Latest Internet & Cybersecurity News
Charter Communications breach may affect nearly 5 million people
ShinyHunters claims to have published stolen data tied to Charter Communications, including customer records and employee-account data. Have I Been Pwned’s analysis suggests about 4.9 million unique email addresses were exposed, while Charter says only sales tools were impacted and no sensitive customer information was released.
Microsoft threatens legal action against security researcher over unpatched bugs
Microsoft criticized a researcher who publicly disclosed multiple vulnerabilities affecting products such as Defender and BitLocker before patching was complete. The dispute has reignited debate over responsible disclosure versus public transparency in cybersecurity research.
Oracle releases May 2026 Critical Security Patch Update
Oracle’s May 2026 Critical Security Patch Update fixes 35 unique CVEs across 35 security updates. Security Boulevard reports that 11 of those issues were rated critical, making the patch cycle a high-priority event for enterprise administrators.
CISA response highlights continuing supply-chain attack pressure
SecurityWeek says CISA is responding to ongoing supply-chain attacks as part of this week’s major cybersecurity stories. The focus underscores how attackers are increasingly targeting trusted software and vendor ecosystems rather than only direct victim systems.
Phishing campaigns target the 2026 FIFA World Cup
SecurityWeek reports that phishers are actively exploiting interest in the 2026 FIFA World Cup to lure victims. The campaign reflects how major global events are routinely used as social-engineering themes for credential theft and malware delivery.
Trump Mobile data breach adds to consumer exposure concerns
SecurityWeek includes a Trump Mobile data breach among the week’s noteworthy incidents. The report indicates that customer data exposure remains a recurring risk for telecom and mobile-service brands, especially when attackers can monetize personal records.
State and local infrastructure remains in the crosshairs
Security expert Nicole Perlroth says actors, predominantly China, are probing state and local systems, including water, ports, railways, and vendors serving those sectors. She warns that attackers are often getting inside these systems and waiting, which raises the risk of future disruption.
Industrial control systems need urgent modernization
Perlroth argues that aging software and weak protection tools are making critical infrastructure more vulnerable. She says water and power authorities need modernized industrial control systems and security tools specifically designed for operational technology environments.
SentinelOne to cut 8% of workforce amid profitability pressure
ChannelDive reports that SentinelOne will lay off hundreds of employees, or roughly 8% of its workforce. The company is leaning more heavily on MSSP partnerships and sales growth as it tries to improve profitability.
AI-driven threats continue to reshape the cyber risk landscape
EsecurityPlanet’s weekly roundup says AI threats are one of the defining cybersecurity themes of May 2026. The report groups AI-driven attacks with critical vulnerabilities and supply-chain breaches as the major forces shaping current defender priorities.