12 News Items
THN · BleepingComputer · Krebs · Dark Reading · SANS
THN · BleepingComputer · Krebs · Dark Reading · SANS
📰 Cybersecurity News Headlines
Top stories from leading cybersecurity publications as of May 21, 2026.
-
Ukraine identifies infostealer operator tied to 28,000 stolen accounts
— Bleeping Computer
The Ukrainian cyberpolice, working in conjunction with U.S. law enforcement, has identified an 18-year-old man from Odesa suspected of runni… -
Hackers bypass SonicWall VPN MFA due to incomplete patching
— Bleeping Computer
Threat actors brute-forced VPN credentials and bypassed multi-factor authentication (MFA) on SonicWall Gen6 SSL-VPN appliances to deploy too… -
Cyber Pros Can't Decide If AI Is a Good or a Bad Thing
— Dark Reading
There is nothing cybersecurity professionals are more excited about, and nothing they fear more, than AI. -
GitHub Confirms Breach, 4K Internal Repos Stolen
— Dark Reading
Open source software giant GitHub confirmed a data breach this week involving the theft of thousands of repos. One threat actor — TeamPCP … -
Fake Android Apps Commit Carrier Billing Fraud for Premium Svcs.
— Dark Reading
The disguised apps use WebView automation, JavaScript injection, and OTP interception to avoid detection and complete fraudulent subscriptio… -
Processes and Culture Top Reasons Behind Data Breaches
— Dark Reading
Government leaders revealed that, in spite of state laws meant to improve cyber hygiene, an analysis of incidents showed issues persist and … -
Microsoft Open-Sources RAMPART and Clarity to Secure AI Agents During Development
— The Hacker News
Microsoft has unveiled two new open-source tools called RAMPART and Clarity to assist developers in better testing the security of artificia… -
Grafana breach caused by missed token rotation after TanStack attack
— Bleeping Computer
The Grafana data breach was caused by a single GitHub workflow token that slipped through the rotation process following the TanStack npm su… -
Microsoft Takes Down Malware-Signing Service Behind Ransomware Attacks
— The Hacker News
Microsoft on Tuesday said it disrupted a malware-signing-as-a-service (MSaaS) operation that weaponized the company's Artifact Signing syste… -
Identity Alone Isn't Enough: Why Device Security Has to Share the Load
— Bleeping Computer
Identity checks alone can't stop attackers using stolen session tokens and compromised devices. Specops Software outlines why Zero Trust str… -
Webworm Deploys EchoCreep and GraphWorm Backdoors Using Discord and MS Graph API
— The Hacker News
Cybersecurity researchers have flagged fresh activity from a China-aligned threat actor known as Webworm in 2025, deploying custom backdoors… -
Agent AI is Coming. Are You Ready?
— The Hacker News
New Industry Data Just Released Suggests Not. On May 19th, 2026, Orchid Security released the results of our Identity Gap: Snapshot 2026. Am…
Generated by HiveNet.ai Threat Intelligence Platform · May 21, 2026 · Sources: The Hacker News, Bleeping Computer, Krebs on Security, Dark Reading, SANS ISC