Cybersecurity Roundup: Major Arrests, AI Advances and Critical Vulnerabilities - May 18, 2026

CybersecMonday, May 18, 2026

50 articles analyzed by AI / 226 total

Key points

Audio player

0:00 / 0:00

•INTERPOL's Operation Ramz successfully disrupted major cybercrime networks across 13 Middle Eastern and North African countries between October 2025 and February 2026, resulting in 201 arrests and 382 suspects identified. This large-scale international effort marks one of the most extensive crackdowns on cybercriminal activities in the region, reflecting heightened global cooperation against cyber threats.[The Hacker News RSS]
•In 2025, cyber attacks inflicted substantial financial damage on UK businesses, with litigation costs reaching £3.7 billion. This significant economic impact underscores the growing threat cybercrime poses to companies, prompting increased attention to cybersecurity risk management and incident mitigation within the UK.[UKTN][UKTN]
•Critical vulnerabilities discovered in widely used enterprise software products led to urgent patch releases from vendors including Ivanti, Fortinet, SAP, VMware, and n8n. Notably, the Ivanti Xtraction vulnerability (CVE-2026-8043) scored 9.6 on the CVSS scale, indicating a severe remote code execution risk that could be exploited by attackers if left unpatched.[The Hacker News RSS]
•A severe security incident occurred when a CISA contractor accidentally exposed high-level AWS GovCloud credentials on a public GitHub repository, potentially compromising sensitive government cloud environment security. This leak highlights the continuing dangers of credential exposure and the need for stringent insider security controls in vital infrastructure sectors.[Krebs on Security RSS]
•Leveraging AI advancements, SailPoint introduced 'Agentic Fabric,' a novel cybersecurity platform aimed at enhancing identity governance and automating security operations. This initiative marks a significant step toward integrating artificial intelligence into enterprise-level cyber defense tools to counter increasingly complex threats.[Cyber Magazine]
•Anticipating potential cyber threats to the global FIFA 2026 event, cybersecurity experts have raised alarms regarding risks to critical infrastructure and sensitive data. They emphasize the urgency of implementing robust cybersecurity measures to safeguard the tournament against cyberattacks and protect millions of stakeholders.[EasternEye][EasternEye]
•Japan is set to enhance national cybersecurity measures by introducing new regulations deploying advanced AI for vulnerability detection and response during 2026. This proactive approach aims to bolster cyber defenses by harnessing cutting-edge AI capabilities to identify and remediate system weaknesses promptly.[marketscreener.com][nhk.or.jp]
•The threat group Tycoon2FA has developed a sophisticated attack method using stealth device-code phishing to hijack Microsoft 365 accounts, evading traditional multi-factor authentication barriers. This advanced phishing technique represents an evolution in cyberattack strategies, raising concerns about the effectiveness of current security protocols.[Escudo Digital][Escudo Digital]
•The Mini Shai-Hulud campaign by the TeamPCP group compromised the TanStack npm software supply chain by injecting malicious code into packages, highlighting vulnerabilities in developer ecosystems. This supply chain attack underlines the importance of securing open-source software dependencies against infiltration by threat actors.[Cyber Magazine][Reddit /r/netsec]
•Security researchers disclosed a zero-day Windows vulnerability named MiniPlasma, which permits SYSTEM-level privilege escalation even on fully patched systems. This flaw presents a critical risk to Windows security, demonstrating that emerging exploits continue to challenge established security defenses.[The Hacker News][Forbes]

Relevant articles

INTERPOL Operation Ramz Disrupts MENA Cybercrime Networks with 201 Arrests

9/10

INTERPOL led Operation Ramz targeting cybercrime networks across 13 MENA countries from October 2025 to February 2026, resulting in 201 arrests and identification of 382 suspects. This multinational crackdown aimed to disrupt organized cybercrime groups in the Middle East and North Africa region.

The Hacker News RSS · 5/18/2026, 5:21:18 PM

Cyber attacks cost UK businesses £3.7bn in litigation in 2025 - UKTN

9/10

Cyber attacks in 2025 caused UK businesses to face £3.7 billion in litigation costs, reflecting severe financial impacts of cybercrime. These figures underscore the growing economic burden of cybersecurity incidents on UK companies.

UKTN · 5/18/2026, 11:00:48 AM

Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws

9/10

Vendors Ivanti, Fortinet, SAP, VMware, and n8n issued patches addressing critical vulnerabilities including Ivanti Xtraction's CVE-2026-8043 with a CVSS score of 9.6. The flaws could have permitted remote code execution, SQL injection, and privilege escalation, posing high risks if unpatched.

The Hacker News RSS · 5/18/2026, 10:54:05 AM

CISA Admin Leaked AWS GovCloud Keys on Github

8/10

A CISA contractor leaked privileged AWS GovCloud credentials publicly on GitHub, exposing multiple high-privilege accounts. This credential exposure poses significant security threats to government cloud infrastructure and highlights risks of insider mistakes.

Krebs on Security RSS · 5/18/2026, 8:48:21 PM

SailPoint Straps Security to AI Agents with Agentic Fabric - Cyber Magazine

8/10

SailPoint launched 'Agentic Fabric,' an AI-driven cybersecurity platform designed to enhance enterprise protection against cyber threats. The new system integrates artificial intelligence to bolster identity governance and security automation.

Cyber Magazine · 5/18/2026, 8:32:45 PM

Cybersecurity Experts Sound Alarm Over FIFA 2026 Risks - EasternEye

8/10

Cybersecurity experts issued warnings about increased cyber threats targeting infrastructure and data related to FIFA 2026. They stressed the necessity for enhanced security measures ahead of the event to protect against potential attacks.

EasternEye · 5/18/2026, 5:07:14 PM

Japan to Issue New Cybersecurity Rules Leveraging Advanced AI for Vulnerability Detection - marketscreener.com

8/10

Japan plans to implement new cybersecurity regulations this year leveraging advanced AI technologies for vulnerability detection. This move aims to strengthen national cyber defenses using AI-driven security innovation.

marketscreener.com · 5/18/2026, 9:24:58 AM

Tycoon2FA hijacks Microsoft 365 accounts with stealth device-code phishing - Escudo Digital

8/10

The Tycoon2FA threat actor utilized stealth device-code phishing tactics to hijack Microsoft 365 accounts, representing a novel and covert cyberattack method. This sophisticated phishing approach bypasses traditional multi-factor authentication protections.

Escudo Digital · 5/18/2026, 8:23:49 AM

TeamPCP’s Mini Shai-Hulud Campaign Breaches TanStack npm - Cyber Magazine

8/10

The TeamPCP group launched the Mini Shai-Hulud campaign, compromising the TanStack npm package by injecting malicious content. This supply chain attack illustrates the increasing risk to software repositories and developer ecosystems.

Cyber Magazine · 5/18/2026, 12:22:35 PM

MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems - The Hacker News

8/10

Researchers revealed a MiniPlasma Windows zero-day vulnerability enabling SYSTEM privilege escalation even on fully patched systems. This exploit highlights ongoing challenges in securing Windows environments against sophisticated attacks.

The Hacker News · 5/18/2026, 4:59:00 AM