73 fake VS Code extensions, Stuxnet-like malware found and CAPTCHA IRSF and scam campaigns

THN Daily Updates Coexisting with AI: Work, Love, and Play in a Changing World ($28.00 Value) FREE for a Limited Time Your comprehensive, easy-to-understand guide on AI’s impact in business and life. Download Now Sponsored LATEST NEWS Apr 27, 2026 Mythos Changed the Math on Vulnerability Discovery. Most Teams Aren't Ready for the Remediation Side Anthropic’s Claude Mythos Preview has dominated security discussions since its April 7 announcement. Early reporting describes a powerful cybersecurity-focused AI system capable of identifying vulnerabilities at scale a... Read More PhantomCore Exploits TrueConf Vulnerabilities to Breach Russian Networks A pro-Ukrainian hacktivist group called PhantomCore has been attributed to attacks actively targeting servers running TrueConf video conferencing software in Russia since September 2025. That's according to a report pub... Read More 99% of What AI Found Is Still Unpatched. The Defensive Answer Is Coming Atlassian CISO, Frost & Sullivan, Kraft Heinz, and Picus Security. Register and get our research brief: 12 recommendations to validate your defenses before Glasswing hits July. Read More Researchers Uncover 73 Fake VS Code Extensions Delivering GlassWorm v2 Malware Cybersecurity researchers have flagged dozens of Microsoft Visual Studio Code (VS Code) extensions on the Open VSX repository that are linked to a persistent information-stealing campaign dubbed GlassWorm. The cluster o... Read More Fake CAPTCHA IRSF Scam and 120 Keitaro Campaigns Drive Global SMS, Crypto Fraud Cybersecurity researchers have disclosed details of a telecommunications fraud campaign that uses fake CAPTCHA verification tricks to dupe unsuspecting users into sending international text messages that incur charges o... Read More Work Moved Into the Browser. Security Didn't. AI Is Exposing the Gap User-initiated shell ran via HTTPS CAPTCHA at 2:14 p.m. Tuesday, exposing browser blind spot and breaking session attribution. Read More Researchers Uncover Pre-Stuxnet ‘fast16’ Malware Targeting Engineering Software Cybersecurity researchers have discovered a new Lua-based malware created years before the notorious Stuxnet worm that aimed to sabotage Iran's nuclear program by destroying uranium enrichment centrifuges. According to ... Read More CISA Adds 4 Exploited Flaws to KEV, Sets May 2026 Federal Deadline The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added four vulnerabilities impacting SimpleHelp, Samsung MagicINFO 9 Server, and D-Link DIR-823X series routers to its Known Exploited Vulnerabi... Read More Coexisting with AI: Work, Love, and Play in a Changing World ($28.00 Value) FREE for a Limited Time Your comprehensive, easy-to-understand guide on AI’s impact in business and life. Download Now Sponsored This email was sent to sikubaycom.s3cr3tz@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from THN. To manage your email newsletter preferences, please click here. Contact THN: info@thehackernews.com Unsubscribe THN | K.P BLock, Pitampura, Delhi