Breaking News – Cyber Threats (last 6h)
Generated: 2026-05-29 08:00 PDT
- From $5 Attacks to Botnet-Powered Platforms: Inside the DDoS-as-a- Service Market
BleepingComputer • 2026-05-29 07:32 • www.bleepingcomputer.com
DDoS attacks are increasingly being sold like subscription services, complete with pricing tiers, support, and reseller programs. Flare explores how the DDoS-as-a-Service market has evolved from scattered tools into polished attack platforms. […]
https://www.bleepingcomputer.com/news/security/from-5-attacks-to-botnet-powered-platforms-inside-the-ddos-as-a-service-market/ - Dutch govt disrupts malware botnet with 17 million infected devices
BleepingComputer • 2026-05-29 07:26 • www.bleepingcomputer.com
Dutch authorities have taken offline a massive botnet of 17 million devices and seized more than 200 servers at a local provider that supported the operation. […]
https://www.bleepingcomputer.com/news/security/dutch-govt-disrupts-malware-botnet-with-17-million-infected-devices/ - Google Chrome adds session cookie theft protection for all users
BleepingComputer • 2026-05-29 05:08 • www.bleepingcomputer.com
Google says the Chrome Device Bound Session Credentials (DBSC) security feature is now generally available and is rolling out to all users to prevent account takeovers. […]
https://www.bleepingcomputer.com/news/security/google-chrome-adds-session-cookie-theft-protection-for-all-users/ - New Russian-Linked GREYVIBE Targets Ukraine with AI-Powered Cyberattacks
The Hacker News • 2026-05-29 04:31 • thehackernews.com
A previously undocumented threat actor dubbed GREYVIBE has been attributed to ongoing and persistent attacks targeting Ukraine and Ukraine-related entities since at least August 2025.GREYVIBE, per WithSecure, is assessed to be a Russian-speaking group operating broadly in the Russian time zone, with the activities aligning with Kremlin state interests, specifically when it comes to
https://thehackernews.com/2026/05/new-russian-linked-greyvibe-targets.html - Man sent to prison for selling data of 7 millions elderly Americans
BleepingComputer • 2026-05-29 04:07 • www.bleepingcomputer.com
A North Carolina man was sentenced to more than 10 years in prison for selling the personal information of over 7 million elderly Americans to Jamaican scammers. […]
https://www.bleepingcomputer.com/news/security/man-sent-to-prison-for-selling-data-of-7-millions-elderly-americans/ - Chilling Effects
Schneier on Security • 2026-05-29 04:02 • www.schneier.comYounger Americans have soured on the second Donald Trump presidency, but they are not protesting it.
Despite an unpopular Iran war and an even more unpopular Trump administration, college campus protests nationwide https://www.schneier.com/blog/archives/2026/05/chilling-effects.html
- What 2,000 Exposed Vibe-Coded Apps Reveal About the Limits of Most Security Stacks
The Hacker News • 2026-05-29 03:30 • thehackernews.com
Shadow AI used to mean employees pasting things they shouldn’t into ChatGPT. It now means something bigger: employees building full applications with AI, wiring them into production systems, and publishing them on the open internet. Without Security or IT in the loop.The artifact moved from a prompt to a product. The risk surface moved with it.
In The Shadow Builders report (get it here), a
https://thehackernews.com/2026/05/what-2000-exposed-vibe-coded-apps.html - US charges Google security engineer with Polymarket insider trading
BleepingComputer • 2026-05-29 03:11 • www.bleepingcomputer.com
A Google security engineer was charged with insider trading after winning $1.2 million using confidential company data to place bets on the cryptocurrency-based Polymarket decentralized prediction market. […]
https://www.bleepingcomputer.com/news/security/us-charges-google-security-engineer-with-polymarket-insider-trading/ - Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets
The Hacker News • 2026-05-29 02:11 • thehackernews.com
Cybersecurity researchers have discovered a malicious NuGet package that masquerades as a C# software development kit for Sicoob, one of Brazil’s largest cooperative financial systems, to siphon client IDs and PFX certificates.According to Socket, versions 2.0.0 through 2.0.4 of “Sicoob.Sdk” contain functionality to exfiltrate sensitive information, including PFX certificates that are used to
https://thehackernews.com/2026/05/malicious-sicoob-nuget-steals-banking.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
