Search

bleepingcomputer.com › news › security

Cisco warns of critical Unified CM flaw with PoC exploit code

…The reason is that exploitation of this vulnerability could result in an attacker elevating privileges to root." Cisco's Product Security Incident Response Team (PSIRT) is aware of publicly available proof-of…

Jun 4, 2026 · Sergiu Gatlan

bleepingcomputer.com › news › security

GitHub investigates internal repositories breach claimed by TeamPCP

…The company has yet to share more information about the investigation, but said it currently has no evidence that customer data stored outside its internal repositories has been affected. "We are investigating…

May 20, 2026 · Sergiu Gatlan

bleepingcomputer.com › news › security

Klue OAuth breach linked to 'Icarus' Salesforce data theft attacks

…That company has now been removed from the data leak site, which may indicate that negotiations are underway. Today, Huntress disclosed that it was among the organizations impacted by the Klue breach…

Jun 18, 2026 · Lawrence Abrams

bleepingcomputer.com › news › security

Microsoft links Mastra AI supply chain attack to North Korean hackers

…Microsoft says the group was also responsible for a separate npm supply chain attack on the Axios HTTP client in April 2026. Test every layer before attackers do Security teams log 54…

Jun 20, 2026 · Lawrence Abrams

bleepingcomputer.com › news › security

Suspicious Polyfill login prompts pop up on Toshiba, Muji websites

…Both Japanese companies advised users who entered their account login data in the authentication screens to change their passwords to access the service. The login pop-ups were generated by the external…

Jun 5, 2026 · Bill Toulas

bleepingcomputer.com › news › security

Nottingham University data breach affects over 450,000 students

…While the university has yet to attribute the attack, the ShinyHunters extortion gang claimed responsibility on Tuesday and shared an archive of allegedly stolen documents as proof. In a post on their…

Jun 11, 2026 · Sergiu Gatlan

bleepingcomputer.com › news › security

Cisco fixes SD-WAN vManage flaw exploited in zero-day attacks

…This file could later be used to elevate to root." Cisco said its Product Security Incident Response Team (PSIRT) became aware of the exploitation of CVE-2026-20262 earlier this month and…

Jun 15, 2026 · Sergiu Gatlan

bleepingcomputer.com › news › microsoft

Microsoft testing adjustable taskbar, Start menu in Windows 11

…improve Windows 11 system performance and make it more responsive and consistent. In addition to taskbar and Start menu improvements, the company plans to reduce notifications, simplify Windows settings, and ensure that…

May 18, 2026 · Sergiu Gatlan

bleepingcomputer.com › news › security

5 Steps to Managing Shadow AI Tools Without Slowing Down Employees

…A browser-based AI tool that connects to company data through a quick login approval bypasses those controls entirely, because it never passes through the corporate network at all. According to Adaptive…

May 18, 2026

bleepingcomputer.com › news › microsoft

Microsoft warns of Exchange zero-day flaw exploited in attacks

…While patches aren't yet available to permanently fix the vulnerability, the company added that the Exchange Emergency Mitigation Service (EEMS) will provide automatic mitigation for Exchange Server 2016, 2019, and SE…

May 15, 2026 · Sergiu Gatlan