Heise Security News (alert)

• PostgreSQL: Updates stopfen hochriskante Sicherheitslecks (18.05.2026 12:30)
• HCL BigFix SCM Reporting sortiert verwundbare Komponente aus (18.05.2026 07:54)
• Microsoft Authenticator: Lücke ermöglicht unbefugten Zugriff (18.05.2026 06:33)
• Microsoft Exchange: Zero-Day-Lücke wird angegriffen (15.05.2026 18:41)
• „Fragnesia“: Nächste Rechteausweitungslücke im Linux-Kernel (15.05.2026 10:09)
• F5 BIG-IP: Quartalssicherheitsupdate schließt zahlreiche Lücken (15.05.2026 09:29)

CyberSecurityNews (The Hacker News)

• INTERPOL Operation Ramz Disrupts MENA Cybercrime Networks with 201 Arrests (18.05.2026 17:21)
• ⚡ Weekly Recap: Exchange 0-Day, npm Worm, Fake AI Repo, Cisco Exploit and More (18.05.2026 13:50)
• How to Reduce Phishing Exposure Before It Turns into Business Disruption (18.05.2026 13:00)
• Developer Workstations Are Now Part of the Software Supply Chain (18.05.2026 11:23)
• Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws (18.05.2026 10:54)
• MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems (18.05.2026 08:57)
• Four Malicious npm Packages Deliver Infostealers and Phantom Bot DDoS Malware (18.05.2026 08:57)
• Pre-Stuxnet Fast16 Malware Tampered with Nuclear Weapons Simulations (18.05.2026 06:46)
• NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE (17.05.2026 11:57)
• Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt (17.05.2026 07:13)
• Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming (16.05.2026 15:20)
• Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access (15.05.2026 17:10)