Microsoft Edge Fixes Plaintext Password Storage Flaw
Microsoft Edge finally stops storing passwords in plaintext memory after security researcher flags the risk. A long-overdue fix for a dangerous practice.
Read More
AI Bug Reports Overwhelm Linux Security Mailing List
Linus Torvalds says AI-generated bug reports are flooding Linux security mailing lists, making them “almost entirely unmanageable.” New rules incoming.
Mozilla Warns UK: Breaking VPNs Won’t Fix Age Verification
Mozilla to UK government: Breaking encryption and banning VPNs won’t solve your age verification problems—it’ll just destroy basic security for everyone.
Four Malicious npm Packages Target Developers’ Credentials
Four malicious npm packages are stealing SSH keys, cloud credentials, and crypto wallets while turning infected machines into DDoS botnets. Typosquatting strikes again.
Pre-Stuxnet Malware Sabotaged Nuclear Weapon Simulations
Pre-Stuxnet malware exposed: Fast16 deliberately corrupted nuclear weapons simulations years before the world knew about sophisticated cyber sabotage operations.
Pixel 10 Rooted Via 0-Click Exploit Chain In 5 Lines
Researchers chain 0-click Dolby exploit with new VPU driver bug to root Pixel 10. The kernel flaw took just 5 lines of code to exploit. Patched in 71 days.
Ten Cybersecurity Stories You Missed This Week
The week of May 11–17, 2026 brought a wave of cybersecurity incidents including a JDownloader malware supply chain attack, deepfake sextortion targeting schools, and a one-in-eight employee insider threat statistic. CyDhaal rounds up all ten major stories you need to know about.
Windows 11 Update Breaks Installs With Error 0x800f0922
Microsoft has acknowledged a critical installation failure in its May 2026 Patch Tuesday update KB5089549 for Windows 11, causing error 0x800f0922 due to insufficient EFI System Partition space. The company is actively rolling out a fix while advising administrators to monitor the Windows Release Health Dashboard.
Hackers Earn $1.3M For 47 Zero-Days At Pwn2Own Berlin
Security researchers just pocketed $1.3M for discovering 47 zero-day vulnerabilities at Pwn2Own Berlin. The hunt for critical flaws continues to pay off big.
Grafana Labs Confirms GitHub Account Breach
Grafana Labs confirms GitHub account breach — full codebase accessed. No customer data stolen, operations unaffected, and zero ransom paid.