Breaking News – Cyber Threats (last 6h)
Generated: 2026-05-27 17:00 PDT
- Smashing Security podcast #469: What your Oura ring won’t tell you
Graham Cluley • 2026-05-27 16:05 • grahamcluley.com
CISA, the US government agency whose entire job is keeping America’s critical infrastructure safe from hackers, has had a contractor publish dozens of plain-text credentials to a public GitHub profile.Meanwhile, your Oura ring is quietly transmitting some of its data unencrypted – and when one journalist asked the company how often it hands user data to law enforcement, the answer was quite telling.
Plus don’t miss our featured interview with OPSWAT’s Benny Czarny about his new book “Cybersecurity Upside Down.”
All this and more in episode 469 of the “Smashing Security” podcast with cyb…
https://grahamcluley.com/smashing-security-podcast-469/ - GPU mining malware spreads via SEO poisoning, AI chatbots
BleepingComputer • 2026-05-27 14:31 • www.bleepingcomputer.com
Threat actors are targeting systems with high-performance computers in an ongoing cryptojacking campaign spread through a coordinated SEO poisoning operation that also manipulated AI chatbot recommendations. […]
https://www.bleepingcomputer.com/news/security/gpu-mining-malware-spreads-via-seo-poisoning-ai-chatbots/ - Reconstructing an Akira Ransomware Kill Chain from Perimeter and Endpoint Logs, (Wed, May 27th)
SANS ISC Diary (full) • 2026-05-27 14:14 • isc.sans.eduMost Akira write-ups focus on the ransom note or the encryption routine. By the time those show up the interesting forensic work is over. The questions that matter to defenders sit earlier. How did they get in. When did they get domain admin. What did they touch before the binary fired. Those answers live in the days before impact. They sit in two log sources that almost never get joined. The perimeter firewall and the Windows event channel.
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
