π’ AI is getting better at security β and it's doing it faster than expected π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
UK AISI warns that AI models are already exceeding existing benchmarks for testing.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
IT Pro
AI is getting better at security β and it's doing it faster than expected
UK AISI warns that AI models are already exceeding existing benchmarks for testing
ποΈ PraisonAI CVE-2026-44338 Auth Bypass Targeted Within Hours of Disclosure ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Threat actors have been observed attempting to exploit a recently disclosed security vulnerability in PraisonAI, an opensource multiagent orchestration framework, within four hours of public disclosure. The vulnerability in question is CVE202644338 CVSS score 7.3, a case of missing authentication that exposes sensitive endpoints to anyone, potentially allowing an attacker to invoke the.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ How AI Hallucinations Are Creating Real Security Risks ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
AI hallucinations are introducing serious security risks into critical infrastructure decisionmaking by exploiting human trust through highly confident yet incorrect outputs. When an AI model lacks certainty, it doesnt have a mechanism to recognize that. Instead, it generates the most probable response based on patterns in its training data, even if that response is inaccurate. These outputs.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π New Fragnesia Flaw Hands Linux Local Users Root Access π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
New Fragnesia kernel flaw lets unprivileged local users escalate to root on Linux systems.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
New Fragnesia Flaw Hands Linux Local Users Root Access
New Fragnesia kernel flaw lets unprivileged local users escalate to root on Linux systems
π Google Launches Android Spyware Forensics Tool for High-Risk Users π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Googles Android Advanced Protection Mode is getting a new feature allowing trusted security experts to investigate potential spyware infections.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Google Launches Android Spyware Forensics Tool for High-Risk Users
Googleβs Android Advanced Protection Mode is getting a new feature allowing trusted security experts to investigate potential spyware infections
ποΈ Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The Belarusaligned threat group known as Ghostwriter has been attributed to a fresh set of attacks targeting governmental organizations in Ukraine. Active since at least 2016, Ghostwriter has been linked to both cyber espionage and influence operations targeting neighboring countries, particularly Ukraine. It's also tracked under the monikers FrostyNeighbor, PUSHCHA, Storm0257, TA445, UAC0057.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π’ What is continuous authentication? π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
Learn how continuous authentication minimizes the risk of account takeover or misuse.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
IT Pro
What is continuous authentication?
Learn how continuous authentication minimizes the risk of account takeover or misuse
π¦Ώ Appleβs iPhone Privacy Feature Expands to More Users Worldwide π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
Apple expanded Limit Precise Location in iOS 26.5, but the carrier privacy feature still requires select iPhones and iPads. The post Apples iPhone Privacy Feature Expands to More Users Worldwide appeared first on TechRepublic.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Appleβs iPhone Privacy Feature Expands to More Users Worldwide
Apple expanded Limit Precise Location in iOS 26.5, but the carrier privacy feature still requires select iPhones and iPads.
π Mustang Panda Linked to Updated FDMTP Backdoor in Asia-Pacific Espionage Campaign π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Mustang Panda campaign deploys updated FDMTP backdoor against AsiaPacific and Japan networks.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Mustang Panda Linked to FDMTP Backdoor in Asia-Pacific Espionage
Mustang Panda campaign deploys updated FDMTP backdoor against Asia-Pacific and Japan networks
π Anatomy of a Targeted Phishing Attack: How We Caught a DocuSign Impersonation Campaign π
π Read more.
π Via "UnderDefense"
----------
ποΈ Seen on @cibsecurity
Not all phishing emails are created equal. While most organizations deal with massblast spam that security tools catch routinely, targeted phishing, also known as spear phishing, is a different beast The post Anatomy of a Targeted Phishing Attack How We Caught a DocuSign Impersonation Campaign appeared first on UnderDefense.π Read more.
π Via "UnderDefense"
----------
ποΈ Seen on @cibsecurity
UnderDefense
How a Fake DocuSign Email Bypassed SPF, DKIM, and DMARC
Full breakdown of the TDS infrastructure, obfuscated JavaScript, and credential harvesting chain.
ποΈ Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited to Gain Admin Access ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cisco has released updates to address a maximumseverity authentication bypass flaw in Catalyst SDWAN Controller that it said has been exploited in limited attacks. The vulnerability, tracked as CVE202620182, carries a CVSS score of 10.0. "A vulnerability in the peering authentication in Cisco Catalyst SDWAN Controller, formerly SDWAN vSmart, and Cisco Catalyst SDWAN Manager, formerly.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Stealer Backdoor Found in 3 Node-IPC Versions Targeting Developer Secrets ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers are sounding the alarm about what has been described as "malicious activity" in newly published versions of nodeipc. According to Socket and StepSecurity, three different versions of the npm package have been confirmed as malicious nodeipc9.1.6 nodeipc9.2.3 nodeipc12.0.1 "Early analysis indicates that nodeipc9.1.6, nodeipc9.2.3, and nodeipc12.0.1.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ ThreatsDay Bulletin: PAN-OS RCE, Mythos cURL Bug, AI Tokenizer Attacks, and 10+ Stories ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Everything is still on fire. This week feels dumb in the worst way bad links, weak checks, fake help desks, shady forum posts, and people turning supply chain attacks into some cursed little game for clout and cash. Half of it feels new. Half of it feels like crap we should have fixed years ago. The mess keeps getting louder users get tricked, boxes get popped, tools meant for normal work.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access Exploits ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The U.S.Cybersecurity and Infrastructure Security Agency CISA on Thursday added a newly disclosed vulnerability impacting Cisco Catalyst SDWAN Controller to its Known Exploited Vulnerabilities KEV catalog, requiring Federal Civilian Executive Branch FCEB agencies to remediate the issue by May 17, 2026. The vulnerability is a critical authentication bypass tracked as CVE202620182. It's.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Microsoft has disclosed a new security vulnerability impacting onpremise versions of Exchange Server that it said has come under active exploitation in the wild. The vulnerability, tracked as CVE202642897 CVSS score 8.1, has been described as a spoofing bug stemming from a crosssite scripting flaw. An anonymous researcher has been credited with discovering and reporting the issue. ".π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π FrostyNeighbor: Fresh mischief and digital shenanigans π
π Read more.
π Via "ESET - WeLiveSecurity"
----------
ποΈ Seen on @cibsecurity
ESET researchers uncovered new activities attributed to FrostyNeighbor, updating its compromise chain to support the groups continual cyberespionage operations.π Read more.
π Via "ESET - WeLiveSecurity"
----------
ποΈ Seen on @cibsecurity
Welivesecurity
FrostyNeighbor: Fresh mischief and digital shenanigans
ESET researchers uncovered new activities attributed to FrostyNeighbor, updating its compromise chain to support the groupβs continual cyberespionage operations.
π China-Linked Hackers Deploy New TencShell Malware Against Global Manufacturer π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
A suspected Chinalinked threat actor targeted the Indian branch of a global manufacturer leveraging an open source offensive toolkit.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
China-Linked Hackers Deploy New TencShell Malware Against Manufacturer
A suspected China-linked threat actor targeted the Indian branch of a global manufacturer leveraging an open source offensive toolkit