Dreigingen

Microsoft plans to improve Windows 11 driver quality in 2026

Microsoft plans to raise the quality bar of Windows 11 drivers, as drivers "sit at the heart of every Windows experience" and connect the OS to the "silicon, components, and peripherals." [...]

Microsoft blames macOS update for undismissible Teams location prompts

Microsoft has confirmed user reports that the Teams team collaboration app is displaying non-dismissible location prompts on some macOS systems. [...]

TP-Link, Photoshop, OpenVPN, Norton VPN vulnerabilities

Cisco Talos’ Vulnerability Discovery & Research team recently disclosed eight vulnerabilities in TP-Link, and one each in Adobe Photoshop, OpenVPN, and Gen Digital's Norton VPN. The vulnerabilities mentioned in this blog post have been patched by their respective vendors, in adherence to Cisco’s third-party vulnerability

Rapid7’s 2026 Global Cybersecurity Summit: Key Takeaways for Security Leaders

Security teams are working in an environment where speed, scale, and complexity are all increasing at the same time. Across the Rapid7 2026 Global Cybersecurity Summit , the focus was not just on how the threat landscape is evolving, but on how teams are adapting their approach to keep up. The sessions brought together perspectives from across detection and response, exposure management, AI, and security operations, with a consistent emphasis on making better decisions earlier and with more confidence. How modern attacks are starting across identity, cloud, and social engineering Several sessi

GitHub-repository lekte AWS-tokens en wachtwoorden cyberagentschap VS

AWS-tokens, wachtwoorden en Entra ID SAML certificaten van het Amerikaanse cyberagentschap CISA zijn via een publieke ...

DirtyDecrypt PoC Released for Linux Kernel CVE-2026-31635 LPE Vulnerability

Proof-of-concept (PoC) exploit code has now been released for a recently patched security flaw in the Linux kernel that could allow for local privilege escalation (LPE). Dubbed DirtyDecrypt (aka DirtyCBC), the vulnerability was discovered and reported by the Zellic and V12 security team on May 9, 2026, only to be informed by the maintainers that it was a duplicate of a vulnerability that had

CVE-2026-31635

Sites Instituut voor de Nederlandse Taal nog altijd offline na ransomware-aanval

Websites van het Instituut voor de Nederlandse Taal (INT) zijn nog altijd offline vanwege de ransomware-aanval waar de ...

New Shai-Hulud malware wave compromises 600 npm packages

Threat actors earlier today published more than 600 malicious packages to the Node Package Manager (npm) index as part of a new Shai-Hulud supply-chain campaign. [...]

CVE-2026-45585 Windows BitLocker Security Feature Bypass Vulnerability

Microsoft is aware of a security feature bypass vulnerability in Windows publicly referred to as "YellowKey". The proof of concept for this vulnerability has been made public violating coordinated vulnerability best practices. We are issuing this CVE to provide mitigation guidance that can be implemented to protect against this vulnerability until the security update is made available.

CVE-2026-45585

Firefox belooft betere bescherming tegen fingerprinting, vooral op macOS

Mozilla heeft een nieuwe versie van Firefox uitgebracht die betere bescherming tegen fingerprinting belooft, vooral op macOS. ...

Polen adviseert ambtenaren zelfontwikkelde chatapp in plaats van Signal

De Poolse overheid heeft ambtenaren opgeroepen om een zelfontwikkelde chatapp te gebruiken in plaats van Signal. Aanleiding ...

Privacyorganisaties: systemen zorgcommunicatie kwetsbaar voor hackers

De systemen die het ministerie van Volksgezondheid uitrolt en een rol spelen in de uitwisseling van patiëntgegevens zijn ...