# Top Stories

Adobe released an emergency security update for Acrobat Reader to fix CVE-2026-34621, a vulnerability exploited in zero-day attacks since at least December. The critical flaw allows arbitrary code execution and has a CVSS score of 8.6, making immediate patching essential for all organizations using Adobe PDF products.

Adobe patched CVE-2026-34621, a zero-day vulnerability in Acrobat and Reader that attackers exploited for at least four months using maliciously crafted PDF files. The emergency fix addresses a critical flaw that allowed arbitrary code execution, highlighting the extended exposure window organizations faced from this actively exploited vulnerability.

The FBI and Indonesian authorities dismantled the W3LL phishing platform and arrested its alleged developer in the first coordinated US-Indonesia enforcement action targeting phishing kit developers. W3LL allowed cybercriminals to create sophisticated phishing sites for just $500, demonstrating how law enforcement is adapting to combat industrialized phishing operations.

OpenAI is rotating macOS code-signing certificates after a GitHub Actions workflow executed a malicious Axios package during a supply chain attack on March 31. While no user data or internal systems were compromised, the incident forced OpenAI to take precautionary measures to protect the integrity of its macOS application certification process.

Booking.com confirmed unauthorized access to its systems that exposed sensitive reservation and user data, forcing the company to reset reservation PINs. The breach affects an undisclosed number of customers but has been contained, representing another significant incident in the travel industry's ongoing security challenges.

A critical vulnerability in the wolfSSL library enables attackers to forge certificates through improper verification of hash algorithms when checking ECDSA signatures. The flaw weakens SSL/TLS security implementations that rely on wolfSSL, requiring immediate updates for affected systems using this widely-deployed cryptographic library.

Dutch fitness giant Basic-Fit announced hackers breached its systems and accessed information belonging to 1 million customers across multiple EU countries. The breach affects one of Europe's largest gym chains, exposing member data and highlighting the vulnerability of fitness industry customer databases.

Rockstar Games suffered a data breach linked to a security incident at analytics platform Anodot, with the ShinyHunters extortion gang now leaking stolen data on their leak site. The incident demonstrates how third-party vendor compromises can expose major gaming companies to data theft and extortion attempts.

JanelaRAT, a modified version of BX RAT, targeted Latin American banks with 14,739 attacks in Brazil during 2025, stealing financial and cryptocurrency data. The malware tracks mouse inputs, logs keystrokes, takes screenshots, and specifically targets financial institutions in Brazil and Mexico, showing continued focus on Latin American banking infrastructure.

CPUID's website was compromised for less than 24 hours (April 9-10) by Russian-speaking threat actors who replaced legitimate CPU-Z and HWMonitor download links with trojanized versions containing STX RAT. The supply chain attack targeted users of popular hardware monitoring tools, demonstrating how attackers exploit trusted software distribution channels.