2026 - Security Ticks

Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions

Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions 2026-05-26 at 17:32 By Microsoft has rolled out updates to fix a remote code execution vulnerability impacting SharePoint that could be exploited by bad actors in attacks without requiring any specialized conditions to be met. The vulnerability, tracked as CVE-2026-45659, carries a CVSS score of 8.8. […]

Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions Read More »

MFA Prompt Bombing: Why Your Second Factor Isn’t Saving You

Uncategorized / SecurityTicks

MFA Prompt Bombing: Why Your Second Factor Isn’t Saving You 2026-05-26 at 17:32 By Multi-factor authentication (MFA) was supposed to close a critical gap in identity security. It meant that, even if an attacker possessed the account credentials, they couldn’t log in without the second factor. While that logic was sound, attackers have now figured

MFA Prompt Bombing: Why Your Second Factor Isn’t Saving You Read More »

Anthropic: Claude Mythos identified 10,000+ software flaws

AI, Anthropic, Don't miss, News, open source, vulnerability disclosure / SecurityTicks

Anthropic: Claude Mythos identified 10,000+ software flaws 2026-05-26 at 17:30 By Anamarija Pogorelec Anthropic and its Project Glasswing partners have identified more than 10,000 high- or critical-severity vulnerabilities in critical software systems, the company announced in an update on the project’s progress. Mythos identifies thousands of high-severity vulnerabilities In April 2026, Anthropic introduced Claude Mythos

Anthropic: Claude Mythos identified 10,000+ software flaws Read More »

Chinese phishing gangs grow into a force to be reckoned with

China, cybercrime, Google, News, phishing / SecurityTicks

Chinese phishing gangs grow into a force to be reckoned with 2026-05-26 at 17:09 By Sinisa Markovic Chinese-language phishing-as-a-service (PhaaS) communities are expanding in an area historically dominated by Russian-speaking cybercriminal groups. The Google Threat Intelligence Group (GTIG) analyzed a dozen active PhaaS offerings operating in Chinese-language underground communities and found mature services, with several

Chinese phishing gangs grow into a force to be reckoned with Read More »

Bitcoin’s big cup-and-handle pattern targets ‘minimum’ $220K BTC price

markets / SecurityTicks

Bitcoin’s big cup-and-handle pattern targets ‘minimum’ $220K BTC price 2026-05-26 at 17:03 By Cointelegraph by Nancy Lubale Bitcoin cup-and-handle chart breakout targets $220,000, but BTC price must first hold the $74,000 support area. This article is an excerpt from Cointelegraph.com News View Original Source

Bitcoin’s big cup-and-handle pattern targets ‘minimum’ $220K BTC price Read More »

Watch on Demand: Threat Detection & Incident Response Summit – All Sessions Available

Malware & Threats, threat detection, Threat Intelligence / SecurityTicks

Watch on Demand: Threat Detection & Incident Response Summit – All Sessions Available 2026-05-26 at 14:02 By SecurityWeek News Register to enjoy free access and explore the tools, strategies, and frameworks needed to build a resilient security program for a world where every minute counts. The post Watch on Demand: Threat Detection & Incident Response

Watch on Demand: Threat Detection & Incident Response Summit – All Sessions Available Read More »

High-severity SharePoint RCE bug patched by Microsoft (CVE-2026-45659)

Don't miss, Hot stuff, Microsoft, News, security update, SharePoint, vulnerability / SecurityTicks

High-severity SharePoint RCE bug patched by Microsoft (CVE-2026-45659) 2026-05-26 at 13:56 By Zeljka Zorz Microsoft has released patches for a high-severity remote code execution vulnerability (CVE-2026-45659) in SharePoint that may be exploited in low-complexity attacks. It affects the SharePoint Server Subscription Edition, SharePoint Server 2019, and SharePoint Enterprise Server 2016. About CVE-2026-45659 CVE-2026-45659 stems from

High-severity SharePoint RCE bug patched by Microsoft (CVE-2026-45659) Read More »

Open Source DockSec Uses AI to Cut Through Vulnerability Noise in Docker Images

Docker, Vulnerabilities, vulnerability / SecurityTicks

Open Source DockSec Uses AI to Cut Through Vulnerability Noise in Docker Images 2026-05-26 at 13:56 By Mike Lennon DockSec, an OWASP incubator project, correlates findings from multiple container security scanners and uses AI to generate plain-English remediation guidance and exact Dockerfile fixes. The post Open Source DockSec Uses AI to Cut Through Vulnerability Noise

Open Source DockSec Uses AI to Cut Through Vulnerability Noise in Docker Images Read More »

5 Ways XDR Helps SOCs Act Faster

Uncategorized / SecurityTicks

5 Ways XDR Helps SOCs Act Faster 2026-05-26 at 13:38 By Shanleigh Reardon There’s a smarter, easier pathway to resilient security This article is an excerpt from SECURITY.COM View Original Source

5 Ways XDR Helps SOCs Act Faster Read More »

AI agents must be treated as untrusted systems: Researchers

Latest News / SecurityTicks

AI agents must be treated as untrusted systems: Researchers 2026-05-26 at 13:38 By Cointelegraph by Stephen Katte AI agents are becoming increasingly popular among crypto users, with Circle CEO Jeremy Allaire predicting that billions of AI agents will be operating within five years. This article is an excerpt from Cointelegraph.com News View Original Source

AI agents must be treated as untrusted systems: Researchers Read More »

What happens when security teams inherit identity

CISO, cybersecurity, Don't miss, Features, Hot stuff, identity, identity management, News, opinion, Span / SecurityTicks

What happens when security teams inherit identity 2026-05-26 at 13:38 By Sinisa Markovic At the Span Cyber Security Arena conference, I sat down with Eric Woodruff, Chief Identity Architect at Semperis, to talk about how organizations perceive identity and the challenges those perceptions create for security. He shared his perspective on where organizations struggle with

What happens when security teams inherit identity Read More »

Lithuania Suspects Foreign Involvement in Data Leak of Over 600,000 National Register Entries

data breach, Data Breaches, Data leak, Government, Lithuania / SecurityTicks

Lithuania Suspects Foreign Involvement in Data Leak of Over 600,000 National Register Entries 2026-05-26 at 13:38 By Associated Press Lithuanian authorities are on high alert after a massive data leak involving more than 600,000 entries from national data registers. The post Lithuania Suspects Foreign Involvement in Data Leak of Over 600,000 National Register Entries appeared

Lithuania Suspects Foreign Involvement in Data Leak of Over 600,000 National Register Entries Read More »

Admins of Bulletproof Hosting Service Used by Russian Hackers Arrested in Netherlands

arrested, cybercrime, hacker, law enforcement, Netherlands, Russia, Tracking & Law Enforcement / SecurityTicks

Admins of Bulletproof Hosting Service Used by Russian Hackers Arrested in Netherlands 2026-05-26 at 13:38 By Ionut Arghire The two own Dutch companies that allegedly provided bulletproof hosting services to Russia-aligned threat actors. The post Admins of Bulletproof Hosting Service Used by Russian Hackers Arrested in Netherlands appeared first on SecurityWeek. This article is an

Admins of Bulletproof Hosting Service Used by Russian Hackers Arrested in Netherlands Read More »

CERT-In Mandates 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks

Uncategorized / SecurityTicks

CERT-In Mandates 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks 2026-05-26 at 13:38 By The Indian Computer Emergency Response Team (CERT-In) has issued new guidelines requiring organizations to patch critical security vulnerabilities in internet-exposed systems within 12 hours of being flagged where “feasible” to safeguard against potential threats stemming from threat actors’ abuse of artificial

CERT-In Mandates 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks Read More »

Iranian Hackers Deploy MiniFast and MiniJunk V2 via Phishing and SEO Poisoning

Uncategorized / SecurityTicks

Iranian Hackers Deploy MiniFast and MiniJunk V2 via Phishing and SEO Poisoning 2026-05-26 at 13:38 By The Iranian state-sponsored threat actor known as Nimbus Manticore (aka Screening Serpens and UNC1549) has been attributed to a fresh campaign using lures impersonating organizations in the aviation and software sectors across the U.S., Europe, and the Middle East

Iranian Hackers Deploy MiniFast and MiniJunk V2 via Phishing and SEO Poisoning Read More »

Scammers make $400K through fake Uniswap ads on Google

Latest News / SecurityTicks

Scammers make $400K through fake Uniswap ads on Google 2026-05-26 at 10:32 By Cointelegraph by Martin Young A blockchain analyst has warned that malicious phishing advertisements impersonating Uniswap have appeared on Google Search, which has netted attackers at least $400,000. This article is an excerpt from Cointelegraph.com News View Original Source

Scammers make $400K through fake Uniswap ads on Google Read More »

Bitmine’s Tom Lee hints at stock tailwinds after firm considered for Russell 3000

Latest News / SecurityTicks

Bitmine’s Tom Lee hints at stock tailwinds after firm considered for Russell 3000 2026-05-26 at 10:32 By Cointelegraph by Stephen Katte Bitmine’s Tom Lee says the firm could be considered for the Russell 1000, and its stock may get a boost from active and passive fund managers. This article is an excerpt from Cointelegraph.com News

Bitmine’s Tom Lee hints at stock tailwinds after firm considered for Russell 3000 Read More »

Bitcoin in ‘high-risk zone’ as ETF outflows signal institutional exit: Swissblock

Latest News / SecurityTicks

Bitcoin in ‘high-risk zone’ as ETF outflows signal institutional exit: Swissblock 2026-05-26 at 10:32 By Cointelegraph by Martin Young This steady drip of ETF outflow continues to add to the supply side without a visible demand offset, said Glassnode. This article is an excerpt from Cointelegraph.com News View Original Source

Bitcoin in ‘high-risk zone’ as ETF outflows signal institutional exit: Swissblock Read More »

KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike

Uncategorized / SecurityTicks

KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike 2026-05-26 at 08:59 By A now-patched high-severity security flaw affecting Digital Knowledge KnowledgeDeliver, a Learning Management System (LMS) popular in Japan, was exploited as a zero-day to deliver the Godzilla web shell and ultimately facilitate the deployment of Cobalt Strike Beacon. The vulnerability, tracked as

KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike Read More »

Ondo Finance founder Nathan Allman dies aged 32

Latest News / SecurityTicks

Ondo Finance founder Nathan Allman dies aged 32 2026-05-26 at 08:37 By Cointelegraph by Brayden Lindrea Ondo Finance says its founder, Nathan Allman, died unexpectedly, with company president Ian De Bode to serve as CEO. This article is an excerpt from Cointelegraph.com News View Original Source

Ondo Finance founder Nathan Allman dies aged 32 Read More »