IT Security News Daily Summary 2026-05-14

174 posts were published in the last hour

• 21:32 : Chinese APT Hackers Exploit Microsoft Exchange to Breach Energy Sector Network
• 21:32 : Sandworm Hackers Pivot From Compromised IT Systems Toward Critical OT Assets
• 21:32 : Innovator Spotlight: Radware
• 21:32 : Innovator Spotlight: Klever Compliance
• 21:2 : Regional routing for AWS access portals: Implementing custom vanity domains for IAM Identity Center
• 19:32 : The “Zombie API” Attack: Why Your Old Integrations Are Your Biggest Security Risk
• 19:32 : U.S. CISA adds a flaw in Cisco Catalyst SD-WAN  to its Known Exploited Vulnerabilities catalog
• 19:32 : Critical Canon MailSuite Vulnerability Enables Remote Code Execution Attacks
• 19:32 : Hackers Compromise 170 npm Packages to Steal GitHub, npm, AWS, and Kubernetes Secrets
• 19:32 : Anthropic’s Mythos AI Reportedly Found macOS Vulnerabilities that Could Bypass Apple Security
• 19:32 : node-ipc npm Package with 822K Weekly Downloads Compromised in Supply Chain Attack
• 19:32 : New Malware Framework Enables Screen Control, Browser Artifact Access, and UAC Bypass
• 19:5 : IT Security News Hourly Summary 2026-05-14 21h : 4 posts
• 19:2 : Stealer Backdoor Found in 3 Node-IPC Versions Targeting Developer Secrets
• 19:2 : Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited to Gain Admin Access
• 18:32 : Wordfence Intelligence Weekly WordPress Vulnerability Report (May 4, 2026 to May 10, 2026)
• 18:32 : Linux Kernel bug Fragnesia allows local root access attacks
• 18:2 : The time of much patching is coming
• 18:2 : Innovator Spotlight: JScrambler
• 17:32 : Fake Job Interview Apps Drop JobStealer Malware on Windows and macOS
• 17:32 : ThreatsDay Bulletin: PAN-OS RCE, Mythos cURL Bug, AI Tokenizer Attacks, and 10+ Stories
• 17:3 : Defense in depth for autonomous AI agents
• 16:34 : Ongoing exploitation of Cisco Catalyst SD-WAN vulnerabilities
• 16:33 : Beyond Algorithms: The Human Element in AI-Driven Cybersecurity
• 16:33 : OpenAI says hackers stole some data after latest code security issue
• 16:33 : Broadcom releases VMware Fusion security update for root access bug
• 16:33 : Upcoming Speaking Engagements
• 16:33 : Dell Support assist Updates Forces Windows Systems to BSOD Loop
• 16:33 : New Critical Exim Mailer Allows Remote Attacker to Execute Arbitrary Code
• 16:32 : Amazon Quick Bug Exposed AI Chat Agents to Users Blocked by Custom Permissions
• 16:32 : Axon Police Taser and Body Camera Bluetooth Flaw Raises Officer Tracking Concerns
• 16:32 : How Telecom Systems Were Used to Secretly Track Mobile Users Worldwide
• 16:32 : Kazuar: Anatomy of a nation-state botnet
• 16:32 : Automating post-quantum cryptography readiness using AWS Config
• 16:32 : More money is going to physical security, but it’s often CISOs that oversee it: EY
• 16:5 : IT Security News Hourly Summary 2026-05-14 18h : 5 posts
• 16:2 : Using Bedrock with Claude Code? Your AWS Credentials Are Shared With Every Subprocess
• 16:2 : Frontier AI models reap rapid discovery of security vulnerabilities
• 15:32 : How Fintech APIs Are Modernizing Business Cash Flow Management
• 15:32 : West Pharmaceutical starts restoring operations after ransomware attack
• 15:27 : Fraud Signals, Not Silver Bullets: Where VPN Detection Actually Works
• 15:3 : Apple’s iPhone Privacy Feature Expands to More Users Worldwide
• 15:3 : Siemens Ruggedcom Rox
• 15:3 : Siemens SIMATIC
• 15:3 : Siemens gWAP
• 15:3 : Siemens Siemens ROS#
• 15:3 : Microsoft Research Shows AI Can Generate Realistic Command Lines and Process Telemetry
• 15:3 : When configuration becomes a vulnerability: Exploitable misconfigurations in AI apps
• 15:3 : Fragnesia: New Linux kernel LPE bug was spawned by Dirty Frag patch (CVE-2026-46300)
• 15:3 : Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike
• 15:2 : Mustang Panda Linked to Updated FDMTP Backdoor in Asia-Pacific Espionage Campaign
• 14:32 : The Internet Has a Front Door — The Edge Is Now Intelligent
• 14:32 : A spyware investigator exposed Russian government hackers trying to hijack Signal accounts
• 14:32 : NGINX Rift: an 18-year-old flaw in the world’s most deployed web server just came to light
• 14:32 : Enhancing Data Center Security Without Sacrificing Performance
• 14:32 : Critical Exim Flaw Exposes Email Servers to Remote Code Execution Risk
• 14:32 : Hackers Exploit Telegram Mini Apps, Distribute Malware and Crypto Scams
• 14:2 : Cisco cuts nearly 4,000 jobs to spend more on AI, reports ‘record quarterly revenue’
• 14:2 : New Linux Kernel Vulnerability Fragnesia Allows Root Privilege Escalation
• 14:2 : HYCU aiR detects insider risk and AI activity from backups
• 13:36 : Sandworm Hackers Shift From IT Breaches to Critical OT Targets
• 13:36 : Critical WordPress Plugin Flaw Allows Unauthorized Access to Websites
• 13:36 : TeamPCP, BreachForums Launch $1K Supply-Chain Attack Contest
• 13:35 : Google Launches Android Spyware Forensics Tool for High-Risk Users
• 13:5 : LABScon25 Replay | Breach Alpha: Trading on Cyber Fallout
• 13:5 : Windows DNS Client Security Flaw Exposes Systems to Remote Code Execution
• 13:5 : Before the First Whistle: How Cyber Criminals Are Targeting World Cup 2026
• 13:5 : Akamai to Acquire AI and Browser Security Firm LayerX for $205 Million
• 13:5 : Mythos Proves Potent in Vulnerability Discovery, Less Convincing Elsewhere
• 13:5 : IT Security News Hourly Summary 2026-05-14 15h : 19 posts
• 13:5 : New Fragnesia Flaw Hands Linux Local Users Root Access
• 13:4 : Cyber Briefing: 2026.05.14
• 12:35 : FamousSparrow Targeted Oil and Gas Industry via MS Exchange Server Exploit
• 12:35 : Chinese APT Exploits Microsoft Exchange to Breach Energy Sector Network
• 12:35 : Palo Alto PAN-OS 0-Day Exploited to Execute Arbitrary Code With Root Privileges on Firewalls
• 12:35 : Hackers Abuse Legitimate HWMonitor Binary to Load Malicious DLL Payload
• 12:35 : Critical GitLab Vulnerabilities Enables XSS and Unauthenticated DoS Attacks
• 12:35 : Chinese APTs Expand Targets, Update Backdoors in Recent Campaigns
• 12:34 : Cofense adds AI-powered campaign detection to stop phishing attacks
• 12:34 : Foxconn confirms factory attacks, BitLocker zero-day accesses protected drives, MDASH patches Windows flaws
• 12:34 : Canadian Telecom Providers Face Cyber Threats
• 12:34 : Atrium Health, Interim HealthCare Hit by Vendor Breaches
• 12:34 : CISA releases AI SBOM guidance for supply-chain oversight
• 12:34 : UK Cyber Sector Grows to £14.7bn as Resilience Bill Advances
• 12:34 : Cisco cuts 4,000 jobs, prioritizes AI and security
• 12:6 : Critical Exim Mailer Flaw Enables Remote Code Execution Attacks
• 12:6 : New Malware Framework Enables Screen Control and UAC Bypass
• 12:6 : How AI Hallucinations Are Creating Real Security Risks
• 12:5 : PraisonAI CVE-2026-44338 Auth Bypass Targeted Within Hours of Disclosure
• 11:34 : Canon MailSuite Security Flaw Allows Attackers to Execute Code Remotely
• 11:34 : Kimsuky targets organizations with PebbleDash-based tools
• 11:34 : How Dangerous Is Anthropic’s Mythos AI?
• 11:34 : What to do when your AI’s guardrails fail
• 11:34 : OpenAI Hit with Class-Action Privacy Lawsuit for Sharing ChatGPT Data with Google and Meta
• 11:34 : Lyrie.ai Launches the Global Identity Standard for the AI Agent Age & Anthropic’s Cyber Verification Program
• 11:34 : Cops arrest man suspected of being Dream Market kingpin
• 11:34 : G7 Countries Release AI SBOM Guidance
• 11:3 : China-Linked Twill Typhoon Uses Fake Apple and Yahoo Sites for Espionage
• 11:3 : 170 npm Packages Hijacked to Steal GitHub, AWS & Kubernetes Secrets
• 11:3 : Why Malwarebytes blocks some Yahoo Mail redirects
• 11:2 : F5 Patches Over 50 Vulnerabilities
• 11:2 : Microsoft’s WinUI agent plugin trims token use by over 70% during development
• 10:32 : Microsoft Research: AI Can Generate Realistic Command-Line and Process Telemetry
• 10:32 : Foxconn confirms cyberattack following Nitrogen ransomware claims
• 10:32 : Microsoft patches 138 vulnerabilities as AI-driven discovery accelerates
• 10:32 : Q&A: Why Vulnerability Scans Are Giving Businesses a False Sense of Security
• 10:32 : April 2026 Cyber Attacks Statistics
• 10:32 : Dirty Frag gets a sequel as Fragnesia hands Linux attackers root-level access
• 10:32 : Microsoft turns Copilot Studio into an AI agent control center
• 10:32 : Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation
• 10:5 : IT Security News Hourly Summary 2026-05-14 12h : 17 posts
• 10:3 : US Judge Challenges SEC, Musk Over Twitter Settlement
• 10:3 : Lyrie.ai Unveils Open Standard for Agent Security and Joins Anthropic’s Cyber Verification Program
• 10:2 : Amazon Quick Security Flaw Allowed Restricted Users to Access AI Chat Agents
• 10:2 : Your iPhone Gets Stolen. Then the Hacking Begins
• 10:2 : Hackers Targeted PraisonAI Vulnerability Hours After Disclosure
• 10:2 : AI cyber capability is speeding past earlier projections
• 9:32 : BYD Adds Fast Charging To International EV Models
• 9:32 : Hackers Hijack HWMonitor to Sideload Malicious DLL
• 9:32 : GitLab Security Flaw Allows Cross-Site Scripting and Unauthenticated DoS
• 9:32 : FamousSparrow targets Azerbaijani energy sector in multi-wave espionage campaign
• 9:32 : Critical 18-Year-Old NGINX Vulnerability Enables Remote Code Execution Attacks
• 9:32 : Windows DNS Client Vulnerability Enables Remote Code Execution Attacks
• 9:32 : Seedworm APT Abuses Signed Fortemedia and SentinelOne Binaries for DLL Sideloading
• 9:32 : Packagist Urges Immediate Composer Update After GitHub Actions Token Leak
• 9:32 : Langflow CVE-2026-33017 Exploited to Steal AWS Keys and Deploy NATS Worker
• 9:32 : Deepfake sextortion forces schools to remove student photos from websites
• 9:32 : Most Organizations Now Use AI Agents for Sensitive Security Tasks
• 9:3 : Mistral Pitches Security-Focused AI As Mythos Alternative
• 9:3 : High-Severity Vulnerability Patched in VMware Fusion
• 8:32 : UK AI Chip Start-Up Fractile Raises $220m
• 8:2 : Met Police Arrest 173 In Live Facial Recognition Trial
• 8:2 : PoC Released for 18-Year-Old NGINX Flaw Allowing Remote Code Execution
• 8:2 : Langflow CVE-2026-33017 Exploited to Steal AWS Keys, Deploy NATS Worker
• 8:2 : CERN’s open source KiCad library gives the world 17,000 circuit board components
• 8:2 : New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption
• 7:33 : Waymo Issues Recall After Car Drives Into Flooded Road
• 7:33 : Packagist Warns: Update Composer Now After GitHub Actions Token Leak
• 7:33 : Nitrogen Ransomware claims massive data theft from Foxconn
• 7:33 : The Gentlemen RaaS Leverages Fortinet and Cisco Edge Devices for Initial Access
• 7:33 : Critical MongoDB Vulnerability Allow Attackers to Execute Arbitrary Code
• 7:32 : Critical 18-Year-Old NGINX Vulnerability Enables Remote Code Execution Attacks – PoC Released
• 7:32 : Researcher Drops YellowKey, GreenPlasma Windows Zero-Days
• 7:5 : IT Security News Hourly Summary 2026-05-14 09h : 6 posts
• 7:2 : Foxconn US Plant Hit By Data-Theft Hack
• 7:2 : To gain root access at this company, all an intruder had to do was ask nicely
• 7:2 : 18-Year-Old NGINX Rewrite Module Flaw Enables Unauthenticated RCE
• 6:32 : Simple bypass of the link preview function in Outlook Junk folder, (Thu, May 14th)
• 6:32 : Gentlemen RaaS Exploits Fortinet and Cisco Edge Devices for Initial Access
• 6:32 : AI models are getting better at replacing cybersecurity pros on certain tasks
• 6:2 : Vector embedding security gap exposes enterprise AI pipelines
• 5:32 : PoC Exploit Released for Fragnesia Linux Flaw Enabling Root Access
• 5:32 : Foxconn Hit by Cyberattack, Nitrogen Ransomware Gang Claims Involvement
• 5:32 : Abrigo – 711,099 breached accounts
• 5:32 : Closing the AI governance gap in your enterprise
• 5:3 : Windows BitLocker 0-Day Vulnerability Exposes Encrypted Drives to Unauthorized Access
• 5:3 : Seedworm APT Abuses Signed Binaries for DLL Sideloading
• 5:2 : Windows BitLocker 0-Day Vulnerability Enables Access to Encrypted Drives
• 5:2 : Over 70% of organizations hit by identity breaches
• 4:32 : ISC Stormcast For Thursday, May 14th, 2026 https://isc.sans.edu/podcastdetail/9932, (Thu, May 14th)
• 4:32 : Machine identities outnumber humans 109 to 1
• 4:5 : IT Security News Hourly Summary 2026-05-14 06h : 2 posts
• 4:5 : Cisco to fire 4,000 staff and generously give them free training – on Cisco
• 4:4 : Maryland’s New Grocery Pricing Rules Leave Critics Unconvinced
• 4:4 : Automated OAuth Abuse by ConsentFix v3 Raises Azure Security Concerns
• 1:5 : IT Security News Hourly Summary 2026-05-14 03h : 2 posts
• 1:2 : TeamPCP Claims Sale of Mistral AI Repositories Amid Mini Shai-Hulud Attack
• 0:32 : Analyzing TeamPCP’s Supply Chain Attacks: Checkmarx KICS and elementary-data in CI/CD Credential Theft
• 23:32 : Welcome to the vulnpocalypse, as vendors use AI to find bugs and patches multiply like rabbits
• 23:2 : This is what some of the world’s largest banks of malware look like stacked as hard drives
• 23:2 : AWS to Quick admins: The access control didn’t work, but you weren’t using it anyway, so what’s the problem?
• 22:7 : Detecting and preventing crypto mining in your AWS environment
• 22:5 : IT Security News Hourly Summary 2026-05-14 00h : 2 posts
• 21:55 : IT Security News Daily Summary 2026-05-13