Security

Microsoft confirms active exploitation of Exchange Server zero-day CVE-2026-42897 via crafted email with no permanent patch available for on-prem deployments.

Pwn2Own Berlin 2026 paid out over $908,000 across 39 zero-days in two days, with Microsoft Exchange compromised for $200,000 and Windows 11 hacked four times.

Microsoft's MDASH AI security system found 16 Windows vulnerabilities, including four critical RCEs, all patched in May Patch Tuesday, beating Anthropic and OpenAI benchmarks.

SwitchBot has launched the Lock Vision series smart door lock in the global market. The Lock Vision series consists of two models, namely the Lock Vision and the Lock Vision Pro. The Lock Vision series is advertised as the world’s first smart deadbolt lock equipped with 3D structured-light facial recognition technology.

Windows 11 Release Preview builds KB5089573 and KB5089570 landed May 14 with Copilot in Excel, zero-day patches, Shared LE Audio, and new IT admin AI controls.

Foxconn confirmed a ransomware attack on North American factories after Nitrogen claimed to steal 8TB of data including Apple, Nvidia, and Intel project documentation.

Nightmare-Eclipse has released YellowKey, a fully BitLocker encrypted disk bypass for vulnerable Windows 11 and Server systems. The hack leverages code left behind in the WinRE recovery environment to unlock encrypted disks without knowledge of the encryption keys.

A new era of accidental "butt dials" is about to land after Google's annoucement during The Android Show: I/O Edition 2026 that new and enhanced Gemini Intelligence AI features will be added to Android OS. The AI will have the ability to use apps and the web browser autonomously, including placing orders using personal information and sending messages with photos.

Windows 11 May 2026 Patch Tuesday rolls out KB5089549 today, pushing Xbox mode to all users and advancing Secure Boot certificate deployment ahead of the June 26 deadline.

Brawl Stars Season 50 Starr Patrol launches May 7 with a free Starr Nova Brawler on May 24, the Void Master Finx boss event, and Brawl Cup Berlin on May 15-17.

In addition to the 6.19.13 kernel, which comes with a patch for the "Copy Fail" bug, Parrot OS 7.2 comes with significant updates to parrot-menu and several other tools, as well as an alignment with the Debian project. Thanks to it, this release syncs Parrot with the latest Debian upstream updates.

The FCC has extended a waiver allowing software and firmware updates for existing foreign-made routers and drones, including TP-Link routers and DJI drones, until January 1, 2029. The decision, framed as a public safety measure, preserves security patches and bug fixes for millions of devices while broader national security restrictions and legal challenges continue.

Anyone currently shopping for a discounted ZimaCube system could easily fall for a tempting offer. The website zimaproducts.com lists several Zima systems at prices far below market value — but according to manufacturer IceWhale, the site is a scam. What makes it especially concerning: the fake store apparently uses real product images and familiar Zima branding.

A fake Claude AI website is pushing the Beagle Windows backdoor through Google sponsored search results using a trojanized Claude-Pro Relay installer that silently deploys a remote access tool.

Instagram removes end-to-end encryption from DMs on May 8, 2026. Here is why Meta made the decision, what it means for your privacy, and how to download your chats today.

A faulty Defender signature update flagged two trusted DigiCert root certificates as malware and removed them from Windows systems worldwide.

ShinyHunters claimed it had accessed Nvidia’s GeForce Now systems and obtained a “full database leak” containing user account and personal information. Nvidia says its investigation found no impact on Nvidia-operated services, stating the incident is confined to databases run by its Armenia-based third-party partner GFN.am, which has begun notifying affected users, and reports indicate passwords were not leaked.

Windows 11 KB5083769 is blocking the psmounterex.sys driver used by Macrium Reflect and Acronis, causing backup failures and VSS timeouts on 24H2 and 25H2.

Amazon content restricted, no access to the home server: geoblocking can quickly become annoying while on vacation. That’s why, before leaving, I installed Tailscale on my small home server/NAS and on the devices I take with me. Together, they form a network that lets my travel devices browse through my home network and its German IP address.

OmniOS r151058, only supporting upgrades from r151054 and r151056, is now available with improved IPv6 support, GMAC signing in SMB 3.1.1, ZFS improvements, better hardware support, load-balancing for individual logical units via mpathadm, as well as many other tweaks and fixes.

Changes to the PlayStation DRM should not negatively impact most gamers. On the other hand, an insider expects Sony to conduct more online license verifications to prevent PS5 jailbreaks. Responding to new exploits, a 30-day check could deactivate pirated games or even brick consoles.

A Cursor agent running Claude Opus 4.6 deleted PocketOS's production database and all backups in 9 seconds, then admitted to breaking every safety rule it was given.

The criticized 30-day DRM for digital PS4 and PS5 games may not be as severe as anticipated. A Sony representative informed Gamespot that buyers only need to perform a one-time license check. Rumors suggested that gamers had to connect to the internet every 30 days or lose access.

A Redditor shared a cautionary tale about downloading early-access games before release dates. A GTA 6 leak with a playable build turned out to be a virus, wreaking havoc with a Windows OS. It later became apparent that the gamer likely tricked posters and never possessed a pirated copy.

CISA has ordered federal agencies to patch CVE-2026-32202, a zero-click Windows Shell flaw left open by an incomplete February fix now confirmed as exploited.

Microsoft is force-upgrading unmanaged Windows 11 24H2 PCs to 25H2 ahead of October 13 end of support, but KB5083769 is still sending some machines into unrecoverable boot loops.

Staying offline indefinitely may no longer be an option with more Steam games. A hypervisor bypass developer discovered Denuvo now asks players to authenticate tokens online every 14 days. 2K Games titles like NBA 2K26 and Marvel’s Midnight Suns have the more restrictive DRM.

Morpheus Android spyware, linked to Italian firm IPS, tricks targets into installing a fake update app by cutting off their mobile data first, then hijacks their WhatsApp account using biometric spoofing.

The largest home security company in the United States, ADT, confirmed it suffered a data breach on April 20. This breach involved the compromise of customers' personally identifying information. A hacker group known as ShinyHunters has claimed responsibility and issued a ransom threat.

OpenAI GPT 5.5 and 5.5 Pro have launched with enhanced intelligence and greater cybersecurity threats, requiring enhanced safeguards. Versus Claude Opus 4.7, GPT 5.5 / 5.5 Pro demonstrates better tool use, hacking skills, academic problem solving, and abstract reasoning.

Threat group UNC6692 is using Microsoft Teams IT impersonation and mass email bombing to deploy the SNOW malware toolkit and steal credentials from enterprise networks.

Microsoft’s Windows 11 KB5083769 April 2026 update causes critical boot failures, pixelated BSODs, and BitLocker recovery loops on Windows 11 24H2 and 25H2 PCs.

A new iOS update patches a security issue where the notification log was exposed where it should have been deleted. The issue became well known after the FBI used it to extract Signal messages from a suspect's phone.

A phishing campaign is abusing Apple's notification system to deliver scams inside real Apple emails that pass all authentication checks.

The indoor camera with the somewhat cumbersome name Tapo C245D comes with two independently usable lenses, which are designed to offer a wider field of view and therefore more security than other cameras.

A Dutch journalist demonstrated a major operational-security flaw by slipping a $5 Bluetooth tracker into a postcard that, once aboard the $585 million HNLMS Evertsen, broadcast the frigate’s real-time location via a crowdsourced network for roughly 24 hours. The incident, enabled by lenient mail screening and a tracker “phone-leeching” design, prompted the Dutch Ministry of Defense to ban battery-powered electronic greeting cards and renewed scrutiny after similar location leaks, such as Strava activity on France’s Charles de Gaulle.

Sony is now stipulating that gamers in the UK and Ireland complete age verification. PSN users must prove their identities or lose access to text messaging, voice chat, and more. Privacy advocates worry that companies will fail to protect sensitive information they collect.

Microsoft has released emergency out-of-band updates KB5091157 and KB5091575 to fix LSASS crashes and domain controller reboot loops caused by the April 2026 KB5082063 update.

The Samsung Galaxy S26 Ultra shines with a long-term update promise; however, this does not yet apply to all areas, as one important update is still missing.

Microsoft confirmed that its April 2026 security updates, including KB5082063 and KB5083769, are triggering BitLocker recovery prompts on some Windows Server 2025, Windows 11, and Windows 10 devices.

Denuvo aims to curb piracy, but it can also frustrate legitimate buyers. Pragmata Steam Deck and Linux players who update their PCs may not be able to run the game. The DRM has a 5-machine activation limit per 24 hours, and these changes count toward that restriction.

Microsoft April 2026 Patch Tuesday fixes 167 vulnerabilities, including an actively exploited SharePoint zero-day. Windows 11 KB5083769 and KB5082052 bring new builds and RDP security.

It didn’t take a hacker long to overcome Denuvo protection in Resident Evil Requiem. While the DRM thwarted pirates in the past, more games are being pirated closer to release dates. Resident Evil Requiem performance also improved compared to the hypervisor bypass alternative.

Threat group ShinyHunters has listed Rockstar Games on its leak site, alleging a data breach through an Anodot-Snowflake integration. The group has set an April 14 deadline for the studio to respond to these claims.

More and more users are reporting that their Samsung Galaxy S22 Ultra has been rendered unusable by an attack via Samsung Knox, and Samsung's support is apparently unable to restore the flagships to working order in many cases.

Although the recently discovered vulnerabilities in Firefox 140.9.1 have apparently not been exploited yet, Tails 7.6.1 comes to ensure that won't happen in the future either. This emergency release includes Tor Browser 15.0.9 and Tor client 0.4.9.6, as well as some refreshed firmware packages for improved hardware support.

Anthropic is keeping its new cyber AI, Claude Mythos, under wraps, even though the company says the model has found security vulnerabilities in major operating systems and browsers. The reason: Mythos may not only be able to detect vulnerabilities, but also help create dangerous exploits.

Anthropic just announced Project Glasswing - the company's newest initiative to secure critical software using the unreleased Claude Mythos Preview model. The project includes $100 million in usage credits and $4 million in donations.