BleepingComputer.com

"UK warns of Chinese hackers using proxy networks to evade detection."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 23 April 2026, 1255 UTC.

Content and Source:  "BleepingComputer.com."

URL--https://www.bleepingcomputer.com/

Please check URL or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Latest Articles

• 
   
  Security

  UK warns of Chinese hackers using proxy networks to evade detection

  The United Kingdom's National Cyber Security Centre (NCSC-UK) and international partners warned that China-nexus hackers are increasingly using large-scale proxy networks of hijacked consumer devices to evade detection and disguise their malicious activity.

  • Sergiu Gatlan
   
  • April 23, 2026
   
  • 08:28 AM
   
  •  0
• 
   
  Security

  New GopherWhisper APT group abuses Outlook, Slack, Discord for comms

  A previously undocumented state-backed threat actor named GopherWhisper is using a Go-based custom toolkit and legitimate services like Microsoft 365 Outlook, Slack, and Discord in attacks against government entities.

  • Bill Toulas
   
  • April 23, 2026
   
  • 08:06 AM
   
  •  0
• 
   

  New report: How browser-based attacks are bypassing your security controls 

  Browser-based attacks, from AITM phishing and ClickFix to malicious OAuth apps and session hijacking, are driving today's biggest breaches.

  A new report from Push Security breaks down the techniques attackers are using, real-world case studies, and the detection gaps leaving security teams exposed.

  • Push Security Sponsorship
• 
   
  Deals

  An easier way to handle PDFs is just $30 for lifetime access

  Working with PDFs often means switching between tools—one for editing, another for converting, and maybe a third for scanning or annotating. AcePDF Converter & Editor brings those functions together into a single app, and it is on sale for a one-time $29.99 (MSRP $99.99).

  • BleepingComputer Deals
   
  • April 23, 2026
   
  • 07:11 AM
   
  •  0
• 
   
  Security, Microsoft

  CISA orders feds to patch BlueHammer flaw exploited as zero-day

  CISA has ordered U.S. federal agencies to patch a Microsoft Defender privilege escalation flaw (dubbed BlueHammer) that has been exploited in zero-day attacks.

  • Sergiu Gatlan
   
  • April 23, 2026
   
  • 07:05 AM
   
  •  0
• 
   
  Security, Apple

  Apple fixes bug that let the FBI recover deleted Signal messages

  Apple has released out-of-band security updates for iPhone and iPad devices to fix a Notification Services flaw that could allow notifications marked for deletion to remain stored on the device.

  • Lawrence Abrams
   
  • April 22, 2026
   
  • 04:58 PM
   
  •  0
• 
   
  Security, Hardware

  New Mirai campaign exploits RCE flaw in EoL D-Link routers

  A new Mirai-based malware campaign is actively exploiting CVE-2025-29635, a high-severity command-injection vulnerability affecting D-Link DIR-823X routers, to enlist devices into the botnet.

  • Bill Toulas
   
  • April 22, 2026
   
  • 04:04 PM
   
  •  0
• 
   
  Deals

  This refurbished 512GB EliteBook still feels premium at just $250

  Finding a laptop that balances performance, portability, and price isn't always easy, but this Grade A refurbished HP EliteBook 840 G7 makes a strong case for itself. It's also on sale for 52% off the MSRP for a limited time.

  • BleepingComputer Deals
   
  • April 22, 2026
   
  • 03:33 PM
   
  •  0
• 
   
  Security

  Kyber ransomware gang toys with post-quantum encryption on Windows

  A new Kyber ransomware operation is targeting Windows systems and VMware ESXi endpoints in recent attacks, with one variant implementing Kyber1024 post-quantum encryption.

  • Bill Toulas
   
  • April 22, 2026
   
  • 02:52 PM
   
  •  1
• 
   
  Security

  Spain dismantles major $4.7M manga piracy platform, arrests four

  The Spanish police have dismantled the largest Spanish-language manga piracy platform, operating since 2014, with millions of monthly users from around the globe.

  • Bill Toulas
   
  • April 22, 2026
   
  • 11:06 AM
   
  •  2
• 
   
  Security

  Inside Caller-as-a-Service Fraud: The Scam Economy Has a Hiring Process

  Fraud operations now operate like call centers, complete with hiring, training, and performance tracking. Flare reveals how cybercriminals manage "Caller-as-a-Service" operations like a professional sales team.

  • Flare
   
  • April 22, 2026
   
  • 10:01 AM
   
  •  0
• 
   
  Security

  New npm supply-chain attack self-spreads to steal auth tokens

  A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.

  • Bill Toulas
   
  • April 22, 2026
   
  • 08:57 AM
   
  •  1
• 
   
  Microsoft

  Microsoft Teams to get efficiency mode on PCs with limited resources

  Microsoft is preparing to roll out a new Efficiency Mode for Microsoft Teams for systems with limited CPU and memory resources to improve app responsiveness.

  • Sergiu Gatlan
   
  • April 22, 2026
   
  • 08:24 AM
   
  •  0
• 
   
  Deals

  Award-winning kids’ app makes screen time educational for $60

  Pok Pok is a Montessori-inspired educational app designed for kids ages 2 to 8, and it's currently available as a lifetime subscription for $59.99 (regularly $250).

  • BleepingComputer Deals
   
  • April 22, 2026
   
  • 07:12 AM
   
  •  0
• 
   
  Microsoft

  Microsoft traces Universal Print issues to Graph API code change

  Microsoft says that an ongoing Universal Print sharing issue that prevents users from creating some printer shares is due to a Microsoft Graph API code change.

  • Sergiu Gatlan
   
  • April 22, 2026
   
  • 06:15 AM
   
  •  0
• 
   
  Security, Linux

  New GoGra malware for Linux uses Microsoft Graph API for comms

  A Linux variant of the GoGra backdoor uses legitimate Microsoft infrastructure, relying on an Outlook inbox for stealthy payload delivery.

  • Bill Toulas
   
  • April 22, 2026
   
  • 06:00 AM
   
  •  0
• 
   
  Microsoft, Security

  Microsoft releases emergency patches for critical ASP.NET flaw

  Microsoft has released out-of-band (OOB) security updates to patch a critical ASP.NET Core privilege escalation vulnerability.

  • Sergiu Gatlan
   
  • April 22, 2026
   
  • 04:08 AM
   
  •  0
• 
   
  Security, Microsoft

  Over 1,300 Microsoft SharePoint servers vulnerable to spoofing attacks

  Over 1,300 Microsoft SharePoint servers exposed online remain unpatched against a spoofing vulnerability that was exploited as a zero-day and is still being abused in ongoing attacks.

  • Sergiu Gatlan
   
  • April 22, 2026
   
  • 02:53 AM
   
  •  0
• 
   
  Security, Government

  French govt agency confirms breach as hacker offers to sell data

  France Titres, the government agency in France for issuing and managing administrative documents has disclosed a data breach after a threat actor claimed the attack and stealing citizen data.

  • Bill Toulas
   
  • April 21, 2026
   
  • 05:46 PM
   
  •  0
• 
   
  Security

  New Lotus data wiper used against Venezuelan energy, utility firms

  A previously undocumented data-wiping malware dubbed Lotus was used last year in targeted attacks against energy and utilities organizations in Venezuela.

  • Bill Toulas
   
  • April 21, 2026
   
  • 02:38 PM
   
  •  0
• 
   
  Deals

  Lifetime cybersecurity training is on sale for a one-time $53

  This InfoSec4TC Platinum Membership offers lifetime access to more than 90 self-paced courses covering areas such as ethical hacking, governance and compliance (GRC), and certification prep for exams like the CISSP. You can get it now for just $52.99 (MSRP $280) for a limited time.

  • BleepingComputer Deals
   
  • April 21, 2026
   
  • 02:11 PM
   
  •  0

• 1
 
• 2
 
• 3
 
• 4
 
• 5
 

View More