may 5, 2026
6 links from the engineering internet.
netbox v4.6.0 ships vm types, cable bundles, and etag api support
netbox ships vm types for categorizing virtual machine instances like devicetype, cable bundles for managed physical cable runs, and etag support in the rest api to prevent concurrent update conflicts. django 6.0 upgrade and cursor-based pagination also land alongside postgresql indexing improvements for cable-path queries.
shinyhunters publishes vimeo dump: 119k emails confirmed by have i been pwned
shinyhunters followed through on its extortion threat against vimeo, releasing data that have i been pwned has confirmed contains 119k unique email addresses. the breach traced to anodot, a third-party analytics integration that vimeo has since disabled and severed.
microsoft ends azure reservations for 17 vm types, retires 13 in 2028
microsoft stops new reservations for 17 azure instance types on july 1, most running decade-old intel silicon. thirteen types including av2, dv2, and fsv2 are fully retired in 2028, requiring migration to current-generation dv5 and ev5 families before that deadline.
opencode ships three patch releases with proxy, credential, and memory fixes
three opencode releases on may 5 bring proxy environment variable support to the desktop app, system ca certificate trust, and a fix preventing large diffs from consuming unbounded memory. v2 session api encoding and pagination link header correctness bugs were also corrected.
shinyhunters claims 500k salesforce records in cushman & wakefield vishing attack
shinyhunters claims to have exfiltrated over 500k salesforce records from cushman & wakefield by vishing help desk staff into authorizing a malicious connected app, then bulk-exporting objects via the salesforce api before access was revoked. a may 6 leak deadline is in play.
scan of 1m exposed ai services finds 5k+ ollama instances with no auth
researchers used certificate transparency logs to enumerate over 1 million exposed ai services and found 5,200+ ollama api servers open without authentication, 31% of which responded to test prompts. ai infrastructure showed higher misconfiguration rates than any other software category surveyed.