Microsoft May 2026 Patch Tuesday: Many fixes, but no zero-days
Microsoft has marked May 2026 Patch Tuesday by releasing fixes for 120+ CVE-numbered vulnerabilities, none of which (for a change) are actively exploited or have…
Author: Cybernoz
Stolen Canvas data was “returned” after hacker agreement, Instructure says
The Instructure/Canvas data breach that has dominated cybersecurity coverage recently has reached a new stage. Millions of students had personal data stolen, with extortion group…
RubyGems Suspends New Signups After Hundreds of Malicious Packages Are Uploaded
Ravie LakshmananMay 12, 2026Supply Chain Attack / Software Security RubyGems, the standard package manager for the Ruby programming language, has temporarily paused account sign ups…
Microsoft releases rare zero-day free Patch Tuesday update
Microsoft has addressed around 140 newly discovered common vulnerabilities and exposures (CVEs) in its May Patch Tuesday update, but for the first time in a…
Infrastructure and cyber teams must converge as threats evolve: Infotrust
“Cyber risk is now an infrastructure problem, not just a security one,” says Dan Suto, executive general manager of managed technology at Infotrust. In this…
Microsoft Patches 137 Vulnerabilities – SecurityWeek
Microsoft on Tuesday announced patching 137 vulnerabilities across its products, none of which have been flagged as exploited in the wild. Roughly a dozen of…
Hackers accessed BWH Hotels reservation system for months
Hackers accessed BWH Hotels reservation system for months Pierluigi Paganini May 12, 2026 BWH Hotels says hackers accessed guest reservation data, including names and contacts,…
Major world economies spell out key elements of AI ‘ingredients list’
A group of international government agencies released guidance Tuesday on what they believe any artificial intelligence “ingredients list” tool should include to make AI more…
Mistral AI SDK, TanStack Router hit in npm software supply chain attack
The attacks, noticed by several vendors using automated security tools, happened on May 11, spreading rapidly through package ecosystems thanks to the worm capabilities of…
Nozomi Networks platform now available on Google Cloud Marketplace for OT and IoT security deployments
Nozomi Networks, vendor of operational technology (OT), Internet of Things (IoT), and cyber physical systems (CPS) security, announced on Tuesday that the Nozomi Networks Platform…
UK ICO fines South Staffordshire Water nearly £1M over Cl0p breach, signals tougher utility cyber defense oversight
The U.K.’s Information Commissioner’s Office (ICO) fined South Staffordshire Water PLC and its parent company, South Staffordshire Plc, £964,900 following a 2022 Cl0p ransomware attack…
The Evolution of the Geotag: How AI is Bridging the Gap in Location-Based OSINT
For years, location-based open-source intelligence (OSINT) has relied heavily on a steady stream of user-generated geographic data. Geotagged social media posts with embedded latitude and…