ICYMI: 2026-05-20
Latest Headlines
Microsoft Open-Sources RAMPART and Clarity to Secure AI Agents During Development
Microsoft Takes Down Malware-Signing Service Behind Ransomware Attacks
Webworm Deploys EchoCreep and GraphWorm Backdoors Using Discord and MS Graph API
GitHub Breached — Employee Device Hack Led to Exfiltration of 3,800+ Internal Repos
Typosquatting Is No Longer a User Problem. It’s a Supply Chain Problem
Microsoft Releases Mitigation for YellowKey BitLocker Bypass CVE-2026-45585 Exploit
Grafana GitHub Breach Exposes Source Code via TanStack npm Attack
A Bipartisan Amendment Would End Police License Plate Tracking Nationwide
A New York Cop Got Injured at a Boxing Match. Now Madison Square Garden Is Banning His Lawyer
Data Brokers’ and AI Firms’ Opt-Out Forms Are Built to Fail, Report Finds
Quantum Bridge Raises $8 Million for Quantum-Safe Key Distribution Solution
Microsoft Rolls Out Mitigations for ‘YellowKey’ BitLocker Bypass
AI-Powered App Attacks Are Faster, More Frequent and Harder to Stop
1Password Teams With OpenAI to Stop AI Coding Agents From Leaking Credentials
Over 320 NPM Packages Hit by Fresh Mini Shai-Hulud Supply Chain Attack
Virtual Event Today: Threat Detection & Incident Response Summit
Ukraine identifies infostealer operator tied to 28,000 stolen accounts
Grafana breach caused by missed token rotation after TanStack attack
Identity Alone Isn’t Enough: Why Device Security Has to Share the Load
Drupal critical update to fix bug with high exploitation risk
Exploit released for new PinTheft Arch Linux root escalation flaw
GitHub confirms breach of 3,800 repos via malicious VSCode extension
GitHub investigates internal repositories breach claimed by TeamPCP
– MTZ