Full archive
Latest cybersecurity alerts and incident archive
This page lists the full published alert archive for readers searching the latest cybersecurity alerts, phishing warnings, breach disclosures, malware campaigns and exploited vulnerability coverage in one place.
Use this archive when you want the complete flow of published incident reporting instead of the tighter homepage selection, including category filters, risk views and direct paths to response tools.
Filter the alert archive
Narrow the archive by category and risk level to review phishing alerts, data breach alerts, malware coverage, vulnerability updates and ransomware incidents faster.
Full alert archive
Showing 12 of 351 matching alerts. 351 published alerts are currently available in the archive.
Each alert card surfaces the threat type, documented summary and best next step so the listing itself can answer intent around latest cybersecurity alerts, phishing alerts, breach alerts and incident response without forcing every visitor to click through immediately.
Older alerts from 2021-2025 are still available, but stronger, documented and more recent reporting is ranked first so the archive stays aligned with current Google quality expectations.
High-Severity Cross-Site Scripting Flaws Persist in Popular WordPress Plugins and Google Fonts
Human review: Marcin Pocztowski | Source date: Apr 30, 2026 | Sources: 1Spain’s National Cybersecurity Institute (INCIBE) has flagged critical cross-site scripting vulnerabilities in several popular WordPress plugins and the Fontific Googl... Documented alert summary. Focus: affected products, exploit urgency and remediation guidance.
Best next step: Identity Theft Recovery Planner
Backdoor Discovered in Popular WordPress Quick Page/Post Redirect Plugin
Human review: Marcin Pocztowski | Source date: Apr 30, 2026 | Sources: 1A critical backdoor has been discovered in the Quick Page/Post Redirect WordPress plugin, exposing thousands of sites to unauthorized access and potential compromise.... Documented alert summary. Focus: infection path, likely payload impact and containment priorities.
Best next step: Identity Theft Recovery Planner
ClickUp Data Leak Exposes Enterprise Emails for Over a Year Due to Hardcoded API Key
Human review: Artur Ślesik | Source date: Apr 28, 2026 | Sources: 2A hardcoded ClickUp API key exposed hundreds of corporate and government email addresses for more than a year, revealing critical vulnerabilities in SaaS security prac... Verified across 2 sources. Focus: lure pattern, spoofing signals and account-protection next steps.
Best next step: Identity Theft Recovery Planner
GlassWorm Malware Resurfaces via 73 Malicious OpenVSX Sleeper Extensions in 2026
Human review: Artur Ślesik | Source date: Apr 27, 2026 | Sources: 3In 2026, the GlassWorm malware campaign has made a significant comeback by exploiting 73 dormant 'sleeper' extensions on the OpenVSX marketplace. These extensions init... Verified across 3 sources. Focus: lure pattern, spoofing signals and account-protection next steps.
Best next step: Identity Theft Recovery Planner
US Sanctions Target Cambodian Scam Network Leaders Involved in Crypto Fraud and Trafficking
Human review: Artur Ślesik | Source date: Apr 27, 2026 | Sources: 3The US Treasury Department has sanctioned key leaders of a Cambodian-based criminal network involved in extensive cryptocurrency fraud and illegal trafficking. This de... Verified across 3 sources. Focus: fraud signals, pressure tactics and what to do before paying or replying.
Best next step: Crypto Scam Checker for Fake Investments and Recovery Fraud
North Korean Hackers Target Drug Companies with Weaponized Excel Malware Disguised as Income Tax Notices
Human review: Artur Ślesik | Source date: Apr 27, 2026 | Sources: 5A sophisticated North Korean cyber espionage group is actively targeting pharmaceutical companies using weaponized Excel files disguised as urgent Income Tax Departmen... Verified across 5 sources. Focus: lure pattern, spoofing signals and account-protection next steps.
Best next step: Crypto Scam Checker for Fake Investments and Recovery Fraud
Vidar Infostealer 2026 Variant Spreads via Fake CAPTCHAs Embedded in JPEG and TXT Files
Human review: Artur Ślesik | Source date: Apr 27, 2026 | Sources: 6The Vidar infostealer malware has reemerged in 2026 with sophisticated evasion methods, spreading through deceptive fake CAPTCHA prompts embedded within JPEG and TXT f... Verified across 6 sources. Focus: lure pattern, spoofing signals and account-protection next steps.
Best next step: Crypto Scam Checker for Fake Investments and Recovery Fraud
Microsoft Teams Exploited for Phishing Attacks Distributing SNOWBELT Malware
Human review: Artur Ślesik | Source date: Apr 27, 2026 | Sources: 2Cybercriminals are increasingly exploiting Microsoft Teams to execute sophisticated phishing campaigns that deliver the SNOWBELT malware. Utilizing social engineering... Verified across 2 sources. Focus: lure pattern, spoofing signals and account-protection next steps.
Best next step: Identity Theft Recovery Planner
Attackers Exploit Chained Vulnerabilities to Backdoor CODESYS Applications, Gaining Full Control
Human review: Marcin Pocztowski | Source date: Apr 27, 2026 | Sources: 2Multiple vulnerabilities in the widely used CODESYS Control runtime enable attackers to chain exploits, replacing legitimate industrial control applications with backd... Verified across 2 sources. Focus: infection path, likely payload impact and containment priorities.
Best next step: Identity Theft Recovery Planner
FBI and Indonesian Authorities Collaborate to Shut Down W3LLStore Marketplace Defrauding Users of Millions
Human review: Artur Ślesik | Source date: Apr 27, 2026 | Sources: 1In a coordinated international law enforcement operation, the FBI and Indonesian authorities successfully dismantled the W3LLStore marketplace, a phishing and fraud pl... Documented alert summary. Focus: lure pattern, spoofing signals and account-protection next steps.
Best next step: Identity Theft Recovery Planner
Safe Vulnerability Disclosure for UK SMEs: A Practical Guide for 2026
Human review: Marcin Pocztowski | Source date: Apr 27, 2026 | Sources: 1This comprehensive guide explains safe vulnerability disclosure tailored for UK SMEs, demystifying the process and highlighting actionable steps to protect businesses... Documented alert summary. Focus: exposed data, who may be affected and breach-response priorities.
Best next step: Identity Theft Recovery Planner
Firefox and Tor Browser IndexedDB Vulnerability Exposed Hidden User Identifiers
Human review: Marcin Pocztowski | Source date: Apr 27, 2026 | Sources: 2A medium-risk vulnerability affecting Firefox and Tor Browser allowed malicious actors to access hidden identifiers stored via IndexedDB, potentially compromising user... Verified across 2 sources. Focus: exposed data, who may be affected and breach-response priorities.
Best next step: Identity Theft Recovery Planner
Alerts archive SEO topics
Archive maintenance and remediation tracking. HackWatch does not treat alerts as one-time posts. We continue checking whether vendors have issued patches, workarounds or final remediation updates, then refresh the article with the latest incident status so readers can see whether a threat is still active, mitigated or already resolved.