📰

Today's News Highlights

🔐 The Hacker News Critical

Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts

Today · 08:45 UTC

Threat actors are attempting to actively exploit a critical security flaw impacting WP Maps Pro, a WordPress plugin that has had over 15,000 sales on the Envato Market, to create m…

Read full article →
🔐 Infosecurity Magazine Critical

Attackers Abuse Shared Content for ChatGPT Phishing Campaign

Today · 09:30 UTC

Push Security says threat actors are delivering malware hosted on chatgpt.com/s/ domain

Read full article →
🏢 Kaspersky Securelist Critical

Containers on fire: from container escapes to supply chain attacks

Today · 10:00 UTC

We break down the primary attack vectors in containerized environments: exposed secrets, privilege misconfigurations, API compromise, and supply chain attacks.

Read full article →
🔐 The Hacker News High

OpenAI Codex Authentication Tokens Stolen in codexui-android npm Supply Chain Attack

Today · 09:31 UTC

Cybersecurity researchers have disclosed details of a new malicious supply chain campaign that's targeting developers using OpenAI Codex through a legitimate-looking remote web UI.…

Read full article →
🤖 ABC Technology (AU) High

Miley Cyrus emails and emoji texts amid Melbourne film festival data leak

Today · 08:38 UTC

Melbourne International Film Festival customers receive strange texts and emails after a data breach linked to the event's third-party ticketing system.

Read full article →
🤖 NVIDIA AI Blog Medium

Taiwan’s Industry Titans Turbocharge World’s AI Infrastructure Buildout With NVIDIA

Today · 05:00 UTC

Taiwan is home to more than 500 NVIDIA ecosystem partners. More than 1 million NVIDIA MGX rack components for NVIDIA Vera Rubin infrastructure come together in Taiwan, from across…

Read full article →

Top Stories by Impact

🏢 Rapid7 Blog Critical

Rapid7 Observed Exploitation of PAN-OS GlobalProtect Authentication Bypass Vulnerability (CVE-2026-0257)

29 May 2026 · 16:49 UTC

OverviewOn May 13, 2026, Palo Alto Networks published a security advisory for CVE-2026-0257, a medium severity authentication bypass affecting PAN-OS and Prisma Access when a speci…

Read full article →
🏢 Rapid7 Blog Critical

Metasploit Wrap Up 05/29/2026

29 May 2026 · 19:34 UTC

More Linux LPEsHark the age of the Linux LPE has arrived. This week’s release follows up on recent work bringing new Linux LPEs to Metasploit users. Copy Fail seemed to have kicked…

Read full article →
🔐 CISA Alerts Critical

CISA Adds One Known Exploited Vulnerability to Catalog

29 May 2026 · 12:00 UTC

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-0257 Palo Alto Networks PAN-OS Authent…

Read full article →
🔐 The Hacker News Critical

Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts

Today · 08:45 UTC

Threat actors are attempting to actively exploit a critical security flaw impacting WP Maps Pro, a WordPress plugin that has had over 15,000 sales on the Envato Market, to create m…

Read full article →
🔐 Infosecurity Magazine Critical

Attackers Abuse Shared Content for ChatGPT Phishing Campaign

Today · 09:30 UTC

Push Security says threat actors are delivering malware hosted on chatgpt.com/s/ domain

Read full article →
🏢 Kaspersky Securelist Critical

Containers on fire: from container escapes to supply chain attacks

Today · 10:00 UTC

We break down the primary attack vectors in containerized environments: exposed secrets, privilege misconfigurations, API compromise, and supply chain attacks.

Read full article →
🔐 The Hacker News High

OpenAI Codex Authentication Tokens Stolen in codexui-android npm Supply Chain Attack

Today · 09:31 UTC

Cybersecurity researchers have disclosed details of a new malicious supply chain campaign that's targeting developers using OpenAI Codex through a legitimate-looking remote web UI.…

Read full article →
🏢 Kaspersky Securelist High

What’s in the container? Analyzing vulnerabilities, risks and protection with Kaspersky Container Security and the KIRA AI assistant

29 May 2026 · 07:00 UTC

What are the main risks for container environments: vulnerabilities, supply chain attacks, configuration errors; how to improve container security and how Kaspersky Container Secur…

Read full article →
🔐

Cybersecurity

CISA Alerts

1

CISA Adds One Known Exploited Vulnerability to Catalog

Critical

29 May 2026 · 12:00 UTC

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-0257 Palo Alto Networks PAN-OS Authentication Bypass Vulnerability This type o…

Read full article →

The Hacker News

1

Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts

Critical

Today · 08:45 UTC

Threat actors are attempting to actively exploit a critical security flaw impacting WP Maps Pro, a WordPress plugin that has had over 15,000 sales on the Envato Market, to create malicious administrator accounts on susce…

Read full article →
2

OpenAI Codex Authentication Tokens Stolen in codexui-android npm Supply Chain Attack

High

Today · 09:31 UTC

Cybersecurity researchers have disclosed details of a new malicious supply chain campaign that's targeting developers using OpenAI Codex through a legitimate-looking remote web UI. The tool, named codexui-android, is adv…

Read full article →
3

The Security Growth Platform: Why MSPs Are Moving Beyond vCISO Tools

Today · 11:30 UTC

Three years ago, the practical question for an MSP building a cybersecurity practice was which "vCISO platform" to buy. The term was good shorthand for the work at the time: assessments, advisory, reporting, maybe a comp…

Read full article →

Infosecurity Magazine

1

Attackers Abuse Shared Content for ChatGPT Phishing Campaign

Critical

Today · 09:30 UTC

Push Security says threat actors are delivering malware hosted on chatgpt.com/s/ domain

Read full article →
2

Infosecurity Europe: AI SOCs Will Still Need SOC Analysts, Security Vendors Say

Today · 11:45 UTC

Top cybersecurity vendors said AI won't replace entry-level – only routine ticket-taking and triage

Read full article →
3

FSB Group Gamaredon Hides Worm in Windows Data Streams

Today · 11:00 UTC

FSB-linked Gamaredon concealed a fileless worm in NTFS data streams to spy on Ukraine targets

Read full article →

CyberScoop

1

Federal audit reveals NIST’s NVD is plagued by poor planning and duplication

High

29 May 2026 · 16:07 UTC

A report from the Commerce Inspector General details how mismanagement allowed a backlog of 27,000 unprocessed security flaws to grow unchecked, while the agency duplicated work with a similar CISA program. The post Fede…

Read full article →
2

Election threats are focused on campaign systems, not voting machines

Today · 10:00 UTC

Check Point said actors are shifting toward campaign systems and AI-generated content, outpacing the public's ability to understand and respond to the risks. The post Election threats are focused on campaign systems, not…

Read full article →
3

Tennessee man linked to 764 accused of series of crimes against children dating back to 2022

29 May 2026 · 18:17 UTC

Zachary Sweeney allegedly traveled to New York, Indiana, Missouri and Georgia to meet and harm numerous victims in person. The FBI began investigating him in 2023. The post Tennessee man linked to 764 accused of series o…

Read full article →

Cloudflare Blog

1

Project Glasswing: what Mythos showed us

High

18 May 2026

Cloudflare shares findings from testing Mythos and other security-focused LLMs against live code across critical infrastructure, including model strengths, weaknesses, and what is needed before this work can scale.

Read full article →

Dark Reading

1

As Global Powers Explore Humanoid Robots, Cyber-Risk Looms

High

29 May 2026 · 15:56 UTC

The future of cybersecurity is germinating, as nation-states vie for dominance in the embodied AI market and its supply chain.

Read full article →
2

Name That Toon: Mark of (Cybersecurity) Progress

29 May 2026 · 20:22 UTC

As part of Dark Reading's 20th anniversary package, we asked readers for a cybersecurity-related caption that captures their thoughts about the industry's last two decades.

Read full article →
3

Asia's Cyber Insurance Market Shows Signs of Life

29 May 2026 · 14:35 UTC

The cyber insurance industry has made relatively weak inroads into Asia due to a variety of factors, but that could be changing.

Read full article →

BleepingComputer

1

Microsoft fixes KB5089549 Windows security update install issues

Medium

Today · 10:59 UTC

Microsoft has resolved a known issue causing installation failures and 0x800f0922 errors when deploying the May 2026 Windows 11 security update (KB5089549). [...]

Read full article →
2

Webinar tomorrow: From alert to resolution in network incident response

Today · 12:01 UTC

Network incidents are often detected quickly, but investigations and coordination can delay resolution. Join our webinar tomorrow to learn how automation and AI-assisted workflows can help IT teams accelerate incident re…

Read full article →
3

Microsoft confirms outage affecting MFA, My Sign-Ins platform

Today · 11:40 UTC

Microsoft is working to address an ongoing incident preventing customers from setting up multi-factor authentication (MFA) or accessing the My Sign-Ins platform. [...]

Read full article →

SANS Internet Storm Center

1

YARA-X 1.17.0 Release, (Sun, May 31st)

Yesterday · 16:01 UTC

YARA-X&#;x26;#;39;s 1.17.0 release brings 5 improvements (several performance improvements) and 1 bugfix.

Read full article →
2

ISC Stormcast For Monday, June 1st, 2026 https://isc.sans.edu/podcastdetail/9952, (Mon, Jun 1st)

Today · 02:00 UTC

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Read full article →
3

Unidentified RAT pushes NetSupport RAT, (Mon, Jun 1st)

Today · 00:02 UTC

Introduction

Read full article →

Cybercrime Magazine

1

Chris Lamprecht: The First Person In History To Be Legally Banned From The Internet

29 May 2026 · 12:40 UTC

This week in cybersecurity from the editors at Cybercrime Magazine Sausalito, Calif. – May. 28, 2026 – Listen to the podcast A 1997 WIRED story reported on Chris Lamprecht, the first person to be legally banned from usin…

Read full article →

Schneier on Security

1

Friday Squid Blogging: Another Squid

29 May 2026 · 21:05 UTC

Someone named “Squid” seems to be a “West Country legend.” As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Blog moderation policy.

Read full article →
2

Chilling Effects

29 May 2026 · 11:02 UTC

Younger Americans have soured on the second Donald Trump presidency, but they are not protesting it. Despite an unpopular Iran war and an even more unpopular Trump administration, college campus protests nationwide have…

Read full article →

Ars Technica

1

An OpenAI model solved a famous math problem that stumped humans for 80 years

Today · 11:00 UTC

I tried to explain OpenAI’s solution more clearly than OpenAI did.

Read full article →
2

On its 40th anniversary, we reassess 1986's SpaceCamp

Yesterday · 11:15 UTC

Is it a hidden gem, a cult classic, or hopelessly dumb? We vote "all of the above."

Read full article →
3

They call it stupid hot for a reason: Heat muddles animal brains

Yesterday · 10:00 UTC

As temperatures rise, some creatures pick fights while others struggle to learn.

Read full article →
🤖

AI & Technology

ABC Technology (AU)

1

Miley Cyrus emails and emoji texts amid Melbourne film festival data leak

High

Today · 08:38 UTC

Melbourne International Film Festival customers receive strange texts and emails after a data breach linked to the event's third-party ticketing system.

Read full article →
2

Councillor called a narcissist, accused of bullying council CEO in court

Today · 08:19 UTC

A Snowy Monaro councillor has accused the industrial relations commission of sanitising his statements in a case over bullying of his council's CEO.

Read full article →
3

Euphoria season 3 finale recap: Guns, drugs and Rue's fate

Today · 06:10 UTC

Here's your recap of season 3, episode 8 of Euphoria. There are spoilers. You have been warned.

Read full article →

Wired AI

1

How Turkey Hacked the Hair Transplant Industry

Medium

Yesterday · 09:00 UTC

From specialized motors to the use of machine learning algorithms, Turkey’s billion-dollar hair-transplant industry is the result of a constant process of innovation.

Read full article →
2

Norse Atlantic Airways Offers Dirt-Cheap Tickets. There’s a Catch

Today · 11:00 UTC

Dozens of people have complained to the Federal Trade Commission about Norse Atlantic Airways’ tech-first customer service operation. Some said they lost thousands of dollars.

Read full article →
3

Do You Actually Need to Pay for Transcription Software?

30 May 2026 · 09:30 UTC

I tested Wispr Flow and various AI-powered transcription software to see whether you should bother subscribing or stick with free services.

Read full article →

NVIDIA AI Blog

1

Taiwan’s Industry Titans Turbocharge World’s AI Infrastructure Buildout With NVIDIA

Medium

Today · 05:00 UTC

Taiwan is home to more than 500 NVIDIA ecosystem partners. More than 1 million NVIDIA MGX rack components for NVIDIA Vera Rubin infrastructure come together in Taiwan, from across 25 factory sites. As Vera Rubin ramps in…

Read full article →
2

NVIDIA Factory Operations Blueprint Gives Factories a New AI Brain

Today · 05:00 UTC

As factories move from isolated automation to plant-wide intelligence, manufacturers need AI systems that can connect live machine signals, quality systems, work instructions and operational alerts into a unified decisio…

Read full article →
3

NVIDIA AI Cloud Ecosystem Expands Worldwide to Meet Global AI Compute Demand

Today · 05:00 UTC

The NVIDIA AI Cloud ecosystem is accelerating the global buildout of AI factory infrastructure. Partners are expanding capacity to meet growing demand from enterprises, startups, nations, AI labs and developers scaling a…

Read full article →

ITNews Australia

1

Why resilient communications are becoming critical infrastructure for modern enterprise IT

Medium

Today · 06:45 UTC

As communications become critical infrastructure, organisations must rethink how they secure and manage these assets to ensure resilience against growing cyber and physical threats.

Read full article →
2

You meet the security standard. Shame no one can see it

Today · 04:40 UTC

Australia’s new smart device security label will turn cybersecurity into a clear competitive edge.

Read full article →
3

Team Global Express has the logistics for AI use in place

Yesterday · 20:41 UTC

Brings first 12 "AI agents" into production.

Read full article →

The Guardian Technology

1

Nvidia launches ‘superchip’ putting AI power into laptops and PCs

Medium

Today · 11:01 UTC

Firm says its RTX Spark PC chip for Microsoft Windows will let AI agents replace the mouse and keyboardBusiness live – latest updatesA new front has opened up in the battle for dominance in AI chips, as Nvidia said its l…

Read full article →
2

Charities decry UK plan to use AI to assess age of young asylum seekers

Today · 05:00 UTC

Coalition of more than 100 organisations says move could lead to more children ending up in adult detention facilitiesA coalition of more than a hundred refugee children’s organisations has said controversial plans to us…

Read full article →
3

Meta legal action forces Facebook whistleblower to sit in silence at Hay festival

Yesterday · 17:18 UTC

Sarah Wynn-Williams did not speak during event after lawyers warned of possible sanctions from tech firmFacebook whistleblower Sarah Wynn-Williams was forced to sit in silence on stage at an event at Hay festival, after…

Read full article →

TechCrunch AI

1

SoftBank says it will invest up to €75 billion to build French data centers

30 May 2026 · 21:45 UTC

The goal, the firm said, is to develop and operate up to 5 gigawatts of additional data center capacity.

Read full article →
2

Erin Brockovich takes aim at data center secrecy

Yesterday · 21:05 UTC

Environmental activist Erin Brockovich has a new mission.

Read full article →
3

Making sense of the debate over AI psychosis

Yesterday · 15:30 UTC

On the latest episode of Equity, we debate whether tech CEOs are "uniquely prone to AI psychosis."

Read full article →

Ars Technica AI

1

An OpenAI model solved a famous math problem that stumped humans for 80 years

Today · 11:00 UTC

I tried to explain OpenAI’s solution more clearly than OpenAI did.

Read full article →
2

Startup offers free home cleaning—if it can record it all for robot training

29 May 2026 · 16:16 UTC

The latest twist in paying humans to wear head cameras for robot training data.

Read full article →

MIT Technology Review AI

1

How the Pope’s Magnifica Humanitas offers a template for individuals to meet the AI moment

29 May 2026 · 10:00 UTC

Pope Leo XIV’s new encyclical on artificial intelligence includes a statement that warrants serious attention from technologists and policymakers: “Technology is never neutral.” Magnifica Humanitas (“Magnificent Humanity…

Read full article →

The Verge

1

These are the first Nvidia RTX Spark laptops

Today · 11:29 UTC

Nvidia has officially entered the world of consumer laptop chips with the RTX Spark, and several device makers already have hardware lined up for it. Microsoft, Asus, HP, MSI, Lenovo, and Dell are expected to launch RTX…

Read full article →
2

Asus just announced the OLED Xbox Ally X of my dreams

Today · 10:00 UTC

If you asked me what I'd change about the Xbox Ally X handheld - aside from fixing Windows, I mean - I'd tell you two key things. First, give me a bigger, better screen. Even a little bit bigger, so games feel less claus…

Read full article →
3

This is the Microsoft Surface Laptop Ultra with Nvidia RTX Spark

Today · 04:36 UTC

Once upon a time, Microsoft had to write off $900 million betting an Arm-based Nvidia chip could power its first flagship Windows portable, the original Microsoft Surface. But today, it's trying again. Microsoft and Nvid…

Read full article →
🏢

Vendor Security

Rapid7 Blog

1

Rapid7 Observed Exploitation of PAN-OS GlobalProtect Authentication Bypass Vulnerability (CVE-2026-0257)

Critical

29 May 2026 · 16:49 UTC

OverviewOn May 13, 2026, Palo Alto Networks published a security advisory for CVE-2026-0257, a medium severity authentication bypass affecting PAN-OS and Prisma Access when a specific configuration is present. Successful…

Read full article →
2

Metasploit Wrap Up 05/29/2026

Critical

29 May 2026 · 19:34 UTC

More Linux LPEsHark the age of the Linux LPE has arrived. This week’s release follows up on recent work bringing new Linux LPEs to Metasploit users. Copy Fail seemed to have kicked off a trend of similar bugs and hot on…

Read full article →
3

Rapid7 and Exclusive Networks Expand Partnership Across the Nordics

Today · 08:00 UTC

Building stronger cybersecurity outcomes togetherThe cybersecurity landscape across the Nordics is evolving rapidly. Organizations are facing increasing pressure to modernize security operations, reduce complexity, and r…

Read full article →

Kaspersky Securelist

1

Containers on fire: from container escapes to supply chain attacks

Critical

Today · 10:00 UTC

We break down the primary attack vectors in containerized environments: exposed secrets, privilege misconfigurations, API compromise, and supply chain attacks.

Read full article →
2

What’s in the container? Analyzing vulnerabilities, risks and protection with Kaspersky Container Security and the KIRA AI assistant

High

29 May 2026 · 07:00 UTC

What are the main risks for container environments: vulnerabilities, supply chain attacks, configuration errors; how to improve container security and how Kaspersky Container Security with the KIRA AI assistant can help.

Read full article →

Microsoft Security

1

Typosquatted npm packages used to steal cloud and CI/CD secrets

High

29 May 2026 · 03:04 UTC

The Mini Shai-Hulud campaign used malicious npm packages to target cloud and CI/CD credentials across developer environments. This report details the attack chain, detection opportunities, and mitigation guidance to help…

Read full article →
2

Malicious npm packages abuse dependency confusion to profile developer environments

Medium

30 May 2026 · 00:06 UTC

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and detection opportuni…

Read full article →
3

Microsoft is named a Leader in the 2026 Gartner® Magic Quadrant™ for Endpoint Protection

29 May 2026 · 16:00 UTC

Microsoft is named a Leader in the 2026 Gartner® Magic Quadrant™ for Endpoint Protection. The post Microsoft is named a Leader in the 2026 Gartner® Magic Quadrant™ for Endpoint Protection appeared first on Microsoft Secu…

Read full article →

StepSecurity

1

Multiple redhat-cloud-services npm Packages compromised

Medium

Today · 12:31 UTC

Eight packages in the @redhat-cloud-services npm scope were found to carry malicious payloads that fire via a preinstall hook on every npm install. The affected versions span multiple packages across the RedHat Cloud Ser…

Read full article →

CrowdStrike Blog

1

CrowdStrike Brings Enterprise-Grade Security to the AI Factory with NVIDIA Vera BlueField-4 STX

Today · 05:00 UTC

Read full article →
2

CrowdStrike Scales AI-Native Agents Across Falcon Exposure Management with NVIDIA

Today · 05:00 UTC

Read full article →
3

CrowdStrike Named a Leader in 2026 Gartner® Magic Quadrant™ for Endpoint Protection for Seventh Consecutive Time

29 May 2026 · 05:00 UTC

Read full article →

OpenAI News

1

Strengthening societal resilience with Rosalind Biodefense

29 May 2026 · 03:00 UTC

OpenAI launches Rosalind Biodefense, expanding trusted access to GPT-Rosalind for vetted developers and U.S. government partners advancing biodefense, public health, and pandemic preparedness through frontier AI.

Read full article →
2

Boston Children’s uses AI to unlock new diagnoses

29 May 2026 · 12:00 UTC

Boston Children’s Hospital uses OpenAI technology to improve patient care, reduce operational burden, and help diagnose more than 40 rare disease cases.

Read full article →
3

How Braintrust turns customer requests into code with Codex

29 May 2026 · 12:00 UTC

How Braintrust engineers use Codex with GPT-5.5 to run experiments and code faster.

Read full article →