2026-05-14 | Hacker Trends

05/13

05/14

05/15

4 Posts

KongTuke hackers now use Microsoft Teams for corporate breaches

https://www.bleepingcomputer.com/news/security/kongtuke-hackers-now-use-microsoft-teams-for-corporate-breaches/

KongTuke hackers now use Microsoft Teams for corporate breaches

4 Posts

GitHub - Nightmare-Eclipse/MiniPlasma: CVE-2020-17103 supposedly still works · GitHub

https://github.com/Nightmare-Eclipse/MiniPlasma

GitHub - Nightmare-Eclipse/MiniPlasma: CVE-2020-17103 supposedly still works · GitHub

3 Posts

Disclosing new PebbleDash-based tools by Kimsuky | Securelist

https://securelist.com/kimsuky-appleseed-pebbledash-campaigns/119785/

Disclosing new PebbleDash-based tools by Kimsuky | Securelist

3 Posts

NGINX Rift: Achieving NGINX Remote Code Execution via an 18-Year-Old Vulnerability | depthfirst

https://depthfirst.com/research/nginx-rift-achieving-nginx-rce-via-an-18-year-old-vulnerability

NGINX Rift: Achieving NGINX Remote Code Execution via an 18-Year-Old Vulnerability | depthfirst

3 Posts

Researcher Drops YellowKey, GreenPlasma Windows Zero-Days - SecurityWeek

https://www.securityweek.com/researcher-drops-yellowkey-greenplasma-windows-zero-days/

Researcher Drops YellowKey, GreenPlasma Windows Zero-Days - SecurityWeek

3 Posts

Palo Alto PAN-OS 0-Day Exploited to Execute Arbitrary Code With Root Privileges on Firewalls

https://cybersecuritynews.com/pan-os-rce-flaw-exploited/

Palo Alto PAN-OS 0-Day Exploited to Execute Arbitrary Code With Root Privileges on Firewalls

3 Posts

Simple bypass of the link preview function in Outlook Junk folder

https://isc.sans.edu/diary/32990

Simple bypass of the link preview function in Outlook Junk folder

3 Posts

Alleged Dream Market kingpin faces US, German charges

https://www.theregister.com/security/2026/05/14/alleged-dream-market-kingpin-faces-us-german-charges/5240315

Alleged Dream Market kingpin faces US, German charges

3 Posts

Thus Spoke…The Gentlemen - Check Point Research

https://research.checkpoint.com/2026/thus-spoke-the-gentlemen/

Thus Spoke…The Gentlemen - Check Point Research

3 Posts

Popular node-ipc npm Package Infected with Credential Steale...

https://socket.dev/blog/node-ipc-package-compromised

Popular node-ipc npm Package Infected with Credential Steale...

3 Posts

F5 Patches Over 50 Vulnerabilities - SecurityWeek

https://www.securityweek.com/f5-patches-over-50-vulnerabilities/

F5 Patches Over 50 Vulnerabilities - SecurityWeek

3 Posts

Dirty Frag gets a sequel as Fragnesia hands Linux attackers root-level access

https://www.theregister.com/security/2026/05/14/dirty-frag-gets-a-sequel-as-fragnesia-hands-linux-attackers-root-level-access/5240270

Dirty Frag gets a sequel as Fragnesia hands Linux attackers root-level access

3 Posts

Critical 18-Year-Old NGINX Vulnerability Enables Remote Code Execution Attacks

https://cybersecuritynews.com/18-year-old-nginx-rce-vulnerability/

Critical 18-Year-Old NGINX Vulnerability Enables Remote Code Execution Attacks

3 Posts

NIST Updates NVD Operations to Address Record CVE Growth | NIST

https://www.nist.gov/news-events/news/2026/04/nist-updates-nvd-operations-address-record-cve-growth

NIST Updates NVD Operations to Address Record CVE Growth | NIST