Latest Internet & Cybersecurity News
Microsoft warns of actively exploited Exchange Server vulnerability
Microsoft disclosed CVE-2026-42897, an actively exploited spoofing flaw affecting on-premises Exchange Server 2016, 2019, and Subscription Edition. Exchange Online is not impacted, and Microsoft recommends applying mitigations immediately, especially in environments that cannot use the Emergency Mitigation Service .
OpenAI hit by TanStack supply-chain attack
OpenAI said two employee devices were compromised in the TanStack supply-chain attack, with credential material stolen from internal source-code repositories . The company revoked code-signing certificates and is re-signing applications, while affected macOS users will need updates by June 12, 2026
.
TanStack compromise spreads malicious packages across major ecosystems
The TanStack incident involved TeamPCP abusing package-publishing weaknesses to release 84 malicious artifacts across 42 packages, with more than 170 packages across NPM and PyPI namespaces impacted . The campaign also infected developer devices with the Shai-Hulud worm, highlighting the growing risk of software supply-chain attacks
.
Bank cybersecurity scrutiny rises amid AI-driven threats
S&P Global reports that Anthropic’s Claude Mythos Preview has intensified concern about cybersecurity weaknesses in banks and other institutions . Industry leaders are urging firms to modernize platforms, move from static defenses to dynamic monitoring, and improve automated response times to AI-enabled attacks
.
Brazil curtailment crisis delays renewable investment
S&P Global says Brazil’s curtailment issues are affecting investment in the power sector, with industry leaders warning that companies may halt new spending until the problem is resolved . While not a direct cyber story, it reflects growing infrastructure resilience concerns across critical sectors
.
MuddyWater uses ransomware as espionage cover
CYFIRMA says the Iranian state-linked group MuddyWater is using Chaos ransomware branding to disguise intelligence-collection operations . The tactic complicates attribution and suggests continued use of false-flag methods in campaigns targeting organizations of strategic interest
.
KillSec expands ransomware-as-a-service operations
CYFIRMA highlights KillSec’s Ransomware-as-a-Service model as a growing global threat because it lowers the barrier for less-skilled attackers . The group is expected to keep targeting a broad set of industries using credential theft and website exploitation
.
Chinese and other APT activity remains highly active
CYFIRMA’s weekly intelligence report notes continued activity from multiple advanced threat actors, including persistent espionage-oriented operations and updated backdoors . The report underscores that state-linked groups remain focused on long-term access and stealth rather than immediate destruction
.
Foxconn confirms cyberattack on North American facilities
Foxconn confirmed a cyberattack affecting several North American manufacturing facilities, while ransomware group Nitrogen claimed it stole 8TB of data . The incident underscores continuing ransomware pressure on industrial and manufacturing organizations
.
Rail safety incident exposes OT security gaps in Taiwan
A Taiwanese student using software-defined radio reportedly disrupted three bullet trains for nearly an hour, prompting an anti-terrorism response . The event highlights how operational technology and transport systems can be disrupted by relatively simple technical actions
.
Quantum-safe cybersecurity vendor QNu Labs gains recognition
QNu Labs was named a ‘Global Established Leader’ in a 2026 quantum key distribution evaluation by MarketsandMarkets 360Quadrants . The recognition reflects rising interest in quantum-safe cybersecurity as organizations prepare for next-generation cryptographic threats
.