Centre felicitates five states for DigiLocker integration initiatives | DD News
... CERT-In and the National Informatics Centre. Speaking at the event, Kumarum said secure and citizen-centric digital platforms such as DigiLocker ...
Law Firm Says Data Breach Claims Lack Actual Identity Theft – Law360
6Boeing Can Appeal Class Cert. In 737 Max Investor Suit; 7Angi Says Texts No Longer Covered By TCPA; 8Payment Processing Co. Sued Over Data ...
Zoom Rooms and Workplace Vulnerabilities Allow Attackers to Escalate Privileges
A series of newly discovered vulnerabilities in Zoom’s software ecosystem could hand local attackers the keys to your system. As organizations continue to rely heavily on virtual meetings, threat actors are constantly hunting for ways to exploit these communication tools. Zoom has rapidly released p
Threat Actors Leverage Vercel’s AI Tools to Mass‑Produce Realistic Phishing Site
A new and growing wave of phishing attacks is making credential theft easier than ever before. Threat actors are now using Vercel, a legitimate AI-powered web development platform, to build convincing fake login pages that closely mirror real websites. The ease and low cost of this approach has open
Open WebUI Vulnerability via File Upload Leads to 1-Click RCE Attack
A single click can allow attackers to exploit a critical, unpatched flaw in Open WebUI to seize control of AI workspaces, execute remote code, hijack accounts, and steal sensitive chat histories. Discovered by security researcher Metin Yunus Kandemir, the vulnerability stems from a Stored Cross-Site
Adobe Patches 52 Vulnerabilities in 10 Products
While none of the flaws have been exploited in the wild, many of them could lead to arbitrary code execution. The post Adobe Patches 52 Vulnerabilities in 10 Products appeared first on SecurityWeek.
Exaforce Raises $125 Million for Agentic SOC Platform
Exaforce has raised a total of $200 million and plans on using the latest investment for product development and international expansion. The post Exaforce Raises $125 Million for Agentic SOC Platform appeared first on SecurityWeek.
West Pharmaceutical warns of ransomware attack impacting business operations
West Pharmaceutical Services filed a report with the Securities and Exchange Commission (SEC) on Monday evening warning customers that a hacker breached the company network on May 4, stole data and encrypted systems.
Windows 11 KB5089549 & KB5087420 cumulative updates released
Microsoft has released Windows 11 KB5089549 and KB5087420 cumulative updates for versions 25H2/24H2 and 23H2 to fix security vulnerabilities, bugs, and add new features. [...]
Mini Shai-Hulud Worm Compromises TanStack, Mistral AI, Guardrails AI & More Pack
TeamPCP, the threat actor behind the recentsupply chain attack spree, has been linked to the compromise of the npm and PyPI packages from TanStack, UiPath, Mistral AI, OpenSearch, and Guardrails AI as part of a fresh Mini Shai-Hulud campaign. The affected npm packages have been modified to include a
New Exim BDAT Vulnerability Exposes GnuTLS Builds to Potential Code Execution
Exim has released security updates to address a severe security issue affecting certain configurations that could enable memory corruption and potential code execution. Exim is an open-source Mail Transfer Agent (MTA) designed for Unix-like systems to receive, route, and deliver email. The vulnerabi
Five States Honoured for Transforming Citizen Services Through DigiLocker Integr
Sanjay Bahl, Director General, CERT-In. Shri VTV Ramana, Head of Government, NIC. Ms. Savita Utreja, Group Coordinator, Cyber Security Division ...
OpenAI Launches Daybreak for AI-Powered Vulnerability Detection and Patch Valida
OpenAI has launched Daybreak, a new cybersecurity initiative that brings together frontier artificial intelligence (AI) model capabilities and Codex Security to help organizations identify and patch vulnerabilities before attackers find a way in using the same issues. "Daybreak combines the intellig
India Shut Out of Anthropic AI Project Over Infrastructure Concerns | Whalesbook
CERT-In's high-severity advisories to Indian MSMEs on AI-driven cyber threats, citing the potential for automated reconnaissance and multi-stage ...
New ‘Dirty Frag’ Linux Vulnerability Possibly Exploited in Attacks
Also called Copy Fail 2 and tracked as CVE-2026-43284 and CVE-2026-43500, the exploit was disclosed before a patch was released. The post New ‘Dirty Frag’ Linux Vulnerability Possibly Exploited in Attacks appeared first on SecurityWeek.
TeamPCP Compromises Checkmarx Jenkins AST Plugin Weeks After KICS Supply Chain A
Checkmarx has confirmed that a modified version of the Jenkins AST plugin was published to the Jenkins Marketplace. "If you are using Checkmarx Jenkins AST plugin, you need to ensure that you are using the version 2.0.13-829.vc72453fa_1c16 that was published on December 17, 2025 or previously," the
Crimenetwork Takedown Exposes 22,000 Users and Over 100 Illegal Sellers
In a massive, internationally coordinated operation, the Frankfurt am Main Public Prosecutor’s Office – Central Office for Combating Internet Crime (ZIT) and the Federal Criminal Police Office (BKA) have successfully dismantled the relaunched “Crimenetwork” platform. Law enforcement officers arreste
ShinyHunters Breaches Instructure Canvas LMS Through Free-For-Teacher Account Pr
The infamous hacking group ShinyHunters has struck again, this time targeting Instructure, the company behind Canvas Learning Management System (LMS). In early May 2026, Instructure confirmed unauthorized activity on its Canvas platform after detecting suspicious access on April 29, 2026. The breach
Popular Go Library fsnotify Raises Supply Chain Alarms After Maintainer Access C
A widely used Go library called fsnotify has found itself at the center of a supply chain security scare after a sudden change in maintainer access triggered alarm across the open source community. The project provides cross-platform filesystem notifications for applications running on Windows, Lin
SailPoint Discloses GitHub Repository Hack
The incident occurred on April 20 and did not affect customer data in the company’s production and staging environments. The post SailPoint Discloses GitHub Repository Hack appeared first on SecurityWeek.