Dutch authorities have seized approximately 800 servers from a hosting provider that allegedly facilitated widespread cybercriminal activities. The operation targeted a bulletproof hosting service that enabled attackers to launch DDoS attacks, distribute malware, and conduct phishing campaigns while
CISA has added CVE-2026-42897, an actively exploited Microsoft Exchange Server XSS vulnerability, to its Known Exploited Vulnerabilities catalog. Federal agencies have until May 29, 2026 to remediate the flaw, which enables spoofing attacks via Outlook Web Access.
Threat actors are leveraging Large Language Model (LLM) agents to automate post-exploitation activities after successfully compromising systems through CVE-2026-39987, a critical vulnerability in Marimo, a popular Python notebook framework. This novel attack chain represents a significant evolution
TeamPCP supply chain attack escalates: Jenkins plugin compromised, new worm spreads across npm and PyPI. The loudest activity since March’s Trivy disclosure.
Gunra ransomware evolved from Conti roots into a full-scale RaaS operation, hitting dozens of orgs globally in under a year with leak sites and affiliate programs
The notorious cybercrime group ShinyHunters has leaked what appears to be Charter Communications customer data on a dark web forum, claiming to have exposed information on approximately 5 million customers. The dataset allegedly contains personal information including names, addresses, phone numbers
Researchers have disclosed four chained vulnerabilities in OpenClaw, collectively dubbed Claw Chain, enabling attackers to steal data, escalate privileges, and establish persistence through the AI agent’s own runtime. All flaws have been patched in OpenClaw version 2026.4.22 and users are urged to update immediately.
Linus Torvalds says AI-generated bug reports are flooding Linux security mailing lists, making them “almost entirely unmanageable.” New rules incoming.
New zero-day exploit “YellowKey” bypasses Windows 11 BitLocker encryption. Physical access required but defeats TPM protection completely.
Ghostwriter APT group strikes again: New campaign targeting Ukrainian government organizations uncovered by ESET researchers. FrostyNeighbor continues its attacks.