TCE Weekly Roundup: AI Act, Malware & FBI Cyber Alerts
In this weekly roundup from The Cyber Express, the global cybersecurity landscape continues to show rapid and uneven change, shaped by both regulatory shifts and…
Author: Cybernoz
Zero-trust is not a product – it’s a philosophy
There’s an implicit contract when we get on a plane. Identities are verified, bags are checked and potentially dangerous cargo is kept out of the…
AI Firm Braintrust Prompts API Key Rotation After Data Breach
AI evaluation and observability platform Braintrust urged customers this week to rotate API keys that may have been compromised after hackers accessed an AWS account.…
RansomHouse says it breached Trellix and exposes internal systems
RansomHouse says it breached Trellix and exposes internal systems Pierluigi Paganini May 08, 2026 RansomHouse claimed responsibility for the Trellix breach, adding the security firm…
ShinyHunters claims nearly 9,000 schools affected by Canvas data breach
ShinyHunters, the prolific criminal hacker and extortion group, on Thursday provided additional details about its recent breach of Canvas, the learning management system developed by…
Five new holes, one exploited, found in Ivanti Endpoint Manager Mobile
He was commenting on an advisory issued Thursday by Ivanti about the discovery of five holes in its Endpoint Manager Mobile (EPMM) suite. Updates for…
Chaos erupts as cyberattack disrupts learning platform Canvas amid finals
Chaos erupted at schools and colleges throughout the US on Thursday as a cyberattack disrupted online learning platform Canvas just as students were due to…
Threat Advisory: XMRig Cryptomining By Way Of TeamViewer
At the end of May 2023, Huntress Security Operations Center (SOC) analysts responded to an alert on an endpoint, indicating the presence of a cryptocurrency…
CISA gives feds four days to patch Ivanti flaw exploited as zero-day
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has given U.S. federal agencies four days to secure their networks against a high-severity vulnerability in Ivanti…
New PamDOORa Backdoor Attacking Linux Systems to Steal SSH Credentials
A new backdoor called PamDOORa has emerged as a serious and growing threat to Linux systems, targeting one of the most trusted components of the…
Modular RAT Campaign Steals Credentials and Captures Screenshots
A sophisticated spear-phishing campaign, dubbed Operation GriefLure, targeting senior executives in Vietnam and the Philippines with a stealthy modular remote access trojan (RAT). The campaign focuses…
Ivanti EPMM vulnerability exploited in zero-day attacks (CVE-2026-6973)
Ivanti has released fixes for 5 high-severity vulnerabilities in its Endpoint Manager Mobile (EPMM) solution, one of which (CVE-2026-6973) has being exploited as a zero-day…