Your Daily Cybersecurity Briefing

Lawmakers Demand Answers as CISA Tries to Contain Data Leak

• Lawmakers are demanding answers from the U.S. Cybersecurity & Infrastructure Security Agency (CISA) after a CISA contractor intentionally published AWS GovCloud keys and a vast trove of other agency secrets on a public GitHub account. The contractor reportedly disabled GitHub's built-in protection against publishing sensitive credentials, and CISA is currently struggling to contain the breach and invalidate the exposed credentials.

  KrebsonsecurityYoutube

• A new wave of software supply chain attacks continues to impact various ecosystems, with the "Mini Shai-Hulud" campaign breaching TanStack npm on May 11, 2026, and a separate attack targeting over 700 versions of Laravel-Lang PHP packages. Threat actors behind the Laravel-Lang compromise rewrote existing git tags to inject a credential-stealing framework, highlighting the evolving sophistication of supply chain threats.

  CybermagazineThehackernews

• A stealthy vulnerability dubbed "Underminr" has been identified, impacting approximately 88 million domains by allowing attackers to bypass DNS filtering and conceal command-and-control traffic. This exploit leverages shared content delivery network (CDN) infrastructure to hide connections to malicious domains behind trusted ones.

  Securityweek

• The European Central Bank (ECB) convened on May 24, 2026, to address the escalating cybersecurity risks posed by new artificial intelligence models, planning to urge banks to accelerate the fortification of their information systems. This institutional response underscores growing concerns about AI's potential to quickly identify system vulnerabilities.

  Gurufocus