May 2026

CISA Flags Critical Cisco SD-WAN Flaw In KEV Catalog

CISA adds critical Cisco SD-WAN flaw to KEV catalog. CVE-2026-20182 scores perfect 10.0 on CVSS scale. Federal agencies have limited time to patch.

OpenAI Confirms Breach In TanStack Supply Chain Attack

CyDhaal Admin3 weeks ago04 mins

OpenAI confirms employee devices compromised in TanStack supply chain attack. Code-signing certificates rotated after breach affected hundreds of npm and PyPI packages.

Cisco SD-WAN Auth Bypass Exploited in Live Attacks

CyDhaal Admin3 weeks ago04 mins

CRITICAL: Cisco Catalyst SD-WAN flaw with perfect 10.0 severity score exploited in the wild. Attackers gaining admin access through auth bypass. Patch now.

Windows 11 And Edge Hacked At Pwn2Own Berlin 2026

CyDhaal Admin3 weeks ago04 mins

Windows 11 and Microsoft Edge fall to hackers at Pwn2Own Berlin. Day one: $523K paid out for 24 zero-day exploits. The bugs are real and they’re spectacular.

TencShell Malware Enables Full System Remote Control

CyDhaal Admin3 weeks ago04 mins

New TencShell malware gives attackers complete remote control of infected systems—full screen access, browser data theft, and UAC bypass capabilities detected

AI Model Discovers Critical macOS Security Flaws

CyDhaal Admin3 weeks ago04 mins

AI-powered security research just exposed critical macOS flaws. Anthropic’s Mythos model helped discover vulnerabilities that bypass Apple’s memory protection.

Fake Job Interview Apps Deploy JobStealer Malware

CyDhaal Admin3 weeks ago04 mins

Hackers are weaponizing fake job interview apps to deploy JobStealer malware. Targets: crypto wallets, browser data, passwords on both Mac and Windows.

Aptera Assembles First Five EVs After 18-Year Wait

CyDhaal Admin3 weeks ago04 mins

After 18 years in development, Aptera finally assembles its first five three-wheel EVs. The solar-powered vehicle reaches a major milestone in its journey.

Broadcom Patches VMware Fusion Root Access Vulnerability

CyDhaal Admin3 weeks ago04 mins

Broadcom patches critical VMware Fusion bug allowing local attackers to gain root access. CVE-2026-41702 exploits time-of-check time-of-use flaw. Update now.

18-Year-Old NGINX Flaw Enables Unauthenticated RCE

CyDhaal Admin3 weeks ago03 mins

18-year-old NGINX flaw just discovered. Unauthenticated RCE possible via crafted HTTP requests. If you’re running NGINX Plus or Open, patch now.

Election Clerk Defiant After Security Breach Conviction

5K+ Malicious Domains Target Election Voters In Phishing

Red Hat npm Packages Compromised In Miasma Attack

CISA Adds Oracle WebLogic Flaw To KEV Catalog

CIFSwitch: 19-Year-Old Linux Root Bug Found By AI

Pentagon Admits Location Data Threatens Military Ops

Hackers Target Signal Users With Backup Theft Campaign

CrowdStrike Scales AI Agents With NVIDIA Partnership

YARA-X 1.17.0 Brings Performance Boost And Bugfix

Mass Supply Chain Attacks Target Developer Packages

CISA Flags Critical Cisco SD-WAN Flaw In KEV Catalog

OpenAI Confirms Breach In TanStack Supply Chain Attack

Cisco SD-WAN Auth Bypass Exploited in Live Attacks

Windows 11 And Edge Hacked At Pwn2Own Berlin 2026

TencShell Malware Enables Full System Remote Control

AI Model Discovers Critical macOS Security Flaws

Fake Job Interview Apps Deploy JobStealer Malware

Aptera Assembles First Five EVs After 18-Year Wait

Broadcom Patches VMware Fusion Root Access Vulnerability

18-Year-Old NGINX Flaw Enables Unauthenticated RCE