Dataproof Communications

Key Points On May 4th, 2026, The Gentlemen RaaS administrator acknowledged on underground forums that an internal backend database (Rocket) had been leaked. This leak exposed 9 accounts, including zeta88 (aka hastalamuerte), who runs the infrastructure, builds the locker and RaaS panel, manages payouts, and effectively acts as the administrator of the program. The internal discussions provide a rare...

In human capital management, trust and data sovereignty are reshaping the way that companies deploy AI. - Read more

Reform of the Computer Misuse Act is to be folded into a wider National Security Bill granting more powers for law enforcement to protect the UK against a wider spectrum of threats - Read more

In the latest Humans of Talos, Amy sits down with Senior Vulnerability Researcher Philippe Laulheret to demystify the world of ethical hacking. Philippe shares his unique journey from French engineering school to the front lines of cybersecurity, explaining how his lifelong love for solving puzzles helps him uncover critical security flaws before they can be exploited.From his memorable experiment...

CVSSv3 Score: 7.8 CVE-2026-31431In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the...

In April 2026, Canada Life was the victim of a "pay or leak" extortion campaign by the ShinyHunters group. The group subsequently published the data which contained over 200k unique email addresses along with names, phone numbers, physical addresses and, in some cases, customer support tickets. In their disclosure notice, Canada Life advised that "it is a small proportion...

New capabilities help organizations detect polymorphic coordinated phishing earlier, respond faster, and build lasting resilience News highlightsCofense launches new advancements to its AI-driven Phishing Defense Platform to help customers defend against advanced phishing attacks. Cofense shifts phishing defense from individual email response to campaign-level action with AI-driven detection that tracks polymorphic attacks across their mutations.Cofense combines AI with human-validated intelligence to...

- Read more

By: Jason MeurerI've spent enough time in phishing defense to know what a genuine step change looks like, and Vision AI is one of those moments.Attackers have always operated at campaign scale. Defenders have too often been stuck responding one email at a time. With Vision AI in Cofense Vision 3.2, we’re making a major step toward changing that...

Microsoft is publishing 137 vulnerabilities on May 2026 Patch Tuesday. Microsoft is not aware of exploitation in the wild or public disclosure for any of these vulnerabilities. So far this month, Microsoft has provided patches to address 133 browser vulnerabilities, which are not included in the Patch Tuesday count above.Windows Netlogon: critical RCEAnyone responsible for securing a domain controller...