12 May 2026 · 12:00 UTC

View CSAF Summary ABB became aware of vulnerability in the products versions listed as affected in the advisory. An update is available that resolves publicly reported vulnerability. An attacker who successfully exploite…

12 May 2026 · 12:00 UTC

View CSAF Summary Successful exploitation of these vulnerabilities could allow an authenticated attacker to expose sensitive information or cause a CRLF injection. The following versions of Subnet Solutions PowerSYSTEM C…

12 May 2026 · 12:00 UTC

CISA and the Group of Seven (G7) international partners—Germany, Canada, France, Italy, Japan, the United Kingdom, and the European Union—have released joint guidance, Software Bill of Materials for AI – Minimum Elements…

Yesterday · 20:23 UTC

A critical vulnerability affecting certain configurations of the Exim open-source mail transfer agent could be exploited by an unauthenticated remote attacker to execute arbitrary code. [...]

Yesterday · 22:23 UTC

West Pharmaceutical Services disclosed that it was the target of a cyberattack that resulted in data exfiltration and system encryption. [...]

Yesterday · 21:59 UTC

The Iran-linked hacking group MuddyWater (a.k.a. Seedworm, Static Kitten) launched a broad cyber-espionage campaign targeting at least nine high-profile organizations across multiple sectors and countries. [...]

12 May 2026 · 11:06 UTC

This is the worst Linux vulnerability in years. TL;DR copy.fail is a Linux kernel local privilege escalation, not a browser or clipboard attack. Disclosed by Theori on 29 April 2026 with a working PoC. It abuses the kern…

Yesterday · 11:03 UTC

The UK’s AI Security Institute evaluated GPT-5.5’s ability to find security vulnerabilities, and found that it is comparable to Claude Mythos. Note that the OpenAI model is generally available. Here is the Institute’s ev…

11 May 2026 · 11:04 UTC

Turns out that LLMs are really good at hiding text messages in other text messages.

Yesterday · 13:46 UTC

Microsoft has unveiled a new multi-model artificial intelligence (AI)-driven system called MDASH to facilitate vulnerability discovery and remediation at scale, adding that it's being tested by some customers as part of…

Yesterday · 11:52 UTC

TL;DR: Stop chasing thousands of "toast" alerts. Join experts from Wiz to learn how hackers connect tiny flaws to build a "Lethal Chain" to your data—and how to break it. Register for the Strategic Briefing Here. Most se…

Yesterday · 13:00 UTC

A threat actor with affiliations to China has been linked to a "multi-wave intrusion" targeting an unnamed Azerbaijani oil and gas company between late December 2025 and late February 2026, marking an expansion of its ta…

Yesterday · 14:30 UTC

Instructure says it reached an agreement with ShinyHunters over the Canvas breach data

Yesterday · 12:30 UTC

Survey of cybersecurity leaders suggests that majority would strongly consider paying cybercriminals, if that’s what it took to help restore encrypted systems

Yesterday · 14:00 UTC

Avada Builder flaws allowed file read and SQL injection on one million WordPress sites

12 May 2026 · 21:46 UTC

Artificial intelligence platforms may be just as susceptible to social engineering as human beings, but they are proving remarkably good at finding security vulnerabilities in human-made computer code. That reality is on…

Yesterday · 20:47 UTC

An OPSEC failure provides a window into what helped the ransomware group rise: a generous affiliate model, opportunistic TTPs, and an effective organizational structure.

Yesterday · 21:09 UTC

Threat actors are publishing RubyGems packages that include scrapers targeting public-facing UK government servers, but with no clear objective.

Yesterday · 21:17 UTC

Security governance needs to be more than an annual compliance exercise. New companies are emerging to address risk-management gaps in current audit tools.

Yesterday · 12:55 UTC

This week in cybersecurity from the editors at Cybercrime Magazine Sausalito, Calif. – May. 13, 2026 – Watch the YouTube video The challenge Legion Security addresses is well-known: for more than two decades, SOC teams h…

12 May 2026 · 13:01 UTC

This week in cybersecurity from the editors at Cybercrime Magazine Sausalito, Calif. – May. 12, 2026 – Watch the YouTube video The Women in Cybersecurity Report, a 7-minute video hosted by Cybercrime Magazine Deputy Edit…

11 May 2026 · 12:26 UTC

This week in cybersecurity from the editors at Cybercrime Magazine Sausalito, Calif. – May. 11, 2026 – Read the full story from Enterprise Times The 2026 CISO Report from Cybersecurity Ventures in partnership with Sophos…

Yesterday · 06:29 UTC

&#;x26;#;x5b;This is a Guest Diary by Joshua Nikolson, an ISC Intern and part of the SANS.edu Bachelor&#;x26;#;39;s degree in Applied Cybersecurity (BACS) program.]

Yesterday · 03:05 UTC

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Yesterday · 01:20 UTC

.. if “unproxyable” is a word that is ..

Yesterday · 22:29 UTC

Two independent studies found that Anthropic's Claude Mythos Preview and OpenAI's GPT-5.5 have outpaced every trend line researchers were tracking. No one is sure if this is a one-time leap or the new normal. The post Re…

Yesterday · 22:10 UTC

The committee held a closed briefing Wednesday with company reps, and more oversight is in the works. The post Closed briefing sets stage for House hearing on Anthropic’s Mythos and cyber risks appeared first on CyberSco…

Yesterday · 20:10 UTC

The memo claims a robust executive branch role vetting voter eligibility. One Secretary of State called it a “fantasy” that “isn’t worth the paper it’s printed on.” The post DOJ releases legal rationale for nationwide vo…

Yesterday · 21:48 UTC

The final flight and complex legacy of a pioneering solar-powered aircraft.

Yesterday · 20:44 UTC

Approval is no surprise after FCC chair pressured EchoStar to sell licenses.

Yesterday · 20:27 UTC

Distinct form of tooth protein in Homo erectus shows up in Denisovans—and us.

12 May 2026 · 13:52 UTC

A malicious Hugging Face repository that posed as an OpenAI release delivered infostealer malware to Windows machines and recorded about 244,000 downloads before removal, according to research from AI security firm Hidde…

Yesterday · 13:43 UTC

The Physical AI Conference shaping the future of robotics, autonomous systems and real-world AI deployment lands in Silicon Valley this May, bringing together the engineers, builders and AI pioneers turning intelligence…

12 May 2026 · 15:37 UTC

Joe Rose, president at strategic technology provider JBS Dev, wants to cut through one of the myths of working with generative and agentic AI systems. “It’s a common misconception that your data has to be perfect before…

Yesterday · 23:47 UTC

Disgruntled researcher publishes YellowKey proof-of-concept.

Yesterday · 23:00 UTC

AI is delivering returns, but strategy gaps persist.

Yesterday · 20:12 UTC

As funding for several regional telco initiatives dries up.

Yesterday · 22:04 UTC

Microsoft Edge is adding a new feature that will allow its Copilot AI chatbot to gather information from all of your open tabs. When you start a conversation with Copilot, you can ask the chatbot questions about what's i…

Yesterday · 21:58 UTC

The Trump administration is fighting for the right to keep some social media moderation advocates out of the US. On Wednesday, US District Court Judge James Boasberg heard arguments in a lawsuit between the nonprofit Coa…

Yesterday · 21:30 UTC

In the ongoing fight for content and talent, YouTube is pitching itself as the connector between the creators and advertisers - and marketing its creators not just as the future of social media, but also of advertising,…

Yesterday · 12:09 UTC

Ofcom attempts to block UK access to site cited in multiple coroners’ reports as it levies fine under Online Safety ActA nihilistic internet suicide forum implicated in over 160 UK deaths has been fined £950,000 by the o…

Yesterday · 05:00 UTC

Horticulturalists express alarm after award-winning Matt Keightley launches app that can automate designsWith glasses of champagne sipped among the peonies, Chelsea flower show is generally a friendly and genteel occasio…

12 May 2026 · 16:24 UTC

The inquiry came after the Guardian revealed Israel used company technology to support mass surveillance of Palestinian phone callsThe head of Microsoft’s Israeli subsidiary will step down in the wake of an inquiry that…

Yesterday · 18:09 UTC

People report that their personal contact info was surfaced by Google AI—and there’s apparently no easy way to prevent it. A Redditor recently wrote that he was “desperate for help”: for about a month, he said, his phone…

11 May 2026 · 13:33 UTC

Despite years of digitization, organizations capture less than one-third of the value expected from digital investments, according to McKinsey research. That’s because most big companies begin with technological capabili…

11 May 2026 · 17:35 UTC

This story originally appeared in The Algorithm, our weekly newsletter on AI. To get stories like this in your inbox first, sign up here. A few months before he was awarded the Nobel Prize in economics in 2024, Daron Ace…

Yesterday · 19:15 UTC

Researcher Sasha Luccioni argues we need better emissions data and a better sense of how people are using AI in the first place.

Yesterday · 21:58 UTC

The plaintiffs and defense have rested their cases, as well as their rear ends.

Yesterday · 19:03 UTC

Autonomous drones and ground vehicles will stream “battlefield intelligence” over 5G along the US-Canada border in a bilateral DHS experiment this fall.

Yesterday · 16:31 UTC

But training on "synthetic stories" that model good AI behavior can help.

Yesterday · 19:47 UTC

Old "honor code" systems are under strain.

Yesterday · 17:48 UTC

"Very painful": Altman relives his Muskian reaction to losing control over OpenAI.

12 May 2026 · 12:30 UTC

Announced today at SAP Sapphire — where NVIDIA founder and CEO Jensen Huang joined SAP CEO Christian Klein’s keynote by video — SAP and NVIDIA’s expanded collaboration helps enterprises run specialized agents with securi…

Yesterday · 13:00 UTC

Reinforcement-learning agents — AI systems that learn by trial and error — can convert computation into new knowledge. That’s the focus of a new engineering-level collaboration between NVIDIA and Ineffable Intelligence,…

Yesterday · 13:00 UTC

Agentic AI is changing the way users get work done. Following the success of OpenClaw, the community is embracing new open source agentic frameworks. The latest is Hermes Agent, which crossed 140,000 GitHub stars in unde…

Yesterday · 21:51 UTC

The South Australian government is planning to lift a ban on fracking in the state's South East amid reports of increasing risks to gas supply in southern parts of the nation.

Yesterday · 23:57 UTC

Supermarket giant Coles broke consumer law by misleading shoppers on discount prices, a Federal Court judge has found.

Yesterday · 22:12 UTC

Residents plagued by dust from Australia's oldest and largest lithium mine say a plan for a free car wash by the mine's owner misses the mark.

Yesterday · 21:45 UTC

Notion’s new developer platform lets teams connect AI agents, external data sources, and custom code directly into their workspace as the company pushes deeper into agentic productivity software.

Yesterday · 19:49 UTC

Gas turbines at xAI's Colossus 2 data center have drawn a lawsuit over the company's use of "mobile" gas turbines as power plants.

Yesterday · 19:28 UTC

The head of product for Claude Code and Cowork says that the next big step for AI is proactivity.

11 May 2026 · 12:46 UTC

What laws does superintelligence demand?

11 May 2026 · 14:00 UTC

Executive Summary Since our February 2026 report on AI-related threat activity, Google Threat Intelligence Group (GTIG) has continued to track a maturing transition from nascent AI-enabled operations to the industrial-sc…

Yesterday · 00:22 UTC

Microsoft is publishing 137 vulnerabilities on May 2026 Patch Tuesday. Microsoft is not aware of exploitation in the wild or public disclosure for any of these vulnerabilities. So far this month, Microsoft has provided p…

Yesterday · 14:44 UTC

OverviewAttackers do not need to break into the front door when they can convince employees to open it for them through the tools they already trust.In April 2026, Rapid7 investigated an enterprise intrusion that began w…

Yesterday · 13:54 UTC

At Rapid7, our commitment to our partners is built on the foundation of the PACT (Partnering with Accountability, Consistency, and Transparency) program. Central to this mission is the Rapid7 Partner Academy, which was r…

12 May 2026 · 19:57 UTC

Microsoft has released its monthly security update for May 2026, which includes 137 vulnerabilities affecting a range of products, including 16 that Microsoft marked as “critical”.

Yesterday · 10:00 UTC

Philippe shares his unique journey from French engineering school to the front lines of cybersecurity, explaining how his lifelong love for solving puzzles helps him uncover critical security flaws before they can be exp…

12 May 2026 · 10:00 UTC

Responding to a state-sponsored threat is nothing like responding to ransomware, and the differences can make or break the outcome. Learn why your IR plan might need revisiting, and the factors you should consider.

11 May 2026 · 12:49 UTC

For the latest discoveries in cyber research for the week of 11th May, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES Instructure, the US education technology company behind the Canvas learnin…

Yesterday · 13:01 UTC

Key Points Introduction The Gentlemen ransomware‑as‑a‑service (RaaS) operation is a relatively new group that emerged around mid‑2025. Its operators advertise the service across multiple underground forums, promoting the…

11 May 2026 · 09:58 UTC

Key Findings Ransomware in Q1 2026: Consolidation at Scale During the first quarter of 2026, we monitored more than 70 active data leak sites (DLS) that collectively listed 2,122 new victims. This figure represents a 12.…

12 May 2026 · 05:00 UTC

11 May 2026 · 05:00 UTC

12 May 2026 · 15:00 UTC

Microsoft Incident Response investigated an attack operated through legitimate and trusted administrative mechanisms to blend seamlessly into routine operations and remain undetected demonstrating that intrusions have in…

12 May 2026 · 07:00 UTC

Kaspersky researchers are sharing insights into the main ransomware trends for 2026: EDR killers on the rise, switching from data encryption to data leaks, and more.

12 May 2026 · 13:58 UTC

The Mini Shai-Hulud worm is actively compromising legitimate npm packages by hijacking CI/CD pipelines and stealing developer secrets. StepSecurity's OSS Package Security Feed first detected the attack in official @tanst…

11 May 2026 · 22:00 UTC

Unit 42 analyzes AD CS exploitation through template misconfigurations and shadow credential misuse while offering behavioral detection for defenders. The post Inside AD CS Escalation: Unpacking Advanced Misuse Technique…

12 May 2026 · 22:53 UTC

What if you could generate realistic attack telemetry on demand? Explore research methods that translate attacker behaviors (TTPs) into synthetic logs that can trigger detections at scale and without sensitive data. The…

12 May 2026 · 16:00 UTC

Read how to protect consumer websites and defend against modern DDoS attacks with layered security, resilient architecture, and graceful service degradation. The post Defending consumer web properties against modern DDoS…

12 May 2026 · 22:00 UTC

Today Microsoft is announcing a major step forward in AI-powered cyber defense: a new multi-model agentic scanning harness (codenamed MDASH). The post Defense at AI speed: Microsoft’s new multi-model agentic security sys…

Yesterday · 19:07 UTC

The financial services industry (FSI) is using AI to transform how financial institutions serve their customers. AI solutions can help proactively manage portfolios, automatically refinance mortgages when rates decrease,…

Yesterday · 21:47 UTC

This article guides you on how to use Amazon GuardDuty to identify and mitigate cryptocurrency mining threats in your Amazon Web Services (AWS) environment. You’ll learn about the specialized detection capabilities of Gu…

Yesterday · 16:16 UTC

Amazon Web Services (AWS) is pleased to announce the successful completion of Payment Card Industry Personal Identification Number (PCI PIN) and PCI Point-to-Point Encryption (PCI P2PE) assessments for the AWS Payment Cr…

12 May 2026 · 22:00 UTC

12 May 2026 · 15:00 UTC

See how finance teams can use Codex to build MBRs, reporting packs, variance bridges, model checks, and planning scenarios from real work inputs.

12 May 2026 · 00:00 UTC

Parameter Golf brought together 1,000+ participants and 2,000+ submissions to explore AI-assisted machine learning research, coding agents, quantization, and novel model design under strict constraints.

Yesterday · 11:00 UTC

Learn how OpenAI built a secure sandbox for Codex on Windows, enabling safe, efficient coding agents with controlled file access and network restrictions.