Breaking News – Cyber Threats (last 6h)
Generated: 2026-05-15 13:00 PDT
- Funnel Builder WordPress plugin bug exploited to steal credit cards
BleepingComputer • 2026-05-15 12:30 • www.bleepingcomputer.com
A critical vulnerability in the Funnel Builder plugin for WordPress is being actively exploited to inject malicious JavaScript snippets into WooCommerce checkout pages. […]
https://www.bleepingcomputer.com/news/security/funnel-builder-wordpress-plugin-bug-exploited-to-steal-credit-cards/ - Microsoft Exchange, Windows 11 hacked on second day of Pwn2Own
BleepingComputer • 2026-05-15 10:47 • www.bleepingcomputer.com
During the second day of Pwn2Own Berlin 2026, competitors collected $385,750 in cash awards after exploiting 15 unique zero-day vulnerabilities in multiple products, including Windows 11, Microsoft Exchange, and Red Hat Enterprise Linux for Workstations. […]
https://www.bleepingcomputer.com/news/security/pwn2own-day-two-hackers-demo-microsoft-exchange-windows-11-red-had-enterprise-linux-zero-days/ - Popular node-ipc npm package compromised to steal credentials
BleepingComputer • 2026-05-15 10:10 • www.bleepingcomputer.com
Hackers have injected credential-stealing malware into newly published versions of node-ipc, a popular inter-process communication package, in a new supply chain attack targeting npm. […]
https://www.bleepingcomputer.com/news/security/popular-node-ipc-npm-package-compromised-to-steal-credentials/ - Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access
The Hacker News • 2026-05-15 10:10 • thehackernews.com
The Russian state-sponsored hacking group known asTurla
has transformed its custom backdoor Kazuar into a modular peer-to-peer (P2P) botnet that’s engineered for stealth and persistent access to compromised hosts.
Turla, per the U.S. Cybersecurity and Infrastructure Security Agency (CISA), is assessed to be affiliated with Center 16 of Russia’s Federal Security Service (FSB)
https://thehackernews.com/2026/05/turla-turns-kazuar-backdoor-into.html - Avada Builder WordPress plugin flaws allow site credential theft
BleepingComputer • 2026-05-15 08:56 • www.bleepingcomputer.com
Two vulnerabilities in the Avada Builder plugin for WordPress, with an estimated one million active installations, allow hackers to read arbitrary files and extract sensitive information from the database. […]
https://www.bleepingcomputer.com/news/security/avada-builder-wordpress-plugin-flaws-allow-site-credential-theft/ - Microsoft backpedals: Edge to stop loading passwords into memory
BleepingComputer • 2026-05-15 07:49 • www.bleepingcomputer.com
Microsoft is updating the Edge web browser to ensure it no longer loads saved passwords into process memory in clear text at startup after previously stating it was “by design.” […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-edge-to-stop-loading-cleartext-passwords-in-memory-on-startup/ - Inside the REMUS Infostealer: Session Theft, MaaS, and Rapid Evolution
BleepingComputer • 2026-05-15 07:02 • www.bleepingcomputer.com
Stolen browser sessions and authentication tokens are becoming more valuable than stolen passwords. Flare explains how the REMUS infostealer evolved around session theft and operational scalability. […]
https://www.bleepingcomputer.com/news/security/inside-the-remus-infostealer-session-theft-maas-and-rapid-evolution/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
