https://threatdigest.io/article/undermining-the-trust-boundary-investigating-a-stealthy-intrusion-through-third-party-compromise/ Threat Digest en 2026-05-12T15:40:52.324777+00:00 Third-Party Compromise: The Silent Invasion of Trusted Systems IT services providers, Microsoft Incident Response, administrative tools, stealthy intrusion, third-party compromise, trust boundary https://threatdigest.io/article/new-trickmo-variant-uses-ton-c2-and-socks5-to-create-android-network-pivots/ Threat Digest en 2026-05-12T14:56:34.009245+00:00 TrickMo Uses TON for Android Network Pivots Android malware, SOCKS5 proxy, TON, The Open Network, TrickMo, network pivot https://threatdigest.io/article/apple-patches-dozens-of-vulnerabilities-in-macos-ios/ Threat Digest en 2026-05-12T12:31:38.743640+00:00 Apple Patches Dozens of Flaws [Urgent Update Required] apple, cve, cybersecurity, ios security, macOS security, vulnerabilities https://threatdigest.io/article/20-leaders-who-built-the-ciso-era-2-decades-of-change/ Threat Digest en 2026-05-12T12:20:45.711816+00:00 CISO Era's Architects: 20 Years of Risk Rewritten CISO, cybersecurity, enterprise risk management, security leaders https://threatdigest.io/article/why-agentic-ai-is-securitys-next-blind-spot/ Threat Digest en 2026-05-12T11:35:06.779557+00:00 Agentic AI Security Gap: What It Means for You https://threatdigest.io/article/malicious-hugging-face-repository-typosquats-openai/ Threat Digest en 2026-05-12T10:26:23.676436+00:00 Hugging Face Hack: AI Supply Chain Danger Exposed AI supply chain, OpenAI, cybersecurity, hugging face, infostealer malware, typosquatting https://threatdigest.io/article/official-checkmarx-jenkins-package-compromised-with-infostealer/ Threat Digest en 2026-05-12T09:06:13.709655+00:00 Checkmarx Jenkins Plugin Hijacked [Infostealer Attack] checkmarx, ci/cd, devsecops, infostealer, jenkins, supply chain attack https://threatdigest.io/article/instructure-reaches-ransom-agreement-with-shinyhunters-to-stop-365tb-canvas-leak/ Threat Digest en 2026-05-12T07:51:52.969511+00:00 Canvas Pays Ransom: 3.65TB Data Stolen, Schools Left Exposed ShinyHunters, canvas, cybersecurity, data leak, instructure, ransomware https://threatdigest.io/article/daily-briefing-may-12-2026/ Threat Digest en 2026-05-12T07:00:01.912895+00:00 Daily Briefing: May 12, 2026 https://threatdigest.io/article/state-of-ransomware-in-2026/ Threat Digest en 2026-05-12T06:45:35.977022+00:00 Ransomware in 2026: Quantum, No Encryption, and EDR Killers EDR killers, Kaspersky, RDWeb, encryptionless extortion, post-quantum cryptography, ransomware https://threatdigest.io/article/new-ghostlock-tool-abuses-windows-api-to-block-file-access/ Threat Digest en 2026-05-12T05:57:47.765227+00:00 GhostLock Tool Locks Files Via Windows API [Security Alert] Denial of Service, Windows API, file access, ghostlock, security exploit https://threatdigest.io/article/as-the-nvd-scales-back-cve-enrichment-heres-what-tenable-customers-need-to-know/ Threat Digest en 2026-05-12T05:50:15.988021+00:00 NVD Scales Back CVE Enrichment: What Tenable Customers Need to Know CVE enrichment, NVD, Tenable, cybersecurity risk, vulnerability intelligence https://threatdigest.io/article/eyes-wide-open-how-to-mitigate-the-security-and-privacy-risks-of-smart-glasses/ Threat Digest en 2026-05-12T05:30:37.538530+00:00 Smart Glasses: Your Face is Now a Data Mine AI, data breach, privacy, security, smart glasses, surveillance https://threatdigest.io/article/teampcp-compromises-checkmarx-jenkins-ast-plugin-weeks-after-kics-supply-chain-attack/ Threat Digest en 2026-05-11T19:08:48.495161+00:00 TeamPCP Hits Checkmarx Again: The Supply Chain Trust Game TeamPCP, ast plugin, checkmarx, cybersecurity, jenkins, supply chain attack https://threatdigest.io/article/final-countdown-last-chance-to-join-the-rapid7-global-cybersecurity-summit/ Threat Digest en 2026-05-11T18:01:50.374128+00:00 Rapid7 Summit: AI, Exposure, and SOC Realities for 2026 https://threatdigest.io/article/gtig-ai-threat-tracker-adversaries-leverage-ai-for-vulnerability-exploitation-augmented-operations-and-initial-access/ Threat Digest en 2026-05-11T17:15:42.321453+00:00 AI Used for Exploits: What It Means for You ai threat intelligence, generative ai security, malware development, nation-state threats, supply chain attacks, vulnerability exploitation https://threatdigest.io/article/dirty-frag-exploit-poised-to-blow-up-on-enterprise-linux-distros/ Threat Digest en 2026-05-11T15:32:59.421885+00:00 Dirty Frag Exploit Hits Enterprise Linux [Analysis] cybersecurity, dirty frag, enterprise linux, linux exploit, privilege escalation, vulnerability https://threatdigest.io/article/feeding-frenzy-rce-on-azure-cosmos-for-postgresql/ Threat Digest en 2026-05-11T14:56:58.118738+00:00 Azure RCE: Cosmos DB Feeding Frenzy Uncovered RCE vulnerability, Varonis, azure cosmos for postgresql, cloud security, database vulnerability, feeding frenzy https://threatdigest.io/article/why-changing-passwords-doesnt-end-an-active-directory-breach/ Threat Digest en 2026-05-11T13:13:50.921322+00:00 Active Directory Leaks: Why Password Resets Fail active directory, credential theft, cybersecurity, data breach, kerberos, password reset https://threatdigest.io/article/cyber-espionage-group-targets-aviation-firms-to-steal-map-data/ Threat Digest en 2026-05-11T12:43:45.460189+00:00 Aviation Cyber-Spies Steal Map Data [Threat Analysis] GIS data, GPS data, aviation security, cyber espionage, map data theft, terrain models https://threatdigest.io/article/cloudflare-lays-off-1100-employees-in-ai-driven-restructuring/ Threat Digest en 2026-05-11T11:40:59.375425+00:00 Cloudflare AI Layoffs: A Harbinger or a Hiccup? ai layoffs, artificial intelligence, cloudflare, cybersecurity jobs, tech restructuring https://threatdigest.io/article/the-state-of-ransomware-q1-2026/ Threat Digest en 2026-05-11T10:27:17.449190+00:00 Ransomware Consolidation: Top Groups Now Control 71% of Victims Q1 2026, RaaS, cybersecurity, data leak sites, ransomware, threat intelligence https://threatdigest.io/article/trickmo-android-banker-adopts-ton-blockchain-for-covert-comms/ Threat Digest en 2026-05-11T08:56:30.718046+00:00 TrickMo Banker Hides on TON Blockchain: A New C2 Game Android malware, C2 infrastructure, TON blockchain, TrickMo, banking trojan, command and control https://threatdigest.io/article/copy-fail-what-you-need-to-know-about-the-most-severe-linux-threat-in-years/ Threat Digest en 2026-05-11T08:49:58.382055+00:00 Copy Fail: Linux Kernel Threat Exposes Root Access AI security, copy fail, cve-2026-31431, cybersecurity, linux kernel, linux kernel vulnerability, local privilege escalation, privilege escalation, root access https://threatdigest.io/article/daily-briefing-may-11-2026/ Threat Digest en 2026-05-11T07:00:01.916827+00:00 Daily Briefing: May 11, 2026 https://threatdigest.io/article/vsphere-and-brickstorm-malware-a-defenders-guide/ Threat Digest en 2026-05-11T05:49:59.151826+00:00 BRICKSTORM Hits vSphere: Under the Hood of Virtualization's New Threat BRICKSTORM, cybersecurity, malware, mandiant, vSphere, virtualization https://threatdigest.io/article/cracks-in-the-bedrock-escaping-the-aws-agentcore-sandbox/ Threat Digest en 2026-05-11T05:47:07.795083+00:00 [AWS AgentCore] Sandbox Escaped Via DNS Tunneling AgentCore, aws bedrock, code interpreter, dns tunneling, sandbox escape, vulnerability https://threatdigest.io/article/4th-may-threat-intelligence-report/ Threat Digest en 2026-05-11T05:41:29.680179+00:00 AI Hacks & Data Scrapes: This Week's Cyber Reckoning AI cyber threats, Medtronic, data breach, malware, phishing, vulnerabilities https://threatdigest.io/article/20th-april-threat-intelligence-report/ Threat Digest en 2026-05-11T05:40:59.918161+00:00 AI Unleashed: Hacking's New Frontier AI threats, cybersecurity, data breach, government breach, threat intelligence, vulnerabilities https://threatdigest.io/article/threat-brief-exploitation-of-pan-os-captive-portal-zero-day-for-unauthenticated-remote-code-execution/ Threat Digest en 2026-05-11T05:40:25.182080+00:00 PAN-OS Zero-Day Exploited: RCE Against Firewalls PAN-OS, cve-2026-0300, firewall security, remote code execution, state-sponsored threats, zero-day https://threatdigest.io/article/defending-your-enterprise-when-ai-models-can-find-vulnerabilities-faster-than-ever/ Threat Digest en 2026-05-11T05:30:35.489654+00:00 AI Finds Exploits. Are You Ready? AI security, AI vulnerability discovery, enterprise security, exploit development, threat actors, zero-day exploits https://threatdigest.io/article/over-500-organizations-hit-in-years-long-phishing-campaign/ Threat Digest en 2026-05-11T05:21:02.375357+00:00 Operation HookedWing: 500+ Orgs Breached in 4-Year Phishing Assault Operation HookedWing, SOCRadar, credential theft, cyber attack, phishing https://threatdigest.io/article/a-week-in-security-april-27-8211-may-3/ Threat Digest en 2026-05-10T19:07:23.013758+00:00 AI's Leap: From Sandbox to Security Superhero? AI, cybersecurity, data breaches, scams, vulnerabilities https://threatdigest.io/article/hackers-abuse-google-ads-claudeai-chats-to-push-mac-malware/ Threat Digest en 2026-05-10T18:00:32.045534+00:00 Claude.ai Chats & Google Ads Weaponized for Mac Malware claude.ai, google ads, infostealer, mac malware, macOS security, malvertising