12 News Items
HN · BleepingComputer · Krebs · Dark Reading · SANS · THN Intel · Unit 42 · Security.com
HN · BleepingComputer · Krebs · Dark Reading · SANS · THN Intel · Unit 42 · Security.com
📰 Cybersecurity News Headlines
Top stories from leading cybersecurity publications as of May 1, 2026.
-
That AI Extension Helping You Write Emails? It’s Reading Them First
— Unit 42
Unit 42 uncovers high-risk AI browser extensions. Disguised as productivity tools, they steal data, intercept prompts, and exfiltrate passwo… -
TeamPCP Hits SAP Packages With 'Mini Shai-Hulud' Attack
— Dark Reading
Several npm packages for SAP's cloud application development ecosystem have been compromised as TeamPCP's supply chain attacks broaden. -
Another AI-Assisted Software Scan Yields 9-Year-Old Linux Bug
— Dark Reading
The proof-of-concept exploit code runs only 10 lines long, but luckily, a patch is already available. -
Anthropic's Mythos Has Landed: Here's What Comes Next for Cyber
— Dark Reading
In this latest installment of the Reporters' Notebook video series, we discuss how the new AI model threatens to completely upend cybersecur… -
New Bluekit phishing service includes an AI assistant, 40 templates
— Bleeping Computer
A new phishing kit named Bluekit offers more than 40 templates targeting popular services and includes basic AI features for generating camp… -
Romanian leader of online swatting ring gets 4 years in prison
— Bleeping Computer
A Romanian national who led an online swatting ring that targeted more than 75 public officials, multiple journalists, and four religious in… -
FBI links cybercriminals to sharp surge in cargo theft attacks
— Bleeping Computer
The U.S. Federal Bureau of Investigation (FBI) warned the transportation and logistics industry of a sharp rise in cyber-enabled cargo theft… -
PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials
— The Hacker News
In yet another software supply chain attack, threat actors have managed to compromise the popular Python package Lightning to push two malic… -
Anti-DDoS Firm Heaped Attacks on Brazilian ISPs
— Krebs on Security
A Brazilian tech firm that specializes in protecting networks from distributed denial-of-service (DDoS) attacks has been enabling a botnet r… -
ThreatsDay Bulletin: SMS Blaster Busts, OpenEMR Flaws, 600K Roblox Hacks and 25 More Stories
— The Hacker News
The internet is noisy this week. We are seeing some wild new tactics, like people using fake cell towers to send scam texts, while some deve… -
New Python Backdoor Uses Tunneling Service to Steal Browser and Cloud Credentials
— The Hacker News
Cybersecurity researchers have disclosed details of a stealthy Python-based backdoor framework called DEEP#DOOR that comes with capabilities… -
ISC Stormcast For Thursday, April 30th, 2026 https://isc.sans.edu/podcastdetail/9912, (Thu, Apr 30th)
— SANS ISC
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
🪲 NVD — Last 20 Scored Vulnerabilities
Latest scored CVEs from the National Vulnerability Database (5889 in last 30 days).
Critical: 0 · High: 11 · Medium: 8 · Low: 1. View full dashboard →
-
CVE-2026-7513
— CVSS 8.8 (HIGH)
A vulnerability has been found in UTT HiPER 1200GW up to 2.5.3-170306. The impacted element is the function strcpy of the file /goform/formRemoteControl. The manipulation leads to buffer overflow. The attack may be initi⦠-
CVE-2026-7512
— CVSS 8.8 (HIGH)
A flaw has been found in UTT HiPER 1200GW up to 2.5.3-1703. The affected element is the function strcpy of the file /goform/formUser. Executing a manipulation can lead to buffer overflow. The attack can be launched remot⦠-
CVE-2026-5656
— CVSS 7.0 (HIGH)
Profile import path traversal in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and possible code execution -
CVE-2026-5405
— CVSS 7.8 (HIGH)
RDP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and possible code execution -
CVE-2026-5404
— CVSS 4.7 (MEDIUM)
K12 RF5 file parser crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service -
CVE-2026-5403
— CVSS 7.8 (HIGH)
SBC codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service and possible code execution -
CVE-2026-22726
— CVSS 5.0 (MEDIUM)
Route Services can be leveraged to send app traffic to network destinations outside of an app's configured egress rules. As a result, a malicious developer with access to Cloudfoundry could configure a route-service that⦠-
CVE-2026-7510
— CVSS 6.3 (MEDIUM)
A vulnerability was determined in OWAP DefectDojo up to 2.55.4. Affected by this vulnerability is an unknown functionality of the component Benchmark/Engagement/Product/Survey. Executing a manipulation can lead to author⦠-
CVE-2026-7508
— CVSS 6.3 (MEDIUM)
A vulnerability was found in Bootstrap CMS 0.9.0-alpha. Affected is an unknown function of the file resources/views/pages/show.blade.php of the component Page Creation Handler. Performing a manipulation of the argument b⦠-
CVE-2026-7506
— CVSS 7.3 (HIGH)
A vulnerability has been found in SourceCodester Hotel Management System 1.0. This impacts an unknown function of the file /index.php/reservation/check. Such manipulation of the argument room_type leads to sql injection.⦠-
CVE-2026-7505
— CVSS 7.3 (HIGH)
A flaw has been found in nextlevelbuilder GoClaw and GoClaw Lite up to 3.8.5. This affects an unknown function of the component RPC Handler. This manipulation causes improper authorization. The attack may be initiated re⦠-
CVE-2026-7551
— CVSS 8.8 (HIGH)
HKUDS OpenHarness contains a remote code execution vulnerability in the /bridge slash command that allows remote senders accepted by configuration to execute arbitrary operating system commands. Attackers can invoke the ⦠-
CVE-2026-7503
— CVSS 8.8 (HIGH)
A vulnerability was detected in code-projects for Plugin 4.1.2cu.5137. The impacted element is the function setWiFiMultipleConfig in the library /lib/cste_modules/wireless.so of the file /cgi-bin/cstecgi.cgi. The manipul⦠-
CVE-2026-7502
— CVSS 5.4 (MEDIUM)
A security vulnerability has been detected in LinkStackOrg LinkStack up to 4.8.6. The affected element is the function saveLink of the file app/Http/Controllers/UserController.php of the component Management Endpoint. Th⦠-
CVE-2026-6543
— CVSS 8.8 (HIGH)
IBM Langflow Desktop 1.0.0 through 1.8.4 Langflow allows an attacker to execute arbitrary commands with the privileges of the process running Langflow. This allows reading sensitive environment variables (API keys, DB cr⦠-
CVE-2026-6542
— CVSS 6.5 (MEDIUM)
IBM Langflow OSS 1.0.0 through 1.8.4 could allow any user to supply a flow_id to read transaction logs and vertex build data belonging to other users, and to delete persisted vertex build data for another user's flow. -
CVE-2026-6389
— CVSS 8.8 (HIGH)
IBM Turbonomic prometurbo agent 8.16.0 through 8.17.6 IBM Turbonomic Application Resource Management grants excessive cluster‑wide permissions, including unrestricted read access to all secrets. An attacker that compro⦠-
CVE-2026-40687
— CVSS 4.8 (MEDIUM)
In Exim before 4.99.2, when the SPA authentication driver is used with an adversarial SPA resource, there can be an out-of-bounds write that crashes the connection instance, or erroneous data processing that divulges dat⦠-
CVE-2026-40686
— CVSS 3.7 (LOW)
In Exim before 4.99.2, when utf8 operators are enabled, there is an out-of-bounds read if large UTF-8 trailing characters are present (malformed UTF-8 header data). Information might be divulged within an error message p⦠-
CVE-2026-40685
— CVSS 6.5 (MEDIUM)
In Exim before 4.99.2, when JSON lookup is enabled, an out-of-bounds heap write can occur when a JSON operator encounters malformed JSON in an untrusted header, because of an incorrect implementation of skipping.
Source: NVD CVE API 2.0
Generated by CryptXNet.ai Threat Intelligence Platform · May 1, 2026 · Sources: The Hacker News, Bleeping Computer, Krebs on Security, Dark Reading, SANS ISC, THN Threat Intel, Unit 42, Security.com
Leave a Comment