May, 2026 - Cybernoz

PraisonAI Vulnerability Actively Exploited Within Hours of Being Made Public

A high-severity vulnerability in PraisonAI is drawing urgent attention after security researchers observed exploitation attempts within hours of public disclosure. The flaw, tracked as CVE-2026-44338…

May 17, 2026 Cybernoz 3 min read

TheHackerNews

How AI Hallucinations Are Creating Real Security Risks

AI hallucinations are introducing serious security risks into critical infrastructure decision-making by exploiting human trust through highly confident yet incorrect outputs. When an AI model…

May 17, 2026 Cybernoz 6 min read

ComputerWeekly

AI threats push Middle East CISOs towards identity-first security

Cyber security leaders in the Middle East are adjusting to a new reality where artificial intelligence (AI) is sharpening attacks even as it strengthens defences.…

May 17, 2026 Cybernoz 4 min read

Securityaffairs

U.S. CISA adds a flaw in Microsoft Exchange Server to its Known Exploited Vulnerabilities catalog

U.S. CISA adds a flaw in Microsoft Exchange Server to its Known Exploited Vulnerabilities catalog Pierluigi Paganini May 16, 2026 The U.S. Cybersecurity and Infrastructure…

May 17, 2026 Cybernoz 3 min read

CISOOnline

ClickFix finds a backup plan in PySoxy proxy chains

As the researchers pointed out in a blog post, PySoxy is giving attackers encrypted proxy access without relying on well-known malware or remote monitoring and…

May 16, 2026 Cybernoz 1 min read

ThreatIntelligence-IncidentResponse

Tradecraft, Shenanigans and Spice: hack_it 2022 Recap

It’s near the end of the year, and that can only mean one thing here at Huntress: it’s hack_it season. Not to brag, but this…

May 16, 2026 Cybernoz 5 min read

Bleeping Computer

Russian hackers turn Kazuar backdoor into modular P2P botnet

The Russian hacker group Secret Blizzard has developed its long-running Kazuar backdoor into a modular peer-to-peer (P2P) botnet designed for long-term persistence, stealth, and data…

May 16, 2026 Cybernoz 3 min read

CyberSecurityNews

JDownloader Website Compromised to Distribute Malicious Windows and Linux Installers

A widely used download manager trusted by millions has briefly turned into a malware delivery platform after attackers compromised the official JDownloader website, replacing legitimate…

May 16, 2026 Cybernoz 2 min read

GBHackers

Hackers Exploit OAuth Device Flow to Steal Microsoft 365 Tokens

Hackers are rapidly weaponizing a little-known Microsoft authentication feature to hijack enterprise accounts, as device code phishing surges across the threat landscape. The spike in…

May 16, 2026 Cybernoz 5 min read

HackRead

Critical ‘Claw Chain’ Vulnerabilities Put Thousands of OpenClaw AI Servers at Risk

A collection of security vulnerabilities in the popular autonomous AI agent OpenClaw has put thousands of servers at risk. Security experts at the firm Cyera…

May 16, 2026 Cybernoz 3 min read

HelpnetSecurity

The AI oversight paradox: Is the investment worth the cost of watching it?

Unlike in 2025, when AI adoption and testing drove business strategies, organizations in 2026 want proven ROI before committing budgets, according to a report by…

May 16, 2026 Cybernoz 2 min read

TheHackerNews

Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming

Ravie LakshmananMay 16, 2026Vulnerability / Website Security A critical security vulnerability impacting the Funnel Builder plugin for WordPress has come under active exploitation in the…

May 16, 2026 Cybernoz 2 min read