Category

Security

Weak Security Continues to Fuel Russian Cyberattacks
SecurityDark Reading

Weak Security Continues to Fuel Russian Cyberattacks

EU and UK impose first joint sanctions against Russian cyber actors, signaling a shift toward aggressive collective defense against state-sponsored threats.

Jul 13, 2026·3 min read

'Yellow Teams' Are Defining the Future of AI Security
SecurityDark Reading

'Yellow Teams' Are Defining the Future of AI Security

Explore the rise of 'Yellow Teams' in AI security, where developers integrate defensive and offensive testing to build resilient machine learning systems.

Jul 13, 2026·3 min read

CrashStealer macOS Malware Uses Notarized Dropper to Pass Gatekeeper Checks
SecurityThe Hacker News

CrashStealer macOS Malware Uses Notarized Dropper to Pass Gatekeeper Checks

Discover how CrashStealer macOS malware bypasses Apple's Gatekeeper using notarized droppers and native C++ code to harvest sensitive browser and keychain data.

Jul 13, 2026·3 min read

Google and Microsoft Pull ModHeader With 1.6 Million Installs After Dormant Collector Found
SecurityThe Hacker News

Google and Microsoft Pull ModHeader With 1.6 Million Installs After Dormant Collector Found

Google and Microsoft remove ModHeader after a dormant data collector was found, highlighting the growing supply chain risks in the browser extension ecosystem.

Jul 13, 2026·2 min read

GigaWiper Lets Threat Actors Choose Their Own Destructive Attack
SecurityDark Reading

GigaWiper Lets Threat Actors Choose Their Own Destructive Attack

Analysis of GigaWiper, a new modular malware variant combining backdoor persistence with customizable data destruction for maximum enterprise impact.

Jul 13, 2026·3 min read

Compromised jscrambler 8.14.0 npm Release Drops Rust Infostealer During Install
SecurityThe Hacker News

Compromised jscrambler 8.14.0 npm Release Drops Rust Infostealer During Install

A supply chain attack on the jscrambler npm package highlights the rising threat of automated malware injection and the limits of traditional security audits.

Jul 11, 2026·3 min read

Hackers Weaponize Balochistan Police Portal in Multi-Group Espionage Campaigns
SecurityThe Hacker News

Hackers Weaponize Balochistan Police Portal in Multi-Group Espionage Campaigns

An analysis of recent cyber espionage campaigns targeting Pakistani law enforcement through the weaponization of the Balochistan Police portal.

Jul 11, 2026·3 min read

SecuritySecurityWeek

Ghost Accounts Abuse GitHub API in Mass Recon Campaign

New cybersecurity research reveals a mass reconnaissance campaign using 'ghost accounts' to scrape GitHub data, signaling a shift in developer supply chain risk

Jul 11, 2026·2 min read

Critical Zimbra Flaw Could Let Crafted Emails Run Malicious Code in User Sessions
SecurityThe Hacker News

Critical Zimbra Flaw Could Let Crafted Emails Run Malicious Code in User Sessions

Zimbra warns of a critical stored XSS vulnerability in its Classic Web Client, highlighting persistent security risks in legacy enterprise email infrastructure.

Jul 11, 2026·3 min read

Jen Ellis: Connecting Cyber Community With Political Machinery
SecurityDark Reading

Jen Ellis: Connecting Cyber Community With Political Machinery

An editorial analysis of Jen Ellis’s MBE honor and her role in bridging the gap between cybersecurity researchers and global policymakers.

Jul 10, 2026·3 min read

Cybercriminals Flock to Healthcare Businesses as Attacks Surge
SecurityDark Reading

Cybercriminals Flock to Healthcare Businesses as Attacks Surge

Cybercriminals shift focus from hospitals to healthcare service providers, creating new systemic risks and supply chain vulnerabilities in the medical sector.

Jul 10, 2026·3 min read

URGENT - Progress Tells ShareFile Customers to Shut Down Storage Zone Controllers Over Security Threat
SecurityThe Hacker News

URGENT - Progress Tells ShareFile Customers to Shut Down Storage Zone Controllers Over Security Threat

Progress Software urges ShareFile users to disable Storage Zone Controllers following a credible security threat, highlighting lingering supply chain risks.

Jul 10, 2026·3 min read

Injective Labs GitHub Compromise Pushes Wallet-Key-Stealing npm Packages
SecurityThe Hacker News

Injective Labs GitHub Compromise Pushes Wallet-Key-Stealing npm Packages

A sophisticated GitHub compromise at Injective Labs highlights escalating software supply chain risks in the decentralized finance (DeFi) ecosystem.

Jul 10, 2026·3 min read

Six New U-Boot Flaws Could Let Malicious Images Crash Devices or Run Code at Boot
SecurityThe Hacker News

Six New U-Boot Flaws Could Let Malicious Images Crash Devices or Run Code at Boot

Researchers discover six vulnerabilities in the U-Boot bootloader, threatening the security of millions of IoT devices and enterprise servers.

Jul 10, 2026·3 min read

SecuritySecurityWeek

In Other News: DHS Database Hacked, Adobe Boosts Patch Cadence, Canada Disrupts Ransomware Ops

A look into AI litigation, surging ransomware disruptions, and the resurgence of the NSA’s elite hacking units in a shifting cybersecurity landscape.

Jul 10, 2026·3 min read

Laser Attack Resets Tangem Wallet Passwords on Cards That Can't Be Patched
SecurityThe Hacker News

Laser Attack Resets Tangem Wallet Passwords on Cards That Can't Be Patched

Ledger Donjon researchers reveal a laser fault injection vulnerability in Tangem hardware wallets, highlighting the risks of unpatchable chip architecture.

Jul 10, 2026·2 min read

Researcher Details WhatsApp-to-Host Attack Chain Using Three OpenClaw Flaws
SecurityThe Hacker News

Researcher Details WhatsApp-to-Host Attack Chain Using Three OpenClaw Flaws

Security flaws in OpenClaw AI assistant allowed remote code execution via WhatsApp, highlighting new risks in integrated LLM-based tools.

Jul 10, 2026·3 min read

Fresh ATM Crypto Software Bugs: Jackpot or Bust?
SecurityDark Reading

Fresh ATM Crypto Software Bugs: Jackpot or Bust?

New vulnerabilities in Microsoft BitLocker wrappers threaten ATM security, exposing the fragile balance between encryption and hardware-level exploitation.

Jul 10, 2026·3 min read

More Countries Jump on the Social Media 'Ban Wagon'
SecurityDark Reading

More Countries Jump on the Social Media 'Ban Wagon'

Global governments are shifting toward social media bans for minors as age-verification technologies face technical and privacy hurdles.

Jul 10, 2026·3 min read

New MODBEACON RAT Uses gRPC Streaming for Encrypted C2 Traffic
SecurityThe Hacker News

New MODBEACON RAT Uses gRPC Streaming for Encrypted C2 Traffic

Silver Fox, a China-linked threat group, deploys MODBEACON, a Rust-based RAT using gRPC streaming for stealthy, high-efficiency command-and-control communicatio

Jul 10, 2026·2 min read

Iran's Cyber Crosshairs Focus Beyond Critical Infrastructure
SecurityDark Reading

Iran's Cyber Crosshairs Focus Beyond Critical Infrastructure

Analysis of Iran's shifting cyber strategy as state-sponsored actors move beyond critical infrastructure to target broader corporate vulnerabilities.

Jul 9, 2026·3 min read

Microsoft Reins in RoguePlanet Zero-Day Threat
SecurityDark Reading

Microsoft Reins in RoguePlanet Zero-Day Threat

Microsoft addresses the RoguePlanet zero-day vulnerability in Windows Defender following a public exploit release by researcher Nightmare-Eclipse.

Jul 9, 2026·2 min read

AI Agents Are a New Kind of Identity & Most Organizations Aren't Ready
SecurityDark Reading

AI Agents Are a New Kind of Identity & Most Organizations Aren't Ready

AI agents represent a major shift in identity management. Explore why treating autonomous AI like static service accounts creates massive security gaps.

Jul 9, 2026·3 min read

Dormant GitHub Accounts Help Attackers Blend In While Mapping Corporate Orgs
SecurityThe Hacker News

Dormant GitHub Accounts Help Attackers Blend In While Mapping Corporate Orgs

New research reveals how attackers use 'ghost' GitHub accounts and API scraping to map corporate infrastructures while evading traditional security detection.

Jul 9, 2026·2 min read

New GigaWiper Windows Backdoor Bundles Disk Wiping, Fake Ransomware, and Spyware
SecurityThe Hacker News

New GigaWiper Windows Backdoor Bundles Disk Wiping, Fake Ransomware, and Spyware

Microsoft uncovers GigaWiper, a modular Windows backdoor combining disk wiping, fake ransomware, and spyware into a single destructive toolkit.

Jul 9, 2026·3 min read

Top AI Agents Built to Catch Malicious Code Can Be Tricked Into Running It
SecurityThe Hacker News

Top AI Agents Built to Catch Malicious Code Can Be Tricked Into Running It

New research reveals 'Friendly Fire' vulnerabilities in AI coding agents, where autonomous security tools can be tricked into executing malicious code.

Jul 9, 2026·3 min read

SecuritySecurityWeek

Unpatched Backdoor in Tenda Firmware Grants Admin Access to Devices

A critical unpatched backdoor in Tenda firmware (CVE-2026-11405) exposes home and office routers to remote admin takeover. Read the full security analysis.

Jul 9, 2026·3 min read

GhostApproval Symlink Flaws Could Let Malicious Repos Run Code in AI Coding Agents
SecurityThe Hacker News

GhostApproval Symlink Flaws Could Let Malicious Repos Run Code in AI Coding Agents

Wiz researchers discover 'GhostApproval' flaws in AI coding agents, allowing malicious repositories to gain unauthorized system access via symlink exploits.

Jul 9, 2026·3 min read

Fake 7-Zip Installers Turn Devices Into Residential Proxy Nodes
SecurityThe Hacker News

Fake 7-Zip Installers Turn Devices Into Residential Proxy Nodes

Cybersecurity researchers uncover 'Lurking Lizard,' a sophisticated threat actor turning user devices into residential proxies through fake software.

Jul 9, 2026·3 min read

Mexico's New Cyber Plan Faces Its First Real Test
SecurityDark Reading

Mexico's New Cyber Plan Faces Its First Real Test

Mexico strengthens its National Cybersecurity Strategy ahead of the 2026 FIFA World Cup, facing critical challenges in infrastructure and policy coordination.

Jul 8, 2026·3 min read

Big Brand Jobs Scam Targets Marketing Pros' Google Accounts
SecurityDark Reading

Big Brand Jobs Scam Targets Marketing Pros' Google Accounts

New 'Big Brand' phishing campaign exploits marketing job seekers with nested redirects to hijack Google accounts and business infrastructure.

Jul 7, 2026·2 min read

Dialogflow CX 'Rogue Agent' Flaw Enabled AI Chatbot Data Theft
SecurityDark Reading

Dialogflow CX 'Rogue Agent' Flaw Enabled AI Chatbot Data Theft

A critical vulnerability in Google’s Dialogflow CX highlights the growing security risks within enterprise AI infrastructure and LLM integration.

Jul 7, 2026·3 min read

SecuritySecurityWeek

County Government Reportedly Paid $1 Million to Cyber Extortion Group

An analysis of the reported $1 million ransomware payment by an Ohio county and its implications for local government cybersecurity and federal policy.

Jul 7, 2026·3 min read

SecuritySecurityWeek

Critical Gitea Flaw Under Active Exploitation, Researchers Warn

A critical authentication bypass flaw in Gitea (CVE-2024-20896) is under active exploitation, threatening DevOps security and software supply chains.

Jul 7, 2026·3 min read

RedWing MaaS Packages Android Bank Fraud as a Telegram Rental Service
SecurityThe Hacker News

RedWing MaaS Packages Android Bank Fraud as a Telegram Rental Service

An editorial analysis of RedWing, a new Android Malware-as-a-Service (MaaS) platform on Telegram lowering the barrier for sophisticated banking fraud.

Jul 7, 2026·3 min read

'BusySnake' Infostealer Slithers into Critical Infrastructure Networks
SecurityDark Reading

'BusySnake' Infostealer Slithers into Critical Infrastructure Networks

The BusySnake infostealer, deployed by Armored Likho, targets critical infrastructure in Russia and Brazil, signaling a shift in cyber espionage tactics.

Jul 6, 2026·3 min read

CitrixBleed-ing Again? NetScaler Vulnerability Under Attack
SecurityDark Reading

CitrixBleed-ing Again? NetScaler Vulnerability Under Attack

Citrix faces a new security crisis as a 'CitrixBleed' style vulnerability in NetScaler ADC and Gateway products is actively exploited by threat actors.

Jul 6, 2026·3 min read

SecuritySecurityWeek

Blogspot-Hosted Payloads Delivered in ‘Veil#Drop’ Attacks

Analysis of the Veil#Drop cyberattack campaign, which leverages Google’s Blogspot and fileless techniques to deliver the PureLog information stealer.

Jul 6, 2026·3 min read

Iran-Linked Hackers Use New Cavern C2 Framework to Target Israeli Organizations
SecurityThe Hacker News

Iran-Linked Hackers Use New Cavern C2 Framework to Target Israeli Organizations

An analysis of the Iranian-linked Cavern C2 framework targeting Israeli infrastructure and its implications for regional cybersecurity.

Jul 6, 2026·2 min read

16-Year-Old Linux KVM Flaw Lets Guest VMs Escape to Host on Intel and AMD x86 Systems
SecurityThe Hacker News

16-Year-Old Linux KVM Flaw Lets Guest VMs Escape to Host on Intel and AMD x86 Systems

A 16-year-old vulnerability in the Linux KVM hypervisor, dubbed Januscape, allows guest VMs to escape to the host, threatening cloud security infrastructure.

Jul 6, 2026·3 min read

SecurityBleepingComputer

Flipper Zero firmware development continues with community help

Flipper Devices shifts to a community-led development model for the Flipper Zero, navigating hardware success, regulatory pressure, and financial hurdles.

Jul 5, 2026·3 min read

SecurityBleepingComputer

JadePuffer ransomware used AI agent to automate entire attack

JadePuffer ransomware marks a shift in cyber warfare, utilizing an AI agent to automate the entire attack chain from breach to data encryption.

Jul 4, 2026·3 min read

U.S. Government Entity Paid Kairos $1 Million in Data-Theft Extortion Case
SecurityThe Hacker News

U.S. Government Entity Paid Kairos $1 Million in Data-Theft Extortion Case

Analysis of the U.S. government's $1 million payment to the Kairos group, highlighting a shift from ransomware to pure data-theft extortion.

Jul 4, 2026·3 min read

North Korean Hackers Publish 108 Malicious Packages and Extensions in PolinRider Campaign
SecurityThe Hacker News

North Korean Hackers Publish 108 Malicious Packages and Extensions in PolinRider Campaign

North Korean hackers launch PolinRider, a massive supply chain attack targeting developers via 108 malicious packages on npm, Go, and Chrome.

Jul 4, 2026·2 min read

Unpatched Flaws Disclosed in Filesystem Bundled Into Millions of Embedded Devices
SecurityThe Hacker News

Unpatched Flaws Disclosed in Filesystem Bundled Into Millions of Embedded Devices

Security researchers reveal seven critical vulnerabilities in FatFs, a ubiquitous filesystem module impacting millions of embedded and industrial devices.

Jul 3, 2026·3 min read

New "Bad Epoll" Linux Kernel Flaw Lets Unprivileged Users Gain Root, Hits Android
SecurityThe Hacker News

New "Bad Epoll" Linux Kernel Flaw Lets Unprivileged Users Gain Root, Hits Android

Explore 'Bad Epoll' (CVE-2026-46242), a critical Linux and Android vulnerability that highlights the limits of current AI-driven security auditing.

Jul 3, 2026·3 min read

New Avalon Malware Framework Packs CrownX Ransomware Capabilities
SecurityThe Hacker News

New Avalon Malware Framework Packs CrownX Ransomware Capabilities

Cybersecurity researchers uncover Avalon, a modular malware framework integrating phishing, lateral movement, and CrownX ransomware for streamlined attacks.

Jul 3, 2026·3 min read

SecurityBleepingComputer

NetNut proxy network disrupted, 2 million infected devices cut off

Google and cybersecurity experts disrupt the NetNut proxy network, cutting off access to 2 million compromised Android devices world-wide.

Jul 3, 2026·3 min read

North Korea-Linked npm Packages Mimic Rollup Polyfills to Steal Developer Secrets
SecurityThe Hacker News

North Korea-Linked npm Packages Mimic Rollup Polyfills to Steal Developer Secrets

North Korean threat actors target developers with malicious npm packages mimicking Rollup polyfills to steal credentials and secure remote access.

Jul 3, 2026·3 min read

SecuritySecurityWeek

In Other News: Canadian Hacker Jailed, Open Source Zero-Days, Two Sentenced for ATM Jackpotting

An analysis of recent cybercrime sentencings and open-source vulnerabilities, highlighting the shifting landscape of digital law enforcement and software risk.

Jul 3, 2026·3 min read

SecurityBleepingComputer

ARToken PhaaS exposes EvilTokens' Microsoft 365 phishing toolkit

The emergence of ARToken and its connection to EvilTokens marks a dangerous shift in the accessibility of advanced Microsoft 365 phishing kits.

Jul 3, 2026·3 min read

Armored Likho Targets Government Agencies, Power Sector with BusySnake Stealer
SecurityThe Hacker News

Armored Likho Targets Government Agencies, Power Sector with BusySnake Stealer

Armored Likho’s new BusySnake stealer signals a shift in cyber espionage, blending retail-style malware with high-stakes government and energy sector targets.

Jul 3, 2026·2 min read

Chinese LLMs Broaden the Gap Between Attackers & Defenders
SecurityDark Reading

Chinese LLMs Broaden the Gap Between Attackers & Defenders

Analysis of emerging Chinese LLMs like DeepSeek and Qwen, exploring their impact on the global AI arms race and cybersecurity implications.

Jul 3, 2026·3 min read

European Parliament Member Investigating Spyware Was Hacked With Pegasus
SecurityThe Hacker News

European Parliament Member Investigating Spyware Was Hacked With Pegasus

Analysis of the Pegasus spyware attack on MEP Stelios Kouloglou and its implications for European democratic integrity and surveillance regulation.

Jul 3, 2026·3 min read

SecuritySecurityWeek

Agentic AI Used to Conduct Ransomware Attack via Langflow

Recent cybersecurity research reveals how agentic AI, through the Langflow framework, can automate complex ransomware delivery, marking a shift in cyber threats

Jul 3, 2026·3 min read

SecurityBleepingComputer

Claude Fable 5 isn’t permanently leaving subscriptions, Anthropic says

Anthropic clarifies that Claude 3.5 Sonnet's arrival and the temporary removal of Fable 5 from subscriptions is a capacity-driven shift, not a retirement.

Jul 3, 2026·3 min read

SecurityBleepingComputer

Claude Fable relaunch disappoints users with nerfed performance

Anthropic's Claude Fable relaunch faces criticism for 'nerfed' performance, highlighting the tensions between safety tuning and model intelligence.

Jul 3, 2026·3 min read

Aussies Face Reduced Cybercrime Risk, as Pressure Shifts to SMBs
SecurityDark Reading

Aussies Face Reduced Cybercrime Risk, as Pressure Shifts to SMBs

Australia’s tightening cyber regulations have reduced individual risk but created a survival crisis for SMBs facing sophisticated criminal threats.

Jul 2, 2026·3 min read

Apple Reverses Age-Old Patch Policy to Keep Up With AI
SecurityDark Reading

Apple Reverses Age-Old Patch Policy to Keep Up With AI

Apple accelerates its software patching cycles as AI-driven automation allows attackers to exploit vulnerabilities faster than ever before.

Jul 2, 2026·3 min read

FBI Seizes NetNut Proxy Platform, Popa Botnet
SecurityKrebs on Security

FBI Seizes NetNut Proxy Platform, Popa Botnet

The FBI's seizure of NetNut's domains marks a turning point in the regulation of the residential proxy market and its links to illicit botnets.

Jul 2, 2026·3 min read

SecurityBleepingComputer

Medtronic notifies customers impacted by ShinyHunters data breach

Medtronic confirms a data breach linked to the ShinyHunters group, exposing customer data and highlighting risks in the healthcare manufacturing supply chain.

Jul 2, 2026·3 min read

SecurityBleepingComputer

FortiBleed credential-theft campaign linked to Lynx ransomware

FortiBleed credential theft campaign linked to Lynx ransomware highlights the growing risk of automated edge-device exploitation in supply chain attacks.

Jul 1, 2026·2 min read

SecurityBleepingComputer

Kubota says hackers had month-long access to network systems

Kubota North America reveals a month-long data breach, highlighting critical vulnerabilities in industrial supply chain cybersecurity and data protection.

Jul 1, 2026·3 min read

Crafty Phishing Campaigns Auto-Adapt to Victim's Device, OS
SecurityDark Reading

Crafty Phishing Campaigns Auto-Adapt to Victim's Device, OS

New adaptive phishing techniques use device fingerprinting to deliver OS-specific payloads, marking a shift toward highly personalized cyberattacks.

Jul 1, 2026·3 min read

SecurityBleepingComputer

New ChocoPoC malware targets researchers via trojanized PoC exploits

ChocoPoC malware targets cybersecurity researchers using weaponized GitHub exploits, signaling a sophisticated shift in cyber espionage tactics.

Jul 1, 2026·3 min read

Citrix Patches Six NetScaler Flaws Allowing File Read and Denial-of-Service
SecurityThe Hacker News

Citrix Patches Six NetScaler Flaws Allowing File Read and Denial-of-Service

Citrix patches critical vulnerabilities in NetScaler ADC and Gateway. Learn about the risks of CVE-2026-8451 and the broader push for secure network infrastruct

Jul 1, 2026·3 min read

China-Linked Group Targets Southeast Asia Critical Systems
SecurityDark Reading

China-Linked Group Targets Southeast Asia Critical Systems

A sophisticated China-linked cyber espionage campaign targets critical infrastructure in Southeast Asia, signaling a new era of regional digital warfare.

Jul 1, 2026·3 min read

SecurityBleepingComputer

Anthropic to restore Claude Fable access on Wednesday

Anthropic gains clearance to export its high-performance Fable 5 and Mythos 5 models as U.S. Commerce Department eases AI trade restrictions.

Jul 1, 2026·3 min read

SecurityBleepingComputer

Anthropic rolls out Sonnet 5 with near-Opus 4.8 performance at a lower price

Anthropic's release of Claude 3.5 Sonnet challenges the industry's 'bigger is better' dogma, offering flagship-level performance at mid-tier pricing.

Jun 30, 2026·3 min read

SecurityBleepingComputer

New BioShocking attack manipulates AI browser into data theft

The 'BioShocking' attack uses narrative framing to bypass AI browser guardrails, highlighting new vulnerabilities in LLM-integrated web navigation.

Jun 30, 2026·3 min read

SecuritySecurityWeek

New Controller Flaws Expose Highway Signs and Billboards to Remote Hacking

CISA has published an advisory to inform organizations about three vulnerabilities found by a researcher in Daktronics controllers. The post New Controller Flaws Expose Highway Signs and Billboards to

Jun 30, 2026

Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild
SecurityThe Hacker News

Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild

A critical security flaw impacting Oracle E-Business Suite has come under active exploitation in the wild, according to Defused Cyber. The vulnerability, tracked as CVE-2026-46817 (CVSS score: 9.8), r

Jun 30, 2026

'Djinn' Stealer Targets Cloud, AI Credentials
SecurityDark Reading

'Djinn' Stealer Targets Cloud, AI Credentials

The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp, targeting credentials linking development and admin environments to wider enterprise sys

Jun 29, 2026

Vulnerabilities Expose Private Data in Indian Government Systems
SecurityDark Reading

Vulnerabilities Expose Private Data in Indian Government Systems

One critical vulnerability, among many discovered by a researcher, could have allowed anyone to walk in and take over a national government portal.

Jun 29, 2026

SecurityBleepingComputer

Nissan discloses employee data breach linked to Oracle zero-day attacks

Nissan is warning that it suffered a data breach affecting current and former employees after threat actors exploited an Oracle PeopleSoft vulnerability in data theft attacks previously linked to the

Jun 29, 2026

SecurityBleepingComputer

Data breach exposes up to 14.2 million email logins at six ISPs

Japanese telecommunications operator KDDI Corporation disclosed a data breach where threat actors gained access to one of its email systems used by five other internet service providers (ISPs) in the

Jun 28, 2026

Ukraine Says Russian Intelligence Used Fake Support Texts to Steal Messaging Credentials
SecurityThe Hacker News

Ukraine Says Russian Intelligence Used Fake Support Texts to Steal Messaging Credentials

The Security Service of Ukraine (SSU) said it, together with the U.S. Federal Bureau of Investigation (FBI), uncovered a long-running campaign orchestrated by Russian intelligence services to break in

Jun 27, 2026

SecurityBleepingComputer

Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious payload that remains invisible to security scanners, AI agents, and human revie

Jun 27, 2026

OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber Safeguards
SecurityThe Hacker News

OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber Safeguards

OpenAI on Friday released three versions of GPT-5.6, called Sol, Terra, and Luna, as a limited preview to a small number of companies as part of an ongoing engagement with the U.S. government. While S

Jun 27, 2026

SecuritySecurityWeek

Chinese Framework Powers 200,000 Scam Sites

Threat actors are selling investment scam templates created using the legitimate DCloud Uni-App toolkit. The post Chinese Framework Powers 200,000 Scam Sites appeared first on SecurityWeek.

Jun 27, 2026

Third-Party Breaches Teach Education Sector a Costly Lesson in Vendor Risk
SecurityDark Reading

Third-Party Breaches Teach Education Sector a Costly Lesson in Vendor Risk

Rising threats from third-party actors are forcing institutions to play defense to protect student data from ransomware and other attacks.

Jun 27, 2026

SecurityBleepingComputer

FBI: Russian hackers now target Signal backup recovery keys

The FBI and CISA are warning that a phishing campaign targeting Signal users tied to Russian intelligence services has evolved to steal Signal Backup Recovery Keys, allowing attackers to access victim

Jun 26, 2026

SecurityBleepingComputer

CISA sets urgent deadline to fix Cisco flaw exploited in attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is giving federal agencies until Sunday to patch a vulnerability in Cisco Unified Communications Manager Server that is being actively

Jun 26, 2026

FBI Warns Russian Intelligence Hackers Target Signal Backup Recovery Keys
SecurityThe Hacker News

FBI Warns Russian Intelligence Hackers Target Signal Backup Recovery Keys

The FBI and CISA have updated their March warning about Russian intelligence phishing Signal accounts, and the operators have added a step: they now coax targets into handing over their Signal Backup

Jun 26, 2026

AI Decline? Confidence in Autonomous Penetration Testing Falls
SecurityDark Reading

AI Decline? Confidence in Autonomous Penetration Testing Falls

Companies are still experimenting with automated AI systems to find security weaknesses, but fewer are relying on the technology.

Jun 26, 2026

New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks
SecurityThe Hacker News

New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks

A newly discovered cyber attack campaign has been observed delivering a previously undocumented malware family called SharkLoader that acts as a loader for deploying Cobalt Strike Beacon on compromise

Jun 26, 2026

SecurityBleepingComputer

Polymarket customers lose $3 million in supply-chain attack

Polymarket says it will fully reimburse customers who lost an estimated $3 million after hackers injected a malicious script into the platform's frontend following a breach at a third-party vendor. [.

Jun 26, 2026

SecurityBleepingComputer

Cybersecurity firms targeted by fraudulent OpenAI organization invites

Threat actors are creating OpenAI tenants that impersonate legitimate companies and inviting employees to join them, in what appears to be a ploy to trick targets into submitting sensitive company inf

Jun 26, 2026

Cisco Adds NHI to Security Stack With Astrix, WideField Acquisitions
SecurityDark Reading

Cisco Adds NHI to Security Stack With Astrix, WideField Acquisitions

Cisco joins a growing list of security platform providers that are betting that securing the agentic workforce means turning identity into the primary control plane.

Jun 26, 2026

New Initiative Tackles Security for End-of-Life Open Source Software
SecurityDark Reading

New Initiative Tackles Security for End-of-Life Open Source Software

The Open Source Sustainability Initiative's goal is to help enterprises manage and secure aging open source projects while maintaining regulatory compliance.

Jun 26, 2026

SecuritySecurityWeek

Philip Martin Joins Uber as Chief Information Security Officer

Martin brings experience from Coinbase, Palantir, Amazon, and the U.S. Army to lead Uber's cybersecurity and enterprise security organization. The post Philip Martin Joins Uber as Chief Information Se

Jun 26, 2026

SecurityBleepingComputer

Anthropic is testing desktop-like Claude Cowork for mobile

Anthropic appears to be testing Claude Cowork support on mobile, allowing you to manage long-running Claude tasks from your phone. [...]

Jun 25, 2026

SecurityBleepingComputer

Poland busts SIM-swapping gang tied to millions in crypto theft

Authorities in Poland have arrested four members of an organized cybercrime group accused of breaching telecommunications partners and hijacking email accounts to carry out SIM-swapping attacks. [...]

Jun 25, 2026

In Less Than 24 Hours, Attackers Weaponize Cisco CUCM Flaw
SecurityDark Reading

In Less Than 24 Hours, Attackers Weaponize Cisco CUCM Flaw

The flaw enables server-side request forgery (SSRF) and escalates privileges to root, impacting Cisco Unified CM and Unified CM SME deployments.

Jun 25, 2026

Russian APT 'Gamaredon' Upgrades Its Arsenal, Requiring New Defenses
SecurityDark Reading

Russian APT 'Gamaredon' Upgrades Its Arsenal, Requiring New Defenses

The FSB state-sponsored operation has gotten a lot better at loading its malware and hiding its servers.

Jun 25, 2026

SecurityBleepingComputer

Google releases new privacy controls for activity history, personalization

Google is rolling out new privacy controls for Search services and Google Play, giving you more control over saved history and personalized recommendations. [...]

Jun 24, 2026

SecurityBleepingComputer

DraftKings hacker 'Snoopy' sentenced to 18 months in prison

A 21-year-old using the alias "Snoopy" was sentenced to 18 months in prison for his role in hacking DraftKings accounts in the November 2022 cyberattack. [...]

Jun 24, 2026

SecurityBleepingComputer

Mandiant reveals how Cisco SD-WAN zero-day attacks gained root access

New details have been revealed on how hackers exploited a Cisco Catalyst SD-WAN vulnerability tracked as CVE-2026-20245 in zero-day attacks to create rogue root accounts on targeted devices. [...]

Jun 24, 2026

Attackers Hit Cisco SD-WAN Flaw 2 Months Before Disclosure
SecurityDark Reading

Attackers Hit Cisco SD-WAN Flaw 2 Months Before Disclosure

Researchers believe rogue peering was used to connect to the victim's SD-WAN devices to gain admin privileges and root-level access.

Jun 24, 2026

SecurityBleepingComputer

Malicious Edge extension abuses Native Messaging as bridge to malware

A malicious Microsoft Edge extension dubbed 'Edgecution' has been used in a ransomware attack to escape the browser sandbox and deploy a Python-based backdoor. [...]

Jun 24, 2026

SecuritySecurityWeek

Anthropic’s Mythos Model Found Vulnerabilities in Classified US Government Systems, Official Says

Anthropic's Mythos model identified vulnerabilities in classified US government systems, marking a major milestone in AI-driven defensive cybersecurity.

Jun 24, 2026·3 min read

SecurityBleepingComputer

Cisco Unified CM flaw CVE-2026-20230 now exploited in attacks

Cisco warns of active exploitation of CVE-2026-20230, a high-severity SSRF flaw in Unified Communications Manager. Learn the risks and mitigation steps.

Jun 23, 2026·2 min read

SecurityBleepingComputer

Tata Electronics confirms cyberattack as hackers leak data

Tata Electronics confirms a cyberattack affecting its IT infrastructure, raising concerns over India's semiconductor ambitions and global supply chain security.

Jun 23, 2026·3 min read

Scope of Salesforce Attacks Expands as Icarus Leaks Data
SecurityDark Reading

Scope of Salesforce Attacks Expands as Icarus Leaks Data

The Icarus attack on Salesforce data via Klue highlights the growing risks of OAuth token abuse and third-party SaaS integration vulnerabilities.

Jun 23, 2026·3 min read

SecurityBleepingComputer

Windows 11 KB5095093 update rolls out new Point-in-Time restore feature

Microsoft introduces Point-in-Time restore in Windows 11 updates, revolutionizing system recovery and endpoint security for modern enterprise users.

Jun 23, 2026·3 min read

OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Patch Security Flaws
SecurityThe Hacker News

OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Patch Security Flaws

OpenAI releases GPT-5.5-Cyber under the Daybreak initiative, a specialized AI model designed to automate software vulnerability detection and patching.

Jun 23, 2026·3 min read

SecurityBleepingComputer

WhatsApp phishing attack uses fake business docs to hack PCs

A new WhatsApp phishing campaign uses fake business documents and VBScript to deploy malware, signaling a shift in social engineering tactics.

Jun 22, 2026·3 min read

SecurityBleepingComputer

JaredFromSubway MEV bot hacked in $15 million crypto theft

An analysis of the $15 million exploit of the notorious 'JaredFromSubway' MEV bot and what it means for the future of Ethereum's sandwich trading ecosystem.

Jun 22, 2026·3 min read

SecurityBleepingComputer

FFmpeg fixes PixelSmash flaw in widely used video decoder

FFmpeg patches 'PixelSmash,' a critical vulnerability threatening media servers like Jellyfin with remote code execution and denial-of-service attacks.

Jun 22, 2026·3 min read

SecurityBleepingComputer

FortiBleed campaign used custom FortiGate sniffer to steal credentials

An analysis of the FortiBleed campaign and its use of custom malware to exploit FortiGate vulnerabilities for credential theft and network espionage.

Jun 22, 2026·2 min read

SecuritySecurityWeek

Texas Parks & Wildlife Data Breach Affects 3 Million Individuals

A data breach at a third-party vendor has exposed the personal information of 3 million Texas Parks and Wildlife customers, highlighting supply chain risks.

Jun 22, 2026·3 min read

SecurityBleepingComputer

AryStinger botnet infected thousands of D-Link routers worldwide

Discovery of the AryStinger botnet highlights the persistent security risks of end-of-life IoT devices and the growing demand for residential proxies.

Jun 21, 2026·3 min read

SecurityBleepingComputer

New Prinz Eugen ransomware prioritizes recent files for encryption

New Prinz Eugen ransomware shifts tactics by prioritizing recent files and omitting ransom notes, signaling a more aggressive era of extortion.

Jun 20, 2026·3 min read

SecurityBleepingComputer

Microsoft links Mastra AI supply chain attack to North Korean hackers

Microsoft links the Mastra AI supply chain attack to North Korea's Sapphire Sleet. Learn how hackers used 140+ npm packages to target the AI sector.

Jun 20, 2026·3 min read

Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys
SecurityThe Hacker News

Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys

Hackers are targeting a vulnerability in the Gravity SMTP WordPress plugin to steal API keys, signaling a new era of supply chain risks for CMS users.

Jun 20, 2026·3 min read

SecuritySecurityWeek

French President Urges US to Share Cutting-Edge AI and Democracies to Cooperate on Regulation

French President Emmanuel Macron calls for transatlantic AI cooperation, urging the U.S. to share advanced AI models while seeking global regulatory alignment.

Jun 20, 2026·3 min read

SecurityBleepingComputer

Klue OAuth breach victim list grows as Icarus hackers claim attack

Klue confirms OAuth token theft by the Icarus group, exposing Salesforce data and highlighting critical vulnerabilities in third-party integrations.

Jun 19, 2026·3 min read

SecurityBleepingComputer

Hackers exploit info disclosure bug in Gravity SMTP WordPress plugin

Hackers are exploiting a critical information disclosure flaw in the Gravity SMTP WordPress plugin, exposing sensitive mail server credentials.

Jun 19, 2026·3 min read

Unpatchable 'usbliter8' Exploit Breaks Apple A12 and A13 SecureROM Boot Chain
SecurityThe Hacker News

Unpatchable 'usbliter8' Exploit Breaks Apple A12 and A13 SecureROM Boot Chain

The usbliter8 exploit creates an unpatchable vulnerability in Apple's A12 and A13 chips, marking a significant breach in iOS hardware security.

Jun 19, 2026·3 min read

The Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security Processes
SecurityThe Hacker News

The Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security Processes

An editorial analysis of The Gentlemen RaaS and its GentleKiller framework, highlighting the escalation of defense-evasion tactics in ransomware.

Jun 19, 2026·3 min read

SecurityBleepingComputer

Texas govt data breach exposes over 3 million driver’s licenses

A massive data breach at a Texas Parks and Wildlife vendor exposes 3 million records, highlighting the growing cybersecurity risks of state-subcontracted system

Jun 19, 2026·2 min read

AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution
SecurityThe Hacker News

AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution

Microsoft researchers reveal AutoJack, an exploit chain allowing malicious websites to hijack AI agents and execute code on host systems via local services.

Jun 19, 2026·3 min read

SecuritySecurityWeek

In Other News: Apple Patches Beats Eavesdropping Flaw, DOT Closes Delta CrowdStrike Probe, AWS Continuum

An analysis of recent cybersecurity developments, including Apple’s Bluetooth fixes, persistent APT threats, and the conclusion of the Delta-CrowdStrike probe.

Jun 19, 2026·3 min read

Operation Endgame Disrupts SocGholish Servers, Cleans 14,971 WordPress Sites
SecurityThe Hacker News

Operation Endgame Disrupts SocGholish Servers, Cleans 14,971 WordPress Sites

International law enforcement's Operation Endgame strikes a major blow against SocGholish, remediating 15,000 WordPress sites and disrupting malware networks.

Jun 19, 2026·3 min read

CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices
SecurityThe Hacker News

CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices

CISA warns of FortiBleed, a massive cyberattack hitting over 86,000 Fortinet FortiGate devices. Explore the mechanics, Russian links, and industry impact.

Jun 19, 2026·3 min read

SecuritySecurityWeek

Splunk Enterprise Vulnerability Exploited in Attacks Days After Disclosure

Splunk faces critical RCE vulnerability CVE-2024-22513 with active exploitation, prompting urgent CISA warnings and mandatory federal patching.

Jun 19, 2026·3 min read

SecurityBleepingComputer

Gentlemen ransomware uses multiple EDR killers to disable defenses

Gentlemen ransomware-as-a-service is deploying sophisticated EDR-killer tools, signaling a new era of proactive defense neutralization in cybercrime.

Jun 18, 2026·3 min read

Novo Nordisk Breach Exposes Software Development Pipeline Risk
SecurityDark Reading

Novo Nordisk Breach Exposes Software Development Pipeline Risk

Novo Nordisk's GitHub token leak highlights the critical shift from secrets management as a tool to an identity-centric security challenge in DevOps.

Jun 18, 2026·3 min read

Operation Escaneo Signals Shift in LatAm Threat Landscape
SecurityDark Reading

Operation Escaneo Signals Shift in LatAm Threat Landscape

Analysis of Operation Escaneo and the evolving cyber threat landscape in Latin America, focusing on the blend of espionage and cybercrime.

Jun 18, 2026·3 min read

SecurityBleepingComputer

Nintendo confirms data stolen in WebMD subsidiary cyberattack

Nintendo confirms data theft via a third-party TinyPulse breach, highlighting the growing supply chain risks for major gaming and tech corporations.

Jun 18, 2026·3 min read

SecurityBleepingComputer

Leak confirms OpenAI is testing a ChatGPT for Science subscription

OpenAI leaks reveal a 'ChatGPT for Science' tier, signaling a pivot toward specialized, high-accuracy AI models for research and technical discovery.

Jun 18, 2026·3 min read

SecurityBleepingComputer

Google to use UK and EU user IP addresses for ad personalization

Google signals a policy shift to use IP addresses for ad personalization in Europe from 2026, marking a significant pivot in its privacy strategy.

Jun 17, 2026·3 min read

INC Ransomware Thrives by Mastering the Basics
SecurityDark Reading

INC Ransomware Thrives by Mastering the Basics

INC Ransomware’s rise highlights a shift toward high-pressure targets and operational efficiency over technical novelty in the cybercrime landscape.

Jun 17, 2026·3 min read

Crypto Clipper Campaign Abuses Fake Reviews, AI Narrators, and VirusTotal Comments
SecurityThe Hacker News

Crypto Clipper Campaign Abuses Fake Reviews, AI Narrators, and VirusTotal Comments

An editorial analysis of a sophisticated new crypto-clipping malware campaign using AI, paid media, and social engineering to target digital assets.

Jun 17, 2026·3 min read

Microsoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in Development
SecurityThe Hacker News

Microsoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in Development

Microsoft identifies RoguePlanet (CVE-2026-50656), a Defender zero-day allowing privilege escalation. Learn about the risks and the pending security update.

Jun 17, 2026·3 min read

Fileless Phantom Stealer Targets Browser Credentials
SecurityDark Reading

Fileless Phantom Stealer Targets Browser Credentials

New malware 'Phantom Stealer' uses fileless execution and memory-resident techniques to bypass traditional antivirus while stealing browser credentials.

Jun 16, 2026·3 min read

Security Community Slams US Ban on Exporting Mythos, Fable
SecurityDark Reading

Security Community Slams US Ban on Exporting Mythos, Fable

Cybersecurity experts challenge US export bans on Anthropic’s Mythos 5 and Fable 5 models, arguing the restrictions hinder global security collaboration.

Jun 16, 2026·3 min read

SecurityBleepingComputer

Malicious JetBrains Marketplace plugins steal AI API keys from developers

Cybercriminals are targeting developers through malicious JetBrains Marketplace plugins designed to steal OpenAI and Google AI API keys.

Jun 16, 2026·3 min read

SprySOCKS Windows Variant Abuses Kernel Drivers to Evade Detection
SecurityDark Reading

SprySOCKS Windows Variant Abuses Kernel Drivers to Evade Detection

A new Windows variant of the SprySOCKS malware, linked to China-nexus group FishMonger, is targeting global governments using kernel-level driver abuses.

Jun 16, 2026·3 min read

SecurityBleepingComputer

New Rokarolla Android malware targets 217 banking, crypto apps

Discovery of Rokarolla, a sophisticated Android banking trojan, signals a new peak in mobile malware capabilities targeting financial and crypto apps.

Jun 16, 2026·3 min read

SecurityBleepingComputer

DOJ seizes CFAKE, SOCFAKE deepfake nude sites under TAKE IT DOWN Act

The DOJ's seizure of CFAKE and SOCFAKE marks a turning point in AI law enforcement, utilizing the TAKE IT DOWN Act to combat nonconsensual deepfake content.

Jun 15, 2026·3 min read

SecurityBleepingComputer

SimpleHelp bug lets hackers create rogue remote support accounts

A critical vulnerability in SimpleHelp remote management software allows attackers to bypass authentication and create rogue admin accounts via OIDC.

Jun 15, 2026·3 min read

Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails
SecurityThe Hacker News

Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails

Chinese espionage group exploits Google Workspace rules to exfiltrate defense and medical data from North American research institutions.

Jun 15, 2026·3 min read

North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels
SecurityThe Hacker News

North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels

North Korean hackers are exploiting developer workflows through fake job interviews and code reviews, signaling a shift in sophisticated social engineering.

Jun 15, 2026·3 min read

Copilot 'SearchLeak' Attack Allows 1-Click Data Theft
SecurityDark Reading

Copilot 'SearchLeak' Attack Allows 1-Click Data Theft

A deep dive into the 'SearchLeak' vulnerability in Microsoft Copilot, exploring the risks of prompt injection and the future of LLM security.

Jun 15, 2026·3 min read

SecurityBleepingComputer

FBI disrupts massive AI-powered phishing service using a million URLs

The FBI and tech partners dismantle Outsider Enterprise, a major AI-powered phishing operation targeting global users with high-fidelity fraudulent sites.

Jun 14, 2026·3 min read

SecurityBleepingComputer

Ex-school district employee jailed for hacks on former employer

An analysis of the sentencing of a former Iowa school district IT worker and what it reveals about the growing threat of insider cyberattacks in education.

Jun 13, 2026·3 min read

SecuritySecurityWeek

NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks

NPM 12 introduces a critical security update by disabling automatic dependency scripts, a major shift aimed at curbing supply chain attacks in JavaScript.

Jun 13, 2026·3 min read

SecurityBleepingComputer

Chinese hackers hijack auth flow, spy on isolated network for a decade

An analysis of a decade-long espionage campaign by Chinese hackers who hijacked authentication flows to monitor isolated government networks.

Jun 13, 2026·3 min read

Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication
SecurityThe Hacker News

Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication

Splunk fixes a critical 9.8 CVSS vulnerability (CVE-2026-20253) affecting Enterprise versions, preventing unauthenticated remote code execution.

Jun 13, 2026·3 min read

SecurityBleepingComputer

US Gov asks Anthropic to ban 'foreign national' access to Fable, Mythos

The US government’s intervention in Anthropic’s model deployment signals a shift toward proactive, geopolitically motivated regulation of generative AI.

Jun 13, 2026·3 min read

SecuritySecurityWeek

Anthropic Says It Has Taken Its Latest AI Models Offline to Comply With New Export Controls

Anthropic suspends latest AI models to comply with Trump administration export controls, signaling a new era of AI trade policy and national security.

Jun 13, 2026·3 min read

U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals
SecurityThe Hacker News

U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals

U.S. government mandates Anthropic disable access to Claude Fable 5 and Mythos 5 for foreign nationals, signaling a shift in AI export and security policy.

Jun 13, 2026·3 min read

ShinyHunters Uses Oracle Zero-Day to Rampage Higher Ed
SecurityDark Reading

ShinyHunters Uses Oracle Zero-Day to Rampage Higher Ed

An analysis of the Oracle zero-day vulnerability exploited by ShinyHunters, targeting higher education data and exposing enterprise risk in academia.

Jun 12, 2026·3 min read

SecurityBleepingComputer

Maine disables data breach notification portal after fake disclosures

Maine's data breach portal remains offline following a wave of fraudulent submissions, highlighting a new frontier in cyber-misinformation and regulatory risk.

Jun 12, 2026·3 min read

Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit
SecurityThe Hacker News

Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit

Over 400 Arch Linux AUR packages were hijacked to deploy a Rust-based infostealer and eBPF rootkit, highlighting critical software supply chain risks.

Jun 12, 2026·3 min read

Google Sues Chinese Smishing Network Accused of Using Gemini AI in Phishing
SecurityThe Hacker News

Google Sues Chinese Smishing Network Accused of Using Gemini AI in Phishing

Google sues a Chinese cybercrime ring for using Gemini AI to power a massive 'smishing' operation, marking a new front in the fight against AI-driven fraud.

Jun 12, 2026·3 min read

SecurityBleepingComputer

phpBB forum fixes auth bypass bug lurking for a decade

A decade-old authentication bypass vulnerability in phpBB highlights the persistent risks of legacy code and the challenges of securing open-source software.

Jun 12, 2026·3 min read

China-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decade
SecurityThe Hacker News

China-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decade

Cybersecurity firm Sygnia reveals Velvet Ant, a China-linked group, backdoored Linux PAM and OpenSSH to maintain a decade-long persistent network presence.

Jun 12, 2026·3 min read

SecurityBleepingComputer

Ukrainian national pleads guilty to role in Conti ransomware operation

A Ukrainian national's guilty plea reveals the inner workings of the Conti ransomware syndicate and the escalating U.S. legal offensive against cybercrime.

Jun 12, 2026·3 min read

Phishing Attack Volume Down 20%, but Risk Still Rising
SecurityDark Reading

Phishing Attack Volume Down 20%, but Risk Still Rising

Phishing volume has dropped 20%, but AI-driven sophistication is making attacks more dangerous than ever. Explore why quality now trumps quantity in cybercrime.

Jun 12, 2026·3 min read

SecurityBleepingComputer

Japanese energy firm loses drive with data of 10.9 million clients

Kyushu Electric Power reports a massive data loss involving 10.9 million customers, highlighting the critical risks of physical media in the digital age.

Jun 11, 2026·3 min read

SecurityBleepingComputer

Maine breach portal abused to publish fake data breach disclosures

Hackers exploit Maine’s public breach portal to spread misinformation, highlighting a critical flaw in regulatory transparency and corporate security.

Jun 11, 2026·3 min read

ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach Universities
SecurityThe Hacker News

ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach Universities

Analysis of the recent Oracle PeopleSoft zero-day exploit by ShinyHunters (UNC6240) targeting higher education institutions and enterprise systems.

Jun 11, 2026·3 min read

SecurityBleepingComputer

Oracle mitigates PeopleSoft zero-day exploited in data theft attacks

Oracle fixes a critical PeopleSoft zero-day exploited by ShinyHunters. Analyze the mechanics of CVE-2026-35273 and the security risks for enterprise data.

Jun 11, 2026·3 min read

Chinese, N. Korean Threat Groups Build on Asia-Pacific Success
SecurityDark Reading

Chinese, N. Korean Threat Groups Build on Asia-Pacific Success

An analysis of how Chinese and North Korean cyber operations are evolving into sophisticated economic engines, reshaping Asia-Pacific security dynamics.

Jun 11, 2026·3 min read

SecurityBleepingComputer

Path traversal flaw in AI dev platform Langflow exploited in attacks

Hackers are exploiting a critical path traversal vulnerability (CVE-2024-5027) in Langflow, highlighting fresh risks in AI development environments.

Jun 10, 2026·3 min read

CISA Rewrites Federal Patching Requirements for AI Threat Era
SecurityDark Reading

CISA Rewrites Federal Patching Requirements for AI Threat Era

CISA updates federal vulnerability management directives, mandating 72-hour patching for critical flaws to combat AI-powered cyber threats.

Jun 10, 2026·3 min read

SecurityBleepingComputer

The ‘Miasma’ worm source code briefly leaked on GitHub

The brief exposure of the 'Miasma' worm source code highlights the evolving danger of automated credential harvesting in open-source ecosystems.

Jun 10, 2026·3 min read

Bug Bounty Research Triggers ServiceNow Security Alert
SecurityDark Reading

Bug Bounty Research Triggers ServiceNow Security Alert

ServiceNow's recent security patching reveals the complexities of bug bounty research and the systemic risks of misconfigured SaaS platforms.

Jun 10, 2026·3 min read

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS
SecurityThe Hacker News

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS

Six ‘Proto6’ vulnerabilities in the protobuf.js library expose Node.js applications to RCE and DoS risks, highlighting risks in schema parsing.

Jun 10, 2026·3 min read

SecurityBleepingComputer

Anthropic rolls out Claude Fable 5, but it's available for a limited time

Anthropic releases 'Claude Fable 5,' a limited-time experimental model designed to test high-level reasoning and nuanced long-form content generation.

Jun 10, 2026·3 min read

SecurityBleepingComputer

Microsoft Defender 'RoguePlanet' zero-day grants SYSTEM privileges

A new Microsoft Defender zero-day exploit, RoguePlanet, bypasses recent patches to grant SYSTEM privileges, raising major cybersecurity concerns.

Jun 9, 2026·3 min read

SecurityKrebs on Security

A Record-Breaking Patch Tuesday for June 2026

Microsoft's June 2026 Patch Tuesday sets a record with 200 security fixes, signaling a shift in cyber defense and the rising tide of AI-driven vulnerabilities.

Jun 9, 2026·3 min read

Blame AI: Patch Tuesday Hits Record 206 CVEs
SecurityDark Reading

Blame AI: Patch Tuesday Hits Record 206 CVEs

Microsoft’s largest Patch Tuesday in history underscores how AI is accelerating software vulnerability discovery and reshaping cybersecurity defense.

Jun 9, 2026·3 min read

SecurityBleepingComputer

NFCShare Android malware spreads via fake banking app updates on GitHub

A new wave of NFCShare Android malware on GitHub targets bank accounts by mimicking legitimate updates to steal financial data via NFC protocols.

Jun 8, 2026·2 min read

SecurityBleepingComputer

SoFi confirms third-party data breach at Hong Kong subsidiary

SoFi Hong Kong reports a data breach via a third-party vendor, highlighting the precarious nature of supply chain security in the global fintech sector.

Jun 8, 2026·3 min read

SecurityBleepingComputer

New Apple feature automatically changes your compromised passwords

Apple introduces an AI-driven security feature in iOS 27 that automatically rotates compromised passwords, signaling a shift in proactive digital defense.

Jun 8, 2026·3 min read

Silent Ransom Group Hits US Law Firms in Escalating Extortion Attacks
SecurityDark Reading

Silent Ransom Group Hits US Law Firms in Escalating Extortion Attacks

Silent Ransom Group is targeting US law firms through a dangerous blend of vishing, IT impersonation, and physical office breaches.

Jun 8, 2026·3 min read

SecurityBleepingComputer

New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

A new supply-chain attack dubbed 'Shai-Hulud' has compromised 19 science-focused PyPI packages, targeting developers to steal sensitive credentials and data.

Jun 8, 2026·3 min read

SecurityBleepingComputer

Hands on with Intelligent Terminal, an AI-powered Windows Terminal

Microsoft's Intelligent Terminal integrates local and cloud AI into the command line, revolutionizing developer workflows and command-line interfaces.

Jun 7, 2026·3 min read

SecurityBleepingComputer

C0XMO botnet spreads via DD-WRT router flaw, kills rival malware

The new C0XMO botnet targets DD-WRT firmware, utilizing architectural flexibility and aggressive rival-killing tactics to dominate the IoT landscape.

Jun 7, 2026·3 min read

SecurityBleepingComputer

Silent Ransom Group targets law firms with fake IT support calls

Silent Ransom Group targets US law firms using sophisticated vishing attacks to bypass traditional security and exfiltrate data within hours.

Jun 7, 2026·3 min read

SecuritySecurityWeek

Emphere Raises $2.1 Million for AI-Powered Vulnerability Remediation

Emphere’s $2.1M pre-seed round signals a shift from AI vulnerability detection to automated remediation, aiming to bridge the gap between Dev and Sec.

Jun 7, 2026·3 min read

SecurityBleepingComputer

Critical Everest Forms Pro flaw exploited to take over WordPress sites

A critical zero-day in Everest Forms Pro allows remote code execution on WordPress sites, sparking a race between attackers and site administrators.

Jun 6, 2026·3 min read

New ChatGPT Lockdown Mode Limits Tools That Could Enable Data Exfiltration
SecurityThe Hacker News

New ChatGPT Lockdown Mode Limits Tools That Could Enable Data Exfiltration

OpenAI introduces ChatGPT Lockdown Mode to combat prompt injection and data exfiltration, signaling a new era of proactive security for generative AI.

Jun 6, 2026·3 min read

SecuritySecurityWeek

Opal Security Raises $23 Million for AI-Native Identity Governance

Opal Security secures $23M in Series B funding to scale its AI-native identity governance platform, aiming to modernize a $15B market dominated by legacy tech.

Jun 6, 2026·3 min read

Free Apps Are Quietly Turning Smart TVs Into Web-Scraping Proxies for AI
SecurityThe Hacker News

Free Apps Are Quietly Turning Smart TVs Into Web-Scraping Proxies for AI

Free smart TV apps are being used as residential proxies for AI web scraping, turning home devices into exit nodes for Bright Data’s massive proxy network.

Jun 6, 2026·3 min read

CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog
SecurityThe Hacker News

CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog

CISA adds SolarWinds Serv-U DoS flaw (CVE-2024-28995/28318) to its KEV catalog, signaling active exploitation and a shift in federal security priorities.

Jun 6, 2026·3 min read

AI Agent Uncovers 21 Zero-Days in FFmpeg; Chrome Patches Record 429 Bugs
SecurityThe Hacker News

AI Agent Uncovers 21 Zero-Days in FFmpeg; Chrome Patches Record 429 Bugs

An AI security agent has uncovered 21 zero-day vulnerabilities in FFmpeg, signaling a shift in how codebase vulnerabilities are detected and remediated.

Jun 6, 2026·3 min read

Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch Available
SecurityThe Hacker News

Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch Available

Cisco warns of active exploitation for CVE-2026-20245 in Catalyst SD-WAN Manager. Learn about the zero-day threat and the lack of an immediate patch.

Jun 6, 2026·3 min read

SecurityBleepingComputer

Suspicious Polyfill login prompts pop up on Toshiba, Muji websites

Toshiba and Muji report credential-harvesting pop-ups following the Polyfill.io supply chain attack, highlighting the risks of third-party JS dependencies.

Jun 5, 2026·3 min read

SecurityBleepingComputer

CISA: Hackers now exploit SolarWinds Serv-U flaw to crash servers

CISA warns of active exploitation of a SolarWinds Serv-U vulnerability (CVE-2024-28995) allowing attackers to crash servers via directory traversal.

Jun 5, 2026·3 min read

Exposed Fuel Tank Gauges Under Attack in the US
SecurityDark Reading

Exposed Fuel Tank Gauges Under Attack in the US

Hackers are targeting exposed automated tank gauges in US gas stations, highlighting critical vulnerabilities in industrial control systems and aging infrastruc

Jun 5, 2026·3 min read

SecurityBleepingComputer

Chinese APT deploys new malware to keep access to hacked networks

Analysis of the UNC5221 threat group’s use of new backdoors like Brickstorm and Plenet to maintain long-term persistence in Microsoft 365 environments.

Jun 5, 2026·3 min read

Rust-Written IronWorm Hits NPM Supply Chain
SecurityDark Reading

Rust-Written IronWorm Hits NPM Supply Chain

The Rust-based IronWorm malware campaign targets the NPM ecosystem, marking a sophisticated shift in automated software supply chain attacks.

Jun 4, 2026·3 min read

SecurityBleepingComputer

Brave Software releases Origin for a paid, bloat-free browsing experience

Brave Origin launches as a paid, minimalist browser, stripping out AI and crypto features to prioritize performance and digital minimalism.

Jun 4, 2026·3 min read

SecurityBleepingComputer

Hola Browser for Windows compromised to deliver cryptominer

A supply chain attack on the Hola Browser for Windows delivers unauthorized cryptominers, highlighting persistent risks in free VPN-based software ecosystems.

Jun 4, 2026·3 min read

China's TA4922 Expands Cybercrime Attacks Globally
SecurityDark Reading

China's TA4922 Expands Cybercrime Attacks Globally

China-linked threat actor TA4922 is expanding its cybercrime operations globally, shifting from regional targets to a broad, financially motivated footprint.

Jun 4, 2026·3 min read

4 Critical Threats Where Attackers Have the Advantage
SecurityDark Reading

4 Critical Threats Where Attackers Have the Advantage

Gartner warns of a shifting cybersecurity landscape where deepfakes and prompt injection give attackers a tactical edge over traditional defenses.

Jun 4, 2026·2 min read