A Bipartisan Amendment Would End Police License Plate Tracking Nationwide
US lawmakers plan to introduce an amendment Thursday at a House committee markup hearing that would prohibit any recipient of federal highway funding from using…
Month: May 2026
Critical ExifTool Vulnerability Lets Hackers Compromise Macs via Malicious Images
A newly disclosed vulnerability in ExifTool, tracked as CVE-2026-3102, exposes macOS systems to command execution attacks through malicious image metadata, highlighting ongoing risks in widely…
GitHub Breach: TeamPCP Steals 3,800 Repositories via VS Code Extension
GitHub is the newest target of a data breach in which hackers from the infamous TeamPCP hackers bypassed its security to gain access to internal…
Verizon DBIR: Vulnerability exploitation is the dominant initial access vector
Vulnerability exploitation has overtaken stolen credentials as the most common way attackers gain initial access to target networks, according to the 2026 Verizon Data Breach…
Microsoft Open-Sources RAMPART and Clarity to Secure AI Agents During Development
Ravie LakshmananMay 20, 2026Artificial Intelligence / Security Testing Microsoft has unveiled two new open-source tools called RAMPART and Clarity to assist developers in better testing…
Spanish police ‘systematically’ hid cryptophone intercepts from courts, claims ex chief
A former police chief, who faces drug trafficking charges has claimed that Spanish drug investigators fabricated fictitious intelligence reports to hide their use of intercepted…
Fears of unfettered hacking spurred by Anthropic’s Mythos AI model likely ‘overstated’
Early fears that Anthropic’s new AI model, Mythos, could dramatically turbocharge hacking are looking overstated a month after its release. The company warned at launch in…
Microsoft Rolls Out Mitigations for ‘YellowKey’ BitLocker Bypass
Microsoft on Tuesday rolled out mitigations for YellowKey, a recently disclosed zero-day vulnerability leading to BitLocker bypass. The issue, now tracked as CVE-2026-45585 (CVSS score…
Carding site B1ack’s Stash dumps 4.6 Million stolen cards for free
Carding site B1ack’s Stash dumps 4.6 Million stolen cards for free Pierluigi Paganini May 20, 2026 Carding forum B1ack’s Stash claims to have released millions…
Microsoft disrupts cybercrime operation that hid behind legitimate software
The Fox Tempest malware-signing-as-a-service operation was linked to numerous ransomware attacks. Source link
GitHub admits major source code leak after 3,800 internal repositories breached
“Yesterday we detected and contained a compromise of an employee device involving a poisoned VS [Visual Studio] Code extension. We removed the malicious extension version,…
Team Cymru supports Interpol’s Operation Ramz targeting phishing, malware, cyber scam infrastructure across MENA
Team Cymru, vendor of external threat intelligence and internet visibility, announced its role as a private-sector partner in Operation Ramz, a first-of-its-kind cybercrime operation in…