SecurityTicks

Why Agentic AI Is Security’s Next Blind Spot 2026-05-12 at 14:18 By Agentic AI is already running in production environments across many organizations today. It is executing tasks, consuming data, and taking actions — most likely without meaningful involvement from the security team. The industry conversation has largely framed this as a question of policy:

Seedworm: Iran-Linked Hackers Breached Korean Electronics Maker in Global Spying Campaign 2026-05-12 at 13:20 By Threat Hunter Team Iran-linked threat actor abused signed Fortemedia and SentinelOne binaries for DLL sideloading and exfiltrated data through a public file-transfer service. This article is an excerpt from SECURITY.COM View Original Source

Mini Shai-Hulud Worm Compromises TanStack, Mistral AI, Guardrails AI & More Packages 2026-05-12 at 11:54 By TeamPCP, the threat actor behind the recent supply chain attack spree, has been linked to the compromise of the npm and PyPI packages from TanStack, UiPath, Mistral AI, OpenSearch, and Guardrails AI as part of a fresh Mini Shai-Hulud campaign.

OpenAI Launches Daybreak for AI-Powered Vulnerability Detection and Patch Validation 2026-05-12 at 10:41 By OpenAI has launched Daybreak, a new cybersecurity initiative that brings together frontier artificial intelligence (AI) model capabilities and Codex Security to help organizations identify and patch vulnerabilities before attackers find a way in using the same issues. “Daybreak combines the intelligence

Instructure Reaches Ransom Agreement with ShinyHunters to Stop 3.65TB Canvas Leak 2026-05-12 at 10:41 By American educational technology company Instructure, the parent company of Canvas, said it reached an “agreement” with a decentralized cybercrime extortion group after it breached its network and threatened to leak stolen information from thousands of schools and universities. In an

iOS 26.5 Brings Default End-to-End Encrypted RCS Messaging Between iPhone and Android 2026-05-12 at 09:27 By Apple on Monday officially released iOS 26.5 with support for end-to-end encryption (E2EE) to Rich Communication Services (RCS) in beta as part of a “cross-industry effort” to replace traditional SMS with a more secure alternative. To that end, E2EE

Microsoft CEO Satya Nadella defends OpenAI’s for-profit status, shares past nerves over Altman ouster 2026-05-12 at 04:56 By Marc Vartabedian OAKLAND, CALIF. — Microsoft CEO Satya Nadella defended OpenAI’s pivot to for-profit status and discussed his company’s hopes for a juicy return on its investment during Monday testimony in Elon Musk’s suit against the AI

TeamPCP Compromises Checkmarx Jenkins AST Plugin Weeks After KICS Supply Chain Attack 2026-05-11 at 23:59 By Checkmarx has confirmed that a modified version of the Jenkins AST plugin was published to the Jenkins Marketplace. “If you are using Checkmarx Jenkins AST plugin, you need to ensure that you are using the version 2.0.13-829.vc72453fa_1c16 that was

OpenAI employees cashed out $6.6B in stock sales last fall, earning up to $30M each: report 2026-05-11 at 21:02 By Thomas Barrabi Approximately 75 employees maxed out their sales and received the full $30 million, the report said. This article is an excerpt from Latest Technology News | New York Post View Original Source

Top 2026 Security Conferences 2026-05-11 at 21:02 By Security magazine offers a roundup of security conferences taking place in 2026.  This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source