CYBERSEC

Poisoned AI Chatbots: A New Vector for High-Performance GPU Cryptojacking

Microsoft has identified an active campaign that manipulates AI chatbot recommendations to distribute GPU-based cryptojacking malware…

May 31, 2026views - 159

aiCRITICAL

Critical Flowise RCE: Exploit Code Released for CVSS 9.9 Vulnerability

Obsidian Security has published proof-of-concept exploit code for CVE-2026-40933, a critical RCE vulnerability in Flowise. The flaw le…

May 31, 2026views - 176

CYBERSECZERO-DAY

Cyber May: AI Attacks Emerge, but Basic Vectors Remain the Primary Threat

In ESET’s May roundup, Tony Anscombe documents critical infrastructure breaches in Poland, Mexico’s first 'AI-directed' attack, and Go…

May 30, 2026views - 133

CYBERSECZERO-DAY

AI-Directed Attacks and ICS Vulnerabilities: ESET’s Tony Anscombe on DynoWiper and the First AI Zero-Day

In his May 2026 security review, ESET’s Tony Anscombe analyzes a landscape of extremes: from the first AI-generated zero-day and 'AI-d…

May 30, 2026views - 140

CYBERSEC

ChatGPhish: ChatGPT Summaries Weaponized as Phishing Traps

The ChatGPhish vulnerability exploits ChatGPT's renderer to inject malicious links and QR codes during web page summarization. OpenAI…

May 29, 2026views - 160

CYBERSECCRITICAL

LLM Agent Conducts Autonomous Post-Exploitation via Marimo RCE

Sysdig documents the first case of an LLM agent completely replacing a human operator in post-exploitation following a critical RCE on…

May 29, 2026views - 138

ransomware

Qumulo NeuralProtect: AI-Driven Ransomware Defense at the Point of Write

Qumulo has announced NeuralProtect, an AI-powered security layer designed to potentially intercept ransomware at the storage level, fe…

May 28, 2026views - 149

CYBERSECZERO-DAY

Palo Alto Networks Sets Patch Record as Frontier AI Reshapes Vulnerability Discovery

Palo Alto Networks has released its May 2026 Patch Wednesday, disclosing 26 CVEs across more than 130 products. For the first time, th…

May 27, 2026views - 218

VULNZERO-DAY

OpenAI Codex: Reported Sandbox Escape Disclosed (ZDI-26-305)

A reported sandbox escape in OpenAI Codex (ZDI-26-305) could potentially allow code execution via specific JavaScript repositories. Th…

May 27, 2026views - 217

CYBERSEC

Nimbus Manticore: Iranian APT Leverages AI-Assisted Backdoors to Target Aviation and Software Sectors

The Iranian threat group Nimbus Manticore has expanded its operations, targeting aviation and software entities across Saudi Arabia, A…

May 26, 2026views - 156

CYBERSEC

India’s CERT-In Mandates 12-Hour Patch Window to Counter AI-Driven Exploitation

A new 38-page blueprint from CERT-In slashes the remediation window to just 12 hours for exposed systems, citing the rapid weaponizati…

May 26, 2026views - 129

CYBERSECZERO-DAY

300 WordPress Zero-Days in 72 Hours for $20: The Falling Economic Threshold of the Bug

TrendAI and CHT Security researchers have uncovered over 300 critical zero-day vulnerabilities in 72 hours using an AI pipeline develo…

May 25, 2026views - 207