// signal
[advisory]AUTHENTICATION · Deeper Than Passwords: The Passkey Boom and FIDO in the Global Authentication Race[advisory]THREATS · Meta AI Hands Control of High-Profile Instagram Accounts to Attackers: What Went Wrong[advisory]THREATS · OT Under Fire: Why You Can't Patch a Running Plant and What Mythos Means for Industrial Security[advisory]THREATS · Claude AI: Mythos, Malware, and the Mounting Risks of Autonomous Agents at Work[advisory]POLICY · Startups and GDPR: Actionable Compliance Guidance for Growth Companies[advisory]PRIVACY · Flock Safety Accessed Children's Gym Cameras for Sales Demos - Dunwoody Renewed the Contract Anyway[advisory]RESEARCH · Zero Trust in the Age of AI: Why Identity Must Become a Continuous Signal, Not a Credential[advisory]POLICY · Practical Steps for Building EU AI Act Compliance: How prEN 18286 and ISO 42001 Fit Together[advisory]STANDARDS · FIDO Alliance Formalizes Agentic Standards Work as Google and Mastercard Donate Key Protocols[advisory]POLICY · CSAI Foundation Launches Catastrophic Risk Annex, CVE Authority, and Discovers 'Safety Overfitting' in Agentic AI[advisory]AUTHENTICATION · Deeper Than Passwords: The Passkey Boom and FIDO in the Global Authentication Race[advisory]THREATS · Meta AI Hands Control of High-Profile Instagram Accounts to Attackers: What Went Wrong[advisory]THREATS · OT Under Fire: Why You Can't Patch a Running Plant and What Mythos Means for Industrial Security[advisory]THREATS · Claude AI: Mythos, Malware, and the Mounting Risks of Autonomous Agents at Work[advisory]POLICY · Startups and GDPR: Actionable Compliance Guidance for Growth Companies[advisory]PRIVACY · Flock Safety Accessed Children's Gym Cameras for Sales Demos - Dunwoody Renewed the Contract Anyway[advisory]RESEARCH · Zero Trust in the Age of AI: Why Identity Must Become a Continuous Signal, Not a Credential[advisory]POLICY · Practical Steps for Building EU AI Act Compliance: How prEN 18286 and ISO 42001 Fit Together[advisory]STANDARDS · FIDO Alliance Formalizes Agentic Standards Work as Google and Mastercard Donate Key Protocols[advisory]POLICY · CSAI Foundation Launches Catastrophic Risk Annex, CVE Authority, and Discovers 'Safety Overfitting' in Agentic AI
7759
CVEs tracked
119
Critical · 7d
74
Exploited in wild
33
PoCs public · 30d
363
Fixes shipped · 7d
4
Articles · 7d
Authentication
Deeper Than Passwords: The Passkey Boom and FIDO in the Global Authentication Race
2026-06-02T15:20Z· AUTHENTICATION· 4 min read
Critical now
top CVSS · 14dRecently disclosed vulnerabilities rated critical (CVSS ≥ 9.0) or confirmed exploited in the wild. Each card shows the affected product, a plain-English description, and whether a fix is available. Click through for our full write-up or the raw advisory.
CVE-2026-36748CVSS 9.0
RockRMS v16.13 and before v.17.7.0 is vulnerable to Cross Site Scripting (XSS) via Social Media links in user profile.
◉ CRITICALFIX STATUS UNKNOWN
added 9h ago→
CVE-2026-36576CVSS 9.8
An OS command injection vulnerability in the app.py component of openlabs docker-wkhtmltopdf-aas up to commit 9f50579 allows attackers to execute arbitrary commands via a crafted…
◉ CRITICALFIX STATUS UNKNOWN
added 9h ago→
CVE-2026-35075CVSS 9.8
An unauthenticated remote attacker can recover a default, hard coded password from a firmware image and thus gain full access to all affected devices.
◉ CRITICALFIX STATUS UNKNOWN
added 12h ago→
CVE-2026-47065CVSS 9.8
ZDRES-232: resolveProxyClass Not Overridden - acceptMatchers Filter Bypass via java.lang.reflect.Proxy Assessment: Fully addressed. When the serialised stream contains a…
◉ CRITICALFIX STATUS UNKNOWN
added 14h ago→
CVE-2025-14771CVSS 9.9
Files or directories accessible to external parties vulnerability in ABB T-MAC Plus. This issue affects T-MAC Plus: 4.0-24.
◉ CRITICALFIX STATUS UNKNOWN
added 14h ago→
CVE-2026-4035CVSS 9.1
A vulnerability in mlflow/mlflow versions prior to 3.11.0 allows for the resolution of environment variables in AI Gateway secrets, which can be exploited to exfiltrate sensitive…
◉ CRITICALFIX STATUS UNKNOWN
added 16h ago→
CVE-2024-30896CVSS 9.1
CVE-2024-30896 InfluxDB OSS 2.x through 2.7.11 stores the administrative operator token under the default organization which allows authorized users with read access to the authorization resource of the default organization to retrieve the operator token. InfluxDB OSS 1.x, Enterprise, Cloud, Cloud Dedicated and Clustered are not affected. NOTE: The researcher states that InfluxDB allows allAccess administrators to retrieve all raw tokens via an "influx auth ls" command. The supplier indicates th
Information published.
◉ CRITICAL⚡ PUBLIC POC✓ FIX AVAILABLE
added 16h ago→
CVE-2010-0249CVSS 8.8
Microsoft/Internet Explorer
Microsoft Internet Explorer Use-After-Free Vulnerability
Microsoft Internet Explorer contains an use-after-free vulnerability that could allow remote attackers to execute arbitrary code by accessing a pointer associated with a deleted…
◉ HIGH⚡ EXPLOITED✓ FIX AVAILABLE
added 25h ago→
Editor's Desk
browse all articles →
Meta AI Hands Control of High-Profile Instagram Accounts to Attackers: What Went Wrong
Hackers exploited a logic flaw in Meta's AI-powered support chatbot to take over high-profile Instagram accounts - including the Obama White House and the U.S. Space Force's chief master sergeant - by simply asking the bot to link a new email address. Meta has patched the issue, but the incident exposes the systemic risks of delegating sensitive account operations to AI agents.
OT Under Fire: Why You Can't Patch a Running Plant and What Mythos Means for Industrial Security
As AI-driven vulnerability discovery compresses exploit timelines to under a day, two new analyses from CSA-affiliated researchers argue that industrial environments face a structurally different crisis than IT - one where patching faster is neither safe nor possible, and where the real work is segmentation, hardening, and triage.
Claude AI: Mythos, Malware, and the Mounting Risks of Autonomous Agents at Work
A malicious npm package targeting Claude's local file directory, new CrowdStrike audit integrations, and a comprehensive risk catalogue from Akto converge on a single message: Claude has become enterprise infrastructure, and security teams are playing catch-up. Here's what happened this week and what organizations should do about it.
Startups and GDPR: Actionable Compliance Guidance for Growth Companies
The Cloud Security Alliance has published a structured, eight-step GDPR compliance guide aimed at startups. With enforcement actions increasingly targeting smaller companies and fines exceeding €2.3 billion in 2025, early-stage companies can no longer treat data protection as a later-stage concern.
Flock Safety Accessed Children's Gym Cameras for Sales Demos - Dunwoody Renewed the Contract Anyway
A public records request revealed that Flock Safety employees accessed sensitive camera feeds - including a children's gymnastics room and a school - to demonstrate products to other police departments. Despite public outcry, Dunwoody's city council renewed the contract.
Zero Trust in the Age of AI: Why Identity Must Become a Continuous Signal, Not a Credential
Three independent analyses published on the same day argue that the identity model underpinning enterprise security is structurally broken. Deepfakes have industrialized impersonation, AI agents operate with borrowed credentials and excessive permissions, and the fix demands a shift from point-in-time authentication to continuous behavioral verification.
trending vendors · 30d
From the frontline
analysis · deep-dives
Practical Steps for Building EU AI Act Compliance: How prEN 18286 and ISO 42001 Fit Together
A new European pre-standard, prEN 18286, offers a structured quality management system path to EU AI Act compliance that complements ISO 42001. With the August 2026 high-risk enforcement deadline approaching, organizations need to understand where the two standards converge and how to prepare.
FIDO Alliance Formalizes Agentic Standards Work as Google and Mastercard Donate Key Protocols
The FIDO Alliance has launched two dedicated working groups for agentic authentication and payments, with Google donating its Agent Payments Protocol (AP2) and Mastercard contributing Verifiable Intent. The move consolidates previously independent efforts into an open, industry-governed standards process backed by major payment networks, credential managers, and AI labs.
CSAI Foundation Launches Catastrophic Risk Annex, CVE Authority, and Discovers 'Safety Overfitting' in Agentic AI
The Cloud Security Alliance's nonprofit arm, CSAI Foundation, announced a series of milestones at its Agentic AI Security Summit: a new Catastrophic Risk Annex translating extreme AI scenarios into auditable controls, registration as a CVE Numbering Authority for AI vulnerabilities, and an empirical finding that repeated adversarial testing can cause agents to refuse legitimate tasks.
April 2026 Patch Tuesday: Two Zero-Days, a CVSS 9.8 IKE Flaw, and 164 CVEs Demand Urgent Attention
Microsoft's April 2026 Patch Tuesday addresses 164 vulnerabilities - double March's count - including one actively exploited SharePoint zero-day, a disclosed Defender privilege escalation linked to the BlueHammer exploit, and a CVSS 9.8 unauthenticated RCE in the Windows IKE Extension. Browser updates from Google and Mozilla add another layer of urgency.
MedTech Under Attack: OpenEMR Vulnerabilities and Medtronic Breach Expose Healthcare's Expanding Attack Surface
An AI-powered audit uncovered 38 vulnerabilities in OpenEMR - the open-source EHR platform serving over 200 million patients - while Medtronic confirmed a breach by ShinyHunters involving an alleged 9 million stolen records. Together, these events underscore the healthcare sector's persistent security challenges across both software supply chains and corporate IT infrastructure.
CSA Launches AI Security Maturity Model to Bridge the Gap Between Research and Operational Readiness
The Cloud Security Alliance introduced its AI Security Maturity Model (AISMM) at RSAC 2026, designed to give enterprises measurable KPIs for AI security across categories including model security, agentic applications, and MCP servers. Paired with a restructured Enterprise Membership program, CSA is betting that scalable analyst support - not just published research - is what organizations need to close the governance gap.
Choosing the Right AI Security Standard: CSA's 7-Point Decision Guide for CISOs
The Cloud Security Alliance has published a structured decision framework to help security and risk teams select the right AI governance standard. The guide distills the choice down to seven questions spanning jurisdiction, risk profile, governance maturity, and supply chain position.
Cohere's Terrarium Sandbox Vulnerability: Root Code Execution and Container Escape via Prototype Traversal
A critical sandbox escape flaw (CVE-2026-5752, CVSS 9.3) in Cohere AI's Terrarium Python sandbox allows attackers to execute arbitrary commands as root via JavaScript prototype chain traversal. The project is abandoned, so no patch is forthcoming.
UK Government Makes It Official: NCSC Recommends Passkeys Over Passwords as Microsoft Begins Windows Rollout
The UK's National Cyber Security Centre has formally recommended passkeys as the default authentication method, calling passwords "no longer resilient enough for the contemporary world." The announcement at CYBERUK 2026 coincides with Microsoft beginning its rollout of Entra passkey support to Windows devices, including unmanaged PCs.
Open Standards in Product Lifecycle Management: How OpenEoX and CLE Drive Transparency and Security
Two emerging open standards - OpenEoX and CLE - are joining forces to give organizations machine-readable visibility into whether the software and hardware they depend on is still supported. Their collaboration addresses a critical blind spot in supply chain security, just as the EU Cyber Resilience Act makes lifecycle transparency a legal requirement.
Are Your Backups Actually Protecting You? The Costly Gap Between Data Recovery and Business Continuity
Enterprise backup strategies are falling short in ransomware scenarios, with backup usage for recovery hitting a six-year low. The real risk isn't data loss-it's prolonged operational downtime that backups alone cannot prevent.
AI Identity Crisis: Attribution, Responsibility, and Agentic Abuse on the Modern Attack Surface
Identity weaknesses now appear in nearly 90% of breach investigations, and new CSA research confirms most organizations still cannot distinguish AI agent actions from human ones. As both sides of the adversary-defender equation deploy autonomous agents, the identity layer has become the decisive battleground - and the industry's response is racing to catch up.
AI Agent Security: Three CSA Reports Converge on Identity, Scope, and Trust Chain Failures
Three Cloud Security Alliance research efforts released in the same week reveal a unified problem: AI agents are operating at enterprise scale with borrowed identities, excessive permissions, and invisible trust chains - and most organizations lack the controls to detect or contain the resulting risks.
Vercel Breach Unfolds: How Trust in an AI Integration Led to Credential Exposure
A Lumma Stealer infection at AI vendor Context.ai cascaded through an overly permissive OAuth connection into Vercel's enterprise Google Workspace, exposing customer credentials and internal data. The incident - now claimed by a threat actor using the ShinyHunters name - is a textbook case of the supply chain risks that AI integrations introduce.
Protobuf.js Vulnerability Exposes JavaScript Environments to Remote Code Execution
A critical code injection flaw in protobuf.js (CVE-2026-41242, CVSS 9.4), downloaded over 52 million times per week, allows attackers to achieve remote code execution by crafting malicious protobuf schema definitions. Public proof-of-concept exploit code is now available, and patches have been released in versions 8.0.1 and 7.5.5.
Beyond Adoption: The Infrastructure Upgrades Making Passkeys and AI Agent Authentication Production-Ready
While passkey adoption has crossed the mainstream threshold, the harder engineering work is now underway: portable credentials, standardized wallet certification, and cryptographic delegation chains for AI agent transactions. A wave of specification updates and new board appointments signals the ecosystem is solving the interoperability and governance problems that will determine whether passwordless authentication scales durably.
The Passkey and Passwordless Movement: Are We Nearing the Death of the Password?
With 4 billion passkeys in active use, 87% enterprise adoption, and Microsoft auto-migrating tenants to passkey profiles, the convergence of data in April 2026 suggests password-based authentication is entering terminal decline - though the transition is far from complete.
AI Agents in Shared Workspaces: Why Scope Violations Are Now Routine and What the Industry Is Building to Stop Them
New CSA survey data reveals 53% of organizations have experienced AI agent scope violations, while research into shared workspace authorization failures and a new runtime enforcement product from Curity illustrate both the depth of the problem and the emerging architectural responses.