Latest Internet & Cybersecurity News
Microsoft patches 138 vulnerabilities in May Patch Tuesday
Microsoft released fixes for 138 security flaws across its product line, including 30 rated Critical and 32 remote code execution bugs. The company said none of the issues were publicly known or under active attack, but the volume and severity make this a major update for defenders.
Windows DNS vulnerability could enable network-based code execution
One of the most severe issues patched by Microsoft is CVE-2026-41096, a heap-based buffer overflow in Windows DNS with a CVSS score of 9.8. An unauthorized attacker could exploit it over the network to execute code, making DNS infrastructure a high-priority target for patching.
Microsoft SharePoint RCE flaw threatens enterprise servers
Microsoft also fixed CVE-2026-40365, a remote code execution flaw affecting SharePoint Server. The vulnerability could allow an authenticated attacker to launch a network-based attack and execute code on vulnerable systems, creating serious risk for organizations that store sensitive documents in SharePoint.
Windows GDI bug could be triggered via malicious Paint image
CVE-2026-35421 is a Windows GDI remote code execution vulnerability that can be exploited through a malicious Enhanced Metafile image opened in Microsoft Paint. If successfully triggered, it could let an attacker run arbitrary code on the victim machine.
Dynamics 365 flaw scores near-maximum severity
Microsoft patched CVE-2026-42898, a remote code execution vulnerability in on-premises Microsoft Dynamics 365 that carries a CVSS score of 9.9. The issue requires no user interaction, raising concern for enterprise environments that rely on Dynamics integrations and sensitive business data.
Azure DevOps information leak rated CVSS 10.0
A critical Azure DevOps issue, CVE-2026-42826, was identified as an exposure of sensitive information to an unauthorized actor. Microsoft lists it as requiring no customer action, but the severity highlights ongoing cloud platform exposure risks.
Azure Managed Instance for Apache Cassandra flaw allows code execution
Microsoft disclosed CVE-2026-33109, an improper access control vulnerability in Azure Managed Instance for Apache Cassandra. The flaw could let an authorized attacker execute code over a network, adding to the list of high-impact cloud service issues patched this cycle.
AMD patches Zen 2 cache isolation vulnerability
Microsoft’s update list included an AMD-addressed issue, CVE-2025-54518, involving improper isolation of shared resources within the CPU operation cache on Zen 2 products. The flaw could allow an attacker to corrupt instructions at a different privilege level and potentially escalate privileges.
Foxconn confirms cyberattack on North American plants
Hon Hai Precision Industry, known globally as Foxconn, confirmed a cyberattack targeting some of its North American facilities. The company said affected factories were gradually returning to normal after activating response measures to maintain production and delivery continuity.
Ransomware group Nitrogen claims major Foxconn data theft
Media reports linked the Foxconn incident to the Nitrogen ransomware group, which claimed it stole 8 terabytes of data, including more than 11 million internal documents. The alleged leak could have implications for major clients such as Apple, Intel, Google, Nvidia, and Dell, though the company has not confirmed the scope of compromise.
G7 cyber agencies publish new SBOM for AI guidance
Cyber agencies from the G7 and the EU have issued new guidance on minimum elements for software bills of materials for AI systems. The framework is intended to improve transparency and security across AI supply chains by defining key data clusters for AI components and their cybersecurity properties.
Experts warn FIFA World Cup 2026 could be a major cyber target
A cyber security expert warned that the 2026 FIFA World Cup’s global visibility and interconnected infrastructure make it a prime target for disruption. The event’s dependence on ticketing, stadium systems, broadcasters, and suppliers increases the risk of attacks aimed at undermining trust, not just causing outages.