Security news.
Today's security news is dominated by a flurry of Patch Tuesday updates from major vendors, addressing numerous vulnerabilities across various products. Additionally, several significant data breaches and cyberattacks have come to light, impacting large organizations and critical infrastructure.
AI Agents Generate Custom Hacking Tools on the Fly
Two threat campaigns have been observed heavily leveraging AI agents to create custom hacking tools for attacks against entities in Mexico and Brazil.
Foxconn Confirms Cyberattack Claimed by Nitrogen Ransomware Gang
The world's largest electronics manufacturer, Foxconn, confirmed a cyberattack affecting some of its North American factories, with the Nitrogen ransomware gang claiming responsibility.
Government to Scrutinize Instructure Over Canvas Disruption, Data Breach
The Committee on Homeland Security has requested a briefing on the recent cyberattack and data breach impacting Instructure's Canvas platform, which disrupted schools nationwide.
Microsoft Patches 138 Vulnerabilities, Including Critical RCE Flaws
Microsoft released patches for 138 security vulnerabilities, including 30 critical flaws in DNS, Netlogon, and Outlook, as part of its May 2026 Patch Tuesday.
Fortinet, Ivanti Patch Critical Vulnerabilities
Fortinet and Ivanti have released patches for critical vulnerabilities that could lead to arbitrary code execution and information disclosure in their products.
716,000 Impacted by OpenLoop Health Data Breach
Telehealth platform OpenLoop Health experienced a data breach in January, resulting in the exfiltration of personal information belonging to 716,000 users.
GemStuffer Abuses 150+ RubyGems to Exfiltrate Scraped U.K. Council Portal Data
A new campaign, "GemStuffer," has targeted the RubyGems repository with over 150 malicious packages used for data exfiltration rather than malware distribution.
Mini Shai-Hulud Worm Compromises TanStack, Mistral AI, Guardrails AI & More Packages
The TeamPCP threat actor has been linked to a new "Mini Shai-Hulud" campaign, compromising npm and PyPI packages from various vendors including TanStack and Mistral AI.