A serious security flaw has been found in Exim, one of the most widely deployed mail transfer agents on the internet today. The vulnerability, tracked as EXIM-Security-2026-05-01.1, allows a remote attacker to corrupt server memory and potentially execute malicious code…
GemStuffer Abuses 150+ RubyGems to Exfiltrate Scraped U.K. Council Portal Data
Cybersecurity researchers are calling attention to a new campaign dubbed GemStuffer that has targeted the RubyGems repository with more than 150 gems that use the registry as a data exfiltration channel rather than for malware distribution. “The packages do not…
UK Cybersecurity Market Expands to £14.7bn with Strong Growth in AI Security Firms
UK cybersecurity sector reaches £14.7bn in revenue, driven by rapid growth in AI security firms, increased investment and rising employment across the industry This article has been indexed from www.infosecurity-magazine.com Read the original article: UK Cybersecurity Market Expands to £14.7bn…
Anthropic Raising $30bn At $900bn Valuation
Anthropic reportedly in talks with investors to raise at least $30bn of new funding at valuation of more than $900bn, surpassing OpenAI This article has been indexed from Silicon UK Read the original article: Anthropic Raising $30bn At $900bn Valuation
Chipmaker Patch Tuesday: Intel and AMD Patch 70 Vulnerabilities
The two chip giants have published over two dozen advisories describing recently identified security defects. The post Chipmaker Patch Tuesday: Intel and AMD Patch 70 Vulnerabilities appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…
Waymo Apologises After Waking Up London Residents
Noise from driverless cars operated by Google sister company woke up residents of cul-de-sac at 4 a.m. several times last week This article has been indexed from Silicon UK Read the original article: Waymo Apologises After Waking Up London Residents
Ransomware Gangs Use BYOVD and EDR Killers to Disable Security Tools
Ransomware is evolving faster than many defenses can keep up. In 2026, attackers are no longer just encrypting files they are systematically dismantling security tools, stealing sensitive data, and even preparing for a post-quantum future. Despite a slight global decline…
Canada Life – 237,810 breached accounts
In April 2026, Canada Life was the victim of a “pay or leak” extortion campaign by the ShinyHunters group. The group subsequently published the data which contained over 200k unique email addresses along with names, phone numbers, physical addresses and,…
Microsoft Fixes 17 Critical Flaws in May Patch Tuesday
Microsoft has patched 120 vulnerabilities in this month’s security update round This article has been indexed from www.infosecurity-magazine.com Read the original article: Microsoft Fixes 17 Critical Flaws in May Patch Tuesday
Canvas Developer Pays Hacking Gang To Delete Data
Infrastructure, developer of hacked Canvas educational software, says it reached ‘agreement’ with gang after incident disrupts exams This article has been indexed from Silicon UK Read the original article: Canvas Developer Pays Hacking Gang To Delete Data
Infostealer Malware Fuels Corporate Breaches From Personal Devices
Infostealer malware is no longer just a consumer nuisance it has become a direct bridge between personal device infections and full-scale enterprise breaches. Once these credentials are harvested and posted on dark web forums, attackers gain immediate footholds into corporate…
Android Adds Intrusion Logging for Sophisticated Spyware Forensics
Google on Tuesday unveiled a new opt-in Android feature called Intrusion Logging for storing forensic logs to better analyze sophisticated spyware attacks. Intrusion Logging, available as part of Advanced Protection Mode, enables “persistent and privacy-preserving forensics logging to allow for…
EU President Calls For Youth Social Media ‘Delay’
European Commission president Ursula von der Leyen calls for action on ‘addictive’ social media, suggests proposal within weeks This article has been indexed from Silicon UK Read the original article: EU President Calls For Youth Social Media ‘Delay’
Critical Fortinet vulnerabilities fixed in FortiSandbox and FortiAuthenticator
Fortinet patched critical flaws in FortiSandbox and FortiAuthenticator that could let attackers remotely execute code on unpatched systems. Fortinet addressed two critical vulnerabilities affecting FortiSandbox and FortiAuthenticator. The flaws could allow attackers to execute arbitrary commands or code on unpatched…
Top 10 Best Data Loss Prevention Software in 2026
In 2026, data is the undisputed lifeblood of the modern enterprise. As organizations shift completely to decentralized, multi-cloud architectures, the challenge of securing sensitive information—such as Intellectual Property (IP), Personally Identifiable Information (PII), and Protected Health Information (PHI)—has grown exponentially.…
Microsoft Releases Cumulative Update for Windows 11, Version 25H2 and 24H2
Microsoft pushed out a significant cumulative update for Windows 11 on May 12, 2026, covering both version 25H2 and version 24H2. The update, identified as KB5089549, brings OS Builds 26200.8457 and 26100.8457 to users running these versions. It bundles the…
Hundreds of Malicious Packages Force RubyGems to Suspend Registrations
More than 500 packages were pushed during the attack, but the target appears to have been RubyGems itself rather than users. The post Hundreds of Malicious Packages Force RubyGems to Suspend Registrations appeared first on SecurityWeek. This article has been…
Versa CSPM brings continuous visibility to cloud risk and compliance exposure
Versa has announced Versa Cloud Security Posture Management (CSPM), extending the VersaONE Universal SASE Platform to provide continuous visibility, prioritization, and remediation of cloud risk across environments. With CSPM, Versa combines secure access protection and cloud posture risk on a…
Instructure’s agreement, Shai Hulud campaign, OpenAI’s Daybreak
Instructure reaches an “agreement” with ShinyHunters Shai Hulud campaign is back OpenAI launches Daybreak Get the show notes here: https://cisoseries.com/cybersecurity-news-instructures-agreement-shai-hulud-campaign-openais-daybreak/ Huge thanks to our episode sponsor, Doppel Social engineering attacks look trustworthy — a routine request, an internal email, a…
IT Security News Hourly Summary 2026-05-13 09h : 9 posts
9 posts were published in the last hour 7:2 : US Tech Firms Push White House Over EU Product Liability Rules 7:2 : Texas Sues Netflix Over Data Collection, Addictive Design 7:2 : eBay Rejects Surprise GameStop Takeover Bid 7:2…
US Tech Firms Push White House Over EU Product Liability Rules
US tech companies urge Trump administration to put pressure on EU over regulations that could expose them to lawsuits This article has been indexed from Silicon UK Read the original article: US Tech Firms Push White House Over EU Product…
Texas Sues Netflix Over Data Collection, Addictive Design
Texas attorney general sues streaming platform over data collection, ad targeting practices, saying autoplay encourages addictiveness This article has been indexed from Silicon UK Read the original article: Texas Sues Netflix Over Data Collection, Addictive Design
eBay Rejects Surprise GameStop Takeover Bid
eBay board says unsolicited $56bn takeover offer from much smaller ‘meme’ retailer GameStop ‘neither credible nor attractive’ This article has been indexed from Silicon UK Read the original article: eBay Rejects Surprise GameStop Takeover Bid
Q1 2026 Ransomware Attacks Hits 2,122 Orgs Amid Fewer, More Impactful Groups
Ransomware activity remained elevated in Q1 2026, continuing the trend established over the past year. The latest State of Ransomware Q1 2026 report reveals that 2,122 organizations were listed on ransomware data leak sites (DLS), marking the second-highest Q1 total on record.…