Episode 42 — 30 Apr 2026
1. Hackers exploit RCE flaws in Qinglong task scheduler for cryptomining
Source: Bleeping Computer
Hackers are exploiting two authentication bypass vulnerabilities in the Qinglong open-source task scheduling tool to deploy cryptominers on developers' servers. Exploitation started in early February, before the security issues were disclosed publicly at the end of the month,...
2. GitHub fixes RCE flaw that gave access to millions of private repos
Source: Bleeping Computer
In early March, GitHub patched a critical remote code execution vulnerability ( CVE-2026-3854 ) that could have allowed attackers to access millions of private repositories. The flaw was reported on March 4, 2026, by researchers at cybersecurity firm Wiz through GitHub's bug...
3. CISA orders feds to patch Windows flaw exploited as zero-day
Source: Bleeping Computer
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to secure their Windows systems against a vulnerability exploited in zero-day attacks. Tracked as CVE-2026-32202 , this security flaw was reported by cybersecurity firm Akamai, which...
4. Learning from the Vercel breach: Shadow AI & OAuth sprawl
Source: Bleeping Computer
Learning from the Vercel breach: Shadow AI & OAuth sprawl Sponsored by Push Security April 29, 2026 09:05 AM 0 Most organizations are rightly nervous about employees adopting unapproved AI tools. Shadow AI use in the form of LLMs, where users upload sensitive data to ChatGPT,...
5. SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack
Source: The Hacker News
Cybersecurity researchers are sounding the alarm about a new supply chain attack campaign targeting SAP-related npm Packages with credential-stealing malware. According to reports from Aikido Security, Onapsis, OX Security, SafeDep, Socket, StepSecurity, and Google-owned Wiz,...
6. CISA Adds Actively Exploited ConnectWise and Windows Flaws to KEV
Source: The Hacker News
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added two security flaws impacting ConnectWise ScreenConnect and Microsoft Windows to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerabilities...
7. Critical Unpatched Flaw Leaves Hugging Face LeRobot Open to Unauthenticated RCE
Source: The Hacker News
Cybersecurity researchers have disclosed details of a critical security flaw impacting LeRobot, Hugging Face's open-source robotics platform with nearly 24,000 GitHub stars, that could be exploited to achieve remote code execution. The vulnerability in question is...
8. New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs
Source: The Hacker News
Cybersecurity researchers have discovered malicious code in an npm package after a malicious package as a dependency to the project by Anthropic's Claude Opus large language model (LLM). The package in question is "@validate-sdk/v2," which is listed on npm as a utility...
