8 New Exploited Flaws, Antigravity IDE Bug, NGate Android Malware, SGLang RCE

THN Daily Updates Webinar ➞ Mythos Madness and What It Means for AppSec Explore 2026 AI security risks as autonomous agents act on production data. Learn emerging attack surfaces, runtime threats, and controls to stop rogue AI before systems and data are exposed. Download Now Sponsored LATEST NEWS Apr 21, 2026 No Exploit Needed: How Attackers Walk Through the Front Door via Identity-Based Attacks The cybersecurity industry has spent the last several years chasing sophisticated threats like zero-days, supply chain compromises, and AI-generated exploits. However, the most reliable entry point for attackers still h... Read More NGate Campaign Targets Brazil, Trojanizes HandyPay to Steal NFC Data and PINs Cybersecurity researchers have discovered a new iteration of an Android malware family called NGate that has been found to abuse a legitimate application called HandyPay instead of NFCGate. "The threat ac... Read More AI Isn't the Threat to Your Organization. Deploying It Faster Than You Can Govern It Is The AI Security Maturity Model™ turns AI strategy into execution with actionable, proven steps for your team. Read More Google Patches Antigravity IDE Flaw Enabling Prompt Injection Code Execution Cybersecurity researchers have discovered a vulnerability in Google's agentic integrated development environment (IDE), Antigravity, that could be exploited to achieve code execution. The flaw, since patched, combines A... Read More CISA Adds 8 Exploited Flaws to KEV, Sets April-May 2026 Federal Deadlines The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added eight new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, including three flaws impacting Cisco Catalyst SD-WAN Mana... Read More Why Your Backups Might Not Save You When Ransomware Hits Ransomware compromises backups by Day 10 targeting, causing missed RTO/RPO and failed recovery. Read More SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files A critical security vulnerability has been disclosed in SGLang that, if successfully exploited, could result in remote code execution on susceptible systems. The vulnerability, tracked as CVE-2026-5760, carries a CVSS s... Read More ⚡ Weekly Recap: Vercel Hack, Push Fraud, QEMU Abused, New Android RATs Emerge & More Monday’s recap shows the same pattern in different places. A third-party tool becomes a way in, then leads to internal access. A trusted download path is briefly swapped to deliver malware. Browser extensions act norma... Read More Webinar ➞ Mythos Madness and What It Means for AppSec Explore 2026 AI security risks as autonomous agents act on production data. Learn emerging attack surfaces, runtime threats, and controls to stop rogue AI before systems and data are exposed. Download Now Sponsored This email was sent to sikubaycom.s3cr3tz@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from THN. To manage your email newsletter preferences, please click here. Contact THN: info@thehackernews.com Unsubscribe THN | K.P BLock, Pitampura, Delhi