This month in security with Tony Anscombe – May 2026 edition
In this roundup, Tony looks at attacks against Polish water treatment facilities, how AI-directed attacks failed in Mexico, and what...
attacks
WantToCry ransomware remotely encrypts files
SophosLabs analysts investigated WantToCry ransomware attacks that involved the threat actors abusing the Server Message Block (SMB) service for initial...
Nimbus Manticore Expanded Attacks With AI-Assisted Malware and Fake Zoom Installers
Nimbus Manticore Expanded Attacks With AI-Assisted Malware and Fake Zoom Installers Pierluigi Paganini May 26, 2026 Nimbus Manticore accelerated cyberattacks...
Ghost CMS flaw abused to push ClickFix attacks on hundreds of sites
Ghost CMS flaw abused to push ClickFix attacks on hundreds of sites Pierluigi Paganini May 25, 2026 Threat actors are...
WantToCry ransomware remotely encrypts files
SophosLabs analysts investigated WantToCry ransomware attacks that involved the threat actors exploiting SMB for initial access and then exfiltrating files...
Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike
The Belarus-aligned threat group known as Ghostwriter has been attributed to a fresh set of attacks targeting governmental organizations in...
Ransomware Attacks on Schools: 4 Warning Signs IT Teams Shouldn’t Ignore
Ransomware attacks are increasingly threatening to K–12 schools, with districts of all sizes becoming prime targets for cybercriminals. These school...
PhantomCore Exploits TrueConf Vulnerabilities to Breach Russian Networks
A pro-Ukrainian hacktivist group called PhantomCore has been attributed to attacks actively targeting servers running TrueConf video conferencing software in...
Best of the Worst: Five Attacks That Looked Broken (and Worked)
The post Best of the Worst: Five Attacks That Looked Broken (and Worked) appeared first on Blog. I skipped last...
Best of the Worst: Five Attacks That Looked Broken (and Worked)
The post Best of the Worst: Five Attacks That Looked Broken (and Worked) appeared first on Blog. I skipped last...
AI-Driven Attacks on Banking Databases: Governance at Scale
The post AI-Driven Attacks on Banking Databases: Governance at Scale appeared first on Liquibase: Database DevOps. The Real AI Risk...
AI-Driven Attacks on Banking Databases: Governance at Scale
The post AI-Driven Attacks on Banking Databases: Governance at Scale appeared first on Liquibase: Database DevOps. The Real AI Risk...
Supply Chain Attacks Are Getting Worse—How to Shrink Your Exposure
The post Supply Chain Attacks Are Getting Worse—How to Shrink Your Exposure appeared first on Fairwinds | Blog. In March...
AI Prompt Injection Attacks: Examples & Prevention | Grip
The post AI Prompt Injection Attacks: Examples & Prevention | Grip appeared first on Grip Security Blog. Prompt injection is...
Renovate & Dependabot: The New Malware Delivery System
Supply chain attacks every other morning Unless you’ve lived under a rock for the last few months, you probably noticed...
