DirtyDecrypt: PoC Released for yet another Linux flaw
DirtyDecrypt: PoC Released for yet another Linux flaw Pierluigi Paganini May 20, 2026 DirtyDecrypt (CVE-2026-31635): working PoC out for a Linux kernel LPE flaw. Missing…
Latest Cybersecurity News — Page 183
View all →
Microsoft is working on a patch for ‘YellowKey’ attack on Bitlocker, offers temporary fix
“Organizations should start by auditing their environment for the conditions that exist that leave them vulnerable to YellowKey,” said Eric Grenier, senior director analyst at Gartner.…
Exposed RDP: The Misconfiguration Attackers Keep Exploiting
There’s a skeleton lurking in business environments everywhere. It’s been there for years. It’s not glamorous, and it doesn’t make headlines like zero days. But…
Hackers bypass SonicWall VPN MFA due to incomplete patching
Threat actors brute-forced VPN credentials and bypassed multi-factor authentication (MFA) on SonicWall Gen6 SSL-VPN appliances to deploy tools used in ransomware attacks. During the intrusions,…
Claude Code’s Network Sandbox Vulnerability Exposes User Credentials and Source Code
Anthropic’s Claude Code AI coding assistant harbored a critical network sandbox bypass for over five months, allowing attackers to exfiltrate credentials, source code, and environment…
Microsoft DurableTask Python Client Targeted in TeamPCP Cyberattack
The ongoing TeamPCP software supply chain campaign has compromised the official Microsoft DurableTask Python client, a widely used package for orchestrating workflows in Python applications.…
Verizon DBIR: AI Helped Hackers Exploit Vulnerabilities in 31% of Recent Breaches
The 19th Verizon Data Breach Investigations Report (DBIR) contains worrying, if not surprising, details about how hackers are coming up with unique ways to compromise…
NanoCo lands $12 million seed funding, launches enterprise assistant built on NanoClaw
NanoCo announced a $12 million seed round, alongside the commercial launch of a professional assistant built on its open-source agent framework NanoClaw. Valley Capital Partners…
Webworm Deploys EchoCreep and GraphWorm Backdoors Using Discord and MS Graph API
Cybersecurity researchers have flagged fresh activity from a China-aligned threat actor known as Webworm in 2025, deploying custom backdoors that employ Discord and Microsoft Graph…
What did we learn at Google Cloud Next 2026?
AI agents are moving fast. Telecoms organisations are still working out how to run them safely. And it was hard not to notice the shift…
NT government to spend $5m on payroll automation
The Northern Territory government is embarking on a $5 million payroll automation program, comprising enhancements to its current mainframe-based HR system and “complementary solutions”. The…
AI-Powered App Attacks Are Faster, More Frequent and Harder to Stop
AI, and especially agentic AI, is remodeling attack and defense throughout cybersecurity. Any distinction between emerging targets and primary targets in app security has dissolved,…