Chaotic Eclipse: Two more public disclosures, it will never stop
https://deadeclipse666.blogspot.com/2026/05/two-more-public-disclosures-it-will.html
CVE-2026-40361 - Security Update Guide - Microsoft - Microsoft Word Remote Code Execution Vulnerability
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40361
Page not found · GitHub · GitHub
https://github.com/hmoreirar/Shai-Hulud-Open-Source
GitHub - garatc/BitUnlocker: Downgrade attack for CVE-2025-48804 · GitHub
https://github.com/garatc/BitUnlocker
Adversaries Leverage AI for Vulnerability Exploitation, Augmented Operations, and Initial Access | Google Cloud Blog
https://cloud.google.com/blog/topics/threat-intelligence/ai-vulnerability-exploitation-initial-access
Reviewing the trends in ransomware attacks in 2026 | Securelist
https://securelist.com/state-of-ransomware-in-2026/119761/
403 Forbidden
https://techcommunity.microsoft.com/blog/microsoft-security-blog/bitunlocker-leveraging-windows-recovery-to-extract-bitlocker-secrets/4442806
Official CheckMarx Jenkins package compromised with infostealer
https://www.bleepingcomputer.com/news/security/official-checkmarx-jenkins-package-compromised-with-infostealer/
#BadWinmail Demo - YouTube
https://www.youtube.com/watch?v=ngWVbcLDPm8
New BitUnlocker Downgrade Attack on Windows 11 Allows Access to Encrypted Disks in 5 Minutes
https://cybersecuritynews.com/bitunlocker-downgrade-attack-on-windows-11/
EXPMON Advanced Exploit Detection System
https://pub.expmon.com
MalwareBazaar | teampcp
https://bazaar.abuse.ch/browse/tag/teampcp/
X. It’s what’s happening / X
http://x.com/i/article/2054199223919206401
Operation HumanitarianBait Uses Fake Aid Documents to Deploy Python Spyware
https://hackread.com/operation-humanitarianbait-fake-aid-docs-python-spyware/
West Pharmaceutical Services Hit by Disruptive Ransomware Attack - SecurityWeek
https://www.securityweek.com/west-pharmaceutical-services-hit-by-disruptive-ransomware-attack/
SAP fixes critical vulnerabilities in Commerce Cloud and S/4HANA
https://www.bleepingcomputer.com/news/security/sap-fixes-critical-vulnerabilities-in-commerce-cloud-and-s-4hana/
Fortinet warns of critical RCE flaws in FortiSandbox and FortiAuthenticator
https://www.bleepingcomputer.com/news/security/fortinet-warns-of-critical-rce-flaws-in-fortisandbox-and-fortiauthenticator/
Seedworm: Iran-Linked Hackers Breached Korean Electronics Maker in Global Spying Campaign | SECURITY.COM
https://www.security.com/threat-intelligence/iran-seedworm-electronics
Breaking the code: Multi-stage ‘code of conduct’ phishing campaign leads to AiTM token compromise | Microsoft Security Blog
https://www.microsoft.com/en-us/security/blog/2026/05/04/breaking-the-code-multi-stage-code-of-conduct-phishing-campaign-leads-to-aitm-token-compromise/
XBOW - Dead.Letter (CVE-2026-45185) How XBOW Found an Unauthenticated RCE on Exim
https://bit.ly/42yKTmX
iOS 26.5 Brings Default End-to-End Encrypted RCS Messaging Between iPhone and Android
https://thehackernews.com/2026/05/ios-265-brings-default-end-to-end.html
X. It’s what’s happening / X
http://x.com/i/article/2054220972950200320
PoC Exploit Released for Android 0-Click Vulnerability that Enables Remote Shell Access
https://cybersecuritynews.com/poc-exploit-android-zero-click-vulnerability/
MalwareBazaar | www-apartuk-info
https://bazaar.abuse.ch/browse/tag/www-apartuk-info/
LOLRMM - Home - LOLRMM
http://LOLRMM.io
TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack - SecurityWeek
https://www.securityweek.com/tanstack-mistral-ai-uipath-hit-in-fresh-supply-chain-attack/
Japan’s PM orders cybersecurity review to defend against Anthropic Mythos
https://www.theregister.com/security/2026/05/12/japans-pm-orders-cybersecurity-review-to-defend-against-anthropic-mythos/5238501