Microsoft warns of new Defender zero-days exploited in attacks
… "This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise," the U.S. cybersecurity agency warned. …
Search
Top stories
Ubiquiti patches three max severity UniFi OS vulnerabilities
… Cybersecurity and Infrastructure Security Agency CISA also added a critical command injection flaw CVE-2010-5330 in Ubiquiti AirOS to its catalog of actively exploited vulnerabilities and ordered federal agencies to secure their devices within three weeks. …
Exploit available for new DirtyDecrypt Linux root escalation flaw
… "This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise," the U.S. cybersecurity agency warned. …
Instructure reaches 'agreement' with ShinyHunters to stop data leak
… Download Now Related Articles: Instructure hacker claims data theft from 8,800 schools, universities Instructure confirms data breach, ShinyHunters claims attack US govt seeks Instructure testimony on massive Canvas cyberattack Instructure confirms hackers used Canvas flaw to deface portals Canvas … …
Trend Micro warns of Apex One zero-day exploited in the wild
… Cybersecurity and Infrastructure Security Agency CISA also added CVE-2026-34926 to its list of actively exploited vulnerabilities and ordered federal agencies to patch their devices by June 4. …
Australia warns of ClickFix attacks pushing Vidar Stealer malware
Australia warns of ClickFix attacks pushing Vidar Stealer malware By Bill Toulas May 7, 2026 02:00 PM The Australian Cyber Security Center ACSC is warning organizations of an ongoing malware campaign using the ClickFix social engineering technique to distribute the Vidar Stealer info-stealing malwa… …
7-Eleven confirms data breach claimed by the ShinyHunters gang
… Download Now Related Articles: Home security giant ADT data breach affects 5.5 million people Data breach at edtech giant McGraw Hill affects 13.5 million accounts Instructure reaches 'agreement' with ShinyHunters to stop data leak Video service Vimeo confirms Anodot breach exposed user data McGraw… …
Instructure confirms hackers used Canvas flaw to deface portals
… Download Now Related Articles: Canvas login portals hacked in mass ShinyHunters extortion campaign Instructure confirms data breach, ShinyHunters claims attack Instructure reaches 'agreement' with ShinyHunters to stop data leak Instructure hacker claims data theft from 8,800 schools, universities U… …
Max severity Cisco Secure Workload flaw gives Site Admin privileges
… Cybersecurity and Infrastructure Security Agency CISA added the CVE-2026-20182 flaw to its Known Exploited Vulnerabilities Catalog on May 14 and ordered federal agencies to secure affected devices within three days, by May 17. …
UK fines water supplier $1.3M for exposing data of 664k customers
… The ICO’s investigation has now confirmed that the leaked data was indeed authentic, belonging to South Staffordshire Water Plc, and also noted that the compromise had actually started in September 2020. “We have fined South Staffordshire Plc and South Staffordshire Water Plc together South Staffor… …