%term

Kevin Mandia on AI-Powered Attacks: The Race Just Got Faster | Black Hat | Reach Security

May 19, 2026 By Reach Security In Reach Security

At Black Hat last year, we sat down with Kevin Mandia to talk about what's coming. His take: offense is going to accelerate with AI. Not slow down. Not plateau. Accelerate. When you've run more red teams than practically anyone on the planet, the pattern is clear. Getting into a victim network is already a race. AI compresses those time frames further. The attack surface isn't changing. Misconfigurations, things that slipped, controls that were on and got turned off. The entry point stays the same. AI just makes the race to exploit it faster.

View Video

Reach Security

Read more about Kevin Mandia on AI-Powered Attacks: The Race Just Got Faster | Black Hat | Reach Security

WantToCry ransomware remotely encrypts files

May 19, 2026 By Sophos Counter Threat Unit Research Team In Sophos

SophosLabs analysts investigated WantToCry ransomware attacks that involved the threat actors abusing the Server Message Block (SMB) service for initial access and then exfiltrating files to attacker-controlled infrastructure for remote encryption. The detection surface is significantly reduced because WantToCry operates without local malware execution, and there is no post-compromise activity beyond exfiltrating files and rewriting them to disk.

Read Post

Sophos

Read more about WantToCry ransomware remotely encrypts files

From Jira to PR: How we built agent-driven pipelines for design system changes

May 19, 2026 By Nancy Wang, Wayne Duso, Katie Davis, Matt Davey In 1Password

Design system work follows a well-defined loop: read the ticket, check the Figma spec, find the right component primitives, apply the right tokens, write the Storybook stories, run the tests, open the PR. The steps are consistent enough that when we looked at our design system backlog, we didn't just see a list of tasks; we saw a set of instructions waiting to be executed.

Read Post

1Password

Read more about From Jira to PR: How we built agent-driven pipelines for design system changes

Forward Predict: Know the Impact of Your Network Changes Before You Push

May 19, 2026 By Forward Networks In Forward Networks

What if your team could know exactly what a network change would do before it touched production, not a best guess, not built on incomplete data, but a mathematically verified outcome drawn from an accurate model of your actual network? That is what Forward Predict delivers.

View Video

Forward Networks

Read more about Forward Predict: Know the Impact of Your Network Changes Before You Push

Provably better data

May 19, 2026 By Corelight In Corelight

Every security vendor says their data is better. Corelight decided to test that claim directly. Using real nation-state attack scenarios, including Salt Typhoon-related activity, the same AI model was evaluated against multiple security data sources to measure investigation accuracy, threat visibility, and incident response coverage. The only variable was the data.

View Video

Corelight

Read more about Provably better data

Mini Shai-Hulud Hits @antv: 323 npm Packages Compromised Through the atool Maintainer Account

May 19, 2026 By Alina Podoba In Mend

An active supply chain attack has compromised 323 npm packages published under the atool npm maintainer account. The wave sweeps the entire @antv data-visualization organization alongside standalone libraries with wide independent adoption: echarts-for-react, timeago.js, size-sensor, and canvas-nest.js. With echarts-for-react pulling roughly 1.1 million weekly downloads, any project that auto-updates these packages is in scope.

Read Post

Mend

Read more about Mini Shai-Hulud Hits @antv: 323 npm Packages Compromised Through the atool Maintainer Account

What endpoint security management actually is and what it isn't

May 19, 2026 By Tanium In Tanium

Endpoint security management is the centralized IT and security discipline of discovering, monitoring, and controlling all devices on an enterprise network, including laptops, servers, mobile devices, and IoT hardware, to reduce unauthorized access and limit how far threats can travel once inside.

Read Post

Tanium

Read more about What endpoint security management actually is and what it isn't

Deepfakes Are SCARILY Easy To Make NOW! #deepfakes #ai #cybersec

May 19, 2026 By Astra Security In Astra

View Video

Astra

Read more about Deepfakes Are SCARILY Easy To Make NOW! #deepfakes #ai #cybersec

Phishing Campaign Exploits Google AppSheets to Target Facebook Accounts

May 19, 2026 By KnowBe4 Team In KnowBe4

Researchers at Guardo Labs are tracking a major phishing campaign that abused Google AppSheet as a relay to send phishing emails. The researchers identified more than 30,000 Facebook accounts that were compromised by this campaign. Since the emails are sent from Google’s legitimate infrastructure, they’re much more likely to land in users' inboxes.

Read Post

KnowBe4

Read more about Phishing Campaign Exploits Google AppSheets to Target Facebook Accounts

Warning: Phishing Attacks Are Abusing the Kuse AI App

May 19, 2026 By KnowBe4 Team In KnowBe4

Attackers are abusing the storage and sharing features of Kuse, a free AI app, to assist in phishing campaigns, according to researchers at Trend Micro. Kuse is a legitimate agentic AI platform used by employees to streamline workflows. Users can share files with coworkers, which generates a link hosted by Kuse’s domain. In this case, attackers are abusing the share feature to generate legitimate-looking phishing links.

Read Post