Ask.com shuts down after nearly 30 years, marking the end of Ask Jeeves
After nearly 30 years, Ask.com, originally launched as Ask Jeeves in 1997, has shut down operations on May 1, 2026, as its parent company, IAC, pivots away from the search business. The search engine, known for its natural language interface and mascot Jeeves, competed with early web giants but was eventually surpassed by Google, and despite rebranding and attempts to adapt, it faded into irrelevance.
Alberta voter list breach flagged by journalist weeks ago
A Calgary journalist alerted Elections Alberta to a voter list breach weeks ago, but alleges the watchdog failed to act. The article also touches on various other news items across Canada.
Apple CEO Tim Cook has warned that Mac mini and Mac Studio shortages may persist for months due to AI workloads driving demand beyond manufacturing capacity. This surge in demand is attributed to the growing interest in local AI processing, with users opting for on-device AI to address privacy concerns, reduce latency, and avoid rising cloud costs.
EtherRAT Uses SEO Poisoning and Fake GitHub Pages to Target Enterprise Admins
A new cyber campaign named EtherRAT is targeting enterprise administrators by using SEO poisoning and fake GitHub pages to impersonate legitimate administrative tools. This campaign utilizes a dual-stage approach with fake repositories leading to malicious installers, and employs the Ethereum blockchain for resilient command-and-control.
Two US Security Experts Sentenced to Prison for Helping Ransomware Gang - SecurityWeek
Two US cybersecurity experts, Ryan Goldberg and Kevin Martin, have been sentenced to 4 years in prison for their involvement in BlackCat and Alphv ransomware attacks. They pleaded guilty to conspiracy to obstruct commerce by extortion, having worked as ransomware negotiators before engaging in the scheme.
China-Linked Hackers Target Asian Governments, NATO State, Journalists, and Activists
A new China-aligned espionage campaign, tracked as SHADOW-EARTH-053, has targeted government and defense sectors in Asia and one NATO state, Poland, by exploiting vulnerabilities in Microsoft Exchange and IIS servers. Concurrently, separate China-affiliated groups, GLITTER CARP and SEQUIN CARP, have been impersonating journalists and activists in phishing campaigns to harvest credentials and gain access to email accounts.
Private Chats, Photos of Celebs Exposed in Suspected Stalkerware Leak
A suspected stalkerware leak exposed private chats and photos of a prominent European celebrity and several influencers, with 86,859 images found in an unprotected online database. The data included personal messages, ID documents, and screenshots from victim phones, highlighting the dangers of spyware and the importance of device security.
Carding service Jerry’s Store leak exposes 345,000 stolen payment cards
The Jerrys Store carding service, used to validate stolen payment cards, inadvertently exposed 345,000 records after its server was left open due to AI-generated code flaws. This leak included sensitive cardholder data and highlights the increasing productization of cybercriminal services.
Polymarket Says Alleged Hack Is Just Public Data Not a Breach
Polymarket has denied claims of a data breach, stating that the 300,000+ user records alleged to be stolen are publicly accessible via APIs and the blockchain, suggesting the data was scraped rather than leaked. This incident occurs amidst a rise in crypto hacks, with Web3 projects losing $482 million in Q1 2026.
The Seoul Facilities Corporation, responsible for the Ddarungi public bicycle service, has a personal information liability insurance coverage limit of only 10 million won, which is deemed insufficient given the recent leak of 4.62 million members' data. The corporation is reviewing measures to increase insurance coverage, hire dedicated security personnel, and systematically remove unnecessary data, with compensation for victims also under consideration.
Vimeo Confirms User and Customer Data Breach - SecurityWeek
Video hosting platform Vimeo has confirmed a data breach affecting user and customer information, stolen via a third-party vendor attack on the Anodot analytics platform. The compromised data includes technical details, video titles, metadata, and some customer emails, but not video content or login credentials. The cybercrime group ShinyHunters has claimed responsibility and is demanding a ransom.
PyPI package with 1.1M monthly downloads hacked to push infostealer
The popular PyPI package elementary-data, with over 1.1 million monthly downloads, was compromised by an attacker who pushed a malicious version (0.23.3) to steal sensitive developer data and cryptocurrency wallets. The attacker exploited a GitHub Actions script injection flaw to forge a legitimate release, which included a secrets stealer targeting SSH keys, cloud credentials, and crypto wallet files.
Iran-linked hackers leak data of 2K+ US soldiers - Shafaq News
Article claims The Iran-linked hacking group Handala has leaked the personal data of over 2,300 US Marines deployed in the Middle East, claiming to possess further information and issuing threats. The group, which has been linked to previous cyber incidents and presents itself as pro-Palestinian, has not had its claims independently verified.
CheckMarx admits it was hit by major cyberattack that saw data leaked onto Dark Web | TechRadar
Checkmarx has confirmed a data breach originating from its GitHub repository, which was accessed through a supply chain attack on Trivy. Threat actors claimed to have exfiltrated source code and sensitive credentials, though Checkmarx is still investigating and has not commented on these specific claims.
Chinese engineer stole US military and NASA software for years | Malwarebytes
A Chinese aerospace engineer, Song Wu, is wanted by the FBI for allegedly impersonating US researchers via email for four years to steal sensitive military and NASA software. Wu, an employee of China’s state-owned AVIC, sent fake emails to researchers at NASA, the US military, and universities, tricking them into sharing proprietary code related to aerospace engineering and weapons performance. The scheme was uncovered by NASA’s Cyber Crimes Division through a tip, highlighting the growing threat of social engineering and impersonation in international espionage, especially with the potential misuse of AI.
Securing RAG pipelines in enterprise SaaS | CSO Online
This article addresses the significant security liabilities introduced by Retrieval-Augmented Generation (RAG) pipelines in enterprise SaaS, where connecting LLMs to proprietary data risks IP exfiltration. It details RAG architecture, common attack vectors like prompt injection and data poisoning, and emphasizes the need for defense-in-depth strategies including input/output sanitization and retrieval-time access controls to secure sensitive information.
Microsoft’s AI Agent Role Had a Scoping Bug
Microsoft’s Entra Agent Identity Platform had a scoping bug in its Agent ID Administrator role, allowing users with this role to take over any service principal in a tenant, not just AI agent identities. Microsoft has patched the vulnerability, and no user action is required, but an audit of Entra logs for specific activities before April 9 is recommended.
Everything you need to know about the GitHub Copilot pricing changes | IT Pro
GitHub is changing its Copilot pricing model from premium request units (PRUs) to GitHub AI Credits on June 1st, aiming to better align costs with usage as new features increase compute demands. While monthly subscription prices remain the same, usage-based billing means users with intense AI feature usage may see increased costs, but admins will have more control over budgets and can pool credits across organizations.
Compromised open source package pushed malicious Elementary CLI release to developers | IT Pro
A recent release of the Elementary Python CLI tool (version 0.23.3) was compromised with malicious code, potentially exposing sensitive developer data like SSH keys, cloud credentials, and crypto wallet files. Developers who downloaded this version are urged to uninstall it, clear their cache, and rotate all accessible credentials.
Germany Suspects Russia Is Behind Signal Phishing That Targeted Top Officials - SecurityWeek
Germany suspects Russia is behind phishing attacks targeting high-ranking officials, military personnel, and journalists on the Signal app. The investigation, which began in mid-February 2026, involves allegations of espionage, with attackers reportedly using a fake Signal security chatbot to gain access to accounts and read past chats.
New Sandworm Tradecraft Uses SSH-over-Tor Tunnel for Long-Term Hidden Persistence
The Sandworm threat group is employing a new SSH-over-Tor tunnel technique for long-term hidden persistence in targeted cyberattacks. This advanced method uses dual-layer anonymous tunnels disguised as normal network traffic, allowing attackers to maintain encrypted remote control and access sensitive data without detection.
UNC6692 Uses Email Bombing, Social Engineering to Deploy ‘Snow’ Malware - SecurityWeek
A threat actor known as UNC6692 is employing email bombing and social engineering tactics, impersonating IT support to trick victims into executing malicious code. This leads to the deployment of the Snow malware framework, which includes components like Snowbelt, Snowglaze, and Snowbasin, enabling reconnaissance, lateral movement, and credential harvesting.
Firefox bug CVE-2026-6770 enabled cross-site tracking and Tor fingerprinting
A Firefox bug (CVE-2026-6770) allowed cross-site tracking and Tor fingerprinting, even in Private Browsing mode. This vulnerability, which exposed stable identifiers via IndexedDB, has been fixed in Firefox 150 and Tor Browser 15.0.10.
Researchers Warn macOS textutil, KeePassXC Can Fuel Automation Attacks
Researchers warn that trusted tools like macOS’s textutil and KeePassXC can be exploited in automation attacks by manipulating their normal functions. Textutil can be tricked into making network requests when processing specially crafted HTML, potentially leading to SSRF-style risks, while KeePassXC can be bogged down by files with excessively high KDF settings, causing denial-of-service conditions.
A recent report indicates that 77% of cybersecurity professionals did not receive pay rises last year, leading nearly half (48%) to consider switching roles. This lack of compensation and recognition, despite the critical nature of their work, is a significant driver of attrition in the cybersecurity field.