LIVE
Nitrogen Ransomware Hits Foxconn, Steals 8TB of Data CISA Streamlines KEV Reporting with New Vulnerability Form How to Detect Ransomware: Attack Chain, Warning Signs & Defense Minnesota School Cancels Classes Over Ransomware Attack Microsoft Zero-Days: Defender & Exchange Exploited In-The-Wild What Is Ransomware? Examples, How It Works & Protection (2026)
CVEDaily
CYBER INTELLIGENCE
Newsletter
CYBERSECURITY

Cybersecurity

Latest Cybersecurity news, threat intelligence, and in-depth analysis.

48 Articles
Foxconn Cyberattack: Nitrogen Ransomware Claims 8TB Data Theft
CYBERSECURITY

Foxconn Cyberattack: Nitrogen Ransomware Claims 8TB Data Theft

Foxconn confirmed that some of its North American facilities were impacted by a cyberattack, with the Nitrogen ransomware group claiming responsibility and alleging the exfiltration of over 8 terabytes of sensitive data. This incident, which occurred prior to May 13, 2024, highlights the escalating threat of supply chain targeting by ransomware groups that use double-extortion […]

7 min read · May 13, 2026
More Articles 47 more
West Pharma Hit by Ransomware, Global Operations Disrupted
CYBERSECURITY
Cybersecurity

West Pharma Hit by Ransomware, Global Operations Disrupted

On May 4, 2026, Pennsylvania-based West Pharmaceutical Services detected a ransomware attack, leading to the immediate shutdown of affected on-premise infrastructure. This incident caused significant global operational disruption, and the company confirmed data exfiltration occurred prior to file encryption. What Happened On May 4, 2026, West Pharmaceutical Services proactively shut down and isolated its affected […]

5 min read May 13, 2026
Ivanti EPMM Zero-Day Exploited in Targeted Attacks, Patches
CYBERSECURITY
Cybersecurity

Ivanti EPMM Zero-Day Exploited in Targeted Attacks, Patches

On May 8, 2026, Ivanti released security updates for its Endpoint Manager Mobile (EPMM) product to address five vulnerabilities, including a high-severity zero-day, CVE-2026-6973, which Ivanti confirms has been actively exploited in targeted attacks. This response addresses ongoing, sophisticated activity aimed at compromising mobile device management (MDM) infrastructure. What Happened Ivanti released a series of […]

6 min read May 12, 2026
ShinyHunters Breach Canvas LMS, Impacts 275 Million Users
CYBERSECURITY
Cybersecurity

ShinyHunters Breach Canvas LMS, Impacts 275 Million Users

ShinyHunters claims to have exfiltrated data from Instructure's Canvas Learning Management System (LMS), impacting an alleged 275 million students and faculty across potentially 9,000 global educational institutions. This coordinated data extortion attack, which reportedly exploited a social engineering vector, significantly disrupted academic operations. The incident highlights the growing sophistication of data extortion against SaaS platforms […]

7 min read May 12, 2026
Google Detects First AI-Generated Zero-Day Exploit
CYBERSECURITY
Cybersecurity

Google Detects First AI-Generated Zero-Day Exploit

Google's Threat Intelligence Group (GTIG) reported on May 11, 2026, that a prominent cybercrime group successfully used AI to develop a zero-day exploit for a 2FA bypass. Google claims this marks a significant escalation, as AI shifts from theoretical to active use in offensive cyber operations. The exploit targeted an open-source web-based system administration tool, […]

5 min read May 11, 2026
Linux ‘Dirty Frag’ Zero-Day Grants Root Access, Exploits Expected
CYBERSECURITY
Cybersecurity

Linux ‘Dirty Frag’ Zero-Day Grants Root Access, Exploits Expected

Linux [CVE-2026-43284] 'Dirty Frag' Zero-Day Grants Root Access, Exploits Expected On May 8, 2026, a critical Linux kernel zero-day, dubbed 'Dirty Frag' (CVE-2026-43284), was publicly disclosed before a patch was widely available. This local privilege escalation (LPE) flaw allows deterministic root access and shares characteristics with 'Dirty Pipe' and 'Copy Fail,' but its broader attack […]

8 min read May 11, 2026
Trojan Abuses Microsoft Phone Link App to Steal Passwords
CYBERSECURITY
Cybersecurity

Trojan Abuses Microsoft Phone Link App to Steal Passwords

A new Trojan that specifically targets the Microsoft Phone Link application to exfiltrate user passwords was reported on May 5, 2026, by security researchers. This incident signals a shift from the recent focus on ransomware and critical infrastructure disruptions, instead highlighting credential theft through the misuse of trusted, user-facing software. Attackers are exploiting the very […]

5 min read May 10, 2026
Linux ‘Dirty Frag’ Zero-Day Grants Root on Major Distros
CYBERSECURITY
Cybersecurity

Linux ‘Dirty Frag’ Zero-Day Grants Root on Major Distros

A critical local privilege escalation (LPE) vulnerability, dubbed "Dirty Frag," was publicly disclosed on May 8, 2026, allowing local attackers to achieve root privileges on nearly all major Linux distributions since 2017. This zero-day chains two distinct kernel flaws, CVE-2026-43284 and CVE-2026-43500, expanding on previous bug classes like "Dirty Pipe" by offering highly reliable attack […]

8 min read May 10, 2026
ShinyHunters Ransomware Disrupts Canvas LMS for Millions Amid Finals
CYBERSECURITY
Cybersecurity

ShinyHunters Ransomware Disrupts Canvas LMS for Millions Amid Finals

ShinyHunters Ransomware Disrupts Canvas LMS for Millions Amid Finals The Canvas learning management system (LMS), operated by Instructure, experienced a significant data breach and service disruption attributed to the ShinyHunters ransomware group, impacting millions of students and faculty during a critical academic period. The attack, which became widely apparent around May 7-8, 2026, caused widespread […]

7 min read May 9, 2026
ShinyHunters Ransomware Disrupts Canvas LMS for Millions
CYBERSECURITY
Cybersecurity

ShinyHunters Ransomware Disrupts Canvas LMS for Millions

ShinyHunters ransomware has catastrophically disrupted Instructure's Canvas LMS, with login pages defaced and the threat of a massive 3.65 TB data leak by May 12, 2026, impacting millions of students and faculty during critical finals periods. What Happened On May 7, 2026, students and faculty at numerous institutions worldwide began reporting defaced Canvas login pages, […]

7 min read May 8, 2026