Bleeping Computer

Google: Hackers used AI to develop zero-day exploit for web admin tool

Researchers at Google Threat Intelligence Group (GTIG) say that a zero-day exploit targeting a popular open-source web administration tool was likely generated using AI. The exploit could be leveraged ...
CoinDesk

Wasabi Protocol drained of $4.5 million in apparent admin key compromise

DeFi can't stop bleeding, and Wasabi Protocol is the latest to find out why. The protocol, a perpetuals trading platform built on Ethereum and Base, was drained of about $4.55 million on Thursday ...

Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign

A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious ...
Ars Technica

The most severe Linux threat to surface in years catches the world flat-footed

Publicly released exploit code for an effectively unpatched vulnerability that gives root access to virtually all releases of Linux is setting off alarm bells as defenders scramble to ward off severe ...
Dark Reading

Exploit Cyber-Frenzy Threatens Millions via Critical cPanel Vulnerability

A critical authentication bypass flaw in cPanel software products has come under heavy exploitation from a variety of threat actors shortly after public disclosure, putting millions of websites at ...
CSOonline

‘Trivial’ exploit can give attackers root access to Linux kernel

Experts say until the distros release patches, CSOs have to beware of unauthorized privilege escalation; Kubernetes container escape is also a risk. CSOs must ensure their Linux-based systems block ...
TechCrunch

Hackers deface school login pages after claiming another Instructure hack

On Tuesday, education tech giant Instructure disclosed a data breach where hackers stole students’ private information, including their names, personal email addresses, and messages sent between ...
CNN

What we know about the Canvas hack that has impacted thousands of schools

A cyberattack shut down an education platform used by universities and K-12 schools across the US Thursday, depriving students and teachers of essential classroom materials — at a time when many are ...
Forbes

Update Linux Now As 9-Year-Old Root Hack Confirmed, CISA Warns Users

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. With more than 27 million active users and powering 75% of all web-facing servers, it’s ...
The Daily Pennsylvanian

Over 300,000 Penn users affected in Canvas hack, cybercrime group claims

On May 3, cybercrime group ShinyHunters claimed responsibility for breaching Instructure — the parent company of Canvas — reportedly compromising the data of hundreds of millions of users, including ...
WRAL

'Security patches' put student learning system back online after hack

A web-based learning management system containing teachers' and students' data across North Carolina and the United States is back online after being breached, with one group claiming responsibility ...