CVE-2026–5140 Flaw Grants Root Access On Pardus Linux
A critical local privilege escalation vulnerability chain tracked as CVE-2026–5140 has exposed serious security weaknesses in Pardus Linux. Researchers revealed that the flaws allow any…
Latest Cybersecurity News — Page 18
View all →
Account Theft Scheme Uncovered By Ukraine Cyber Police
The National Police of Ukraine has disclosed an international cybercrime operation tied to the theft of nearly 30,000 customer accounts belonging to a California-based online…
Singtel open to selling “meaningful minority stake” in Optus
Singtel is open to adding a local partner to its Optus operation in exchange for equity in the carrier. The Singtel Group, Optus’ owner, announced…
1Password Teams With OpenAI to Stop AI Coding Agents From Leaking Credentials
1Password has partnered with OpenAI to address one of the growing security concerns surrounding AI-powered software development: protecting enterprise credentials from leakage, theft, or misuse…
DirtyDecrypt: PoC Released for yet another Linux flaw
DirtyDecrypt: PoC Released for yet another Linux flaw Pierluigi Paganini May 20, 2026 DirtyDecrypt (CVE-2026-31635): working PoC out for a Linux kernel LPE flaw. Missing…
Microsoft is working on a patch for ‘YellowKey’ attack on Bitlocker, offers temporary fix
“Organizations should start by auditing their environment for the conditions that exist that leave them vulnerable to YellowKey,” said Eric Grenier, senior director analyst at Gartner.…
Exposed RDP: The Misconfiguration Attackers Keep Exploiting
There’s a skeleton lurking in business environments everywhere. It’s been there for years. It’s not glamorous, and it doesn’t make headlines like zero days. But…
Hackers bypass SonicWall VPN MFA due to incomplete patching
Threat actors brute-forced VPN credentials and bypassed multi-factor authentication (MFA) on SonicWall Gen6 SSL-VPN appliances to deploy tools used in ransomware attacks. During the intrusions,…
Claude Code’s Network Sandbox Vulnerability Exposes User Credentials and Source Code
Anthropic’s Claude Code AI coding assistant harbored a critical network sandbox bypass for over five months, allowing attackers to exfiltrate credentials, source code, and environment…
Microsoft DurableTask Python Client Targeted in TeamPCP Cyberattack
The ongoing TeamPCP software supply chain campaign has compromised the official Microsoft DurableTask Python client, a widely used package for orchestrating workflows in Python applications.…
Verizon DBIR: AI Helped Hackers Exploit Vulnerabilities in 31% of Recent Breaches
The 19th Verizon Data Breach Investigations Report (DBIR) contains worrying, if not surprising, details about how hackers are coming up with unique ways to compromise…
NanoCo lands $12 million seed funding, launches enterprise assistant built on NanoClaw
NanoCo announced a $12 million seed round, alongside the commercial launch of a professional assistant built on its open-source agent framework NanoClaw. Valley Capital Partners…