News

Microsoft 365 users targeted by new phishing threat that bypasses MFA

cybercrime, FBI, Microsoft, Microsoft 365, News, phishing /

Microsoft 365 users targeted by new phishing threat that bypasses MFA 2026-05-22 at 12:17 By Sinisa Markovic Microsoft 365 access tokens are being targeted by an emerging Phishing-as-a-Service (PhaaS) platform called Kali365, the FBI is warning. First observed in April 2026, Kali365 has been distributed through Telegram, allowing cybercriminals to obtain Microsoft 365 access tokens […]

Microsoft 365 users targeted by new phishing threat that bypasses MFA Read More »

Meet Fractal, an OS made for microarchitecture reverse engineering

apple, chip, Don't miss, hardware, Hot stuff, MIT, News, operating system, research, reverse engineering /

Meet Fractal, an OS made for microarchitecture reverse engineering 2026-05-22 at 12:17 By Sinisa Markovic Probing how a CPU isolates user code from kernel code is messy work. Researchers patch kernels, write drivers, or boot stripped-down bare-metal programs, and any of those choices change variables they were trying to hold still. Fractal, a new operating

Meet Fractal, an OS made for microarchitecture reverse engineering Read More »

Downtime has become a $600 billion business problem

AI, Incident Response, News, Ransomware, report, resilience, Risk Management, Splunk /

Downtime has become a $600 billion business problem 2026-05-22 at 11:53 By Anamarija Pogorelec The average cost of downtime has reached $600 billion for the Global 2000, a 50% increase in two years. According to Splunk’s The Hidden Costs of Downtime report, unplanned outages and service degradation cost each company an average of $300 million.

Downtime has become a $600 billion business problem Read More »

New infosec products of the week: May 22, 2026

News /

New infosec products of the week: May 22, 2026 2026-05-22 at 08:29 By Anamarija Pogorelec Here’s a look at the most interesting products from the past week, featuring releases from ASAPP, Babel Street, CTERA, Forward, Riverbed, and Trust3 AI. Babel Street targets AI-driven threats with new agentic investigation capabilities Babel Street has launched Insights Investigator,

New infosec products of the week: May 22, 2026 Read More »

The new economics of fraud: Cheaper, faster, more convincing

AI, authentication, cybersecurity, fraud, News, Ransomware, report, scams, social engineering, Visa /

The new economics of fraud: Cheaper, faster, more convincing 2026-05-22 at 08:29 By Anamarija Pogorelec Scams have become one of the fastest-growing consumer risks, driven by AI-enabled impersonation, social engineering, and sophisticated attack methods, according to Visa’s Spring 2026 Biannual Threats Report. Criminals redirect efforts toward trust and third parties Fraud involves behavioral manipulation, fragmented

The new economics of fraud: Cheaper, faster, more convincing Read More »

Microsoft open-sources tools for designing and testing AI agents

agentic AI, Don't miss, Hot stuff, Microsoft, News, open source, red team /

Microsoft open-sources tools for designing and testing AI agents 2026-05-21 at 19:15 By Zeljka Zorz Microsoft has open-sourced two tools aimed at bringing security discipline to AI agent development: Clarity, a structured design review tool, and RAMPART, a continuous testing framework. The release comes from Microsoft’s AI Red Team, the company’s internal unit that stress-tests

Microsoft open-sources tools for designing and testing AI agents Read More »

Authorities dismantle First VPN, used by ransomware actors

cybercrime, cybercriminals, Eurojust, Europe, Europol, Hot stuff, law enforcement, News, Ransomware, VPN /

Authorities dismantle First VPN, used by ransomware actors 2026-05-21 at 17:12 By Anamarija Pogorelec First VPN, a virtual private network service marketed to cybercriminals, promising anonymity for its users, was taken offline on May 19 and 20 as part of Operation Saffron. During the operation, French and Dutch authorities, with support from Europol and Eurojust,

Authorities dismantle First VPN, used by ransomware actors Read More »

GitHub, Grafana Labs breaches traced back to TanStack supply chain compromise

Don't miss, GitHub, Grafana, Hot stuff, News, open source, supply chain attacks, supply chain compromise /

GitHub, Grafana Labs breaches traced back to TanStack supply chain compromise 2026-05-21 at 16:56 By Zeljka Zorz GitHub CISO Alexis Wales has named the malicious VS Code extension behind the breach they suffered at the hands of the threat group TeamPCP: Nx Console, a popular developer tool with 2.2 million installs. A malicious version of

GitHub, Grafana Labs breaches traced back to TanStack supply chain compromise Read More »

Microsoft Defender vulnerabilities exploited in the wild (CVE-2026-41091, CVE-2026-45498)

Don't miss, Hot stuff, Microsoft, Microsoft Defender, News, vulnerability, vulnerability disclosure, Windows /

Microsoft Defender vulnerabilities exploited in the wild (CVE-2026-41091, CVE-2026-45498) 2026-05-21 at 14:22 By Zeljka Zorz Attackers are exploiting two Microsoft Defender vulnerabilities (CVE-2026-41091 and CVE-2026-45498), Microsoft acknowledged and CISA confirmed by adding them to its Known Exploited Vulnerabilities catalog. The vulnerabilities CVE-2026-41091 allows for local privilege elevation (LPE), and is caused by the Microsoft Malware

Microsoft Defender vulnerabilities exploited in the wild (CVE-2026-41091, CVE-2026-45498) Read More »

Why AI changed the threat model for travel technology

CISO, cyber risk, cybersecurity, Don't miss, Features, Hot stuff, News, opinion, Risk Management, strategy, tips /

Why AI changed the threat model for travel technology 2026-05-21 at 09:16 By Mirko Zorz In this Help Net Security interview, Devon Bryan, SVP, Global CSO at Booking Holdings, reflects on his path from Air Force network security engineer to global CSO across financial services, hospitality, and travel technology. He discusses why the travel industry’s

Why AI changed the threat model for travel technology Read More »

Most dark web activity revolves around a handful of topics

cybercrime, dark web, News, research /

Most dark web activity revolves around a handful of topics 2026-05-21 at 08:31 By Sinisa Markovic Dark web activity often becomes visible during marketplace seizures, major data leaks, or sudden spikes in criminal activity. Those events can create an impression of an ecosystem where attention shifts quickly and new trends regularly replace old ones. A

Most dark web activity revolves around a handful of topics Read More »

AI red teaming agents change how LLMs get tested

agentic AI, AI, cybersecurity, Don't miss, Features, Hot stuff, LLMs, News, research /

AI red teaming agents change how LLMs get tested 2026-05-21 at 08:00 By Mirko Zorz Adversarial probing of LLMs has piled up a sprawling toolkit over the past three years. Attack techniques with names like Tree of Attacks with Pruning, Crescendo, and Skeleton Key sit alongside hundreds of prompt transforms and scoring methods across open-source

AI red teaming agents change how LLMs get tested Read More »

Product showcase: Bitdefender Mobile Security for iOS protects privacy where scams begin

Bitdefender, iOS, mobile security, News, Product showcase /

Product showcase: Bitdefender Mobile Security for iOS protects privacy where scams begin 2026-05-21 at 07:46 By Anamarija Pogorelec Bitdefender Mobile Security for iOS is a security and privacy application for iPhone and iPad that helps protect against phishing attempts, online scams, unsafe websites, and account exposure. I have used Bitdefender Mobile Security for iOS for

Product showcase: Bitdefender Mobile Security for iOS protects privacy where scams begin Read More »

Cyber threats push SMBs to spend more on security

AI, cyber resilience, cyber risk, IDC, News, report, SMBs, third party compromise /

Cyber threats push SMBs to spend more on security 2026-05-21 at 07:16 By Anamarija Pogorelec Cybersecurity has become a key priority for small and medium-sized businesses due to growing threats and wider AI adoption. An IDC survey of 2,200 SMBs in eight markets examined how organizations manage cyber risks, prepare for AI-related threats, and handle

Cyber threats push SMBs to spend more on security Read More »

Webworm APT targets European government organizations with new backdoors

APT, backdoor, ESET, Europe, Government, Hot stuff, News /

Webworm APT targets European government organizations with new backdoors 2026-05-20 at 17:48 By Anamarija Pogorelec ESET has released an analysis of the 2025 activity of Webworm, a China-aligned APT group tracked as Space Pirates and UAT-8302. Active since at least 2022, the group initially focused on targets in Asia, but has recently expanded its operations

Webworm APT targets European government organizations with new backdoors Read More »

Verizon DBIR: Vulnerability exploitation is the dominant initial access vector

AI, CISO, credentials, data breach, Don't miss, Hot stuff, News, phishing, Ransomware, report, social engineering, Verizon, vulnerability disclosure, vulnerability management /

Verizon DBIR: Vulnerability exploitation is the dominant initial access vector 2026-05-20 at 17:16 By Zeljka Zorz Vulnerability exploitation has overtaken stolen credentials as the most common way attackers gain initial access to target networks, according to the 2026 Verizon Data Breach Investigations Report. This is the first time credential theft has been knocked off the

Verizon DBIR: Vulnerability exploitation is the dominant initial access vector Read More »

FBI: $388 million lost in crypto ATM scams in 2026

Cryptocurrency, FBI, fraud, News, scams, USA /

FBI: $388 million lost in crypto ATM scams in 2026 2026-05-20 at 14:30 By Anamarija Pogorelec Americans lost more than $388 million to crypto kiosk scams in 2025, with the FBI warning that criminals are increasingly directing victims to transfer funds through these machines. Cryptocurrency kiosks, popularly known as Bitcoin ATMs, are physical automated teller

FBI: $388 million lost in crypto ATM scams in 2026 Read More »

TeamPCP breached GitHub’s internal codebase via poisoned VS Code extension

cybercriminals, data theft, Don't miss, GitHub, Hot stuff, News, open source, supply chain compromise /

TeamPCP breached GitHub’s internal codebase via poisoned VS Code extension 2026-05-20 at 13:47 By Zeljka Zorz Following TeamPCP’s claim that they’ve breached GitHub’s own private code repositories, the Microsoft-owned company launched an investigation and confirmed the compromise. “Our current assessment is that the activity involved exfiltration of GitHub-internal repositories only. The attacker’s current claims of

TeamPCP breached GitHub’s internal codebase via poisoned VS Code extension Read More »

Microsoft provides mitigation for “YellowKey” BitLocker bypass flaw (CVE-2026-45585)

CVE, Don't miss, exploit, Hot stuff, Microsoft, News, PoC, vulnerability disclosure, Windows, Windows Server /

Microsoft provides mitigation for “YellowKey” BitLocker bypass flaw (CVE-2026-45585) 2026-05-20 at 11:49 By Zeljka Zorz Microsoft is working on a fix for CVE-2026-45585 (aka “Yellowkey”), a vulnerability that can be used by attackers to bypass protections offered by BitLocker, the full-disk encryption feature built into Windows, and access users’ data. In the meantime, the company

Microsoft provides mitigation for “YellowKey” BitLocker bypass flaw (CVE-2026-45585) Read More »

Communicating cyber risk in dollars boards understand

boardroom, CISO, communication, conferences, cyber resilience, cyber risk, cybersecurity, Don't miss, Features, Hot stuff, News, opinion, Span, strategy, tips /

Communicating cyber risk in dollars boards understand 2026-05-20 at 09:34 By Mirko Zorz In this Help Net Security interview, Nick Nieuwenhuis, Cybersecurity Architect at Nedscaper, explains why cybersecurity has not delivered the resilience that decades of investment have promised. He argues that spending has leaned too heavily on technical controls while neglecting people, processes, and

Communicating cyber risk in dollars boards understand Read More »

Scroll to Top