A high-severity access-control vulnerability (CVSS 8.2) in Cursor, a widely used AI-powered coding environment. The flaw uncovered by LayerX has allowed any installed extension to access a developer’s API keys and session tokens secretly. This results in total credential compromise…
Security Researchers Uncover QEMU-Powered Evasion in Payouts King Ransomware
Several recent incidents of ransomware activity attributed to the Payouts King operation have highlighted a systematic shift toward virtualization-assisted intrusions, with attackers embedding QEMU as an execution layer within compromised systems. QEMU instances can be configured as reverse SSH…
ProFTPD SQL Injection Flaw Opens Door To Remote Code Execution Attacks
A newly disclosed flaw in ProFTPD is drawing urgent attention because it can let attackers move from a simple SQL injection bug to authentication bypass, privilege escalation, and in some environments even remote code execution. Tracked as CVE-2026-42167, the issue…
SonicWall SonicOS Flaw Lets Attackers Bypass Access Controls and Crash Firewalls
SonicWall has released a security advisory detailing three new vulnerabilities affecting its SonicOS software. Disclosed on April 29, 2026, under advisory ID SNWLID-2026-0004, these security flaws open the door for attackers to bypass access controls, manipulate restricted files, and intentionally…
Linux Kernel 0-Day “Copy Fail” Grants Root Access Across Major Distros Since 2017
Security researchers have disclosed a critical zero-day vulnerability in the Linux kernel dubbed “Copy Fail” (CVE-2026-31431), which allows unprivileged local users to gain root access. Using a tiny 732-byte Python script, attackers can exploit a logic flaw present in major…
Salesforce’s New “Headless 360” Lets AI Agents Run Its Platform
Salesforce has introduced what it describes as the most crucial architectural overhaul in its 27-year history, launching a new initiative called “Headless 360.” The update is designed to allow artificial intelligence agents to control and operate the company’s entire…
IT Security News Hourly Summary 2026-04-30 06h : 2 posts
2 posts were published in the last hour 4:5 : Linux Kernel 0-Day “Copy Fail” Roots Every Major Distribution Since 2017 3:32 : Coming Soon: AI-Scan OpenClaw Ecosystem Security Scanning Capabilities
Linux Kernel 0-Day “Copy Fail” Roots Every Major Distribution Since 2017
A critical zero-day vulnerability in the Linux kernel has been publicly disclosed, enabling any unprivileged local user to obtain root access on virtually every major Linux distribution shipped since 2017. Dubbed “Copy Fail” and tracked as CVE-2026-31431, the flaw was…
Coming Soon: AI-Scan OpenClaw Ecosystem Security Scanning Capabilities
As the OpenClaw ecosystem continues to surge in popularity, more customers are deploying and utilizing these AI agents on a large scale. However, this growth has brought significant security challenges to the forefront, including over 33 documented CVE vulnerabilities, 288+…
Adaptive Security Leadership in an Expanding Threat Surface
Last week I joined fellow security leaders at CISO Inspire Summit North for a panel discussion on The Expanding Threat Surface: Adaptive Security Leadership for 2026 and Beyond. It was a timely discussion, because the challenge facing security leaders today is not simply…
Udemy Data Breach – 1.4 Million Records Leaked by ShinyHunters
One of the world’s largest online learning platforms Udemy data breach. The cyber threat group ShinyHunters has claimed… The post Udemy Data Breach – 1.4 Million Records Leaked by ShinyHunters appeared first on Hackers Online Club. This article has been…
ISC Stormcast For Thursday, April 30th, 2026 https://isc.sans.edu/podcastdetail/9912, (Thu, Apr 30th)
This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from SANS Internet Storm Center, InfoCON: green Read the original article: ISC Stormcast For Thursday, April 30th, 2026…
KasadaIQ’s Q1 Insights: How AI Became Adversary Infrastructure
KasadaIQ’s Q1 2026 Threat Intelligence Report highlights a structural shift in automated threats: AI is now embedded across the adversary lifecycle. From large-scale account commoditization to verification bypass and AI agent exploitation, organizations face a rapidly evolving and industrialized threat…
Microsoft Confirms Windows Flaw Is Being Exploited After Incomplete Patch
Microsoft confirmed a Windows zero-click flaw tied to an incomplete patch is being exploited, putting credentials at risk for unpatched users. The post Microsoft Confirms Windows Flaw Is Being Exploited After Incomplete Patch appeared first on TechRepublic. This article has…
IT Security News Hourly Summary 2026-04-30 03h : 1 posts
1 posts were published in the last hour 0:32 : Danger of Libredtail [Guest Diary], (Wed, Apr 29th)
Danger of Libredtail [Guest Diary], (Wed, Apr 29th)
[This is a Guest Diary by James Roberts, an ISC intern as part of the SANS.edu BACS program] This article has been indexed from SANS Internet Storm Center, InfoCON: green Read the original article: Danger of Libredtail [Guest Diary], (Wed,…
Linux cryptographic code flaw offers fast route to root
Patches land for authencesn flaw enabling local privilege escalation Developers of major Linux distributions have begun shipping patches to address a local privilege escalation (LPE) vulnerability arising from a logic flaw.… This article has been indexed from The Register –…
IT Security News Hourly Summary 2026-04-30 00h : 7 posts
7 posts were published in the last hour 21:55 : IT Security News Daily Summary 2026-04-29 21:36 : Cursor AI Agent Wipes PocketOS Database and Backups in 9 Seconds 21:36 : Researchers built a chatbot that only knows the world…
IT Security News Daily Summary 2026-04-29
159 posts were published in the last hour 21:36 : Cursor AI Agent Wipes PocketOS Database and Backups in 9 Seconds 21:36 : Researchers built a chatbot that only knows the world before 1931 21:9 : What are the most…
Cursor AI Agent Wipes PocketOS Database and Backups in 9 Seconds
PocketOS founder says Cursor AI agent deleted its production database in 9 seconds after misusing a root API token, exposing major Railway security flaws. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, AI and More Read…
Researchers built a chatbot that only knows the world before 1931
What happens when you strip the internet out of AI? Researchers built a chatbot that only knows the world before 1931. This article has been indexed from Malwarebytes Read the original article: Researchers built a chatbot that only knows the…
What are the most common authentication methods?
<p>The state of digital user authentication today is undeniably messy. Many users rely on hundreds of authenticators, including passwords, biometrics and cryptographic keys, to have their digital identity verified by devices, applications, services and other digital entities. Adding to the…
cPanel Vulnerability Exposes Servers to Takeover
A cPanel flaw allows authentication bypass and risks full server compromise, prompting urgent patching. The post cPanel Vulnerability Exposes Servers to Takeover appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the original article: cPanel…
CVE-2026-42208: LiteLLM bug exploited 36 hours after its disclosure
Attackers quickly exploited a critical LiteLLM flaw (CVE-2026-42208) to access and modify sensitive database data via SQL injection. Attackers rapidly exploited a critical vulnerability in LiteLLM Python package, tracked as CVE-2026-42208, just days after it became public. The vulnerability, an SQL…