IT daily summaries

Summary of the last 12 hours (34 new articles) **Zero-Day Vulnerabilities & Exploits** [Virtual Event] Anatomy of a Data Breach: What to Do if it Happens to You — The French manufacturer Citro�n wants to be inspired by the legendary 2CV. The price of the e-car should be 15,000 euros. (Citro�n, electric car) — Ransomware and vendor breaches persist. The "2026 Data Breach Investigations Report" (DBIR) highlights how evolving social engineering tactics make the sector more vulnerable. **EU Regulation** European Commission Statement Mexico City, 22 May 2026 Thank you, President Sheinbaum, for hosting us at the 8th EU-Mexico Summit. It is an important moment, a moment of renewal for our partnership. A — European Commission Speech Brussels, 04 May 2026 Ladies and gentlemen, I have been asked to present the EU perspective on the closure of the Strait of Hormuz. But first, allow me to welcome that final — European Commission Statement Mexico City, 22 May 2026 Opening remarks President Sheinbaum, President Costa, Dear business leaders from Mexico and Europe, Thank you for joining us today. I look forwar **Tech Business: Acquisitions & Partnerships** Apple, Meta, and Google offer special security modes that provide your devices more secure against targeted spyware attacks. Here are how those modes work, what they do, and how to switch them on. — Massive OLED TVs and Sonos speakers might be stealing the Memorial Day spotlight, but there are also plenty of great deals that won’t set you back nearly as much. In fact, some of the best discounts w — Roger Linn lets his accomplishments do the talking. | Image: Roger Linn Roger Linn is a legend in the world of musical instruments. He's been at the cutting edge of music technology for decades. He cr **AI Security & Compute Infrastructure** Plus: Google publishes a live exploit for an unpatched flaw, the feds arrest two men accused of creating thousands of nonconsensual deepfake nudes, and more. **Key Developments** • The FBI Wants ‘Near Real-Time’ Access to US License Plate Readers: Plus: Google publishes a live exploit for an unpatched flaw, the feds arrest two men accused of creating thousands of nonconsensual deepfake nudes, an • Verizon DBIR: Healthcare Fends Off Increased Social Engineering Attacks: Ransomware and vendor breaches persist. The "2026 Data Breach Investigations Report" (DBIR) highlights how evolving social engineering tactics make th • Cyberangriff auf Abrechnungsdienstleister betrifft viele Kliniken: A cyber attack on the billing service provider Unimed affects numerous clinics and sensitive data from tens of thousands of patients. Unimed is keepin • [Virtual Event] Anatomy of a Data Breach: What to Do if it Happens to You: [Virtual Event] Anatomy of a Data Breach: What to Do if it Happens to You • Elektro-Kleinwagen: Citro�n bringt die Ente zur�ck: The French manufacturer Citro�n wants to be inspired by the legendary 2CV. The price of the e-car should be 15,000 euros. (Citro�n, electric car)

Summary of the last 12 hours (37 new articles) **Zero-Day Vulnerabilities & Exploits** [Virtual Event] Anatomy of a Data Breach: What to Do if it Happens to You — The French manufacturer Citro�n wants to be inspired by the legendary 2CV. The price of the e-car should be 15,000 euros. (Citro�n, electric car) — Ransomware and vendor breaches persist. The "2026 Data Breach Investigations Report" (DBIR) highlights how evolving social engineering tactics make the sector more vulnerable. **EU Regulation** European Commission Statement Mexico City, 22 May 2026 Thank you, President Sheinbaum, for hosting us at the 8th EU-Mexico Summit. It is an important moment, a moment of renewal for our partnership. A — European Commission Speech Brussels, 04 May 2026 Ladies and gentlemen, I have been asked to present the EU perspective on the closure of the Strait of Hormuz. But first, allow me to welcome that final — European Commission Statement Mexico City, 22 May 2026 Opening remarks President Sheinbaum, President Costa, Dear business leaders from Mexico and Europe, Thank you for joining us today. I look forwar **Tech Business: Acquisitions & Partnerships** Apple, Meta, and Google offer special security modes that provide your devices more secure against targeted spyware attacks. Here are how those modes work, what they do, and how to switch them on. — Massive OLED TVs and Sonos speakers might be stealing the Memorial Day spotlight, but there are also plenty of great deals that won’t set you back nearly as much. In fact, some of the best discounts w — Just a stuffed deer having the time of his life. | Image: Gemini / The Verge Last year I deepfaked my kid's stuffed animal to make it look like his plush deer was on vacation. It was an experiment to **AI Security & Compute Infrastructure** Plus: Google publishes a live exploit for an unpatched flaw, the feds arrest two men accused of creating thousands of nonconsensual deepfake nudes, and more. **Key Developments** • The FBI Wants ‘Near Real-Time’ Access to US License Plate Readers: Plus: Google publishes a live exploit for an unpatched flaw, the feds arrest two men accused of creating thousands of nonconsensual deepfake nudes, an • ‘Underminr’ Vulnerability Lets Attackers Hide Malicious Connections Behind Trusted Domains: The stealthy vulnerability impacts roughly 88 million domains and can be exploited to bypass DNS filtering and hide command-and-control traffic. The p • Verizon DBIR: Healthcare Fends Off Increased Social Engineering Attacks: Ransomware and vendor breaches persist. The "2026 Data Breach Investigations Report" (DBIR) highlights how evolving social engineering tactics make th • Cyberangriff auf Abrechnungsdienstleister betrifft viele Kliniken: A cyber attack on the billing service provider Unimed affects numerous clinics and sensitive data from tens of thousands of patients. Unimed is keepin • [Virtual Event] Anatomy of a Data Breach: What to Do if it Happens to You: [Virtual Event] Anatomy of a Data Breach: What to Do if it Happens to You

Summary of the last 12 hours (24 new articles) **Zero-Day Vulnerabilities & Exploits** The French manufacturer Citro�n wants to be inspired by the legendary 2CV. The price of the e-car should be 15,000 euros. (Citro�n, electric car) — Ukrainian kamikaze drones operate deep in the Russian hinterland and are delivered there using balloons. (drone, politics) — A cyber attack on the billing service provider Unimed affects numerous clinics and sensitive data from tens of thousands of patients. Unimed is keeping a low profile. **Tech Business: Acquisitions & Partnerships** Apple, Meta, and Google offer special security modes that provide your devices more secure against targeted spyware attacks. Here are how those modes work, what they do, and how to switch them on. — Massive OLED TVs and Sonos speakers might be stealing the Memorial Day spotlight, but there are also plenty of great deals that won’t set you back nearly as much. In fact, some of the best discounts w — Just a stuffed deer having the time of his life. | Image: Gemini / The Verge Last year I deepfaked my kid's stuffed animal to make it look like his plush deer was on vacation. It was an experiment to **AI Security & Compute Infrastructure** Plus: Google publishes a live exploit for an unpatched flaw, the feds arrest two men accused of creating thousands of nonconsensual deepfake nudes, and more. **Key Developments** • The FBI Wants ‘Near Real-Time’ Access to US License Plate Readers: Plus: Google publishes a live exploit for an unpatched flaw, the feds arrest two men accused of creating thousands of nonconsensual deepfake nudes, an • ‘Underminr’ Vulnerability Lets Attackers Hide Malicious Connections Behind Trusted Domains: The stealthy vulnerability impacts roughly 88 million domains and can be exploited to bypass DNS filtering and hide command-and-control traffic. The p • Cyberangriff auf Abrechnungsdienstleister betrifft viele Kliniken: A cyber attack on the billing service provider Unimed affects numerous clinics and sensitive data from tens of thousands of patients. Unimed is keepin • Elektro-Kleinwagen: Citro�n bringt die Ente zur�ck: The French manufacturer Citro�n wants to be inspired by the legendary 2CV. The price of the e-car should be 15,000 euros. (Citro�n, electric car) • SpaceX: Neue Super-Heavy-Konstruktion versagt bei Starship-Start: Starship lands well - after a flight with engine failures and an incorrect trajectory. The new Super Heavy fails when it comes to step separation. By

Summary of the last 12 hours (16 new articles) **Zero-Day Vulnerabilities & Exploits** Measuring AI-Enabled Success: 3 KPIs Leaders Should Track — The French manufacturer Citro�n wants to be inspired by the legendary 2CV. The price of the e-car should be 15,000 euros. (Citro�n, electric car) — A cyber attack on the billing service provider Unimed affects numerous clinics and sensitive data from tens of thousands of patients. Unimed is keeping a low profile. **Tech Business: Acquisitions & Partnerships** Just a stuffed deer having the time of his life. | Image: Gemini / The Verge Last year I deepfaked my kid's stuffed animal to make it look like his plush deer was on vacation. It was an experiment to — Hi, friends! Welcome to Installer No. 129, your guide to the best and Verge-iest stuff in the world. (If you're new here, welcome, come on you Gunners, and also you can read all the old editions at th **AI Security & Compute Infrastructure** Plus: Google publishes a live exploit for an unpatched flaw, the feds arrest two men accused of creating thousands of nonconsensual deepfake nudes, and more. **Key Developments** • The FBI Wants ‘Near Real-Time’ Access to US License Plate Readers: Plus: Google publishes a live exploit for an unpatched flaw, the feds arrest two men accused of creating thousands of nonconsensual deepfake nudes, an • ‘Underminr’ Vulnerability Lets Attackers Hide Malicious Connections Behind Trusted Domains: The stealthy vulnerability impacts roughly 88 million domains and can be exploited to bypass DNS filtering and hide command-and-control traffic. The p • Measuring AI-Enabled Success: 3 KPIs Leaders Should Track: Measuring AI-Enabled Success: 3 KPIs Leaders Should Track • Cyberangriff auf Abrechnungsdienstleister betrifft viele Kliniken: A cyber attack on the billing service provider Unimed affects numerous clinics and sensitive data from tens of thousands of patients. Unimed is keepin • Elektro-Kleinwagen: Citro�n bringt die Ente zur�ck: The French manufacturer Citro�n wants to be inspired by the legendary 2CV. The price of the e-car should be 15,000 euros. (Citro�n, electric car)

Summary of the last 12 hours (125 new articles) **Cybercrime & Law Enforcement** The criminal organisation, comprising individuals from Romania, the Republic of Moldova, Bulgaria, Estonia, Poland, and Ukraine, has been operating for nearly two decades, generating at least EUR 240 — Some of Europe’s most wanted fugitives are still at large despite being sentenced to years in prison for serious crimes. A new international campaign launched today is asking the public to help change — As from 2 May, Europol has entered into a transition phase with specific arrangements following the departure of Executive Director Catherine De Bolle, who left her post on 1 May 2026, after eight yea **Zero-Day Vulnerabilities & Exploits** View CSAF Summary An update is available that resolves a vulnerability identified by B&Rs internal security analysis in the product versions listed as affected in this advisory. An attacker who succes — View CSAF Summary ABB is aware of vulnerabilities in the product versions listed as affected in the advisory. An attacker who successfully exploited this vulnerability could cause the pollution of hea — View CSAF Summary ABB became aware of vulnerability in the product versions listed as affected in the advisory. An update is now available that addresses and remediates the vulnerability. A network at **Tech Business: Acquisitions & Partnerships** First VPN promised hackers complete anonymity for their cyberattacks. But Europol said it was able to notify the service’s users that they have now been identified. — The loophole allows spammers and scammers to send emails from a legitimate Microsoft email address typically used for sending genuine account alerts. — Meta's new Forum app for iPhones takes Facebook Groups and moves them to a dedicated app with a dedicated AI chatbot to go with it, like an AI revamp of the ill-fated Groups app Facebook shut down in **AI Security & Compute Infrastructure** France is already moving on from Zoom and Microsoft Teams in favor of homegrown alternatives. Other countries are quickly following suit. — GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks that has impacted hundreds of organizations. — Three firms will pay nearly $1 million for selling “Active Listening” technology that they claimed tapped people’s phones for advertising. The FTC alleges the “tech” was just pricey email lists. **Key Developments** • Hitachi Energy GMS600: View CSAF Summary Hitachi Energy is aware of the vulnerability, CVE-2022-4304 in the OSS component OpenSSL, that affects the GMS600 versions that are • ABB B&R Automation Studio: View CSAF Summary ABB became aware of vulnerability in the product versions listed as affected in the advisory. An update is available that replaces a • ABB B&R PCs: View CSAF Summary ABB became aware of vulnerability in the product versions listed as affected in the advisory. An update is now available that addres • ABB B&R Automation Runtime: View CSAF Summary An update is available that resolves a vulnerability identified by B&Rs internal security analysis in the product versions listed as • ABB Terra AC Wallbox: View CSAF Summary ABB is aware of vulnerabilities in the product versions listed as affected in the advisory. An attacker who successfully exploited t

Summary of the last 12 hours (124 new articles) **Cybercrime & Law Enforcement** The criminal organisation, comprising individuals from Romania, the Republic of Moldova, Bulgaria, Estonia, Poland, and Ukraine, has been operating for nearly two decades, generating at least EUR 240 — Some of Europe’s most wanted fugitives are still at large despite being sentenced to years in prison for serious crimes. A new international campaign launched today is asking the public to help change — For years, the service, known as ‘First VPN’, was promoted on Russian-speaking cybercrime forums as a trusted tool for remaining beyond the reach of law enforcement. It offered users anonymous payment **Zero-Day Vulnerabilities & Exploits** View CSAF Summary An update is available that resolves a vulnerability identified by B&Rs internal security analysis in the product versions listed as affected in this advisory. An attacker who succes — View CSAF Summary ABB is aware of vulnerabilities in the product versions listed as affected in the advisory. An attacker who successfully exploited this vulnerability could cause the pollution of hea — View CSAF Summary ABB became aware of vulnerability in the product versions listed as affected in the advisory. An update is now available that addresses and remediates the vulnerability. A network at **Tech Business: Acquisitions & Partnerships** According to users on X, the website was hijacked by hackers in an attempt to trick visitors into installing malware. — First VPN promised hackers complete anonymity for their cyberattacks. But Europol said it was able to notify the service’s users that they have now been identified. — The loophole allows spammers and scammers to send emails from a legitimate Microsoft email address typically used for sending genuine account alerts. **AI Security & Compute Infrastructure** France is already moving on from Zoom and Microsoft Teams in favor of homegrown alternatives. Other countries are quickly following suit. — GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks that has impacted hundreds of organizations. — Three firms will pay nearly $1 million for selling “Active Listening” technology that they claimed tapped people’s phones for advertising. The FTC alleges the “tech” was just pricey email lists. **Key Developments** • CISA Adds One Known Exploited Vulnerability to Catalog: CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-9082 Dru • ABB B&R Automation Studio: View CSAF Summary ABB became aware of vulnerability in the product versions listed as affected in the advisory. An update is available that replaces a • ABB Terra AC Wallbox: View CSAF Summary ABB is aware of vulnerabilities in the product versions listed as affected in the advisory. An attacker who successfully exploited t • ABB B&R PCs: View CSAF Summary ABB became aware of vulnerability in the product versions listed as affected in the advisory. An update is now available that addres • ABB B&R Automation Runtime: View CSAF Summary An update is available that resolves a vulnerability identified by B&Rs internal security analysis in the product versions listed as

Summary of the last 12 hours (124 new articles) **Cybercrime & Law Enforcement** The criminal organisation, comprising individuals from Romania, the Republic of Moldova, Bulgaria, Estonia, Poland, and Ukraine, has been operating for nearly two decades, generating at least EUR 240 — Some of Europe’s most wanted fugitives are still at large despite being sentenced to years in prison for serious crimes. A new international campaign launched today is asking the public to help change — For years, the service, known as ‘First VPN’, was promoted on Russian-speaking cybercrime forums as a trusted tool for remaining beyond the reach of law enforcement. It offered users anonymous payment **Zero-Day Vulnerabilities & Exploits** View CSAF Summary An update is available that resolves a vulnerability identified by B&Rs internal security analysis in the product versions listed as affected in this advisory. An attacker who succes — View CSAF Summary ABB is aware of vulnerabilities in the product versions listed as affected in the advisory. An attacker who successfully exploited this vulnerability could cause the pollution of hea — View CSAF Summary ABB became aware of vulnerability in the product versions listed as affected in the advisory. An update is now available that addresses and remediates the vulnerability. A network at **Tech Business: Acquisitions & Partnerships** According to users on X, the website was hijacked by hackers in an attempt to trick visitors into installing malware. — First VPN promised hackers complete anonymity for their cyberattacks. But Europol said it was able to notify the service’s users that they have now been identified. — The loophole allows spammers and scammers to send emails from a legitimate Microsoft email address typically used for sending genuine account alerts. **AI Security & Compute Infrastructure** France is already moving on from Zoom and Microsoft Teams in favor of homegrown alternatives. Other countries are quickly following suit. — GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks that has impacted hundreds of organizations. — Three firms will pay nearly $1 million for selling “Active Listening” technology that they claimed tapped people’s phones for advertising. The FTC alleges the “tech” was just pricey email lists. **Key Developments** • CISA Adds One Known Exploited Vulnerability to Catalog: CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-9082 Dru • ABB B&R Automation Studio: View CSAF Summary ABB became aware of vulnerability in the product versions listed as affected in the advisory. An update is available that replaces a • ABB Terra AC Wallbox: View CSAF Summary ABB is aware of vulnerabilities in the product versions listed as affected in the advisory. An attacker who successfully exploited t • ABB B&R PCs: View CSAF Summary ABB became aware of vulnerability in the product versions listed as affected in the advisory. An update is now available that addres • ABB B&R Automation Runtime: View CSAF Summary An update is available that resolves a vulnerability identified by B&Rs internal security analysis in the product versions listed as