China-Linked Twill Typhoon Uses Fake Apple and Yahoo Sites for Espionage
A new wave of cyberattacks has been hitting organisations across Japan and the Asia-Pacific area. These attacks, which began in late September 2025, have been…
Month: May 2026
Microsoft turns Copilot Studio into an AI agent control center
The Microsoft Copilot Studio April 2026 updates improve visibility and governance for admins and expand workflow capabilities for managing agents. Copilot surfaces agent status in…
Stealer Backdoor Found in 3 Node-IPC Versions Targeting Developer Secrets
Cybersecurity researchers are sounding the alarm about what has been described as “malicious activity” in newly published versions of node-ipc. According to Socket and StepSecurity,…
CMA launches investigation into Microsoft business software
The Competition and Markets Authority (CMA) has formally launched its investigation into Microsoft’s business software to look at whether the provider of office productivity and…
F5 patches 18-year-old AI-found ‘Rift’ vulnerability in NGINX web server
F5, the company supporting the world’s most popular web server NGINX, has issued patches for a critical memory corruption bug causing a heap buffer overflow,…
Mythos Proves Potent in Vulnerability Discovery, Less Convincing Elsewhere
Mythos appears to be as powerful as claimed at detecting software vulnerabilities; but its capabilities in other areas is more nuanced. Anthropic’s Mythos AI model…
Linux Kernel bug Fragnesia allows local root access attacks
Linux Kernel bug Fragnesia allows local root access attacks Pierluigi Paganini May 14, 2026 Fragnesia, a new Linux kernel flaw tracked as CVE-2026-46300, could let…
West Pharmaceutical starts restoring operations after ransomware attack
The company confirmed data was stolen and encrypted by the attackers. Source link
White House cyber official: identity security matters more than ever in the age of AI
As AI becomes more integrated into federal IT (and attacker toolsets) government agencies will need to focus their resources on regulating and monitoring the identities…
AI agent finds 18-year-old remote code execution flaw in Nginx
Nginx is one of the most popular web servers, powering almost one third of all websites on the internet, and is integrated into many commercial…
Semperis study warns AI agents are rapidly expanding identity attack surfaces without adequate security controls
Semperis, an identity-driven cyber resilience and crisis response company, published results of a multi-industry global study of 1,100 organizations with the aim of understanding AI’s…
Tidal Cyber updates platform for MITRE ATT&CK v19 with focus on procedure-level threat intelligence
Tidal Cyber announced a major advancement to its platform with the separation of MITRE ATT&CK intelligence from Tidal Cyber’s proprietary threat intelligence (CTI). The release…