Carnival Breach Exposes 6M Customers, CISA Warns of Critical LiteSpeed Flaw, and 'The Gentlemen' Ransomware Surges
Summary
A major data breach at Carnival Corporation has exposed the personal information of nearly 6 million customers following a phishing attack claimed by the ShinyHunters group. Concurrently, CISA has issued an urgent directive for a critical, actively exploited vulnerability in the LiteSpeed cPanel plugin. This edition also covers the rapid rise of 'The Gentlemen' ransomware gang, a new White House logging mandate for federal agencies, and a Splunk report revealing that IT downtime now costs Global 2000 companies $600 billion annually. This publication covers the most significant cybersecurity events for May 28, 2026.
Today New Articles
CISA Mandates Urgent Patch for Actively Exploited LiteSpeed cPanel Flaw Granting Root Access
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical privilege escalation vulnerability in the LiteSpeed user-end plugin for cPanel, CVE-2026-48172, to its Known Exploited Vulnerabilities (KEV) catalog. The flaw, with a CVSS sc...
White House Overhauls Federal Logging Policy, Mandating Risk-Based, AI-Driven Monitoring
The White House Office of Management and Budget (OMB) has issued a new directive, Memorandum M-26-14, which rescinds and replaces the M-21-31 logging mandate. The new policy shifts U.S. federal agencies away from rigid data retention rules towards a more flexi...
'The Gentlemen' Ransomware Group Emerges as a Top-Tier Threat with Advanced TTPs
A ransomware-as-a-service (RaaS) group known as 'The Gentlemen' has rapidly ascended to become one of the most active and sophisticated threat actors of 2026. Emerging in mid-2025, the group, believed to be led by an experienced Russian-speaking actor, account...
Unplanned Downtime Now Costs Global 2000 Firms $600 Billion Annually, Splunk Finds
A new report from Splunk, in partnership with Oxford Economics, reveals that unplanned IT downtime costs the world's 2,000 largest companies an estimated $600 billion per year. The study, "The Hidden Costs of Downtime," found that these costs have surged by 50...
Qumulo Launches NeuralProtect, an AI-Powered Ransomware Defense for Storage
Qumulo has launched NeuralProtect, a new ransomware resilience solution integrated into its data platform. Announced on May 28, 2026, NeuralProtect uses a multi-layered AI approach to perform deep file inspection at the moment a file is written to storage. Thi...
Maine Accounting Firm Data Breach Exposes Sensitive Tax and Financial Data of 928 Clients
The Maine-based accounting firm Edwards, Faust & Smith has disclosed a data breach affecting 928 clients. The incident, which occurred between February and May 2026, was initiated by a phishing email. The breach resulted in unauthorized access to highly sensit...
Krybit Ransomware Group Claims Attack on Thai Printing Company, Threatens Data Leak
The Krybit ransomware group has claimed responsibility for a cyberattack on Smile Siam Printing Service, a prominent printing company in Thailand. The group announced the attack on its leak site on May 27, 2026, threatening to release sensitive data if the com...
Alleged Iliad Italia Data Breach: Customer Data Reportedly for Sale on Dark Web
An unconfirmed data breach has allegedly hit Iliad Italia, a major telecommunications provider in Italy. On May 27, 2026, a threat actor posted a dataset for sale on a dark web forum, claiming it contains customer records, device IMEI numbers, and account data...
The AI Sword: Anthropic Model Demonstrates Hacking Prowess Surpassing Human Experts
A new AI model from Anthropic, named Claude Mythos Preview, has demonstrated the ability to autonomously find and exploit software vulnerabilities at a scale and speed that surpasses most human security experts. The model has already been used to find thousand...
New Threat Actor 'JINX-0164' Targets Crypto Firms with Custom macOS Malware
A newly identified threat actor, tracked as JINX-0164, is conducting a sophisticated campaign against cryptocurrency organizations using custom malware for macOS. The attack chain involves social engineering on LinkedIn, luring developers to download a fake me...
Sri Lanka's CERT Reports Alarming Surge in Phishing and Ransomware Attacks
The Sri Lanka Computer Emergency Readiness Team (CERT) is warning of a significant increase in phishing and ransomware attacks targeting the nation. As Sri Lanka accelerates its digital adoption in banking, e-commerce, and government services, its expanding at...
2026 World Cup Faces Unprecedented Cyber Threats from Nations and Criminals
The 2026 FIFA World Cup, hosted across three nations, presents a massive and complex attack surface. Security analysts from Unit 42 warn of high-likelihood threats including financially motivated cybercrime like ticket fraud and QR code scams, as well as disru...