May 14, 2026 | Podcast
https://www.itnews.com.au/news/usb-stick-opens-windows-bitlocker-drives-in-new-zero-day-625859 A newly published zero-day vulnerability dubbed YellowKey allows an attacker with physical access to a Windows device to completely bypass BitLocker disk encryption using...
May 13, 2026 | Podcast
https://openai.com/index/our-response-to-the-tanstack-npm-supply-chain-attack OpenAI has confirmed it was caught up in a supply chain attack targeting TanStack, a popular open-source library widely used by JavaScript developers to build web applications and data...
May 12, 2026 | Podcast
https://depthfirst.com/research/nginx-rift-achieving-nginx-rce-via-an-18-year-old-vulnerability A security vulnerability that has existed in the Nginx web server for eighteen years has been discovered and disclosed, raising serious concerns about the stability and...
May 11, 2026 | Podcast
To help protect Signal users from phishing and social engineering attacks, we’ve introduced additional confirmations and educational messaging in the app to help people better detect fraudulent profiles, especially message requests from scammers posing as Signal. More...
May 8, 2026 | Podcast
https://www.kaspersky.com/blog/passwords-hacking-research-2026/55743 New research from Kaspersky, released on World Password Day 2026, delivers a wake-up call for organisations still relying on MD5 hashing to protect user credentials. Analyzing a dataset of more than...
May 7, 2026 | Podcast
https://www.cifas.org.uk/workplace-fraud-trends-2025 A alarming report from UK fraud prevention organisation Cifas has revealed that 13 percent of employees either have sold company login credentials in the past year or know someone who has, and an equally troubling...
May 6, 2026 | Podcast
https://www.zscaler.com/blogs/security-research/malicious-openclaw-skill-distributes-remcos-rat-and-ghostloader Zscaler ThreatLabz researchers have uncovered a campaign in which threat actors weaponised the OpenClaw open-source AI agent framework to distribute both...
May 5, 2026 | Podcast
https://www.cyber.gov.au/about-us/view-all-content/alerts-and-advisories/clickfix-distributing-vidar-stealer-via-wordpress-targeting-australian-infrastructure Australia’s cybersecurity authorities have issued an official warning regarding an active and...
May 4, 2026 | Podcast
https://securelist.com/amazon-ses-phishing-and-bec-attacks/119623 Security researchers have uncovered a new phishing campaign exploiting Amazon Simple Email Service (SES), Amazon’s legitimate cloud-based email platform, to send malicious emails that bypass...
May 1, 2026 | Podcast
https://www.manifold.security/blog/clawhub-clawswarm-agent-crypto-recruitment Head of Research, Ax Sharma, at Manifold Security have uncovered a sophisticated new threat campaign leveraging two related malware frameworks — dubbed “ClawHub” and...
