Daily Security Feed - 2026-04-27

Security Feed Digest (2026-04-27)

Hacker News: Best

• Is my blue your blue? — Mon, 27 Apr 2026 20:24:33 +0000
• GitHub is having issues now — Mon, 27 Apr 2026 17:42:19 +0000
• GitHub Copilot is moving to usage-based billing — Mon, 27 Apr 2026 16:03:08 +0000
• Dutch central bank ditches AWS and chooses Lidl for European Cloud — Mon, 27 Apr 2026 15:12:41 +0000
• “Why not just use Lean?” — Mon, 27 Apr 2026 14:24:53 +0000
• Microsoft and OpenAI end their exclusive and revenue-sharing deal — Mon, 27 Apr 2026 13:22:42 +0000
• Show HN: OSS Agent I built topped the TerminalBench on Gemini-3-flash-preview — Mon, 27 Apr 2026 12:35:55 +0000
• China blocks Meta’s acquisition of AI startup Manus — Mon, 27 Apr 2026 11:43:59 +0000
• Men who stare at walls — Mon, 27 Apr 2026 11:08:26 +0000
• Pgbackrest is no longer being maintained — Mon, 27 Apr 2026 10:56:34 +0000
• 4TB of voice samples just stolen from 40k AI contractors at Mercor — Mon, 27 Apr 2026 09:57:10 +0000
• Quarkdown – Markdown with Superpowers — Mon, 27 Apr 2026 08:54:57 +0000
• The Prompt API — Mon, 27 Apr 2026 02:18:58 +0000
• TurboQuant: A first-principles walkthrough — Mon, 27 Apr 2026 01:54:32 +0000
• Sawe becomes first athlete to run a sub-two-hour marathon in a competitive race — Sun, 26 Apr 2026 20:56:30 +0000
• I bought Friendster for $30k – Here’s what I’m doing with it — Sun, 26 Apr 2026 20:41:06 +0000
• Fast16: High-precision software sabotage 5 years before Stuxnet — Sun, 26 Apr 2026 20:18:37 +0000
• Self-updating screenshots — Sun, 26 Apr 2026 07:00:39 +0000

BleepingComputer

• Robinhood account creation flaw abused to send phishing emails — Mon, 27 Apr 2026 19:11:01 -0400
• GlassWorm malware attacks return via 73 OpenVSX “sleeper” extensions — Mon, 27 Apr 2026 17:41:01 -0400
• Canada arrests three for operating “SMS blaster” device in Toronto — Mon, 27 Apr 2026 16:00:31 -0400
• Alleged Silk Typhoon hacker extradited to US for cyberespionage — Mon, 27 Apr 2026 15:56:03 -0400
• FTC: Americans lost over $2.1 billion to social media scams in 2025 — Mon, 27 Apr 2026 12:27:53 -0400
• PyPI package with 1.1M monthly downloads hacked to push infostealer — Mon, 27 Apr 2026 11:17:37 -0400
• Home security giant ADT data breach affects 5.5 million people — Mon, 27 Apr 2026 10:43:11 -0400
• Webinar: Spotting cyberattacks before they begin — Mon, 27 Apr 2026 10:25:35 -0400
• Medtronic confirms breach after hackers claim 9 million records theft — Mon, 27 Apr 2026 09:50:42 -0400
• Money launderer linked to $230M crypto heist gets 70 months in prison — Mon, 27 Apr 2026 09:01:38 -0400
• Deepfake Voice Attacks are Outpacing Defenses: What Security Leaders Should Know — Mon, 27 Apr 2026 09:00:09 -0400
• Microsoft says Outlook.com outage is causing sign‑in failures — Mon, 27 Apr 2026 08:03:46 -0400

Darkreading

• UNC6692 Combines Social Engineering, Malware, Cloud Abuse — Mon, 27 Apr 2026 20:12:34 GMT
• Unpatched ‘PhantomRPC’ Flaw in Windows Enables Privilege Escalation — Mon, 27 Apr 2026 15:31:41 GMT
• 20-Year-Old Malware Rewrites History of Cyber Sabotage — Mon, 27 Apr 2026 13:09:54 GMT
• Parsing Agentic Offensive Security’s Existential Threat — Mon, 27 Apr 2026 13:00:00 GMT
• Helping Romance Scam Victims Requires a Proactive, Empathic Approach — Fri, 24 Apr 2026 22:34:13 GMT

The Hacker News

• Checkmarx Confirms GitHub Repository Data Posted on Dark Web After March 23 Attack — Mon, 27 Apr 2026 19:49:00 +0530
• ⚡ Weekly Recap: Fast16 Malware, XChat Launch, Federal Backdoor, AI Employee Tracking & More — Mon, 27 Apr 2026 19:00:00 +0530
• Mythos Changed the Math on Vulnerability Discovery. Most Teams Aren’t Ready for the Remediation Side — Mon, 27 Apr 2026 17:28:00 +0530
• PhantomCore Exploits TrueConf Vulnerabilities to Breach Russian Networks — Mon, 27 Apr 2026 17:24:00 +0530
• Researchers Uncover 73 Fake VS Code Extensions Delivering GlassWorm v2 Malware — Mon, 27 Apr 2026 16:53:00 +0530
• Fake CAPTCHA IRSF Scam and 120 Keitaro Campaigns Drive Global SMS, Crypto Fraud — Mon, 27 Apr 2026 12:03:00 +0530

데일리시큐 - 최근인기기사

• 공공기관 개인정보보호 수준 평균 76.5점…기초지자체 보호체계 보완 시급 — 2026-04-27 11:54:46
• 백악관 “중국 기업들, 미국 AI 모델 능력 대규모 추출” 주장…제재 카드 꺼냈다 — 2026-04-27 10:01:49
• 크라우드스트라이크 로그스케일 치명적 취약점…인증 없이 파일 유출 가능 — 2026-04-27 18:10:00
• NASA 직원까지 속인 중국 해킹조직의 피싱…항공우주 방위 소프트웨어 노렸다 — 2026-04-27 15:32:30
• 스패로우, 블랙햇 아시아 2026서 AI 시대 SW 공급망 보안 전략 제시 — 2026-04-27 09:45:31
• 금융보안원-하나증권, 토큰증권 보안 강화 위해 업무협약 체결 — 2026-04-27 09:29:27
• 노르마, 싱가포르 QID 2026서 양자 기반 신약 개발 성과 공개 — 2026-04-27 09:48:15
• 엔키화이트햇, NATO 최대 사이버 방어훈련 ‘락드쉴즈 2026’ 참가…민간 기업 최다 인원 투입 — 2026-04-27 09:23:47
• 나온웍스 ‘CEREBRO-XTD’, 조달청 혁신제품 지정…공공 OT 보안 시장 진입 본격화 — 2026-04-27 09:33:30
• 마이크로소프트·서울대, 교육자·사회혁신가 위한 한국어 AI 리터러시 프로그램 공개 — 2026-04-27 09:35:30

보안뉴스 > SECURITY

• 지니언스, EDR 공공 조달 시장 7년 연속 1위… “AI 보안 시대 리더십” — Tue, 28 Apr 2026 08:54:00 +0900
• “물류센터 사고, VR로 겪고 막는다”… 쿠팡풀필먼트서비스, 실전 안전교육 실시 — Mon, 27 Apr 2026 18:24:00 +0900
• 블랑코, 세계 최초 NIST SP 800-88 R2 기준 ADISA Product Assurance 인증 획득 — Mon, 27 Apr 2026 17:27:00 +0900
• 공공기관 개인정보 보호수준 평균 ‘76.5점’… 지자체는 인프라 열악해 — Mon, 27 Apr 2026 16:18:00 +0900
• [한국정보공학기술사 보안을 論하다-37] 안전한 클라우드 환경을 위한 클라우드 보안 태세 구축 전략 — Mon, 27 Apr 2026 16:09:00 +0900
• 사진첩 뒤져 암호화폐 훔치는 ‘스파크캣’… 공식 앱스토어 우회 — Mon, 27 Apr 2026 16:03:00 +0900
• SKT, 에이닷에 AI 보이스피싱 알림 ‘가족 케어’ 탑재 — Mon, 27 Apr 2026 14:54:00 +0900
• [부고] 문성욱 한국산업안보학회 부회장 부친상 — Mon, 27 Apr 2026 14:07:00 +0900
• 나루씨큐리티 “AI 시대 방어는 ‘침해 검증’부터 시작” — Mon, 27 Apr 2026 13:33:00 +0900
• 금융보안원-하나증권, 토큰증권 생태계 조성 협력 — Mon, 27 Apr 2026 13:29:00 +0900