9 posts were published in the last hour 7:3 : FTC Fines Cox Media Over Fake AI ‘Listening’ Ad Service 7:2 : Hackers Hide Malware in Nested macOS-Style Folders to Evade Scans 7:2 : CISA Adds Exploited Langflow and Trend…
FTC Fines Cox Media Over Fake AI ‘Listening’ Ad Service
Regulator fines conglomerate Cox, two others over service that falsely claimed to listen to users’ conversations for ad targeting This article has been indexed from Silicon UK Read the original article: FTC Fines Cox Media Over Fake AI ‘Listening’ Ad…
Hackers Hide Malware in Nested macOS-Style Folders to Evade Scans
Hackers are increasingly adopting stealthy delivery techniques, and a newly uncovered spear-phishing campaign shows how nested macOS-like folder structures can be abused to evade detection while deploying advanced malware. The phishing email carries a ZIP attachment named “常州大学2026年《国家学生体质健康标准》测试通知最终版.zip,” posing as…
CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added two security flaws impacting Langflow and Trend Micro Apex One to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerabilities in question are listed below…
Cross-Platform NPM Stealer, (Fri, May 22nd)
I found a Node.js stealer that looked pretty well obfuscated. The file was not running out-of-the-box because it was uploaded on VT as “extracted-decoded.js†(and reformated). The SHA256 is 049300aa5dd774d6c984779a0570f59610399c71864b5d5c2605906db46ddeb9[1]. It did not run properly in a sandbox so only…
Megalodon Malware Rapidly Infects Over 5,500 GitHub Repositories
A newly identified malware campaign dubbed “Megalodon” has compromised more than 5,500 GitHub repositories, raising serious concerns about the security of open-source ecosystems. Security researchers from SafeDep report that the malware spreads through malicious code injections hidden inside seemingly legitimate…
CISA Warns Trend Micro Apex One Vulnerability Is Being Exploited in Attacks
CISA has added a newly disclosed vulnerability in Trend Micro Apex One to its Known Exploited Vulnerabilities (KEV) catalog, warning that the flaw is actively being exploited in real-world attacks. The issue, tracked as CVE-2026-34926, affects on-premise deployments of Trend…
Hackers Abuse Hugging Face to Deliver npm Malware
A newly uncovered supply chain attack targeting the npm ecosystem has been linked to North Korean (DPRK)-aligned threat actors. The campaign centers around a malicious npm package named terminal-logger-utils, which embeds a sophisticated multi-stage malware capable of keylogging, data exfiltration, and…
Cisco used AI to write security incident reports, with mixed results
You’ll need a lot of detailed prompts to get solid output – and even then it may have errors and typos This article has been indexed from www.theregister.com – Articles Read the original article: Cisco used AI to write security…
Cisco Patches CVSS 10.0 Secure Workload REST API Flaw Enabling Data Access
Cisco has rolled out updates for a maximum-severity security flaw impacting Secure Workload that could allow an unauthenticated, remote attacker to access sensitive data. Tracked as CVE-2026-20223 (CVSS score: 10.0), the vulnerability arises from insufficient validation and authentication when accessing…
Mini Shai-Hulud Attack Prompts npm to Revoke 2FA-Bypass Tokens
npm has forced a platform-wide reset of granular access tokens that bypass two-factor authentication (2FA) after a wave of supply chain attacks linked to the “Mini Shai-Hulud” campaign compromised hundreds of JavaScript packages. The emergency action, rolled out on May…
Authorities Take Down “First VPN” Service Used in Ransomware Attacks
Authorities in Europe have dismantled a major criminal VPN service known as “First VPN,” which was widely used by ransomware operators and cybercriminal groups to conceal their activities. The coordinated operation, led by French and Dutch authorities with support from…
Flipper Introduces Flipper One as a Modular Linux-Based Cyberdeck
Flipper Devices has officially unveiled Flipper One, a modular, Linux-based cyberdeck designed to push the boundaries of open hardware and portable network analysis platforms. Unlike the popular Flipper Zero, the new device targets high-performance networking, software-defined radio (SDR), and embedded Linux…
The new economics of fraud: Cheaper, faster, more convincing
Scams have become one of the fastest-growing consumer risks, driven by AI-enabled impersonation, social engineering, and sophisticated attack methods, according to Visa’s Spring 2026 Biannual Threats Report. Criminals redirect efforts toward trust and third parties Fraud involves behavioral manipulation, fragmented…
New infosec products of the week: May 22, 2026
Here’s a look at the most interesting products from the past week, featuring releases from ASAPP, Babel Street, CTERA, Forward, Riverbed, and Trust3 AI. Babel Street targets AI-driven threats with new agentic investigation capabilities Babel Street has launched Insights Investigator,…
IT Security News Hourly Summary 2026-05-22 06h : 2 posts
2 posts were published in the last hour 4:4 : Discord Announces End-to-End Encryption by Default for Video and Voice Messages 4:4 : Google Navigates EU Regulatory Pressure With Search Policy Shift
Megalodon Malware Compromised 5,500+ GitHub Repos Within 6 Hours
A sweeping automated supply chain attack codenamed “Megalodon” struck GitHub on May 18, 2026, injecting malicious CI/CD backdoors into over 5,500 repositories in less than six hours, marking one of the most aggressive GitHub Actions poisoning campaigns ever recorded. SafeDep…
Discord Announces End-to-End Encryption by Default for Video and Voice Messages
Discord has officially rolled out end-to-end encryption (E2EE) for all voice and video communications across its platform, marking a major milestone in secure real-time communication. The feature, now enabled by default as of March 2026, applies to direct messages, group…
Google Navigates EU Regulatory Pressure With Search Policy Shift
A growing regulatory backlash against search ranking practices has forced Alphabet’s Google to reevaluate portions of its spam enforcement framework in response to criticism by digital publishers in Europe. Reuters has reviewed a document from the European Commission that…
ISC Stormcast For Friday, May 22nd, 2026 https://isc.sans.edu/podcastdetail/9942, (Fri, May 22nd)
This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from SANS Internet Storm Center, InfoCON: green Read the original article: ISC Stormcast For Friday, May 22nd, 2026…
TAX#TRIDENT Campaign Spreads Windows Malware
A new malware campaign targeting Windows users has been identified, using fraudulent Indian Income Tax assessment pages to deliver malicious payloads. This article has been indexed from CyberMaterial Read the original article: TAX#TRIDENT Campaign Spreads Windows Malware
Russia hacks Bluesky accounts to spread Ukraine disinformation
Russian state-linked hackers have compromised hundreds of accounts on the Bluesky social media platform to spread disinformation targeting Ukraine, according to research from Clemson University and internet monitoring group dTeam. This article has been indexed from CyberMaterial Read the original…
Trust3 AI launches MCP Security for AI agents
Trust3 AI has introduced MCP Security, a new product targeting security risks in enterprise deployments of AI agents. This article has been indexed from CyberMaterial Read the original article: Trust3 AI launches MCP Security for AI agents
Kimwolf botnet admin arrested in Canada
Canadian national Jacob Butler, 23, was arrested Wednesday in Ottawa on charges of administering Kimwolf, one of the largest distributed denial-of-service (DDoS) botnets ever documented. This article has been indexed from CyberMaterial Read the original article: Kimwolf botnet admin arrested…