A Brief Evolution of Hacker Tradecraft
Sometimes change happens so gradually it’s easy to miss. That’s often the case in cybersecurity. We see statements like “the security landscape is evolving” or…
Month: May 2026
27,000-Download Codex UI Tool Secretly Stole OpenAI Refresh Tokens
A popular software tool used by thousands of mobile developers has been found stealing authentication tokens. On 27 May 2026, Aikido Security shared research with…
CVE-2026-0257: Rapid7 Caught Attackers Abusing Forged VPN Cookies Against Multiple Customers
CVE-2026-0257: Rapid7 Caught Attackers Abusing Forged VPN Cookies Against Multiple Customers Pierluigi Paganini May 31, 2026 CVE-2026-0257 lets attackers forge Palo Alto GlobalProtect auth cookies…
Webinar: AI Is Democratizing Nation-State Cyber Attacks. How Do We Defend OT?
OT Insights CenterWebinar: AI Is Democratizing Nation-State Cyber Attacks. How Do We Defend OT? Webinar: AI Is Democratizing Nation-State Cyber Attacks. How Do We Defend…
Microsoft Exchange Servers Still Vulnerable to ProxyShell
Attackers are actively scanning for vulnerable Microsoft Exchange servers and abusing the latest line of Microsoft Exchange vulnerabilities that were patched earlier this year. Back…
WP Maps Pro bug exploited to create admin accounts on WordPress sites
Hackers are targeting WordPress websites running a vulnerable version of the WP Maps Pro plugin, which allows creating rogue administrator accounts without authentication. The vulnerability,…
Dutch Authorities Dismantle Botnet Linked to 17 Million Infected Devices
Ravie LakshmananMay 31, 2026IoT Security / Network Security Dutch authorities have announced the takedown of a botnet that enslaved millions of infected devices, including computers,…
CISO burnout: How to prevent contagion across the team
At the ISC2 Security Congress in October 2025, David Foote, chief analyst and research partner at Foote Partners, made a decidedly eye-catching point. “The number…
Bullseye: A Story of a Targeted Cyberattack
At Huntress, we work to understand hackers’ nefarious activities and analyze a lot of malware. And I mean, a lot of malware. At the time…
BTMOB Android malware service generates custom phishing payloads
An Android remote access trojan named BTMOB is offered to cybercriminals with a builder interface for generating malware payloads tailored to phishing lures. The malware…
Post-Quantum Cryptography Is Already Here
For most of the last decade, post-quantum cryptography lived in a particular kind of conversation. It came up at security conferences. It appeared in NIST…
Ministers refused to sign off £563m Capita contract amid civil service pension disaster
Ministers refused to sign off a contract to Capita as a result of the supplier’s much-publicised problems in civil service pension administration. Computer Weekly understands…