Collecting Cyber-News from over 60 sources

Tag: vulnerability

SAP Releases Patch for Critical SQL Injection Flaw in S/4HANA

May 12, 2026 4:20 PM

Tags: cyber, data, flaw, injection, sap, software, sql, update, vulnerability

A severe vulnerability has struck the heart of enterprise resource planning systems this month, threatening organizations worldwide with potential data breaches. On May 12, 2026, the software giant released its monthly security patch update to address 15 newly discovered security flaws across its software ecosystem. Enterprise defenders must prioritize these updates immediately, as attackers frequently…
Attackers exploit cPanel CVE-2026-41940 to deploy Filemanager Backdoor

May 12, 2026 3:19 PM

Tags: backdoor, control, cve, cybercrime, exploit, flaw, unauthorized, vulnerability

Attackers are exploiting cPanel flaw CVE-2026-41940 to install the Filemanager backdoor and gain unauthorized admin access. Cybercriminals are actively exploiting the critical cPanel vulnerability CVE-2026-41940 (CVSS score of 9.3) to deploy a backdoor called Filemanager on compromised servers. cPanelis a widely used web hosting control panel that lets users manage websites and servers through a…
JetBrains TeamCity vulnerability allows privilege escalation, API exposure (CVE-2026-44413)

May 12, 2026 3:19 PM

Tags: api, vulnerability

JetBrains has patched a high-severity vulnerability (CVE-2026-44413) in TeamCity, its popular continuous integration and continuous delivery platform, and is urging … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/05/12/jetbrains-teamcity-vulnerability-cve-2026-44413/
Six new dnsmasq vulnerabilities open the door to DNS cache poisoning, local root

May 12, 2026 2:19 PM

Tags: dns, open-source, tool, vulnerability

Recent disclosures have revealed that open-source networking tool dnsmasq is grappling with a serious set of vulnerabilities. The problems span memory safety and input … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/05/12/dnsmasq-vulnerabilities-cve/
SAP fixes critical vulnerabilities in Commerce Cloud and S/4HANA

May 12, 2026 2:19 PM

Tags: cloud, flaw, sap, update, vulnerability

SAP has released the May 2026 security updates addressing 15 vulnerabilities across multiple products, including two critical flaws in the Commerce Cloud enterprise-grade e-commerce platform and the S/4HANA ERP suite. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/sap-fixes-critical-vulnerabilities-in-commerce-cloud-and-s-4hana/
Open WebUI File Upload Vulnerability Enables 1-Click RCE Attack

May 12, 2026 2:19 PM

Tags: attack, cyber, flaw, rce, remote-code-execution, vulnerability

A critical, unpatched vulnerability is actively threatening Open WebUI users, turning a simple profile picture upload into a gateway for complete system compromise. Security researchers have publicly disclosed a severe stored Cross-Site Scripting (XSS) flaw that enables 1-click Remote Code Execution (RCE) and full account hijacking. The security flaw resides in the profile image upload…
Sicherheitsbedenken durch Claude Mythos – Einsatz von Schwachstellen-KI zu riskant?

May 12, 2026 1:18 PM

Tags: ai, vulnerability

First seen on security-insider.de Jump to article: www.security-insider.de/einsatz-von-schwachstellen-ki-zu-riskant-a-0b06f99fdc44dcf8332165d0d122fa4a/
Å koda confirms unauthorized access to its online shop

May 12, 2026 1:18 PM

Tags: access, exploit, software, unauthorized, vulnerability

Car manufacturer Å koda discovered that attackers had exploited a vulnerability in its online shop software and gained temporary unauthorized access to the system. What … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/05/12/skoda-online-shop-breach-access/
CISOs step into the AI spotlight

May 12, 2026 12:19 PM

Tags: ai, api, attack, automation, awareness, business, ciso, control, cyber, cybersecurity, data, defense, detection, exploit, finance, fraud, governance, identity, infrastructure, jobs, least-privilege, military, phishing, risk, service, social-engineering, software, technology, threat, tool, training, update, vulnerability, vulnerability-management

Move fast, keep risk at bay: Like Hensley, Jeff Trudeau, CSO of Chime, says the role is fundamentally shifting from a control function to a strategic partner in how the business adopts AI responsibly. At Chime, that means being embedded early in how AI is built and deployed, not reviewing it after the fact, Trudeau…
CISOs step into the AI spotlight

May 12, 2026 12:19 PM

Tags: ai, api, attack, automation, awareness, business, ciso, control, cyber, cybersecurity, data, defense, detection, exploit, finance, fraud, governance, identity, infrastructure, jobs, least-privilege, military, phishing, risk, service, social-engineering, software, technology, threat, tool, training, update, vulnerability, vulnerability-management

Move fast, keep risk at bay: Like Hensley, Jeff Trudeau, CSO of Chime, says the role is fundamentally shifting from a control function to a strategic partner in how the business adopts AI responsibly. At Chime, that means being embedded early in how AI is built and deployed, not reviewing it after the fact, Trudeau…
Why patching SLAs should be the floor, not the strategy

May 12, 2026 12:19 PM

Tags: attack, authentication, business, cisa, ciso, compliance, control, cve, cvss, cyber, exploit, flaw, grc, identity, kev, metric, risk, service, strategy, tool, update, vulnerability, vulnerability-management

SLAs measure discipline, not risk: Here’s the mental model I’ve been pushing with my peers. Think of patching SLAs the way you think of fire drills. Fire drills are necessary. They prove that, on a predictable cadence, your organization can execute a known procedure. No one in charge of a building full of people would…
Cline AI Agent Flaw Allows Attackers to Launch RCE Attacks

May 12, 2026 12:19 PM

Tags: ai, attack, cve, cyber, data, flaw, github, malicious, rce, remote-code-execution, service, theft, vulnerability

A critical security vulnerability in the Cline AI coding assistant’s kanban package exposes developers to remote code execution, data theft, and denial-of-service attacks by simply visiting a malicious website. Security researcher Sagilayani disclosed CVE-2026-44211 on GitHub four days ago, revealing that the kanban npm package bundled with the Cline CLI starts a WebSocket server on 127.0.0.1:3484 with zero Origin…
Finanzstabilität in Gefahr: Claude Mythos alarmiert den IWF

May 12, 2026 11:19 AM

Tags: cyersecurity, vulnerability

Anthropics neues Modell ‘Claude Mythos Preview” findet Schwachstellen in jedem gängigen Betriebssystem und Browser, auch in den Händen von Laien. Für den Internationalen Währungsfonds ist das ein Weckruf: Cybersicherheit müsse als systemisches Finanzrisiko behandelt werden. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/claude-mythos-alarmiert-den-iwf
Claude Chrome Extension Flaw Lets Malicious Add-Ons Steal Gmail and Drive Data

May 12, 2026 11:19 AM

Tags: ai, browser, chrome, cyber, data, exploit, flaw, google, malicious, vulnerability

A critical vulnerability dubbed >>ClaudeBleed<< has compromised Anthropic's trusted AI assistant, potentially turning it into a backdoor. This severe design flaw in the Claude Chrome extension allows malicious add-ons to hijack the AI secretly. Even extensions with zero declared permissions can exploit this vulnerability to steal sensitive data from Gmail, Google Drive, and GitHub. In…
OpenAI Daybreak Automates Vulnerability Detection and Patching

May 12, 2026 10:19 AM

Tags: ai, control, cyber, cyberattack, detection, exploit, intelligence, openai, software, update, vulnerability, zero-day

The relentless race against zero-day exploits and sophisticated cyberattacks requires a revolutionary approach to software security. Defenders are constantly overwhelmed by massive backlogs of alerts and the sheer volume of code requiring manual review. Enter OpenAI Daybreak, a frontier artificial intelligence system built specifically for cyber defenders. By shifting the focus from reactive damage control…
OpenAI Launches Daybreak for AI-Powered Vulnerability Detection and Patch Validation

May 12, 2026 10:19 AM

Tags: ai, cybersecurity, detection, intelligence, openai, update, vulnerability

OpenAI has launched Daybreak, a new cybersecurity initiative that brings together frontier artificial intelligence (AI) model capabilities and Codex Security to help organizations identify and patch vulnerabilities before attackers find a way in using the same issues.”Daybreak combines the intelligence of OpenAI models, the extensibility of Codex as an agentic harness, and our partners across…
BitUnlocker Downgrade Attack Bypasses Windows 11 Disk Encryption in Minutes

May 12, 2026 9:19 AM

Tags: attack, cve, cyber, encryption, exploit, flaw, microsoft, vulnerability, windows

A proof-of-concept (PoC) exploit that demonstrates how attackers can bypass Windows 11 BitLocker disk encryption in under 5 minutes. Dubbed the >>BitUnlocker<< attack, this physical downgrade technique exploits a known vulnerability, CVE-2025-48804. Initially documented by the Microsoft STORM team in July 2025, the flaw exposes a critical weakness in how Secure Boot interacts with legacy…
HEIDI: Free IDE security plugin for open-source vulnerability checks

May 12, 2026 8:18 AM

Tags: open-source, vulnerability

Open-source dependencies make up a large percentage of the code in production applications, and most vulnerability checks still run late in the pipeline, inside CI/CD systems … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/05/12/heidi-free-ide-security-plugin/
Google Warns Hackers Are Using AI to Build Working Zero-Day Exploits

May 12, 2026 8:18 AM

Tags: ai, cyber, exploit, google, group, hacker, hacking, intelligence, threat, vulnerability, zero-day

Artificial intelligence has officially transitioned from an experimental hacking novelty into an industrial-scale weapon for cybercriminals. Google Threat Intelligence Group (GTIG) adversaries are now actively using generative AI models to discover vulnerabilities and engineer functional zero-day exploits. This marks a significant escalation in the cyber threat landscape, shifting AI’s role from a simple research assistant…
Linux kernel maintainers suggest a ‘kill switch’ to protect systems until a zero-day vulnerability is patched

May 12, 2026 5:19 AM

Tags: access, attack, business, control, cve, cybersecurity, exploit, flaw, group, incident response, infosec, linux, LLM, mitigation, risk, service, strategy, switch, technology, tool, update, vulnerability, zero-day

), a logic bug which lets users easily obtain root access, and Dirty Frag, which abuses weaknesses in how the Linux kernel handles fragmented memory pages. The Dirty Frag attack combines two separate vulnerabilities affecting the Linux IPsec Encapsulating Security Payload (ESP) subsystem (CVE-2026-43284) and the RxRPC networking protocol (CVE-2026-43500). The proposal has set off a furious…
Linux bitten by second severe vulnerability in as many weeks

May 12, 2026 1:19 AM

Tags: linux, vulnerability

Production-version patches are coming online and should be installed pronto. First seen on arstechnica.com Jump to article: arstechnica.com/security/2026/05/linux-bitten-by-second-severe-vulnerability-in-as-many-weeks/
cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor

May 11, 2026 8:19 PM

Tags: attack, authentication, backdoor, control, cve, exploit, flaw, threat, vulnerability

A threat actor named Mr_Rot13 has been attributed to the exploitation of a recently disclosed critical cPanel flaw to deploy a backdoor codenamed Filemanager on compromised environments.The attack exploits CVE-2026-41940, a vulnerability impacting cPanel and WebHost Manager (WHM) that could result in an authentication bypass and allow remote attackers to gain elevated control of the…
‘Dirty Frag’ Exploit Poised to Blow Up on Enterprise Linux Distros

May 11, 2026 7:19 PM

Tags: exploit, flaw, linux, vulnerability

The privilege escalation vulnerability, which is similar to other Linux flaws like Copy Fail and Dirty Pipe, may already be under limited exploitation. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/dirty-frag-exploit-blow-up-enterprise-linux-distros
Hackers Used AI to Develop First Known Zero-Day 2FA Bypass for Mass Exploitation

May 11, 2026 7:19 PM

Tags: 2fa, ai, cybercrime, exploit, google, hacker, intelligence, malicious, technology, threat, vulnerability, zero-day

Google on Monday disclosed that it identified an unknown threat actor using a zero-day exploit that it said was likely developed with an artificial intelligence (AI) system, marking the first time the technology has been put to use in the wild in a malicious context for vulnerability discovery and exploit generation.The activity is said to…
Google warns artificial intelligence is accelerating cyberattacks and zero-day exploits

May 11, 2026 6:18 PM

Tags: access, ai, attack, cloud, cyber, cyberattack, defense, exploit, google, hacker, intelligence, supply-chain, threat, vulnerability, zero-day

Google says hackers now use AI to create exploits, automate attacks, evade defenses, and target AI supply chains at scale. Artificial intelligence is rapidly changing the cyber threat landscape, and a new report from the Google Cloud Threat Intelligence team highlights how attackers already use AI to improve vulnerability exploitation and gain initial access to…
The Threat Window Is Shrinking. The Response Gap Isn’t

May 11, 2026 6:18 PM

Tags: ai, exploit, intelligence, threat, update, vulnerability

Patching Workflows Built for Weekly Cycles Can’t Survive an Era of Hourly Exploits AI is shrinking the window between vulnerability disclosure and active exploitation from weeks to hours. But remediation workflows haven’t kept pace. Security teams need real-time intelligence, unified IT and security operations, and automated remediation to close the gap before attackers do. First…
Instructure confirms hackers used Canvas flaw to deface portals

May 11, 2026 6:18 PM

Tags: extortion, flaw, hacker, login, technology, vulnerability

Education technology giant Instructure has confirmed that a security vulnerability allowed hackers to modify Canvas login portals and leave an extortion message. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/instructure-confirms-hackers-used-canvas-flaw-to-deface-portals/
Linux developers weigh emergency >>killswitch<< for vulnerable kernel functions

May 11, 2026 5:20 PM

Tags: linux, mitigation, risk, vulnerability

Linux kernel developers are reviewing a proposal for an emergency risk mitigation mechanism (>>Killswitch<<) that would allow administrators to disable vulnerable … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/05/11/linux-kernel-emergency-killswitch/
Week in review: cPanel vulnerability actively exploited, DigiCert breach, LinkedIn job scams

May 11, 2026 5:20 PM

Tags: breach, data, exploit, jobs, linkedin, office, scam, vulnerability, WeeklyReview

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Your work apps are quietly handing 19 data points to someone Office work in … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/05/10/week-in-review-cpanel-vulnerability-actively-exploited-digicert-breach-linkedin-job-scams/
cPanel and WHM Servers Targeted in Attacks Exploiting CVE-2026-41940

May 11, 2026 5:20 PM

Tags: attack, authentication, cve, cvss, cyber, cybercrime, exploit, vulnerability

A critical authentication bypass vulnerability affecting cPanel and WHM servers, identified as CVE-2026-41940, is currently under active exploitation by a highly sophisticated and elusive cybercriminal syndicate known as Mr_Rot13. The vulnerability carries a maximum severity CVSS score of 9.8, allowing unauthenticated remote attackers to completely bypass standard authentication protocols and gain full administrator privileges over…