French authorities have detained a 15-year-old suspected of involvement in a data breach at France Titres, the government agency responsible for issuing official documents. “Between 12 and 18 million data records were reportedly being offered for sale on cybercriminal forums…
Attackers Hijack SAP npm Packages to Steal Dev Secrets
A sophisticated supply chain attack hit the SAP developer ecosystem on April 29, 2026, compromising four widely-used npm packages with credential-stealing malware. The attackers modified package installation scripts to download the Bun JavaScript runtime a legitimate alternative to Node.js during…
Over 40,000 Servers Compromised in Ongoing cPanel Exploitation
The attacks likely target CVE-2026-41940, a recently patched zero-day leading to administrative access. The post Over 40,000 Servers Compromised in Ongoing cPanel Exploitation appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Over 40,000…
Wingtech Faces Delisting Risk Amid Nexperia Row
Chinese parent of Dutch chipmaker faces bourse issues after auditors lose access to financial records of overseas operations This article has been indexed from Silicon UK Read the original article: Wingtech Faces Delisting Risk Amid Nexperia Row
Five Eyes spook shops warn rapid rollouts of agentic AI are too risky
Prioritize resilience over productivity, say CISA, NCSC and their friends from Oz, NZ, Canada Information security agencies from the nations of the Five Eyes security alliance have co-authored guidance on the use of agentic AI that warns the technology will…
Email Bombing and Fake IT Support Calls Fuel New Microsoft Teams Phishing Attacks
A new wave of cyberattacks is targeting employees through a combination of inbox flooding and fake IT support contacts on Microsoft Teams, tricking users into handing over remote access to their own devices. These attacks have been growing steadily since…
FreeBSD DHCP Client Vulnerability Enables Remote Code Execution as Root
The FreeBSD Project has released a critical security advisory addressing a severe flaw in its default IPv4 DHCP client. Tracked as CVE-2026-42511, this vulnerability allows a local network attacker to execute arbitrary code as root, granting them complete control over the…
Threat Actors Use AI to Automate 0-Day Discovery and Exploitation at Machine Speed
The way cyberattacks are launched has fundamentally changed. Threat actors are no longer spending months hunting for software flaws by hand. With artificial intelligence in their toolkit, they can now discover and exploit zero-day vulnerabilities in minutes, placing organizations across…
OpenAI Orders Models Not To Talk About Goblins
Start-up tweaks models to downplay references to gremlins, ogres, pigeons or raccoons, following user complaints This article has been indexed from Silicon UK Read the original article: OpenAI Orders Models Not To Talk About Goblins
Kenya Workers Who Viewed Meta Glasses Wearers Having Sex Are Fired
More than 1,000 staff laid off in Kenya subcontractor after staff disclosed reviewing smart glasses footage of users going to toilet This article has been indexed from Silicon UK Read the original article: Kenya Workers Who Viewed Meta Glasses Wearers…
Email Bombing, Fake IT Support Calls Drive Microsoft Teams Phishing Surge
Email bombing campaigns combined with fake IT support outreach are driving a surge in sophisticated Microsoft Teams phishing attacks. The attacks typically begin with email bombing, where victims are flooded with spam messages to create confusion and urgency. Shortly after,…
AI-Powered Threat Actors Accelerate 0-Day Discovery at Machine Speed
Threat actors are already using AI models as autonomous operators to discover and exploit 0‑days in minutes, thereby collapsing the time and cost required to run complex intrusion campaigns. This shift, first clearly visible in late 2025 operations, is forcing…
Bluekit phishing kit enables automated phishing with 40+ templates and AI tools
Bluekit is a new phishing kit with AI features, automated domain setup, and tools like spoofing, voice cloning, and 40+ attack templates. Bluekit is a newly discovered phishing kit still in development that includes advanced features such as an AI…
A week in security (April 27 – May 3)
A list of topics we covered in the week of April 27 to May 3 of 2026 This article has been indexed from Malwarebytes Read the original article: A week in security (April 27 – May 3)
Edtech Firm Instructure Discloses Data Breach Amid Hacker Leak Threats
Hackers disrupted services and stole names, email addresses, student ID numbers, and user messages. The post Edtech Firm Instructure Discloses Data Breach Amid Hacker Leak Threats appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…
Lens Agents brings policy control to AI across cloud and desktop
Lens by Mirantis has announced Lens Agents, a governed platform for running AI agents across enterprise systems, giving organizations a unified, policy-driven way to run, secure, and scale AI agents across desktop and cloud environments. Available in early access, Lens…
NordVPN Adds On-Device AI Voice Detector to Chrome Extension to Identify Synthetic Audio
NordVPN has introduced an AI Voice Detector feature to its Chrome browser extension. Thank you for being a Ghacks reader. The post NordVPN Adds On-Device AI Voice Detector to Chrome Extension to Identify Synthetic Audio appeared first on gHacks. This…
Telegram Mini Apps malware, cPanel is Sorry, patch wave warning
Telegram Mini Apps deliver Android malware CISA orders Federal agencies to patch cPanel bug by Sunday British cyber agency warns of looming ‘patch wave’ due to speedy AI flaw discovery Get the show notes here: https://cisoseries.com/cybersecurity-news-telegram-mini-apps-malware-cpanel-is-sorry-patch-wave-warning/ Thanks to our episode…
DigiCert Root Certificates Incorrectly Detected as Malware by Microsoft Defender
On May 3, 2026, system administrators and everyday users worldwide experienced a sudden, massive spike in severe security alerts from Microsoft Defender. The native Windows security platform began aggressively flagging system files as “Trojan:Win32/Cerdigent.A!dha.” This unexpected detection caused widespread panic…
Trellix Source Code Breach Exposes Repository to Unauthorized Access
Leading cybersecurity firm Trellix has announced a security incident involving unauthorized access to a portion of its source code repository. The breach highlights a growing trend of threat actors targeting top-tier security vendors to uncover potential software vulnerabilities. The Breach…
FreeBSD Systems at Risk From DHCP Client RCE Vulnerability
The FreeBSD Project has issued a critical security advisory (FreeBSD-SA-26:12.dhclient) to address a severe Remote Code Execution (RCE) vulnerability in its default IPv4 DHCP client. Tracked as CVE-2026-42511, this flaw allows local network attackers to execute arbitrary code with root…
MOVEit Authentication Bypass Vulnerability Sparks Security Concerns
Progress Software has issued a critical security alert for its MOVEit Automation software. Two severe vulnerabilities have been discovered that could allow attackers to bypass authentication and escalate their privileges. Because of the critical nature of these flaws, administrators are…
IT Security News Hourly Summary 2026-05-04 09h : 4 posts
4 posts were published in the last hour 6:34 : Visual data is the blind spot in enterprise security: that’s about to change 6:34 : True Threats and True Crimes – Those Memes You Post Might Be Crimes 6:34 :…
Visual data is the blind spot in enterprise security: that’s about to change
Most enterprise security teams can tell you exactly how their databases are encrypted. They know who has access to their CRM and can pull audit logs for every sensitive document that’s been opened, copied, or shared in the last 90…