AI-Driven Zero-Day Exploit for 2FA Bypass Uncovered — The Hacker News

Google has disclosed a zero-day exploit developed using AI that targets web admin tools, allowing attackers to bypass two-factor authentication (2FA). This exploit, attributed to an unknown threat actor, represents a significant advancement in attack techniques, leveraging AI to automate and enhance the effectiveness of the exploit. Security teams should prioritize reviewing their 2FA implementations and monitor for unusual access patterns.

Critical 'Dirty Frag' Vulnerability Threatens Linux Systems — Ars Technica Security

A new privilege escalation vulnerability, dubbed 'Dirty Frag', has been identified in Linux systems, with active exploitation reported. This vulnerability allows attackers to gain root access, posing a significant risk to enterprise environments. Affected systems should apply available patches immediately to mitigate potential breaches. Security teams must monitor for indicators of compromise and ensure that Linux distributions are updated promptly.

Checkmarx Jenkins Plugin Compromised in Supply Chain Attack — BleepingComputer

Checkmarx has confirmed that a compromised version of its Jenkins Application Security Testing (AST) plugin was distributed, following a previous supply chain attack on KICS. This rogue version contains an infostealer, posing a risk to any systems where it was installed. Security teams should verify the integrity of their Jenkins plugins and remove any compromised versions to prevent data exfiltration.

• New GhostLock tool abuses Windows API to block file access [BleepingComputer]
• cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor [The Hacker News]
• Identity security firm SailPoint discloses GitHub repository breach - Security Affairs [Google News Security]
• New ‘Dirty Frag’ Linux Vulnerability Possibly Exploited in Attacks - SecurityWeek [Google News Security]
• 無料メールソフト「Thunderbird」がセキュリティアップデート ～3件の脆弱性を修正／v150.0.2がリリース - 窓の杜 [Google News Security (JP)]