Latest Tech News

Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer

Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer

The Hacker News May 28, 2026

Threat actors are continuing to exploit a critical, now-patched security flaw impacting FortiClient Endpoint Management Server (EMS) deployments to deliver credential-stealing malware. "The campaign abused trusted endpoint management infrastructure to deliver malware across managed endpoints," Arctic Wolf said. "Threat actors disguised the credential stealer payload as a Fortinet endpoint
Here Comes Ojai, Waymo’s New Chinese-Made Robotaxi (No image available)

Here Comes Ojai, Waymo’s New Chinese-Made Robotaxi

Wired AI News May 28, 2026

The pale-blue Ojai vehicles will start picking up members of the public in California and Arizona in the next few weeks.
New Gogs zero-day flaw lets hackers get remote code execution (No image available)

New Gogs zero-day flaw lets hackers get remote code execution

Bleeping Computer May 28, 2026

An unpatched zero-day vulnerability in the Gogs self-hosted Git service can allow attackers to gain remote code execution (RCE) on Internet-facing instances. [...]
Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal

Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal

The Hacker News May 28, 2026

Microsoft has come out strongly in favor of Coordinated Vulnerability Disclosure (CVD), urging the research community to share their findings and give affected vendors an opportunity to better understand the impact and address them before they are publicly disclosed. The development comes after a researcher named Chaotic Eclipse (aka Nightmare-Eclipse) disclosed details of multiple zero-day
ThreatsDay Bulletin: Claude Security Plugin, Azure Priv-Esc, Kali365 MFA Bypass, FIFA Scams +15 More

ThreatsDay Bulletin: Claude Security Plugin, Azure Priv-Esc, Kali365 MFA Bypass, FIFA Scams +15 More

The Hacker News May 28, 2026

Every time you think the industry has finally stopped doing some reckless, low-effort crap, somebody spins up a fresh box full of sketchy loaders, fake installers, recycled social-engineering bait, and enough exposed infrastructure to make you wonder if prod is just a public beta now - meanwhile some researcher casually drops a technique that turns a "minor" foothold into total account
New AI Usage Report: Enterprise AI Risk Is Heavily Concentrated Among a Small Group of AI "Power users"

New AI Usage Report: Enterprise AI Risk Is Heavily Concentrated Among a Small Group of AI "Power users"

The Hacker News May 28, 2026

State of AI Usage Report 2026 (full report here) by LayerX Security reveals the extent of the enterprise AI visibility gap and why most organizations still don't understand where their AI exposure is actually coming from. The research shows that enterprise AI risk is not distributed evenly across users or platforms. Instead, it is heavily concentrated among a small group of AI power users and a
New Moms Are Returning to Coding Jobs Radically Reshaped by AI (No image available)

New Moms Are Returning to Coding Jobs Radically Reshaped by AI

Wired AI News May 28, 2026

New mothers working in software development are staring down an AI-pilled workplace they barely recognize.
Amazon Thinks the Future of Data Centers Depends on a Technical Problem It Just Solved (No image available)

Amazon Thinks the Future of Data Centers Depends on a Technical Problem It Just Solved

Wired AI News May 28, 2026

The tech giant says a breakthrough in data center networking has dramatically accelerated the flow of information through its massive cloud infrastructure.
Scammers Are Using Your Real Hotel Reservations to Trick You With Spear-Phishing Attacks (No image available)

Scammers Are Using Your Real Hotel Reservations to Trick You With Spear-Phishing Attacks

Wired News May 28, 2026

Customer data from more than 350 hotels around the world may have been accessed as part of realistic reservation-hijacking scams.
JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware

JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware

The Hacker News May 28, 2026

A new campaign orchestrated by a previously undocumented threat actor has targeted cryptocurrency organizations with an aim to facilitate digital asset theft using recruitment-themed social engineering and bespoke macOS malware. "These campaigns leveraged sophisticated social engineering techniques, custom macOS malware, and deep targeting of CI/CD infrastructure," Wiz researchers Shira Ayal,
Illinois Lawmakers Just Passed America’s Strongest AI Safety Bill (No image available)

Illinois Lawmakers Just Passed America’s Strongest AI Safety Bill

Wired AI News May 28, 2026

The bill requires companies like OpenAI, Anthropic, and Google to have third parties confirm they’re following safety standards. Illinois governor JB Pritzker says he’ll sign it.
Huawei's ‘Chip Queen’ Throws Down the Gauntlet (No image available)

Huawei's ‘Chip Queen’ Throws Down the Gauntlet

Wired AI News May 27, 2026

The Chinese company is adapting to the demise of Moore’s Law, which guides chip production. It could complicate US chip dominance.
Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users

Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users

The Hacker News May 27, 2026

Latin America and Europe become the target of two banking trojan campaigns that are designed to infect Windows and Android devices with Grandoreiro and BTMOB malware, respectively. That's according to new findings from WatchGuard and ESET, which have observed the two malware families being used to single out companies in Spain, Portugal, and Mexico, as well as mobile users in Brazil. The
Malicious npm Package Stole Files From Claude AI User Directory via GitHub

Malicious npm Package Stole Files From Claude AI User Directory via GitHub

The Hacker News May 27, 2026

Cybersecurity researchers have discovered a new malicious package on the npm registry that comes with information stealing capabilities. According to OX Security, the package, named "mouse5212-super-formatter," is designed to upload files from "/mnt/user-data," a dedicated directory used by Anthropic's Claude artificial intelligence (AI) tool to handle uploads and outputs in the background. The
5 Steps to Managing Shadow AI Tools Without Slowing Down Employees

5 Steps to Managing Shadow AI Tools Without Slowing Down Employees

The Hacker News May 27, 2026

When an employee installs an AI writing assistant, connects a coding copilot to their IDE, or starts summarizing meetings with a new browser tool, they are doing exactly what a productive employee should do: finding faster ways to work. Across most organizations today, employees are running three to five AI tools on any given day. Most were never reviewed by IT. A significant portion connects