Breaking News – Cyber Threats (last 6h)
Generated: 2026-05-27 08:00 PDT
- FBI’s 2025 Internet Crime Report
Schneier on Security • 2026-05-27 07:02 • www.schneier.comThe 2025 Internet Crime Report was published a few weeks ago, but I only just saw it.
Lots of interesting statistics.https://www.schneier.com/blog/archives/2026/05/fbis-2025-internet-crime-report.html
- Can you enforce strong Active Directory password rules without frustrating users?
BleepingComputer • 2026-05-27 07:00 • www.bleepingcomputer.com
Strong Active Directory passwords don’t have to come at the expense of usability. Specops Software explains how passphrases, breached password protection, and self-service resets can improve security without frustrating users. […]
https://www.bleepingcomputer.com/news/security/can-you-enforce-strong-active-directory-password-rules-without-frustrating-users/ - 5 Steps to Managing Shadow AI Tools Without Slowing Down Employees
The Hacker News • 2026-05-27 06:28 • thehackernews.com
When an employee installs an AI writing assistant, connects a coding copilot to their IDE, or starts summarizing meetings with a new browser tool, they are doing exactly what a productive employee should do: finding faster ways to work.Across most organizations today, employees are running three to five AI tools on any given day. Most were never reviewed by IT. A significant portion connects
https://thehackernews.com/2026/05/5-steps-to-managing-shadow-ai-tools.html - Glassworm botnet disrupted after resilient C2 infrastructure takedown
BleepingComputer • 2026-05-27 06:28 • www.bleepingcomputer.com
The Glassworm botnet targeting developers in software supply-chain attacks has been disrupted after researchers took down its resilient command-and-control infrastructure relying on Solana blockchain transactions and the BitTorrent DHT network. […]
https://www.bleepingcomputer.com/news/security/glassworm-botnet-disrupted-after-resilient-c2-infrastructure-takedown/ - FBI warns of in-person data theft attacks from extortion gang
BleepingComputer • 2026-05-27 04:51 • www.bleepingcomputer.com
The FBI warned on Tuesday that the Silent Ransom Group (SRG) extortion gang is now targeting U.S.-based law firms in in-person data theft attacks. […]
https://www.bleepingcomputer.com/news/security/fbi-warns-of-silent-ransom-group-in-person-data-theft-attacks/ - GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure
The Hacker News • 2026-05-27 04:48 • thehackernews.com
CrowdStrike, in partnership with Google and the Shadowserver Foundation, has announced the simultaneous disruption of all command-and-control (C2) channels associated with GlassWorm, a persistent software chain campaign targeting software developers through malicious packages and extensions.“Since at least early 2025, GlassWorm operators have systematically targeted software developers, a
https://thehackernews.com/2026/05/glassworm-malware-takedown-disrupts.html - 3 SOC Steps that Shut Down Incident Risks Early
The Hacker News • 2026-05-27 04:45 • thehackernews.com
Most organizations still picture cyber defense as a fortress problem: build stronger walls, add more guards, buy another detection engine. But modern incidents rarely crash through the front gate. They drift in disguised as routine activity, hide inside legitimate processes, and quietly accumulate risk long before anyone labels them an “incident.”That changes the role of the SOC entirely.
The
https://thehackernews.com/2026/05/3-soc-steps-that-shut-down-incident.html - Gitea Vulnerability Exposes Private Container Images without Authentication
The Hacker News • 2026-05-27 03:06 • thehackernews.com
Cybersecurity researchers have disclosed a security flaw in Gitea, an open-source, self-hosted platform for version control, that allows unauthenticated remote attackers to pull private container images from Gitea deployments without requiring an account, password, or other credentials.The vulnerability, tracked as CVE-2026-27771 (CVSS score: N/A), affects all versions of Gitea prior to 1.26.2
https://thehackernews.com/2026/05/gitea-vulnerability-exposes-private.html - CISA gives feds 4 days to patch actively exploited cPanel plugin flaw
BleepingComputer • 2026-05-27 03:06 • www.bleepingcomputer.com
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has given U.S. federal agencies four days to secure their servers against a critical vulnerability in the LiteSpeed cPanel user-end plugin, which is actively being exploited in attacks. […]
https://www.bleepingcomputer.com/news/security/cisa-gives-feds-4-days-to-patch-actively-exploited-cpanel-plugin-flaw/ - Dutch police arrests suspect linked to Ajax football club hack
BleepingComputer • 2026-05-27 02:09 • www.bleepingcomputer.com
The Dutch National Police arrested a 35-year-old man suspected of hacking the professional football club Ajax Amsterdam (AFC Ajax) earlier this year. […]
https://www.bleepingcomputer.com/news/security/dutch-police-arrests-suspect-linked-to-ajax-football-club-hack/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
