🔒 Security News Digest - 2026-05-14

Security News Digest - 2026-05-14

5 updates from 4 sources:

BleepingComputer: Cyber-Enabled Cargo Crime: How Cybercrime Tradecraft is Used to Steal Freight
https://www.bleepingcomputer.com/news/security/cyber-enabled-cargo-crime-how-cybercrime-tradecraft-is-used-to-steal-freight/

BleepingComputer: 18-year-old NGINX vulnerability allows DoS, potential RCE
https://www.bleepingcomputer.com/news/security/18-year-old-nginx-vulnerability-allows-dos-potential-rce/

The Hacker News: ThreatsDay Bulletin: PAN-OS RCE, Mythos cURL Bug, AI Tokenizer Attacks, and 10+ Stories
https://thehackernews.com/2026/05/threatsday-bulletin-pan-os-rce-mythos.html

Security News | TechCrunch: OpenAI says hackers stole some data after latest code security issue
https://techcrunch.com/2026/05/14/openai-says-hackers-stole-some-data-after-latest-code-security-issue/

darkreading: 'FrostyNeighbor' APT Carefully Targets Govt Orgs in Poland, Ukraine
https://www.darkreading.com/cyberattacks-data-breaches/frostyneighbor-apt-govt-orgs-poland-ukraine

#InfoSec #SecurityNews

Security News Digest - 2026-05-13

8 updates from 4 sources:

Security News | TechCrunch: This is what some the world’s largest banks of malware look like stacked as hard drives
https://techcrunch.com/2026/05/13/this-is-what-some-the-worlds-largest-banks-of-malware-look-like-stacked-as-hard-drives/

darkreading: Dark Reading Celebrates 20 Years as a Leading Authority on Cybersecurity, Highlighting the People, Events, Ideas, and Technologies Shaping the Modern Risk Landscape
https://www.darkreading.com/cybersecurity-operations/dark-reading-celebrates-20-years-as-a-leading-authority-on-cybersecurity-highlighting-the-people-events-ideas-and-technologies-shaping-the-modern-risk-landscape

The Record from Recorded Future News: Alleged Dream Market admin arrested in Germany after US indictment
https://therecord.media/dream-market-admin-arrested-in-germany

BleepingComputer: New critical Exim mailer flaw allows remote code execution
https://www.bleepingcomputer.com/news/security/new-critical-exim-mailer-flaw-allows-remote-code-execution/

darkreading: Tables Turn on 'The Gentlemen' RaaS Gang With Data Leak
https://www.darkreading.com/threat-intelligence/gentlemen-raas-gang-data-leak

darkreading: Attackers Weaponize RubyGems for Data Dead Drops
https://www.darkreading.com/application-security/attackers-weaponize-rubygems-data-dead-drops

darkreading: Checkbox Assessments Aren't Fit to Measure to Risk
https://www.darkreading.com/cyber-risk/checkbox-assessments-aren-t-fit-to-measure-to-risk

darkreading: Foxconn Attack Highlights Manufacturing's Cyber Crisis
https://www.darkreading.com/cyberattacks-data-breaches/foxconn-attack-manufacturing-cyber-crisis

#InfoSec #SecurityNews

Security News Digest - 2026-05-13

6 updates from 2 sources:

The Hacker News: Android Adds Intrusion Logging for Sophisticated Spyware Forensics
https://thehackernews.com/2026/05/android-adds-intrusion-logging-for.html

SecurityWeek: Hundreds of Malicious Packages Force RubyGems to Suspend Registrations
https://www.securityweek.com/hundreds-of-malicious-packages-force-rubygems-to-suspend-registrations/

The Hacker News: GemStuffer Abuses 150+ RubyGems to Exfiltrate Scraped U.K. Council Portal Data
https://thehackernews.com/2026/05/gemstuffer-abuses-150-rubygems-to.html

SecurityWeek: Chipmaker Patch Tuesday: Intel and AMD Patch 70 Vulnerabilities
https://www.securityweek.com/chipmaker-patch-tuesday-intel-and-amd-patch-70-vulnerabilities/

SecurityWeek: Fortinet, Ivanti Patch Critical Vulnerabilities
https://www.securityweek.com/fortinet-ivanti-patch-critical-vulnerabilities/

SecurityWeek: Microsoft Patches Critical Zero-Click Outlook Vulnerability Threatening Enterprises
https://www.securityweek.com/microsoft-patches-critical-zero-click-outlook-vulnerability-threatening-enterprises/

#InfoSec #SecurityNews

SecurityWeek

ICS Patch Tuesday: New Security Advisories From Siemens, Schneider, CISA

Many ICS vendors have not released new advisories for the May 2026 Patch Tuesday. The post ICS Patch Tuesday: New Security Advisories From Siemens, Schneider, CISA appeared first on SecurityWeek.

https://www.securityweek.com/ics-patch-tuesday-new-security-advisories-from-siemens-schneider-cisa/

Security News Digest - 2026-05-12

8 updates from 5 sources:

The Hacker News: OpenAI Launches Daybreak for AI-Powered Vulnerability Detection and Patch Validation
https://thehackernews.com/2026/05/openai-launches-daybreak-for-ai-powered.html

Have I Been Pwned latest breaches: Cushman & Wakefield - 310,431 breached accounts
https://haveibeenpwned.com/Breach/CushmanWakefield

The Hacker News: Instructure Reaches Ransom Agreement with ShinyHunters to Stop 3.65TB Canvas Leak
https://thehackernews.com/2026/05/instructure-reaches-ransom-agreement.html

🦠 Malwarebytes: Stolen Canvas data was “returned” after hacker agreement, Instructure says
https://www.malwarebytes.com/blog/news/2026/05/stolen-canvas-data-was-returned-after-hacker-agreement-instructure-says

The Hacker News: Mini Shai-Hulud Worm Compromises TanStack, Mistral AI, Guardrails AI & More Packages
https://thehackernews.com/2026/05/mini-shai-hulud-worm-compromises.html

🦠 Malwarebytes: 1 in 8 employees have sold company logins or know someone who has
https://www.malwarebytes.com/blog/news/2026/05/1-in-8-employees-have-sold-company-logins-or-know-someone-who-has

BleepingComputer: Instructure reaches 'agreement' with ShinyHunters to stop data leak
https://www.bleepingcomputer.com/news/security/instructure-reaches-agreement-with-shinyhunters-to-stop-data-leak/

SecurityWeek: TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack
https://www.securityweek.com/tanstack-mistral-ai-uipath-hit-in-fresh-supply-chain-attack/

#InfoSec #SecurityNews

The Hacker News

iOS 26.5 Brings Default End-to-End Encrypted RCS Messaging Between iPhone and Android

Apple on Monday officially released iOS 26.5 with support for end-to-end encryption (E2EE) to Rich Communication Services (RCS) in beta as part of a "cross-industry effort" to replace traditional SMS with a more secure alternative. To that end, E2EE RCS messaging is rolling out to iPhone users running iOS 26.5 with supported carriers and Android users on the latest version of Google Messages.

https://thehackernews.com/2026/05/ios-265-brings-default-end-to-end.html

iTnews - Security

Trend Micro's enterprise unit shuts Sydney engineering team

Exclusive: R&D moved to Asia.

https://www.itnews.com.au/news/trend-micros-enterprise-unit-shuts-sydney-engineering-team-625788?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed

SecurityWeek

Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks

CVE-2026-6973 is a high-severity vulnerability that allows an attacker who has admin privileges to execute arbitrary code. The post Ivanti Patches EPMM Zero-Day Exploited in Targeted Attacks appeared first on SecurityWeek.

https://www.securityweek.com/ivanti-patches-epmm-zero-day-exploited-in-targeted-attacks/

Security News Digest - 2026-05-07

9 updates from 6 sources:

SecurityWeek: Claude Code OAuth Tokens Can Be Stolen Through Stealthy MCP Hijacking
https://www.securityweek.com/claude-code-oauth-tokens-can-be-stolen-through-stealthy-mcp-hijacking/

🦠 Malwarebytes: Massive AI investment scam network spans 15,500 domains
https://www.malwarebytes.com/blog/news/2026/05/massive-ai-investment-scam-network-spans-15500-domains

Security News | TechCrunch: Police arrest SMS blaster crew that sent malicious messages to thousands across Toronto
https://techcrunch.com/2026/05/07/police-arrest-sms-blaster-crew-that-sent-malicious-messages-to-thousands-across-toronto/

SecurityWeek: Boost Security Raises $4 Million for SDLC Defense Platform
https://www.securityweek.com/boost-security-raises-4-million-for-sdlc-defense-platform/

The Record from Recorded Future News: North Carolina man pleads guilty to doxxing Supreme Court justices
https://therecord.media/north-carolina-man-pleads-guilty-to-doxxing

BleepingComputer: Ivanti warns of new EPMM flaw exploited in zero-day attacks
https://www.bleepingcomputer.com/news/security/ivanti-warns-of-new-epmm-flaw-exploited-in-zero-day-attacks/

SecurityWeek: Palo Alto Zero-Day Exploited in Campaign Bearing Hallmarks of Chinese State Hacking
https://www.securityweek.com/palo-alto-zero-day-exploited-in-campaign-bearing-hallmarks-of-chinese-state-hacking/

Security News | TechCrunch: How Anthropic’s Mythos has rewritten Firefox’s approach to cybersecurity
https://techcrunch.com/2026/05/07/how-anthropics-mythos-has-rewritten-firefoxs-approach-to-cybersecurity/

darkreading: Has CISA Finally Found Its New Leader in Tom Parker?
https://www.darkreading.com/cybersecurity-operations/cisa-new-leader-tom-parker

#InfoSec #SecurityNews

Security News Digest - 2026-05-06

5 updates from 4 sources:

SecurityWeek: Autonomous Offensive Security Firm XBOW Raises $35 Million
https://www.securityweek.com/autonomous-offensive-security-firm-xbow-raises-35-million/

🦠 Malwarebytes: Google Chrome’s silent 4GB AI download problem
https://www.malwarebytes.com/blog/news/2026/05/google-chromes-silent-4gb-ai-download-problem

BleepingComputer: DAEMON Tools devs confirm breach, release malware-free version
https://www.bleepingcomputer.com/news/security/daemon-tools-devs-confirm-breach-release-malware-free-version/

The Record from Recorded Future News: New CISA initiative aims for critical infrastructure to operate offline during cyberattacks
https://therecord.media/cisa-initiative-aims-for-critical-infrastructure-to-operate-during-cyberattacks

The Record from Recorded Future News: North Korean hackers targeted ethnic Koreans in China with Android ‘BirdCall’ malware
https://therecord.media/north-korean-hackers-target-ethnic-koreans-in-china

#InfoSec #SecurityNews

Security News Digest - 2026-05-05

26 updates from 7 sources:

BleepingComputer: Karakurt extortion gang ‘cold case’ negotiator gets 8.5 years in prison
https://www.bleepingcomputer.com/news/security/karakurt-extortion-gang-negotiator-sentenced-to-85-years-in-prison/

The Hacker News: We Scanned 1 Million Exposed AI Services. Here's How Bad the Security Actually Is
https://thehackernews.com/2026/05/we-scanned-1-million-exposed-ai.html

SecurityWeek: Karakurt Ransomware Negotiator Sentenced to Prison
https://www.securityweek.com/karakurt-ransomware-negotiator-sentenced-to-prison/

SecurityWeek: Critical, High-Severity Vulnerabilities Patched in Apache MINA, HTTP Server
https://www.securityweek.com/critical-high-severity-vulnerabilities-patched-in-apache-mina-http-server/

BleepingComputer: Google now offers up to $1.5 million for some Android exploits
https://www.bleepingcomputer.com/news/security/google-now-offers-up-to-15-million-for-some-android-exploits/

🦠 Malwarebytes: Update WhatsApp now: Two new flaws could expose you to malicious files
https://www.malwarebytes.com/blog/news/2026/05/update-whatsapp-now-two-new-flaws-could-expose-you-to-malicious-files

The Hacker News: MetInfo CMS CVE-2026-29014 Exploited for Remote Code Execution Attacks
https://thehackernews.com/2026/05/metinfo-cms-cve-2026-29014-exploited.html

darkreading: How the Story of a USB Penetration Test Went Viral
https://www.darkreading.com/cyberattacks-data-breaches/how-story-usb-penetration-test-went-viral

The Hacker News: The Back Door Attackers Know About — and Most Security Teams Still Haven’t Closed
https://thehackernews.com/2026/05/the-back-door-attackers-know-about-and.html

SecurityWeek: Critical Remote Code Execution Vulnerability Patched in Android
https://www.securityweek.com/critical-remote-code-execution-vulnerability-patched-in-android-2/

SecurityWeek: Critical Bug Could Expose 300,000 Ollama Deployments to Information Theft
https://www.securityweek.com/critical-bug-could-expose-300000-ollama-deployments-to-information-theft/

The Record from Recorded Future News: Australia launches cyber review board modeled on version disbanded in US
https://therecord.media/australia-launches-cyber-review-board

BleepingComputer: Vimeo data breach exposes personal information of 119,000 people
https://www.bleepingcomputer.com/news/security/vimeo-data-breach-exposes-personal-information-of-119-000-people/

SecurityWeek: Hacker Conversations: Joey Melo on Hacking AI
https://www.securityweek.com/hacker-conversations-joey-melo-on-hacking-ai/

Security News | TechCrunch: 4 days left: Get 50% off a second TechCrunch Disrupt 2026 pass to make more deals faster
https://techcrunch.com/2026/05/05/4-days-left-get-50-off-a-second-techcrunch-disrupt-2026-pass-to-make-more-deals-faster/

BleepingComputer: The EOL Blind Spot in Your CVE Feed: What SCA Tools Don't Check.
https://www.bleepingcomputer.com/news/security/the-eol-blind-spot-in-your-cve-feed-what-sca-tools-dont-check/

The Hacker News: China-Linked UAT-8302 Targets Governments Using Shared APT Malware Across Regions
https://thehackernews.com/2026/05/china-linked-uat-8302-targets.html

Security News | TechCrunch: Hackers steal students’ data during breach at education tech giant Instructure
https://techcrunch.com/2026/05/05/hackers-steal-students-data-during-breach-at-education-tech-giant-instructure/

BleepingComputer: FTC to ban data broker Kochava from selling Americans’ location data
https://www.bleepingcomputer.com/news/security/ftc-to-ban-data-broker-kochava-from-selling-americans-location-data/

SecurityWeek: Microsoft Warns of Sophisticated Phishing Campaign Targeting US Organizations
https://www.securityweek.com/microsoft-warns-of-sophisticated-phishing-campaign-targeting-us-organizations/

darkreading: Microsoft Edge Stores Passwords in Process Memory, Posing Enterprise Risk
https://www.darkreading.com/cyber-risk/microsoft-edge-passwords-enterprise-risk

Security News | TechCrunch: Kaspersky suspects Chinese hackers planted a backdoor into Daemon Tools in ‘widespread’ attack
https://techcrunch.com/2026/05/05/kaspersky-suspects-chinese-hackers-planted-a-backdoor-into-daemon-tools-in-widespread-attack/

The Hacker News: DAEMON Tools Supply Chain Attack Compromises Official Installers with Malware
https://thehackernews.com/2026/05/daemon-tools-supply-chain-attack.html

The Hacker News: Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCE
https://thehackernews.com/2026/05/critical-apache-http2-flaw-cve-2026.html

The Record from Recorded Future News: Conti, Akira ransomware affiliate given 8-year sentence
https://therecord.media/conti-akira-ransomware-affiliate-sentenced

BleepingComputer: Student hacked Taiwan high-speed rail to trigger emergency brakes
https://www.bleepingcomputer.com/news/security/student-hacked-taiwan-high-speed-rail-to-trigger-emergency-brakes/

#InfoSec #SecurityNews

SecurityWeek

US Military Reaches Deals With 7 Tech Companies to Use Their AI on Classified Systems

Google, Microsoft, Amazon Web Services, Nvidia, OpenAI, Reflection and SpaceX will provide resources to help augment warfighter decision-making in complex operational environments,” the Defense Department said. The post US Military Reaches Deals With 7 Tech Companies to Use Their AI on Classified Systems appeared first on SecurityWeek.

https://www.securityweek.com/us-military-reaches-deals-with-7-tech-companies-to-use-their-ai-on-classified-systems/

Security Boulevard

[un]prompted 2026 – The Parseltongue Protocol: Textual Obfuscation Methods

Author, Creator & Presenter: Joey Melo, AI Red Teaming Specialist At CrowdStrike Our thanks to [un]prompted for publishing their Creators, Authors and Presenter’s outstanding [un]prompted 2026 AI Security Practitioner content on the Organizations' YouTube Channel. Permalink The post [un]prompted 2026 – The Parseltongue Protocol: Textual Obfuscation Methods appeared first on Security Boulevard.

https://securityboulevard.com/2026/05/unprompted-2026-the-parseltongue-protocol-textual-obfuscation-methods/

Security Boulevard

Securing AI procurement and third-party models: a practical guide for UK SMEs

Securing AI procurement and third-party models: a practical guide for UK SMEs Third-party AI tools can be useful, but they also change the way your business handles data, makes decisions, and depends on suppliers. For many UK SMEs, the risk is not the model itself. It is the way the tool is bought, connected, configured, […] The post Securing AI procurement and third-party models: a practical guide for UK SMEs appeared first on Clear Path Security Ltd. The post Securing AI procurement and third-party models: a practical guide for UK SMEs appeared first on Security Boulevard.

https://securityboulevard.com/2026/05/securing-ai-procurement-and-third-party-models-a-practical-guide-for-uk-smes/

BleepingComputer

Telegram Mini Apps abused for crypto scams, Android malware delivery

Cybersecurity researchers have uncovered a large-scale fraud operation that uses Telegram's Mini App feature to run crypto scams, impersonate well-known brands, and distribute Android malware. [...]

https://www.bleepingcomputer.com/news/security/telegram-mini-apps-abused-for-crypto-scams-android-malware-delivery/

The Hacker News

Trellix Confirms Source Code Breach With Unauthorized Repository Access

Cybersecurity company Trellix has announced that it suffered a breach that enabled unauthorized access to a "portion" of its source code. It said it "recently identified" the compromise of its source code repository and that it began working with "leading forensic experts" to resolve the matter immediately. It also said it has notified law enforcement of the matter. Trellix did not disclose the

https://thehackernews.com/2026/05/trellix-confirms-source-code-breach.html

Have I Been Pwned latest breaches

ZenBusiness - 5,118,184 breached accounts

In March 2026, the hacker and extortion group "ShinyHunters" claimed to have obtained a substantial corpus of data from ZenBusiness, a business formation and compliance platform. The group claimed the data had been exfiltrated from platforms including Snowflake, Mixpanel and Salesforce, and threatened to publish it if a ransom was not paid. The following month, after claiming payment had not been made, ShinyHunters publicly released the data. The collection amounted to many terabytes across thousands of files that appeared to originate from multiple systems and business functions, including leads, support records and other CRM-related data. The data contained approximately 5M unique email addresses, often accompanied by name and phone number depending on the source file.

https://haveibeenpwned.com/Breach/ZenBusiness

Security Boulevard

RBI Cybersecurity Compliance Checklist for Fintech Organizations

The financial services ecosystem in India is undergoing rapid digital transformation, and fintech organizations sit at the center of this evolution. With increasing cyber threats targeting digital payments, lending platforms, and financial data, regulatory oversight has intensified. The Reserve Bank of India mandates a strong RBI cybersecurity framework that fintechs must follow to ensure resilience, […] The post RBI Cybersecurity Compliance Checklist for Fintech Organizations appeared first on Kratikal Blogs. The post RBI Cybersecurity Compliance Checklist for Fintech Organizations appeared first on Security Boulevard.

https://securityboulevard.com/2026/05/rbi-cybersecurity-compliance-checklist-for-fintech-organizations/

Security News Digest - 2026-04-29

25 updates from 9 sources:

BleepingComputer: CISA orders feds to patch Windows flaw exploited as zero-day
https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-windows-flaw-exploited-in-zero-day-attacks/

SecurityWeek: Iranian Cyber Group Handala Targets US Troops in Bahrain
https://www.securityweek.com/iranian-cyber-group-handala-targets-us-troops-in-bahrain/

🦠 Malwarebytes: Scam-checking just got a lot easier: Malwarebytes is now in Claude
https://www.malwarebytes.com/blog/product/2026/04/scam-checking-just-got-a-lot-easier-malwarebytes-is-now-in-claude

SecurityWeek: Checkmarx Confirms Data Stolen in Supply Chain Attack
https://www.securityweek.com/checkmarx-confirms-data-stolen-in-supply-chain-attack/

The Hacker News: What to Look for in an Exposure Management Platform (And What Most of Them Get Wrong)
https://thehackernews.com/2026/04/what-to-look-for-in-exposure-management.html

Security Boulevard: Oracle Control Evidence: What Auditors Really Want You to Prove
https://securityboulevard.com/2026/04/oracle-control-evidence-what-auditors-really-want-you-to-prove/

The Hacker News: Webinar: How to Automate Exposure Validation to Match the Speed of AI Attacks
https://thehackernews.com/2026/04/webinar-how-to-automate-exposure.html

SecurityWeek: Hundreds of Internet-Facing VNC Servers Expose ICS/OT
https://www.securityweek.com/hundreds-of-internet-facing-vnc-servers-expose-ics-ot/

Security Boulevard: Deploying SafePaaS in Oracle E‑Business Suite: A 90‑Day Blueprint to Continuous, Independent Control Monitoring
https://securityboulevard.com/2026/04/deploying-safepaas-in-oracle-e%e2%80%91business-suite-a-90%e2%80%91day-blueprint-to-continuous-independent-control-monitoring/

Security Boulevard: Deploying SafePaaS for Oracle ERP Cloud: A 90‑Day Blueprint to Strengthen Risk Management
https://securityboulevard.com/2026/04/deploying-safepaas-for-oracle-erp-cloud-a-90%e2%80%91day-blueprint-to-strengthen-risk-management/

Security Boulevard: AI-Powered Legacy System Transformation: Solving Technical Debt & Integration Challenges
https://securityboulevard.com/2026/04/ai-powered-legacy-system-transformation-solving-technical-debt-integration-challenges/

Security Boulevard: Hackernoon | Why Cloud Monitoring Has Become K–12’s Most Critical Cyber Defense Tool
https://securityboulevard.com/2026/04/hackernoon-why-cloud-monitoring-has-become-k-12s-most-critical-cyber-defense-tool/

Security Boulevard: Oracle Risk Management Cloud vs SafePaaS: What you should evaluate
https://securityboulevard.com/2026/04/oracle-risk-management-cloud-vs-safepaas-what-you-should-evaluate/

BleepingComputer: GitHub fixes RCE flaw that gave access to millions of private repos
https://www.bleepingcomputer.com/news/security/github-fixes-rce-flaw-that-gave-access-to-millions-of-private-repos/

darkreading: Lotus Wiper Attack Targets Venezuelan Energy Firms, Utilities
https://www.darkreading.com/cyber-risk/lotus-wiper-attack-targeted-venezuelan-energy-firms-utilities

Security Boulevard: Mastering agentic AI security through exposure management
https://securityboulevard.com/2026/04/mastering-agentic-ai-security-through-exposure-management/

Security Boulevard: Bluegrass, Banjos and Breaches: AI SOC Lessons for MSSPs
https://securityboulevard.com/2026/04/bluegrass-banjos-and-breaches-ai-soc-lessons-for-mssps/

Security Boulevard: Miggo Security Leverages AI to Apply Virtual Patches in Near Real Time
https://securityboulevard.com/2026/04/miggo-security-leverages-ai-to-apply-virtual-patches-in-near-real-time/

SecurityWeek: Fresh LiteLLM Vulnerability Exploited Shortly After Disclosure
https://www.securityweek.com/fresh-litellm-vulnerability-exploited-shortly-after-disclosure/

BleepingComputer: Learning from the Vercel breach: Shadow AI & OAuth sprawl
https://www.bleepingcomputer.com/news/security/learning-from-the-vercel-breach-shadow-ai-and-oauth-sprawl/

Security Boulevard: Sevii Adds Ability to Dynamically Deploy AI Agents to Combat Cyberattacks
https://securityboulevard.com/2026/04/sevii-adds-ability-to-dynamically-deploy-ai-agents-to-combat-cyberattacks/

Security News | TechCrunch: Sri Lanka discloses another missing payment, days after hackers stole $2.5M from its finance ministry
https://techcrunch.com/2026/04/29/sri-lanka-discloses-another-missing-payment-days-after-hackers-stole-2-5m-from-its-finance-ministry/

🦠 Malwarebytes: Microsoft won’t patch PhantomRPC: Feature or bug?
https://www.malwarebytes.com/blog/news/2026/04/microsoft-wont-patch-phantomrpc-feature-or-bug

Red Canary: How AI can streamline your security testing
https://redcanary.com/blog/testing-and-validation/ai-security-testing/

The Record from Recorded Future News: Swiss police arrest 10 suspected members of Nigeria-linked crime group Black Axe
https://therecord.media/black-axe-switzerland-germany-cyber

#InfoSec #SecurityNews

Security News Digest - 2026-04-28

20 updates from 5 sources:

The Hacker News: After Mythos: New Playbooks For a Zero-Window Era
https://thehackernews.com/2026/04/after-mythos-new-playbooks-for-zero.html

🦠 Malwarebytes: Fake CAPTCHA scam turns a quick click into a costly phone bill
https://www.malwarebytes.com/blog/news/2026/04/fake-captcha-scam-turns-a-quick-click-into-a-costly-phone-bill

Security Boulevard: Fake CAPTCHA scam turns a quick click into a costly phone bill
https://securityboulevard.com/2026/04/fake-captcha-scam-turns-a-quick-click-into-a-costly-phone-bill/

SecurityWeek: Germany Suspects Russia Is Behind Signal Phishing That Targeted Top Officials
https://www.securityweek.com/germany-suspects-russia-is-behind-signal-phishing-that-targeted-top-officials/

Security Boulevard: 6 Lessons Security Leaders Must Learn About AI and APIs
https://securityboulevard.com/2026/04/6-lessons-security-leaders-must-learn-about-ai-and-apis/

Security Boulevard: What Anthropic’s Mythos Means for the Future of Cybersecurity
https://securityboulevard.com/2026/04/what-anthropics-mythos-means-for-the-future-of-cybersecurity/

The Hacker News: Critical Unpatched Flaw Leaves Hugging Face LeRobot Open to Unauthenticated RCE
https://thehackernews.com/2026/04/critical-cve-2026-25874-leaves-hugging.html

SecurityWeek: No Patch for New PhantomRPC Privilege Escalation Technique in Windows
https://www.securityweek.com/no-patch-for-new-phantomrpc-privilege-escalation-technique-in-windows/

SecurityWeek: Electric Motorcycles and Scooters Face Hacking Risks to Security and Rider Safety
https://www.securityweek.com/electric-motorcycles-and-scooters-face-hacking-risks-to-security-and-rider-safety/

The Hacker News: Why Secure Data Movement Is the Zero Trust Bottleneck Nobody Talks About
https://thehackernews.com/2026/04/why-secure-data-movement-is-zero-trust.html

SecurityWeek: Sevii Launches Cyber Swarm Defense to Make Agentic AI Security Costs Predictable
https://www.securityweek.com/sevii-launches-cyber-swarm-defense-to-make-agentic-ai-security-costs-predictable/

Security Boulevard: Cyber Resilience as Capital Planning: Quantifying Risk
https://securityboulevard.com/2026/04/cyber-resilience-as-capital-planning-quantifying-risk/

Security Boulevard: Enterprise AI Adoption in 2026: Common Pitfalls, Risks, and Proven Strategies for Success
https://securityboulevard.com/2026/04/enterprise-ai-adoption-in-2026-common-pitfalls-risks-and-proven-strategies-for-success/

SecurityWeek: Dozens of Open VSX Extension Clones Linked to GlassWorm Malware
https://www.securityweek.com/dozens-of-open-vsx-extension-clones-linked-to-glassworm-malware/

BleepingComputer: Inside an OPSEC Playbook: How Threat Actors Evade Detection
https://www.bleepingcomputer.com/news/security/inside-an-opsec-playbook-how-threat-actors-evade-detection/

Security Boulevard: From Shadow AI to Full Control: FireTail’s Q1 2026 Updates – FireTail Blog
https://securityboulevard.com/2026/04/from-shadow-ai-to-full-control-firetails-q1-2026-updates-firetail-blog/

Security Boulevard: The Bot Left a Fingerprint: Detecting and Attributing LLM-Generated Passwords
https://securityboulevard.com/2026/04/the-bot-left-a-fingerprint-detecting-and-attributing-llm-generated-passwords/

Security Boulevard: LLM Proxies vs. MCP Gateways: What’s the Difference?
https://securityboulevard.com/2026/04/llm-proxies-vs-mcp-gateways-whats-the-difference/

BleepingComputer: Microsoft to deprecate legacy TLS in Exchange Online starting July
https://www.bleepingcomputer.com/news/microsoft/microsoft-to-deprecate-legacy-tls-in-exchange-online-starting-july/

SecurityWeek: Alleged Chinese State Hacker Extradited to US
https://www.securityweek.com/alleged-chinese-state-hacker-extradited-to-us/

#InfoSec #SecurityNews