Search

bleepingcomputer.com › news › security

Cisco warns of unpatched SD-WAN zero-day exploited in attacks

…However, it shared indicators of compromise (IOCs) warning admins to check their SD-WAN /var/log/scripts.log file for attempts to upload tenant configuration data to vSmart controllers to escalate privileges…

Jun 5, 2026 · Sergiu Gatlan

Top stories

bleepingcomputer.com

Oracle mitigates PeopleSoft zero-day exploited in data theft attacks

1d ago

bleepingcomputer.com

Spain arrests doxer leaking sensitive data of govt employees

1w ago

bleepingcomputer.com › news › security

China-linked JDY botnet expands targeting of U.S. military networks

…The operators control the botnet through hidden Tor services, which also serve as command-and-control (C2) infrastructure. The open-source reverse-shell and host-management framework Platypus is also used in…

Jun 10, 2026 · Bill Toulas

bleepingcomputer.com › news › security

GPU mining malware spreads via SEO poisoning, AI chatbots

…Based on SimpleRunPE.exe’s Program Database (PDB) path, the researchers believe that it is a fork of a public repository for demonstrating the process hollowing technique. The threat actor resorted to…

May 27, 2026 · Ionut Ilascu

bleepingcomputer.com › news › microsoft

Windows 11 KB5089549 & KB5087420 cumulative updates released

…LockBatchFilesWhenInUse Type:  DWORD Data to be set:  0 (disabled) or 1 (enabled) Policy authors can also enable this mode by using the LockBatchFilesWhenInUse application manifest control, as documented in the Application Control…

May 12, 2026 · Mayank Parmar

bleepingcomputer.com › news › security

Android 17 to expand banking scam call and privacy protections

…Android 17 introduces AISeal with pKVM for hardware-backed isolation of AI-related data processing. Pixel devices will initially gain verification for official Android builds, backed by a public ledger for authentic…

May 12, 2026 · Bill Toulas

bleepingcomputer.com › news › security

What 345 Days of Untested Exposure Looks Like at a Bank

What 345 Days of Untested Exposure Looks Like at a Bank Sponsored by Sprocket Security June 3, 2026 10:02 AM In April, a single VPN vulnerability led to data breaches at…

Jun 3, 2026

bleepingcomputer.com › news › security

Inside a Crypto Drainer: How to Spot it Before it Empties Your Wallet

…The analyzed data suggests that modern drainer operations increasingly function similarly to legitimate SaaS businesses. Actors behind Lucifer discussed software releases, bug fixes, affiliate commissions, customer support, hosting recommendations, deployment automation, website…

May 21, 2026

bleepingcomputer.com › news › microsoft

Microsoft plans to improve Windows 11 driver quality in 2026

…Microsoft wants better Windows Update catalog hygiene, including removing outdated or low-quality drivers and using better data to investigate issues. Microsoft will also look at stability, features, performance, battery impact, and…

May 19, 2026 · Mayank Parmar

bleepingcomputer.com › news › security

Hackers bypass SonicWall VPN MFA due to incomplete patching

…The researchers found that the attacker tried to deploy a Cobalt Strike beacon, a post-exploitation framework for command-and-control (C2) communication, and a vulnerable driver, likely to disable endpoint protection…

May 20, 2026 · Bill Toulas

bleepingcomputer.com › news › hardware

Flipper One project needs community help to build open Linux platform

…Unlike Flipper Zero, which focuses on offline access control and radio technologies such as NFC, RFID, infrared, and sub-GHz communications, the Flipper One project is designed as a high-performance, Linux…

May 21, 2026 · Bill Toulas