IT Security News Daily Summary 2026-05-13

143 posts were published in the last hour

• 21:32 : Instructure Reaches Deal with ShinyHunters to Prevent Canvas Data Leak
• 21:3 : Innovators Spotlight: OPSWAT
• 20:32 : Microsoft Patch Tuesday for May 2026 fix 138 bugs, some of them are alarming
• 20:32 : Bug hunter tracks down three massive MCP flaws and one vendor won’t fix theirs
• 19:32 : DHS Plans Experiment Running ‘Reconnaissance’ Drones Along the US-Canada Border
• 19:32 : OpenLoop Health confirms January 2026 Data breach affecting 716,000
• 19:32 : Introducing the updated AWS User Guide to Governance, Risk, and Compliance for Responsible AI Adoption
• 19:5 : IT Security News Hourly Summary 2026-05-13 21h : 3 posts
• 18:32 : Google Launches New Android Security Features to Fight Scams, Theft
• 18:32 : Microsoft’s Patch Tuesday Update Targets 120 Security Flaws
• 18:32 : This is what some the world’s largest banks of malware look like stacked as hard drives
• 17:32 : Third Party Risk Portfolio Report for Education
• 17:32 : Foxconn Confirms North American Factories Hit by Cyberattack
• 17:3 : 200,000 WordPress Sites at Risk from Critical Authentication Bypass Vulnerability in Burst Statistics Plugin
• 17:3 : Transform SIEM rules with behavior-based threat detection
• 17:2 : Over Half of MSPs Admit to Being Breached Multiple Times in Past Year
• 16:33 : What Is Juice Jacking? How to Protect Your Devices
• 16:33 : Mystery Microsoft bug leaker keeps the zero-days coming
• 16:33 : Microsoft, Palo Alto Networks Find Many Vulnerabilities by Using AI on Their Own Code
• 16:33 : Experts Say ‘Ghost Tapping’ Payment Scams Are Uncommon, But Consumers Should Still Stay Alert
• 16:33 : PCI PIN and P2PE compliance packages for AWS Payment Cryptography are now available
• 16:33 : Foxconn confirms cyberattack affecting some North American facilities
• 16:5 : IT Security News Hourly Summary 2026-05-13 18h : 22 posts
• 16:3 : RaccoonLine Shares Technical Overview of VLESS Protocol in New Engineering Explainer
• 16:3 : Canvas Breach Hackers Reach Deal After Claiming 275M Records Stolen
• 16:3 : Hackers Claim 11M Files Stolen From Foxconn, Supplier to Apple and Nvidia
• 16:3 : Ransomware hackers claim breach at Foxconn, a major electronics manufacturer for Apple, Google, and Nvidia
• 16:3 : Defender’s Guide to the Frontier AI Impact on Cybersecurity: May 2026 Update
• 16:3 : Foxconn Confirms Cyberattack After Nitrogen Ransomware Gang Claim
• 16:3 : How Top SOCs and MSSPs Prevent Phishing Incidents Missed by Email Filters
• 16:3 : AI Deepfake Scam Changes Aadhaar Mobile Without OTP
• 16:2 : OpenAI launches Daybreak to combat cyber threats
• 15:32 : TeamPCP Used Mini Shai-Hulud Worm to Poison Over 400 npm and PyPI Packages
• 15:32 : NVIDIA NemoClaw Research Highlights AI Sandbox Exfiltration Risks
• 15:32 : Security In The AI Era: Why Compliance, Infrastructure, And Platform Security Must Converge
• 15:32 : Innovator Spotlight: Axonius
• 15:32 : Innovator Spotlight: Iru
• 15:32 : Synthetic Identity Fraud Requires An Equal Focus On Biometrics And Document Verification
• 15:32 : The Board Is Asking The Wrong Security Question
• 15:32 : AI Chatbot Training Raises Growing Privacy and Data Security Concerns
• 15:32 : WhatsApp adds Incognito Chat for private Meta AI conversations
• 15:6 : US lawmakers demand answers from Instructure after Canvas data breaches
• 15:6 : New quantum algorithm solves “impossible” materials problem in seconds
• 15:6 : Quantum breakthrough could revolutionize teleportation and computing
• 15:6 : Sweet Security Launches Agentic AI Red Teaming to Counter ‘Mythos Moment’
• 14:32 : WhatsApp Adds Meta AI Chats That Are Built to Be Fully Private
• 14:32 : Quest KACE SMA flaw CVE-2025-32975: when one unpatched tool opens the door to 60 organizations
• 14:32 : Fragnesia Linux Vulnerability Let Attackers Gain Root Privileges – PoC Released
• 14:32 : Workplace Apps May Be Selling Employee Data Without Consent, Study Warns
• 14:32 : 22 Year Old Developer Reverse Engineered Code in Claude Mythos, Tech Industry Shocked
• 14:32 : Canvas Owner Reaches Agreement With Cybercriminals After Ransomware Attack
• 14:32 : Cyber Briefing: 2026.05.13
• 14:3 : Texas sued Netflix over claims it secretly collected and sold users’ data
• 14:2 : Webinar Today: ROI for Cyber-Physical Security Programs
• 14:2 : Azerbaijani Energy Firm Hit by Repeated Microsoft Exchange Exploitation
• 14:2 : Microsoft’s MDASH AI System Finds 16 Windows Flaws Fixed in Patch Tuesday
• 14:2 : Avada Builder Flaws Expose One Million WordPress Sites
• 14:2 : Canvas owner reaches ‘agreement’ with threat actors after data breach
• 13:32 : When the Ransomware Gang Gets Hacked: What the Gentlemen Leak Reveals About Modern Ransomware Risk
• 13:32 : Tuskira’s Kairo exposes hidden AI-driven breach paths
• 13:32 : Signal responds to phishing attacks with new in-app security warnings
• 13:5 : IT Security News Hourly Summary 2026-05-13 15h : 10 posts
• 13:2 : CISO’s guide: How to test an incident response plan
• 13:2 : From WarGames to Cyberwar
• 13:2 : Apricorn hardens ASK3 encrypted USB drive for extreme conditions
• 12:32 : Slovakian Admin of Dark Web Kingdom Market Jailed for 16 Years in US
• 12:32 : Government to Scrutinize Instructure Over Canvas Disruption, Data Breach
• 12:32 : Microsoft Patches 138 Vulnerabilities, Including DNS and Netlogon RCE Flaws
• 12:32 : Most Remediation Programs Never Confirm the Fix Actually Worked
• 12:32 : [Webinar] Why Your AppSec Tools Miss the “Lethal Path” (and How to Fix It)
• 12:32 : Ransomware: Over Half of CISOs Would Consider Paying Ransom to Hackers
• 12:32 : 2026 CSO Award winners showcase cyber innovation
• 11:32 : Instructure settles with hackers following massive student data theft
• 11:32 : OpenAI’s GPT-5.5 is as Good as Mythos at Finding Security Vulnerabilities
• 11:32 : iOS 26.5 Brings End-to-end Encrypted RCS Messaging Between iPhone and Android
• 11:32 : Critical SandboxJS Escape Vulnerability Enables Host Takeover
• 11:32 : ClickFix Evolves with 10-Year-Old Open-Source Python SOCKS5 Proxy
• 11:32 : May 2026 Patch Tuesday: no zero-days but plenty to fix
• 11:32 : 716,000 Impacted by OpenLoop Health Data Breach
• 11:32 : KDE gets over €1 million investment to strengthen security and core infrastructure
• 11:3 : Microsoft Patches Critical Zero-Click Outlook Vulnerability Threatening Enterprises
• 11:3 : Microsoft’s agentic security system found four critical Windows RCE flaws
• 11:3 : Global Cyber Agencies Issue New SBOMs for AI Guidance to Tackle AI Supply Chain Risks
• 10:32 : Why Canadian Telecom Providers Are Prime Targets for Cyberattacks
• 10:5 : IT Security News Hourly Summary 2026-05-13 12h : 9 posts
• 10:3 : Breaking things to keep them safe with Philippe Laulheret
• 10:3 : Meta Loses Appeal Over News Licensing In Top EU Court
• 10:3 : Fortinet, Ivanti Patch Critical Vulnerabilities
• 9:32 : Amazon Staff Automate Needless Tasks To Inflate AI Use
• 9:32 : ClickFix Evolves Using Decade-Old Open-Source Python SOCKS5 Proxy
• 9:32 : Google Enhances Android Mobile Security with New AI-Powered Protections
• 9:32 : New Exim BDAT GnuTLS Vulnerability Enables Code Execution Attacks
• 9:32 : GemStuffer Abuses 150+ RubyGems to Exfiltrate Scraped U.K. Council Portal Data
• 9:32 : UK Cybersecurity Market Expands to £14.7bn with Strong Growth in AI Security Firms
• 9:2 : Anthropic Raising $30bn At $900bn Valuation
• 9:2 : Chipmaker Patch Tuesday: Intel and AMD Patch 70 Vulnerabilities
• 8:32 : Waymo Apologises After Waking Up London Residents
• 8:32 : Ransomware Gangs Use BYOVD and EDR Killers to Disable Security Tools
• 8:32 : Canada Life – 237,810 breached accounts
• 8:32 : Microsoft Fixes 17 Critical Flaws in May Patch Tuesday
• 8:3 : Canvas Developer Pays Hacking Gang To Delete Data
• 8:2 : Infostealer Malware Fuels Corporate Breaches From Personal Devices
• 8:2 : Android Adds Intrusion Logging for Sophisticated Spyware Forensics
• 7:32 : EU President Calls For Youth Social Media ‘Delay’
• 7:32 : Critical Fortinet vulnerabilities fixed in FortiSandbox and FortiAuthenticator
• 7:32 : Top 10 Best Data Loss Prevention Software in 2026
• 7:32 : Microsoft Releases Cumulative Update for Windows 11, Version 25H2 and 24H2
• 7:32 : Hundreds of Malicious Packages Force RubyGems to Suspend Registrations
• 7:32 : Versa CSPM brings continuous visibility to cloud risk and compliance exposure
• 7:32 : Instructure’s agreement, Shai Hulud campaign, OpenAI’s Daybreak
• 7:5 : IT Security News Hourly Summary 2026-05-13 09h : 9 posts
• 7:2 : US Tech Firms Push White House Over EU Product Liability Rules
• 7:2 : Texas Sues Netflix Over Data Collection, Addictive Design
• 7:2 : eBay Rejects Surprise GameStop Takeover Bid
• 7:2 : Q1 2026 Ransomware Attacks Hits 2,122 Orgs Amid Fewer, More Impactful Groups
• 7:2 : ICS Patch Tuesday: New Security Advisories From Siemens, Schneider, CISA
• 6:32 : [GUEST DIARY] Tearing apart website fraud to see how it works., (Wed, May 13th)
• 6:32 : Google Reports Confirmed First AI-Generated Zero-Day Exploit Used
• 6:32 : Malware crew TeamPCP open-sources its Shai-Hulud worm on GitHub
• 6:31 : NetSPI AI-powered Continuous Pentesting identifies high-impact vulnerabilities
• 6:2 : Fake FinalShell and Xshell Sites Push Kong RAT Malware
• 6:2 : The evolution of cyber risk: Addressing geopolitical threats
• 6:2 : Sandyaa: Open-source autonomous security bug hunter
• 5:32 : The hidden risk of non-human identities in AI adoption
• 5:2 : Researchers open-source a Wi-Fi cyber range for security training
• 4:32 : Microsoft Teams Vulnerability Allows Hackers to Perform Spoofing Attacks
• 4:32 : Canvas Breach ‘Deal’ With ShinyHunters, AI Zero-Day Warning, Checkmarx Hit Again
• 4:5 : IT Security News Hourly Summary 2026-05-13 06h : 3 posts
• 4:2 : Vietnam to develop domestic cloud so it can ditch risky overseas operators for government workloads
• 4:2 : Android pushes new scam, theft, and AI protections in 2026 update wave
• 3:31 : ISC Stormcast For Wednesday, May 13th, 2026 https://isc.sans.edu/podcastdetail/9930, (Wed, May 13th)
• 2:31 : The path to zero trust: Bridging the gap between AI development and OpSec
• 1:32 : Proxying the Unproxyable? Sending EXE traffic to a Proxy, (Wed, May 13th)
• 0:2 : Doozy of a Patch Tuesday includes 30 critical Microsoft CVEs
• 0:2 : Accelerating detection engineering using AI-assisted synthetic attack logs generation
• 23:3 : Defense at AI speed: Microsoft’s new multi-model agentic security system finds 16 new vulnerabilities
• 23:3 : Fedora Hummingbird brings the container security model to a Linux host OS
• 22:5 : IT Security News Hourly Summary 2026-05-13 00h : 7 posts
• 22:4 : Patch Tuesday, May 2026 Edition
• 22:4 : Foxconn Ransomware Attack Shows Nothing Is Safe Forever
• 22:4 : Foxconn confirms cyberattack after ransomware crew claims it stole confidential Apple, Nvidia files
• 22:4 : AWS Security Agent full repository code scanning feature now available in preview
• 21:55 : IT Security News Daily Summary 2026-05-12