Bleeping Computer

Google: Hackers used AI to develop zero-day exploit for web admin tool

Researchers at Google Threat Intelligence Group (GTIG) say that a zero-day exploit targeting a popular open-source web administration tool was likely generated using AI. The exploit could be leveraged ...
CoinDesk

Wasabi Protocol drained of $4.5 million in apparent admin key compromise

DeFi can't stop bleeding, and Wasabi Protocol is the latest to find out why. The protocol, a perpetuals trading platform built on Ethereum and Base, was drained of about $4.55 million on Thursday ...
Ars Technica

The most severe Linux threat to surface in years catches the world flat-footed

Publicly released exploit code for an effectively unpatched vulnerability that gives root access to virtually all releases of Linux is setting off alarm bells as defenders scramble to ward off severe ...
CSOonline

‘Trivial’ exploit can give attackers root access to Linux kernel

Experts say until the distros release patches, CSOs have to beware of unauthorized privilege escalation; Kubernetes container escape is also a risk. CSOs must ensure their Linux-based systems block ...
Hosted on MSN

Linux exploit instantly grants administrator access on most distributions since 2017

It is quite an interesting patch week for Linux systems administrators out there. Researchers at Xint Code have discovered a nasty exploit that instantly grants root access to any local unprivileged ...

Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign

A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious ...
Wall Street Journal

Canvas Hack Temporarily Disrupts Thousands of Schools

Canvas, one of the most widely used education apps, said it had restored services after pulling the plug in the middle of finals week at many colleges to deal with a cybersecurity incident. From ...
Forbes

Update Linux Now As 9-Year-Old Root Hack Confirmed, CISA Warns Users

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. With more than 27 million active users and powering 75% of all web-facing servers, it’s ...
CNN

What we know about the Canvas hack that has impacted thousands of schools

A cyberattack shut down an education platform used by universities and K-12 schools across the US Thursday, depriving students and teachers of essential classroom materials — at a time when many are ...
TechCrunch

Hackers deface school login pages after claiming another Instructure hack

On Tuesday, education tech giant Instructure disclosed a data breach where hackers stole students’ private information, including their names, personal email addresses, and messages sent between ...
The Daily Pennsylvanian

Over 300,000 Penn users affected in Canvas hack, cybercrime group claims

On May 3, cybercrime group ShinyHunters claimed responsibility for breaching Instructure — the parent company of Canvas — reportedly compromising the data of hundreds of millions of users, including ...