B
Linux Security Trend: Dirty Frag, Copy Fail, Fragnesia
Linux kernel vulnerabilities Dirty Frag, Copy F...
Dirty Frag, Copy Fail, and Fragesia show the new reality
theregister (www.theregister.com)
www.theregister.com - Articles
F5 and Confluence Multi-Stage Linux Intrusion
Threat actors compromised an internet-f...
A multi-stage attack on Linux devices began with an exposed F5 BIG-IP edge appliance and pivoted to an internal Confluence server for credential theft and identity compromise. Learn how the threat actor attempted Kerberos relay and lateral movement, and how Microsoft Defender detected, blocked, and unraveled the attack.
Microsoft Security Blog (www.microsoft.com)
Microsoft Security Blog
Zombie User Account Compromises City's Water Utility
Hackers used a zombie user account to control the city's water supply.
Failing to disable a former employeeβs account was a huge mistake
theregister (www.theregister.com)
www.theregister.com - Articles
SentinelOne's Prompt for Agentic AI Security Challenges
SentinelOne helps organizations secure agentic AI, which lacks visibility and control.
Prompt for Agentic AI Security empowers organizations with proactive governance, meaning security teams can deploy agents with confidence.
SentinelOne (www.sentinelone.com)
Cybersecurity Blog | SentinelOne
οΈ Fox Tempest Malware-Signing Service Operation
Fox Tempest, a financially motivated threat actor, abused Microsoft Artif...
Fox Tempest is a financially motivated threat actor operating a malwareβsigningβasβaβservice (MSaaS) used by other cybercriminals, including Vanilla Tempest and Storm groups, to more effectively distribute malicious code, including ransomware.
Microsoft Security Blog (www.microsoft.com)
Microsoft Security Blog
AI-aided Hacking Earnings Disclosed Online
An individual claimed to have earned $8,000 using AI for hacking, but details are vague...
Bug Bounty
Active Directory Domain Controller Pentest Guide
A SOC Analyst seeks guidance on performing a penetration test on an Active Directory en...
cybersecurity
CVE-2026-34473: Unauthenticated Denial of Service in ZTE Routers
ZTE routers with 17+ models are affected, impacting 140K+ devic...
hacking: security in practice
DirtyDecrypt PoC Released for Linux Kernel CVE-2026-31635 LPE Vulnerability
DirtyDecrypt PoC exploit code released for Linux kernel CVE-2026-31635, affecting Linux...
DirtyDecrypt PoC targets CVE-2026-31635 in CONFIG_RXGK Linux systems, enabling local privilege escalation.
The Hacker News (thehackernews.com)
The Hacker News
Trapdoor Android Ad Fraud Scheme Exposed
455 Android apps and 183 domains used for ad fraud, affecting 659 million daily users.
Trapdoor used 455 Android apps and 183 C2 domains, generating 659M daily bid requests and fueling ad fraud.
The Hacker News (thehackernews.com)
The Hacker News
DirtyDecrypt PoC Released for Linux Kernel CVE-2026-31635 LPE Vulnerability
Proof-of-concept exploit code released for Linux kernel vulnerability.
DirtyDecrypt PoC targets CVE-2026-31635 in CONFIG_RXGK Linux systems, enabling local privilege escalation.
The Hacker News (thehackernews.com)
The Hacker News
MSHTA Utility Fuels Surge in Silent Malware Attacks
Attackers use MSHTA to deliver malware through phishing and fake downloads.
https://www.securityweek.com/legacy-windows-tool-mshta-fuels-surge-in-silent-malware-attacks/
SecurityWeek
Drupal Core Security Update Scheduled for May 20
Critical security issue detected.
https://thehackernews.com/2026/05/drupal-to-release-urgent-core-security.html
The Hacker News
Unpatched Linux Kernel Vulnerability Exposed 2 Billion Devices
Attackers exploit Linux kernel flaw to hijack 2 billion devices worldwide.
https://www.securityweek.com/legacy-windows-tool-mshta-fuels-surge-in-silent-malware-attacks/
SecurityWeek
