Deleted Google API Keys Remain Active up to 23 Minutes, Study Finds
A new study conducted by the cybersecurity firm Aikido Security reveals that deleted Google API keys stay active and can continue authenticating successfully for up…
Month: May 2026
Microsoft open-sources tools for designing and testing AI agents
Microsoft has open-sourced two tools aimed at bringing security discipline to AI agent development: Clarity, a structured design review tool, and RAMPART, a continuous testing…
Catch spyware in the act with Windows Webcam Monitoring
You’re working hard late at night, replying to emails and planning the week ahead. Then suddenly, a PDF file requests access to your camera. Why would a PDF…
Showboat Linux Malware Hits Middle East Telecom with SOCKS5 Proxy Backdoor
Ravie LakshmananMay 21, 2026Cyber Espionage / Threat Intelligence Cybersecurity researchers have disclosed details of a new Linux malware dubbed Showboat that has been put to…
Social media addiction by design poses hard questions for business use
Social media providers are facing a blizzard of regulation and legal action over children and teenagers’ use of social media. Last December, Australia banned under-16s…
TAKE IT DOWN Act Drives FTC Push Against Explicit AI Content
The Federal Trade Commission (FTC) has intensified enforcement of the TAKE IT DOWN Act, issuing warning letters to multiple online platforms and AI-powered “nudify” services…
GitHub Cyberattack Linked To TeamPCP VS Code Hack
GitHub confirmed that attackers associated with TeamPCP gained unauthorized access to thousands of the company’s internal code repositories after compromising an employee’s device through a malicious VS…
GitHub compromised, allegedly by TeamPCP
Microsoft-owned web-based code hosting and collaboration platform GitHub has confirmed that it has been compromised, following reports that the TeamPCP hacking group had successfully attacked…
Cisco Patches Critical Vulnerability in Secure Workload
Cisco on Wednesday announced patches for a critical-severity vulnerability in Secure Workload that could allow attackers to access site resources with Site Admin privileges. The…
Attackers are bypassing MFA on SonicWall VPNs because something was wrong with previous fix
Attackers are bypassing MFA on SonicWall VPNs because something was wrong with previous fix Pierluigi Paganini May 21, 2026 Attackers bypassed MFA on patched SonicWall…
How Triage Assist is raising the bar in crowdsourced security
AI is changing the volume and accelerating the pace of vulnerability submissions. If you’ve been following our recent AI series, you already know that submission…
Microsoft releases open-source tools to operationalize AI agent safety
“We built these tools because we believe that AI safety has to become a continuous engineering discipline rather than a periodic checkpoint, and we think…