How the Story of a USB Penetration Test Went Viral – Dark Reading
Two decades ago Dark Reading posted its first blockbuster — a story from a pen tester who sprinkled rigged thumb drives around a credit union parking lot and let curious…
May 2026
MetInfo CMS CVE-2026-29014 Exploited for Remote Code Execution Attacks – The Hacker News
Threat actors are actively exploiting a critical security flaw impacting an open-source content management system (CMS) known as MetInfo, according to new findings from VulnCheck. The vulnerability in question is…
AI finds 20-year-old bugs in PostgreSQL and MariaDB – CSO Online
Open-source databases are facing a bit of a memory problem as AI helps surface decades-old buffer overflow issues in widely used components. Security researchers have disclosed a set of high…
Mike OSS: Open source legal AI tool “changes the negotiation” – Legal IT Insider
A new open source legal AI tool vibe coded by former Latham & Watkins associate William Chen is causing market excitement, with end users claiming it will change their negotiation…
Stealthy malware abuses Microsoft Phone Link to siphon SMS OTPs from enterprise PCs – CSO Online
A newly identified malware campaign is abusing Microsoft’s Phone Link feature to intercept SMS-based one-time passwords and other sensitive mobile data directly from Windows systems. The activity, first observed by…
GISEC GLOBAL 2026 – The Middle East & Africa’s Largest Cybersecurity Event – Dark Reading
Post Content – Read More
We Scanned 1 Million Exposed AI Services. Here’s How Bad the Security Actually Is – The Hacker News
While the software industry has made genuine strides over the past few decades to deliver products securely, the furious pace of AI adoption is putting that progress at risk. Businesses…
Bar Council faces legal challenge over Black internship scheme – Legal Cheek
GB News commentator Sophie Corcoran claims programme is discriminatory Sophie Corcoran The Bar Council is facing an employment tribunal discrimination claim brought by a white journalist and GB News commentator…
ScarCruft Hacks Gaming Platform to Deploy BirdCall Malware on Android and Windows – The Hacker News
The North Korea-aligned state-sponsored hacking group known as ScarCruft has compromised a video game platform in a supply chain espionage attack, trojanizing its components with a backdoor called BirdCallto likely…
CISOs step up to the security workforce challenge – CSO Online
A robust cybersecurity program needs a range of skilled people, yet many CISOs continue to face an ongoing skills shortage — and the squeeze may only get worse as AI…
Why most zero-trust architectures fail at the traffic layer – CSO Online
Zero trust has become one of the most widely adopted security models in enterprise environments. Organizations invest heavily in identity systems, access policies and modern security tooling. On paper, these…
Efimis – Legal Futures
Efimis is a complete legal accounting platform designed for an AI driven future. Built specifically for the business of law, the Financial Management Software is designed for an AI-driven future. The…
‘Should I do a law degree, or should I just convert later?’ – Legal Cheek
Are LLBs overrated nowadays? With the SQE ushering in alternate pathways to qualification, and the non-law graduate to solicitor pipeline becoming increasingly common, there is no longer a single standard…
Miller’s annual CLC risk & compliance conference: regulatory developments, claims, and training insights – Legal Futures
Despite the inclement weather, Miller’s annual CLC Risk & Compliance Conference, held on 21 January 2026, attracted an impressive turnout. Attendees benefited from a comprehensive agenda that underscored the significance…
Weaver E-cology RCE Flaw CVE-2026-22679 Actively Exploited via Debug API – The Hacker News
A critical security vulnerability in Weaver (Fanwei) E-cology, an enterprise office automation (OA) and collaboration platform, has come under active exploitation in the wild. The vulnerability (CVE-2026-22679, CVSS score: 9.8)…