Linux “Copy Fail” Vulnerability Enables Privilege Escalation Across Distributions

Executive Summary According to a report from Xint published on 29 April 2026, a Linux kernel vulnerability named “Copy Fail” has affected multiple major Linux distributions released since 2017. The flaw, designated CVE-2026-31431, allows a local, unprivileged user to escalate privileges to root by exploiting improper handling of data copying within the kernel. The vulnerability enables potential threat actors…

Read More

Bitwarden CLI Compromised in Broader Checkmarx Supply Chain Campaign

Executive Summary Security researchers from Socket have discovered that version 2026.4.0 of Bitwarden CLI has been compromised through a poisoned GitHub Actions workflow. This incident is part of the broader Checkmarx supply chain campaign and specifically impacts the npm distribution used by developers and automated build environments. The malicious payload executes credential-harvesting routines targeting cloud service providers, SSH…

Read More

Extortion in the Enterprise: Defending Against BlackFile Attacks

Executive Summary Unit 42 has responded to numerous incidents since February 2026 involving data theft and extortion across various industries. We attribute a specific portion of this financially-motivated activity with moderate confidence to the activity cluster CL-CRI-1116, which overlaps with public reporting on BlackFile, UNC6671 and Cordial Spider.  This blog is designed to provide RH-ISAC…

Read More

New NGate Variant in Trojanized NFC Payment App

Executive Summary ESET Researchers discovered a new variant of the NGate malware family that abuses a legitimate Android application called HandyPay, instead of the previously leveraged NFCGate tool. The malicious code allows attackers to transfer NFC data from the victim’s payment card to their own device and use it for contactless ATM cash-outs and unauthorized payments, while also capturing the victim’s payment…

Read More

The Missing Security Layer in Agentic AI in Retail

A New Class of Digital Operator Retail organizations are moving quickly to operationalize agentic AI to streamline customer service, create self-serve customer workflows, enable shopping bots, and improve internal employee productivity. This is not just an internal transformation. Your customers will use agents to browse, compare, and buy. Your employees will create their own “mini…

Read More