NIST will test three major tech firms’ frontier AI models for cybersecurity risks
After Anthropic’s announcement of Claude Mythos, agencies across the government are racing to get ahead of new AI models’ potential dangers. Source link
Month: May 2026
A critical Palo Alto PAN-OS zero-day is being exploited in the wild
Attackers are actively exploiting a zero-day vulnerability affecting some Palo Alto Networks’ customers’ firewalls, the security vendor said in an advisory Tuesday. The critical memory…
Threat Brief: Exploitation of PAN-OS Captive Portal Zero-Day for Unauthenticated Remote Code Execution
Executive Summary On May 6, 2026, Palo Alto Networks released a security advisory for CVE-2026-0300, identifying a buffer overflow vulnerability in the User-ID Authentication Portal…
Train like you fight: Why cyber operations teams need no-notice drills
Why the brain undermines the playbook Under genuine threat stimulus, the human nervous system does not behave the way a tabletop exercise assumes it will.…
Microsoft named an overall leader in KuppingerCole Analyst’s 2026 Emerging AI Security Operations Center (SOC) report
Security operations are entering a new phase. As attack techniques grow faster and more complex, the effectiveness of a SOC depends less on collecting more…
BEC Threat Hunting: How to Detect Microsoft 365 Compromises
We all have thoughts that keep us up at night. Will the ticking noise the car made end up being an expensive repair? When will…
Hackers abuse Google ads for GoDaddy ManageWP login phishing
A phishing campaign delivered through Google sponsored search results is targeting credentials for ManageWP, GoDaddy’s platform for managing fleets of WordPress websites. The threat actor…
New Phishing Attack Weaponizing Event Invitations to Steal Login Credentials
A large-scale phishing campaign has been quietly targeting organizations across the United States, using fake event invitations as bait. Rather than sending a suspicious attachment…
When the Breach Gets In Through the CEO’s Inbox, Not the Firewall
Security teams have put in a lot of effort in the last decade to make sure that security parameters are as robust as possible. Because…
A Kid With a Fake Mustache Tricked an Online Age-Verification Tool
Meta is beefing up its age-verification mechanisms with an AI system that analyzes images and videos on Instagram and Facebook for “visual cues,” such as…
Massive DDoS Attack Generates 2.45 Billion Requests Using 1.2 Million IP Addresses
A distributed denial-of-service attack targeted a major user-generated content platform, generating an astonishing 2.45 billion malicious requests in just 5 hours. Security provider DataDome successfully…
Best OSINT Tools for Investigations and Threat Intelligence in 2026
OSINT tools help people collect and analyze publicly available data from across the internet. In 2026, these tools play a bigger role in tracking digital…