Cybersecurity Newsfeed - 14/05/26
Daily cybersecurity news covering vulnerabilities, adversaries, trends, breaches, and other notable security developments.
Cybersecurity Newsfeed
📅 14/05/26
🛡️ Vulnerabilities
Critical Exim RCE Flaw: A new critical vulnerability in the Exim mail transfer agent allows for unauthenticated remote code execution (RCE). The flaw stems from improper handling of specific SMTP commands, risking millions of servers worldwide. More info
Windows BitLocker Zero-Day: A disclosed zero-day vulnerability in BitLocker, accompanied by a PoC, shows how attackers can bypass encryption to gain unauthorized access to protected drives under specific conditions. More info
Quest KACE SMA (CVE-2025-32975): A flaw in the Quest KACE Systems Management Appliance has exposed roughly 60 organizations to administrative takeover, providing a high-value entry point for lateral movement. More info
MCP Database Flaws: A researcher identified three significant flaws in the MCP database system; while two are patched, one remains a zero-day, allowing for potential authentication bypass. More info
Avada Builder Plugin Risks: Multiple vulnerabilities in the Avada Builder plugin affect over one million WordPress sites, potentially allowing attackers to gain administrative control. More info
Intel and AMD Patch Tuesday: Chipmakers Intel and AMD addressed over 70 vulnerabilities involving privilege escalation and information disclosure across their product lines. More info
Fortinet Critical Updates: Critical patches were released for FortiSandbox and FortiAuthenticator to prevent unauthorized command execution and security bypasses. More info
🎯 Adversaries
FamousSparrow Targets Energy Sector: The China-linked APT group FamousSparrow is conducting a cyber-espionage campaign against an energy firm in the South Caucasus using specialized backdoors. More info
TeamPCP Open-Sources Shai-Hulud Worm: The TeamPCP crew has released their “Mini Shai-Hulud” worm on GitHub. The malware targets NPM and PyPi repositories to facilitate automated supply chain attacks. More info Additional info - Gentlemen RaaS Data Leak: The “Gentlemen” Ransomware-as-a-Service group suffered a major internal data leak, exposing affiliate structures, negotiation tactics, and financial distributions. More info
📈 Trends
- AI Agents Generating Malware: New research shows advanced AI agents are being used to generate custom hacking tools and exploit scripts, lowering the barrier to entry for cybercriminals. More info
💥 Breaches & Leaks
Foxconn North America Attack: Electronics manufacturing giant Foxconn confirmed a cyberattack on its North American facilities, disrupting production systems and risking internal data. More info Additional info - Texas Sues Netflix Over Data Sales: The state of Texas has filed a lawsuit against Netflix, alleging the company illegally collected and sold user viewing habits and personal data without consent. More info
📚 Others
- Kingdom Market Admin Sentenced: A Slovakian national was sentenced to prison in the U.S. for operating “Kingdom Market,” a dark web hub for narcotics, stolen data, and hacking tools. More info