Google accidentally exposed details of unfixed Chromium flaw (2026-05-21 18:13 UTC)
Kurz: Google has accidentally leaked details about an unfixed issue in Chromium that keeps JavaScript running in the background even when the browser is closed, allowing remote code execution on the device. […]
Apple blocked over $11 billion in App Store fraud in 6 years (2026-05-21 15:11 UTC)
Kurz: Apple revealed that it blocked over $11 billion in fraudulent App Store transactions over the last six years, more than $2.2 billion in potentially fraudulent App Store transactions in 2025 alone. […]
Inside a Crypto Drainer: How to Spot it Before it Empties Your Wallet (2026-05-21 14:00 UTC)
Kurz: Modern crypto drainers don’t hack wallets. They trick users into approving malicious transactions. Flare explores how the Lucifer DaaS platform scales wallet theft through phishing and automation. […]
CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV (2026-05-22 05:47 UTC)
Kurz: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added two security flaws impacting Langflow and Trend Micro Apex One to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. …
Cisco Patches CVSS 10.0 Secure Workload REST API Flaw Enabling Data Access (2026-05-22 05:36 UTC)
Kurz: Cisco has rolled out updates for a maximum-severity security flaw impacting Secure Workload that could allow an unauthenticated, remote attacker to access sensitive data. Tracked as CVE-2026-20223 (CVSS score: 10.0), the vulnerability arise…
Showboat Linux Malware Hits Middle East Telecom with SOCKS5 Proxy Backdoor (2026-05-21 14:17 UTC)
Kurz: Cybersecurity researchers have disclosed details of a new Linux malware dubbed Showboat that has been put to use in a campaign targeting a telecommunications provider in the Middle East since at least mid-2022. “Showboat is a modular post-e…