IT‑Sicherheits‑Digest (2026-04-10)

Aktuelle Security‑News

heise security

  • Anthropic-KI Mythos: Dringende Warnung an US-Banken, BSI erwartet Umwälzungen (2026-04-10 04:52 UTC)
    • Kurz: Anthropics neue KI Mythos sorgt für Aufregung. In den USA wurden die Chefs der systemrelevanten Banken einbestellt, hier erwartet das BSI weitreichende Folgen.
    • Quelle: Link
  • TP-Link-Angriff: Microsoft im Visier, Deutschland im Glück (2026-04-09 14:40 UTC)
    • Kurz: Die Attacke auf Router und Access Points von TP-Link zielte auf die Übernahme von Microsofts Office-Cloud-Sessions. Deutschland war laut BSI wenig betroffen.
    • Quelle: Link
  • Juniper: Unter anderem Root-Sicherheitslücken in Junos OS geschlossen (2026-04-09 13:44 UTC)
    • Kurz: Angreifer können an zahlreichen Schwachstellen im Netzwerkbetriebssystem Junos OS ansetzen. Nun gibt es Sicherheitsupdates.
    • Quelle: Link

BleepingComputer

  • New ‘LucidRook’ malware used in targeted attacks on NGOs, universities (2026-04-09 22:04 UTC)
    • Kurz: A new Lua-based malware, called LucidRook, is being used in spear-phishing campaigns targeting non-governmental organizations and universities in Taiwan. […]
    • Quelle: Link
  • New VENOM phishing attacks steal senior executives’ Microsoft logins (2026-04-09 21:37 UTC)
    • Kurz: Threat actors using a previously undocumented phishing-as-a-service (PhaaS) platform called “VENOM” are targeting credentials of C-suite executives across multiple industries. […]
    • Quelle: Link
  • Healthcare IT solutions provider ChipSoft hit by ransomware attack (2026-04-09 19:46 UTC)
    • Kurz: Dutch healthcare software vendor ChipSoft has been impacted by a ransomware attack that forced the company to take offline its website and digital services for patients and healthcare providers. […]
    • Quelle: Link

The Hacker News

  • EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallet Installs (2026-04-09 17:26 UTC)
    • Kurz: Details have emerged about a now-patched security vulnerability in a widely used third-party Android software development kit (SDK) called EngageLab SDK that could have put millions of cryptocurrency wallet users at risk. “This flaw allows …
    • Quelle: Link
  • UAT-10362 Targets Taiwanese NGOs with LucidRook Malware in Spear-Phishing Campaigns (2026-04-09 16:23 UTC)
    • Kurz: A previously undocumented threat cluster dubbed UAT-10362 has been attributed to spear-phishing campaigns targeting Taiwanese non-governmental organizations (NGOs) and suspected universities to deploy a new Lua-based malware called LucidRoo…
    • Quelle: Link
  • ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories (2026-04-09 12:57 UTC)
    • Kurz: Thursday. Another week, another batch of things that probably should’ve been caught sooner but weren’t. This one’s got some range — old vulnerabilities getting new life, a few “why was that even possible” moments, attackers leaning on platf…
    • Quelle: Link

Neue CVEs (letzte 24h, NVD‑Abgleich)

Fortinet FortiGate (7.4.x)

  • Keine neuen Treffer in den letzten 24h.

Atlassian (Jira/Confluence)

  • Keine neuen Treffer in den letzten 24h.

HPE/Aruba Switches

  • CVE-2026-1924 — CVSS 4.3 (MEDIUM)
    • Kurz: The Aruba HiSpeed Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.0.4. This is due to missing nonce verification on the ahsc_ajax_reset_options() function.…
    • Quelle: Link

VMware ESXi/vCenter (7.x)

  • Keine neuen Treffer in den letzten 24h.

Hinweis

  • CVE‑Treffer sind ein Frühwarn‑Check (NVD) und müssen für eure exakten Versionen/Deployments gegengeprüft werden (Vendor Advisory/Patches).