AI agents can bypass guardrails and put credentials at risk, Okta study finds
Agent-in-the-middle Agentic AI is really two things: a powerful orchestration system coupled to one or more highly-capable LLMs. What an agent isn’t is a simple…
Month: May 2026
ABS Consulting acquires RMC Global to deepen critical infrastructure protection and resiliency expertise
ABS, through its affiliate ABSG Consulting Inc. (ABS Consulting), announced this week the acquisition of RMC Global (RMC), a provider of industrial cybersecurity, risk management…
What the NVD ‘Slowdown’ Means For You: How to Stay Ahead in Vulnerability Management
Updated April 2026. National Vulnerability Database (NVD): Overview The total number of reported vulnerabilities has increased by 318% since the inception of the National Vulnerability…
Handling the Vulnerability Surge in the Post-Mythos Era
Executive Summary The Mythos era, defined by a surge of AI-driven vulnerabilities from frontier models like Anthropic’s Claude Mythos, requires security teams to fundamentally move…
Microsoft tests modern Windows Run, says it’s faster than legacy dialog
Microsoft has confirmed that Windows 11 is getting a new modern Run dialog with dark mode support and faster performance in a new preview build…
The Agency Mirage: Why AI Needs Real Engineering
By Marceu Martins De Souza Filho, M.Sc. I. The 1999 Mirror: We’ve Been Here Before In 1999, the world was obsessed with “eyeballs.” The goal…
CAPTCHA and ClickFix Abuse Fuels Credential Theft Surge
Attackers are increasingly combining QR codes, fake CAPTCHA gates, and ClickFix-style tricks to steal credentials at scale, even as major phishing-as-a-service (PhaaS) platforms face disruption.…
Hackers Use Jenkins Access to Deploy DDoS Botnet Against Gaming Servers
Cybersecurity firm Darktrace has been tracking a new campaign detected by its CloudyPots honeypot network on 18 March 2026. The activity involved attempts to access…
Nine-year-old Linux kernel flaw enables reliable local privilege escalation (CVE-2026-31431)
Security researchers at Theori have disclosed a high-severity local privilege escalation (LPE) vulnerability (CVE-2026-31431) in the Linux kernel. The flaw, nicknamed “Copy Fail”, has affected…
China-Linked Hackers Target Asian Governments, NATO State, Journalists, and Activists
Cybersecurity researchers have disclosed details of a new China-aligned espionage campaign targeting government and defense sectors across South, East, and Southeast Asia, along with one…
Umbrella companies not working for IT contractors, survey finds
IT contractors are being forced to work through umbrella companies. Often, they can’t determine whether those companies are tax compliant, and therefore frequently suffer from…
Two US Security Experts Sentenced to Prison for Helping Ransomware Gang
Two cybersecurity experts from the United States have been sentenced to prison over charges related to their role in ransomware attacks. Ryan Goldberg of Georgia…