> TritonInfoSec News
Home / Apr 01, 2026 / Story
0
#4 The Hacker News general March 31, 2026 at 16:03 UTC

TrueConf Zero-Day Exploited in Attacks on Southeast Asian Government Networks

By [email protected] (The Hacker News)

AI Summary

A zero-day vulnerability CVE-2026-3502 (CVSS 7.8) in TrueConf video conferencing software was exploited in attacks against Southeast Asian government networks in a campaign dubbed TrueChaos. The flaw allows attackers to distribute tampered application updates due to lack of integrity checks when fetching update code.

Read full article → https://thehackernews.com/2026/03/trueconf-zero-da…

Relevance score: 88.0/100

# More from April 01

  1. 1
    Hackers compromise Axios npm package to drop cross-platform malware BleepingComputer
  2. 2
    Claude AI finds Vim, Emacs RCE bugs that trigger on file open BleepingComputer
  3. 3
    Cisco source code stolen in Trivy-linked dev environment breach BleepingComputer
  4. 5
    CISA orders feds to patch actively exploited Citrix flaw by Thursday BleepingComputer
  5. 6
    Exploitation of Critical Fortinet FortiClient EMS Flaw Begins SecurityWeek
  6. 7
    GIGABYTE Control Center vulnerable to arbitrary file write flaw BleepingComputer
  7. 8
    Hacker charged with stealing $53 million from Uranium crypto exchange BleepingComputer
  8. 9
    Dutch Finance Ministry takes treasury banking portal offline after breach BleepingComputer
  9. 10
    StrongSwan Flaw Allows Unauthenticated Attackers to Crash VPNs SecurityWeek