Breaking News – Cyber Threats (last 6h)
Generated: 2026-05-18 17:00 PDT
- INTERPOL ‘Operation Ramz’ seizes 53 malware, phishing servers
BleepingComputer • 2026-05-18 15:15 • www.bleepingcomputer.com
More than 200 individuals were arrested for cybercrime activities during INTERPOL’s Operation Ramz, which focused on the Middle East and North Africa. […]
https://www.bleepingcomputer.com/news/security/interpol-operation-ramz-seizes-53-malware-phishing-servers/ - SHub macOS infostealer variant spoofs Apple security updates
BleepingComputer • 2026-05-18 14:42 • www.bleepingcomputer.com
A new variant of the ‘SHub’ macOS infostealer uses AppleScript to show a fake security update message and installs a backdoor. […]
https://www.bleepingcomputer.com/news/security/shub-macos-infostealer-variant-spoofs-apple-security-updates/ - CISA Admin Leaked AWS GovCloud Keys on Github
KrebsOnSecurity • 2026-05-18 13:48 • krebsonsecurity.com
Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and a large number of internal CISA systems. Security experts said the public archive included files detailing how CISA builds, tests and deploys software internally, and that it represents one of the most egregious government data leaks in recent history.
https://krebsonsecurity.com/2026/05/cisa-admin-leaked-aws-govcloud-keys-on-github/ - TeamPCP Supply Chain Campaign: Activity Through 2026-05-17, (Mon, May 18th)
SANS ISC Diary (full) • 2026-05-18 13:08 • isc.sans.eduSince the last update, the TeamPCP supply chain campaign produced its loudest stretch since the March Trivy disclosure: an officially confirmed Checkmarx Jenkins plugin compromise and a new self-spreading Mini Shai-Hulud worm across npm and PyPI.
- 5 Steps to Managing Shadow AI Tools Without Slowing Down Employees
BleepingComputer • 2026-05-18 11:45 • www.bleepingcomputer.com
Many employees already use shadow AI tools at work without security review. Adaptive Security breaks down how teams can build practical AI governance without adding friction for employees. […]
https://www.bleepingcomputer.com/news/security/5-steps-to-managing-shadow-ai-tools-without-slowing-down-employees/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
