Anthropic's Claude Mythos model has identified over 23,000 potential vulnerabilities across 1,000 open source software projects, with nearly 3,900 critical and high-severity issues expected to be confirmed.
ShinyHunters extortion gang breached education technology giant Instructure, defacing Canvas login portals for hundreds of colleges and universities, threatening to leak stolen data if a ransom is not paid by May 12, 2026.
Iranian government hackers are using Chaos ransomware as a cover for alleged espionage and data theft operations, according to researchers from Rapid7.
European lawmakers have reached a tentative agreement to simplify the EU's AI Act, including a ban on AI nudification tools and delayed implementation of key provisions.
A fake Claude AI website is delivering a new Windows malware called Beagle, which provides attackers with remote access to compromised systems.
The trial between Elon Musk and OpenAI's leaders has sparked concerns about the risks of artificial intelligence to humanity, with both sides accusing each other of trying to control the company's development of advanced AI technology.
Two US nationals were sentenced to 18 months in prison for running laptop farms that facilitated North Korea's remote IT workers scheme, generating $1.2 million in revenue for the regime.
Suspected state-sponsored hackers have been exploiting a critical-severity PAN-OS firewall zero-day vulnerability, tracked as CVE-2026-0300, for nearly a month, allowing unauthenticated attackers to execute arbitrary code with root privileges.
A critical zero-day vulnerability, CVE-2026-0300, is being exploited in the wild, affecting some Palo Alto Networks' customers' firewalls, allowing unauthenticated attackers to run code with root privileges.
A phishing campaign is targeting ManageWP credentials through Google sponsored search results, with 200 unique victims confirmed so far.