Search

bleepingcomputer.com › news › security

Iranian hackers targeted major South Korean electronics maker

…Credential theft occurred via fake Windows prompts, registry hive theft (SAM/SECURITY/SYSTEM), and Kerberos ticket abuse tools. Persistence was established through registry modifications, beaconing occurred at 90-second intervals, and sideloaded…

May 13, 2026 · Bill Toulas

Top stories

bleepingcomputer.com

Hola Browser for Windows compromised to deliver cryptominer

3d ago

bleepingcomputer.com

Microsoft's Coreutils project brings Linux commands to Windows

5d ago

bleepingcomputer.com

Microsoft fixes KB5089549 Windows security update install issues

6d ago

bleepingcomputer.com

Microsoft: Domain Controller lookup may fail on Windows Server 2016

1w ago

bleepingcomputer.com › news › security

Laravel Lang packages hijacked to deploy credential-stealing malware

…An embedded PDB path also references the Windows account name 'Mero' and contains 'claude,' potentially indicating that AI was used to assist in developing the Windows malware. C:\Users\Mero\OneDrive\Desktop…

May 23, 2026 · Lawrence Abrams

bleepingcomputer.com › news › security

Critical vm2 sandbox bug lets attackers execute code on hosts

…What SCA Tools Miss Hackers are exploiting a critical LiteLLM pre-auth SQLi flaw Telegram channels expose rapid weaponization of SmarterMail flaws New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC…

May 6, 2026 · Bill Toulas

bleepingcomputer.com › news › security

Google accidentally exposed details of unfixed Chromium flaw

…Recently leaked Windows zero-days now exploited in attacks Windows BitLocker zero-day gives access to protected drives, PoC released New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC released Windows…

May 21, 2026 · Bill Toulas

bleepingcomputer.com › news › security

VS Code zero-day lets hackers steal GitHub tokens in one click

…Microsoft shares mitigation for YellowKey Windows zero-day New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC released Recently leaked Windows zero-days now exploited in attacks Microsoft warns of Exchange…

Jun 3, 2026 · Sergiu Gatlan

bleepingcomputer.com › news › security

Drupal critical update to fix bug with high exploitation risk

…Telegram channels expose rapid weaponization of SmarterMail flaws New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC released Google: Hackers used AI to develop zero-day exploit for web admin tool…

May 20, 2026 · Bill Toulas

bleepingcomputer.com › news › security

Acer working to patch max severity zero-days in Wave 7 routers

…Google fixes one actively exploited Android zero-day, 124 flaws Disgruntled researcher leaks “BlueHammer” Windows zero-day exploit New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC released New Gogs zero…

Jun 3, 2026 · Sergiu Gatlan

bleepingcomputer.com › news › microsoft

Microsoft blames macOS update for undismissible Teams location prompts

…I checked for a Microsoft Teams update, but there isn't one." Earlier today, Microsoft acknowledged this known issue in a new incident report ( TM1315837 ) and blamed it on a recent macOS…

May 19, 2026 · Sergiu Gatlan

bleepingcomputer.com › news › security

New Linux 'Dirty Frag' zero-day gives root on all major distros

…Exploit available for new DirtyDecrypt Linux root escalation flaw New Fragnesia Linux flaw lets attackers gain root privileges Recently leaked Windows zero-days now exploited in attacks CISA says ‘Copy Fail’ flaw…

May 8, 2026 · Sergiu Gatlan

bleepingcomputer.com › news › security

Hackers hijack thousands of sites for ClickFix and FakeUpdate attacks

…commands in the Windows command prompt or Terminal that they don’t fully understand. The Validation Gap: Automated Pentesting Answers One Question. You Need Six. Automated pentesting tools deliver real value, but…

Jun 1, 2026 · Bill Toulas