Search

bleepingcomputer.com › news › security

CISA flags two-year-old Oracle flaw as actively exploited in attacks

…CVE-2026-21992) in Identity Manager and Web Services Manager, but declined to comment when BleepingComputer reached out to ask about its exploitation status. Over the last several years, CISA has flagged…

Jun 2, 2026 · Sergiu Gatlan

Top stories

bleepingcomputer.com

Microsoft patches Exchange Server zero-day exploited in attacks

19h ago

bleepingcomputer.com

Microsoft Defender 'RoguePlanet' zero-day grants SYSTEM privileges

1d ago

bleepingcomputer.com

GitHub disables Microsoft repos pushing password-stealing malware

1d ago

bleepingcomputer.com

Microsoft June 2026 Patch Tuesday fixes 3 zero-day, 200 flaws

1d ago

bleepingcomputer.com › news › artificial-intelligence

OpenAI upgrades GPT-5.5, as it plans to retire legacy ChatGPT models

…At BleepingComputer, he covers technology news with a strong focus on Microsoft and Windows-related stories. He is always poking under the hood of Windows, looking for the latest secrets to reveal…

Jun 2, 2026 · Mayank Parmar

bleepingcomputer.com › news › security

GitHub links repo breach to TanStack npm supply-chain attack

…GitHub revealed the breach on Tuesday, saying it was investigating claims of unauthorized access to its internal repositories and telling BleepingComputer that the incident resulted from an employee installing a malicious Visual…

May 21, 2026 · Sergiu Gatlan

bleepingcomputer.com › news › security

FBI warns of in-person data theft attacks from extortion gang

…As previously reported by BleepingComputer, the same group of threat actors was also linked to BazarCall campaigns  that provided initial access to corporate networks in Conti and Ryuk ransomware attacks. In March…

May 27, 2026 · Sergiu Gatlan

bleepingcomputer.com › news › security

GitHub confirms breach of 3,800 repos via malicious VSCode extension

…The attacker's current claims of ~3,800 repositories are directionally consistent with our investigation so far." This comes after GitHub told BleepingComputer on Tuesday evening that it was investigating claims of…

May 20, 2026 · Sergiu Gatlan

bleepingcomputer.com › news › security

SHub macOS infostealer variant spoofs Apple security updates

…Currently, the fake QQ and Microsoft domains still serve fake WeChat installers, while the one impersonating the Miro visual collaboration platform redirects to the legitimate website. BleepingComputer noticed that download buttons for…

May 18, 2026 · Bill Toulas

bleepingcomputer.com › news › microsoft

Windows 11 KB5094126 & KB5093998 cumulative updates released

…At BleepingComputer, he covers technology news with a strong focus on Microsoft and Windows-related stories. He is always poking under the hood of Windows, looking for the latest secrets to reveal…

Jun 9, 2026 · Mayank Parmar

bleepingcomputer.com › news › security

OpenAI confirms security breach in TanStack supply chain attack

…accounts, inject malicious payloads into package tarballs, and publish new trojanized package versions to repositories. Microsoft Threat Intelligence also reported that it launched a Linux information-stealing tool that targeted systems running…

May 14, 2026 · Lawrence Abrams

bleepingcomputer.com › news › security

AI-built ransomware toolkit automates EDR evasion, AD discovery

…Some of the malware created this way was tested in virtual environments against EDR tools from Sophos, CrowdStrike, and Microsoft. Despite the malware research and development orchestrated using AI technology, the researchers…

Jun 2, 2026 · Bill Toulas

bleepingcomputer.com › news › microsoft

Microsoft fixes outage affecting MFA setup, MySignIn service

Microsoft fixes outage affecting MFA setup, MySignIn service By Sergiu Gatlan June 1, 2026 07:40 AM Microsoft has addressed an incident preventing customers from setting up multi-factor authentication (MFA) or…

Jun 1, 2026 · Sergiu Gatlan