Daily Hunt Feed - 2026-04-11

Threat Hunt Feed (2026-04-11)

Hacker News: Best

• Industrial design files for Keychron keyboards and mice — Fri, 10 Apr 2026 16:22:26 +0000
  • Matched TTPs: Hardware (T1592.001), Vulnerabilities (T1588.006), Firmware (T1592.003), Software (T1592.002), Python (T1059.006), At (T1053.002)
• Unfolder for Mac – A 3D model unfolding tool for creating papercraft — Thu, 09 Apr 2026 16:58:46 +0000
  • Matched TTPs: Tool (T1588.002)

BleepingComputer

• CPUID hacked to deliver malware via CPU-Z, HWMonitor downloads — Fri, 10 Apr 2026 09:12:42 -0400
  • Matched TTPs: Malware (T1588.001), Malicious File (T1204.002), Hardware (T1592.001), Masquerading (T1036), Tool (T1588.002), Software (T1592.002), Credentials (T1589.001), At (T1053.002)

The Hacker News

• Browser Extensions Are the New AI Consumption Channel That No One Is Talking About — Fri, 10 Apr 2026 16:30:00 +0530
  • Matched TTPs: Artificial Intelligence (T1588.007), Malware (T1588.001), Browser Extensions (T1176.001), Cron (T1053.003), Vulnerabilities (T1588.006), Phishing (T1566), Software (T1592.002), Exploits (T1588.005), Social Media (T1593.001), Credentials (T1589.001), At (T1053.002)
• Google Rolls Out DBSC in Chrome 146 to Block Session Theft on Windows — Fri, 10 Apr 2026 13:28:00 +0530
  • Matched TTPs: Malware (T1588.001), Hardware (T1592.001), Cron (T1053.003), Vulnerabilities (T1588.006), Server (T1584.004), Exploits (T1588.005), Social Media (T1593.001), Credentials (T1589.001)
• Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of Disclosure — Fri, 10 Apr 2026 13:07:00 +0530
  • Matched TTPs: Malware (T1588.001), Cron (T1053.003), Vulnerabilities (T1588.006), SSH (T1021.004), Exploits (T1588.005), Social Media (T1593.001), Credentials (T1589.001), Python (T1059.006), At (T1053.002)
• EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallet Installs — Thu, 09 Apr 2026 22:56:00 +0530
  • Matched TTPs: Malware (T1588.001), Cron (T1053.003), Vulnerabilities (T1588.006), Software (T1592.002), Exploits (T1588.005), Social Media (T1593.001), Credentials (T1589.001), At (T1053.002)

Threat Hunt Feed (2026-04-11)

Hacker News: Best

• Small models also found the vulnerabilities that Mythos found — Sat, 11 Apr 2026 16:47:28 +0000
  • Matched TTPs: JavaScript (T1059.007), Vulnerabilities (T1588.006), SSH (T1021.004), Tool (T1588.002), Software (T1592.002), Exploits (T1588.005), Credentials (T1589.001), At (T1053.002)
• Molotov cocktail is hurled at home of Sam Altman — Fri, 10 Apr 2026 18:48:24 +0000
  • Matched TTPs: At (T1053.002)
• CPU-Z and HWMonitor compromised — Fri, 10 Apr 2026 13:29:20 +0000
  • Matched TTPs: Malware (T1588.001), Databases (T1213.006), Vulnerabilities (T1588.006), DLL (T1574.001), Supply Chain Compromise (T1195), Server (T1584.004), PowerShell (T1059.001), Software (T1592.002), Credentials (T1589.001), At (T1053.002)

The Hacker News

• Citizen Lab: Law Enforcement Used Webloc to Track 500 Million Devices via Ad Data — Sat, 11 Apr 2026 11:32:00 +0530
  • Matched TTPs: IP Addresses (T1590.005), Malware (T1588.001), Cron (T1053.003), Vulnerabilities (T1588.006), Tool (T1588.002), Software (T1592.002), Exploits (T1588.005), Social Media (T1593.001), Credentials (T1589.001), At (T1053.002)