Vulnerability

Microsoft brings back resizable taskbar and Start menu to Windows 11. A small UI change that could have big security implications for enterprise environments.

UK forced to buy US glide bombs for F-35s after software delays postpone British SPEAR 3 missile integration. StormBreaker becomes the stopgap solution.

Researchers chain 0-click Dolby exploit with new VPU driver bug to root Pixel 10. The kernel flaw took just 5 lines of code to exploit. Patched in 71 days.

Microsoft has acknowledged a critical installation failure in its May 2026 Patch Tuesday update KB5089549 for Windows 11, causing error 0x800f0922 due to insufficient EFI System Partition space. The company is actively rolling out a fix while advising administrators to monitor the Windows Release Health Dashboard.

Grafana confirms unauthorized GitHub token breach — attackers downloaded codebase and attempted extortion. No customer data compromised.

Microsoft accused of secretly patching Azure vulnerability after rejecting researcher’s report—no CVE issued. Company denies changes despite documented fix.

OPENAI EMPLOYEE DEVICES COMPROMISED Malware in poisoned TanStack npm packages hit OpenAI staff machines Internal credentials stolen in supply chain attack Severity: High Target: OpenAI employees

One million WordPress sites at risk: Avada Builder flaws let hackers steal credentials and database secrets. Patch now or face a data breach nightmare.

Researchers have disclosed four chained vulnerabilities in OpenClaw, collectively dubbed Claw Chain, enabling attackers to steal data, escalate privileges, and establish persistence through the AI agent’s own runtime. All flaws have been patched in OpenClaw version 2026.4.22 and users are urged to update immediately.

Critical Exchange Server spoofing flaw under active attack. CVE-2026-42897 affects on-premise versions with CVSS 8.1. Patch immediately if you’re running 2016/2019.