Hello all, As usual, this week held lots of announcements of vulnerabilities, malware, breaches, new interesting things, and of course, AI advances. A few items stood out, such as Cisco hitting the headline news for the third week in a row with yet another vulnerability, UniFi Ubiquiti with five new critical…
Hello all, This week brought another round of fun updates from Microsoft, Adobe, SAP, and others with Patch Tuesday releases. Immediately following Microsoft’s patch releases, a hacker who I shall dub Dirtbag Eclipse, released two new zero-day exploits, one of which I’ll cover in a bit more detail in a moment,…
There was an error in my link. This is the correct page for this week. May 9, 2026
Hello all, It has been another busy week. The biggest headline news item is that my birthday is on Sunday. No, actually it is the Instructure Canvas hack by Shiny Hunters. These dirtbags managed to download a massive trove of data from nearly 9,000 schools. This hit right as students…
Hello all, Another week, and another report replete with vulnerabilities, bugs, fails, defects, holes, exfiltration, compromises, phishing, breaches, hacking and exploitation. Of course there are also plenty of links to articles about patches, fixes, takedowns, arrests, sentencing, and legislation, all related to cyber security and our digital world. Artificial intelligence continues…
Hello all, While there were plenty of cyber related news articles to read this week, there weren’t many new major vulnerability announcements. But there were a few. Google patched for two high-risk defects, Microsoft had to release an emergency update for .NET for Windows, Linux, and macOS, and Oracle blessed us…
Hello all, Since the month started on Wednesday, it has seemed like a long time since there was a major release of patches and updates. Never fear, your wait is over! Adobe, Apache, Cisco, Microsoft, PHP, SAP, Splunk and more released updates to fix holes, defects, and vulnerabilities this past…
Hello all, Artemis II splashed down on Friday off the US Pacific coast after making a successful orbit around the moon – very cool! In the world of cyber, Anthropic’s latest AI, Claude Mythos, continues to rattle experts and tantalize evil people worldwide with its unprecedented ability to find and exploit…
Hello all, I wish you a Happy Easter and Passover. I pray that it is a peaceful and enjoyable one. If you’ve been affected by the Iran conflict, I truly feel for you. There have been some serious cyber disruptions this past week with Iran damaging Amazon and Oracle datacenters in…
Hello all, Whether it was because threat actors were attending RSAC in San Francisco this week, or because those that would be reporting cyber-attacks and such a were away, there seemed to me to be a lower number of reports of vulnerabilities and successful attacks. If it was due to RSAC,…
Hello all, The Iran war is still dominating the news, but surprisingly, after the successful attack on Stryker Corporation, there have been no reports of other large-scale successful cyber-attacks attributed to Iranian threat actors. That’s not to say they haven’t tried, a Nuclear Reactor in Poland was apparently targeted, but the…
Hello all, Last week I’d noted that I was surprised that there had been no evident cyber-retaliatory attacks by Iranian threat actors. Welp, on Wednesday a threat group named Handala claimed a successful attack on Stryker, a USA based global medical equipment company with $25.1 billion in revenue in 2025. According…