ICYMI: 2026-05-21
Latest Headlines
Showboat Linux Malware Hits Middle East Telecom with SOCKS5 Proxy Backdoor
ThreatsDay Bulletin: Linux Rootkits, Router 0-Day, AI Intrusions, Scam Kits and 25 New Stories
Microsoft Warns of Two Actively Exploited Defender Vulnerabilities
9-Year-Old Linux Kernel Flaw Enables Root Command Execution on Major Distros
GitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension
Highly Critical Drupal Core Flaw Exposes PostgreSQL Sites to RCE Attacks
Alleged Kimwolf Botmaster ‘Dort’ Arrested, Charged in U.S. and Canada
‘Creepy’ Listening Tool for Targeted Ads Didn’t Actually Work, FTC Says
A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale
The EU Is Going Through a Trump-Fueled Breakup With Big Tech
Ocean Emerges From Stealth With $28M for Agentic Email Security Platform
Apple Rejected 2 Million App Store Submissions in 2025 for Security and Fraud Prevention
Drupal Patches Highly Critical Vulnerability Exposing Websites to Hacking
Microsoft Patches Exploited UnDefend and RedSun Defender Zero-Days
Google’s Surge in Chrome Vulnerability Discoveries Likely Driven by AI
Supply Chain Security Crisis: Too Many Vulnerabilities, Too Little Visibility
Hackers Use Fake Microsoft Teams Downloads to Deploy ValleyRAT Malware
TamperedChef Malware Uses Signed Productivity Apps to Deliver Stealers and RATs
Fake Invitation Phishing Campaign Targets U.S. Organizations With Credential Theft
Indian Student Data Weaponized for Phishing, Social Engineering, and Financial Fraud
Critical Chrome Vulnerabilities Enable Remote Code Execution Attacks – Patch Now!
Authorities Have Taken Down “First VPN” Used in Ransomware Attacks
Mini Shai-Hulud Compromises @antv npm Packages to Steal CI/CD Credentials
P2PInfect Botnet Compromises Kubernetes Clusters Through Exposed Redis Instances
GitHub Internal Repositories Breached Via Weaponized VS Code Extension
Google accidentally exposed details of unfixed Chromium flaw
Apple blocked over $11 billion in App Store fraud in 6 years
Inside a Crypto Drainer: How to Spot it Before it Empties Your Wallet
Chinese hackers target telcos with new Linux, Windows malware
Max severity Cisco Secure Workload flaw gives Site Admin privileges
Police seize “First VPN” service used in ransomware, data theft attacks
Flipper One project needs community help to build open Linux platform
Microsoft warns of new Defender zero-days exploited in attacks
GitHub links repo breach to TanStack npm supply-chain attack
– MTZ