Flipper Devices has officially unveiled Flipper One, a modular, Linux-based cyberdeck designed to push the boundaries of open hardware and portable network analysis platforms. Unlike the popular Flipper Zero, the new device targets high-performance networking, software-defined radio (SDR), and embedded Linux…
The new economics of fraud: Cheaper, faster, more convincing
Scams have become one of the fastest-growing consumer risks, driven by AI-enabled impersonation, social engineering, and sophisticated attack methods, according to Visa’s Spring 2026 Biannual Threats Report. Criminals redirect efforts toward trust and third parties Fraud involves behavioral manipulation, fragmented…
New infosec products of the week: May 22, 2026
Here’s a look at the most interesting products from the past week, featuring releases from ASAPP, Babel Street, CTERA, Forward, Riverbed, and Trust3 AI. Babel Street targets AI-driven threats with new agentic investigation capabilities Babel Street has launched Insights Investigator,…
IT Security News Hourly Summary 2026-05-22 06h : 2 posts
2 posts were published in the last hour 4:4 : Discord Announces End-to-End Encryption by Default for Video and Voice Messages 4:4 : Google Navigates EU Regulatory Pressure With Search Policy Shift
Megalodon Malware Compromised 5,500+ GitHub Repos Within 6 Hours
A sweeping automated supply chain attack codenamed “Megalodon” struck GitHub on May 18, 2026, injecting malicious CI/CD backdoors into over 5,500 repositories in less than six hours, marking one of the most aggressive GitHub Actions poisoning campaigns ever recorded. SafeDep…
Discord Announces End-to-End Encryption by Default for Video and Voice Messages
Discord has officially rolled out end-to-end encryption (E2EE) for all voice and video communications across its platform, marking a major milestone in secure real-time communication. The feature, now enabled by default as of March 2026, applies to direct messages, group…
Google Navigates EU Regulatory Pressure With Search Policy Shift
A growing regulatory backlash against search ranking practices has forced Alphabet’s Google to reevaluate portions of its spam enforcement framework in response to criticism by digital publishers in Europe. Reuters has reviewed a document from the European Commission that…
ISC Stormcast For Friday, May 22nd, 2026 https://isc.sans.edu/podcastdetail/9942, (Fri, May 22nd)
This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from SANS Internet Storm Center, InfoCON: green Read the original article: ISC Stormcast For Friday, May 22nd, 2026…
TAX#TRIDENT Campaign Spreads Windows Malware
A new malware campaign targeting Windows users has been identified, using fraudulent Indian Income Tax assessment pages to deliver malicious payloads. This article has been indexed from CyberMaterial Read the original article: TAX#TRIDENT Campaign Spreads Windows Malware
Russia hacks Bluesky accounts to spread Ukraine disinformation
Russian state-linked hackers have compromised hundreds of accounts on the Bluesky social media platform to spread disinformation targeting Ukraine, according to research from Clemson University and internet monitoring group dTeam. This article has been indexed from CyberMaterial Read the original…
Trust3 AI launches MCP Security for AI agents
Trust3 AI has introduced MCP Security, a new product targeting security risks in enterprise deployments of AI agents. This article has been indexed from CyberMaterial Read the original article: Trust3 AI launches MCP Security for AI agents
Kimwolf botnet admin arrested in Canada
Canadian national Jacob Butler, 23, was arrested Wednesday in Ottawa on charges of administering Kimwolf, one of the largest distributed denial-of-service (DDoS) botnets ever documented. This article has been indexed from CyberMaterial Read the original article: Kimwolf botnet admin arrested…
Web devs fear AI job displacement in new survey
Nearly half of web developers surveyed express fear that artificial intelligence will displace their jobs, according to the second “State of Web Dev AI” survey conducted by Devographics. This article has been indexed from CyberMaterial Read the original article: Web…
Dems slam Trump for making cybersecurity hold out the tin cup while splurging on ballroom and Jan. 6 ‘slush fund’
‘Budgets are moral documents,’ Rep. Delia Ramirez said This article has been indexed from www.theregister.com – Articles Read the original article: Dems slam Trump for making cybersecurity hold out the tin cup while splurging on ballroom and Jan. 6 ‘slush…
IT Security News Hourly Summary 2026-05-22 00h : 7 posts
7 posts were published in the last hour 22:3 : New Verizon Report Reveals the Security Gap Attackers Are Exploiting Most 22:3 : Alleged Kimwolf Botmaster ‘Dort’ Arrested, Charged in U.S. and Canada 22:3 : ‘Creepy’ Listening Tool for Targeted…
New Verizon Report Reveals the Security Gap Attackers Are Exploiting Most
Verizon’s 2026 DBIR shows vulnerability exploitation, AI-enabled attacks, third-party risk, and ransomware are reshaping cyber threats. The post New Verizon Report Reveals the Security Gap Attackers Are Exploiting Most appeared first on TechRepublic. This article has been indexed from Security…
Alleged Kimwolf Botmaster ‘Dort’ Arrested, Charged in U.S. and Canada
Canadian authorities on Wednesday arrested a 23-year-old Ottawa man on suspicion of building and operating Kimwolf, a fast spreading Internet-of-Things botnet that enslaved millions of devices for use in a series of massive distributed denial-of-service (DDoS) attacks over the past…
‘Creepy’ Listening Tool for Targeted Ads Didn’t Actually Work, FTC Says
Three firms will pay nearly $1 million for selling “Active Listening” technology that they claimed tapped people’s phones for advertising. The FTC alleges the “tech” was just pricey email lists. This article has been indexed from Security Latest Read the…
Imperva Customers Protected Against CVE-2026-9082 in Drupal Core
TL;DR: CVE-2026-9082 is a highly critical SQL injection vulnerability in Drupal core that can be exploited by unauthenticated users against Drupal sites using PostgreSQL. The vulnerability affects Drupal’s database abstraction API and can allow specially crafted requests to trigger arbitrary…
IT Security News Daily Summary 2026-05-21
169 posts were published in the last hour 21:32 : Decentralized Threat: Stealthy P2P Cryptominer Targeting Ollama Endpoints 21:32 : U.S. CISA adds Microsoft and Adobe flaws to its Known Exploited Vulnerabilities catalog 21:2 : Indian Student Data Weaponized for…
Decentralized Threat: Stealthy P2P Cryptominer Targeting Ollama Endpoints
The Akamai SIRT uncovered a custom P2P Trojan masquerading as system activity. Learn how to detect and mitigate this stealthy Go-based cryptominer. This article has been indexed from Blog Read the original article: Decentralized Threat: Stealthy P2P Cryptominer Targeting Ollama…
U.S. CISA adds Microsoft and Adobe flaws to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Microsoft and Adobe flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Windows Shell and ConnectWise ScreenConnect flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below…
Indian Student Data Weaponized for Phishing, Social Engineering, and Financial Fraud
India’s education sector is now at the center of a growing cybercrime storm. Millions of students across the country are being targeted by threat actors who have turned personal academic data into a weapon for phishing, social engineering, and direct…
Fake Invitation Phishing Campaign Targets U.S. Organizations With Credential Theft
A large-scale phishing campaign is actively targeting U.S. organizations, using fake event invitations as bait to steal login credentials, intercept one-time passwords, or install remote access tools. The operation has been running since at least December 2025, with researchers tracking…