https://threatdigest.io/article/new-fragnesia-linux-flaw-lets-attackers-gain-root-privileges/ Threat Digest en 2026-05-14T09:57:24.313716+00:00 Fragnasia Linux Flaw: Root Access Unlocked [2026] Fragnasia, XFRM, cve-2026-46300, dirty frag, linux kernel, privilege escalation https://threatdigest.io/article/high-severity-vulnerability-patched-in-vmware-fusion/ Threat Digest en 2026-05-14T09:55:15.597154+00:00 VMware Fusion Patch: High-Severity Flaw Exposed broadcom, cve-2026-41702, privilege escalation, toctou, vmware fusion, vulnerability patch https://threatdigest.io/article/18-year-old-nginx-rewrite-module-flaw-enables-unauthenticated-rce/ Threat Digest en 2026-05-14T08:49:38.731330+00:00 18-Year-Old NGINX Flaw: Unauthenticated RCE Exposed cve-2026-42945, cybersecurity, nginx, nginx rift, rce, vulnerability https://threatdigest.io/article/new-fragnesia-linux-kernel-lpe-grants-root-access-via-page-cache-corruption/ Threat Digest en 2026-05-14T07:42:14.046646+00:00 Linux Kernel Flaw Grants Root [CVE-2026-46300] cve-2026-46300, fragnesia, linux kernel, local privilege escalation, lpe, page cache https://threatdigest.io/article/daily-briefing-may-14-2026/ Threat Digest en 2026-05-14T07:00:02.297365+00:00 Daily Briefing: May 14, 2026 https://threatdigest.io/article/foxconn-attack-highlights-manufacturings-cyber-crisis/ Threat Digest en 2026-05-14T05:44:46.282888+00:00 Foxconn Ransomware Attack: 600 Manufacturing Cyber Hits cyber attack, cyber crisis, foxconn, manufacturing cybersecurity, manufacturing security, nitrogen ransomware, ransomware, ransomware attack, supply chain security https://threatdigest.io/article/attackers-weaponize-rubygems-for-data-dead-drops/ Threat Digest en 2026-05-14T05:41:32.101318+00:00 RubyGems Now Data Dead Drops? Attackers Get Creative cybersecurity, data scraping, malicious packages, rubygems, supply chain attack, uk government https://threatdigest.io/article/iranian-hackers-targeted-major-south-korean-electronics-maker/ Threat Digest en 2026-05-14T05:36:44.141894+00:00 MuddyWater's Stealthy Assault: South Korean Giant Breached MuddyWater, Seedworm, South Korea, Static Kitten, cyber espionage, electronics manufacturer https://threatdigest.io/article/new-critical-exim-mailer-flaw-allows-remote-code-execution/ Threat Digest en 2026-05-14T05:27:43.510410+00:00 Exim's Critical Flaw: 7 Days to Exploit with AI Help AI, CVE-2026-45185, Exim, GnuTLS, exploit development, rce https://threatdigest.io/article/falcon-aidr-detects-threats-at-the-prompt-layer-in-kubernetes-ai-applications/ Threat Digest en 2026-05-13T19:32:40.065742+00:00 Kubernetes AI Threats: Prompt Layer Attacks Uncovered AI security, CrowdStrike, LLM security, falcon aidr, kubernetes, prompt injection https://threatdigest.io/article/the-convergence-of-cloud-secrets-ai-risk/ Threat Digest en 2026-05-13T18:13:47.028763+00:00 AI Now Drives Cloud Risk: Secrets Explode LLM security, SentinelOne, ai risk, cloud security, secrets management, shadow AI https://threatdigest.io/article/windows-bitlocker-zero-day-gives-access-to-protected-drives-poc-released/ Threat Digest en 2026-05-13T17:02:42.306958+00:00 BitLocker Busted: Zero-Days Expose Windows Users bitlocker, cybersecurity, exploit, vulnerability, windows, zero-day https://threatdigest.io/article/webinar-tomorrow-why-security-alone-wont-stop-modern-attacks/ Threat Digest en 2026-05-13T15:52:21.542510+00:00 Modern Attacks Bypass Defenses: Security Isn't Enough attack vectors, business continuity, cybersecurity, disaster recovery, phishing, ransomware https://threatdigest.io/article/microsoft-fixes-windows-autopatch-bug-installing-restricted-drivers/ Threat Digest en 2026-05-13T14:25:45.159211+00:00 Windows Autopatch Driver Bug: Microsoft Pulls a Fast One driver updates, european union, microsoft-security, vulnerability, windows autopatch https://threatdigest.io/article/chinas-famoussparrow-apt-nests-in-south-caucasus-energy-firm/ Threat Digest en 2026-05-13T13:26:39.808588+00:00 FamousSparrow APT Hits Azerbaijan Energy Sector APT, China APT, FamousSparrow, South Caucasus, cyber espionage, energy sector https://threatdigest.io/article/73-seconds-to-breach-24-hours-to-patch-the-case-for-autonomous-validation/ Threat Digest en 2026-05-13T12:21:13.927701+00:00 AI Breaches in 73 Secs: Patching Can't Keep Up AI security, autonomous validation, exploit development, threat intelligence, vulnerability management, zero-days https://threatdigest.io/article/global-cyber-agencies-issue-new-sboms-for-ai-guidance-to-tackle-ai-supply-chain-risks/ Threat Digest en 2026-05-13T11:38:40.158870+00:00 G7 AI SBOMs: A New Weapon or Just More Paperwork? AI security, cybersecurity guidance, g7, sbom, supply chain risk https://threatdigest.io/article/hundreds-of-malicious-packages-force-rubygems-to-suspend-registrations/ Threat Digest en 2026-05-13T09:02:32.495465+00:00 RubyGems Suspends Registrations After Malicious Package Flood malicious packages, open source security, rubygems, software supply chain, supply chain attack https://threatdigest.io/article/ics-patch-tuesday-new-security-advisories-from-siemens-schneider-cisa/ Threat Digest en 2026-05-13T08:45:14.891642+00:00 ICS Patch Tuesday: Critical Flaws Surface https://threatdigest.io/article/daily-briefing-may-13-2026/ Threat Digest en 2026-05-13T07:00:02.277490+00:00 Daily Briefing: May 13, 2026 https://threatdigest.io/article/us-govt-seeks-instructure-testimony-on-massive-canvas-cyberattack/ Threat Digest en 2026-05-13T06:00:01.814752+00:00 Canvas Breach: US House Demands Instructure Testimony ShinyHunters, canvas, cyberattack, data breach, homeland security, instructure https://threatdigest.io/article/webinar-fixing-the-gaps-in-network-incident-response/ Threat Digest en 2026-05-13T05:50:38.278753+00:00 Incident Response: Manual Triage is Failing AI in Security, IT automation, Tines, alert triage, network incident response https://threatdigest.io/article/accelerating-detection-engineering-using-ai-assisted-synthetic-attack-logs-generation/ Threat Digest en 2026-05-13T05:45:18.314130+00:00 AI Generates Attack Logs: Is Detection Engineering Ready? AI, attack logs, cybersecurity, detection engineering, microsoft-defender, synthetic data https://threatdigest.io/article/defense-at-ai-speed-microsofts-new-multi-model-agentic-security-system-tops-leading-industry-benchmark/ Threat Digest en 2026-05-13T05:20:26.635701+00:00 Microsoft's MDASH: AI Security Agents Discover Critical Windows Flaws AI security, Windows security, agentic AI, cyber defense, microsoft mdash, vulnerability discovery https://threatdigest.io/article/defense-at-ai-speed-microsofts-new-multi-model-agentic-security-system-finds-16-new-vulnerabilities/ Threat Digest en 2026-05-13T05:18:19.426562+00:00 Microsoft's AI Security Agent Finds 16 New Vulns AI security, Windows security, agentic AI, cyber defense, microsoft, vulnerability discovery https://threatdigest.io/article/microsoft-releases-windows-10-kb5087544-extended-security-update/ Threat Digest en 2026-05-12T18:56:47.268554+00:00 Windows 10 Security Update (2026) | Remote Desktop Fixes Secure Boot, kb5087544, microsoft, remote desktop, security update, windows 10 https://threatdigest.io/article/microsofts-may-2026-patch-tuesday-addresses-118-cves-cve-2026-41103/ Threat Digest en 2026-05-12T18:10:42.792788+00:00 Microsoft's May 2026 Patch Tuesday: 118 Flaws Microsoft Patch Tuesday, cve, elevation of privilege, remote code execution, sso plugin, vulnerability https://threatdigest.io/article/android-17-to-expand-banking-scam-call-and-privacy-protections/ Threat Digest en 2026-05-12T17:01:30.045835+00:00 Android 17: AI Fights Bank Scams, Boosts Theft Protection AI security, android 17, banking scams, cybersecurity, device theft protection, google android https://threatdigest.io/article/undermining-the-trust-boundary-investigating-a-stealthy-intrusion-through-third-party-compromise/ Threat Digest en 2026-05-12T15:40:52.324777+00:00 Third-Party Compromise: The Silent Invasion of Trusted Systems IT services providers, Microsoft Incident Response, administrative tools, stealthy intrusion, third-party compromise, trust boundary https://threatdigest.io/article/new-trickmo-variant-uses-ton-c2-and-socks5-to-create-android-network-pivots/ Threat Digest en 2026-05-12T14:56:34.009245+00:00 TrickMo Uses TON for Android Network Pivots Android malware, SOCKS5 proxy, TON, The Open Network, TrickMo, network pivot https://threatdigest.io/article/apple-patches-dozens-of-vulnerabilities-in-macos-ios/ Threat Digest en 2026-05-12T12:31:38.743640+00:00 Apple Patches Dozens of Flaws [Urgent Update Required] apple, cve, cybersecurity, ios security, macOS security, vulnerabilities https://threatdigest.io/article/20-leaders-who-built-the-ciso-era-2-decades-of-change/ Threat Digest en 2026-05-12T12:20:45.711816+00:00 CISO Era's Architects: 20 Years of Risk Rewritten CISO, cybersecurity, enterprise risk management, security leaders https://threatdigest.io/article/why-agentic-ai-is-securitys-next-blind-spot/ Threat Digest en 2026-05-12T11:35:06.779557+00:00 Agentic AI Security Gap: What It Means for You