https://threatdigest.io/article/in-other-news-train-hacker-arrested-pamdoora-linux-backdoor-new-cisa-director-frontrunner/ Threat Digest en 2026-05-09T18:24:16.888820+00:00 CISA Eyes 3-Day Patch Cycle | North Korea's Gaming & ATM Schemes AI in cybersecurity, ATM jackpotting, CISA, linux malware, north korea, vulnerability management https://threatdigest.io/article/nvidia-confirms-geforce-now-data-breach-affecting-armenian-users/ Threat Digest en 2026-05-09T18:09:33.669387+00:00 NVIDIA GeForce NOW Breach: Armenian Users Exposed armenia, cloud gaming, cybersecurity, data breach, geforce now, nvidia https://threatdigest.io/article/shifting-budget-dynamics-for-identity-security-and-ai-agents/ Threat Digest en 2026-05-09T15:48:17.565797+00:00 AI Agent Budgets: Identity Security's Next Frontier [Omdia Data] AI agent security, AI agents, IAM, Omdia, Omdia research, budget dynamics, budgeting, cybersecurity, identity-security https://threatdigest.io/article/fake-openai-repository-on-hugging-face-pushes-infostealer-malware/ Threat Digest en 2026-05-09T14:43:33.310204+00:00 AI's Dark Side: Hugging Face Repo Pushed Infostealer AI security, OpenAI, cybersecurity, hugging face, infostealer, malware https://threatdigest.io/article/shinyhunters-claims-second-attack-against-instructure/ Threat Digest en 2026-05-09T13:20:12.748867+00:00 Instructure Hack: Millions of Records at Risk. Again. ShinyHunters, canvas, cybersecurity, data breach, instructure, pii https://threatdigest.io/article/fake-call-history-apps-stole-payments-from-users-after-73-million-play-store-downloads/ Threat Digest en 2026-05-09T12:29:54.398676+00:00 Fake Call History Apps: Millions Downloaded, Users Ripped Off https://threatdigest.io/article/zara-data-breach-exposed-personal-information-of-197000-people/ Threat Digest en 2026-05-09T11:12:54.462441+00:00 Zara Data Breach: 197K Emails Exposed BigQuery, Inditex, ShinyHunters, Zara, customer data, data breach https://threatdigest.io/article/hackable-robot-lawn-mower-unlocks-a-new-nightmare/ Threat Digest en 2026-05-09T10:00:13.814487+00:00 Your Robot Lawn Mower Wants Your Wi-Fi Password. Should You Care? Gemini Nano Chrome, Meta Instagram encryption, Yarbo vulnerabilities, privacy concerns, robot lawn mower hack, smart home security https://threatdigest.io/article/cpanel-whm-release-fixes-for-three-new-vulnerabilities-patch-now/ Threat Digest en 2026-05-09T09:15:43.693011+00:00 cPanel Patches Critical Vulns CVE-2026-29201, CVE-2026-29202, CVE-2026-29203, WHM, cPanel, vulnerabilities https://threatdigest.io/article/dirty-frag-cve-2026-43284-cve-2026-43500-frequently-asked-questions-about-this-linux-kernel-privilege-escalation-vulnerability-chain/ Threat Digest en 2026-05-09T08:15:58.945138+00:00 Linux Kernel Exploit 'Dirty Frag' Uncovered copy fail, cve-2026-43284, cve-2026-43500, dirty frag, linux kernel exploit, privilege escalation https://threatdigest.io/article/daily-briefing-may-09-2026/ Threat Digest en 2026-05-09T07:00:02.161375+00:00 Daily Briefing: May 09, 2026 https://threatdigest.io/article/tclbanker-banking-trojan-targets-financial-platforms-via-whatsapp-and-outlook-worms/ Threat Digest en 2026-05-09T06:45:39.230103+00:00 TCLBANKER: AI's Banking Trojan Debut? WhatsApp malware, banking trojan, cybersecurity, malware analysis, outlook malware, tclbanker https://threatdigest.io/article/friday-squid-blogging-giant-squid-live-in-the-waters-of-western-australia/ Threat Digest en 2026-05-09T05:46:14.194018+00:00 Giant Squid DNA Found in Ocean [2026] Architeuthis dux, Western Australia, eDNA, environmental DNA, giant squid, marine biology https://threatdigest.io/article/metasploit-wrap-up-05082026/ Threat Digest en 2026-05-09T05:22:53.587857+00:00 Metasploit 2026: Beyond Exploits, Into the Data Metasploit, data integration, exploit development, ftp scanner, penetration testing, vulnerability scanning https://threatdigest.io/article/active-attack-dirty-frag-linux-vulnerability-expands-post-compromise-risk/ Threat Digest en 2026-05-09T05:18:48.537776+00:00 Linux Kernel's Dirty Frag: Root Access Via Networking Flaws? cve, dirty frag, esp4, kernel vulnerability, linux, privilege escalation https://threatdigest.io/article/canvas-attackers-compromise-275m-students-teachers-and-staff/ Threat Digest en 2026-05-08T19:04:52.086124+00:00 Canvas Breach: 275M Students Exposed. It's Not Just Tech. ShinyHunters, canvas, data breach, edtech, instructure, social engineering https://threatdigest.io/article/polish-security-agency-reports-ics-breaches-at-five-water-treatment-plants/ Threat Digest en 2026-05-08T14:35:58.831508+00:00 [Water Crisis] Polish Security Agency Reports ICS Breaches APT28, ICS, OT, Poland, cyberattack, water treatment https://threatdigest.io/article/why-the-approaching-flood-of-vulnerabilities-changes-everything-and-what-to-do-about-it/ Threat Digest en 2026-05-08T14:29:22.434283+00:00 AI Creates CVE Flood: NVD Retreat Wrecks Patching AI cybersecurity, cve, cybersecurity threats, nist, vulnerability management https://threatdigest.io/article/new-linux-pamdoora-backdoor-uses-pam-modules-to-steal-ssh-credentials/ Threat Digest en 2026-05-08T14:29:00.260909+00:00 Linux PamDOORa Backdoor Emerges: Stealing SSH Creds Linux backdoor, PAM modules, authentication, backdoor, cybercrime, cybersecurity, linux, malware, pamdoora, pluggable authentication modules, ssh credentials https://threatdigest.io/article/why-more-analysts-wont-solve-your-socs-alert-problem/ Threat Digest en 2026-05-08T14:27:57.732464+00:00 AI in SOC: Analysts Won't Solve Alert Overload AI in Security, SOC, alert fatigue, cybersecurity, incident response, threat detection https://threatdigest.io/article/another-universal-linux-local-privilege-escalation-lpe-vulnerability-dirty-frag-fri-may-8th/ Threat Digest en 2026-05-08T14:27:44.683869+00:00 Dirty Frag LPE: Linux Kernel Vulnerability Strikes Again [Analysis] dirty frag, kernel exploit, linux kernel, local privilege escalation, lpe, security vulnerability https://threatdigest.io/article/cve-2025-68670-discovering-an-rce-vulnerability-in-xrdp/ Threat Digest en 2026-05-08T14:20:25.358738+00:00 RCE in xrdp: How a Simple String Conversion Opened the Door CVE-2025-68670, Kaspersky, RDP, linux security, rce, remote code execution, remote desktop, xrdp https://threatdigest.io/article/cisa-gives-feds-four-days-to-patch-ivanti-flaw-exploited-as-zero-day/ Threat Digest en 2026-05-08T14:16:50.539644+00:00 Ivanti Zero-Day: Feds Scramble as CISA Issues 4-Day Patch Mandate CISA, CVE-2026-6973, cybersecurity, epmm, federal agencies, ivanti, ivanti epmm, vulnerability, zero-day https://threatdigest.io/article/one-missed-threat-per-week-what-25m-alerts-reveal-about-low-severity-risk/ Threat Digest en 2026-05-08T14:16:32.028570+00:00 [Data] 1% of Alerts Hide a Missed Breach Weekly EDR, cloud security, enterprise security, low-severity threats, phishing, security alerts https://threatdigest.io/article/trellix-source-code-breach-claimed-by-ransomhouse-hackers/ Threat Digest en 2026-05-08T14:15:02.997064+00:00 Trellix Source Code Breach: RansomHouse Claims Attack cybersecurity, data extortion, ransomhouse, source code breach, trellix https://threatdigest.io/article/ai-firm-braintrust-prompts-api-key-rotation-after-data-breach/ Threat Digest en 2026-05-08T14:12:11.683546+00:00 Braintrust API Keys Compromised in AWS Breach AI, API keys, AWS, braintrust, cloud security, data breach https://threatdigest.io/article/zero-chaos-scaling-detection-engineering-at-the-speed-of-software-with-detection-as-code/ Threat Digest en 2026-05-08T14:11:21.916521+00:00 Security Detections: From Chaos to Code [Rapid7's Approach] AI in Security, Rapid7, SIEM, ci/cd, detection as code, detection engineering, devsecops, infrastructure as code, security operations, terraform, threat hunting https://threatdigest.io/article/voidstealer-malware-darts-past-google-chromes-encryption/ Threat Digest en 2026-05-08T14:00:34.818181+00:00 VoidStealer Exploits Chrome Encryption [New Threat] Google Chrome, app-bound encryption, cybersecurity, infostealer, malware, voidstealer https://threatdigest.io/article/the-good-the-bad-and-the-ugly-in-cybersecurity-week-19/ Threat Digest en 2026-05-08T13:58:37.267138+00:00 Cybercrime Court Victories, Evolving Worms & Zero-Days