Daily Signal - page 7 | 0day.digest

Monday, May 18, 2026

GitHub Actions Supply Chain Attack Hijacks actions-cool/issues-helper Tags

supply-chain · github · credential-theft · devsecops

MiniPlasma Windows Zero-Day Grants SYSTEM Privileges on Fully Patched Systems

zero-day · privilege-escalation · vulnerability · microsoft

DirtyDecrypt: Public PoC Released for Linux Kernel Root Escalation Flaw

privilege-escalation · vulnerability · cve · linux · container-security

Sunday, May 17, 2026

Pwn2Own Berlin 2026: $1.3M Paid for 47 Zero-Days in Windows, Linux, VMware, and AI Products

zero-day · vulnerability · ai-safety

Friday, May 15, 2026

Pwn2Own Berlin 2026 Day 2: 15 Zero-Days in Windows 11, Exchange, and RHEL Earn $385K

zero-day · vulnerability · microsoft · rce

node-ipc npm Package Compromised in Supply Chain Attack to Steal Credentials

supply-chain · npm · malware · appsec · devsecops

Microsoft Edge Will No Longer Load Saved Passwords in Cleartext at Startup

microsoft · vulnerability

Four OpenClaw Vulnerabilities Chain to Enable Data Theft, Privilege Escalation, and Backdoor Planting

vulnerability · privilege-escalation · data-breach