Hello, stay ahead with CISO Brief 🚀

🛡️ A local privilege escalation named CIFSwitch in the Linux kernel allows forging of CIFS authentication key descriptions and abuse of the kernel key request flow, enabling root privilege escalation. The vulnerability affects kernels paired with vulnerable cifs-utils (6.14+) on several major distributions when user namespaces and permissive SELinux/AppArmor settings are present. The attacker can trigger a privileged cifs.upcall to trust attacker-controlled fields, force a namespace switch, and load a malicious NSS module before privilege drop. A kernel patch validating cifs.spnego request origins is available upstream; mitigations include disabling the CIFS module, removing cifs-utils, and disabling unprivileged user namespaces.

🔒 Palo Alto Networks disclosed a medium-severity authentication bypass (CVE-2026-0257, CVSS 7.8) affecting PAN-OS and Prisma Access GlobalProtect portals and gateways when authentication override cookies and a specific certificate configuration are used. The vendor warned on May 13, 2026, and updated on May 29 after confirming limited in-the-wild exploit attempts targeting unpatched devices. Rapid7 reported successful exploitation beginning May 17 with a second wave on May 21, in some cases granting VPN IP assignment and internal network access. Temporary mitigations include disabling authentication override or generating a dedicated certificate for the override feature.

🛡️ Researchers from WithSecure uncovered a Russian-aligned group dubbed Greyvibe that extensively leverages large language models across its campaigns targeting private, government, and military organizations in Ukraine. The group uses spear phishing, fake websites, malicious archives, and ClickFix-style CAPTCHAs to deliver custom malware such as PhantomRelay, LegionRelay, and Android spyware FallSpy. Observed tooling and infrastructure indicate systematic use of generative AI for lure creation, code development, and backend setup, blurring lines between state-aligned activity and cybercrime ecosystem actors.

🛡️ Microsoft and a prominent researcher publicly traded barbs after the researcher, going by Nightmare Eclipse, published vulnerabilities he said were ignored; Microsoft countered that those disclosures were irresponsible and increased risk. The exchange included personal accusations, account deletions, and threats, prompting discussion within the security community about disclosure practices. Senior Microsoft staff signaled a review of processes while defenders on both sides highlighted valid concerns about communication, prioritization, and trust.

📣 Amazon Simple Email Service (SES) introduced enhanced deliverability features that report inbox placement percentages and public email blocklist status. These insights use representative industry samples to show how many messages are routed to spam folders and provide visibility by sending domain and campaign. SES also offers pre-send content testing to estimate inbox placement at major mailbox providers and passive monitoring of blocklist activity. The new capabilities are available in all AWS commercial regions where SES is offered.

📣 AWS End User Messaging now supports RCS for Business messaging in 20 additional countries, bringing coverage to 22 countries including the United States and Canada. Businesses can use the existing SendTextMessage API with no code changes, and messages are delivered from a recognized business identity. Devices that do not support RCS automatically fall back to SMS, and RCS for Business is available in all Regions where AWS End User Messaging operates.

🔒 Attorney General Rob Bonta has sued 23andMe (now Chrome Holding Co.) for failing to protect sensitive genetic and personal information after a 2023 breach exposed data of nearly 7 million customers, including 855,541 Californians. The suit alleges inadequate safeguards against credential-stuffing, missed detection opportunities, a coding error in the DNA Relatives feature, and misleading public statements about security. It seeks injunctions and statutory penalties under multiple California laws, including CCPA and the California Genetic Information Privacy Act.

🛡️ Cybersecurity researchers disclosed a vulnerability dubbed ChatGPhish that exploits ChatGPT's trust in Markdown links and images to perform prompt injections and enable phishing. The flaw causes the assistant to auto-fetch attacker-hosted images and render malicious links and QR codes inside the trusted UI, potentially leaking client metadata like IP and User-Agent. The technique highlights summarization as an adversarial surface that can convert benign web pages into phishing vectors.

📅 Amazon Connect Customer now supports scheduling tasks up to 90 days in advance, enabling organizations to plan, route, and track long-running follow-up work. Examples include scheduling adjuster visits, parts availability checks, and repair completion follow-ups, with tasks routed to the appropriate team and carrying relevant claim context. Tasks can be scheduled via the StartTaskContact API, contact flows, or the agent workspace. This capability is available in all commercial and AWS GovCloud (US) regions where Amazon Connect Customer is offered.

📡 AWS Shield Advanced now provides DDoS attack flow logs that deliver packet-level visibility into traffic targeting Shield-protected resources. The logs capture source and destination IPs, ports, protocols, packet and byte counts, and source country details, and are published every five minutes during active attacks. Log data can be delivered to Amazon S3, Amazon CloudWatch Logs, or Amazon Data Firehose for forensic analysis, threat intelligence, and compliance. To use the feature, resources must be protected by Shield Advanced and log delivery must be configured; the feature is available in all regions where Shield Advanced operates.

🛰️ The Linux Foundation has proposed DNS-AID, a standards-driven extension to the Domain Name System to let AI agents discover, verify, and communicate without new infrastructure. The project leverages a well-known DNS address pattern (for example, _index._agents.{domain}) to provide a global, vendor-neutral directory for agents and MCP servers. Initial work was done by Infoblox, with contributions from Deutsche Telekom and Amazon, and the foundation is soliciting further input to keep the approach scalable and secure.

🛡️ For the seventh consecutive time, Microsoft has been named a Leader in the 2026 Gartner® Magic Quadrant™ for Endpoint Protection, reflecting customer trust in Microsoft Defender. Defender provides industry-leading EDR backed by global threat intelligence and connects endpoints, identities, email, apps, cloud, and data to enable earlier detection and stronger prevention. Recent advancements include proactive attack disruption, custom telemetry, simplified onboarding, sovereign-ready protection, and agentic endpoint security for local AI agents.

🚀 AlloyDB for PostgreSQL introduces a Hot Standby HA architecture that keeps the standby node actively replaying WAL records, reducing failover time and preserving cache warmth. This change eliminates standby database startup delays and minimizes post-failover performance degradation, improving RTO and stabilizing application throughput. Hot Standby is rolling out for PostgreSQL 18 and will reach earlier versions in months, with no extra cost and retention of the 99.99% SLA.

🛡️ This Cloud CISO Perspectives post by Usman Chaudhary, Field CISO for Google Public Sector, outlines a pragmatic roadmap for public-sector CISOs to adopt AI-driven security. It emphasizes immediate quick wins in the first 90 days, tactical actions within six months, and strategic initiatives for months six to 12, combining internal automation, commercial AI capabilities, and vendor solutions like Gemini for Government. The guidance targets threat triage, talent augmentation, posture elevation, and governance to reduce toil and accelerate proactive defense.

📊 Connected Sheets removes CSV exports and turns Google Sheets into a live, secure interface to BigQuery, enabling business users to analyze petabytes of governed data without SQL. Admins retain security and governance by provisioning table or view access while preventing data alteration from Sheets. End users gain immediate agility using familiar tools like pivot tables, charts, and formulas to analyze billions of rows and create refreshable reports and hybrid models. Connecting requires a Google Workspace account and a billing-enabled Google Cloud project, with connections established either from Sheets or the BigQuery UI.

🧭This post explains how A2UI, an open protocol for agent-driven user interfaces, enables agents to return structured JSON UI payloads instead of plain text or HTML. It outlines the four-layer stack (app shell, rendering, conversation pipeline, and cargo), the inline and decoupled patterns, and how Gemini Enterprise integrates a built-in A2UI renderer. The article points to a reference repo, demo, and implementation notes for registering an A2A agent with GE.

🔬 Researchers at ETH Zurich report creating a device that generates provably perfect random numbers using two superconducting qubits, a 30-meter microwave guide, and specialized software. The setup leverages quantum entanglement and an amplification algorithm to remove bias common in classical and many quantum sources. The team says the output can be certified and could serve cryptographic key generation or public randomness services.

🟦 Amazon Redshift Serverless now supports a lower base capacity of 4 Redshift Processing Units (RPUs) in seven regions, including Asia Pacific (Hong Kong), Seoul, Canada (Central), Europe (London), South America (Sao Paulo), and AWS GovCloud (US-East and US-West). Each RPU equals 16 GB of memory and billing is per-second in RPU-hours; the new entry-level starts at about $1.50 per hour. Previously the minimum was 8 RPUs. The configuration supports up to 32 TB of managed storage, up to 100 columns per table, and a maximum of 64 GB memory, and capacity reservations are available for 1- and 3-year terms for predictable workloads.