Vulnerability

4 minute read

Security

Hackers Actively Exploit ‘Nginx Rift’ Vulnerability Affecting NGINX, F5 Products

Hackers are actively exploiting the Nginx Rift vulnerability affecting NGINX and F5 products, exposing servers to denial-of-service attacks.

byDeeba Ahmed

May 19, 2026

Grafana Says It Rejected Ransom Demand After Source Code Theft

2 minute read

Data Breaches

Grafana Says It Rejected Ransom Demand After Source Code Theft

Grafana says hackers stole its source code after accessing a GitHub token, but no customer data or systems were affected.

byWaqas

May 17, 2026

Claw Chain Vulnerabilities Leave Thousands of OpenClaw AI Agents Exposed to Attacks

3 minute read

Critical ‘Claw Chain’ Vulnerabilities Put Thousands of OpenClaw AI Servers at Risk

Critical Claw Chain vulnerabilities in OpenClaw expose thousands of AI servers to data theft, backdoors, and admin-level attacks globally this week. .

byDeeba Ahmed

May 16, 2026

Pwn2Own Berlin 2026 Hits Capacity as Rejected Hackers Release 0-Days

2 minute read

Security

Pwn2Own Berlin 2026 Hits Capacity as Rejected Hackers Release 0-Days

Pwn2Own Berlin 2026 reportedly reached full capacity for the first time, prompting rejected researchers to publicly disclose zero-day exploits targeting Firefox, NVIDIA, and AI platforms.

byDeeba Ahmed

May 12, 2026

2 minute read

Google Says Hackers Used AI to Develop a Zero-Day Exploit

Google researchers say hackers used AI to develop zero-day exploits, Android backdoors, and automated supply chain attacks targeting GitHub and PyPI.

byDeeba Ahmed

May 11, 2026

9-Year-Old Dirty Frag Vulnerability Enables Root Access on Linux Systems

3 minute read

Security

9-Year-Old Dirty Frag Vulnerability Enables Root Access on Linux Systems

The Dirty Frag vulnerability affects Linux systems and allows root access escalation, while public PoC exploit code increases attack risks.

byDeeba Ahmed

May 11, 2026

3 minute read

ClaudeBleed Vulnerability Lets Hackers Hijack Claude Chrome Extension to Steal Data

The ClaudeBleed vulnerability allows hackers to bypass Claude for Chrome guardrails to exfiltrate private Google Drive and Gmail data.

byDeeba Ahmed

May 8, 2026

ShinyHunters Defaces Canvas LMS Portal, Thousands of Universities Affected

3 minute read

ShinyHunters Defaces Canvas LMS Portal, Hundreds of Universities Affected

ShinyHunters hackers defaced the official Canvas LMS portal after breaching Instructure systems, disrupting university access worldwide.

byWaqas

May 8, 2026

Why Microsoft Edge keeps your saved passwords in plaintext

3 minute read

Researcher Shows Edge Browser Stores Saved Passwords in Plaintext

Cybersecurity expert Tom Rønning finds Microsoft Edge loads all saved passwords into computer memory as cleartext, making them easy for hackers to steal.

byDeeba Ahmed

May 7, 2026

Why Outdated Maintenance Software Is a Growing Ransomware Risk

7 minute read

Security

Why Outdated Maintenance Software Is a Growing Ransomware Risk

Outdated maintenance software increases ransomware risk by exposing weak access controls, unpatched systems, and critical operational data to attackers.

byUzair Amir

May 7, 2026

The Latest

Criminal IP Returns to Infosecurity Europe 2026 with Advanced AI-Driven TI & ASM

Two-Thirds of Nonhuman Accounts Are Unseen and Unmanaged, According to Orchid Security’s Identity Gap Report

Hosting Service Standards That Define High-Performing Agencies

Hackers Actively Exploit ‘Nginx Rift’ Vulnerability Affecting NGINX, F5 Products

Vulnerability

Hackers Actively Exploit ‘Nginx Rift’ Vulnerability Affecting NGINX, F5 Products

Grafana Says It Rejected Ransom Demand After Source Code Theft

Critical ‘Claw Chain’ Vulnerabilities Put Thousands of OpenClaw AI Servers at Risk

Pwn2Own Berlin 2026 Hits Capacity as Rejected Hackers Release 0-Days

Google Says Hackers Used AI to Develop a Zero-Day Exploit

9-Year-Old Dirty Frag Vulnerability Enables Root Access on Linux Systems

ClaudeBleed Vulnerability Lets Hackers Hijack Claude Chrome Extension to Steal Data

ShinyHunters Defaces Canvas LMS Portal, Hundreds of Universities Affected

Researcher Shows Edge Browser Stores Saved Passwords in Plaintext

Why Outdated Maintenance Software Is a Growing Ransomware Risk

Criminal IP Returns to Infosecurity Europe 2026 with Advanced AI-Driven TI & ASM

Two-Thirds of Nonhuman Accounts Are Unseen and Unmanaged, According to Orchid Security’s Identity Gap Report

Lyrie.ai Joins First Batch of Anthropic’s Cyber Verification Program

LuxSci Launches Enterprise-Grade HIPAA-Compliant Email Security for Mid-Sized Healthcare Organizations

Criminal IP and Securonix ThreatQ Collaborate to Enhance Threat Intelligence Operations