Why Most Security Tools Still Fail to Test Real Attack Paths
I’ve spent a lot of time working with vulnerability scanners and automated security tools, and one thing always stands out. They produce a huge volume…
Month: May 2026
CalPhishing Scam Uses EvilTokens Kit, Outlook Invites to Steal M365 Sessions
Cybercriminals have found a way to bypass security controls by using your work schedule against you, reveals a new report from Fortra Intelligence and Research…
AI-Assisted Cybersecurity Leadership Services For Small And Mid-Sized Businesses (SMBs)
According to the 2026 CISO Report from Cybersecurity Ventures, sponsored by Sophos, there are now about 35,000 full-time CISOs worldwide. Most of them are employed by larger…
Google lets Workspace admins apply one policy across all SAML apps
Google has updated Context-Aware Access (CAA) in Google Workspace to introduce a default policy assignment for SAML applications. SAML applications are third-party or internal applications…
Meta’s confusing new approach to chat privacy
Recent news had us wondering whether Meta actually knows what it wants. On one platform, Meta is promoting AI chats that it says even it…
What 45 Days of Watching Your Own Tools Will Tell You About Your Real Attack Surface
The Hacker NewsMay 15, 2026Endpoint Security / Threat Detection In Your Biggest Security Risk Isn’t Malware — It’s What You Already Trust, we made a…
Post Office chair defends ‘inappropriate and harmful’ position on Capture appeals
Post Office chairman Nigel Railton has told an influential group of peers and academics that the Post Office’s controversial decision to contest Capture appeals is…
Fragnesia Linux Kernel Flaw Enables Root Privilege Gain
Security researchers have disclosed a newly identified local privilege escalation vulnerability in the Linux Kernel, dubbed “Fragnesia,” which belongs to the broader Dirty Frag family of flaws.…
TCE Weekly Roundup: AI, Ransomware & Risks 2026
In this weekly roundup from The Cyber Express, the global cybersecurity landscape in 2026 continues to shift rapidly as emerging technologies and evolving cyber threats…
NBN Co AI could give RSPs more network intelligence
NBN Co’s AI strategy is moving toward an agentic phase that could see the network wholesaler open its data to retailers and give them greater…
Microsoft Warns of Exchange Server Zero-Day Exploited in the Wild
Microsoft Exchange Server users are urged to immediately mitigate a newly disclosed zero-day vulnerability that has been exploited in attacks. Microsoft this week patched 137…
Ghostwriter group resumes attacks on Ukrainian Government targets
Ghostwriter group resumes attacks on Ukrainian Government targets Pierluigi Paganini May 15, 2026 ESET uncovered new Ghostwriter (aka FrostyNeighbor) activity targeting Ukrainian government organizations in…