breach1 source
NVIDIA Confirms GeForce NOW Data Breach in Armenia
NVIDIA has confirmed a data breach affecting GeForce NOW users in Armenia, with an investigation currently underway.
May 8, 2026
Stories
Every story we’ve synthesized.
Stories cluster related articles into a single narrative, linked to the underlying CVEs and affected products. 323 stories synthesized.
breach1 source
Universities Reschedule Exams After Canvas Cyber Incident
A cyber incident involving the Canvas educational platform has forced multiple universities to reschedule their final exams.
May 8, 2026
breach1 source
Fake Call History Apps Steal Payments from Millions of Users
Fraudulent apps on the Google Play Store, downloaded over 7.3 million times, have been tricking users into paying for fake call history data.
May 8, 2026
trend1 source
SecurityWeek Roundup: Train Hacker, Linux Backdoor, and More
SecurityWeek's latest roundup highlights a variety of security stories, including a train hacker arrest, a new Linux backdoor, and emerging malware threats.
May 8, 2026
breach1 source
Trellix Source Code Breach Claimed by RansomHouse
The RansomHouse threat group has claimed responsibility for a breach of Trellix's source code repository, releasing images as proof of the intrusion.
May 8, 2026
trend1 source
Pro-Ukraine Hacktivist Groups BO Team and Head Mare Coordinate Attacks
Pro-Ukraine hacktivist groups BO Team and Head Mare are reportedly coordinating their cyberattacks against Russia, according to research by Kaspersky.
May 8, 2026
research1 source · 7 CVEs
Microsoft Defends Edge Plaintext Password Handling as "By Design"
Microsoft has defended the behavior of its Edge browser, which stores passwords in plaintext in memory, as being "by design."
May 8, 2026
trend1 source · 2 CVEs
Meta Removes End-to-End Encryption from Instagram DMs
Meta is pulling the plug on end-to-end encrypted direct messages on Instagram, citing low adoption and directing users to WhatsApp.
May 8, 2026
trend7 sources · 10 CVEs
Weekly Security Roundup: Threat Intelligence, Metasploit Updates, and Vulnerability Management
This week's security roundup covers industry recognition for threat intelligence, updates to the Metasploit framework, and strategic discussions on managing the rising volume of vulnerabilities.
May 8, 2026
breach1 source
Polish Water Treatment Plants Hit by ICS Cyberattacks
Polish security officials have reported that hackers breached the industrial control systems of five water treatment plants, creating a direct risk to the public water supply.
May 8, 2026
breach1 source
Braintrust Forces API Key Rotation After AWS Account Breach
AI firm Braintrust has forced an API key rotation after hackers compromised an AWS account and accessed sensitive provider secrets.
May 8, 2026
research1 source
New Quasar Linux RAT Targets Developer Systems
A newly discovered Linux implant named Quasar Linux RAT is targeting developer systems to harvest credentials and facilitate software supply chain attacks.
May 8, 2026
breach4 sources
ShinyHunters Escalates Attacks on Canvas Educational Platform
ShinyHunters has intensified its attack on the Canvas educational platform, causing global service outages and widespread exam disruptions while exposing millions of user records.
May 8, 2026
breach1 source
Zara Data Breach Exposes 197,000 Customer Records
A data breach at Spanish retailer Zara has exposed the personal information of over 197,000 customers.
May 8, 2026
trend1 source
Meta Challenges Ofcom Over Online Safety Act Fine Calculations
Meta is challenging the UK regulator Ofcom in court, arguing that the calculation of fines under the Online Safety Act should be based on UK revenue rather than global turnover.
May 8, 2026
kev3 sources · 7 CVEs
CISA Mandates Urgent Patching for Ivanti EPMM Zero-Day
CISA has mandated that U.S. federal agencies patch the actively exploited Ivanti EPMM zero-day vulnerability, CVE-2026-6973, within four days.
May 8, 2026
research1 source
Report: Enterprise Security Teams Ignoring Millions of Alerts
A new report reveals that enterprise security teams are systematically ignoring millions of low-severity alerts, potentially leaving critical threats undetected.
May 8, 2026
Hero pending
PATCH
patch1 source
Google Enhances Android Studio with Proactive Policy Insights
Google is enhancing Android Studio with expanded Play Policy Insights and SDK index integration to help developers identify security and policy issues while coding.
May 8, 2026
patch2 sources
Apple Releases iOS and iPadOS 26.5 RC 2
Apple has released the second Release Candidate for iOS 26.5 and iPadOS 26.5, bringing the operating systems closer to a final public release.
May 8, 2026
trend1 source
U.S. Nationals Sentenced for Operating North Korean "Laptop Farm" Schemes
Two U.S. nationals received 18-month prison sentences for operating "laptop farms" that enabled North Korean IT workers to infiltrate nearly 70 American companies.
May 8, 2026
breach2 sources
Virginia Man Convicted of Deleting Government Databases
A former federal contractor has been convicted of conspiring to destroy dozens of government databases after being fired.
May 8, 2026
research1 source
New Linux PamDOORa Backdoor Uses PAM Modules for Persistence
A new Linux backdoor called PamDOORa is being sold on cybercrime forums, allowing persistent SSH access via a PAM-based exploit.
May 8, 2026
breach2 sources · 11 CVEs
‘PCPJack’ Worm Removes TeamPCP Infections, Steals Credentials
The PCPJack worm is actively removing TeamPCP infections from cloud instances while stealing credentials from compromised environments.
May 8, 2026
trend1 source · 1 CVE
Snyk Integrates Claude for AI-Native Security Platform
Snyk has integrated Anthropic’s Claude AI models into its security platform to improve automated vulnerability discovery and remediation.
May 8, 2026