🐛 COMMON VULNERABILITIES AND EXPOSURES 3[−]
30 MayPAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active ExploitationPalo Alto Networks has warned that a recently disclosed medium-severity security flaw impacting PAN-OS and Prisma Access has come under active exploitation in the wild. The vulnerability, tracked as CVE-2026-0257 (CVSS score: 7.8), refers to a case of authentication bypass that c…THEHACKERNEWS.COM
30 MayCVE-2026-41184 ServiceAccount token disclosure via install-cni container logsInformation published.MSRC.MICROSOFT.COM
30 MayPalo Alto GlobalProtect VPN auth bypass flaw now exploited in attacksPalo Alto Networks is warning that hackers are now exploiting a PAN-OS GlobalProtect authentication bypass flaw, tracked as CVE-2026-0257, in attacks attempting to breach corporate networks. [...]BLEEPINGCOMPUTER.COM
⚠️ VULNERABILITY DISCLOSURE 3[−]
30 MayLaw enforcement and industry disrupt criminal infrastructure.Researchers blame Iranian government for LA transit authority hack. Extortion group sends individuals to infiltrate organizations in person.THECYBERWIRE.COM
30 MayNew CIFSwitch Linux flaw gives root on multiple distributionsA newly discovered local privilege escalation vulnerability dubbed 'CIFSwitch' in the Linux kernel could allow attackers to forge CIFS authentication key descriptions, abuse the kernel's key request mechanism, and gain root privileges. [...]BLEEPINGCOMPUTER.COM
30 MayExploit Code Published for Critical Flowise RCE VulnerabilityThe one-click vulnerability allows attackers to execute arbitrary code on self-hosted Flowise servers by tricking users into importing a malicious chatflow. The post Exploit Code Published for Critical Flowise RCE Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
📢 SECURITY ADVISORIES 1[−]
30 MayAI Sees Trees, Humans See ForestsAI systems are becoming extremely effective at processing security logs, compliance data, and operational telemetry at massive scale. In cybersecurity environments, that creates major efficiency gains for analysis, monitoring, and identifying patterns humans might miss manually. …YOUTUBE.COM
🔥 INCIDENT REPORTING 3[−]
30 MayRussia-aligned crime group Greyvibe extensively uses AI in attacksResearchers have uncovered a previously undocumented Russian group that makes extensive use of large language models (LLMs) in its attacks against private, government, and military organizations in Ukraine. It uses a variety of attack vectors along with custom malware, with the g…CSOONLINE.COM
30 MayCybercrime Crew Claims It Hacked Mike Lindell’s MyPillowPlus: A ransomware group is now stealing data in person, BusPatrol wants to hand its license plate surveillance data to the cops, and more.WIRED.COM
30 MayAtlas Menu - 63,926 breached accountsIn May 2026, the GTA V and CS2 cheat service Atlas Menu suffered a data breach. An attacker claimed to have gained access to all Atlas systems and published the service's database to a public GitHub repository. The incident exposed 64k unique email addresses along with usernames,…HAVEIBEENPWNED.COM
🕵️ THREAT INTELLIGENCE 3[−]
30 MayMalicious npm packages abuse dependency confusion to profile developer environmentsA dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and detection opportunities to help organizations identify and disrupt related acti…MICROSOFT.COM
30 MayThe skills pay the bills.Today we are joined by Marco Giuliani, Vice President & Head of Research at ThreatDown, discussing their work on "GachiLoader adopts AI skill lure." Threat actors are now using fake AI agent “skills” as highly convincing social engineering lures, with a new campaign disguising th…THECYBERWIRE.COM
30 MayRussian Spies Are Aggressively Seeking Western Technology as Sanctions Bite, Officials SayMoscow’s agents are building fake companies, recruiting middlemen and deploying cyber spies and hackers who gather information that could be used to attack key infrastructure. The post Russian Spies Are Aggressively Seeking Western Technology as Sanctions Bite, Officials Say appe…SECURITYWEEK.COM