Cyber Security
A highly sophisticated supply chain attack has compromised the Laravel-Lang ecosystem, injecting credential-stealing remote code execution backdoors into 233 package versions across 700 GitHub repositories. Discovered in May 2026 by Socket and Aikido, threat actors...
Cyber Security
“`html The npm registry executed a swift platform-wide action last week after supply chain breaches jeopardized numerous developers. On May 19, npm rendered invalid every granular access token with write privileges that circumvent two-factor authentication,...
Cyber Security
“`html Two previous executives of a U.S.-based call routing and analytics firm have admitted guilt to federal offenses for knowingly facilitating India-based call centers in deceiving thousands of American victims through intricate tech-support scam operations...
Cyber Security
“`html GitHub has acknowledged unauthorized entry to its internal repositories following the detection of an infiltrated employee device compromised by a harmful Visual Studio Code extension, the firm revealed in a series of official announcements on May 20,...
Cyber Security
“`html Anthropic’s Mythos Preview, a security-centric AI model, is surpassing a pivotal milestone in automated vulnerability analysis, not merely detecting flaws, but linking them into functional proof-of-concept exploits. This conclusion comes from Cloudflare’s...
Cyber Security
“`html Microsoft has officially recognized a significant installation issue impacting its May 2026 Patch Tuesday cumulative update for Windows 11, KB5089549, leaving users faced with error code 0x800f0922 and, in some instances, additional errors 0x80240069 and...
Cyber Security
“`html Apple’s M5 silicon has allegedly been utilized for the inaugural time in a public macOS kernel memory corruption assault, effectively circumventing the firm’s distinguished hardware-level memory safeguards. Researchers from Calif, Bruce Dang, Dion...
Cyber Security
“`html A recently revealed zero-click exploit sequence targeting Google Pixel 10 devices has sparked new worries regarding Android’s foundational security. Researchers from Google Project Zero illustrated how adversaries could stealthily breach a device and...
Cyber Security
Two employee devices at OpenAI were compromised in a sweeping software supply chain attack targeting TanStack npm, but the AI company confirmed no user data, production systems, or intellectual property were affected. On May 11, 2026 UTC, threat actors launched a...
Cyber Security
A critical heap buffer overflow vulnerability, lurking in NGINX’s source code since 2008, has been publicly disclosed. Complete with a working proof-of-concept exploit capable of delivering unauthenticated remote code execution (RCE) against one of the world’s most...
