Collecting Cyber-News from over 60 sources

Currently 118,488 News in Database

.de-Domains nicht erreichbar Update 2 Probleme bei der DENIC legen deutsche Internetseiten lahm

May 6, 2026 1:49 AM

Tags: data, dns, Internet, update

Höchstwahrscheinlich Probleme bei der DENIC legen zur Stunde deutsche Internet-Domains (.de) lahm. Nur DNS-Auflösungen im Cache helfen. First seen on computerbase.de Jump to article: www.computerbase.de/news/internet/de-domains-nicht-erreichbar-probleme-bei-der-denic-legen-deutsche-internetseiten-lahm.97210 also interesting: TDL003 – Breaking Barriers: IPv6 Adoption and DNS Transformation with Tommy Jensen Purdue 2.0? : Rising to the Challenge to secure OT with Zero Trust Connectivity Lack of…
Berliner KI-Forschung: BIFOLD Day 2026 im neuen Zuhause

May 6, 2026 1:49 AM

Tags: ai

First seen on datensicherheit.de Jump to article: www.datensicherheit.de/berlin-ki-forschung-bifold-day-2026-neuer-standort also interesting: Enhance customer experiences with Generative AI 2026 nichts für schwache CI(S)O-Nerven Fake AI Chrome extensions with 300K users steal credentials, emails Mozilla: Anthropic’s Mythos found 271 security vulnerabilities in Firefox 150
DSGVO-Verstoß der BVG: Berliner Datenschutzbeauftragte verwarnt Berliner Verkehrsbetriebe

May 6, 2026 1:49 AM

Tags: DSGVO

First seen on datensicherheit.de Jump to article: www.datensicherheit.de/dsgvo-verstoss-bvg-blnbdi-verwarnung-berlin-verkehrsbetriebe also interesting: Cyberangriff auf Christie’s: Hacker drohen Auktionshaus mit DSGVO-Strafe Warum DSGVO-konforme E-Mail-Lösungen alternativlos sind Digitale Souveränität sichern – Reform statt Aufweichung: DSGVO praxistauglich machen Pimeyes: Klage gegen Hamburger Datenschutzbehörde
Phishing im Namen des Finanzamts: Wie du die gefälschten E-Mails erkennst

May 6, 2026 12:44 AM

Tags: mail, phishing

First seen on t3n.de Jump to article: t3n.de/news/phishing-im-namen-des-finanzamts-wie-du-die-gefaelschten-e-mails-erkennst-1740858/ also interesting: Phishing und Spoofing: BSI gibt Hinweise zur EAuthentifizierung KI-gestütztes Phishing-Kit ermöglicht Fake-Sprachanrufe bei Bank-Kunden Cyberkriminelle missbrauchen Microsoft-Teams als Einfallstor mit E-Mail-Bombing und Voice-Phishing Vorsicht EinkommensteuerrückerstattungsMails
Windows 11 zeigt vermehrt Malware-Warnungen: Was hinter der Cerdigent-Meldung steckt

May 6, 2026 12:44 AM

Tags: malware, windows

First seen on t3n.de Jump to article: t3n.de/news/windows-11-malware-warnung-cerdigent-1740888/ also interesting: PEAKLIGHT Downloader Deployed in Attacks Targeting Windows with Malicious Movie Downloads New PEAKLIGHT Dropper Deployed in Attacks Targeting Windows with Malicious Movie Downloads Russia targets Ukrainian conscripts with Windows, Android malware Lazarus Group Targets Job Seekers With ClickFix Tactic to Deploy GolangGhost Malware
New stealthy Quasar Linux malware targets software developers

May 6, 2026 12:44 AM

Tags: backdoor, credentials, linux, malware, software

A previously undocumented Linux implant named Quasar Linux (QLNX) is targeting developers’ systems with a mix of rootkit, backdoor, and credential-stealing capabilities. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-stealthy-quasar-linux-malware-targets-software-developers/ also interesting: The 2024 cyberwar playbook: Tricks used by nation-state actors Getting the Most Value Out of the OSCP: The PEN-200 Course The most notorious…
Kochava Will Stop Selling ‘Sensitive Location’ Info

May 6, 2026 12:44 AM

Tags: data, finance, mobile

Litigation Initiated by the US FTC Leads to Settlement Restricting Data Broker. The Federal Trade Commission has banned an Idaho-based data broker from selling sensitive location data gathered from hundreds of millions of individuals’ mobile devices without their knowledge or consent. The proposed order ends several years of legal sparring between Kochava and the FTC.…
BlueVoyant Prepares SaaS Push Under New CEO John Hernandez

May 6, 2026 12:44 AM

Tags: ai, business, ceo, detection, microsoft, risk, saas, service, supply-chain

BlueVoyant Seeks to Expand Beyond MDR Clients Into Firms With Mature In-House SOCs. BlueVoyant named John Hernandez – the former leader of Quest’s Microsoft security business – as its next CEO to drive an agentic AI SaaS platform that expands the vendor beyond managed services and helps customers accelerate detection, response and supply-chain risk management.…
CISA wants critical infrastructure to operate ‘weeks to months’ in isolation during conflict

May 6, 2026 12:44 AM

Tags: cisa, infrastructure, network

The agency will begin targeted assessments meant to help critical infrastructure entities operate while disconnecting OT networks from IT and third-party vendors. First seen on cyberscoop.com Jump to article: cyberscoop.com/cisa-ci-fortify-critical-infrastructure-isolation-recovery-guidance-during-conflict/ also interesting: CISA Flags Two Actively Exploited Palo Alto Flaws; New RCE Attack Confirmed U.S. CISA adds Palo Alto Networks Expedition bugs to its Known Exploited…
Trellix Source Code Breach Highlights Growing Supply Chain Threats

May 5, 2026 11:47 PM

Tags: breach, control, detection, supply-chain, threat

Info is scant, but such breaches can reveal where a security product’s controls are located and how detections are designed, giving attackers a leg up. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/trellix-source-code-breach-supply-chain-threats also interesting: Cybersecurity Snapshot: Study Raises Open Source Security Red Flags, as Cyber Agencies Offer Prevention Tips Against Telecom Spying Attacks Cybersecurity…
Vimeo confirms breach via third-party vendor impacts 119K users

May 5, 2026 11:47 PM

Tags: breach, data, data-breach, hacker

Hackers stole data of 119,000 Vimeo users in April. The breach, linked to a third”‘party vendor, exposed personal details. Vimeo confirmed a data breach after the ShinyHunters gang stole personal information of 119,000 users in April 2026. According to Have I Been Pwned, the attackers accessed user data through a compromise at Anodot, a third”‘party…
Meta’s AI will scan height and bone structure to detect under-13 users

May 5, 2026 11:47 PM

Tags: ai

Meta is deploying AI that scans photos and videos for physical cues to assess whether a user is under 13 on Instagram and Facebook. Teen Account on Instagram (Source: Meta) … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/05/05/meta-ai-age-detection-instagram-facebook/ also interesting: Hg Purchases A-Lign to Accelerate Cyber Compliance Growth Identity-first Security for AI Agents Auf…
‘They protect the law while breaking it’: Inside Europol’s shadow IT system

May 5, 2026 11:47 PM

Tags: crime, data, law

Under pressure to deliver in the fight against serious cross-border crime, Europol built and operated a shadow data analysis platform containing large volumes of sensitive information, which operated without key legal and technical safeguards First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366642525/They-protect-the-law-while-breaking-it-Inside-Europols-shadow-IT-system also interesting: Threat-informed defense for operational technology: Moving from information to action Oracle…
Edge browser leaves passwords exposed in plain text, says researcher

May 5, 2026 11:47 PM

Tags: data-breach, password

This article originally appeared on Computerworld. First seen on csoonline.com Jump to article: www.csoonline.com/article/4167437/edge-browser-leaves-passwords-exposed-in-plain-text-says-researcher-2.html also interesting: Microsoft employees exposed internal passwords in security lapse Plane tracker FlightAware admits user passwords, SSNs exposed for years Congressional Staffers’ Data Leaked on Dark Web: Report Frequently Asked Questions About Iranian Cyber Operations
Researchers report Amazon SES abused in phishing to evade detection

May 5, 2026 11:47 PM

Tags: cybersecurity, detection, email, kaspersky, phishing, service

Cybersecurity firm Kaspersky reports that the Amazon Simple Email Service (SES) is being increasingly abused to send convincing phishing emails that can bypass standard security filters and render reputation-based blocks ineffective. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/researchers-report-amazon-ses-abused-in-phishing-to-evade-detection/ also interesting: 8 biggest cybersecurity threats manufacturers face Ransomware attacks: The evolving extortion threat to US financial…
DAEMON Tools trojanized in supply-chain attack to deploy backdoor

May 5, 2026 11:47 PM

Tags: attack, backdoor, hacker, software, supply-chain, tool

Hackers trojanized installers for the DAEMON Tools software and since April 8, delivered a backdoor to thousands of systems that downloaded the product from the official website. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/daemon-tools-trojanized-in-supply-chain-attack-to-deploy-backdoor/ also interesting: Top 7 zero-day exploitation trends of 2024 The 2024 cyberwar playbook: Tricks used by nation-state actors The 2024…
Instructure hacker claims data theft from 8,800 schools, universities

May 5, 2026 11:47 PM

Tags: breach, data, hacker, technology, theft

The hacker behind a breach at education technology giant Instructure claims to have stolen 280 million data records for students and staff from 8,809 colleges, school districts, and online education platforms. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/instructure-hacker-claims-data-theft-from-8-800-schools-universities/ also interesting: US may plan legislation to contain Chinese cyber espionage Cybersecurity Snapshot: Top Advice for Detecting…
Google Update: Android Flaw Could Put Billions of Devices at Risk

May 5, 2026 11:47 PM

Tags: android, flaw, google, mobile, rce, remote-code-execution, risk, update

Google patched an Android zero-click RCE flaw affecting multiple versions. Here’s what IT teams should know and how to reduce mobile risk. The post Google Update: Android Flaw Could Put Billions of Devices at Risk appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-google-android-zero-click-rce-patch/ also interesting: Google Update: Android Flaw Could Put…
Google AppSheet Abuse Helped Phish 30,000 Facebook Accounts

May 5, 2026 11:47 PM

Tags: business, email, google, hacker, phishing

Hackers abused Google AppSheet to send Meta phishing emails, compromising 30,000 Facebook business accounts across 50 countries. The post Google AppSheet Abuse Helped Phish 30,000 Facebook Accounts appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-google-appsheet-facebook-phishing-accountdumpling/ also interesting: Privacy Roundup: Week 1 of Year 2025 Privacy Roundup: Week 1 of Year 2025…
New WhatsApp Flaws Could Affect Billions of Users After Meta Security Patch

May 5, 2026 11:47 PM

Tags: android, flaw, update, windows

Meta patched two WhatsApp flaws affecting iOS, Android, and Windows users, including bugs tied to risky files, links, and Reels previews. The post New WhatsApp Flaws Could Affect Billions of Users After Meta Security Patch appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-whatsapp-users-update-meta-security-flaws/ also interesting: Privacy Roundup: Week 11 of Year…
Proof of Concept: Anatomy of a Breach – Cyber Readiness

May 5, 2026 11:47 PM

Tags: attack, breach, cyber, governance, identity

Security Leaders From Equifax, Rapid7 on Identity Security and Visibility Failures. In part one of the Anatomy of a Breach series, Equifax’s Jeremy Koppen and Rapid7’s Christiaan Beek examine why familiar security gaps still lead to breaches. Experts discuss ways to improve readiness in the face of identity-driven attacks, visibility failures and governance weaknesses. First…
CISA ‘CI Fortify’ Aims to Keep Services Running Under Attack

May 5, 2026 11:47 PM

Tags: attack, cisa, cyberattack, cybersecurity, infrastructure, service

Critical Infrastructure Operators Urged to Fortify Against Nation-State Attacks. The Cybersecurity and Infrastructure Security Agency launched CI Fortify, urging critical infrastructure operators to adopt isolation and rapid recovery capabilities to maintain essential services under cyberattacks, amid warnings that nation-state actors are already embedded in operational systems. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/cisa-ci-fortify-aims-to-keep-services-running-under-attack-a-31602 also…
Skills Gap Top CISO Concern, Says New SANS Survey

May 5, 2026 11:47 PM

Tags: ciso, cybersecurity, sans, skills

Security Leaders Face Gaps, Not in Their Org Charts, But in Their Team’s Skills. Concerns about the skills and capabilities of cybersecurity teams have for the first time overtaken worries about headcount and unfilled vacancies among CISOs, according to a new SANS survey. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/skills-gap-top-ciso-concern-says-new-sans-survey-a-31603 also interesting: AI is…
U.S. court sentences Karakurt ransomware negotiator to 8.5 years

May 5, 2026 11:47 PM

Tags: fraud, ransomware

Deniss Zolotarjovs was sentenced to 8.5 years in the U.S. after pleading guilty to money laundering and fraud tied to ransomware. Deniss Zolotarjovs, a Latvian national linked to the Karakurt ransomware gang, has been sentenced to 8.5 years in U.S. prison, marking a significant step in efforts to combat global ransomware operations. >>A Latvian national…
CISA boasts AI automation improvements to threat analysis, mission support

May 5, 2026 11:47 PM

Tags: ai, automation, cisa, cybersecurity, infrastructure, threat

Cybersecurity and Infrastructure Security Agency officials said it’s proven a boon in numerous areas, but there are some hurdles to adoption, still. First seen on cyberscoop.com Jump to article: cyberscoop.com/cisa-ai-automation-security-operations-efficiency-uipath-fusion-event/ also interesting: 17 hottest IT security certs for higher pay today Wiz’s Security GraphDB vs. DeepTempo’s LogLM 10 key questions security leaders must ask at…
German officials advance legislation that would expand law enforcement use of surveillance technology

May 5, 2026 11:47 PM

Tags: ai, data, intelligence, Internet, law, technology, tool

The bills would legalize the use of automated data analysis and artificial intelligence tools that let police upload a photo of a face and scour the internet for more images depicting the same person. First seen on therecord.media Jump to article: therecord.media/german-officials-advance-laws-surveillance also interesting: Cybersecurity Snapshot: Tenable Highlights Risks of AI Use in the Cloud,…
CISA mulls new three-day remediation deadline for critical flaws

May 5, 2026 11:47 PM

Tags: api, ceo, cisa, exploit, flaw, government, kev, msp, penetration-testing, technology, update, vulnerability, vulnerability-management

Tight window: A CISA spokesperson declined to comment on the Reuters report, but security experts were more forthcoming, with most believing the idea is simply an acknowledgement that modern vulnerability management is evolving.One source of anxiety was that a three-day timeline would leave little time for meaningful testing, normally a time-consuming and complex undertaking that…
Supply-chain attacks take aim at your AI coding agents

May 5, 2026 11:47 PM

Tags: advisory, ai, attack, business, control, cybersecurity, github, infrastructure, injection, LLM, malicious, programming, risk, skills, social-engineering, software, supply-chain, threat, tool

Using LLMs to trick LLMs: ReversingLabs’ researchers observed clear signs of vibe coding in the creation of these malicious components, including LLM-generated code comments. However, something else stood out: the level of detail in their README files and the way the documentaton boasted about how effective these packages were at performing their tasks.The researchers questioned…
Widely used Daemon Tools disk app backdoored in monthlong supply-chain attack

May 5, 2026 11:47 PM

Tags: attack, infection, supply-chain, tool

Daemon Tools users: It’s time to check your machines for stealthy infections, stat. First seen on arstechnica.com Jump to article: arstechnica.com/security/2026/05/widely-used-daemon-tools-disk-app-backdoored-in-monthlong-supply-chain-attack/ also interesting: Top 12 ways hackers broke into your systems in 2024 Top 12 ways hackers broke into your systems in 2024 Operation Endgame 2.0: DanaBusted Operation Endgame 2.0: DanaBusted
Meta’s AI will scan height and bone structure to detect under-13 users

May 5, 2026 10:48 PM

Tags: ai

Meta is deploying AI that scans photos and videos for physical cues to assess whether a user is under 13 on Instagram and Facebook. Teen Account on Instagram (Source: Meta) … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/05/05/meta-ai-age-detection-instagram-facebook/ also interesting: #Infosec2024: Deepfake Expert Warns of AI Tax Havens In der U-Bahn: New York testet…
‘They protect the law while breaking it’: Inside Europol’s shadow IT system

May 5, 2026 10:48 PM

Tags: crime, data, law

Under pressure to deliver in the fight against serious cross-border crime, Europol built and operated a shadow data analysis platform containing large volumes of sensitive information, which operated without key legal and technical safeguards First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366642525/They-protect-the-law-while-breaking-it-Inside-Europols-shadow-IT-system also interesting: International effort erases PlugX malware from thousands of Windows computers Cybersecurity…
DAEMON Tools trojanized in supply-chain attack to deploy backdoor

May 5, 2026 10:48 PM

Tags: attack, backdoor, hacker, software, supply-chain, tool

Hackers trojanized installers for the DAEMON Tools software and since April 8, delivered a backdoor to thousands of systems that downloaded the product from the official website. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/daemon-tools-trojanized-in-supply-chain-attack-to-deploy-backdoor/ also interesting: Top 7 zero-day exploitation trends of 2024 Top 7 zero-day exploitation trends of 2024 Top 7 zero-day exploitation…
Google Update: Android Flaw Could Put Billions of Devices at Risk

May 5, 2026 10:48 PM

Tags: android, flaw, google, mobile, rce, remote-code-execution, risk, update

Google patched an Android zero-click RCE flaw affecting multiple versions. Here’s what IT teams should know and how to reduce mobile risk. The post Google Update: Android Flaw Could Put Billions of Devices at Risk appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-google-android-zero-click-rce-patch/ also interesting: Google Update: Android Flaw Could Put…
Google AppSheet Abuse Helped Phish 30,000 Facebook Accounts

May 5, 2026 10:48 PM

Tags: business, email, google, hacker, phishing

Hackers abused Google AppSheet to send Meta phishing emails, compromising 30,000 Facebook business accounts across 50 countries. The post Google AppSheet Abuse Helped Phish 30,000 Facebook Accounts appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-google-appsheet-facebook-phishing-accountdumpling/ also interesting: Privacy Roundup: Week 1 of Year 2025 Privacy Roundup: Week 1 of Year 2025…
New WhatsApp Flaws Could Affect Billions of Users After Meta Security Patch

May 5, 2026 10:48 PM

Tags: android, flaw, update, windows

Meta patched two WhatsApp flaws affecting iOS, Android, and Windows users, including bugs tied to risky files, links, and Reels previews. The post New WhatsApp Flaws Could Affect Billions of Users After Meta Security Patch appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-whatsapp-users-update-meta-security-flaws/ also interesting: April Patch Tuesday news: Windows zero…
Proof of Concept: Anatomy of a Breach – Cyber Readiness

May 5, 2026 10:48 PM

Tags: attack, breach, cyber, governance, identity

Security Leaders From Equifax, Rapid7 on Identity Security and Visibility Failures. In part one of the Anatomy of a Breach series, Equifax’s Jeremy Koppen and Rapid7’s Christiaan Beek examine why familiar security gaps still lead to breaches. Experts discuss ways to improve readiness in the face of identity-driven attacks, visibility failures and governance weaknesses. First…
Masterclass Quantum: Hybrid Crypto Gains Ground for Security

May 5, 2026 10:48 PM

Tags: crypto, cryptography, resilience, threat

Applied Quantum’s Kawin Boonyapredee, SpeQtral’s Cyril Tan on Hybrid Security. Hybrid cryptography is emerging as a practical path to quantum safety. Kawin Boonyapredee from Applied Quantum and Cyril Tan from SpeQtral said combining QKD and PQC builds resilience against future threats while balancing performance and security needs. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/masterclass-quantum-hybrid-crypto-gains-ground-for-security-a-31595…
CISA ‘CI Fortify’ Aims to Keep Services Running Under Attack

May 5, 2026 10:48 PM

Tags: attack, cisa, cyberattack, cybersecurity, infrastructure, service

Critical Infrastructure Operators Urged to Fortify Against Nation-State Attacks. The Cybersecurity and Infrastructure Security Agency launched CI Fortify, urging critical infrastructure operators to adopt isolation and rapid recovery capabilities to maintain essential services under cyberattacks, amid warnings that nation-state actors are already embedded in operational systems. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/cisa-ci-fortify-aims-to-keep-services-running-under-attack-a-31602 also…
Vimeo confirms breach via third-party vendor impacts 119K users

May 5, 2026 10:48 PM

Tags: breach, data, data-breach, hacker

Hackers stole data of 119,000 Vimeo users in April. The breach, linked to a third”‘party vendor, exposed personal details. Vimeo confirmed a data breach after the ShinyHunters gang stole personal information of 119,000 users in April 2026. According to Have I Been Pwned, the attackers accessed user data through a compromise at Anodot, a third”‘party…
CISA boasts AI automation improvements to threat analysis, mission support

May 5, 2026 10:48 PM

Tags: ai, automation, cisa, cybersecurity, infrastructure, threat

Cybersecurity and Infrastructure Security Agency officials said it’s proven a boon in numerous areas, but there are some hurdles to adoption, still. First seen on cyberscoop.com Jump to article: cyberscoop.com/cisa-ai-automation-security-operations-efficiency-uipath-fusion-event/ also interesting: 17 hottest IT security certs for higher pay today Wiz’s Security GraphDB vs. DeepTempo’s LogLM 10 key questions security leaders must ask at…
German officials advance legislation that would expand law enforcement use of surveillance technology

May 5, 2026 10:48 PM

Tags: ai, data, intelligence, Internet, law, technology, tool

The bills would legalize the use of automated data analysis and artificial intelligence tools that let police upload a photo of a face and scour the internet for more images depicting the same person. First seen on therecord.media Jump to article: therecord.media/german-officials-advance-laws-surveillance also interesting: Cybersecurity Snapshot: Tenable Highlights Risks of AI Use in the Cloud,…
CISA mulls new three-day remediation deadline for critical flaws

May 5, 2026 10:48 PM

Tags: api, ceo, cisa, exploit, flaw, government, kev, msp, penetration-testing, technology, update, vulnerability, vulnerability-management

Tight window: A CISA spokesperson declined to comment on the Reuters report, but security experts were more forthcoming, with most believing the idea is simply an acknowledgement that modern vulnerability management is evolving.One source of anxiety was that a three-day timeline would leave little time for meaningful testing, normally a time-consuming and complex undertaking that…
Edge browser leaves passwords exposed in plain text, says researcher

May 5, 2026 10:48 PM

Tags: data-breach, password

This article originally appeared on Computerworld. First seen on csoonline.com Jump to article: www.csoonline.com/article/4167437/edge-browser-leaves-passwords-exposed-in-plain-text-says-researcher-2.html also interesting: D-Link won’t fix critical bug in 60,000 exposed EoL modems Skype Disables Password Reset After Security Flaw Exposed 336K Prometheus Instances Exposed to DoS, ‘Repojacking’ AI programming copilots are worsening code security and leaking more secrets
Widely used Daemon Tools disk app backdoored in monthlong supply-chain attack

May 5, 2026 10:48 PM

Tags: attack, infection, supply-chain, tool

Daemon Tools users: It’s time to check your machines for stealthy infections, stat. First seen on arstechnica.com Jump to article: arstechnica.com/security/2026/05/widely-used-daemon-tools-disk-app-backdoored-in-monthlong-supply-chain-attack/ also interesting: Top 12 ways hackers broke into your systems in 2024 Operation Endgame 2.0: DanaBusted Modern supply-chain attacks and their real-world impact Modern supply-chain attacks and their real-world impact
DAEMON Tools trojanized in supply-chain attack to deploy backdoor

May 5, 2026 9:48 PM

Tags: attack, backdoor, hacker, software, supply-chain, tool

Hackers trojanized installers for the DAEMON Tools software and since April 8, delivered a backdoor to thousands of systems that downloaded the product from the official website. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/daemon-tools-trojanized-in-supply-chain-attack-to-deploy-backdoor/ also interesting: Top 7 zero-day exploitation trends of 2024 The 2024 cyberwar playbook: Tricks used by nation-state actors 6 ways…
Google Update: Android Flaw Could Put Billions of Devices at Risk

May 5, 2026 9:48 PM

Tags: android, flaw, google, mobile, rce, remote-code-execution, risk, update

Google patched an Android zero-click RCE flaw affecting multiple versions. Here’s what IT teams should know and how to reduce mobile risk. The post Google Update: Android Flaw Could Put Billions of Devices at Risk appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-google-android-zero-click-rce-patch/ also interesting: Update Alert: Google Warns of Critical…
Google AppSheet Abuse Helped Phish 30,000 Facebook Accounts

May 5, 2026 9:48 PM

Tags: business, email, google, hacker, phishing

Hackers abused Google AppSheet to send Meta phishing emails, compromising 30,000 Facebook business accounts across 50 countries. The post Google AppSheet Abuse Helped Phish 30,000 Facebook Accounts appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-google-appsheet-facebook-phishing-accountdumpling/ also interesting: Privacy Roundup: Week 1 of Year 2025 Cybersecurity Snapshot: Tenable Report Spotlights Cloud Exposures,…
New WhatsApp Flaws Could Affect Billions of Users After Meta Security Patch

May 5, 2026 9:48 PM

Tags: android, flaw, update, windows

Meta patched two WhatsApp flaws affecting iOS, Android, and Windows users, including bugs tied to risky files, links, and Reels previews. The post New WhatsApp Flaws Could Affect Billions of Users After Meta Security Patch appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-whatsapp-users-update-meta-security-flaws/ also interesting: April Patch Tuesday news: Windows zero…
Meta’s AI will scan height and bone structure to detect under-13 users

May 5, 2026 9:48 PM

Tags: ai

Meta is deploying AI that scans photos and videos for physical cues to assess whether a user is under 13 on Instagram and Facebook. Teen Account on Instagram (Source: Meta) … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/05/05/meta-ai-age-detection-instagram-facebook/ also interesting: Check Point veröffentlicht Harmony SASE MCP Server Flock Uses Overseas Gig Workers to Build…
GPT-5.5, Mythos Reach Hacking Parity, But Reasoning Falters

May 5, 2026 9:48 PM

Tags: ai, cyber, hacking, intelligence, openai

Benchmarks Shows Matched Capability, Brittle Reasoning. Two artificial intelligence models from competing labs have essentially the same offensive cyber capability level, with consistent reasoning failures that the cyber scores alone do not capture. OpenAI’s GPT-5.5 and Anthropic’s Mythos Preview now deliver near-identical offensive cyber performance. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/gpt-55-mythos-reach-hacking-parity-but-reasoning-falters-a-31594 also interesting:…

Cyber-Security-News