Vulnerabilities
-
Skoda says customer data stolen in online shop breach
Škoda Auto said attackers breached its online shop, stole customer personal data and accessed login credentials after exploiting a software flaw. The company said payment card details were not stored on the compromised systems.
-
Apple adds beta end-to-end encryption to RCS chats in iOS 26.5
Apple released iOS 26.5 with beta end-to-end encryption for RCS chats on iPhone and Android, enabled by default for supported users. The update also fixes more than 50 vulnerabilities in iOS and iPadOS.
-
Attackers exploit cPanel flaw to deploy Filemanager backdoor
Attackers linked to Mr_Rot13 are exploiting CVE-2026-41940 in cPanel and WHM to install the Filemanager backdoor, with more than 2,000 source IPs seen in activity, according to a technical analysis by QiAnXin XLab.
-
Google says hackers used AI to help find and weaponize a zero-day 2FA bypass
Google said it found what it believes is the first known in-the-wild use of AI for vulnerability discovery and exploit generation, after attackers used a zero-day Python script to bypass two-factor authentication on an open-source admin tool.
-
Ollama flaw could expose process memory from exposed servers, researchers say
Researchers say a critical Ollama flaw could let remote attackers leak process memory from exposed servers, while separate Windows update bugs may allow persistent code execution. The disclosures affect widely used local AI software.
-
New Linux PamDOORa backdoor sold on cybercrime forum, researchers say
Researchers disclosed PamDOORa, a Linux backdoor sold on a Russian cybercrime forum for up to $1,600. The PAM-based tool can provide persistent SSH access, harvest credentials and tamper with logs, though no real-world use has been seen.
-
Mozilla says AI-assisted Mythos found 271 Firefox vulnerabilities with few false positives
Mozilla said its Mythos AI-assisted security research found 271 Firefox vulnerabilities, including 180 rated sec-high. The company faced skepticism over false positives and the lack of individual CVEs.
-
Ivanti says EPMM flaw exploited in limited attacks, CISA adds it to watchlist
Ivanti said a high-severity flaw in its Endpoint Manager Mobile software has been used in limited attacks and can allow remote code execution on affected on-premises systems. CISA added the issue to its exploited vulnerability catalog.
-
PCPJack credential stealer targets cloud systems and removes TeamPCP traces
Researchers said PCPJack is a new cloud-focused credential stealer that targets exposed services, removes TeamPCP-related artifacts and uses multiple exploits to spread across compromised environments.
-
vm2 library hit by a dozen critical Node.js sandbox escape flaws
A dozen critical vm2 vulnerabilities disclosed on May 7, 2026 can let attackers escape Node.js sandboxes, run code on the host and bypass allowlists. Fixes are available in vm2 3.11.2 and earlier patch releases.
