Internet Security

Critical Android vulnerability CVE-2026-0073 fixed by Google

May 5, 2026 add comment
Google patched a critical Android flaw (CVE‑2026‑0073) that lets attackers run code remotely without user action. Google released a security update for Android to address a critical remote code... Read more »

Microsoft warns of global campaign stealing auth tokens from 35K users

May 5, 2026 add comment
Microsoft revealed a phishing campaign hitting 35,000 users in 26 countries, stealing login tokens via fake code-of-conduct emails and legit services. Microsoft disclosed a major phishing campaign that targeted... Read more »

Educational tech firm Instructure data breach may have impacted 9,000 schools

May 5, 2026 add comment
Instructure, maker of the Canvas learning platform, is investigating a cyber incident that exposed users’ personal data. Instructure is a U.S.-based educational technology company best known for developing Canvas, one of... Read more »

MOVEit automation flaws could enable full system compromise

May 4, 2026 add comment
Progress fixes critical MOVEit Automation flaws, including an authentication bypass bug that could let attackers gain unauthorized access to systems. Progress Software addressed two vulnerabilities in MOVEit Automation, a... Read more »

Hackers target governments and MSPs via critical cPanel flaw CVE-2026-41940

May 4, 2026 add comment
Attackers exploit a critical cPanel flaw to target government and MSP networks across Southeast Asia and several countries, including the U.S. and Canada. A threat actor is exploiting critical... Read more »

U.S. CISA adds a flaw in Linux Kernel to its Known Exploited Vulnerabilities catalog

May 4, 2026 add comment
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in Linux Kernel to its Known Exploited Vulnerabilities catalog The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a flaw... Read more »

AI speeds flaw discovery, forcing rapid updates, UK NCSC warns

May 4, 2026 add comment
The UK cyber agency NCSC warns AI is speeding up vulnerability discovery, likely causing a “patch wave” of urgent software updates to fix exposed flaws. The UK’s National Cyber... Read more »

Bluekit phishing kit enables automated phishing with 40+ templates and AI tools

May 4, 2026 add comment
Bluekit is a new phishing kit with AI features, automated domain setup, and tools like spoofing, voice cloning, and 40+ attack templates. Bluekit is a newly discovered phishing kit... Read more »

Salt Typhoon breach IBM subsidiary in Italy: a warning for Europe’s digital defenses

May 3, 2026 add comment
April 2026 breach at Sistemi Informativi (IBM Italy) raises concerns over Chinese-linked cyber ops in Europe, including Salt Typhoon. In late April 2026, the Italian cybersecurity landscape was shaken... Read more »

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 95

May 3, 2026 add comment
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter fast16 | Mystery ShadowBrokers Reference Reveals High-Precision Software... Read more »
Subscribe to our Newsletter