Teenager alleged to be Scattered Spider hacker arrested in Finland, faces US extradition
Here's a tip for you all. Unless you want to draw attention to yourself as a cybercriminal, don't flaunt your diamond-encrusted "HACK THE PLANET" necklace on Snapchat, or pose as a Sopranos crime boss while the FBI is reportedly closing in. Because if you do that, you'll only have yourself to blame for your poor operational security. This is the picture that US prosecutors have painted of a teenager arrested earlier this month at Helsinki Airport while trying to board a flight to Tokyo. READ MORE...
15-year-old detained over French govt agency data breach
French authorities have detained a 15-year-old suspected of selling data stolen in a cyberattack on France Titres (ANTS), the country's agency for issuing and managing administrative documents. The government agency confirmed the breach and the authenticity of the data offered for sale on a cybercriminal forum by someone using the alias 'breach3d'. ?On April 13, ANTS detected suspicious activity on its network and notified authorities a few days later, on April 16. READ MORE...
Edtech Firm Instructure Discloses Data Breach Amid Hacker Leak Threats
Education technology company Instructure over the weekend scrambled to restore services affected by a cyberattack that also resulted in a data breach. Based in Salt Lake City, Utah, the edtech firm is best known for Canvas, one of the most widely used learning platforms across educational institutions and other organizations. Disclosed on April 30, the cyberattack was blamed for "disruption to tools relying on API keys" and was largely addressed by Sunday, May 3. READ MORE...
76% of All Crypto Stolen in 2026 Is Now in North Korea
The overwhelming majority of stolen cryptocurrency today is being used to fund the Democratic People's Republic of Korea (DPRK). Crypto theft is rampant because it's easy. The system, bereft of institutional safeguards by design, requires that individual participants secure their own assets - a task for which most are not particularly well-suited. The result: entire national GDPs worth of financial theft every year. READ MORE...
Thousands of Facebook accounts stolen by phishing emails sent through Google
Researchers have uncovered a long-running phishing operation that abuses trusted Google services to hijack tens of thousands of Facebook accounts. The compromised Facebook accounts are mainly business and advertiser profiles, which criminals can monetize after gaining access and control. The attackers found a way to send phishing emails that come "through Google," making them look legitimate at first glance. READ MORE...
As email phishing evolves, malicious attachments decline and QR codes surge
Phishing attacks using QR codes to direct victims to malicious links surged in the first quarter of 2026, Microsoft said in a threat report published on Thursday. Email-based phishing attacks overwhelmingly used malicious links rather than attachments during the first three months of the year, reflecting the greater range of delivery options for externally hosted threats. A major phishing-as-a-service platform is significantly diminished after recent attempts to choke off its infrastructure. READ MORE...
Claude Security enters public beta with Opus 4.7 vulnerability scanning and patching
Claude Security, previously called Claude Code Security, is in public beta for Claude Enterprise customers. Available in Claude.ai, the capability scans codebases for security vulnerabilities and suggests targeted patches for review, helping teams identify and fix issues that might otherwise be missed. Admins can enable it in the admin console. Access for Claude Team and Max customers is expected to follow. READ MORE...
Over 40,000 Servers Compromised in Ongoing cPanel Exploitation
More than 40,000 servers have likely been compromised as attackers ramp up exploitation of a recently patched cPanel zero-day. As part of the ongoing campaign, non-profit organization The Shadowserver Foundation says threat actors are exploiting CVE-2026-41940, a critical authentication-bypass vulnerability in cPanel & WebHost Manager (WHM), a server and site management platform. Disclosed on April 28, the security defect provides unauthenticated attackers with administrative access to cPanel. READ MORE...
CISA says 'Copy Fail' flaw now exploited to root Linux systems
CISA has warned that threat actors have started exploiting the "Copy Fail" Linux security vulnerability in the wild, one day after Theori researchers disclosed it and shared a proof-of-concept (PoC) exploit. Tracked as CVE-2026-31431, this security flaw was found in the Linux kernel's algif_aead cryptographic algorithm interface and enables unprivileged local users to gain root privileges on unpatched Linux systems by writing four controlled bytes to the page cache of any readable file. READ MORE...
- ...in 1865, President Lincoln is buried in Springfield, Illinois.
- ...in 1953, writer Ernest Hemingway wins the Pulitzer Prize for his short novel, "The Old Man and the Sea".
- ...in 1958, painter and Pop artist Keith Haring is born in Reading, PA.
- ...in 1979, Margaret Thatcher is elected as the first female Prime Minister of the United Kingdom.
