified in attacks against local governments and hospitals that steal authentication data from Chromium-based browsers and WhatsApp messenger.

  • Bill Toulas
   
  • April 15, 2026
   
  • 05:57 PM
   
  •  0
• 
   
  Security

  WordPress plugin suite hacked to push malware to thousands of sites

  More than 30 WordPress plugins in the EssentialPlugin package have been compromised with malicious code that allows unauthorized access to websites running them.

  • Bill Toulas
   
  • April 15, 2026
   
  • 04:33 PM
   
  •  0
• 
   
  Deals

  Access GPT, Gemini, and Claude in one $30 app to get tasks done faster

  Try the ChatOn Premium Plan for one year at $29.99 and see how an all-in-one AI assistant can simplify workflows, boost productivity, and turn ideas into polished content across devices.

  • BleepingComputer Deals
   
  • April 15, 2026
   
  • 02:02 PM
   
  •  0
• 
   
  Security

  Signed software abused to deploy antivirus-killing scripts

  A digitally signed adware tool has deployed payloads running with SYSTEM privileges that disabled antivirus protections on thousands of endpoints, some in the educational, utilities, government, and healthcare sectors.

  • Bill Toulas
   
  • April 15, 2026
   
  • 01:59 PM
   
  •  0
• 
   
  Microsoft, Security

  Microsoft pays $2.3M for cloud and AI flaws at Zero Day Quest

  Microsoft has awarded $2.3 million to security researchers after receiving nearly 700 submissions during this year's Zero Day Quest hacking contest.

  • Sergiu Gatlan
   
  • April 15, 2026
   
  • 12:20 PM
   
  •  0
• 
   
  Security, Microsoft

  CISA flags Windows Task Host vulnerability as exploited in attacks

  CISA warned U.S. government agencies to secure their systems against a Windows Task Host privilege escalation vulnerability that could allow attackers to gain SYSTEM privileges.

  • Sergiu Gatlan
   
  • April 15, 2026
   
  • 10:51 AM
   
  •  0
• 
   
  Security

  Rolling Networks: Securing the Transportation Sector

  Modern trucks are rolling networks packed with sensors, connectivity, and attack surfaces, creating new cyber risks. NMFTA's Cybersecurity Conference brings industry leaders together to tackle emerging threats in transportation.

  • NMFTA
   
  • April 15, 2026
   
  • 10:00 AM
   
  •  0
• 
   
  Microsoft

  Microsoft: April updates trigger BitLocker key prompts on some servers

  Microsoft confirmed on Tuesday that some Windows Server 2025 devices will boot into BitLocker recovery after installing the April 2026 KB5082063 Windows security update.

  • Sergiu Gatlan
   
  • April 15, 2026
   
  • 07:41 AM
   
  •  4

• 1
 
• 2
 
• 3
 
• 4
 
• 5
 

View More