9 updates from 6 sources:

SecurityWeek: Claude Code OAuth Tokens Can Be Stolen Through Stealthy MCP Hijacking
https://www.securityweek.com/claude-code-oauth-tokens-can-be-stolen-through-stealthy-mcp-hijacking/

🦠 Malwarebytes: Massive AI investment scam network spans 15,500 domains
https://www.malwarebytes.com/blog/news/2026/05/massive-ai-investment-scam-network-spans-15500-domains

Security News | TechCrunch: Police arrest SMS blaster crew that sent malicious messages to thousands across Toronto
https://techcrunch.com/2026/05/07/police-arrest-sms-blaster-crew-that-sent-malicious-messages-to-thousands-across-toronto/

SecurityWeek: Boost Security Raises $4 Million for SDLC Defense Platform
https://www.securityweek.com/boost-security-raises-4-million-for-sdlc-defense-platform/

The Record from Recorded Future News: North Carolina man pleads guilty to doxxing Supreme Court justices
https://therecord.media/north-carolina-man-pleads-guilty-to-doxxing

BleepingComputer: Ivanti warns of new EPMM flaw exploited in zero-day attacks
https://www.bleepingcomputer.com/news/security/ivanti-warns-of-new-epmm-flaw-exploited-in-zero-day-attacks/

SecurityWeek: Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking
https://www.securityweek.com/palo-alto-zero-day-exploited-in-campaign-bearing-hallmarks-of-chinese-state-hacking/

Security News | TechCrunch: How Anthropic’s Mythos has rewritten Firefox’s approach to cybersecurity
https://techcrunch.com/2026/05/07/how-anthropics-mythos-has-rewritten-firefoxs-approach-to-cybersecurity/

darkreading: Has CISA Finally Found Its New Leader in Tom Parker?
https://www.darkreading.com/cybersecurity-operations/cisa-new-leader-tom-parker

#InfoSec #SecurityNews