IT Security Weekend Catch Up – May 16, 2026

Comments
close searching

16.05.2026 | 23:30

IT Security Weekend Catch Up – May 16, 2026
avatar

badcyber

comments

IT Security Weekend Catch Up – May 16, 2026

Afraid of missing important security news during the week? We're here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Foxconn confirms cyberattack claimed by Nitrogen ransomware gang
  2. Experts confirm the Fast16 malware was sabotaging nuclear weapons tests, likely in Iran
  3. ‘Hondurasgate,’ the alleged US and Israeli interference plot to destabilize Mexico and other progressive governments
  4. Instructure confirms data breach, ShinyHunters claims attack

For the more technical

  1. May 2026 Patch Tuesday: 30 critical vulnerabilities among 130 CVEs
  2. YellowKey Bitlocker bypass vulnerability
  3. GreenPlasma Windows CTFMON arbitrary section creation elevation of privileges vulnerability
  4. Fragnesia (CVE-2026-46300), a universal Linux local privilege escalation exploit
  5. NGINX Rift: Achieving NGINX remote code execution via an 18-year-old vulnerability
  6. Dead.Letter (CVE-2026-45185) How XBOW found an unauthenticated RCE on Exim
  7. CursorJacking: Every Cursor user is vulnerable to API key theft by rogue extensions
  8. Why 0.1 + 0.2 is not 0.3, or about floating-point numbers
  9. Pwn2Own Berlin 2026 - Day One Results
  10. Pwn2Own Berlin 2026 - Day Two Results
  11. Pwn2Own Berlin 2026: Day Three Results and Master of Pwn
  12. Yarbo - NAT in my back yard
  13. StealTok: 130k users compromised by data stealing TikTok video “downloaders”
  14. Malware found in trending Hugging Face repository "Open-OSS/privacy-filter"
  15. DAEMON Tools software infected – supply chain attack ongoing since April 8, 2026
  16. Shai-Hulud goes open source: Malware creators leak their own code to GitHub
  17. PCPJack: Cloud worm evicts TeamPCP and steals credentials at scale
  18. Adversaries leverage AI for vulnerability exploitation, augmented operations, and initial access
  19. When IT support calls: Dissecting a ModeloRAT campaign from Teams to domain compromise
  20. FrostyNeighbor: Fresh mischief and digital shenanigans

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy! 2026-05-16T23:30:00+02:00

Comments