AI-curated • Last 24 hours • Updated every 2 hours
Rockstar Games confirmed a limited data exposure incident related to GTA 6. The hacking group ShinyHunters allegedly exploited the company's systems and issued a ransom demand with an April 14 deadline. The extent of the exposed data and Rockstar's response to the ransom demand remain unclear.
A critical unauthenticated remote code execution vulnerability (CVE-2026-39987, CVSS 9.3) in the Marimo open-source Python notebook platform was exploited within 10 hours of public disclosure. The flaw exposes an interactive terminal via a WebSocket endpoint without authentication, affecting versions 0.20.4 and earlier. Sysdig observed 125 IPs conducting reconnaissance and attackers harvesting cloud credentials and environment variables within minutes of exploitation.
Adobe released emergency patches for a critical Acrobat and Reader zero-day (CVE-2026-34621, CVSS 9.6) that has been exploited in the wild since approximately November 2025. The vulnerability allows arbitrary code execution via improperly controlled prototype attribute modifications and affects both Windows and macOS versions. Analysis suggests a likely APT group is behind the attacks, with malicious PDFs using Russian-language lures referencing Russia's oil and gas sector.
Threat actors compromised CPUID's website for under 24 hours (April 9-10) to distribute trojanized CPU-Z and HWMonitor installers that deployed the STX RAT malware via DLL side-loading. The RAT provides remote control, infostealer capabilities, and hidden VNC access. Kaspersky identified over 150 victims across Brazil, Russia, and China, including organizations in retail, manufacturing, and telecommunications.
China has imposed new security restrictions following an alleged data breach involving its supercomputing infrastructure. Details on the scope of the breach and what data was compromised have not been fully disclosed. The new curbs appear aimed at tightening access controls around sensitive computing resources.
Manage My Health, a healthcare platform, suffered a cyberattack and is facing ransom demands from the attackers. The attack is described as massive, though specific details about the data compromised have not been fully disclosed. The incident potentially affects patient health records managed through the platform.