Security Daily Digest
?
← BACK TO TODAY

Cybersecurity news, daily.

2026.05.26

16 sources scanned
FEATURED
01

TrapDoor and Megalodon Supply Chain Attacks Compromise Thousands

A coordinated software supply chain attack campaign, known as TrapDoor, has targeted npm, PyPI, and CratesIO, spreading credential-stealing malware. Simultaneously, over 5,500 GitHub repositories have been infected in the 'Megalodon' attack, which involves malicious CI/CD workflows. These attacks highlight the vulnerabilities in open-source ecosystems and underscore the need for enhanced monitoring and validation of third-party code.

SRC The Hacker NewsGoogle News Security
02

Zero-Day Exploitation of LiteSpeed cPanel Plugin CVE-2026-48172

A critical zero-day vulnerability (CVE-2026-48172) with a CVSS score of 10.0 has been discovered in the LiteSpeed cPanel plugin. This vulnerability is being actively exploited in the wild, allowing attackers to execute arbitrary code on affected systems. Security teams should prioritize patching and ensure that their systems are updated to mitigate this threat.

SRC Google News Security (JP)
SIGNAL

STAY UPDATED

Daily security digest, straight to your inbox.

ARCHIVE