Home - Security Buzz

Wednesday, May 27, 2026

dripping honey effect

Cybersecurity News

View More

Claude Code credential stealer https://www.pexels.com/photo/illuminated-keyboard-with-digital-code-display-37694202/

Fake Claude Code Page Turns Trusted Developer Workflow Into Credential-Stealing Attack

A fake Claude Code installation page promoted through sponsored search results delivered an undocumented credential stealer by mimicking a familiar developer workflow, according to new research from Ontinue. Victims looking for Claude Code installation instructions…

email identity AiTM https://www.pexels.com/photo/icons-on-cellphone-screen-8829445/

The AiTM Campaign That Made Your Policies Work Against You

A recent large-scale credential theft campaign discovered by Microsoft Defender Research serves as a prime demonstration of how institutional culture can become the attack surface for increasingly sophisticated phishing attacks. The design of the lure…

open source supply chain vulnerability https://pixabay.com/illustrations/chain-chain-link-connection-2364831/

How Open Source CI Workflows Became the New Supply Chain Vulnerability

On April 24th, 2026, the Elementary Open Source Python CLI was released containing malicious code, injected by an attacker posting a crafted pull request (PR) comment. The GitHub Actions workflow interpolated the comment into a…

PocketOS Cursor agent database https://www.pexels.com/photo/a-man-in-red-shirt-covering-his-face-3760043/

When Agents Decide to "Fix" It: The Governance Gap in Autonomous AI

All it took was the time to read this sentence, or about nine seconds. An AI coding agent wiped out months of customer data essential to the PocketOS SaaS platform and its car rental clients.…

Copy Fail Linux vulnerability https://www.pexels.com/photo/close-up-of-rgb-backlit-gaming-keyboard-37099672/

How Copy Fail Turned Linux's Memory Efficiency Against Itself

A newly discovered vulnerability, dubbed Copy Fail and tracked as CVE-2026-31431, defies the profile of a classic kernel exploit by requiring no race condition, no version-specific offsets, and no compiled payloads. The same 732-byte Python…

SAP supply chain npm https://www.pexels.com/photo/close-up-of-codes-on-a-computer-screen-4976712/

SAP npm Compromise Exposes Credential Risk in Build Pipelines

Malicious versions of four SAP-related npm packages exposed developer machines and CI/CD systems to possible credential theft. Rather than targeting production SAP servers directly, the attack reached into the build pipeline used to create and…

PhantomRPC Microsoft https://www.pexels.com/photo/crop-cyber-spy-hacking-system-while-typing-on-laptop-5935794/

Why PhantomRPC Is a Flaw That Cannot Be Patched Away

The Remote Procedure Call (RPC) mechanism of the Interprocess Communication (IPC) ecosystem is the universal communication backbone of Windows systems, embedded so deeply in the OS that its failure modes become everyone's problem. A recent…

taxes phishing IRS https://www.pexels.com/photo/close-up-shot-of-a-document-through-a-magnifying-glass-7821673/

Tax Phishing Is Moving From Personal Inboxes to the Workplace

Tax phishing has long been easy to dismiss as a seasonal consumer scam: fake IRS emails, refund bait, audit threats, and other lures aimed at people anxious about filing deadlines. New research from Hoxhunt suggests…

AI security Unit 42 Zealot PoC https://www.pexels.com/photo/abstract-digital-circuit-block-graphic-art-30547567/

What Zealot Reveals About AI's Cloud Offensive Capabilities

A disclosure from AI giant Anthropic in November 2025 confirmed that AI autonomously executed between 80% and 90% of a particular state-sponsored espionage campaign, effectively shifting the debate from hypothetical to a documented reality. Unit…

Industry News

View More

Cisco acquires Astrix agentic AI identities https://www.pexels.com/photo/an-artist-s-illustration-of-artificial-intelligence-ai-this-image-depicts-how-ai-could-adapt-to-an-infinite-amount-of-uses-it-was-created-by-nidia-dias-as-part-of-the-visualising-ai-pr-17485658/

Why Cisco Paid $400M to Secure the Identities No One Is Watching

The broad digital landscape in recent years has seen a massive increase in non-human identities (NHIs), including API and access keys, service accounts, OAuth tokens, and AI agents. These identities now outnumber human users by…

Suzu Labs Emulated Criminals https://pixabay.com/illustrations/security-internet-crime-cyber-4700815/

Suzu Labs Acquires Emulated Criminals to Make the Case That Cybersecurity's Most Critical Decisions Can't Be Automated

Enterprise security programs have largely been built around periodic assessments and checkbox frameworks, designed to ensure bare-minimum compliance with regulations to avoid penalties. The annual or quarterly testing cycles accompanying this approach create dangerous blind…

Palo Alto Koi https://pixabay.com/photos/koi-fish-koi-carp-water-japan-4418256/

Why Palo Alto's $400M Koi Acquisition Signals a New Security Imperative

Traditional endpoint security measures and tools were built around the assumption of human actors, rendering them ineffective in modern environments. Organizations often extend implicit trust to developer tooling and third-party software rather than dedicating resources…

CyberEdge 2026 Cyberthreat Defense Report

CyberEdge’s 2026 Cyberthreat Defense Report Signals AI-Driven Upheaval for Security Teams

The newly released 2026 Cyberthreat Defense Report from CyberEdge Group paints a clear picture: artificial intelligence is no longer just a tool in cybersecurity—it’s a disruptive force reshaping both the threat landscape and the workforce…

Cisco Galileo AI observability agentic visibility https://unsplash.com/photos/a-large-group-of-colorful-balls-floating-in-the-air-AXNZb4FEkh8

Cisco's Acquisition of Galileo and the Rise of Agentic Observability

The AI boom continues to bring new developments and shows no sign of stopping anytime soon. Agentic AI systems are now embedded in software development, content creation, and customer support workflows in an effort to…

Fortra Zero-Point Security training https://unsplash.com/photos/code-displayed-on-computer-screens-v-jFS1AsHXo

How Fortra's Acquisition of Zero-Point Security Is Redefining Offensive Security Education

The dangerous gap between tool sophistication and operator readiness continues to widen, creating security risks that compound over time. Red team platforms like Cobalt Strike have outpaced available education, making it difficult to adequately conduct…

AppViewX Eos

AppViewX Acquires Eos to Secure the AI Agent Identity Frontier

The rapid proliferation of AI agents inside enterprise environments has been a major development in recent years of the AI boom. Their autonomous, privileged nature makes them fundamentally different from any identity category that came…

OpenAI Promptfoo

OpenAI Bets on AI Security With Promptfoo Acquisition

The AI explosion of the past several years, marked by the booming popularity of generative AI for personal and professional functions, has been largely focused on ensuring performance and quality of these tools. Agentic AI…

Booz Allen Defy Security

Booz Allen’s Cybersecurity Pivot Signals a New Battle for the Enterprise Security Market

Booz Allen Hamilton is a company with over 100 years of history, today known primarily for specialization in digital transformation and artificial intelligence services. The company has a legacy in government consulting and national security,…

Subscribe for the Latest News

Webinars

Thursday, May. 28 1pm ET / 10am PT

From Reactive to Resilient: Agentic AI and the Future of Cyber Defense

Thursday, May. 28 1pm ET / 10am PT

The End of the Exposure Window? What Claude Mythos and Glasswing Mean for Security Leaders

Thursday, Jun. 4 1pm ET / 10am PT

Is Your Security Built for Today’s World?