08BA 71D7 84FF F6B7 17A0 FBA6 71BA 1673 5DBA 4C70

Infosec bits for 2026 week 17

Zoya Vilakazi | April 24, 2026, 12:35 p.m.

Cybersecurity News:

  • Africa Relinquishes Cyberattack Lead to Latin America — For Nowtransformation in partnership with Google Cloud [Robert Lemos, Dark Reading]
  • SA credentials sold on dark web amid data breach wave [Admire Moyo, IT Web]
  • WhatsApp Leaks User Metadata to Attackers [Nate Nelson, Dark Reading]
  • Phishing and MFA exploitation: Targeting the keys to the kingdom [Kri Dontje, CISCO Talos]

    • Vulnerabilities & Patches:

  • New Cisco firewall malware can only be killed by pulling the plug [Zeljka Zorz, Help Net Security]
  • Claude Mythos AI Model Uncovers 271 Zero-Day Vulnerabilities in Firefox [Guru Baran, Cybersecurity News]
  • Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug [Ravie Lakshmanan, The Hacker News]
  • Microsoft SharePoint vulnerability widely exposed across multiple countries [David Jones, Cybersecurity Dive]
  • Adobe Patches Actively Exploited Acrobat Reader Zero-Day Vulnerability [Khyati Vishwakarma, Security Boulevard]
  • Hackers exploit file upload bug in Breeze Cache WordPress plugin [Bill Toulas, Bleeping Computer]
  • Ubuntu 26.04 LTS delivers memory-safe system tools and live patching for Arm servers [Mirko Zorz, Help Net Security]

    • Malware:

  • New Mirai campaign exploits RCE flaw in EoL D-Link routers [Bill Toulas, Bleeping Computer]
  • Kyber ransomware gang toys with post-quantum encryption on Windows [Bill Toulas, Bleeping Computer]

    • Contact Us:

    csirt {a} sanren.ac.za

    CSIRT:

    0x71BA16735DBA4C70

    Heloise:

    0xD367253D12C5BBBC

    Zoya:

    0x14D11B78C23A3DEF

    Anele:

    0x1EC1265990F8D258

    This website uses cookies to ensure you get the best experience on our site. Learn more