Comments on: Cyber security news April 2026

By: Tomi Engdahl

Tomi Engdahl — Sat, 25 Apr 2026 22:25:53 +0000

APT41 Delivers ‘Zero-Detection’ Backdoor to Harvest Cloud Credentials
The prolific China-backed threat group is targeting AWS, Google, Azure, and Alibaba cloud environments and using typosquatting to obscure C2 communication.
https://www.darkreading.com/cloud-security/apt41-zero-detection-backdoor-harvest-cloud-credentials

By: Tomi Engdahl

Tomi Engdahl — Sat, 25 Apr 2026 22:13:22 +0000

OT Lacks the Tools for Cryptographic Readiness
OT asset owners are being asked by regulators to attest to their post-quantum cryptographic readiness without the appropriate tooling, resulting in paperwork dressed up to look like genuine security.
https://www.darkreading.com/ics-ot-security/ot-lacks-tools-cryptographic-readiness

By: Tomi Engdahl

Tomi Engdahl — Sat, 25 Apr 2026 22:02:30 +0000

MITRE releases a shared fraud-cyber framework built from real attack data
Financial fraud losses in the United States reached $16.6 billion in 2024, up from $4.2 billion in 2020. Behind those numbers is a structural problem: the teams responsible for stopping fraud, fraud investigators and cybersecurity analysts, have historically operated separately, using different tools, different terminology, and different mental models of how attacks unfold.
https://www.helpnetsecurity.com/2026/04/13/mitre-fight-fraud-framework-f3/

By: Tomi Engdahl

Tomi Engdahl — Sat, 25 Apr 2026 21:46:40 +0000

https://www.darkreading.com/threat-intelligence/nist-cutbacks-nvd-handling-impacts-cyber-teams

By: Tomi Engdahl

Tomi Engdahl — Sat, 25 Apr 2026 20:58:47 +0000

https://cybersecuritynews.com/defender-0-day-redsun/

By: Tomi Engdahl

Tomi Engdahl — Sat, 25 Apr 2026 20:14:18 +0000

https://www.tivi.fi/uutiset/a/6a646521-e454-4233-8a62-d65dff10d70f

By: Tomi Engdahl

Tomi Engdahl — Sat, 25 Apr 2026 09:38:24 +0000

https://thehackernews.com/2026/04/china-linked-gopherwhisper-infects-12.html

By: Tomi Engdahl

Tomi Engdahl — Sat, 25 Apr 2026 06:21:41 +0000

Pankki varoittaa: Älä käytä tällaista laitetta asiointiin
https://www.is.fi/digitoday/tietoturva/art-2000011964888.html

Yksi suurimmista riskitekijöistä digiasioinnissa ovat päivittämättömät älypuhelimet ja käyttöjärjestelmät, Danske Bank varoittaa.

By: Tomi Engdahl

Tomi Engdahl — Fri, 24 Apr 2026 15:56:09 +0000

https://www.darkreading.com/ics-ot-security/serial-ip-devices-thousands-of-bugs

By: Tomi Engdahl

Tomi Engdahl — Fri, 24 Apr 2026 05:17:08 +0000

Police investigate after claims ‘hair dryer used to manipulate weather sensor to win $34k bet’
Agencies suspect that a sensor at Charles de Gaulle airport in Paris was tampered with after suspicious bets were placed on Polymarket
https://www.independent.co.uk/news/world/europe/hair-dryer-bet-polymarket-france-police-b2963620.html?fbclid=IwdGRjcARXzu1jbGNrBFfOzmV4dG4DYWVtAjExAHNydGMGYXBwX2lkDDM1MDY4NTUzMTcyOAABHjLzxDm1iPBZNlHX5WX6OsctRHD50BYOJSADRJOX_TgVjEmYiafgjxzIwx_0_aem_c8M7hvDyynGEgbgQ4oQ7rQ

French officials are investigating after $34,000 (£25,100) was won on a weather bet, following claims that a temperature sensor at Charles de Gaulle airport in Paris was tampered with.