Security News & Research

Latest cybersecurity news, threat intelligence and vulnerability disclosures.

Supply Chain

Backdoored Smart Slider 3 Pro Update Distributed via Compromised Nextend Servers

tarang.parmar0 Apr 10, 2026 2 min read

Unknown threat actors hijacked the update system for Smart Slider 3 Pro plugin, distributing a backdoored version to thousands of WordPress sites.

#Backdoor#Critical#Nextend#SupplyChain#WordPress

Read Full Article

Vulnerability

Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of Disclosure

tarang.parmar0 Apr 10, 2026 2 min read

A critical security vulnerability in Marimo, an open-source Python notebook for data science and analysis, has been actively exploited within just 10 hours of public disclosure.

#Critical#CVE-2026-39987#Marimo#Python#RCE

Read Full Article

APT

Russian APT28 Group Exploits SOHO Routers for Global DNS Hijacking

tarang.parmar0 Apr 10, 2026 2 min read

A new campaign by Russia-linked threat actor APT28, also known as Forest Blizzard, has been discovered targeting small office/home office routers globally to conduct DNS hijacking attacks on critical infrastructure.

#APT#APT28#Critical#DNS#ForestBlizzard

Read Full Article