IT Security Weekend Catch Up – May 8, 2026

Comments
close searching

08.05.2026 | 22:30

IT Security Weekend Catch Up – May 8, 2026
avatar

badcyber

comments

IT Security Weekend Catch Up – May 8, 2026

Afraid of missing important security news during the week? We're here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Welcome to the GRU university, where Moscow turns students into spies and hackers
  2. Trenchant exec who sold zero days to Russian buyer ordered to pay $10 million in restitution to former employers
  3. Unpacking Russian-Iranian private-sector cyber connections
  4. Russia and U.S. amplifying Alberta separatist narratives to stoke division, distrust: report
  5. Anthropic’s AI chatbot is leaning more on Russian and Iranian propaganda sources, NewsGuard audit finds
  6. Google Chrome silently installs a 4 GB AI model on your device without consent

For the more technical

  1. Multi-stage malware delivery campaign using SEO poisoning and serverless infrastructure
  2. Dirty Frag: Universal Linux LPE
  3. Palo Alto PAN-OS Buffer Overflow Vulnerability (CVE-2026-0300)
  4. New Cisco DoS flaw requires manual reboot to revive devices
  5. Critical Apache HTTP/2 flaw (CVE-2026-23918) enables DoS and potential RCE
  6. ConsentFix v3: Analyzing a new criminal toolkit
  7. Breaking the code: Multi-stage ‘code of conduct’ phishing campaign leads to AiTM token compromise
  8. VENOMOUS#HELPER: Dual-RMM phishing campaign leveraging JWrapper-packaged SimpleHelp and ScreenConnect for silent remote access
  9. ClickFix campaign uses fake macOS utilities lures to deliver infostealers
  10. Supply chain campaign targets SAP npm packages with credential-stealing malware
  11. 8.3M downloads compromised: Lightning & Intercom-Client infected in latest Shai-Hulud attack
  12. Mini Shai-Hulud spreads to Packagist: Malicious Intercom PHP package follows npm compromise
  13. TeamPCP-linked supply chain attack hits SAP CAP and Cloud MTA npm packages
  14. Fake call logs, real payments: How CallPhantom tricks Android users
  15. TCLBANKER: Brazilian banking trojan spreading via WhatsApp and Outlook
  16. Malicious OpenClaw skill distributes Remcos RAT and GhostLoader
  17. InstallFix and Claude Code: How fake install pages lead to real compromise
  18. Quasar Linux (QLNX) – A silent foothold in the supply chain: Inside a full-featured Linux RAT with rootkit, PAM backdoor, credential harvesting capabilities
  19. Unmasking a multi-stage loader: AutoIt abuse leading to Vidar stealer command-and-control communication
  20. Attackers adopt JavaScript runtime Bun to spread NWHStealer
  21. A rigged game: ScarCruft compromises gaming platform in a supply-chain attack
  22. UAT-8302 and its box full of malware
  23. Operation GriefLure: Dissecting an APT campaign targeting Vietnam’s military telecom & Philippine healthcare

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy! 2026-05-08T22:30:00+02:00

Comments