Welcome to Cyber Briefing, your daily source for all things cybersecurity. We bring you the latest advisories, alerts, incidents, and news every weekday.

The recent cybersecurity landscape is marked by critical software fixes, active exploits, and significant corporate shifts. Microsoft successfully resolved server-side issues causing 0x800f0922 errors during the installation of its May 2026 Windows 11 security update (KB5089549), allowing users to safely retry the deployment. Conversely, threat actors are actively exploiting a critical vulnerability in the WP Maps Pro WordPress plugin to create unauthorized administrator accounts, forcing admins to urgently update and audit their sites. On the corporate front, Dragos acquired Phosphorus to expand its operational technology (OT) security platform, aiming to protect billions of connected devices across critical infrastructure like power grids and data centers.

Meanwhile, data breaches, regulatory shifts, and AI advancements continue to drive industry responses. A data breach at the automotive platform Edmunds exposed 178,000 user records, including passwords and vehicle data—which were leaked online by the ShinyHunters hacking group. In response to physical infrastructure risks, the UK government proposed tougher laws and harsher penalties to protect vital subsea internet cables from foreign surveillance and reckless damage. Finally, to address the rapid evolution of artificial intelligence, OWASP announced the upcoming launch of the Agentic Research Council to accelerate security research and establish machine-speed runtime monitoring controls for autonomous AI agents.

Listen to our podcast here ⏬

Get BlueSleuth-Lite

⚡THREAT LANDSCAPE

Microsoft fixes KB5089549 update install issues

Microsoft has fixed a known issue that prevented the May 2026 Windows 11 security update (KB5089549) from installing correctly, causing 0x800f0922 errors for affected users. The problem has been resolved through server-side changes that should automatically apply without requiring user intervention. Organizations and individuals who experienced installation failures should retry the update installation to receive the security patches. Read More

Critical WP Maps Pro Flaw Actively Exploited

Attackers are actively exploiting a critical vulnerability in WP Maps Pro, a WordPress plugin with over 15,000 sales, to create unauthorized administrator accounts on vulnerable websites. The plugin, which enables site owners to embed customizable Google Maps and OpenStreetMap features, contains a security flaw that allows threat actors to gain full administrative control. Website administrators using WP Maps Pro should immediately update the plugin and audit their user accounts for suspicious administrator-level entries. Read More

Trusted Dev Tools Abused in Supply Chain Attacks

CISA has issued warnings about multiple active campaigns where attackers weaponize legitimate developer tools to compromise software supply chains. Recent incidents include a malicious Visual Studio Code extension and a large-scale operation called “Megalodon” that target CI/CD pipelines and developer workflows. These attacks exploit trusted development tools to steal source code and credentials from software development environments. Read More

Subscribe Now

🚨INCIDENTS & REAL-WORLD IMPACT

Edmunds breach exposes 178k user records

The automotive research platform Edmunds suffered a data breach affecting 178,000 users, with stolen data published publicly by the ShinyHunters hacking group in January 2026. Exposed information includes email addresses, usernames, passwords, IP addresses, phone numbers, and vehicle-related records. Affected users should immediately change their Edmunds passwords and enable two-factor authentication on all accounts using the same credentials. Read More

Claim Your Workspace

🔓 EXECUTIVE RISK & CYBERNOMICS

Dragos acquires Phosphorus for OT security

Dragos has acquired Phosphorus to expand its operational technology (OT) security platform beyond traditional industrial control systems to protect billions of connected devices in critical infrastructure. The acquisition addresses the growing challenge of securing diverse connected devices now embedded in power grids, pipelines, manufacturing facilities, and data centers alongside traditional OT systems. This move reflects the industry’s recognition that operational environments have expanded far beyond conventional OT boundaries to include numerous IoT and connected devices that require security oversight. Read More

Get Help

🛡️ POLICY, REGULATION & LEGAL SIGNALS

UK proposes tougher subsea cable protection laws

The UK government is proposing stronger legal protections for undersea internet cables after Russian submarines and specialist vessels surveyed British cable routes in April 2024. The new measures include harsher penalties for reckless cable damage, mandatory security obligations for cable operators, and emergency powers allowing the government to compel infrastructure protection. While 64 cables connect Britain to the global internet, the proposals focus primarily on legal deterrents rather than direct defensive capabilities, though the Royal Navy’s Atlantic Bastion program is developing autonomous vessels to counter submarine threats. Read More

💻 CAREER ENABLEMENT

OWASP Launches Agentic Research Council

OWASP will launch the Agentic Research Council on June 4, 2026, at Infosecurity Europe to bridge the gap between rapidly advancing agentic AI capabilities and slower security research cycles. The Council will coordinate global collaboration among academia, industry, government, and policy makers to prioritize research and convert findings into deployable mitigations faster than traditional standards processes. Security teams should prepare for runtime monitoring and agent-level controls that operate at machine speed, moving from human-in-the-loop validation to human-on-the-loop oversight as AI agents can act too quickly for traditional review cycles. Read More

Click Here To Read

Copyright © 2026 CyberMaterial. All Rights Reserved.

Follow CyberMaterial on:

Substack, LinkedIn, Twitter, Reddit, Instagram, Facebook, YouTube, and Medium