Typosquatting Is No Longer a User Problem. It's a Supply Chain Problem

May 20, 2026 at 04:00PM AI-generated lookalike domains are now embedded inside the third-party scripts running on your web proper…

Microsoft Releases Mitigation for YellowKey BitLocker Bypass CVE-2026-45585 Exploit

May 20, 2026 at 01:58PM Microsoft on Tuesday released a mitigation for a BitLocker bypass vulnerability named YellowKey following…

Grafana GitHub Breach Exposes Source Code via TanStack npm Attack

May 20, 2026 at 10:42AM Grafana Labs, on May 19, 2026, said an investigation into its recent breach found no evidence of customer…

GitHub Investigating TeamPCP Claimed Breach of ~4,000 Internal Repositories

May 20, 2026 at 09:31AM GitHub on Tuesday said it's investigating unauthorized access to its internal repositories after the …

Compromised Nx Console 18.95.0 Targeted VS Code Developers with Credential Stealer

May 19, 2026 at 01:19PM Cybersecurity researchers have flagged a compromised version of the Nx Console extension that was publish…

Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account

May 19, 2026 at 10:24AM Cybersecurity researchers have discovered a fresh software supply chain attack campaign that has compromi…

INTERPOL Operation Ramz Disrupts MENA Cybercrime Networks with 201 Arrests

May 18, 2026 at 10:51PM INTERPOL has coordinated a first-of-its-kind cybercrime crackdown across the Middle East and North Africa…

Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws

May 18, 2026 at 04:24PM Ivanti, Fortinet, n8n, SAP, and VMware have released security fixes for various vulnerabilities that coul…

Four Malicious npm Packages Deliver Infostealers and Phantom Bot DDoS Malware

May 18, 2026 at 02:27PM Cybersecurity researchers have discovered four new npm packages containing information-stealing malware, …

MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems

May 18, 2026 at 10:29AM Chaotic Eclipse, the security researcher behind the recently disclosed Windows flaws, YellowKey and Green…

NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE

May 17, 2026 at 05:27PM A newly disclosed security flaw impacting NGINX Plus and NGINX Open has come under active exploitation in…

Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

May 17, 2026 at 12:43PM Grafana has disclosed that an "unauthorized party" obtained a token that granted them the abili…