Payouts King ransomware uses QEMU VMs to bypass endpoint security

The Payouts King ransomware is using the QEMU emulator as a reverse SSH backdoor to run hidden virtual machines on ...
Microsoft

Cross‑tenant helpdesk impersonation to data exfiltration: A human-operated intrusion playbook

Threat actors are abusing external Microsoft Teams collaboration to impersonate IT helpdesk staff and convince users to grant ...
CSO Online

Critical sandbox bypass fixed in popular Thymeleaf Java template engine

The 9.1-CVSS vulnerability enables attackers to circumvent RCE protections in the de facto template engine for the Java ...
The Hacker News

Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover

CVE-2026-33032 exposes nginx-ui to unauthenticated takeover via MCP endpoint, impacting 2,600+ instances with active ...
KAKE.com

6 Secret Service agents suspended over conduct during attempted Trump assassination

Headline: Red Flag Warning from SAT 2:00 PM CDT until SAT 8:00 PM CDT Bulletin: ...RED FLAG WARNING REMAINS IN EFFECT FROM 1 PM MDT /2 PM CDT/ THIS AFTERNOON TO 7 PM MDT /8 PM CDT/ THIS EVENING FOR ...