Daily Security Feed - 2026-05-19

Security Feed Digest (2026-05-19)

Hacker News: Best

• Haiku OS runs on M1 Macs now — Mon, 18 May 2026 18:30:55 +0000
• Elon Musk has lost his lawsuit against Sam Altman and OpenAI — Mon, 18 May 2026 17:38:22 +0000
• Iran starts Bitcoin-backed ship insurance for Hormuz strait — Mon, 18 May 2026 17:25:54 +0000
• Anthropic acquires Stainless — Mon, 18 May 2026 17:01:21 +0000
• We stopped AI bot spam in our GitHub repo using Git’s –author flag — Mon, 18 May 2026 15:24:19 +0000
• Garry Tan, the CEO of YC, accused me of unethical reporting — Mon, 18 May 2026 15:18:19 +0000
• Actually, democracy dies in H.R. — Mon, 18 May 2026 14:04:26 +0000
• Project Glasswing: what Mythos showed us — Mon, 18 May 2026 13:37:11 +0000
• Show HN: Files.md – Open-source alternative to Obsidian — Mon, 18 May 2026 13:33:33 +0000
• Show HN: Auto-identity-remove – Automated data broker opt-out runner for macOS — Mon, 18 May 2026 11:32:42 +0000
• Eric Schmidt speech about AI booed during graduation — Mon, 18 May 2026 10:50:25 +0000
• Where Are the Vibecoded Photoshops? — Mon, 18 May 2026 09:28:56 +0000
• It is time to give up the dualism introduced by the debate on consciousness — Mon, 18 May 2026 02:59:34 +0000
• Two EA-18 fighter jets collide at Mountain Home airshow, pilots ejected safely — Sun, 17 May 2026 21:45:30 +0000
• GenCAD — Sun, 17 May 2026 21:40:35 +0000
• Show HN: Semble – Code search for agents that uses 98% fewer tokens than grep — Sun, 17 May 2026 15:37:07 +0000
• CUDA Books — Sun, 17 May 2026 12:52:06 +0000
• Tesla Solar Roof is on life support as it pivot to panels — Sun, 17 May 2026 04:09:52 +0000

Krebs on Security

• CISA Admin Leaked AWS GovCloud Keys on Github — Mon, 18 May 2026 20:48:21 +0000

BleepingComputer

• INTERPOL ‘Operation Ramz’ seizes 53 malware, phishing servers — Mon, 18 May 2026 18:15:30 -0400
• SHub macOS infostealer variant spoofs Apple security updates — Mon, 18 May 2026 17:42:20 -0400
• 5 Steps to Managing Shadow AI Tools Without Slowing Down Employees — Mon, 18 May 2026 14:45:35 -0400
• Leaked Shai-Hulud malware fuels new npm infostealer campaign — Mon, 18 May 2026 13:28:02 -0400
• Grafana says stolen GitHub token let hackers steal codebase — Mon, 18 May 2026 09:46:26 -0400
• Microsoft testing adjustable taskbar, Start menu in Windows 11 — Mon, 18 May 2026 07:14:28 -0400
• Microsoft confirms Windows 11 security update install issues — Mon, 18 May 2026 04:33:14 -0400
• Exploit available for new DirtyDecrypt Linux root escalation flaw — Mon, 18 May 2026 03:18:33 -0400
• Hackers earn $1,298,250 for 47 zero-days at Pwn2Own Berlin 2026 — Mon, 18 May 2026 01:33:20 -0400

Darkreading

• Microsoft Exchange Zero-Day Under Attack, No Patch Available — Mon, 18 May 2026 21:43:51 GMT
• ‘Claw Chain’ Vulnerabilities Threaten OpenClaw Deployments — Mon, 18 May 2026 21:24:59 GMT
• Shai-Hulud Worm Clones Spread After Code Release — Mon, 18 May 2026 19:53:05 GMT
• Fuel Tank Breaches Expand Scope of Iran’s Cyber Offensive — Mon, 18 May 2026 15:41:55 GMT
• The Boring Stuff Is Dangerous Now — Mon, 18 May 2026 13:00:00 GMT
• Boulevard of Broken Dreams: 2 Decades of Cyber Fails — Mon, 18 May 2026 12:00:00 GMT
• Can Laws Stop Deepfakes? South Korea Aims to Find Out — Mon, 18 May 2026 01:00:00 GMT

The Hacker News

• INTERPOL Operation Ramz Disrupts MENA Cybercrime Networks with 201 Arrests — Mon, 18 May 2026 22:51:18 +0530
• ⚡ Weekly Recap: Exchange 0-Day, npm Worm, Fake AI Repo, Cisco Exploit and More — Mon, 18 May 2026 19:20:17 +0530
• How to Reduce Phishing Exposure Before It Turns into Business Disruption — Mon, 18 May 2026 18:30:00 +0530
• Developer Workstations Are Now Part of the Software Supply Chain — Mon, 18 May 2026 16:53:41 +0530
• Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws — Mon, 18 May 2026 16:24:05 +0530
• MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems — Mon, 18 May 2026 14:27:34 +0530
• Four Malicious npm Packages Deliver Infostealers and Phantom Bot DDoS Malware — Mon, 18 May 2026 14:27:26 +0530
• Pre-Stuxnet Fast16 Malware Tampered with Nuclear Weapons Simulations — Mon, 18 May 2026 12:16:37 +0530

데일리시큐 - 최근인기기사

• 토르체인서 1천만 달러 이상 탈취 침해사고 발생 — 2026-05-18 09:11:19
• 윈도우 새 제로데이 취약점 ‘미니플라즈마’ 공개돼…주의 — 2026-05-18 16:25:02
• [윤두식 대표 칼럼] AI가 코드를 짜고, 침입을 결정하고, 협상까지 한다-프론티어 모델 시대의 공격과 방어 — 2026-05-18 15:39:56
• 금융보안원-금융감독원, 2026년 금융권 보안취약점 신고포상제 실시 — 2026-05-18 15:45:04
• LG유플러스, IMSI 체계 전환 따른 유심 업데이트와 교체 200만 건 넘겨 — 2026-05-18 13:45:51
• 과기정통부·오픈AI, AI 기반 사이버 위협 대응 협력 논의 — 2026-05-18 16:10:23
• SK쉴더스-NHN와플랫, AI 기반 시니어 디지털 돌봄 사업 협력 — 2026-05-18 14:40:01
• 아이씨티케이, 글로벌 빅테크 기업에 하드웨어 보안칩 양산 공급 시작 — 2026-05-18 17:35:19
• 마이크로소프트, AI 에이전트 기반 보안 분석 시스템 MDASH 공개 — 2026-05-18 18:05:19
• 개인정보위·교육부, 에듀테크 개인정보 보호 실태점검 착수 — 2026-05-18 15:57:18

보안뉴스 > SECURITY

• ‘싸고 양 많은’ 이란 공격 위력… “안보 전략, ‘회복력 강화’로 전환 필요” — Tue, 19 May 2026 07:57:00 +0900
• [해킹을 결제하시겠습니까?] #3. 해외직구, 배송은 안 오고 카드만 털렸다 — Mon, 18 May 2026 17:21:00 +0900
• 이승준 옵시아 대표 “오탐의 벽 넘은 자율형 AI, 제로데이 발굴로 실체 증명해” — Mon, 18 May 2026 17:13:00 +0900
• 금융사 취약점 찾으면 1000만원… 금보원-금감원, 버그바운티 실시 — Mon, 18 May 2026 17:00:00 +0900
• 에듀테크 기업 개인정보 보호 실태 들여다본다 — Mon, 18 May 2026 16:34:00 +0900
• 오픈AI, 과기정통부에 ‘신뢰 기반 사이버 접근 프로그램’ 소개 — Mon, 18 May 2026 16:00:00 +0900
• 다후아테크놀로지코리아-비전케이, 차량용·이동형 영상보안 솔루션 협력 MOU 체결 — Mon, 18 May 2026 13:52:00 +0900
• 엘세븐시큐리티, “파일 속 이미지까지 마스킹, 스캔, 차단”… AI 솔루션 웨비나 27일 개최 — Mon, 18 May 2026 13:48:00 +0900
• 토르체인, 보관소 해킹으로 1000만 달러 가상자산 도난당해 — Mon, 18 May 2026 13:28:00 +0900
• 그라파나, 깃허브 인증 토큰 유출로 소스코드 털렸다 — Mon, 18 May 2026 13:25:00 +0900