Topic

Security

Offensive and defensive security, vulnerability research, threat intelligence, and compliance.

148links
597news items
Links News

Security

News

Generated digest items for this topic.

2026-07-11 07:20:45 +0000

2026-07-11

17 items
Schneier on Security Jul 10 Score 0.8829580050925925

Friday Squid Blogging: “Squidbleed” Vulnerability

In a rare combined cybersecurity/squid post, a twenty-nine-year-old squid proxy bug can leak HTTP requests. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Blog moderation policy.

Security securitycryptographypolicy
Schneier on Security Jul 10 Score 0.8661482828703703

AI Surveillance and Social Progress

In the near future, AI -powered surveillance systems will be able to track everything we do in public, and much of what we do in private. And if we do something wrong—shoplift, litter, jaywalk, you name it—the system will notice, retain it, tie it

Security securitycryptographypolicy
BleepingComputer Jul 10 Score 0.8093973791666668

New U-Boot flaws could enable stealthy firmware attacks

Six vulnerabilities in the widely used U-Boot bootloader have been discovered that could allow attackers to execute malicious code during device boot, potentially enabling stealthy firmware attacks that compromise security protections and install persistent ma

Security securitymalwarevulnerabilities
BleepingComputer Jul 10 Score 0.8004524717592594

Police suspects Dutch hackers were involved in Odido breach

The Dutch National Police (Politie) says it has found "strong indications" that Dutch hackers have been involved in a February breach at the telecommunications provider Odido. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jul 10 Score 0.8001510828703704

Progress urges ShareFile admins to shut down servers over “credible” threat

Progress Software is emailing ShareFile customers who use Storage Zone Controllers to immediately shut down their servers after identifying what it describes as a "credible external security threat" targeting the on-premises secure file-sharing software. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jul 10 Score 0.7991084902777779

Hackers exploit critical auth bypass in Gitea Docker image

Hackers are actively exploiting a critical vulnerability in the official Docker image for the Gitea self-hosted Git service that allows attackers to impersonate any user, including administrators. [...]

Security securitymalwarevulnerabilities
CISA Cybersecurity Advisories Jul 10 Score 0.7927574879629631

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-48939 iCagenda Unrestricted Upload of File with Dangerous Type Vulnerability CVE-2026-56291 Balbooa Forms Unrestric

Security securitycisaadvisoriesvulnerabilities
Unit 42 (Palo Alto Networks) Jul 10 Score 0.7344422351851851

No Manners Here: The Ruthless Rise of The Gentlemen Ransomware

Unit 42 explores The Gentlemen ransomware operations, revealing the affiliate model driving its rapid growth. Learn more here. The post No Manners Here: The Ruthless Rise of The Gentlemen Ransomware appeared first on Unit 42 .

Security securitythreat-researchmalware
CyberScoop Jul 10 Score 0.7314644902777778

Armenian national pleads guilty to Ryuk ransomware attacks

Karen Vardanyan faces up to 15 years in federal prison and agreed to pay nearly $1.2 million in restitution. The post Armenian national pleads guilty to Ryuk ransomware attacks appeared first on CyberScoop .

Security securitypolicygovernment
Dark Reading Jul 10 Score 0.729648163425926

Jen Ellis: Connecting Cyber Community With Political Machinery

Security Pro File: On the heels of her recent honors as a Member of the Order of the British Empire (MBE), we take a look back at the events that shaped Jen Ellis' advocacy on behalf of security researchers.

Security securityenterprisethreats
CyberScoop Jul 10 Score 0.7292705087962963

CISA looks to remedy ailments from big May credential leak

A major credential leak spurred the Cybersecurity and Infrastructure Security Agency to strengthen protections for its sensitive materials, improve how researchers can report agency vulnerabilities and develop plans for similar incidents, the agency said in a

Security securitypolicygovernment
Dark Reading Jul 10 Score 0.7258564967592592

Cybercriminals Flock to Healthcare Businesses as Attacks Surge

While cyberattacks against hospitals and clinics grew modestly in the first half of 2026, attacks on service providers and other healthcare businesses more than doubled.

Security securityenterprisethreats
The Hacker News Jul 10 Score 0.725229725

Injective Labs GitHub Compromise Pushes Wallet-Key-Stealing npm Packages

Unknown threat actors compromised the Injective Labs SDK project's GitHub repository and leveraged it to publish a malicious package on the npm registry to steal cryptocurrency wallet private keys and mnemonic seed phrases. The compromised version, @injectivel

Security securityhackingvulnerabilities
The Hacker News Jul 10 Score 0.7243473175925926

Six New U-Boot Flaws Could Let Malicious Images Crash Devices or Run Code at Boot

Researchers at firmware security firm Binarly have found six new flaws in U-Boot, the small program that starts up hardware as varied as home routers, smart cameras, and the management chips inside data-center servers. Four of the bugs can crash a de

Security securityhackingvulnerabilities

2026-07-10 08:44:32 +0000

2026-07-10

17 items
Schneier on Security Jul 9 Score 0.8637923837962962

The Language of AI Could Change How Humans Speak

Because of the way they are trained, large language models capture only a slice of human language. They're trained on the written word, from textbooks to social media posts, and our speech as captured in movies and on television. These models have minimal acce

Security securitycryptographypolicy
BleepingComputer Jul 10 Score 0.8242678675925926

Former ransomware negotiator gets 4 years for BlackCat attacks

A former employee of cybersecurity incident response company DigitalMint was sentenced to 70 months in prison for targeting U.S. companies in BlackCat (ALPHV) ransomware attacks. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jul 9 Score 0.8040493490740741

Injective SDK on npm infected with cryptocurrency wallet stealer

Hackers compromised the Injective Labs SDK project's GitHub repository and used it to publish a malicious package on the Node Package Manager (npm) that stole cryptocurrency wallet private keys and mnemonic seed phrases. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jul 9 Score 0.7990072194444445

New Helix vishing group emerges in SharePoint data theft attacks

A new data-extortion group called Helix is using identity-focused tactics such as voice phishing (vishing), device code phishing, and multi-factor authentication (MFA) abuse to steal data from SharePoint environments. [...]

Security securitymalwarevulnerabilities
CISA Cybersecurity Advisories Jul 9 Score 0.7904381740740741

Schneider Electric Easergy MiCOM Px40 Series

View CSAF Summary Schneider Electric is aware of a vulnerability in its Easergy MiCOM Px40 Series products. The [Easergy MiCOM Px40](https://www.se.com/ww/en/product-subcategory/4725-easergy-micom-px40-series/?filter=business-6-medium-voltage-distribution-and-

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jul 9 Score 0.7904381740740741

OpenPLC v3

View CSAF Summary Successful exploitation of this vulnerability could allow an authenticated attacker to write arbitrary files to the filesystem and escalate this into arbitrary native code execution through the normal OpenPLC program compilation process, pote

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jul 9 Score 0.7904381740740741

Schneider Electric PowerChute Serial Shutdown

View CSAF Summary Successful exploitation of these vulnerabilities could allow attackers to overwrite critical files, forge or inject malicious log data, gain unauthorized account access, trigger denial‑of‑service conditions, truncate or alter logging informat

Security securitycisaadvisoriesvulnerabilities
Schneier on Security Jul 7 Score 0.7833178467592592

Google Is Suing Chinese Scammers Who Are Using Gemini

Not sure this will have any effect, but I support the effort: According to Google's legal filing, Outsider Enterprise operates through Telegram. The group offers phishing-as-a-service to individuals who may not be technically savvy enough to set up fraudulent

Security securitycryptographypolicy
Schneier on Security Jul 6 Score 0.7433752541666666

France to Stop Certifying Non-Quantum-Safe Encryption

France is accelerating its transition to post-quantum encryption: France's cybersecurity agency ANSSI said on Tuesday it would stop certifying security products that lack quantum-resistant encryption, a move that will force government bodies and critical opera

Security securitycryptographypolicy
Risky Bulletin Jul 10 Score 0.741092087037037

Risky Bulletin: NSA Tailored Access Operations is back

The NSA’s Tailored Access Operations team is back, India bans an app used to hack e-rickshaws, Accenture has another data breach, and a leak exposes a suspected Chinese cyber contractor. The Risky Bulletin newsletter and podcast will be on an editorial break u

Security securitynewspodcastintelligence
Risky Bulletin Jul 10 Score 0.7402934759259259

Sponsored: Why Sublime doesn’t toss AI at every email

In this Risky Business sponsored interview, Tom Uren chats with Sublime Security Product Manager AJ Williams about how the company targets its AI use. Rather than throwing its AI agents at everything, Sublime gives them the time-consuming email security tasks

Security securitynewspodcastintelligence
Dark Reading Jul 9 Score 0.7293635814814815

Microsoft Reins in RoguePlanet Zero-Day Threat

The researcher known as "Nightmare-Eclipse" published a proof-of-concept (PoC) exploit for the Windows Defender vulnerability in early June after dropping several other Microsoft zero-days.

Security securityenterprisethreats

2026-07-09 08:48:27 +0000

2026-07-09

17 items
Krebs on Security Jul 8 Score 0.9412006305555557

Felons, Fraudsters Flog Offensive Cybersecurity Startup

A cybersecurity startup dangling millions of dollars to acquire zero-day security vulnerabilities in popular software is run by a pair of far-right conspiracy theorists and convicted felons whose most recent ventures included fake intelligence companies and a

Security securitycybercrimebreaches
Schneier on Security Jul 8 Score 0.863739985648148

Cybersecurity and the Gap Between Skill and Ability

Last week, national security agencies from the Five Eyes—that's the rich, English-language-speaking countries club—jointly released a statement warning of the increasing cyber risks of AI models: in particular, their ability to autonomously hack in

Security securitycryptographypolicy
BleepingComputer Jul 9 Score 0.8198441310185186

Microsoft patches RoguePlanet Defender zero-day vulnerability

Microsoft has released a security patch to address a Defender zero-day vulnerability known as "RoguePlanet," disclosed after the June 2026 Patch Tuesday. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jul 8 Score 0.8035154273148148

Fake Paysafe, Skrill SDKs on NPM and PyPi steal credentials

Malicious packages on the Node Package Manager (npm) and the Python Package Index (PyPI) delivered stealer malware to developers and users of Paysafe, Skrill, and Neteller payment applications. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jul 8 Score 0.8018779273148149

Hackers exploit Roundcube flaw to spy on academic researchers

A China-linked threat cluster has been exploiting vulnerable Roundcube servers at U.S. and Canadian universities to steal credentials and deploy backdoor malware. [...]

Security securitymalwarevulnerabilities
SANS Internet Storm Center Jul 8 Score 0.7839061240740741

My Stack Simulator, (Wed, Jul 8th)

The stack is a memory region where a program stores temporary data - like local variables and return addresses. Think of the stack as a pile of plates in your kitchen: you can onl

Security securitythreatsiocs
Risky Bulletin Jul 9 Score 0.7478491819444445

Srsly Risky Biz: US Supreme Court undermines Section 702 intel

Tom Uren and James Wilson talk about a new US Supreme Court decision that puts the current EU-US data sharing agreement at risk. American intelligence collection efforts have been at the centre of legal challenges of these on-again off-again data transfer agre

Security securitynewspodcastintelligence
The Hacker News Jul 9 Score 0.7475741439814815

Meta's New AI Image Tool Lets Others Use Your Public Instagram Photos in AI Images

Meta has announced that its new artificial intelligence (AI) model Muse Image lets people use public Instagram posts and reels to generate AI content, and it's enabled by default. "You can also @-mention Instagram accounts in the Meta AI app to bring specific

Security securityhackingvulnerabilities
The Hacker News Jul 9 Score 0.7440722921296297

Top AI Agents Built to Catch Malicious Code Can Be Tricked Into Running It

Ask an AI coding agent to scan open-source code for security holes, and it might run the attacker's code on your own machine instead. That is the finding in a proof-of-concept published Wednesday by the AI Now Institute, an attack it calls "Friendly

Security securityhackingvulnerabilities
The Hacker News Jul 9 Score 0.7427463662037037

GhostApproval Symlink Flaws Could Let Malicious Repos Run Code in AI Coding Agents

Researchers at Wiz found that a flaw in six popular AI coding assistants lets a booby-trapped code project quietly take control of a developer's computer. The assistant asks permission to edit one harmless-looking file, but the write lands on a sensi

Security securityhackingvulnerabilities
The Hacker News Jul 9 Score 0.7420384958333334

Fake 7-Zip Installers Turn Devices Into Residential Proxy Nodes

Cybersecurity researchers have disclosed details of a new threat actor dubbed Lurking Lizard that has been operating an end-to-end malicious residential proxy business using an infrastructure comprising more than 230 lookalike domains. The activity dates back

Security securityhackingvulnerabilities
Dark Reading Jul 8 Score 0.7312754421296296

Mexico's New Cyber Plan Faces Its First Real Test

The Latin American nation's cybersecurity plan — still in the expansion phase — has to survive its own knockout round during the FIFA World Cup.

Security securityenterprisethreats

2026-07-08 07:42:28 +0000

2026-07-08

17 items
BleepingComputer Jul 8 Score 0.8242943879629631

CISA orders feds to patch max severity ColdFusion flaw by Friday

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered government agencies to patch an actively exploited maximum-severity flaw in the Adobe ColdFusion commercial web app development platform by Friday. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jul 7 Score 0.8089943879629631

Accenture confirms breach after hacker offers stolen data for sale

IT services giant Accenture has confirmed it suffered a security breach after a threat actor claimed to have stolen 35 GB of source code and other data from the company. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jul 7 Score 0.8036110546296297

Chinese hackers develop LONGLEASH malware to expand ORB network

Chinese hackers tracked as 'UAT-7810' are actively evolving their malware to expand their Operational Relay Box (ORB) network by compromising internet-facing networking devices, primarily unpatched Ruckus routers. [...]

Security securitymalwarevulnerabilities
SANS Internet Storm Center Jul 7 Score 0.8024095921296297

More Odd DNS Records: NIMLOC, (Tue, Jul 7th)

Yesterday, I talked about NAPTR records and how they are related to RCS. But there is another "odd" record that shows up in my DNS logs. This one isn't new, but I don't think I ever

Security securitythreatsiocs
BleepingComputer Jul 7 Score 0.8012513324074074

Hidden backdoor in Tenda router firmware grants admin access

A hidden authentication backdoor has been found in multiple Tenda router firmware versions, potentially allowing an attacker to gain administrative access to the device's web management panel. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jul 7 Score 0.7977508694444445

Spain arrests suspected member of pro-Russian hacktivist groups

The National Police in Spain have arrested a man who is suspected of being an active member of the CyberArmy of Russia Reborn (CARR) and Z-Pentest, both pro-Russian hacktivist groups. [...]

Security securitymalwarevulnerabilities
CISA Cybersecurity Advisories Jul 7 Score 0.7921577115740741

Labcenter Proteus 9

View CSAF Summary Successful exploitation of these vulnerabilities could disclose information and allow a malicious user to execute arbitrary code on affected installations. The following versions of Labcenter Proteus 9 are affected: Proteus 9.1_SP4_Build_4291

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jul 7 Score 0.7921577115740741

Hitachi Energy e-mesh EMS

View CSAF Summary Hitachi Energy is aware of a buffer overflow vulnerability that affects e-mesh EMS product versions listed in this document. Successful exploitation of this vulnerability could lead to a buffer overflow condition, potentially resulting in app

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jul 7 Score 0.7921577115740741

CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-48908 JoomShaper SP Page Builder Unrestricted Upload of File with Dangerous Type Vulnerability CVE-2026-55255 Lan

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jul 7 Score 0.7921577111111112

Digi International PortServer TS, Digi One SP IA

View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to bypass authentication and gain access to restricted resources, obtain credentials, and inject malicious scripts. The following versions of Digi International PortServ

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jul 7 Score 0.7921577111111112

Hitachi Energy PROMOD V

View CSAF Summary Hitachi Energy is aware of insecure HTTP transmission vulnerability in PROMOD V product versions listed in this document. This vulnerability could allow attackers to intercept or manipulate sensitive data in transit, potentially leading to cr

Security securitycisaadvisoriesvulnerabilities
The Hacker News Jul 8 Score 0.747622550462963

15-Year-Old GhostLock Flaw Enables Root and Container Escape on Most Linux Distros

Researchers at Nebula Security have disclosed GhostLock (CVE-2026-43499), a 15-year-old Linux kernel flaw that lets any logged-in user take full root control of a machine that has not been patched. The vulnerable code has shipped by default

Security securityhackingvulnerabilities
The Hacker News Jul 8 Score 0.7464132912037037

CISA Adds 4 Actively Exploited Adobe, Joomla, and Langflow Flaws to KEV

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerabilities are listed below - CVE-2026-48282 (CVSS scor

Security securityhackingvulnerabilities
Risky Bulletin Jul 8 Score 0.746243849074074

Risky Bulletin: DHS IG investigates forced CISA reassignments

The DHS inspector general will investigate forced CISA reassignments, Canada hacked a ransomware gang, Taiwan charges two executives with helping Chinese hackers, and new vulnerabilities can disable Hoymiles solar panels. Show notes Risky Bulletin: All new car

Security securitynewspodcastintelligence
Unit 42 (Palo Alto Networks) Jul 7 Score 0.7338341416666667

Vidar Stealer Unmasked: Code Signing Abuse, Go Loaders and File Inflation

A cybercrime campaign combined a loader-as-a-service framework and DLL sideloading via a Go-compiled fake MpClient.dll, a novel evasion layer combination. The post Vidar Stealer Unmasked: Code Signing Abuse, Go Loaders and File Inflation appeared first on Unit

Security securitythreat-researchmalware
CyberScoop Jul 7 Score 0.7337434263888889

Spain arrests suspected hacker linked to Russian hacktivist campaign

Authorities didn’t name the man or file formal charges, but accuse him of participating in attacks linked to Cyber Army of Russia Reborn and NoName. The post Spain arrests suspected hacker linked to Russian hacktivist campaign appeared first on CyberScoop .

Security securitypolicygovernment

2026-07-07 14:30:47 +0000

2026-07-07

17 items
Schneier on Security Jul 7 Score 0.8936918708333332

Google Is Suing Chinese Scammers Who Are Using Gemini

Not sure this will have any effect, but I support the effort: According to Google's legal filing, Outsider Enterprise operates through Telegram. The group offers phishing-as-a-service to individuals who may not be technically savvy enough to set up fraudulent

Security securitycryptographypolicy
Schneier on Security Jul 6 Score 0.8537492782407406

France to Stop Certifying Non-Quantum-Safe Encryption

France is accelerating its transition to post-quantum encryption: France's cybersecurity agency ANSSI said on Tuesday it would stop certifying security products that lack quantum-resistant encryption, a move that will force government bodies and critical opera

Security securitycryptographypolicy
BleepingComputer Jul 7 Score 0.8241784523148149

The GitHub Actions Attack Pattern Your CI Security Scanners Miss

ActiveState explains how GitHub Actions attack chains can evade traditional CI security scanners, why passing a scan doesn't guarantee a secure pipeline, and how organizations can better govern their CI/CD workflows. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jul 7 Score 0.8211548412037037

Webinar tomorrow: Why modern email attacks require a new approach to defense

Tomorrow's webinar explores how behavioral AI can help organizations detect sophisticated phishing, business email compromise, and account takeover attacks while reducing alert fatigue through automated investigation and response workflows. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jul 7 Score 0.8169599337962964

Microsoft to enable Windows settings backup by default for orgs

Microsoft says the Windows settings backup and restore tool will be enabled by default on Microsoft Entra-joined or Microsoft Entra hybrid-joined enterprise systems after upgrading to Windows 11 26H2. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jul 7 Score 0.8144835449074075

BeyondTrust warns of critical flaws in remote access software

BeyondTrust warned customers to patch two critical security flaws in its Remote Support (RS) and Privileged Remote Access (PRA) software that could allow attackers to bypass authentication. [...]

Security securitymalwarevulnerabilities
SANS Internet Storm Center Jul 6 Score 0.7834777319444445

RCS and DNS: The NAPTR Record, (Mon, Jul 6th)

Over the last year, with recent updates to iOS and Android, RCS (Rich Communication Services) has become an increasingly used protocol [1]. RCS is supposed to eventually replace SMS, and in addition to richer formatting, provides added (but optional)

Security securitythreatsiocs
The Hacker News Jul 7 Score 0.7482381106481482

Court Filing Reveals Windows Device ID Helped FBI Trace Alleged Scattered Spider Hacker

U.S. prosecutors linked an alleged Scattered Spider hacker to a break-in at a luxury jewelry retailer using a persistent Windows device ID, according to a newly unsealed federal complaint. Microsoft records tied that ID first to the account the attackers used

Security securityhackingvulnerabilities
The Hacker News Jul 7 Score 0.7482330180555555

Writer AI Flaw Could Let Agent Previews Leak Session Tokens Across Tenants

Cybersecurity researchers have disclosed details of a now-patched critical session isolation vulnerability in Writer, an enterprise generative artificial intelligence (AI) platform, that could result in cross-tenant compromise. The one-click vulnerability has

Security securityhackingvulnerabilities
The Hacker News Jul 7 Score 0.7449788513888889

What Changes When Your Software Supply Chain Includes AI Writing Your Code?

Software supply chain security was hard enough. Then AI joined the build pipeline. For five years, "software supply chain security" meant one question: what's in your code? Which open-source packages, which versions, which transitive dependencies three layers

Security securityhackingvulnerabilities
The Hacker News Jul 7 Score 0.7411135736111111

Suspected China-Aligned Hackers Exploit Roundcube Flaws Against Universities

A suspected China-aligned threat activity cluster has been observed exploiting Roundcube webmail software belonging to physics and engineering departments of U.S. and Canadian universities as part of a new campaign. The activity involves the exploitation of no

Security securityhackingvulnerabilities
The Hacker News Jul 7 Score 0.7369450550925926

CERT/CC Warns of Hidden Admin Backdoor in Tenda Router Firmware

Several versions of firmware released by Chinese network device manufacturer Tenda have been found to embed an undocumented authentication backdoor that enables administrative access to the devices' web management interfaces, the CERT Coordination Center (CERT

Security securityhackingvulnerabilities
Schneier on Security Jul 3 Score 0.7345738152777777

Flock Cameras Can Surveil Cars Without License Plates

This is from a 2024 company presentation : Officers can also tap into data showing a car's decals, bumper stickers, back and top racks—along with temporary and unique state tags. Flock calls it a "Vehicle Fingerprint" and it's touted as a way for law enf

Security securitycryptographypolicy

2026-07-06 09:12:33 +0000

2026-07-06

17 items
Krebs on Security Jul 2 Score 0.8320874018518519

FBI Seizes NetNut Proxy Platform, Popa Botnet

The Federal Bureau of Investigation (FBI) said today it worked with industry partners to seize hundreds of domains associated with NetNut, a sprawling residential proxy service operated by the publicly-traded Israeli company Alarum Technologies [NASDAQ: ALAR].

Security securitycybercrimebreaches
BleepingComputer Jul 5 Score 0.7934017314814815

Flipper Zero firmware development continues with community help

Flipper Devices says development of the Flipper Zero firmware will continue, albeit with a smaller internal team and greater reliance on community contributions. [...]

Security securitymalwarevulnerabilities
CyberScoop Jul 6 Score 0.7496554175925926

Finding vulnerabilities was never the hard part

AI is surfacing vulnerabilities at a scale the industry has never seen, and most organizations have no way to determine which ones actually matter. The post Finding vulnerabilities was never the hard part appeared first on CyberScoop .

Security securitypolicygovernment
The Hacker News Jul 6 Score 0.7494026560185185

New TrojPix Attack Leaks Data From Air-Gapped Systems via Video Cable Emissions

Researchers at Shandong University have shown a fast new way to pull data off computers that are cut off from every network. The technique, called TrojPix, tweaks on-screen pixels in ways the eye cannot see, so that the video cable carrying them

Security securityhackingvulnerabilities
The Hacker News Jul 6 Score 0.7483651560185185

New Java-Based QuimaRAT MaaS Built to Run on Windows, Linux, and macOS

Cybersecurity researchers have flagged a novel Java-based remote access trojan (RAT) called QuimaRAT that's capable of targeting Windows, Linux, and macOS environments. According to LevelBlue, the cross-platform malware is advertised under a malware-as-a-servi

Security securityhackingvulnerabilities
The Hacker News Jul 6 Score 0.7470952486111111

Opera GX Flaw Let Malicious Sites Auto-Install Mods to Steal Data From Visited Pages

Researchers found a flaw in Opera GX, the gaming-focused version of the Opera browser, that let a malicious website silently install a browser add-on and use it to lift specific data from the pages a victim visits. In a proof of concept, they reconstructe

Security securityhackingvulnerabilities
Schneier on Security Jul 2 Score 0.7433147129629629

Cybersecurity Mission Creep in the US

Interesting paper: " Cybersecurity Mission Creep ." Abstract: Cybersecurity is experiencing mission creep. Policymakers are casting more and more problems as issues of cybersecurity. So reframed, wildly different policy issues, from misinformation, to child so

Security securitycryptographypolicy
Risky Bulletin Jul 6 Score 0.7419180685185185

Risky Bulletin: EU official’s phone infected with Pegasus

A European MP’s phone was infected by Pegasus spyware, Android drops its PIN guessing limit from 1,800 attempts to 20, Alibaba bans employees from using Claude at work, and there’s a new vulnerability in the Linux kernel. Show notes Risky Bulletin: Android dro

Security securitynewspodcastintelligence
BleepingComputer Jul 3 Score 0.6923540458333334

Claude Fable 5 isn’t permanently leaving subscriptions, Anthropic says

Anthropic says Claude Fable 5 won't be accessible via Claude subscriptions after July 7, but it's not a permanent change, and the company expects the model to return outside the usage-based plan soon. [...]

Security securitymalwarevulnerabilities
Infosecurity Magazine Jul 6 Score 0.6738219708333334

Researchers Claim First Fully Agentic Ransomware: JadePuffer

Researchers have revealed JadePuffer, the first agentic AI-powered ransomware campaign, highlighting how autonomous agents can automate cyber-attacks

Security securityenterprisecompliance
CISA Cybersecurity Advisories Jul 2 Score 0.6696553375000001

ST Engineering iDirect iQ-Series Terminals

View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to gain unauthorized access to device information or cause a denial-of-service condition. The following versions of ST Engineering iDirect iQ-Series Terminals are affect

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jul 2 Score 0.6696553375000001

Gardyn IoT Hub

View CSAF Summary Successful exploitation of these vulnerabilities could allow unauthenticated users to access and control IoT Hub managed devices. The following versions of Gardyn IoT Hub are affected: Home Firmware Studio Firmware Cloud API CVSS Vendor Equip

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jul 2 Score 0.6696553375000001

CubeSpace CW0057 Reaction Wheel

View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to upload arbitrary malicious firmware to the device. The following versions of CubeSpace CW0057 Reaction Wheel are affected: CW0057 Reaction Wheel CVSS Vendor Equipment Vu

Security securitycisaadvisoriesvulnerabilities
Schneier on Security Jun 29 Score 0.6314693425925925

Factoring RSA Keys with Many Zeros

Interesting research on a new class of weak RSA keys: keys with lots of zeros. It turns out that these keys are out in the wild. The badkeys project is an open-source service that checks public keys for known vulnerabilities. While developing this tool, Hanno

Security securitycryptographypolicy

2026-07-05 08:20:50 +0000

2026-07-05

17 items
BleepingComputer Jul 4 Score 0.7948884037037037

JadePuffer ransomware used AI agent to automate entire attack

Researchers identified what they believe is the first documented case of a ransomware operation, JadePuffer, conducted entirely by a large language model (LLM) agent. [...]

Security securitymalwarevulnerabilities
Schneier on Security Jul 1 Score 0.7442425662037035

Papa Johns Surveillance-Based Advertising

Papa Johns is spying on people's buying activities to predict when they are low on food: The pizza chain recently tapped NBCUniversal, Instacart and the dentsu-owned media agency Carat for help reaching consumers when they're low on groceries—and thus mo

Security securitycryptographypolicy
The Hacker News Jul 4 Score 0.7174230958333333

U.S. Government Entity Paid Kairos $1 Million in Data-Theft Extortion Case

A U.S. government entity paid about $1 million to keep stolen files from being leaked, according to a new case study by Rakesh Krishnan for Ransom-ISAC, built on a leaked negotiation chat and the blockchain trail the payment left. The odd part: the group

Security securityhackingvulnerabilities
CISA Cybersecurity Advisories Jul 1 Score 0.6710929347222223

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-45659 Microsoft SharePoint Server Deserialization of Untrusted Data Vulnerability This type of vulnerability is a fre

Security securitycisaadvisoriesvulnerabilities
SANS Internet Storm Center Jul 1 Score 0.659713375

Why Ask Credentials If There Are Secret Codes?, (Wed, Jul 1st)

This morning, an interesting phishing email hit my mailbox. It targets Metamask[1], a cryptocurrency wallet, available as a browser extension and a mobile app, that lets users store, send, and receive crypto money. It&#x27s pretty popular, so a juicy

Security securitythreatsiocs
SecurityWeek Jul 3 Score 0.6369262462962962

Agentic AI Used to Conduct Ransomware Attack via Langflow

Attack demonstrates how LLM agents can combine known exploitation techniques with real-time reasoning to automate complex, multi-stage intrusions. The post Agentic AI Used to Conduct Ransomware Attack via Langflow appeared first on SecurityWeek .

Security securityindustryvulnerabilities
SecurityWeek Jul 3 Score 0.6352595796296295

Medtronic Data Breach Impacts 3.8 Million People

In April, ShinyHunters accessed the company’s corporate IT systems and stole patients’ personal and medical information. The post Medtronic Data Breach Impacts 3.8 Million People appeared first on SecurityWeek .

Security securityindustryvulnerabilities
SecurityWeek Jul 3 Score 0.6344262462962962

Alleged Scattered Spider Hacker Extradited to US

Prosecutors say 19-year-old Peter Stokes was a member of Scattered Spider, the hacking group linked to more than 100 network intrusions and over $100 million in ransom payments. The post Alleged Scattered Spider Hacker Extradited to US appeared first on Securi

Security securityindustryvulnerabilities
SecurityWeek Jul 3 Score 0.6322975425925925

Google, FBI Disrupt NetNut Residential Proxy Network Powered by Millions of Devices

NetNut rented access to millions of compromised devices, allowing cybercriminals and nation-state actors to mask their identities during attacks. The post Google, FBI Disrupt NetNut Residential Proxy Network Powered by Millions of Devices appeared first on Sec

Security securityindustryvulnerabilities
CISA Cybersecurity Advisories Jun 30 Score 0.6310929347222223

Schneider Electric EasyLogic T150 and Saitel DP RTU

View CSAF Summary Successful exploitation of these vulnerabilities can allow an attacker to cause unauthorized access and exposure of sensitive information when the unauthenticated attacker accesses credentials stored within firmware or system files. The follo

Security securitycisaadvisoriesvulnerabilities
SANS Internet Storm Center Jun 30 Score 0.6269666157407408

June 2026 Apple Updates, (Tue, Jun 30th)

Apple released updates for iOS/iPadOS, macOS, and Safari on Monday. There have been no updates for other Apple operating systems (visionOS, watchOS, tvOS). Usually, Apple updates all products at the same time.

Security securitythreatsiocs
Risky Bulletin Jul 2 Score 0.6245109254629629

Srsly Risky Biz: America won't beat the distillation ecosystem

Tom Uren and James Wilson talk about Chinese AI labs stealing the special sauce of American AI models in ‘distillation attacks’. These attacks are fed by a grey market in which Chinese consumers buy access to American models, where one of the byproducts is log

Security securitynewspodcastintelligence

2026-07-04 04:01:06 +0000

2026-07-04

17 items
Schneier on Security Jul 3 Score 0.8720649574074073

Flock Cameras Can Surveil Cars Without License Plates

This is from a 2024 company presentation : Officers can also tap into data showing a car's decals, bumper stickers, back and top racks—along with temporary and unique state tags. Flock calls it a "Vehicle Fingerprint" and it's touted as a way for law enf

Security securitycryptographypolicy
BleepingComputer Jul 3 Score 0.8080274722222223

NetNut proxy network disrupted, 2 million infected devices cut off

A joint operation involving Google has disrupted NetNut, a residential proxy network that gave access to millions of compromised Android devices, including smart TVs and streaming boxes. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jul 3 Score 0.8019802500000001

ARToken PhaaS exposes EvilTokens' Microsoft 365 phishing toolkit

A new phishing-as-a-service (PhaaS) platform dubbed "ARToken" appears to operate as an affiliate of the EvilTokens phishing platform, giving researchers a glimpse into an extensive toolkit designed to compromise Microsoft 365. [...]

Security securitymalwarevulnerabilities
Schneier on Security Jun 30 Score 0.753468661111111

The Realities of AI Video Surveillance

The Financial Times has a good article on how AI is changing the capabilities of video surveillance, with information from both Israel/Iran and Russia. I wrote about this sort of thing a few years ago, how AI enables mass spying in the way that computers and n

Security securitycryptographypolicy
The Hacker News Jul 3 Score 0.7371787898148148

Unpatched Flaws Disclosed in Filesystem Bundled Into Millions of Embedded Devices

Security firm runZero has disclosed seven vulnerabilities in FatFs, a small filesystem library that lets a device read and write the FAT and exFAT formats used on USB drives and SD cards. The flaws matter because FatFs is nearly everywhere. It s

Security securityhackingvulnerabilities
The Hacker News Jul 3 Score 0.7360815675925926

New "Bad Epoll" Linux Kernel Flaw Lets Unprivileged Users Gain Root, Hits Android

A newly disclosed Linux kernel flaw called Bad Epoll (CVE-2026-46242) lets an ordinary user with no special access take full control of a machine as root. It affects Linux desktops, servers, and Android, and a fix is out. Bad Epoll sits in the same small stret

Security securityhackingvulnerabilities
The Hacker News Jul 3 Score 0.7348422157407407

New Avalon Malware Framework Packs CrownX Ransomware Capabilities

Cybersecurity researchers have discovered a previously undocumented modular malware framework codenamed Avalon that's distributed by means of a multi-stage phishing chain capable of bypassing traditional security controls. Avalon combines credential collection

Security securityhackingvulnerabilities
The Hacker News Jul 3 Score 0.7301713824074074

North Korea-Linked npm Packages Mimic Rollup Polyfills to Steal Developer Secrets

Threat actors with ties to North Korea have been linked to a fresh set of malicious npm packages that masquerade as Rollup polyfill tooling to facilitate remote access and data theft. According to JFrog, the packages "rollup-packages-polyfill-core" and "rollup

Security securityhackingvulnerabilities
The Hacker News Jul 3 Score 0.7259852712962963

Armored Likho Targets Government Agencies, Power Sector with BusySnake Stealer

A previously undocumented threat actor known as Armored Likho has been attributed to cyber attacks targeting government agencies and the electric power sector across Russia, Brazil, and Kazakhstan. "Armored Likho blends financially motivated campaigns targetin

Security securityhackingvulnerabilities
CyberScoop Jul 3 Score 0.7116366861111111

Someone infected a spyware probe overseer with spyware

Citizen Lab says the phone of a member of Europe’s PEGA Committee was infected twice with Pegasus, the NSO Group spyware that gave the panel its name. The post Someone infected a spyware probe overseer with spyware appeared first on CyberScoop .

Security securitypolicygovernment
Risky Bulletin Jul 3 Score 0.7100887708333333

Risky Bulletin: FatFs bugs enable physical access attacks on a load of devices

FatFs bugs enable physical access attacks on industrial equipment, a clever password spraying attack bypasses M365 MFA, an AI agent is deploying ransomware in live attacks, and a webinar platform sues two security firms over bad IOCs. Show notes Risky Bulletin

Security securitynewspodcastintelligence
CyberScoop Jul 2 Score 0.6890927046296297

Alleged longstanding member of Scattered Spider extradited to US

Peter Stokes boasted on social media about the luxurious globetrotting life he enjoyed while he was still a child. The post Alleged longstanding member of Scattered Spider extradited to US appeared first on CyberScoop .

Security securitypolicygovernment

2026-07-03 04:01:09 +0000

2026-07-03

17 items
Krebs on Security Jul 2 Score 0.9607350393518519

FBI Seizes NetNut Proxy Platform, Popa Botnet

The Federal Bureau of Investigation (FBI) said today it worked with industry partners to seize hundreds of domains associated with NetNut, a sprawling residential proxy service operated by the publicly-traded Israeli company Alarum Technologies [NASDAQ: ALAR].

Security securitycybercrimebreaches
Schneier on Security Jul 2 Score 0.8719623342592592

Cybersecurity Mission Creep in the US

Interesting paper: " Cybersecurity Mission Creep ." Abstract: Cybersecurity is experiencing mission creep. Policymakers are casting more and more problems as issues of cybersecurity. So reframed, wildly different policy issues, from misinformation, to child so

Security securitycryptographypolicy
BleepingComputer Jul 3 Score 0.8210017453703704

Claude Fable 5 isn’t permanently leaving subscriptions, Anthropic says

Anthropic says Claude Fable 5 won't be accessible via Claude subscriptions after July 7, but it's not a permanent change, and the company expects the model to return outside the usage-based plan soon. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jul 3 Score 0.8196503560185185

Claude Fable relaunch disappoints users with nerfed performance

Claude Fable, the company's most powerful model, is now available to all users, but early impressions are disappointing, as it appears to be nowhere near the original release. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jul 2 Score 0.8038267449074075

Google loses final appeal to overturn €4.1 billion EU fine

Court of Justice of the European Union (CJEU) has dismissed Google's final appeal against a €4.1 billion ($4.7 billion) antitrust fine over the company's use of Android to promote its Chrome browser and search service. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jul 2 Score 0.7987415597222223

Microsoft fixes bug that removed Copilot buttons in Outlook

Microsoft has fixed a known issue causing the Copilot Chat or Copilot buttons in Classic Outlook to disappear for Windows users with the Copilot Chat (Basic) license. [...]

Security securitymalwarevulnerabilities
CISA Cybersecurity Advisories Jul 2 Score 0.7983030097222222

ST Engineering iDirect iQ-Series Terminals

View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to gain unauthorized access to device information or cause a denial-of-service condition. The following versions of ST Engineering iDirect iQ-Series Terminals are affect

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jul 2 Score 0.7983030097222222

Gardyn IoT Hub

View CSAF Summary Successful exploitation of these vulnerabilities could allow unauthenticated users to access and control IoT Hub managed devices. The following versions of Gardyn IoT Hub are affected: Home Firmware Studio Firmware Cloud API CVSS Vendor Equip

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jul 2 Score 0.7983030097222222

CubeSpace CW0057 Reaction Wheel

View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to upload arbitrary malicious firmware to the device. The following versions of CubeSpace CW0057 Reaction Wheel are affected: CW0057 Reaction Wheel CVSS Vendor Equipment Vu

Security securitycisaadvisoriesvulnerabilities
Schneier on Security Jun 29 Score 0.7601169638888888

Factoring RSA Keys with Many Zeros

Interesting research on a new class of weak RSA keys: keys with lots of zeros. It turns out that these keys are out in the wild. The badkeys project is an open-source service that checks public keys for known vulnerabilities. While developing this tool, Hanno

Security securitycryptographypolicy
Schneier on Security Jun 29 Score 0.7515127972222222

Robot Police Officers

We've taken one small step towards robot police officers: a drone capable of disarming a suspect: In a June 22 video posted on the Sacramento County Sheriff’s Office’s Instagram page, an officer wearing goggles can be seen operating a drone to retrieve a knife

Security securitycryptographypolicy
Unit 42 (Palo Alto Networks) Jul 2 Score 0.7399877782407407

How We Added WebAuthn to a Browser-Based RDP Client

A look inside the reverse-engineering journey of building the first RDP client outside of Windows to support WebAuthn redirection. The post How We Added WebAuthn to a Browser-Based RDP Client appeared first on Unit 42 .

Security securitythreat-researchmalware
Dark Reading Jul 2 Score 0.7358575958333333

Apple Reverses Age-Old Patch Policy to Keep Up With AI

Expect more compressed patching cycles from Apple going forward, as attackers leverage artificial intelligence to reduce time to exploit.

Security securityenterprisethreats
The Hacker News Jul 2 Score 0.7348058194444445

Google Disrupts NetNut Residential Proxy Network Spanning 2 Million Home Devices

Google has significantly degraded NetNut, one of the biggest networks that turns home devices into rented relays for other people's traffic. Working with the FBI, Lumen, and others, Google's Threat Intelligence Group (GTIG) said this week it had redu

Security securityhackingvulnerabilities

2026-07-02 04:01:11 +0000

2026-07-02

17 items
Schneier on Security Jul 1 Score 0.8714526319444443

Papa Johns Surveillance-Based Advertising

Papa Johns is spying on people's buying activities to predict when they are low on food: The pizza chain recently tapped NBCUniversal, Instacart and the dentsu-owned media agency Carat for help reaching consumers when they're low on groceries—and thus mo

Security securitycryptographypolicy
BleepingComputer Jul 1 Score 0.8143419467592593

FortiBleed credential-theft campaign linked to Lynx ransomware

The massive FortiBleed credential theft campaign has been linked to the INC and Lynx ransomware operations, suggesting the stolen Fortinet credentials were intended to fuel future network intrusions. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jul 1 Score 0.8118646319444445

New ChocoPoC malware targets researchers via trojanized PoC exploits

Multiple weaponized proof-of-concept (PoC) exploits on GitHub were found delivering a Python-based remote access trojan (RAT) named ChocoPoC that can execute commands and steal sensitive data in a campaign believed to target cybersecurity researchers. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jul 1 Score 0.8075354652777779

DHS confirms hackers breached HSIN info-sharing platform

The Department of Homeland Security is investigating a cyberattack that compromised the Homeland Security Information Network (HSIN), a sensitive information-sharing platform used by federal, state, local, and private-sector partners. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jul 1 Score 0.8064799097222223

Webinar: Why traditional email security is no longer enough

Modern phishing, business email compromise, and account takeover attacks increasingly exploit trusted identities and legitimate business workflows, making them harder for traditional email defenses to detect. This webinar explores how behavioral AI can help or

Security securitymalwarevulnerabilities
CISA Cybersecurity Advisories Jul 1 Score 0.7983029907407408

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-45659 Microsoft SharePoint Server Deserialization of Untrusted Data Vulnerability This type of vulnerability is a fre

Security securitycisaadvisoriesvulnerabilities
SANS Internet Storm Center Jul 1 Score 0.7869231930555556

Why Ask Credentials If There Are Secret Codes?, (Wed, Jul 1st)

This morning, an interesting phishing email hit my mailbox. It targets Metamask[1], a cryptocurrency wallet, available as a browser extension and a mobile app, that lets users store, send, and receive crypto money. It&#x27s pretty popular, so a juicy

Security securitythreatsiocs
CISA Cybersecurity Advisories Jun 30 Score 0.7583029907407408

Frangoteam FUXA SCADA/HMI

View CSAF Summary Successful exploitation of this vulnerability could allow an unauthenticated remote attacker to enumerate all user accounts and role assignments on a FUXA SCADA/HMI instance. The following versions of Frangoteam FUXA SCADA/HMI are affected: F

Security securitycisaadvisoriesvulnerabilities
Dark Reading Jul 1 Score 0.7362631120370371

And the Winner in Dominant Malware Delivery? ClickFix

Researchers say the highly effective social engineering technique is no longer the exception for malware attacks — it's now the rule.

Security securityenterprisethreats
The Hacker News Jul 1 Score 0.7360835939814815

Unpatched Argo CD Repo-Server Flaw Could Let Attackers Take Over Kubernetes Clusters

Argo CD, a widely used tool for deploying software to Kubernetes, has an unpatched flaw in its repo-server component that lets an unauthenticated attacker run code, provided they can reach the component's internal network port. Synacktiv, which found the bug,

Security securityhackingvulnerabilities
The Hacker News Jul 1 Score 0.7357507236111112

19-Year-Old Scattered Spider Suspect Extradited to Face U.S. Hacking Charges

A teenager accused of belonging to the hacking group Scattered Spider has been extradited from Finland to face U.S. charges of conspiracy, computer intrusion, and fraud, the U.S. Department of Justice announced on July 1. Peter Stokes, 19, a dual U.S

Security securityhackingvulnerabilities
CyberScoop Jul 1 Score 0.7356206666666667

Researchers spot exploitation of another critical Oracle defect

The defect impacts a popular collection of business applications that attackers have hit before in widespread attack sprees. The post Researchers spot exploitation of another critical Oracle defect appeared first on CyberScoop .

Security securitypolicygovernment
The Hacker News Jul 1 Score 0.7331113717592592

SEO-Poisoned Software Sites Abuse ScreenConnect to Deploy AsyncRAT

Unknown threat actors are leveraging the ScreenConnect remote access tool as a way to deploy and execute AsyncRAT. Kaspersky said the activity is part of a "massive, multi-domain, multi-language" campaign that distributes malicious installer archives hosted on

Security securityhackingvulnerabilities

2026-07-01 04:01:08 +0000

2026-07-01

17 items
Schneier on Security Jun 30 Score 0.8734681120370369

The Realities of AI Video Surveillance

The Financial Times has a good article on how AI is changing the capabilities of video surveillance, with information from both Israel/Iran and Russia. I wrote about this sort of thing a few years ago, how AI enables mass spying in the way that computers and n

Security securitycryptographypolicy
BleepingComputer Jul 1 Score 0.819281512962963

Anthropic to restore Claude Fable access on Wednesday

Anthropic has confirmed that the Department of Commerce has lifted export controls on Claude's two most powerful models, Fable 5 and Mythos 5. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 30 Score 0.8147028092592593

New BioShocking attack manipulates AI browser into data theft

A new prompt injection attack dubbed "BioShocking" could trick AI-powered browsers into treating real-world risky actions as part of a fictional scenario, causing them to ignore any safety guardrails. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 30 Score 0.8138611425925927

Microsoft accelerates quantum-safe roadmap as risks grow

Microsoft announced today that it is accelerating its quantum-safe security roadmap, saying advances in quantum computing are bringing the need to replace today's encryption standards sooner than previously expected. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 30 Score 0.8133838277777778

Malicious PyPI packages give hackers control of Telegram bot servers

A campaign active since last November has been targeting Python developers building Telegram bots with trojanized Pyrogram forks that allow attackers to read arbitrary files on compromised servers. [...]

Security securitymalwarevulnerabilities
CISA Cybersecurity Advisories Jun 30 Score 0.7983027037037038

StoneFly Storage Concentrator

View CSAF Summary Successful exploitation of these vulnerabilities could allow attackers to gain broad unauthorized access, execute arbitrary commands with root privileges, steal sensitive data, and perform actions on behalf of legitimate users across intercon

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 30 Score 0.7983027037037038

Schneider Electric EcoStruxure IT Data Center Expert

View CSAF Summary Schneider Electric is aware of a vulnerability in its EcoStruxure™ IT Data Center Expert. The EcoStruxure™ IT Data Center Expert product is a scalable monitoring software that collects, organizes, and distributes critical device information p

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 30 Score 0.7983027037037038

Mitsubishi Electric MELSOFT Update Manager SW1DND-UDM-M

View CSAF Summary Successful exploitation of these vulnerabilities could allow a local attacker to tamper with or destroy information in the affected product, cause a denial-of-service condition in the affected product, or execute arbitrary code when a special

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 30 Score 0.7983027037037038

OFFIS DCMTK Toolkit

View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to write files, access unauthorized information, exhaust memory, or crash affected DCMTK client or server processes. The following versions of OFFIS DCMTK Toolkit are af

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 30 Score 0.7983027037037038

Schneider Electric EasyLogic T150 and Saitel DP RTU

View CSAF Summary Successful exploitation of these vulnerabilities can allow an attacker to cause unauthorized access and exposure of sensitive information when the unauthenticated attacker accesses credentials stored within firmware or system files. The follo

Security securitycisaadvisoriesvulnerabilities
SANS Internet Storm Center Jun 30 Score 0.7941761731481483

June 2026 Apple Updates, (Tue, Jun 30th)

Apple released updates for iOS/iPadOS, macOS, and Safari on Monday. There have been no updates for other Apple operating systems (visionOS, watchOS, tvOS). Usually, Apple updates all products at the same time.

Security securitythreatsiocs
Unit 42 (Palo Alto Networks) Jul 1 Score 0.7449745148148148

Phantom Squatting: AI-Hallucinated Domains as a Software Supply Chain Vector

Attackers can exploit LLM domain hallucinations through phantom squatting to target supply chains. Read the analysis to learn more. The post Phantom Squatting: AI-Hallucinated Domains as a Software Supply Chain Vector appeared first on Unit 42 .

Security securitythreat-researchmalware
CyberScoop Jun 30 Score 0.7395981527777777

Citrix patches a new NetScaler flaw with echoes of CitrixBleed

The bulletin includes six NetScaler issues, but attention is centered on a high-severity flaw with similarities to earlier actively exploited bugs. The post Citrix patches a new NetScaler flaw with echoes of CitrixBleed appeared first on CyberScoop .

Security securitypolicygovernment

2026-06-30 04:01:07 +0000

2026-06-30

17 items
Schneier on Security Jun 29 Score 0.880117061574074

Factoring RSA Keys with Many Zeros

Interesting research on a new class of weak RSA keys: keys with lots of zeros. It turns out that these keys are out in the wild. The badkeys project is an open-source service that checks public keys for known vulnerabilities. While developing this tool, Hanno

Security securitycryptographypolicy
Schneier on Security Jun 29 Score 0.8715128949074074

Robot Police Officers

We've taken one small step towards robot police officers: a drone capable of disarming a suspect: In a June 22 video posted on the Sacramento County Sheriff’s Office’s Instagram page, an officer wearing goggles can be seen operating a drone to retrieve a knife

Security securitycryptographypolicy
BleepingComputer Jun 29 Score 0.812767987962963

Nissan discloses employee data breach linked to Oracle zero-day attacks

Nissan is warning that it suffered a data breach affecting current and former employees after threat actors exploited an Oracle PeopleSoft vulnerability in data theft attacks previously linked to the ShinyHunters extortion group. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 29 Score 0.8124828027777778

NAIC says public data stolen in ShinyHunters' PeopleSoft breach

The National Association of Insurance Commissioners (NAIC) says the ShinyHunters extortion group stole only publicly available data, outdated logs, and configuration files after breaching its systems by exploiting a zero-day vulnerability in an Oracle PeopleSo

Security securitymalwarevulnerabilities
BleepingComputer Jun 29 Score 0.8035730805555557

U.S. offers $10 million for hackers targeting WhatsApp, Signal users

The U.S. Department of State is offering up to $10 million for information that helps identify or locate members of the UNC5792 and UNC4221 hacker groups, which are linked to Russia's intelligence and military services. [...]

Security securitymalwarevulnerabilities
CISA Cybersecurity Advisories Jun 29 Score 0.7983030490740741

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-48558 SimpleHelp Authentication Bypass Vulnerability This type of vulnerability is a frequent attack vector for malic

Security securitycisaadvisoriesvulnerabilities
Schneier on Security Jun 26 Score 0.7611068763888889

Meta Is Testing Facial Recognition for Police and Military

We know that ICE wants to deploy eyeglasses with facial recognition that can identify people in real time. Turns out Meta is prototyping the feature with a Pentagon supplier. (Alternate news story.)

Security securitycryptographypolicy
Schneier on Security Jun 26 Score 0.751729561574074

One Million Passports Leaked Online

A database of almost a million passports from around the world was leaked online. Note what happened. A high-value credential—a passport—was used in an ancillary low-value authentication system: ID verification for cannabis dispensaries. And it's t

Security securitycryptographypolicy
Bellingcat Jun 29 Score 0.7409193416666666

Satellite Imagery Shows Scale of Venezuela Earthquake Damage

At least 1,719 people are reported to have died after two devastating earthquakes struck northwestern Venezuela last week. The final casualty count is expected to rise significantly. Some media outlets report resident’s growing frustration with the Venezuelan

Security securityosintinvestigations
Dark Reading Jun 29 Score 0.7391155004629629

'Djinn' Stealer Targets Cloud, AI Credentials

The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp, targeting credentials linking development and admin environments to wider enterprise systems.

Security securityenterprisethreats
CyberScoop Jun 29 Score 0.7391114569444445

Warner bill would create federally vetted list for secure, trustworthy AI agents

The bill empowers the FTC to create a registry for sellers of AI agent software certifying their privacy and cybersecurity protections. The post Warner bill would create federally vetted list for secure, trustworthy AI agents appeared first on CyberScoop .

Security securitypolicygovernment
Risky Bulletin Jun 29 Score 0.7371440925925926

Between Two Nerds: Set cyberspace ablaze

In this edition of Between Two Nerds, Tom Uren and The Grugq discuss whether cyber organisations should actually be separated from Signals Intelligence organisations. The Grugq argues that having cyber expertise subordinate to intelligence collection means tha

Security securitynewspodcastintelligence

2026-06-29 04:01:14 +0000

2026-06-29

17 items
BleepingComputer Jun 28 Score 0.8020177384259259

Data breach exposes up to 14.2 million email logins at six ISPs

Japanese telecommunications operator KDDI Corporation disclosed a data breach where threat actors gained access to one of its email systems used by five other internet service providers (ISPs) in the country. [...]

Security securitymalwarevulnerabilities
Schneier on Security Jun 25 Score 0.7617256074074072

AI and Liability

Earlier this month, a German court ruled that Google is liable for its AI search summaries. Rejecting defenses like "users can check for themselves," and that they generally know "that information generated with AI should not be blindly trusted," the court hel

Security securitycryptographypolicy
Schneier on Security Jun 25 Score 0.7523010703703703

Interesting Paper Exploring Prompt Injection

This is a fascinating explotation of how LLMs fall for prompt injection attacks. It turns out that they learn to recognize the style of text in different role/instruction blocks, and not just the tags. Their conclusion: Role tags were a formatting trick that b

Security securitycryptographypolicy
Risky Bulletin Jun 29 Score 0.7459673717592593

Risky Bulletin: White House asks OpenAI to restrict GPT 5.6

The White House asks OpenAI to keep a tight grip on ChatGPT 5.6, the US Secret Service made some appalling OpSec mistakes, AMD has reintroduced a CPU security feature after consumer backlash, and an Iranian APT operator has been arrested in Montenegro. Show no

Security securitynewspodcastintelligence
Risky Bulletin Jun 29 Score 0.7452678347222222

Sponsored: Corelight’s blueprint for AI-era defence

In this sponsored interview James Wilson chats with Corelight’s VP of Product Vijit Nair about defence strategies for the AI era. When agents can find and exploit vulnerabilities at machine speed, you need to balance between proactive and reactive measures. On

Security securitynewspodcastintelligence
CISA Cybersecurity Advisories Jun 25 Score 0.6783017060185186

OHIF Viewers DICOM

View CSAF Summary Successful exploitation of this vulnerability in a custom integration version could allow an attacker to steal an authenticated clinician's token via a crafted link. The following versions of OHIF Viewers DICOM are affected: OHIF DICOM W

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 25 Score 0.6783017060185186

Delta Electronics DTM Soft

View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code. The following versions of Delta Electronics DTM Soft are affected: DTMSoft vers:all/*  CVSS Vendor Equipment Vulnerabilities v3 7.8 Delta El

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 25 Score 0.6783017060185186

Daktronics Controller Firmware

View CSAF Summary Successful exploitation of these vulnerabilities could could provide an unauthenticated user with complete root-level access and control of the system. The following versions of Daktronics Controller Firmware are affected: VFC-DMP-5000 VFC-DM

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 25 Score 0.6783017060185186

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation.   CVE-2026-12569 PTC Windchill and FlexPLM Improper Input Validation Vulnerability CVE-2026-20230 Cisco Unified Communi

Security securitycisaadvisoriesvulnerabilities
Unit 42 (Palo Alto Networks) Jun 25 Score 0.6199924194444444

CL-STA-1062 Targets Southeast Asian Governments and Critical Infrastructure

Government entities and critical infrastructure were targeted for espionage in SE Asia by attackers using a hybrid toolkit, including custom TinyRCT backdoor. The post CL-STA-1062 Targets Southeast Asian Governments and Critical Infrastructure appeared first o

Security securitythreat-researchmalware
CyberScoop Jun 25 Score 0.6104222541666666

Federal court rules Trump election-focused executive order illegal

Provisions setting up federal voter lists for each state and restricting mail ballots through USPS were declared unconstitutional. The post Federal court rules Trump election-focused executive order illegal appeared first on CyberScoop .

Security securitypolicygovernment
SecurityWeek Jun 26 Score 0.6099683009259258

In Other News: Chinese Mythos-Like AI, Tata Electronics Breach, Snyk Layoffs

Other noteworthy stories that might have slipped under the radar: Russia used Cellebrite to hack activist’s phone, Five Eyes issue urgent AI threat warning, macOS Gaslight backdoor, Scattered Spider guilty pleas. The post In Other News: Chinese Mythos-Like AI,

Security securityindustryvulnerabilities
CyberScoop Jun 25 Score 0.6071736430555555

Minnesota man known as ‘Snoopy’ sentenced in DraftKings hack

Nathan Austad, who sold access to compromised accounts through a criminal storefront, is the third and final defendant sentenced in the 2022 breach The post Minnesota man known as ‘Snoopy’ sentenced in DraftKings hack appeared first on CyberScoop .

Security securitypolicygovernment

2026-06-28 04:01:16 +0000

2026-06-28

17 items
BleepingComputer Jun 27 Score 0.8022633513888889

Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious payload that remains invisible to security scanners, AI agents, and human reviewers. [...]

Security securitymalwarevulnerabilities
Bellingcat Jun 27 Score 0.7333737453703704

Poster Boy: Sanctioned Kinahan Cartel Lieutenant Found Playing Padel in Dubai

This article is the result of a collaboration with The Sunday Times. You can find their corresponding piece here. Every Friday evening, the brochure says, players can compete to win cash prizes in one of the world's fastest-growing racquet sports. The padel cl

Security securityosintinvestigations
The Hacker News Jun 27 Score 0.7238472893518518

OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber Safeguards

OpenAI on Friday released three versions of GPT-5.6, called Sol, Terra, and Luna, as a limited preview to a small number of companies as part of an ongoing engagement with the U.S. government. While Sol is the latest flagship model and the most powerful, Terra

Security securityhackingvulnerabilities
The Hacker News Jun 26 Score 0.6905639560185185

Chinese-Speaking APT Deploys New TinyRCT Backdoor in Southeast Asia Campaign

A Chinese-speaking advanced persistent threat (APT) actor has been linked to a new custom backdoor called TinyRCT as part of cyber attacks aimed at government entities and critical infrastructure in Southeast Asia. The activity, particularly aimed at state-own

Security securityhackingvulnerabilities
Dark Reading Jun 26 Score 0.6899689208333333

AI Won't Wipe-Out Entry-Level Cybersecurity Jobs

Instead of eliminating jobs for early-career cyber pros, AI is creating new opportunities for candidates with strong human decision-making skills.

Security securityenterprisethreats
SecurityWeek Jun 27 Score 0.6861868444444443

Chinese Framework Powers 200,000 Scam Sites

Threat actors are selling investment scam templates created using the legitimate DCloud Uni-App toolkit. The post Chinese Framework Powers 200,000 Scam Sites appeared first on SecurityWeek .

Security securityindustryvulnerabilities
Risky Bulletin Jun 26 Score 0.6710335319444445

Risky Bulletin: Operation Endgame dismantles Amadey and StealerC

Law enforcement dismantles two more malware operations, Japan’s army used infected USB drives, Anthropic accuses Alibaba of distillation attacks, and Australia finds “digital dynamite” on critical networks. Show notes Risky Bulletin: Law enforcement agencies a

Security securitynewspodcastintelligence
SANS Internet Storm Center Jun 24 Score 0.6691094064814815

Linux Process Name Masquerading, (Wed, Jun 24th)

In a previous diary, I talked about stack strings[1] with a practical example of them. Since my SEC670 class, Iâ&&#x23&#

Security securitythreatsiocs
CyberScoop Jun 25 Score 0.6565043189814814

FCC passes new cybersecurity rules for emergency systems, undersea cables

The new rules would overhaul national emergency systems to protect against hijacking and update federal security review rules for undersea cables providers The post FCC passes new cybersecurity rules for emergency systems, undersea cables appeared first on Cyb

Security securitypolicygovernment
SecurityWeek Jun 26 Score 0.6514623074074073

Amazon Q Flaw Enabled Cloud Credential Theft via Malicious Repositories

AWS has patched the vulnerability and published its own advisory to inform customers about the potential impact. The post Amazon Q Flaw Enabled Cloud Credential Theft via Malicious Repositories appeared first on SecurityWeek .

Security securityindustryvulnerabilities
SecurityWeek Jun 26 Score 0.6508451777777777

More Klue Breach Victims Identified as Hackers Get Hacked

Roughly two dozen companies have notified their customers of the Klue-Salesforce incident impact. The post More Klue Breach Victims Identified as Hackers Get Hacked appeared first on SecurityWeek .

Security securityindustryvulnerabilities

2026-06-27 04:01:08 +0000

2026-06-27

17 items
Schneier on Security Jun 26 Score 0.8811066449074073

Meta Is Testing Facial Recognition for Police and Military

We know that ICE wants to deploy eyeglasses with facial recognition that can identify people in real time. Turns out Meta is prototyping the feature with a Pentagon supplier. (Alternate news story.)

Security securitycryptographypolicy
Schneier on Security Jun 26 Score 0.8717293300925925

One Million Passports Leaked Online

A database of almost a million passports from around the world was leaked online. Note what happened. A high-value credential—a passport—was used in an ancillary low-value authentication system: ID verification for cannabis dispensaries. And it's t

Security securitycryptographypolicy
Krebs on Security Jun 23 Score 0.8353255583333334

Scattered Spider Hackers Plead Guilty on Day 1 of Trial

Two men pleaded guilty in the United Kingdom this week to criminal charges stemming from an August 2024 cyberattack that crippled Transport for London, the entity responsible for the public transport network in the Greater London area. The duo were key members

Security securitycybercrimebreaches
BleepingComputer Jun 26 Score 0.8151442087962963

FBI: Russian hackers now target Signal backup recovery keys

The FBI and CISA are warning that a phishing campaign targeting Signal users tied to Russian intelligence services has evolved to steal Signal Backup Recovery Keys, allowing attackers to access victims' historical messages. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 26 Score 0.8111668939814816

CISA sets urgent deadline to fix Cisco flaw exploited in attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is giving federal agencies until Sunday to patch a vulnerability in Cisco Unified Communications Manager Server that is being actively exploited. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 26 Score 0.8084196717592593

Polymarket customers lose $3 million in supply-chain attack

Polymarket says it will fully reimburse customers who lost an estimated $3 million after hackers injected a malicious script into the platform's frontend following a breach at a third-party vendor. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 26 Score 0.8080006902777779

Cybersecurity firms targeted by fraudulent OpenAI organization invites

Threat actors are creating OpenAI tenants that impersonate legitimate companies and inviting employees to join them, in what appears to be a ploy to trick targets into submitting sensitive company information in chats and projects. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 26 Score 0.8016692087962963

Your First GRC Agent: A Red Teamer's Walkthrough

AI won't replace GRC analysts, but it can eliminate much of the repetitive work they do. Anecdotes walks through building an agent that continuously monitors controls, identifies evidence gaps, and opens remediation tasks. [...]

Security securitymalwarevulnerabilities
CISA Cybersecurity Advisories Jun 26 Score 0.7983026550925927

Russian Intelligence Services Continue to Target Commercial Messaging Applications

CISA and the Federal Bureau of Investigation (FBI) issued an updated Public Service Announcement (PSA) warning of Russian Intelligence Services (RIS) cyber threat actors targeting commercial messaging applications in ongoing phishing campaigns. This PSA is an

Security securitycisaadvisoriesvulnerabilities
The Hacker News Jun 26 Score 0.7360384643518518

FBI Warns Russian Intelligence Hackers Target Signal Backup Recovery Keys

The FBI and CISA have updated their March warning about Russian intelligence phishing Signal accounts, and the operators have added a step: they now coax targets into handing over their Signal Backup Recovery Key. Hand it over once, and the attacker

Security securityhackingvulnerabilities
CyberScoop Jun 26 Score 0.7354244685185185

ATF cancels controversial commercial geolocation contract

The agency told CyberScoop the tool was a pilot that didn’t meet their needs. Members of Congress say it was accessed for hundreds of active cases. The post ATF cancels controversial commercial geolocation contract appeared first on CyberScoop .

Security securitypolicygovernment
Unit 42 (Palo Alto Networks) Jun 26 Score 0.7351235004629629

Threat Brief: Mitigating Large-Scale Credential Attacks

We provide guidance for preparing for and mitigating large-scale credential attacks, focusing on recent campaigns targeting security vendors' devices. The post Threat Brief: Mitigating Large-Scale Credential Attacks appeared first on Unit 42 .

Security securitythreat-researchmalware
The Hacker News Jun 26 Score 0.7337963347222223

New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks

A newly discovered cyber attack campaign has been observed delivering a previously undocumented malware family called SharkLoader that acts as a loader for deploying Cobalt Strike Beacon on compromised hosts. Kaspersky, which is tracking the activity under the

Security securityhackingvulnerabilities

2026-06-26 04:01:09 +0000

2026-06-26

17 items
Schneier on Security Jun 25 Score 0.8817265249999999

AI and Liability

Earlier this month, a German court ruled that Google is liable for its AI search summaries. Rejecting defenses like "users can check for themselves," and that they generally know "that information generated with AI should not be blindly trusted," the court hel

Security securitycryptographypolicy
Schneier on Security Jun 25 Score 0.8723019879629629

Interesting Paper Exploring Prompt Injection

This is a fascinating explotation of how LLMs fall for prompt injection attacks. It turns out that they learn to recognize the style of text in different role/instruction blocks, and not just the tags. Their conclusion: Role tags were a formatting trick that b

Security securitycryptographypolicy
BleepingComputer Jun 25 Score 0.8160168148148149

Poland busts SIM-swapping gang tied to millions in crypto theft

Authorities in Poland have arrested four members of an organized cybercrime group accused of breaching telecommunications partners and hijacking email accounts to carry out SIM-swapping attacks. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 25 Score 0.8112418148148148

Order-tracking app Shop abused to push callback phishing attacks

Threat actors are increasingly abusing Shop, the order-tracking app from Shopify, by adding fake purchase receipts in users' order histories to trick them into providing sensitive data or installing remote access software. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 25 Score 0.8091177407407408

Microsoft quietly extends free Windows 10 ESU support to October 2027

Microsoft has quietly extended its free Windows 10 Extended Security Updates (ESU) program for consumers by an additional year, allowing enrolled devices to continue receiving security updates until October 12, 2027. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 25 Score 0.8056172777777778

New macOS malware embeds fake errors to confuse AI analysis tools

A newly discovered macOS malware dubbed "Gaslight" is designed to confuse AI-assisted malware analysis tools by hiding prompt injection strings and fake debugging data within the executable. [...]

Security securitymalwarevulnerabilities
CISA Cybersecurity Advisories Jun 25 Score 0.7983027925925926

H.VIEW HV-500S6 IP Camera

View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to execute arbitrary code and upload malicious files to the affected device. The following versions of H.VIEW HV-500S6 IP Camera are affected: H.VIEW HV-500S6 IP Camera

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 25 Score 0.7983027925925926

OHIF Viewers DICOM

View CSAF Summary Successful exploitation of this vulnerability in a custom integration version could allow an attacker to steal an authenticated clinician's token via a crafted link. The following versions of OHIF Viewers DICOM are affected: OHIF DICOM Web Vi

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 25 Score 0.7983027925925926

Delta Electronics DTM Soft

View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code. The following versions of Delta Electronics DTM Soft are affected: DTMSoft vers:all/*  CVSS Vendor Equipment Vulnerabilities v3 7.8 Delta El

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 25 Score 0.7983027925925926

Daktronics Controller Firmware

View CSAF Summary Successful exploitation of these vulnerabilities could could provide an unauthenticated user with complete root-level access and control of the system. The following versions of Daktronics Controller Firmware are affected: VFC-DMP-5000 VFC-DM

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 25 Score 0.7983027925925926

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation.   CVE-2026-12569 PTC Windchill and FlexPLM Improper Input Validation Vulnerability CVE-2026-20230 Cisco Unified Communi

Security securitycisaadvisoriesvulnerabilities
Schneier on Security Jun 22 Score 0.7517172657407406

Professional Athletes and Wearables

I haven't thought about the privacy issues surrounding professional athletes and wearables. Wearables present serious privacy issues for "Average Joe" consumers, who are entrusting tech companies to safely store and protect their biometric data. Imagine the st

Security securitycryptographypolicy
Unit 42 (Palo Alto Networks) Jun 25 Score 0.7399935777777777

CL-STA-1062 Targets Southeast Asian Governments and Critical Infrastructure

Government entities and critical infrastructure were targeted for espionage in SE Asia by attackers using a hybrid toolkit, including custom TinyRCT backdoor. The post CL-STA-1062 Targets Southeast Asian Governments and Critical Infrastructure appeared first o

Security securitythreat-researchmalware
Dark Reading Jun 25 Score 0.7375870759259259

EdTech Attackers Shift From Schools to Their Software Suppliers

Educational institutions, the edtech companies they rely on, and, more concerningly, the challenges they pose for schools are the focus of the latest Reporters' Notebook video series.

Security securityenterprisethreats

2026-06-25 04:01:06 +0000

2026-06-25

17 items
Schneier on Security Jun 24 Score 0.8717246291666666

Embedding Forbidden Text in Spyware to Discourage AI Analysis

At least one malware developer is adding text about nuclear and biological weapons to their spyware, in an effort to stop automatic AI analysis. Details : The _index.js payload begins with a large JavaScript block comment containing fake system instructions an

Security securitycryptographypolicy
BleepingComputer Jun 24 Score 0.8148510125

DraftKings hacker 'Snoopy' sentenced to 18 months in prison

A 21-year-old using the alias "Snoopy" was sentenced to 18 months in prison for his role in hacking DraftKings accounts in the November 2022 cyberattack. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 24 Score 0.8141135125000001

Mandiant reveals how Cisco SD-WAN zero-day attacks gained root access

New details have been revealed on how hackers exploited a Cisco Catalyst SD-WAN vulnerability tracked as CVE-2026-20245 in zero-day attacks to create rogue root accounts on targeted devices. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 24 Score 0.8026158273148148

CISA warns of max severity Ubiquiti flaws exploited in attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning of hackers actively exploiting flaws in Ubiquity UniFi OS and Lantronix serial-to-ethernet servers. [...]

Security securitymalwarevulnerabilities
CISA Cybersecurity Advisories Jun 24 Score 0.7983032300925926

Using SASE in a Modern TIC 3.0 Solution

Using SASE in a Modern TIC 3.0 Solution CISA’s guidance, The Journey to Zero Trust – Using Secure Access Service Edge in a Modern TIC 3.0 Solution , details how the Trusted Internet Connections (TIC) 3.0 initiative is helping agencies modernize the way their u

Security securitycisaadvisoriesvulnerabilities
SANS Internet Storm Center Jun 24 Score 0.7891100185185186

Linux Process Name Masquerading, (Wed, Jun 24th)

In a previous diary, I talked about stack strings[1] with a practical example of them. Since my SEC670 class, Iâ&&#x23&#

Security securitythreatsiocs
CISA Cybersecurity Advisories Jun 23 Score 0.7583032300925927

Siemens SINEC INS

View CSAF Summary SINEC INS before V1.0 SP2 Update 6 is affected by multiple vulnerabilities. Siemens has released a new version for SINEC INS and recommends to update to the latest version. The following versions of Siemens SINEC INS are affected: SINEC INS v

Security securitycisaadvisoriesvulnerabilities
Dark Reading Jun 24 Score 0.737445787037037

2026 FIFA World Cup Faces Surge in Cyber Threats

Persistent cybercrime, social engineering, and infrastructure threats continue to plague the FIFA 2026 World Cup across the US, Canada, and Mexico.

Security securityenterprisethreats
Dark Reading Jun 24 Score 0.7352555092592593

Do CISOs Need a Code of Ethics?

Dark Reading Confidential Episode 19: Kickbacks, no-show jobs, "dirty" VCs, and shelf ware — industry expert Robert "RSnake" Hansen explains why he thinks its time for a CISO code of ethics to ensure cybersecurity bosses aren't engaged in self-dealing that cou

Security securityenterprisethreats
The Hacker News Jun 24 Score 0.7321727180555555

CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday warned of active exploitation of a critical security flaw impacting Lantronix EDS5000 Series devices, urging Federal Civilian Executive Branch (FCEB) agencies to apply the fixes by Jun

Security securityhackingvulnerabilities
Dark Reading Jun 24 Score 0.7315481018518518

More Malicious OpenClaw Skills Threaten AI Supply Chain

OpenClaw removed five packages from ClawHub, its skills marketplace, that bypassed security checks even though they included infostealers and other threats.

Security securityenterprisethreats
The Hacker News Jun 24 Score 0.7299653106481482

Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered

A coordinated law enforcement operation, in partnership with private sector companies, including Bitdefender, Bitsight, ESET, and Microsoft, has resulted in the takedown of criminal infrastructure powering Amadey and StealC. "The main common goal was to disrup

Security securityhackingvulnerabilities

2026-06-24 04:01:09 +0000

2026-06-24

17 items
Krebs on Security Jun 23 Score 0.9553259268518519

Scattered Spider Hackers Plead Guilty on Day 1 of Trial

Two men pleaded guilty in the United Kingdom this week to criminal charges stemming from an August 2024 cyberattack that crippled Transport for London, the entity responsible for the public transport network in the Greater London area. The duo were key members

Security securitycybercrimebreaches
Schneier on Security Jun 23 Score 0.8717230814814814

Anthropic’s Fable 5 Model Jailbroken Within Days

Fable 5 is the supposed safe version of Anthropic's Mythos Preview, with guardrails to ensure that it can't be used to create cyberattacks. Well, that restriction was bypassed within days.

Security securitycryptographypolicy
BleepingComputer Jun 23 Score 0.8134847189814816

Tata Electronics confirms cyberattack as hackers leak data

Tata Electronics has confirmed in a statement to BleepingComputer that it was the target of a cyberattack that impacted parts of its IT infrastructure. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 23 Score 0.8122574041666667

Windows 11 KB5095093 update rolls out new Point-in-Time restore feature

​​Microsoft has released the KB5095093 preview cumulative update for Windows 11 24H2 and 25H2, which fixes numerous bugs and begins rolling out new features, including the new Point-in-Time restore feature. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 23 Score 0.8116143486111111

Healthtech firm Xolis suffers data breach impacting 1.4 million people

Healthcare technology company Xsolis says that sensitive data belonging to nearly 1.4 million individuals was compromised in a phishing attack that gave attackers access to its network. [...]

Security securitymalwarevulnerabilities
CISA Cybersecurity Advisories Jun 23 Score 0.7983031083333334

CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation.   CVE-2025-67038 Lantronix EDS5000 Code Injection Vulnerability CVE-2026-34908 Ubiquiti UniFi OS Improper Access Contr

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 23 Score 0.7983031083333334

Siemens Products using OpenSSL

View CSAF Summary OpenSSL has published a stack based buffer overflow vulnerability that allows a remote attacker to cause a denial of service (DoS) or potentially allow for remote code execution. Siemens has released new versions for several affected products

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 23 Score 0.7983031083333334

Hubbell Aclara Metrum Cellular Web Interface

View CSAF Summary Successful exploitation of this vulnerability could allow attackers to manipulate critical device settings and repeatedly disrupt operations, potentially causing a loss of communications to the device. The following versions of Hubbell Aclara

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 23 Score 0.7983031078703704

ABB Freelance Security Lock

View CSAF Summary Successful exploitation of this vulnerability could allow access to underlying OS functions even when Freelance Operations is active, depending on system configuration and user permissions. The following versions of ABB Freelance Security Loc

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 23 Score 0.7983031078703704

Siemens WinCC Certificate Manager

View CSAF Summary WinCC Certificate Manager insufficiently protects key material that could allow an attacker to extract sensitive information. Siemens has released a new version for SIMATIC WinCC Unified PC Runtime V21 and recommends to update to the latest v

Security securitycisaadvisoriesvulnerabilities
Unit 42 (Palo Alto Networks) Jun 23 Score 0.7399934425925926

OpenClaw’s Skill Marketplace and the Emerging AI Supply Chain Threat

Unit 42's analysis of ClawHub revealed evasive malicious skills bypassing automated scanners to deploy infostealers and execute agentic financial fraud. The post OpenClaw’s Skill Marketplace and the Emerging AI Supply Chain Threat appeared first on Unit 42 .

Security securitythreat-researchmalware

2026-06-23 04:01:08 +0000

2026-06-23

17 items
Schneier on Security Jun 22 Score 0.8717172537037036

Professional Athletes and Wearables

I haven't thought about the privacy issues surrounding professional athletes and wearables. Wearables present serious privacy issues for "Average Joe" consumers, who are entrusting tech companies to safely store and protect their biometric data. Imagine the st

Security securitycryptographypolicy
BleepingComputer Jun 22 Score 0.8161459652777778

WhatsApp phishing attack uses fake business docs to hack PCs

An ongoing malware campaign is targeting WhatsApp users in multiple countries with deceptive messages that push VBScript files, leading to remote system access. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 22 Score 0.8147556875

JaredFromSubway MEV bot hacked in $15 million crypto theft

The JaredFromSubway Ethereum MEV (Maximal Extractable Value) bot suffered a $15 million loss after an attacker manipulated the opportunity-detection logic by creating fake cryptocurrency trading opportunities. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 22 Score 0.8134422615740742

FFmpeg fixes PixelSmash flaw in widely used video decoder

A newly disclosed FFmpeg flaw dubbed 'PixelSmash' could be exploited for remote code execution on Jellyfin servers under certain conditions, and can also trigger a denial-of-service condition in applications like Kodi, Emby, Nextcloud, PhotoPrism, and OBS Stud

Security securitymalwarevulnerabilities
BleepingComputer Jun 22 Score 0.8116649467592594

FortiBleed campaign used custom FortiGate sniffer to steal credentials

Security firm SOCRadar says the large-scale FortiBleed campaign targeting Fortinet FortiGate devices used custom sniffers to harvest authentication secrets from compromised firewalls and steal credentials. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 22 Score 0.8077894837962963

Microsoft says Windows 11 26H2 is coming soon, details upgrade process

Microsoft has confirmed that Windows 11 version 26H2 will be the next feature update and that devices running Windows 11 24H2 and 25H2 will be able to upgrade using a small enablement package. [...]

Security securitymalwarevulnerabilities
SANS Internet Storm Center Jun 22 Score 0.801926451388889

Webshells Remain Popular, (Mon, Jun 22nd)

Webshells have been popular for a long time. We already covered this topic across multiple diaries[1][2]. I spent some time to track them[3] and slighly paid less attention to them but today I found another one. It seems to be a n

Security securitythreatsiocs
Schneier on Security Jun 19 Score 0.7684084574074073

Friday Squid Blogging: Victims of Unregulated Squid Fishing

Dolphins, sharks, turtles, and human workers are all victims of unregulated squid fishing fleets. Another news article . As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Blog moderation policy.

Security securitycryptographypolicy
Schneier on Security Jun 19 Score 0.7517334574074073

Anthropic’s Fable and the State of AI

On June 9th, Anthropic released its Fable generative AI model. Three days later, the US government classified it as a dangerous munition, and used its export-control authority to prohibit any foreign nationals from accessing it. Unable to differentiate between

Security securitycryptographypolicy
CyberScoop Jun 22 Score 0.7401852791666667

Court rules SAVE database illegal, orders it dismantled

A judge said the administration’s database violates the Privacy Act, the Social Security Act and the Administrative Procedures Act. The post Court rules SAVE database illegal, orders it dismantled appeared first on CyberScoop .

Security securitypolicygovernment
Unit 42 (Palo Alto Networks) Jun 22 Score 0.7399713666666666

The Global Namespace Risk: Universal Bucket Hijacking Technique for Cloud Data Exfiltration

Unit 42 research details how attackers could exploit global name uniqueness in bucket hijacking to redirect cloud data streams across major CSPs. The post The Global Namespace Risk: Universal Bucket Hijacking Technique for Cloud Data Exfiltration appeared firs

Security securitythreat-researchmalware
Risky Bulletin Jun 22 Score 0.7366365583333333

Between Two Nerds: The PRC vs AI

In this edition of Between Two Nerds Tom Uren and The Grugq discuss the idea that the People’s Republic of China has mobilised its influence operations against the construction of US data centres and its build out of AI capacity. This episode is also available

Security securitynewspodcastintelligence
CyberScoop Jun 22 Score 0.7365463902777778

Trump executive orders speed up post-quantum migration, boost industry

The orders accelerate the federal government’s transition to post-quantum encryption and will boost the domestic quantum computing industry. The post Trump executive orders speed up post-quantum migration, boost industry appeared first on CyberScoop .

Security securitypolicygovernment
The Hacker News Jun 22 Score 0.7333250537037037

ShapedPlugin WordPress Pro Plugins Backdoored in Supply Chain Attack

Multiple WordPress plugins from ShapedPlugin were compromised in a supply chain attack after unknown threat actors managed to tamper with the official release channels and push backdoor code. "Attackers compromised the vendor's build and distribution pipeline,

Security securityhackingvulnerabilities

2026-06-22 04:01:07 +0000

2026-06-22

17 items
Krebs on Security Jun 18 Score 0.8376911236111112

'Popa' Botnet Linked to Publicly-Traded Israeli Firm

For the past four years, a sprawling Android-based botnet called Popa has forced millions of consumer TV boxes to relay Internet traffic linked to advertising fraud, account takeovers, and mass data-scraping efforts. This week, researchers from multiple securi

Security securitycybercrimebreaches
Schneier on Security Jun 18 Score 0.7517480550925926

Embedding Forbidden Text in Spyware to Discourage AI Analysis

At least one malware developer is adding text about nuclear and biological weapons to their spyware, in an effort to stop automatic AI analysis. Details : The _index.js payload begins with a large JavaScript block comment containing fake system instructions an

Security securitycryptographypolicy
CISA Cybersecurity Advisories Jun 18 Score 0.6783030439814816

Mitsubishi Electric MELSEC iQ-F Series

View CSAF Summary Successful exploitation of this vulnerability could allow a remote attacker to cause a denial-of-service (DoS) condition in the affected product by rapidly establishing a large number of TCP connections to it, resulting in an inconsistency in

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 18 Score 0.6783030439814816

Mitsubishi Electric Co.'s MELSEC iQ-F Series FX5-ENET/IP Ethernet Module

View CSAF Summary Successful exploitation of this vulnerability could allow a remote attacker to cause a denial-of-service (DoS) condition in the affected product by continuously sending a large number of communication packets to the Ethernet port of the produ

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 18 Score 0.6783030439814816

Apollo Pharmacy Blood Glucose Monitoring System APG-01 BT

View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to obtain sensitive health-related information and prevent legitimate users from establishing a connection with the device. The following versions of Apollo Pharmacy Blo

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 18 Score 0.6783030439814816

AzeoTech DAQFactory

View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to upload malicious .ctl files that may lead to arbitrary code execution. The following versions of AzeoTech DAQFactory are affected: DAQFactory CVSS Vendor Equipment Vulne

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 18 Score 0.6783030439814816

CISA Urges Hardening Fortinet Devices After Reports of Credential Exposure

CISA is aware of global reports that malicious cyber actors have targeted internet-accessible Fortinet devices across government and private sector organizations using compromised credentials. This activity, referred to as FortiBleed, involves the exposure of

Security securitycisaadvisoriesvulnerabilities
CyberScoop Jun 18 Score 0.6200679412037037

Authorities disrupt Evil Corp’s SocGholish botnet

Cybersecurity firms, researchers and officials took down 106 servers and remediated nearly 15,000 sites that were infected with the malware. The post Authorities disrupt Evil Corp’s SocGholish botnet appeared first on CyberScoop .

Security securitypolicygovernment
CyberScoop Jun 18 Score 0.6171961819444445

Congress tees up No FAKES Act, aiming at AI-generated deepfakes

While preventing third parties from profiting off unauthorized deepfakes of artists and performers is a bipartisan concern, some business and digital rights groups are opposed. The post Congress tees up No FAKES Act, aiming at AI-generated deepfakes appeared f

Security securitypolicygovernment

2026-06-21 04:01:08 +0000

2026-06-21

17 items
BleepingComputer Jun 20 Score 0.8018954615740741

Microsoft links Mastra AI supply chain attack to North Korean hackers

Microsoft has attributed a recent Mastra AI supply chain attack that compromised more than 140 npm packages to the North Korean hacking group Sapphire Sleet, also known as BlueNoroff. [...]

Security securitymalwarevulnerabilities
Schneier on Security Jun 17 Score 0.7517495555555554

AI Use by the US Government

On 14 April, the Trump administration quietly acknowledged the widespread use of AI to automate government processes. The office of management and budget (OMB) disclosed a staggering 3,611 active or planned use cases for AI across the federal government. The l

Security securitycryptographypolicy
The Hacker News Jun 20 Score 0.7198606527777778

Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys

Threat actors are exploiting a recently patched security flaw impacting Gravity SMTP, a WordPress plugin that's installed on about 100,000 sites. The vulnerability, tracked as CVE-2026-4020 (CVSS score: 5.3), is a medium-severity information disclosure flaw th

Security securityhackingvulnerabilities
Dark Reading Jun 18 Score 0.6513327828703703

Salesforce Data Thefts Continue via Klue App Compromise

Klue's Battlecards is now the third integrated application that has been compromised to steal customers' Salesforce data, and victims include Huntress, the cybersecurity vendor.

Security securityenterprisethreats
CyberScoop Jun 18 Score 0.6490130259259259

How software development's speed obsession enabled TeamPCP’s chaos crusade

The threat group’s remarkable success targeting open-source software was inevitable and fueled by the industry’s decision to prioritize code shipping over security. The post How software development's speed obsession enabled TeamPCP’s chaos crusade appeared fi

Security securitypolicygovernment
CyberScoop Jun 18 Score 0.6484435814814815

Accenture shells out $4.18B on three companies in big industrial cybersecurity push

The consulting giant’s majority stake in Dragos, along with the purchase runZero and NetRise, marks its first major push into operational technology software as AI-driven threats to critical infrastructure intensify. The post Accenture shells out $4.18B on thr

Security securitypolicygovernment
SecurityWeek Jun 19 Score 0.6446830134259258

CryptoBandits Malware Doubles as a Backdoor, Abuses Tor

CryptoBandits uses a local SOCKS5 proxy for traffic routing, blending data theft with remote code execution. The post CryptoBandits Malware Doubles as a Backdoor, Abuses Tor appeared first on SecurityWeek .

Security securityindustryvulnerabilities
SecurityWeek Jun 19 Score 0.643806624537037

FortiBleed: 86,000 Fortinet Device Credentials Compromised

The large-scale credential theft campaign hit roughly half of the internet-accessible Fortinet firewalls and VPNs. The post FortiBleed: 86,000 Fortinet Device Credentials Compromised appeared first on SecurityWeek .

Security securityindustryvulnerabilities
Wired — Security Jun 18 Score 0.6416366171296296

How to Watch the Knicks Parade on NYC Traffic Surveillance Cameras

Artist Morry Kolman will be livestreaming feeds of the NBA champions’ ticker-tape parade from NYC’s traffic cameras—and this time, the city’s Department of Transportation isn’t demanding he stop.

Security securityprivacysurveillance

2026-06-20 04:01:11 +0000

2026-06-20

17 items
Schneier on Security Jun 19 Score 0.8884089046296295

Friday Squid Blogging: Victims of Unregulated Squid Fishing

Dolphins, sharks, turtles, and human workers are all victims of unregulated squid fishing fleets. Another news article . As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Blog moderation policy.

Security securitycryptographypolicy
Schneier on Security Jun 19 Score 0.8717339046296295

Anthropic’s Fable and the State of AI

On June 9th, Anthropic released its Fable generative AI model. Three days later, the US government classified it as a dangerous munition, and used its export-control authority to prohibit any foreign nationals from accessing it. Unable to differentiate between

Security securitycryptographypolicy
BleepingComputer Jun 19 Score 0.815832988425926

Klue OAuth breach victim list grows as Icarus hackers claim attack

Market intelligence platform Klue has publicly confirmed a recent security incident that allowed threat actors to steal OAuth tokens used to connect to customers' Salesforce environments, as the new "Icarus" extortion group publicly claims the attack. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 19 Score 0.8053223402777778

Texas govt data breach exposes over 3 million driver’s licenses

The Texas Parks and Wildlife Department (TPWD) disclosed a data breach at its license system vendor that exposed personal information for more than three million individuals. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 19 Score 0.8002565995370371

Every AI Agent Is an Identity. Most Organizations Don't Treat Them That Way

AI agents can access data, trigger workflows, deploy code, and interact with critical business systems, often with little oversight. Token Security breaks down why AI agents are becoming a new identity and governance challenge. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 19 Score 0.7986459513888889

Webinar: How attackers bypass MFA and how defenders can respond

Modern phishing attacks, including Device Code phishing, can undermine MFA protections and grant attackers access to corporate accounts without stealing passwords. This webinar explores how behavioral AI can help security teams detect compromised accounts fast

Security securitymalwarevulnerabilities
Schneier on Security Jun 16 Score 0.7517343675925925

Flock Cameras Are Being Used for Stalking

There are over a dozen cases around the country where police officers are using the Flock surveillance camera system to obsessively and illegally stalk people . Alternate link .

Security securitycryptographypolicy
Unit 42 (Palo Alto Networks) Jun 20 Score 0.7467907824074074

Threat Brief: Mitigating Large-Scale Credential Attacks

We provide guidance for preparing for and mitigating large-scale credential attacks, focusing on recent campaigns targeting security vendors' devices. The post Threat Brief: Mitigating Large-Scale Credential Attacks appeared first on Unit 42 .

Security securitythreat-researchmalware
The Hacker News Jun 19 Score 0.7343500115740741

Unpatchable 'usbliter8' Exploit Breaks Apple A12 and A13 SecureROM Boot Chain

Security researchers at Paradigm Shift have published a working exploit, dubbed usbliter8, that achieves arbitrary code execution inside the SecureROM of Apple's A12 and A13 chips. That code is burned into the silicon at manufacture. No software

Security securityhackingvulnerabilities
The Hacker News Jun 19 Score 0.7342231597222222

The Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security Processes

The Gentlemen ransomware-as-a-service (RaaS) operation is actively developing and maintaining a suite of endpoint detection and response (EDR) killers that it hands out to affiliates for impairing system defenses before deploying the encryptor. This mature por

Security securityhackingvulnerabilities
The Hacker News Jun 19 Score 0.7291583449074074

AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution

Microsoft researchers have detailed an exploit chain, named AutoJack, that turns an AI browsing agent into a delivery vehicle for remote code execution. Steer the agent to load an attacker's web page, and that page's JavaScript can reach a privileged loca

Security securityhackingvulnerabilities
The Hacker News Jun 19 Score 0.7285226967592593

Operation Endgame Disrupts SocGholish Servers, Cleans 14,971 WordPress Sites

Dutch law enforcement authorities, along with counterparts from Canada , Germany, and the U.S., have disrupted malicious infrastructure associated with SocGholish and cleaned up nearly 15,000 infected WordPress websites. "With these actions we deprive cybercri

Security securityhackingvulnerabilities
The Hacker News Jun 19 Score 0.7266463078703703

CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday urged Fortinet customers with FortiGate appliances to take steps to secure against ongoing malicious activity aimed at thousands of internet-accessible devices. The sweeping campaign,

Security securityhackingvulnerabilities
Dark Reading Jun 19 Score 0.7249698527777778

Stressors, AI Forcing Changes to Cybersecurity Teams

As threats proliferate and AI complicates cybersecurity, CISOs say the job is getting harder, but more companies still want cybersecurity expertise, if even on a part-time basis.

Security securityenterprisethreats
Risky Bulletin Jun 19 Score 0.7122932476851852

Risky Bulletin: Creds for 74,000 Fortinet devices leaked

A LOT of Fortinet creds have leaked online, Canada’s spy agency allowed to remove a botnet from Canadian devices, a supply chain attack hits the Mastra AI framework, and Europol disrupts SocGolish. Show notes Risky Bulletin: Canada’s spy agency allowed to remo

Security securitynewspodcastintelligence

2026-06-19 04:01:13 +0000

2026-06-19

17 items
Krebs on Security Jun 18 Score 0.9576909958333334

'Popa' Botnet Linked to Publicly-Traded Israeli Firm

For the past four years, a sprawling Android-based botnet called Popa has forced millions of consumer TV boxes to relay Internet traffic linked to advertising fraud, account takeovers, and mass data-scraping efforts. This week, researchers from multiple securi

Security securitycybercrimebreaches
Schneier on Security Jun 18 Score 0.8717479199074073

Embedding Forbidden Text in Spyware to Discourage AI Analysis

At least one malware developer is adding text about nuclear and biological weapons to their spyware, in an effort to stop automatic AI analysis. Details : The _index.js payload begins with a large JavaScript block comment containing fake system instructions an

Security securitycryptographypolicy
BleepingComputer Jun 18 Score 0.815854876388889

Gentlemen ransomware uses multiple EDR killers to disable defenses

The Gentlemen ransomware-as-a-service (RaaS) is actively developing and maintaining a suite of endpoint detection and response (EDR) killers to help affiliates evade detection in attacks. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 18 Score 0.8091808023148149

Nintendo confirms data stolen in WebMD subsidiary cyberattack

Nintendo of America has confirmed to BleepingComputer that threat actors stole survey data from the third-party TinyPulse service used internally, but its systems were not compromised. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 18 Score 0.8055280245370371

USB worm spreads crypto-stealing malware via Windows shortcut files

Threat actors targeting cryptocurrency wallets have been distributing clipboard-stealing malware with self-spreading capabilities and using the Tor network to conceal communication. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 18 Score 0.8021872837962963

Klue OAuth breach linked to 'Icarus' Salesforce data theft attacks

Market intelligence platform Klue suffered a OAuth breach that enabled the "Icarus" threat actors to steal Salesforce CRM data from multiple organizations in an ongoing extortion campaign. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 18 Score 0.801328950462963

5 reasons Microsoft 365 backup isn’t enough for business data protection

Microsoft 365 helps keep services running, but protecting and recovering business data remains your responsibility. Acronis breaks down five gaps organizations should consider when evaluating Microsoft 365 data protection. [...]

Security securitymalwarevulnerabilities
CISA Cybersecurity Advisories Jun 18 Score 0.7983029268518519

Mitsubishi Electric MELSEC iQ-F Series

View CSAF Summary Successful exploitation of this vulnerability could allow a remote attacker to cause a denial-of-service (DoS) condition in the affected product by rapidly establishing a large number of TCP connections to it, resulting in an inconsistency in

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 18 Score 0.7983029268518519

Mitsubishi Electric Co.'s MELSEC iQ-F Series FX5-ENET/IP Ethernet Module

View CSAF Summary Successful exploitation of this vulnerability could allow a remote attacker to cause a denial-of-service (DoS) condition in the affected product by continuously sending a large number of communication packets to the Ethernet port of the produ

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 18 Score 0.7983029268518519

Apollo Pharmacy Blood Glucose Monitoring System APG-01 BT

View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to obtain sensitive health-related information and prevent legitimate users from establishing a connection with the device. The following versions of Apollo Pharmacy Blo

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 18 Score 0.7983029268518519

AzeoTech DAQFactory

View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to upload malicious .ctl files that may lead to arbitrary code execution. The following versions of AzeoTech DAQFactory are affected: DAQFactory CVSS Vendor Equipment Vulne

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 18 Score 0.7983029268518519

CISA Urges Hardening Fortinet Devices After Reports of Credential Exposure

CISA is aware of global reports that malicious cyber actors have targeted internet-accessible Fortinet devices across government and private sector organizations using compromised credentials. This activity, referred to as FortiBleed, involves the exposure of

Security securitycisaadvisoriesvulnerabilities
CyberScoop Jun 18 Score 0.7400677972222223

Authorities disrupt Evil Corp’s SocGholish botnet

Cybersecurity firms, researchers and officials took down 106 servers and remediated nearly 15,000 sites that were infected with the malware. The post Authorities disrupt Evil Corp’s SocGholish botnet appeared first on CyberScoop .

Security securitypolicygovernment
CyberScoop Jun 18 Score 0.737196037962963

Congress tees up No FAKES Act, aiming at AI-generated deepfakes

While preventing third parties from profiting off unauthorized deepfakes of artists and performers is a bipartisan concern, some business and digital rights groups are opposed. The post Congress tees up No FAKES Act, aiming at AI-generated deepfakes appeared f

Security securitypolicygovernment
Dark Reading Jun 18 Score 0.7352292875

Operation Escaneo Signals Shift in LatAm Threat Landscape

The threat group's curious business model may combine opportunistic monetization alongside intel collection, without much coordination between the two.

Security securityenterprisethreats

2026-06-18 04:01:08 +0000

2026-06-18

17 items
Schneier on Security Jun 17 Score 0.8717493064814814

AI Use by the US Government

On 14 April, the Trump administration quietly acknowledged the widespread use of AI to automate government processes. The office of management and budget (OMB) disclosed a staggering 3,611 active or planned use cases for AI across the federal government. The l

Security securitycryptographypolicy
BleepingComputer Jun 18 Score 0.8208067212962964

Leak confirms OpenAI is testing a ChatGPT for Science subscription

OpenAI appears to be testing a new subscription and experience for science use cases, but it's unclear if it'll be available to everyone regardless of their background. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 17 Score 0.8133780175925927

Google to use UK and EU user IP addresses for ad personalization

From August 3, 2026, Google will use IP addresses from UK, EEA and Switzerland users for ad measurement and personalization. It lands as the ICO weighs new consent rules, and years after Google itself called using such signals to identify devices "wrong." [...

Security securitymalwarevulnerabilities
BleepingComputer Jun 17 Score 0.8036627398148148

FortiBleed leak exposes Fortinet VPN credentials for 73,000 devices.

A newly discovered data leak dubbed "FortiBleed" has exposed what appears to be a collection of Fortinet and FortiGate VPN credentials for 73,932 firewall URLs at organizations worldwide. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 17 Score 0.8016409805555557

Why Account Takeovers Are Rising and How to Stop Them

Account takeovers are rising as attackers bypass traditional defenses through phishing, session hijacking, and MFA fatigue. Specops Software explores how device trust and continuous verification help reduce account takeover risk. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 17 Score 0.800323850925926

India's Telegram ban hit the UAE too. Here's how to get around it

India has banned Telegram until June 22 after the app was used to circulate leaked exam papers. CEO Pavel Durov accuses telecom Reliance of BGP hijacking that disrupted the app as far away as the UAE. Here's what happened, and how to get around the block with

Security securitymalwarevulnerabilities
Schneier on Security Jun 15 Score 0.791666436111111

The FCC Wants to Eliminate Burner Phones

A proposed FCC rule would kill burner phones: phones whose accounts are not attached to a particular person. The FCC plans to do this by legally forcing the country's telecoms to store a wealth of personal information about essentially all phone customers, inc

Security securitycryptographypolicy
SANS Internet Storm Center Jun 16 Score 0.7502254356481483

From a VHDX File to a Remcos RAT, (Tue, Jun 16th)

Yesterday, a reader reported to us a malicious ZIP archive (SHA256: a0104921a2d37ab87482ac9a9f5c3713479c118846c3e999178e75b81620c094[1]). Once unzipped, it contains a VHDX file that discloses a malicious JavaScript after being mounted (which is autom

Security securitythreatsiocs
Dark Reading Jun 17 Score 0.7362588

INC Ransomware Thrives by Mastering the Basics

And one of those basics is focusing on sectors where a ransomware disruption creates immediate pressure to pay up, like with healthcare.

Security securityenterprisethreats
The Hacker News Jun 17 Score 0.7337029523148149

Crypto Clipper Campaign Abuses Fake Reviews, AI Narrators, and VirusTotal Comments

An unknown threat actor has been observed leveraging paid or promoted posts on legitimate news websites to drum up buzz for their warez, according to new findings from Check Point Research. The threat actor also has at their disposal a dedicated WordPress phis

Security securityhackingvulnerabilities
The Hacker News Jun 17 Score 0.7326492486111111

Microsoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in Development

Microsoft has formally disclosed that it's working to release a patch to address a Defender zero-day codenamed RoguePlanet. The vulnerability has now been assigned the CVE identifier CVE-2026-50656 (CVSS score: 7.8), with the tech giant describing it as a priv

Security securityhackingvulnerabilities
The Hacker News Jun 17 Score 0.7299955449074074

Junior Hacker Used Tailscale and OpenSSH to Keep Access After His C2 Went Offline

A French-speaking attacker broke into a small French automotive business, planted a keylogger, and stole banking and email credentials. Ordinary stuff, until one move near the end. Before his command-and-control server went dark, he installed OpenSSH and Tails

Security securityhackingvulnerabilities

2026-06-17 04:01:22 +0000

2026-06-17

17 items
Schneier on Security Jun 16 Score 0.8717343004629629

Flock Cameras Are Being Used for Stalking

There are over a dozen cases around the country where police officers are using the Flock surveillance camera system to obsessively and illegally stalk people . Alternate link .

Security securitycryptographypolicy
Wired — Security Jun 16 Score 0.8080497342592593

‘Dangerous’ AI Models Are Coming No Matter What

The US government crackdown on Anthropic’s Claude Fable 5 and Mythos 5 hides a glaring truth: AI models with advanced hacking capabilities will soon be the norm.

Security securityprivacysurveillance
BleepingComputer Jun 16 Score 0.8027148675925927

UK to require ID or face scan before you can make social media accounts

Opening a new social media account in the UK will soon mean proving you're over 16 with an ID upload or a facial age scan, under a government ban on under-16s taking effect in spring 2027. Security experts warn the age checks are easy to circumvent and create

Security securitymalwarevulnerabilities
BleepingComputer Jun 16 Score 0.8021213490740742

GhostTree Attack Abused Recursive Windows Junctions to Hide Malware

GhostTree uses recursive NTFS junctions to generate vast numbers of valid Windows file paths. Varonis explains how the technique could cause Microsoft Defender folder scans to never complete, leaving malware undetected. [...]

Security securitymalwarevulnerabilities
Schneier on Security Jun 14 Score 0.8001787449074074

Upcoming Speaking Engagements

This is a current list of where and when I am scheduled to speak: I’m giving a keynote at Cybernation 2026 in Berlin, Germany, on June 24, 2026. I’m speaking at the Potsdam Conference on National Cybersecurity at the Hasso Plattner Institut in Potsdam, Germany

Security securitycryptographypolicy
CISA Cybersecurity Advisories Jun 16 Score 0.7983031712962964

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-48907 Widget Factory Joomla Content Editor Improper Access Control Vulnerability This type of vulnerability is a freq

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 16 Score 0.7983031712962964

Rockwell Automation FactoryTalk Analytics PavilionX

View CSAF Summary Successful exploitation of this vulnerability could result in an attacker executing privileged operations. The following versions of Rockwell Automation FactoryTalk Analytics PavilionX are affected: FactoryTalk Analytics PavilionX CVSS Vendor

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 16 Score 0.7983031712962964

Rockwell Automation FLEX I/O EtherNet/IP Adapters

View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to gain unauthorized access, account takeover, and cause loss of availability. The following versions of Rockwell Automation FLEX I/O EtherNet/IP Adapters are affected:

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 16 Score 0.7983031712962964

Rockwell Automation RSLinx

View CSAF Summary Successful exploitation of this vulnerability can lead to a denial of service, where the application will become unresponsive and will not recover on its own. The following versions of RSLinx Classic Third-Party Vulnerability are affected: RS

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 16 Score 0.7983031712962964

Rockwell Automation Logix 5370 & 5570 Controllers Vulnerable To Denial of Service Via CIP

View CSAF Summary Successful exploitation of this vulnerability could cause a denial-of-service condition that may result in a major nonrecoverable fault (MNRF). The following versions of Rockwell Automation Logix 5370 & 5570 Controllers Vulnerable To Denial o

Security securitycisaadvisoriesvulnerabilities
Dark Reading Jun 16 Score 0.7407077638888889

Fileless Phantom Stealer Targets Browser Credentials

In addition to executing entirely in memory, the malware's infection chain incorporates other anti-analysis techniques designed to frustrate detection.

Security securityenterprisethreats
Dark Reading Jun 16 Score 0.7399725787037037

Security Community Slams US Ban on Exporting Mythos, Fable

An open letter signed by dozens of security experts asked the government to reverse export restrictions on Anthropic's Claude Fable 5 and Mythos 5 models.

Security securityenterprisethreats
CyberScoop Jun 16 Score 0.7384018694444444

Lawmakers leary about Trump administration’s Anthropic order

Some panned it, some said they needed more information, but caution figured into all of the responses. The post Lawmakers leary about Trump administration’s Anthropic order appeared first on CyberScoop .

Security securitypolicygovernment

2026-06-16 04:01:09 +0000

2026-06-16

17 items
BleepingComputer Jun 15 Score 0.8148844125000001

DOJ seizes CFAKE, SOCFAKE deepfake nude sites under TAKE IT DOWN Act

The U.S. Department of Justice announced Friday that it has seized the CFAKE.com and SOCFAKE.com websites, which allegedly hosted nonconsensual AI-generated nude images and videos of women, in what appears to be the first publicly announced domain seizure unde

Security securitymalwarevulnerabilities
BleepingComputer Jun 15 Score 0.8118274680555556

SimpleHelp bug lets hackers create rogue remote support accounts

A vulnerability in the SimpleHelp remote management software allows unauthenticated attackers to create privileged technician accounts on servers using the OpenID Connect (OIDC) authentication protocol. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 15 Score 0.8076677458333335

OptinMonster WordPress plugin hacked in CDN supply-chain attack

WordPress plugins OptinMonster, TrustPulse, and PushEngage have been compromised in a supply-chain attack impacting Awesome Motive-s content distribution network (CDN). [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 15 Score 0.8069895050925927

Cisco fixes SD-WAN vManage flaw exploited in zero-day attacks

Cisco has released security updates to address a vulnerability in the Catalyst SD-WAN Manager, tracked as CVE-2026-20262, that was exploited in attacks to escalate to root privileges. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 15 Score 0.8060029310185186

Council of Europe investigates ShinyHunters data breach claims

The Council of Europe, the continent's oldest intergovernmental body, is probing claims of a data breach made by the ShinyHunters extortion group over the weekend. [...]

Security securitymalwarevulnerabilities
CISA Cybersecurity Advisories Jun 15 Score 0.7983032662037037

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-20262 Cisco Catalyst SD-WAN Manager Directory or Path Traversal Vulnerability CVE-2026-54420 LiteSpeed cPanel Plugi

Security securitycisaadvisoriesvulnerabilities
Schneier on Security Jun 12 Score 0.7684436597222222

Friday Squid Blogging: Squid-Inspired Fluid Pump

This fluid pump was inspired by the way squids propel themselves through the water. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Blog moderation policy.

Security securitycryptographypolicy
Schneier on Security Jun 12 Score 0.7517279189814814

Bernie Sanders’ AI Sovereign Wealth Fund Plan

Let no one accuse Bernie Sanders of ducking the big questions. Writing in the New York Times last week, the senator asked : "Will the future of humanity be determined by a handful of billionaires who have promoted and developed AI, with virtually no democratic

Security securitycryptographypolicy
Unit 42 (Palo Alto Networks) Jun 15 Score 0.7416454560185185

Inside the Modern SOC: The 72-Minute Race

Attackers can move from access to exfiltration in 72 minutes. Learn how modern SOC teams close the speed gap with Unit 42's AI-driven automation, threat hunting, MDR and Managed XSIAM. The post Inside the Modern SOC: The 72-Minute Race appeared first on Unit 4

Security securitythreat-researchmalware
Risky Bulletin Jun 15 Score 0.7384928800925926

Between Two Nerds: Why NATO and cyber don't mix

In this edition of Between Two Nerds Tom Uren and The Grugq talk about how NATO is set up to deter conventional conflict, and how that approach is fundamentally unsuited for ongoing, everyday cyber operations that are intended to confound adversaries. This epi

Security securitynewspodcastintelligence
The Hacker News Jun 15 Score 0.7361949606481482

Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails

A China-linked espionage group hid inside North American medical, academic, and military research networks for more than a year, quietly stealing sensitive research and defense email. The way in was a backdoor on their REDCap research servers that stole login

Security securityhackingvulnerabilities
The Hacker News Jun 15 Score 0.7358829236111111

North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels

Cybersecurity researchers have flagged two malicious cyber campaigns that exhibit similarities with a persistent North Korean threat cluster known as Contagious Interview (aka Famous Chollima, HexagonalRodent, and Void Dokkaebi). According to a report publishe

Security securityhackingvulnerabilities
Dark Reading Jun 15 Score 0.7357420268518519

Copilot 'SearchLeak' Attack Allows 1-Click Data Theft

The critical, three-stage attack is now patched, but it's part of a new group of AI prompt-injection issues that use hidden URLs and other variables.

Security securityenterprisethreats
Dark Reading Jun 15 Score 0.7312471194444444

Most CISOs Report Pressure to Bury Bad Security News

Executive leaders may not be saying it aloud, but business objectives and priorities don't always promote timely disclosures.

Security securityenterprisethreats

2026-06-15 12:02:48 +0000

2026-06-15

17 items
Schneier on Security Jun 15 Score 0.8982939046296295

The FCC Wants to Eliminate Burner Phones

A proposed FCC rule would kill burner phones: phones whose accounts are not attached to a particular person. The FCC plans to do this by legally forcing the country's telecoms to store a wealth of personal information about essentially all phone customers, inc

Security securitycryptographypolicy
The Hacker News Jun 15 Score 0.7484813435185185

152 Chrome Wallpaper Extensions with 105K Installs Linked to Adware and Fake Traffic

Cybersecurity researchers have discovered a network of 152 Google Chrome extensions that act as new tab live wallpaper add-ons to distribute a potentially unwanted program (PUP) family. The cluster spans 38 separate Chrome Web Store publisher accounts and thre

Security securityhackingvulnerabilities
The Hacker News Jun 15 Score 0.746586899074074

Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites

An attacker tampered with trusted JavaScript files used by WordPress sites running PushEngage, OptinMonster, and TrustPulse, turning those files into a way to break into the sites. When a site administrator was logged in as the file loaded, the code created an

Security securityhackingvulnerabilities
The Hacker News Jun 15 Score 0.7407739361111111

Sniper Dz Scams Target MENA Users via Fake Facebook Offers and Browser Alerts

Cybersecurity researchers have disclosed details of fraudulent activity targeting users across the Middle East and North Africa by employing various fraudulent Facebook accounts impersonating politicians, public figures, and trusted organizations. "These accou

Security securityhackingvulnerabilities
The Hacker News Jun 15 Score 0.7404174546296296

Palo Alto Warns of Active Exploitation of PAN-OS GlobalProtect VPN Flaw

Palo Alto Networks has revealed that it has observed "active exploitation" of a recently disclosed PAN-OS vulnerability by an unknown threat actor to obtain unauthorized access to GlobalProtect portals. The vulnerability in question is CVE-2026-0257 (CVSS scor

Security securityhackingvulnerabilities
Risky Bulletin Jun 15 Score 0.7397436532407408

Risky Bulletin: Arch Linux supply chain attack hits 1,900 packages

Almost 2,000 Arch Linux packages have been infected with malware in a supply chain attack, FISA surveillance powers expire for the first time since 2008, the FBI takes down a Chinese phishing service, and a major supply chain attack hits the WordPress ecosyste

Security securitynewspodcastintelligence
Schneier on Security Jun 11 Score 0.738300386111111

Enhanced License Plate Tracking

The surveillance company Leonardo wants more data : A surveillance company plans to add sensors to automatic license plate readers (ALPRs) that would mean the devices, as well as capture the license plate of passing vehicles, would also sweep up unique identif

Security securitycryptographypolicy
Risky Bulletin Jun 14 Score 0.7228464310185185

Sponsored: Ent on using AI to track human behavior on the endpoint

In this Risky Business sponsored interview, Catalin Cimpanu talks with Brandon Dixon, co-founder and CTO of Ent AI, about the company’s innovative use of local LLMs to track user behavior on the endpoint, and add context to suspicious events to detect or preve

Security securitynewspodcastintelligence
SecurityWeek Jun 15 Score 0.7116894273148148

Ukrainian Man Pleads Guilty in US to Conti Ransomware Charges

Oleksii Oleksiyovych Lytvynenko admitted to working on the development of a loader for the Conti gang. The post Ukrainian Man Pleads Guilty in US to Conti Ransomware Charges appeared first on SecurityWeek .

Security securityindustryvulnerabilities
SecurityWeek Jun 15 Score 0.7112454458333333

Ozempic Maker Novo Nordisk Says Hackers Breached IT Systems

The pharmaceutical giant says the attackers gained access to personal data stored on the compromised systems. The post Ozempic Maker Novo Nordisk Says Hackers Breached IT Systems appeared first on SecurityWeek .

Security securityindustryvulnerabilities
SecurityWeek Jun 15 Score 0.7110181310185184

French Government Messaging Platform Breached by Mysterious ‘Misere’ Hacker

French officials say roughly 73,000 government accounts were affected, while the threat actor claims to have stolen messages and user data from the sovereign Tchap platform. The post French Government Messaging Platform Breached by Mysterious ‘Misere’ Hacker a

Security securityindustryvulnerabilities
SecurityWeek Jun 15 Score 0.7103324828703703

ShinyHunters Claims Council of Europe Hack

The extortion group threatens to leak 297 GB of data allegedly stolen from the Council of Europe, including employee personal information. The post ShinyHunters Claims Council of Europe Hack appeared first on SecurityWeek .

Security securityindustryvulnerabilities
SecurityWeek Jun 15 Score 0.7082977606481481

FBI, Google Dismantle 'Outsider Enterprise' Phishing Service

The platform used more than 9,000 phishing sites, stealing nearly 4 million credit cards and causing roughly $1.9 billion in losses. The post FBI, Google Dismantle 'Outsider Enterprise' Phishing Service appeared first on SecurityWeek .

Security securityindustryvulnerabilities

2026-06-14 17:12:01 +0000

2026-06-14

17 items
Schneier on Security Jun 14 Score 0.8982090819444444

Upcoming Speaking Engagements

This is a current list of where and when I am scheduled to speak: I’m giving a keynote at Cybernation 2026 in Berlin, Germany, on June 24, 2026. I’m speaking at the Potsdam Conference on National Cybersecurity at the Hasso Plattner Institut in Potsdam, Germany

Security securitycryptographypolicy
BleepingComputer Jun 14 Score 0.8206776162037037

FBI disrupts massive AI-powered phishing service using a million URLs

In a coordinated effort, the FBI, working with Google and Black Lotus Labs, has dismantled a massive Chinese phishing-as-a-service operation called Outsider Enterprise with thousands of phishing websites used to steal credit card data and passwords. [...]

Security securitymalwarevulnerabilities
Krebs on Security Jun 10 Score 0.8097706773148149

Who Runs the Ransomware Group 'The Gentlemen?'

A cybercrime group known as The Gentlemen has emerged as the second most active ransomware gang by victim count, rapidly attracting a talented pool of hackers through an aggressive recruitment strategy that promises affiliates 90 percent of any ransom paid by

Security securitycybercrimebreaches
BleepingComputer Jun 13 Score 0.7911452087962964

Ex-school district employee jailed for hacks on former employer

A former IT employee at an Iowa school district was sentenced to 21 months in prison after conducting a prolonged cyberattack against the former employer that disrupted classroom operations, deleted accounts, and caused tens of thousands of dollars in damages.

Security securitymalwarevulnerabilities
Krebs on Security Jun 9 Score 0.7832077143518519

A Record-Breaking Patch Tuesday for June 2026

Microsoft today released software updates to plug nearly 200 security holes across its Windows operating systems and supported software, a record number of fixes for the company's monthly Patch Tuesday cycle. Nearly three dozen of those bugs earned Microsoft's

Security securitycybercrimebreaches
BleepingComputer Jun 13 Score 0.7730428939814815

US Gov asks Anthropic to ban 'foreign national' access to Fable, Mythos

The US government has ordered Anthropic to block all foreign nationals from accessing Fable 5 and Mythos 5, forcing the company to suspend both models worldwide. Anthropic is complying but disputes the basis, calling the cited jailbreak narrow and the capabili

Security securitymalwarevulnerabilities
CyberScoop Jun 13 Score 0.7121558185185185

Anthropic disables new models after government calls them a national security concern

The Commerce Department’s expert control decree led to the company shutting off access to Fable 5 and Mythos 5 worldwide, drawing sharp criticism from researchers and industry analysts. The post Anthropic disables new models after government calls them a natio

Security securitypolicygovernment
The Hacker News Jun 13 Score 0.7036404337962963

Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication

Splunk has released security updates to address a critical security flaw in Splunk Enterprise that could be exploited to conduct unauthenticated file operations and even remote code execution. The vulnerability, tracked as CVE-2026-20253, is rated 9.8 on the C

Security securityhackingvulnerabilities
Wired — Security Jun 13 Score 0.6988335717592593

The FCC Wants to Kill Burner Phones

Plus: AI bug hunting fuels Microsoft’s biggest-ever Patch Tuesday, ShinyHunters ransomware gang exploits an Oracle zero-day, and more.

Security securityprivacysurveillance
The Hacker News Jun 13 Score 0.6908566375

U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals

Anthropic said on Friday it will "abruptly disable" its most advanced artificial intelligence (AI) models, Claude Fable 5 and Mythos 5, for all users after the U.S. government ordered it to suspend access to the models for foreign nationals, whether inside or

Security securityhackingvulnerabilities
The Hacker News Jun 12 Score 0.6729871930555555

Google Sues Chinese Smishing Network Accused of Using Gemini AI in Phishing

Google on Friday said it's pursuing legal action against a Chinese cybercrime network, accusing it of using its Gemini artificial intelligence (AI) agent to send phishing text messages targeting Americans. The network is said to be behind the development and m

Security securityhackingvulnerabilities
CyberScoop Jun 12 Score 0.6719192444444444

US, France, and Italian authorities shut down massive deepfake porn site

The website specialized in non-consensual sexual images of famous women, including politicians, first ladies, royalty, journalists, television presenters, athletes, and entertainers, and others. The post US, France, and Italian authorities shut down massive de

Security securitypolicygovernment
The Hacker News Jun 12 Score 0.671831174537037

China-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decade

Instead of hiding on the laptops and servers defenders watch most closely, a China-nexus group spent close to a decade hidden inside the Linux login system itself. Sygnia, which tracks the group as Velvet Ant, says it backdoored the PAM and OpenSSH components

Security securityhackingvulnerabilities
CyberScoop Jun 12 Score 0.6709058185185185

Conti ransomware group member pleads guilty, faces up to 20 years in prison

Oleksii Lytvynenko, a 44-year-old Ukrainian national, admitted to joining the prolific cybercrime group in 2021. Officials said he engaged in cybercrime up until his arrest in Ireland in 2023. The post Conti ransomware group member pleads guilty, faces up to 2

Security securitypolicygovernment
SecurityWeek Jun 13 Score 0.670304536574074

NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks

By default, npm install will no longer execute scripts from dependencies, unless explicitly allowed. The post NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks appeared first on SecurityWeek .

Security securityindustryvulnerabilities

2026-06-13 05:08:54 +0000

2026-06-13

17 items
Schneier on Security Jun 12 Score 0.8865604597222221

Friday Squid Blogging: Squid-Inspired Fluid Pump

This fluid pump was inspired by the way squids propel themselves through the water. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Blog moderation policy.

Security securitycryptographypolicy
Schneier on Security Jun 12 Score 0.8698447189814814

Bernie Sanders’ AI Sovereign Wealth Fund Plan

Let no one accuse Bernie Sanders of ducking the big questions. Writing in the New York Times last week, the senator asked : "Will the future of humanity be determined by a handful of billionaires who have promoted and developed AI, with virtually no democratic

Security securitycryptographypolicy
BleepingComputer Jun 12 Score 0.8090183430555556

Maine disables data breach notification portal after fake disclosures

Maine has taken its public data breach reporting portal offline after fraudulent breach disclosures were published on the state's website, prompting a review of procedures to prevent abuse in the future. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 12 Score 0.806963713425926

phpBB forum fixes auth bypass bug lurking for a decade

A 10-year-old authentication bypass vulnerability discovered in the phpBB forum software allows an attacker to log in as any user, including administrators. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 12 Score 0.7997863986111112

Early Warning Signs of Supply-Chain Attacks Live in the Dark Web

GitHub access sales, leaked repositories, and stolen API keys can all become supply-chain attack footholds. Flare explores how underground forums expose early signals tied to software supply-chain risk. [...]

Security securitymalwarevulnerabilities
CISA Cybersecurity Advisories Jun 12 Score 0.7964200708333334

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-35273 Oracle PeopleSoft Enterprise PeopleTools Missing Authentication for Critical Function Vulnerability This type o

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 11 Score 0.7564200703703704

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-10520 Ivanti Sentry OS Command Injection Vulnerability This type of vulnerability is a frequent attack vector for mal

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 11 Score 0.7564200703703704

Brickcom Cameras

View CSAF Summary Successful exploitation of these vulnerabilities could allow a remote unauthenticated attacker to gain unauthorized access to live video feeds, retrieve sensitive visual information from affected premises, and obtain administrative control of

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 11 Score 0.7564200703703704

Naxclow IoT Platform

View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to impersonate devices, intercept or manipulate communications, harvest sensitive credentials at scale, or gain unauthorized access. The following versions of Naxclow Io

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 11 Score 0.7564200703703704

Yarbo Android/iOS Mobile Application and Cloud Infrastructure

View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to obtain hard-coded credentials, gain access to telemetry data, and potentially send operational commands to the robot fleet. The following versions of Yarbo Android/iO

Security securitycisaadvisoriesvulnerabilities
Unit 42 (Palo Alto Networks) Jun 12 Score 0.738093263425926

Tracing Digital Intent: New MacOS Tahoe 26 Artifact Discovered

Unit 42 has discovered a new macOS Tahoe 26 forensic artifact that tracks user menu selections across the operating system. Learn more here. The post Tracing Digital Intent: New MacOS Tahoe 26 Artifact Discovered appeared first on Unit 42 .

Security securitythreat-researchmalware
CyberScoop Jun 12 Score 0.7379891273148148

FBI takes down massive China-based cybercrime network that caused $1.9B in losses

Outsider provided phishing kits and infrastructure for cybercriminals to scam victims with lures claiming they missed packages, had unpaid tolls or parking violations. The post FBI takes down massive China-based cybercrime network that caused $1.9B in losses a

Security securitypolicygovernment
Dark Reading Jun 12 Score 0.7354903842592593

ShinyHunters Uses Oracle Zero-Day to Rampage Higher Ed

A major bug in Oracle's ERP software disproportionately affected American universities, and hackers have capitalized by stealing gobs of data.

Security securityenterprisethreats
The Hacker News Jun 12 Score 0.7340149953703704

Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit

Attackers took over more than 400 packages in the Arch User Repository (AUR) this week and rewrote their build scripts to install a credential stealer on any machine that built them. The malware is a Rust binary built to harvest developer secrets. When it land

Security securityhackingvulnerabilities

2026-06-11 13:32:15 +0000

2026-06-11

17 items
Schneier on Security Jun 11 Score 0.895810211574074

Enhanced License Plate Tracking

The surveillance company Leonardo wants more data : A surveillance company plans to add sensors to automatic license plate readers (ALPRs) that would mean the devices, as well as capture the license plate of passing vehicles, would also sweep up unique identif

Security securitycryptographypolicy
BleepingComputer Jun 11 Score 0.8239037370370371

Coupang hit with record $409 million data breach fine in Korea

​​The Personal Information Protection Commission (PIPC), South Korea's data protection regulator, has fined e-commerce giant Coupang a record 624.6 billion won (roughly $409 million) following a massive data breach affecting more than 37 million customers [...

Security securitymalwarevulnerabilities
BleepingComputer Jun 11 Score 0.8237384592592594

CISA tells govt agencies to patch critical exploited flaws in 3 days

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced a new Binding Operational Directive, 26-04, that prioritizes security updates for Federal Civilian Executive Branch (FCEB) agencies. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 11 Score 0.8170060518518519

Microsoft fixes BitLocker recovery bug on Windows Server 2025

Microsoft has resolved a known issue causing some Windows Server 2025 devices to boot into BitLocker recovery after installing the April 2026 security update. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 11 Score 0.8148815148148149

Nottingham University data breach affects over 450,000 students

The University of Nottingham confirmed on Wednesday that a hacking group gained access to its student records system in a breach affecting both current students and alums. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 11 Score 0.8130060518518519

Max severity Ivanti Sentry vulnerability now exploited in attacks

Attackers are now targeting a recently patched maximum-severity flaw in Ivanti Sentry, enabling them to execute code with root privileges on Internet-exposed secure mobile gateways. [...]

Security securitymalwarevulnerabilities
The Hacker News Jun 11 Score 0.7466068847222223

AI Broke Vulnerability Management. That's Why CISOs Are Moving Budget to BAS.

For thirty years, vulnerability management ran on a buffer: the months between when a vulnerability was found and when someone could figure out how to weaponize it. The solution was straightforward enough; triage by severity, schedule the fix, validate, and mo

Security securityhackingvulnerabilities
Unit 42 (Palo Alto Networks) Jun 11 Score 0.7441180152777778

Trust No Skill: Integrity Verification for AI Agent Supply Chains

Protect enterprise AI agents from supply chain risks by auditing third-party skills for hidden vulnerabilities and multi-stage attack chains. The post Trust No Skill: Integrity Verification for AI Agent Supply Chains appeared first on Unit 42 .

Security securitythreat-researchmalware
The Hacker News Jun 11 Score 0.7437170699074074

OceanLotus Hits Vietnam Investors With SPECTRALVIPER in FireAnt Attack

The Vietnam-aligned threat actor known as OceanLotus has been attributed to two distinct campaigns that targeted domestic entities and stock investors with a backdoor known as SPECTRALVIPER. The campaigns involve a prolonged cyber espionage operation aimed at

Security securityhackingvulnerabilities
CISA Cybersecurity Advisories Jun 9 Score 0.7424401791666667

Schneider Electric Modicon Network Managed Switches

View CSAF Summary Schneider Electric is aware of a RADIUS protocol vulnerability affecting its Modicon Network Managed Switch product. The Modicon Network Managed Switch product provides connectivity for multiple Ethernet devices, network management, enhanced

Security securitycisaadvisoriesvulnerabilities
Risky Bulletin Jun 11 Score 0.7385013782407407

Srsly Risky Biz: Europe wants to wean itself off US tech

Tom Uren and James Wilson talk about the European Union’s digital sovereignty push. A divorce from US tech giants is on the cards, but building sovereign infrastructure and chip capacity will be hard. From an American perspective this is an entirely predicable

Security securitynewspodcastintelligence
The Hacker News Jun 11 Score 0.7380804958333333

GitHub to Disable npm Install Scripts by Default to Stop Supply Chain Attacks

GitHub has announced what it said are "breaking changes" coming to npm version 12, one of which turns off install scripts by default to combat software supply chain threats. The changes aim to combat attack techniques that abuse the "npm install" command to tr

Security securityhackingvulnerabilities
Dark Reading Jun 11 Score 0.7274679388888889

Chinese, N. Korean Threat Groups Build on Asia-Pacific Success

North Korea's gross domestic product (GDP) has grown, in part because of the cybercrime gains of groups linked to the nation, which target business and financial firms.

Security securityenterprisethreats

2026-06-10 22:54:05 +0000

2026-06-10

17 items
Krebs on Security Jun 10 Score 0.9602688277777779

Who Runs the Ransomware Group 'The Gentlemen?'

A cybercrime group known as The Gentlemen has emerged as the second most active ransomware gang by victim count, rapidly attracting a talented pool of hackers through an aggressive recruitment strategy that promises affiliates 90 percent of any ransom paid by

Security securitycybercrimebreaches
Krebs on Security Jun 9 Score 0.9337058648148149

A Record-Breaking Patch Tuesday for June 2026

Microsoft today released software updates to plug nearly 200 security holes across its Windows operating systems and supported software, a record number of fixes for the company's monthly Patch Tuesday cycle. Nearly three dozen of those bugs earned Microsoft's

Security securitycybercrimebreaches
Schneier on Security Jun 9 Score 0.8470210726851851

GPS As a Key Distribution Platform

This is interesting: The U.S. military has likely been quietly broadcasting codes for its global encryption network using public GPS for nearly 20 years, turning each satellite into a hidden "numbers station," according to Steven Murdoch… That means ever

Security securitycryptographypolicy
BleepingComputer Jun 10 Score 0.8224910550925927

Path traversal flaw in AI dev platform Langflow exploited in attacks

Attackers are actively exploiting CVE-2026-5027, a high-severity path traversal vulnerability in the AI development platform Langflow, to write arbitrary files on exposed servers. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 10 Score 0.8209188328703705

The ‘Miasma’ worm source code briefly leaked on GitHub

The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain attacks, was briefly open-sourced on GitHub. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 10 Score 0.8196577217592593

GitHub announces npm security changes to tackle supply-chain attacks

GitHub has announced that npm v12, expected next month, will introduce several security-focused changes aimed at blocking supply-chain attacks abusing behaviors triggered by the 'npm install' command. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 10 Score 0.8177192958333334

Oracle PeopleSoft servers hacked in ShinyHunters data theft attacks

Oracle PeopleSoft servers are being targeted in ongoing data theft attacks by the ShinyHunters extortion gang, which claims to have stolen data from over 100 organizations. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 10 Score 0.8118317958333334

China-linked JDY botnet expands targeting of U.S. military networks

The JDY botnet, a malware network previously associated with Chinese threat actors like Volt Typhoon, has significantly expanded its targeting scope and reconnaissance efforts. [...]

Security securitymalwarevulnerabilities
SANS Internet Storm Center Jun 9 Score 0.7761227342592594

Microsoft June 2026 Patch Tuesday, (Tue, Jun 9th)

Microsoft today released patches for 204 vulnerabilities. 38 of these vulnerabilities are considered critical, and three have been disclosed before today. Six of the vulnerabilities affect Microsoft cloud solutions and do not require any user action. In additi

Security securitythreatsiocs
CISA Cybersecurity Advisories Jun 9 Score 0.766831639351852

Siemens KACO Blueplanet Inverters

View CSAF Summary KACO blueplanet Inverters contain multiple vulnerabilities that could allow an attacker to derive the credentials from the devices serial number and misuse them to gain unauthorized access. KACO new energy GmbH has released new versions for s

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 9 Score 0.766831639351852

CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-7473 Arista Extensible Operating System Incomplete Comparison with Missing Factors Vulnerability CVE-2026-11645 G

Security securitycisaadvisoriesvulnerabilities
CISA Cybersecurity Advisories Jun 9 Score 0.766831638888889

Schneider Electric EcoStruxure Panel Server

View CSAF Summary Schneider Electric is aware of its vulnerability in its EcoStruxure Panel Server offer. The EcoStruxure Panel Server is a high performance, modular gateway with enhanced cybersecurity that provides easy and fast connections to multiple concur

Security securitycisaadvisoriesvulnerabilities

2026-06-09 04:01:08 +0000

2026-06-09

17 items
Schneier on Security Jun 8 Score 0.8818275856481481

Critical Zcash Vulnerability Found and Fixed

If you're a user—owner?—of this cryptocurrency, this is important: On May 29, the security researcher Taylor Hornby found a critical vulnerability in Zcash Orchard privacy pool using Claude Opus 4.8. The Zcash team hired Hornby specifically to look

Security securitycryptographypolicy
Schneier on Security Jun 8 Score 0.8716859189814814

Anthropic’s Project Glasswing Update

In April, Anthropic initated Project Glasswing . The idea was to let companies use their new model to find and fix vulnerabilities in their own software. It was a fantastic PR move, and so many press outlets have uncritically parroted Anthropic's claims that i

Security securitycryptographypolicy
BleepingComputer Jun 8 Score 0.8148521314814815

SoFi confirms third-party data breach at Hong Kong subsidiary

SoFi Hong Kong is warning that it suffered a data breach after hackers gained access to a database at a third-party vendor containing customer information. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 8 Score 0.8134049092592593

New Apple feature automatically changes your compromised passwords

At WWDC 26, Apple announced an Apple Intelligence-powered feature that can automatically fix weak and compromised passwords. This works in Safari, and it's rolling out with iOS 27. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 8 Score 0.8127914833333334

New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud supply-chain attack that delivered malware designed to steal developer secrets. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 8 Score 0.8094387055555556

WhatsApp says it disrupted new NSO spyware phishing attacks

WhatsApp has detected and stopped spear-phishing campaigns allegedly conducted by the NSO Group after investigating user reports of social engineering attacks. [...]

Security securitymalwarevulnerabilities
SANS Internet Storm Center Jun 8 Score 0.8068477106481482

TeamPCP Supply Chain Campaign: Activity Through 2026-06-07, (Mon, Jun 8th)

This diary continues the Internet Storm Center's tracking of the TeamPCP supply chain campaign, first documented in the SANS white paper When the Security Scanner Became the Weapon and most recently in the handler diary A

Security securitythreatsiocs
CISA Cybersecurity Advisories Jun 8 Score 0.7983029481481482

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-42271 BerriAI LiteLLM Command Injection Vulnerability CVE-2026-50751 Check Point Security Gateway Improper Authenti

Security securitycisaadvisoriesvulnerabilities
Unit 42 (Palo Alto Networks) Jun 8 Score 0.7416571680555556

When “Hi, This Is IT” Comes Through Microsoft Teams

Attackers are increasingly targeting collaboration platforms like Microsoft Teams. Learn the risks and key steps to strengthen your organization's security. The post When “Hi, This Is IT” Comes Through Microsoft Teams appeared first on Unit 42 .

Security securitythreat-researchmalware
Risky Bulletin Jun 8 Score 0.7383957847222222

Between Two Nerds: Nerds at NATO

In this edition of Between Two Nerds Tom Uren and The Grugq speak at the NATO CyCon conference on Cyber Conflict in Tallinn, Estonia. The pair discuss how cyber operations complement conventional military operations and the past, present and future of cyber co

Security securitynewspodcastintelligence
Dark Reading Jun 8 Score 0.737430187962963

Check Point VPN Flaw Exploited Since Early May

A newly discovered, critical zero-day vulnerability is under attack; a Qilin ransomware affiliate has been blamed for at least one incident.

Security securityenterprisethreats
The Hacker News Jun 8 Score 0.7371265675925925

One-Character Linux Kernel Flaw Enables Local Root Access, Exploits Now Public

Security researchers have published a detailed, working exploit for a Linux kernel use-after-free that lets an unprivileged local user escalate to root and break out of a container. The flaw, CVE-2026-23111, sits in the kernel's nf_tables packet-filtering code

Security securityhackingvulnerabilities
Dark Reading Jun 8 Score 0.7351862064814815

Iran Signed a Ceasefire — Its Hackers Didn't

An extension of the Geneva Conventions could impose restrictions on cyberwarfare under ceasefire conditions and close a major loophole in international conflict.

Security securityenterprisethreats

2026-06-08 09:09:18 +0000

2026-06-08

17 items
BleepingComputer Jun 8 Score 0.8197550592592593

Over 20,000 Instagram accounts stolen in Meta AI support hack

Meta has revealed that over 20,000 Instagram users had their accounts hijacked in a recent incident where attackers used Meta's AI-powered support system to reset passwords. [...]

Security securitymalwarevulnerabilities
Wired — Security Jun 8 Score 0.8197426800925927

All the Ways Europe Is Ditching American Technology

A WIRED timeline shows how dozens of governments, companies, and other organizations across Europe are moving, or planning to shift, away from US Big Tech.

Security securityprivacysurveillance
BleepingComputer Jun 7 Score 0.8086323740740742

Hands on with Intelligent Terminal, an AI-powered Windows Terminal

Microsoft has created an open-source fork of Windows Terminal called "Intelligent Terminal," and it allows you to use AI directly inside Terminal without interfering with the regular session. [...]

Security securitymalwarevulnerabilities
BleepingComputer Jun 7 Score 0.7933346888888889

Silent Ransom Group targets law firms with fake IT support calls

The Silent Ransom Group extortion gang is actively targeting U.S. law firms and professional services organizations in social engineering attacks that often lead to data theft within hours of initial contact, according to a new report by cybersecurity firm Man

Security securitymalwarevulnerabilities
Schneier on Security Jun 5 Score 0.7870032050925925

AI Worm

Researchers have prototyped an AI-powered internet worm . The coolest thing about the prototype is that it carries its own LLM with it, and runs it on computers that have been broken into. This is the closest to John Brunner's original 1975 conception of a com

Security securitycryptographypolicy
The Hacker News Jun 8 Score 0.7475054236111112

UNC3753 Used Vishing and Physical Intrusions in U.S. Data Theft Extortion Campaign

Cybersecurity researchers have disclosed details of a financially motivated data theft extortion campaign that has targeted dozens of organizations across professional, legal, and financial services in the U.S. between January and May 2026. The activity has be

Security securityhackingvulnerabilities
The Hacker News Jun 8 Score 0.7449850532407407

VS Code Adds 2-Hour Extension Auto-Update Delay to Limit Supply Chain Attacks

Microsoft has announced that Visual Studio Code (VS Code) will apply a two-hour delay before extensions for the integrated development environment (IDE) are updated automatically to a newer version in an attempt to tackle software supply chain threats. "When a

Security securityhackingvulnerabilities
Schneier on Security Jun 4 Score 0.7431911680555554

Hacking Meta’s AI Chatbot

Hackers are convincing Meta's AI support chatbot to let them take over other peoples' accounts: A video posted on X showed the step-by-step process to hack someone's Instagram account. The hacker allegedly used a VPN to spoof the targets' presumed location to

Security securitycryptographypolicy
Risky Bulletin Jun 8 Score 0.7379788555555555

Risky Bulletin: RubyGems adds dependency cooldowns to counter supply chain attacks

RubyGems adds dependency-cooldowns to counter supply chain attacks, AT&T and IBM are accused of hiding foreign hacks, Cisco warns of a new SD-WAN zero-day, and Google layoffs hit security teams. Show notes Risky Bulletin: RubyGems adds dependency cooldowns to

Security securitynewspodcastintelligence
SecurityWeek Jun 8 Score 0.7114870782407406

OpenAI Rolling Out ChatGPT Account Security Controls

The Active Sessions and Lockdown Mode features are being made more broadly available by the AI giant. The post OpenAI Rolling Out ChatGPT Account Security Controls appeared first on SecurityWeek .

Security securityindustryvulnerabilities
SecurityWeek Jun 8 Score 0.7103662449074073

SolarWinds Serv-U Vulnerability Exploited in the Wild

Unauthenticated attackers can exploit the flaw via specially crafted POST requests that crash the Serv-U service. The post SolarWinds Serv-U Vulnerability Exploited in the Wild appeared first on SecurityWeek .

Security securityindustryvulnerabilities
CISA Cybersecurity Advisories Jun 5 Score 0.7097424615740742

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-28318 SolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability This type of vulnerability is a frequent atta

Security securitycisaadvisoriesvulnerabilities
Krebs on Security Jun 1 Score 0.7089879412037038

Hackers Used Meta's AI Support Bot to Seize Instagram Accounts

The Instagram accounts for the Obama White House and the Chief Master Sergeant of the U.S. Space Force were briefly defaced with pro-Iranian images and messages over the weekend, after instructions began circulating on Telegram showing how to trick Meta's "AI

Security securitycybercrimebreaches

2026-06-04 04:15:00 +0000

2026-06-04

5 items
Krebs on Security May 18 Score 0.9750000000000001

CISA Admin Leaked AWS GovCloud Keys on Github

Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and a large number of internal CISA syste

Security securitycybercrimebreaches
Krebs on Security May 21 Score 0.9750000000000001

Alleged Kimwolf Botmaster 'Dort' Arrested, Charged in U.S. and Canada

Canadian authorities on Wednesday arrested a 23-year-old Ottawa man on suspicion of building and operating Kimwolf, a fast spreading Internet-of-Things botnet that enslaved millions of devices for use in a series of massive distributed denial-of-service (DDoS)

Security securitycybercrimebreaches
Schneier on Security May 29 Score 0.8999999999999999

Friday Squid Blogging: Another Squid

Someone named "Squid" seems to be a " West Country legend ." As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Blog moderation policy.

Security securitycryptographypolicy
Schneier on Security Jun 2 Score 0.8999999999999999

Microsoft Threatening Security Researcher

An anonymous security researcher called "Nightmare Eclipse" has been publishing a series of significant security exploits against Microsoft Windows—including one that breaks BitLocker. Microsoft has threatened legal action against the researcher. Lots of

Security securitycryptographypolicy
Schneier on Security Jun 3 Score 0.8999999999999999

AI Used to Decrypt Medieval Ciphers

Researchers are using machine learning algorithms to decrypt historical pencil-and-paper ciphers.

Security securitycryptographypolicy

2026-06-03 04:09:53 +0000

2026-06-03

2 items
Krebs on Security May 22 Score 0.9750000000000001

Lawmakers Demand Answers as CISA Tries to Contain Data Leak

Lawmakers in both houses of Congress are demanding answers from the U.S. Cybersecurity & Infrastructure Security Agency (CISA) after KrebsOnSecurity reported this week that a CISA contractor intentionally published AWS GovCloud keys and a vast trove of ot

Security securitycybercrimebreaches
Schneier on Security Jun 2 Score 0.8999999999999999

The Intersection of Encryption and AI

As part of their 20th Anniversary celebration, Dark Reading asked five cybersecurity industry leaders who wrote blogs or columns for them over the years to select their favorite piece and share their reflections on the topic today. This is my section. Renowned

Security securitycryptographypolicy

2026-06-02 04:10:18 +0000

2026-06-02

5 items
Krebs on Security May 25 Score 0.9750000000000001

Netherlands Seizes 800 Servers, Arrests 2 for Aiding Cyberattacks

Authorities in the Netherlands have arrested the co-owners of two related Internet hosting companies for operating IT infrastructure used by Russia to carry out cyberattacks, influence operations and disinformation campaigns inside the European Union. The two

Security securitycybercrimebreaches
Krebs on Security Jun 1 Score 0.9750000000000001

Hackers Used Meta's AI Support Bot to Seize Instagram Accounts

The Instagram accounts for the Obama White House and the Chief Master Sergeant of the U.S. Space Force were briefly defaced with pro-Iranian images and messages over the weekend, after instructions began circulating on Telegram showing how to trick Meta's "AI "

Security securitycybercrimebreaches
Schneier on Security May 26 Score 0.8999999999999999

Identifying People Using Wi-Fi Routers

Not identifying people based on their use of Wi-Fi routers, but identifying people using Wi-Fi signals . This is accomplished through what is known as WiFi sensing , or the use of WiFi signals to infer information about a physical environment. When radio signa

Security securitycryptographypolicy
Schneier on Security May 27 Score 0.8999999999999999

FBI’s 2025 Internet Crime Report

The 2025 Internet Crime Report was published a few weeks ago, but I only just saw it. Lots of interesting statistics. Press release . News articles .

Security securitycryptographypolicy
Schneier on Security Jun 1 Score 0.8999999999999999

Vulnerability Disclosure in the Age of AI

New article: " Responsible Disclosure in the Age of AI: A Call for Urgent Action ," by Melissa Hathaway. Abstract: Artificial intelligence is fundamentally reshaping the balance between vulnerability discovery and remediation. Frontier AI models are now capabl

Security securitycryptographypolicy

2026-06-01 04:15:28 +0000

2026-06-01

3 items
Krebs on Security May 12 Score 0.9750000000000001

Patch Tuesday, May 2026 Edition

Artificial intelligence platforms may be just as susceptible to social engineering as human beings, but they are proving remarkably good at finding security vulnerabilities in human-made computer code. That reality is on full display this month with some of th

Security securitycybercrimebreaches
Schneier on Security May 29 Score 0.8999999999999999

Chilling Effects

Younger Americans have soured on the second Donald Trump presidency , but they are not protesting it. Despite an unpopular Iran war and an even more unpopular Trump administration , college campus protests nationwide have gone silent . And at many schools, stu

Security securitycryptographypolicy
Schneier on Security May 29 Score 0.8999999999999999

Friday Squid Blogging: Another Squid

Someone named "Squid" seems to be a " West Country legend ." As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Blog moderation policy.

Security securitycryptographypolicy

2026-05-31 04:20:27 +0000

2026-05-31

3 items
Krebs on Security May 18 Score 0.9750000000000001

CISA Admin Leaked AWS GovCloud Keys on Github

Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and a large number of internal CISA syste

Security securitycybercrimebreaches
Krebs on Security May 21 Score 0.9750000000000001

Alleged Kimwolf Botmaster 'Dort' Arrested, Charged in U.S. and Canada

Canadian authorities on Wednesday arrested a 23-year-old Ottawa man on suspicion of building and operating Kimwolf, a fast spreading Internet-of-Things botnet that enslaved millions of devices for use in a series of massive distributed denial-of-service (DDoS)

Security securitycybercrimebreaches
Krebs on Security May 22 Score 0.9750000000000001

Lawmakers Demand Answers as CISA Tries to Contain Data Leak

Lawmakers in both houses of Congress are demanding answers from the U.S. Cybersecurity & Infrastructure Security Agency (CISA) after KrebsOnSecurity reported this week that a CISA contractor intentionally published AWS GovCloud keys and a vast trove of ot

Security securitycybercrimebreaches

2026-05-30 04:08:23 +0000

2026-05-30

2 items
Krebs on Security May 25 Score 0.975

Netherlands Seizes 800 Servers, Arrests 2 for Aiding Cyberattacks

Authorities in the Netherlands have arrested the co-owners of two related Internet hosting companies for operating IT infrastructure used by Russia to carry out cyberattacks, influence operations and disinformation campaigns inside the European Union. The two

Security securitycybercrimebreaches
Schneier on Security May 26 Score 0.8999999999999999

Identifying People Using Wi-Fi Routers

Not identifying people based on their use of Wi-Fi routers, but identifying people using Wi-Fi signals . This is accomplished through what is known as WiFi sensing , or the use of WiFi signals to infer information about a physical environment. When radio signa

Security securitycryptographypolicy

2026-05-29 04:34:56 +0000

2026-05-29

1 items

2026-05-28 04:11:59 +0000

2026-05-28

2 items
Krebs on Security May 12 Score 0.9750000000000001

Patch Tuesday, May 2026 Edition

Artificial intelligence platforms may be just as susceptible to social engineering as human beings, but they are proving remarkably good at finding security vulnerabilities in human-made computer code. That reality is on full display this month with some of th

Security securitycybercrimebreaches
BleepingComputer May 27 Score 0.8250000000000001

GPU mining malware spreads via SEO poisoning, AI chatbots

Threat actors are targeting systems with high-performance computers in an ongoing cryptojacking campaign spread through a coordinated SEO poisoning operation that also manipulated AI chatbot recommendations. [...]

Security securitymalwarevulnerabilities

2026-05-27 04:09:54 +0000

2026-05-27

3 items
Krebs on Security May 18 Score 0.9750000000000001

CISA Admin Leaked AWS GovCloud Keys on Github

Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and a large number of internal CISA syste

Security securitycybercrimebreaches
Krebs on Security May 21 Score 0.9750000000000001

Alleged Kimwolf Botmaster 'Dort' Arrested, Charged in U.S. and Canada

Canadian authorities on Wednesday arrested a 23-year-old Ottawa man on suspicion of building and operating Kimwolf, a fast spreading Internet-of-Things botnet that enslaved millions of devices for use in a series of massive distributed denial-of-service (DDoS)

Security securitycybercrimebreaches
Krebs on Security May 22 Score 0.9750000000000001

Lawmakers Demand Answers as CISA Tries to Contain Data Leak

Lawmakers in both houses of Congress are demanding answers from the U.S. Cybersecurity & Infrastructure Security Agency (CISA) after KrebsOnSecurity reported this week that a CISA contractor intentionally published AWS GovCloud keys and a vast trove of ot

Security securitycybercrimebreaches

2026-05-26 04:08:45 +0000

2026-05-26

4 items
Krebs on Security May 25 Score 0.9750000000000001

Netherlands Seizes 800 Servers, Arrests 2 for Aiding Cyberattacks

Authorities in the Netherlands have arrested the co-owners of two related Internet hosting companies for operating IT infrastructure used by Russia to carry out cyberattacks, influence operations and disinformation campaigns inside the European Union. The two

Security securitycybercrimebreaches
Schneier on Security May 20 Score 0.8999999999999999

On AI Security

Good report : Executive Summary: Let's say you wanted to make sure that your AI is secure. Can you just maximize the security and privacy benchmark and call it a day? Nope, because benchmarks don't actually work for measuring AI capabilities (even when they ar

Security securitycryptographypolicy
Schneier on Security May 21 Score 0.8999999999999999

macOS Kernel Memory Corruption Exploit

A group used Anthropic's Mythos AI model to help find a kernel memory corruption vulnerability and exploit on Apple's M5. News article .

Security securitycryptographypolicy
Schneier on Security May 22 Score 0.8999999999999999

CISA Security Leak

Crazy story : Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and a large number of inter

Security securitycryptographypolicy

2026-05-25 06:46:25 +0000

2026-05-25

3 items
Krebs on Security May 8 Score 0.9750000000000001

Canvas Breach Disrupts Schools & Colleges Nationwide

An ongoing data extortion attack targeting the widely-used education technology platform Canvas disrupted classes and coursework at school districts and universities across the United States today, after a cybercrime group defaced the service's login page with

Security securitycybercrimebreaches
Krebs on Security May 12 Score 0.9750000000000001

Patch Tuesday, May 2026 Edition

Artificial intelligence platforms may be just as susceptible to social engineering as human beings, but they are proving remarkably good at finding security vulnerabilities in human-made computer code. That reality is on full display this month with some of th

Security securitycybercrimebreaches
Schneier on Security May 22 Score 0.8999999999999999

Friday Squid Blogging: Regulating Squid Fishing in the South Pacific

The South Pacific Regional Fisheries Management Organization (SPRFMO) needs to regulate squid fishing in the South Pacific. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Blog moderation policy

Security securitycryptographypolicy

2026-05-24 21:27:53 +0000

2026-05-24

3 items
Krebs on Security May 18 Score 0.9750000000000001

CISA Admin Leaked AWS GovCloud Keys on Github

Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and a large number of internal CISA syste

Security securitycybercrimebreaches
Krebs on Security May 21 Score 0.9750000000000001

Alleged Kimwolf Botmaster 'Dort' Arrested, Charged in U.S. and Canada

Canadian authorities on Wednesday arrested a 23-year-old Ottawa man on suspicion of building and operating Kimwolf, a fast spreading Internet-of-Things botnet that enslaved millions of devices for use in a series of massive distributed denial-of-service (DDoS)

Security securitycybercrimebreaches
Krebs on Security May 22 Score 0.9750000000000001

Lawmakers Demand Answers as CISA Tries to Contain Data Leak

Lawmakers in both houses of Congress are demanding answers from the U.S. Cybersecurity & Infrastructure Security Agency (CISA) after KrebsOnSecurity reported this week that a CISA contractor intentionally published AWS GovCloud keys and a vast trove of ot

Security securitycybercrimebreaches