Police Using Ad Data to Track Users, New Chrome Security Feature, Zig Dropper Attack

THN Daily Updates The Art of Attack: Attacker Mindset for Security Professionals ($30.00 Value) FREE for a Limited Time Take on the perspective of an attacker with this insightful new resource for ethical hackers, pentesters, and social engineers Download Now Sponsored LATEST NEWS Apr 11, 2026 Citizen Lab: Law Enforcement Used Webloc to Track 500 Million Devices via Ad Data Hungarian domestic intelligence, the national police in El Salvador, and several U.S. law enforcement and police departments have been attributed to the use of an advertising-based global geolocation surveillance s... Read More GlassWorm Campaign Uses Zig Dropper to Infect Multiple Developer IDEs Cybersecurity researchers have flagged yet another evolution of the ongoing GlassWorm campaign, which employs a new Zig dropper that's designed to stealthily infect all integrated development environments (IDEs) on... Read More Browser Extensions Are the New AI Consumption Channel That No One Is Talking About While much of the discussion on AI security centers around protecting ‘shadow’ AI and GenAI consumption, there's a wide-open window nobody's guarding: AI browser extensions. A new report from L... Read More [Webinar] How to Close Identity Gaps in 2026 Before AI Exploits Enterprise Risk Hundreds of disconnected apps persist in 2026 enterprises, Ponemon finds, enabling AI agents to amplify credential risks and expand attack surfaces. Read More Google Rolls Out DBSC in Chrome 146 to Block Session Theft on Windows Google has made Device Bound Session Credentials (DBSC) generally available to all Windows users of its Chrome web browser, months after it began testing the security feature in open beta. The p... Read More Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of Disclosure A critical security vulnerability in Marimo, an open-source Python notebook for data science and analysis, has been exploited within 10 hours of public disclosure, according to findings from Sysdig. The v... Read More Backdoored Smart Slider 3 Pro Update Distributed via Compromised Nextend Servers Unknown threat actors have hijacked the update system for the Smart Slider 3 Pro plugin for WordPress and Joomla to push a poisoned version containing a backdoor. The incident impacts Smart Slider 3 Pro version 3.5.1.35... Read More EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallet Installs Details have emerged about a now-patched security vulnerability in a widely used third-party Android software development kit (SDK) called EngageLab SDK that could have put millions of cryptocurrency wall... Read More The Art of Attack: Attacker Mindset for Security Professionals ($30.00 Value) FREE for a Limited Time Take on the perspective of an attacker with this insightful new resource for ethical hackers, pentesters, and social engineers Download Now Sponsored This email was sent to sikubaycom.s3cr3tz@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from THN. To manage your email newsletter preferences, please click here. Contact THN: info@thehackernews.com Unsubscribe THN | K.P BLock, Pitampura, Delhi