Welcome to BSafes Library
BSafes library includes mobile-friendly cybersecurity publications.
News
June 23, 2026 – Vulnerabilities
Hole in widely-used FFmpeg codec could crash media servers or enable RCE Full Text
Abstract
Research from JFrog into the software supply chain vulnerability points to the need for better visibility into applications, including SBOMs.CSO
June 18, 2026 – Vulnerabilities
F5 releases out-of-band patches for two critical NGINX bugs Full Text
Abstract
F5 on June 17 released out-of-band security patches to address multiple NGINX web server vulnerabilities, two of them critical.SC Media
June 12, 2026 – Policy and Law
Statement on the US government directive to suspend access to Fable 5 and Mythos 5 Full Text
Abstract
The US government, citing national security authorities, has issued an export control directive to suspend all access to Fable 5 and Mythos 5 by any foreign national, whether inside or outside the United States, including foreign national Anthropic employees. The net effect of this order is that we must abruptly disable Fable 5 and Mythos 5 for all our customers to ensure compliance. Access to all other Anthropic models will not be affected.Anthropic
June 9, 2026 – Vulnerabilities
21 0-Day Vulnerabilities in FFmpeg Enables Remote Code Execution Attacks Full Text
Abstract
An autonomous security agent uncovered 21 zero-day vulnerabilities in FFmpeg, the world’s most widely deployed media processing library, including a critical RCE-capable heap buffer overflow reachable with a single 183-byte network packetCyber Security News
June 3, 2026 – Hacker
Chinese hackers use new Atlas RAT malware in European cyberattacks Full Text
Abstract
A Chinese-speaking cybercrime group has expanded its targeting to the European space, deploying previously undocumented malware and the Atlas backdoor.Bleeping Computer
May 29, 2026 – General
Cheap AI has changed the economics of hacking Full Text
Abstract
COMMENTARY: There’s a war of attrition happening across corporate networks right now, and defenders are losing it the same way armies lose wars of attrition: by spending more per engagement than their opponents. The cost of mounting a cyberattack has plummeted, and most security budgets are not attuned to that reality.SC Media
May 27, 2026 – Policy and Law
ROMANIAN HACKER GETS NEARLY 5 YEARS IN US PRISON OVER NETWORK INTRUSION Full Text
Abstract
Romanian hacker Catalin Dragomir (45) will spend 4 years and 8 months in a US prison after admitting he sold access to an Oregon state network.Security Affairs
May 22, 2026 – General
Microsoft says it’s making AI ‘safe for work’ in your browser Full Text
Abstract
Microsoft is testing the addition of agentic AI to its corporate browser, Edge for Business. A new version, currently available in a limited preview, will help perform routine tasks more efficiently, according to Microsoft’s partner product manager for Edge, Lindsay Kubasik.CSO
May 20, 2026 – Policy and Law
Two U.S. Executives Plead Guilty in India-Based Tech-Support Fraud Schemes Full Text
Abstract
Two former executives of a U.S.-based call routing and analytics company have pleaded guilty to federal charges for knowingly enabling India-based call centers to defraud thousands of American victims through elaborate tech-support scam operations spanning nearly six years.Cyber Security News
May 19, 2026 – Insider Threat
America’s top cyber-defense agency left a GitHub repo open with with passwords, keys, tokens – and incredibly obvious filenames Full Text
Abstract
The US Cybersecurity and Infrastructure Security Agency (CISA) left open a GitHub repository named “Private-CISA” containing plain-text passwords, private keys, tokens, and secrets – with obvious file names like “external-secret-repo-creds.yaml” and “AWS-Workspace-Firefox-Passwords.csv” – for six months.The Register
May 16, 2026 – Cryptocurrency
More than $10 million stolen from crypto platform THORChain Full Text
Abstract
Cryptocurrency platform THORChain said more than $10 million was stolen during a security incident on Friday morning.The Record