INTERPOL Launches Operation Ramz to Dismantle Phishing and Malware Infrastructure Across 13 Countries

273/69 Wednesday, May 20, 2026 INTERPOL has announced the results of Operation Ramz, a major cybercrime crackdown targeting phishing, malware, and online fraud infrastructure across the Middle East and North Africa (MENA) region. Conducted between October 2025 and February 28, 2026, the operation led to the arrest of 201 suspects and the identification of an […]

sittisak mintaboon

May 20, 2026

7-Eleven U.S. Confirms Data Breach After ShinyHunters Claims Theft of Salesforce Data

272/69 Wednesday, May 20, 2026 7-Eleven (United States) has confirmed a cybersecurity incident after the cybercriminal group ShinyHunters claimed it had accessed and stolen more than 600,000 records from the company’s Salesforce systems. The allegedly stolen data reportedly includes personally identifiable information (PII) and internal corporate information. The attackers stated on their Tor-based data leak […]

sittisak mintaboon

May 20, 2026

New Reaper Malware Variant Targets macOS Users Using Fake Domains to Steal Credentials and Deploy Persistent Backdoors

271/69 Wednesday, May 20, 2026 Cybersecurity researchers from SentinelLABS have discovered a new macOS-focused infostealer malware known as Reaper. Reports indicate that the malware is capable of bypassing detection mechanisms and the latest security protections in macOS Tahoe 26.4. The threat is particularly concerning because Reaper not only steals passwords and cryptocurrency assets, but also […]

sittisak mintaboon

May 20, 2026

Microsoft Confirms May Security Update Installation Failures on Some Windows 11 Systems, Administrators Urged to Investigate

270/69 Tuesday, May 19, 2026 Microsoft has confirmed an issue affecting the installation of the May 2026 security update for Windows 11, identified as KB5089549. The issue may cause update installations to fail on some systems, with affected devices displaying error code 0x800f0922 and rolling back changes during the restart process. Users commonly encounter the […]

sittisak mintaboon

May 19, 2026

Grafana Discloses Security Breach After Attackers Used Leaked GitHub Token to Access Source Code and Attempt Extortion

269/69 Tuesday, May 19, 2026 Grafana Labs disclosed a security incident after attackers gained access to the company’s GitHub environment using a leaked access token, allowing them to download portions of the company’s source code. Grafana stated that its preliminary investigation found no evidence that customer data, personal information, or customer systems were affected. The […]

sittisak mintaboon

May 19, 2026

New “MiniPlasma” Windows Zero-Day Vulnerability Could Allow SYSTEM Privilege Escalation Even on Fully Patched Systems

268/69 Tuesday, May 19, 2026 Cybersecurity researchers have released a Proof-of-Concept (PoC) exploit for a new Windows Zero-Day vulnerability dubbed MiniPlasma. The vulnerability allows attackers to escalate privileges on affected Windows systems to the highest privilege level, SYSTEM, even if the target machine has already installed the latest Microsoft security updates through May 2026. The […]

sittisak mintaboon

May 19, 2026

Claw Chain Vulnerabilities in OpenClaw Could Lead to Data Theft and Privilege Escalation.

267/69 Monday, May 18, 2026 Researchers from Cyera disclosed four vulnerabilities in OpenClaw, collectively referred to as “Claw Chain.” These vulnerabilities affect all OpenClaw versions prior to the patch released on April 23, 2026. They could be chained together to steal data, plant backdoors, and gain high-level control over affected systems. The report stated that […]

chanapon

May 18, 2026

OpenAI Affected by Supply Chain Attack Involving Malicious TanStack Packages.

266/69 Monday, May 18, 2026 OpenAI disclosed that a supply chain attack involving malicious packages in the TanStack ecosystem resulted in the compromise of two employee devices. The incident also led to the exposure of some credentials from internal source code repositories. The attack has been linked to the threat group TeamPCP, which abused the […]

chanapon

May 18, 2026

Critical Vulnerability in WordPress Funnel Builder Plugin Exploited to Inject Credit Card Skimming Code into Online Stores.

265/69 Monday, May 18, 2026 E-commerce security company Sansec has detected a cyberattack targeting online stores running WooCommerce. Threat actors exploited a high-severity vulnerability in the WordPress Funnel Builder plugin to inject malicious JavaScript code into checkout pages. The vulnerability affects all plugin versions earlier than 3.15.0.3. At present, the plugin is actively used by […]

chanapon

May 18, 2026

F5 Releases Patches for More Than 50 Vulnerabilities Affecting BIG-IP, BIG-IQ, and NGINX

264/69 Friday, May 15, 2026 F5 has released security updates addressing more than 50 vulnerabilities across its BIG-IP, BIG-IQ, and NGINX products. The advisory includes 19 High-severity vulnerabilities and 32 Medium-severity issues. Several of the flaws could potentially be exploited to achieve privilege escalation, remote command execution, or denial-of-service (DoS) conditions if systems remain unpatched. […]

sittisak mintaboon

May 15, 2026
1 11 12 13 102