Cyber Alert Security News Daily

Critical kernel update alert:

• Linux 7.0.6 released to fully mitigate Dirty Frag LPE vuln exposed last week.
• Enables easy root on all Linux...

GhostLock exploits the documented CreateFileW API to grant exclusive deny-share handles on SMB files, paralyzing enterprises without writing data.

-...

• Massive exposure: Over 70,000 US Army files leaked online due to contractor security misconfiguration
• Sensitive data at risk: Leaky database...

Critical alert: Palo Alto firewalls' CVE-2026-0300 enables unauthenticated root RCE via management interface, under active exploitation.

• Govt...

Rapid7 links a Chaos ransomware campaign—initially seen as conventional—to Iranian state-sponsored actors with moderate confidence. This attribution heightens risks for targeted defenses.

• Policy shift: FCC relaxes foreign router ban to allow security updates
• Ransomware threat: ShinyHunters group disrupts schools globally, heightening education sector risks

• Spot NTLM relay attacks and coercion techniques like PetitPotam and PrinterBug.
• Deploy across Windows and Active Directory environments.
• Use Log360 detection rules for practical AD defense.

AI vulnerability disclosure is shattering old patch windows. PoC from embargo leaks points to process discipline failures; public fix commits reveal mismatches in disclosure timelines.

Trade-offs exposed: New tools from Anthropic, Cursor, and OpenAI look like a velocity hack for founders but a nightmare for security engineers—echoing...

Education sector under fire:

• ShinyHunters allegedly breached Instructure, threatening schools' data leak amid Canvas downtime.
• Reveals...

Critical breach: Hackers hacked France's Digital ID System, claiming to have stolen sensitive data on up to 19 million citizens now sold on the dark web. Highlights vulnerabilities in national digital identity infrastructure.

ShinyHunters launched a second major attack on Instructure's Canvas LMS, with a significant security breach confirmed in early May 2026. Education platforms face escalating risks.

Underground economy thrives on undisclosed flaws bought, sold, and weaponized before patches exist.

• Brokers and intel contractors drive incentives...

Key dangers of OpenClaw, the AI agent devs love for fixing bugs via text:

• Active machine control: Reads files, runs code as an active resident, not...

Critical command injection vulnerability discovered in IAS Canias ERP 8.03, impacting the Runtime function. Industrial and OT environments: patch urgently to avert severe risks in operational tech.

Key actionable advice for CISOs from SecPortal's SEC guide:

• Master Item 1.05 triggers for materiality assessments
• Beat the four-day reporting...

Urgent breach alert: National Public Data hack exposed Social Security numbers.

Quick check: Visit npd.pentester.com, enter first/last name and birth...

Criminals hoist with their own petard: Jerry's Store, an AI-built card testing site using flawed Cursor code, exposed 345,000 stolen cards worth up to $2.6M due to a security misconfiguration—highlighting AI cybercrime tools' ironic vulnerabilities.

• Low-sev start: Harmless Self-XSS and open redirect escalated via gadget chaining.
• Key exploits: postMessage abuse, stored XSS in LLM, DOM XSS for...

Urgent cyber alert for Ivanti EPMM:

• Zero-day flaw exploited in attacks
• CISA adds to Known Exploited Vulnerabilities catalog within hours of disclosure
• Federal agencies must patch by May 10, 2026 – that's today