Debian 13.5 point release lands with security fixes, bug patches
Debian 13.5 is the fifth point release for the stable distribution “trixie.” The update folds in roughly 100 Debian Security Advisories and corrections for more…
Author: Cybernoz
Microsoft Patches 138 Vulnerabilities, Including DNS and Netlogon RCE Flaws
Microsoft on Tuesday released patches for 138 security vulnerabilities spanning its product portfolio, although none of them have been listed as publicly known or under…
Service NSW charts a path off VMware’s container platform
Service NSW is changing the way it containerises and hosts more than 200 digital products, moving off the Tanzu Application Service to a Red Hat…
Security Affairs newsletter Round 577 by Pierluigi Paganini – INTERNATIONAL EDITION
Security Affairs newsletter Round 577 by Pierluigi Paganini – INTERNATIONAL EDITION Pierluigi Paganini May 17, 2026 A new round of the weekly Security Affairs newsletter…
Norway arrests Chinese man for spying, interior security service says
Norway’s interior security service, PST, said on Sunday a Chinese man had been arrested in the country’s north for spying, just weeks after a Chinese…
A Sneak Peek at hack_it 2022
We’re super excited to announce that hack_it is back! hack_it teaches hacker tradecraft and helps us defenders see cybersecurity from a different perspective. This year’s…
Tycoon2FA hijacks Microsoft 365 accounts via device-code phishing
The Tycoon2FA phishing kit now supports device-code phishing attacks and abuses Trustifi click-tracking URLs to hijack Microsoft 365 accounts. Despite an international law enforcement operation…
Grafana Says It Rejected Ransom Demand After Source Code Theft
Grafana Labs says an attacker gained access to part of its GitHub environment after obtaining a compromised token, allowing the threat actor to download the…
NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE
Ravie LakshmananMay 17, 2026Server Security / Vulnerability A newly disclosed security flaw impacting NGINX Plus and NGINX Open has come under active exploitation in the…
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 97
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 97 Pierluigi Paganini May 17, 2026 Security Affairs Malware newsletter includes a collection of the best articles and research on…
ConnectWise/R1Soft RCE & Supply Chain Risks
UPDATE 2/27/23: As recently spotted by Fox-IT and subsequently reported in SecurityWeek, a critical vulnerability discovered last year in ConnectWise’s R1Soft Server Backup Manager software…
Windows 11 and Microsoft Edge hacked at Pwn2Own Berlin 2026
On the first day of Pwn2Own Berlin 2026, security researchers collected $523,000 in cash awards after exploiting 24 unique zero-days. Today’s highlight was the attempt of Cheng-Da…