ICYMI: 2026-05-15
Latest Headlines
Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access
Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistence
What 45 Days of Watching Your Own Tools Will Tell You About Your Real Attack Surface
TanStack Supply Chain Attack Hits Two OpenAI Employee Devices, Forces macOS Updates
On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email
CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access Exploits
In Other News: Big Tech vs Canada Encryption Bill, Cisco’s Free AI Security Spec, Audi App Flaws
Microsoft Warns of Exchange Server Zero-Day Exploited in the Wild
American Lending Center Data Breach Affects 123,000 Individuals
TeamPCP Ups the Game, Releases Shai-Hulud Worm’s Source Code
Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026
Gunra Ransomware Expands RaaS Operations After Shifting From Conti-Based Locker
OpenClaw Chain Vulnerabilities Expose 245,000 Public AI Agent Servers to Attack
Shai-Hulud Worm Steals npm, GitHub, AWS, and Kubernetes Secrets From Developers
Hackers Abuse OAuth Device Authorization Flow to Steal Microsoft 365 Tokens
Microsoft Edge, Windows 11 and LiteLLM Hacked in Pwn2Own Berlin 2026
Hackers Use OrBit Rootkit to Harvest SSH and Sudo Credentials From Linux Systems
Microsoft Warns of Attackers Using Trusted HPE Operations Agent for Malware-Free Intrusions
Tycoon 2FA Operators Adopt OAuth Device Code Phishing to Bypass MFA
PraisonAI Vulnerability Exploited Within Hours of Public Disclosure
Amazon Redshift JDBC Driver Vulnerabilities Enables Remote Code Execution Attacks
Funnel Builder WordPress plugin bug exploited to steal credit cards
Microsoft Exchange, Windows 11 hacked on second day of Pwn2Own
Popular node-ipc npm package compromised to steal credentials
Avada Builder WordPress plugin flaws allow site credential theft
Microsoft backpedals: Edge to stop loading passwords into memory
Inside the REMUS Infostealer: Session Theft, MaaS, and Rapid Evolution
Microsoft warns of Exchange zero-day flaw exploited in attacks
– MTZ