Chinese hacker groups are targeting European organizations for the first time with newly discovered Atlas-RAT malware, signaling geographic escalation of known APT operations.
An autonomous AI vulnerability hunter identified a two-year-old RCE flaw in Redis (CVE-2026-23479) that enabled authenticated attackers to execute code and was only patched on May 5, 2026.
An active debug flag in Microsoft 365 Android apps allowed arbitrary apps on the device to steal authentication tokens and take over user accounts completely.
A manipulated notification via WhatsApp, Slack, SMS, Signal, Instagram, or Messenger could hijack Google Gemini on Android devices and force it to execute arbitrary actions without requiring a malicious app to be installed on the phone.
OpenAI calls for mandatory evaluations of AI models by the Commerce Department rather than intelligence agencies, leveraging established relationships with leading labs.