Featured

Microsoft Patches Critical Zero-Click Outlook Vulnerability Threatening Enterprises

email security, Featured, Microsoft Outlook, Vulnerabilities, vulnerability, Zero Click /

Microsoft Patches Critical Zero-Click Outlook Vulnerability Threatening Enterprises 2026-05-13 at 13:33 By Eduard Kovacs CVE-2026-40361 is similar to a vulnerability found a decade ago, BadWinmail, which at the time was dubbed an “enterprise killer”. The post Microsoft Patches Critical Zero-Click Outlook Vulnerability Threatening Enterprises appeared first on SecurityWeek. This article is an excerpt from SecurityWeek […]

Microsoft Patches Critical Zero-Click Outlook Vulnerability Threatening Enterprises Read More »

TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack

Featured, Malware & Threats, Mini Shai-Hulud, supply chain attack, Supply Chain Security, TeamPCP /

TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack 2026-05-12 at 13:20 By Ionut Arghire Over 400 malicious versions of 170 packages were published as part of the new Mini Shai-Hulud campaign. The post TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack appeared first on SecurityWeek. This article is an excerpt from

TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack Read More »

New ‘Dirty Frag’ Linux Vulnerability Possibly Exploited in Attacks

Dirty Frag, Endpoint Security, Featured, Linux, Linux vulnerability, privilege escalation, Vulnerabilities /

New ‘Dirty Frag’ Linux Vulnerability Possibly Exploited in Attacks 2026-05-11 at 11:27 By Eduard Kovacs Also called Copy Fail 2 and tracked as CVE-2026-43284 and CVE-2026-43500, the exploit was disclosed before a patch was released. The post New ‘Dirty Frag’ Linux Vulnerability Possibly Exploited in Attacks appeared first on SecurityWeek. This article is an excerpt

New ‘Dirty Frag’ Linux Vulnerability Possibly Exploited in Attacks Read More »

AI Coding Agents Could Fuel Next Supply Chain Crisis

Artificial Intelligence, Claude Code, Featured, supply chain, Supply Chain Security /

AI Coding Agents Could Fuel Next Supply Chain Crisis 2026-05-07 at 17:33 By Kevin Townsend “TrustFall” attack shows how AI coding agents can be manipulated into launching stealthy supply chain compromises. The post AI Coding Agents Could Fuel Next Supply Chain Crisis appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

AI Coding Agents Could Fuel Next Supply Chain Crisis Read More »

Claude AI Guided Hackers Toward OT Assets During Water Utility Intrusion

AI, Artificial Intelligence, Dragos, Featured, ICS, ICS/OT, Mexico, OT, Water /

Claude AI Guided Hackers Toward OT Assets During Water Utility Intrusion 2026-05-07 at 10:35 By Eduard Kovacs Dragos has published a report describing how threat actors used Claude AI in an attack on a water and drainage utility in Mexico. The post Claude AI Guided Hackers Toward OT Assets During Water Utility Intrusion appeared first

Claude AI Guided Hackers Toward OT Assets During Water Utility Intrusion Read More »

Critical Bug Could Expose 300,000 Ollama Deployments to Information Theft

AI, Artificial Intelligence, Bleeding Llama, Featured, Ollama, Vulnerabilities, vulnerability /

Critical Bug Could Expose 300,000 Ollama Deployments to Information Theft 2026-05-05 at 17:46 By Ionut Arghire Dubbed Bleeding Llama, the heap out-of-bounds read issue can be exploited remotely, without authentication. The post Critical Bug Could Expose 300,000 Ollama Deployments to Information Theft appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Critical Bug Could Expose 300,000 Ollama Deployments to Information Theft Read More »

WhatsApp Discloses File Spoofing, Arbitrary URL Scheme Vulnerabilities

Featured, patch, spoofing, Vulnerabilities, vulnerability, WhatsApp /

WhatsApp Discloses File Spoofing, Arbitrary URL Scheme Vulnerabilities 2026-05-05 at 13:20 By Eduard Kovacs The vulnerabilities were reported to Meta through its bug bounty program and were patched with updates released earlier this year. The post WhatsApp Discloses File Spoofing, Arbitrary URL Scheme Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

WhatsApp Discloses File Spoofing, Arbitrary URL Scheme Vulnerabilities Read More »

Edtech Firm Instructure Discloses Data Breach Amid Hacker Leak Threats

data breach, Data Breaches, education, Featured, Instructure, ShinyHunters /

Edtech Firm Instructure Discloses Data Breach Amid Hacker Leak Threats 2026-05-04 at 10:56 By Ionut Arghire Hackers disrupted services and stole names, email addresses, student ID numbers, and user messages. The post Edtech Firm Instructure Discloses Data Breach Amid Hacker Leak Threats appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Edtech Firm Instructure Discloses Data Breach Amid Hacker Leak Threats Read More »

US Military Reaches Deals With 7 Tech Companies to Use Their AI on Classified Systems

AI, Artificial Intelligence, Featured, Government /

US Military Reaches Deals With 7 Tech Companies to Use Their AI on Classified Systems 2026-05-03 at 21:21 By Associated Press Google, Microsoft, Amazon Web Services, Nvidia, OpenAI, Reflection and SpaceX will provide resources to help augment warfighter decision-making in complex operational environments,” the Defense Department said. The post US Military Reaches Deals With 7

US Military Reaches Deals With 7 Tech Companies to Use Their AI on Classified Systems Read More »

FBI Warns of Surge in Hacker-Enabled Cargo Theft

alert, cargo theft, cybercrime, FBI, Featured, Tracking & Law Enforcement /

FBI Warns of Surge in Hacker-Enabled Cargo Theft 2026-05-01 at 11:11 By Eduard Kovacs A new alert from the FBI says criminal enterprises are hacking both brokers and carriers to steal cargo for resale. The post FBI Warns of Surge in Hacker-Enabled Cargo Theft appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

FBI Warns of Surge in Hacker-Enabled Cargo Theft Read More »

Anthropic Unveils Claude Security to Counter AI-Powered Exploit Surge

AI, Anthropic, Artificial Intelligence, Claude, Featured, Mythos /

Anthropic Unveils Claude Security to Counter AI-Powered Exploit Surge 2026-04-30 at 22:46 By Kevin Townsend With Mythos signaling a new era of near-instant exploitation, Anthropic positions Claude Security to help defenders keep pace. The post Anthropic Unveils Claude Security to Counter AI-Powered Exploit Surge appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Anthropic Unveils Claude Security to Counter AI-Powered Exploit Surge Read More »

‘Copy Fail’ Logic Flaw in Linux Kernel Enables System Takeover

Copy Fail, Endpoint Security, Featured, Linux, Linux vulnerability, Vulnerabilities /

‘Copy Fail’ Logic Flaw in Linux Kernel Enables System Takeover 2026-04-30 at 13:56 By Ionut Arghire Affecting the kernel’s authencesn cryptographic template, the vulnerability was introduced in 2017 and impacts all distributions. The post ‘Copy Fail’ Logic Flaw in Linux Kernel Enables System Takeover appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

‘Copy Fail’ Logic Flaw in Linux Kernel Enables System Takeover Read More »

Firefox Vulnerability Allows Tor User Fingerprinting

Featured, fingerprinting, Firefox, Privacy, Tor, tracking, Vulnerabilities, vulnerability /

Firefox Vulnerability Allows Tor User Fingerprinting 2026-04-27 at 11:49 By Eduard Kovacs The vulnerability is tracked as CVE-2026-6770 and it has been patched with the release of Firefox 150 and Tor 15.0.10. The post Firefox Vulnerability Allows Tor User Fingerprinting appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Firefox Vulnerability Allows Tor User Fingerprinting Read More »

Claude Mythos Finds 271 Firefox Vulnerabilities

AI, Artificial Intelligence, Claude, Featured, Firefox, Mythos, Vulnerabilities, vulnerability /

Claude Mythos Finds 271 Firefox Vulnerabilities 2026-04-22 at 14:47 By Eduard Kovacs All the flaws could have also been found by an elite human researcher, according to Mozilla. The post Claude Mythos Finds 271 Firefox Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Claude Mythos Finds 271 Firefox Vulnerabilities Read More »

Oracle Patches 450 Vulnerabilities With April 2026 CPU

Featured, Oracle, Oracle CPU, patches, Vulnerabilities, vulnerability /

Oracle Patches 450 Vulnerabilities With April 2026 CPU 2026-04-22 at 11:49 By Ionut Arghire The company released 481 new security patches across 28 product families, including over 300 fixes for remotely exploitable, unauthenticated flaws. The post Oracle Patches 450 Vulnerabilities With April 2026 CPU appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Oracle Patches 450 Vulnerabilities With April 2026 CPU Read More »

Unsecured Perforce Servers Expose Sensitive Data From Major Orgs

exposed, Featured, misconfiguration, Perforce, server, Vulnerabilities /

Unsecured Perforce Servers Expose Sensitive Data From Major Orgs 2026-04-21 at 15:49 By Eduard Kovacs Things are improving, but a researcher has still identified over 1,500 Perforce P4 instances allowing attackers to read files on the server. The post Unsecured Perforce Servers Expose Sensitive Data From Major Orgs appeared first on SecurityWeek. This article is

Unsecured Perforce Servers Expose Sensitive Data From Major Orgs Read More »

$290 Million Kelp DAO Crypto Heist Blamed on North Korea

Cryptocurrency, cryptocurrency heist, cybercrime, DeFi, Featured, Kelp DAO, North Korea /

$290 Million Kelp DAO Crypto Heist Blamed on North Korea 2026-04-21 at 14:08 By Ionut Arghire The hackers targeted LayerZero’s DVN, compromising certain RPCs and DDoSing others to trigger failover to the poisoned infrastructure.   The post $290 Million Kelp DAO Crypto Heist Blamed on North Korea appeared first on SecurityWeek. This article is an excerpt

$290 Million Kelp DAO Crypto Heist Blamed on North Korea Read More »

ZionSiphon Malware Targets ICS in Water Facilities

Featured, ICS, ICS malware, ICS/OT, Israel, Malware & Threats, OT, Water, ZionSiphon /

ZionSiphon Malware Targets ICS in Water Facilities 2026-04-17 at 14:32 By Eduard Kovacs The malware is configured to operate on systems associated with Israeli water treatment and desalination plants. The post ZionSiphon Malware Targets ICS in Water Facilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

ZionSiphon Malware Targets ICS in Water Facilities Read More »

OpenAI Widens Access to Cybersecurity Model After Anthropic’s Mythos Reveal

AI, Artificial Intelligence, Featured, GTP-Cyber, Mythos, OpenAI /

OpenAI Widens Access to Cybersecurity Model After Anthropic’s Mythos Reveal 2026-04-16 at 18:37 By Eduard Kovacs GPT‑5.4‑Cyber is a model fine-tuned for defenders, lowering boundaries for legitimate cybersecurity work. The post OpenAI Widens Access to Cybersecurity Model After Anthropic’s Mythos Reveal appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

OpenAI Widens Access to Cybersecurity Model After Anthropic’s Mythos Reveal Read More »

Scroll to Top