Latest news as of 5/18/2026, 11:57:47 AM
Have I Been Pwned
In around 2011, the RuneScape Boards forum (also known as RSBoards) suffered a data breach . The vBulletin-based service exposed 223k unique email addresses along with usernames, IP addresses and salted MD5 password hashes. that was later redistributed as part of a larger corpus of data
The Register
'It freakin' worked' says Rob Joyce - and shows how relentless AI agents can find holes humans miss The now-infamous abusing Claude AI to automate cyberattacks was a Rorschach test for the infosec community, according to former NSA cyber boss Rob Joyce.… RSAC 2026 Anthropic report about Chinese cyberspies
Bleeping Computer
Mazda Motor Corporation (Mazda) announced that information belonging to its employees and business partners had been exposed in a security incident detected last December. [...]
Dark Reading
Two cybersecurity leaders tested out AI in their respective SOCs for six months — and here's what they learned.
Dark Reading
A threat actor used the open source security tool to deploy an infostealer into CI/CD workflows and steal cloud credentials, SSH keys, tokens, and other sensitive secrets.
The Register
Washington content to be represented by actual empty chairs Back in the day (circa 2023) when cybercrime group Scattered Spider and its help-desk voice-phishing calls were a relatively new threat, the feds considered pulling the government's top cyber-threat hunters and their private-sector counterparts into one room to share information, in real time, about this loosely knit extortion ring that was terrorizing enterprises.… RSA 2026
Dark Reading
The idea of a "human in the loop" in AI deployment was challenged during a security executive panel at the RSAC 2026 Conference this week.
Bleeping Computer
The Tycoon2FA phishing-as-a-service (PhaaS) platform that Europol and partners disrupted on March 4 has already returned to previously observed activity levels. [...]
The Register
Here's where you ought to spend your security billable hours budget this year Strengthen your MFA policies, double-down on anti-phishing training, and for Jobs' sake, patch all your vulns right away. The past year of intelligence collected by Cisco's Talos threat hunters suggests that attackers are moving faster to exploit vulns, and fooling more staff than ever into giving up their credentials. …
Bleeping Computer
The TeamPCP hacking group is targeting Kubernetes clusters with a malicious script that wipes all machines when it detects systems configured for Iran. [...]