Archive
All articles, newest first. Page 14.
AI-Powered Honeypots: Cisco Talos Flips the Script on Automated Threats
On April 29, Cisco Talos Intelligence researchers released a proof-of-concept aimed at neutralizing offensive asymmetry in cyberspace.…
AI Agents in Production: Addressing the Confused-Deputy Threat in Operational Automation
New research identifies a critical architectural gap in operational AI agents where a lack of separation between reasoning and executi…
Grafana Labs Breach: Forgotten Workflow Token Exposes Internal Repositories
Grafana Labs has disclosed a security breach involving its GitHub repositories after an overlooked CI/CD token—missed during an emerge…
GitHub Investigates Alleged Exfiltration of 4,000 Internal Repositories by TeamPCP
GitHub is investigating claims from the threat group TeamPCP, which alleges to have exfiltrated nearly 4,000 internal repositories and…
AI Productivity Facade: 18 Malicious Extensions Discovered with RAT and MitM Capabilities
Palo Alto Networks’ Unit 42 has identified 18 high-risk AI browser extensions that surveil emails, steal prompts, and compromise user…
Zealot: How Autonomous AI Orchestrates Multi-Stage Cloud Compromise
Palo Alto Networks’ Unit 42 has demonstrated Zealot, a multi-agent PoC capable of executing end-to-end cloud attack chains without hum…
BitLocker Bypassed: New Zero-Day Trio Targets Windows Following Patch Tuesday
An analysis of the YellowKey, GreenPlasma, and MiniPlasma vulnerabilities disclosed shortly after the May 2026 Patch Tuesday, impactin…
Microsoft Neutralizes Fox Tempest: Malware-Signing-as-a-Service Operation Dismantled
Microsoft has disrupted Fox Tempest, a sophisticated 'Malware-Signing-as-a-Service' operation that leveraged stolen identities to expl…
Verizon DBIR 2026: Vulnerability Exploitation Overtakes Credentials as Patching Cycles Falter
The 2026 Verizon DBIR marks a structural shift in the threat landscape: vulnerability exploitation (31%) has surpassed credential abus…
Critical RCE in ChromaDB: 73% of Exposed Servers Vulnerable to CVE-2026-45829
A maximum-severity vulnerability in ChromaDB’s Python FastAPI server allows unauthenticated remote code execution. The flaw, which ste…
7-Eleven Confirms Data Breach After ShinyHunters Leaks 9.4GB of Files
7-Eleven has officially confirmed a cyberattack originating in April 2026. Following a failed ransom negotiation with the ShinyHunters…
Drupal to Release ‘Highly Critical’ Core Patch on May 20; Exploit Expected Within Hours
Drupal administrators are on high alert as the Security Team prepares a coordinated release for a major core vulnerability, warning th…
Microsoft Dismantles Fox Tempest: The Takedown of a Global Malware-Signing Syndicate
Microsoft’s Digital Crimes Unit has seized the infrastructure of Fox Tempest, a major 'malware-signing-as-a-service' provider that ena…
SEPPMail Security Crisis: Seven Critical Flaws Grant Full Access to Corporate Email
A cluster of seven vulnerabilities in the SEPPMail Secure E-Mail Gateway, including flaws with CVSS scores up to 10.0, enables unauthe…
CVE-2026-8153: Universal Robots Cobots Vulnerable to Unauthenticated RCE
An OS command injection vulnerability in the PolyScope 5 Dashboard Server enables unauthenticated remote code execution on Universal R…
NGINX Rift Under Active Exploitation: A Technical Analysis of CVE-2026-42945
A 16-year-old vulnerability in the NGINX rewrite module, dubbed NGINX Rift (CVE-2026-42945), is currently being exploited in the wild.…
15 Instagram Posts and One Cent: The New Price of Convincing Spear-Phishing
Research from UT Arlington and LSU demonstrates how 10-15 public Instagram posts and less than a penny can generate personalized phish…
Linux Kernel Page Cache Vulnerabilities: CopyFail, Fragnesia, and DirtyDecrypt LPE Risks
An analysis of the CopyFail (CVE-2026-31431), Fragnesia, and DirtyDecrypt vulnerabilities within the Linux kernel, including exploitat…
18-Year-Old NGINX Bug CVE-2026-42945 Under Active Attack
Exploitation attempts are underway for CVE-2026-42945, an 18-year-old heap buffer overflow in the NGINX rewrite module. The flaw enabl…
NGINX Rift: Active Exploitation of CVE-2026-42945 Detected In the Wild
In-the-wild attacks targeting CVE-2026-42945 (NGINX Rift) began on May 16, 2026. Security researchers analyze the critical heap buffer…
Ollama Vulnerability: CVE-2026-7482 Risks Memory Exposure for 300,000 AI Servers
A critical heap out-of-bounds read vulnerability in Ollama (CVE-2026-7482) allows for memory leakage via GGUF files, putting API keys…
May Patch Tuesday: A Rare Zero-Day Break Amid Record AI Discovery Volumes
Microsoft’s May 2026 update ends a two-year streak of active zero-days, patching approximately 137 vulnerabilities. However, the integ…
Active Exchange Zero-Day: Unpatched OWA Vulnerability Under Exploitation
Microsoft has confirmed CVE-2026-42897, a zero-day XSS vulnerability in on-premise Exchange servers currently under active attack. Wit…
CISA Contractor Exposed AWS GovCloud Credentials and Plaintext Passwords on GitHub for Months
A federal contractor at Nightwing exposed administrative AWS GovCloud credentials and internal passwords in plaintext on GitHub for ov…