VulnHub

Microsoft has withdrawn the KB5079391 update for Windows 11 after users reported installation issues resulting in error code 0x80073712. This non-security preview update was intended to enhance the operating system but instead caused problems for those attempting to install it. The company is now investigating the source of the error, which is affecting users who downloaded this particular update. For many, this means they may have to wait longer for fixes or improvements that were supposed to come with the update. It's a reminder of the potential complications that can arise from software updates and the importance of monitoring system changes closely.

The UK Information Commissioner’s Office (ICO) has fined Birmingham-based company TMAC £100,000 for making nuisance calls. This fine was imposed after the ICO found that TMAC was responsible for making a significant number of unsolicited calls, which harassed individuals and violated privacy regulations. The ICO's action highlights the ongoing battle against spam calls that often target vulnerable populations. Such fines are part of a broader effort to hold companies accountable for their practices and protect consumers from unwanted communications. This incident serves as a reminder for businesses to comply with regulations regarding direct marketing and for consumers to stay vigilant against potential scams.

The European Commission has confirmed a data breach affecting its AWS infrastructure, compromising sensitive information. While specific details regarding the extent of the breach remain limited, the incident raises concerns about the security of cloud services used by governmental bodies. The breach could potentially expose personal data and operational information, impacting trust in the Commission's digital systems. This incident highlights the ongoing risks associated with cloud computing, especially for entities dealing with sensitive or confidential data. Users and stakeholders are advised to remain vigilant and review their cybersecurity protocols in light of this breach.

The FBI has confirmed that Iranian hackers successfully targeted the personal email account of Kash Patel, the former Director of the U.S. National Counterterrorism Center. While the agency noted that the information accessed in the hack is old, the incident raises concerns about the security of personal communications for high-profile government officials. In response to this breach, the U.S. government has announced a reward of up to $10 million for information leading to the identification and capture of those responsible for the attack. This move underscores the ongoing risks posed by state-sponsored hacking and the importance of safeguarding sensitive information, particularly for individuals in prominent positions. The incident serves as a reminder for both officials and the public to remain vigilant about cybersecurity practices.

Researchers from the University of Oxford and the AI Security Institute have created a benchmark called SandboxEscapeBench. This tool tests whether AI agents can break free from their container sandboxes, which are used to safely run code and access system resources without risking the host system. The benchmark specifically evaluates scenarios where an AI agent has shell access, aiming to determine if it can escape the confines of its sandbox. This research is significant because if AI agents can escape, they might pose risks to the systems they were intended to protect. Understanding these vulnerabilities is crucial for developers and organizations that rely on AI technologies.

In a recent cybersecurity incident, the hacking group ShinyHunters has claimed responsibility for breaching a European Commission group linked to Iran, known as Handala. This attack has raised concerns about the security of sensitive information and the potential implications for international relations. Additionally, the group reportedly hacked FBI Director Kash Patel’s personal data, which could expose vulnerabilities in U.S. federal cybersecurity measures. The incidents underline the ongoing risks associated with state-sponsored hacking and the need for improved defenses against such threats. As these attacks come to light, organizations and governments may need to reassess their cybersecurity protocols to protect against similar intrusions in the future.

At the BSides SF 2026 hacker conference, a researcher warned that Software as a Service (SaaS) and cloud assets are increasingly vulnerable to identity-based ransomware attacks. This type of attack exploits weaknesses in identity management systems, allowing attackers to gain unauthorized access and encrypt critical data. Organizations that rely on cloud services for their operations, especially those with inadequate security measures in place, are at significant risk. The researcher emphasized that as more businesses transition to these platforms, the need for robust identity protection becomes essential. Companies should prioritize enhancing their identity security protocols to mitigate these risks and protect sensitive customer information.

At the RSAC 2026 conference, researchers discussed the emergence of Shai-Hulud worms, which have taken advantage of automatic updates in open-source software repositories. They warned that these types of supply-chain attacks may become more common, posing significant risks to software integrity and security. This could affect a wide range of organizations that rely on open-source software for their operations. The implications are serious, as attackers could potentially infiltrate systems through seemingly legitimate software updates, compromising sensitive data and systems. Companies using open-source solutions need to be vigilant and implement stricter security measures to protect against these evolving threats.

ShinyHunters, a notorious hacking group, claims to have breached the European Commission's systems, resulting in the leak of 350GB of sensitive data. This incident raises significant concerns about the security of governmental data and the potential implications for privacy and national security. The European Commission is currently investigating the breach, but as of now, there has been no independent verification of ShinyHunters' claims. Such a large data leak could expose confidential communications and personal information, which might lead to further cyber threats or exploitation. The situation underscores the need for robust cybersecurity measures within governmental organizations to protect against such attacks.