cybersec

#TitleDate
1New phishing kits target Microsoft 365 accounts, evade MFAJul 14, 1:10 pm
2Microsoft Entra ID gets passkeys default authentication starting SeptemberJul 14, 1:10 pm
3SAP warns of critical flaws in NetWeaver and Commerce CloudJul 14, 12:10 pm
4Grok Build Uploaded Entire Git Repositories to xAI Storage, Not Just Files It ReadJul 14, 11:10 am
5Microsoft starts testing cleaner Windows Search without adsJul 14, 11:10 am
6Grok Build Uploads Entire Git Repositories to xAI Storage, Not Just Files It ReadsJul 14, 10:10 am
7US sanctions VPN, malware providers for enabling ransomware attacksJul 14, 10:10 am
8Microsoft Maps Three Salesforce Attack Paths Tied to a Year of ShinyHunters ActivityJul 14, 9:10 am
9148 npm Packages Disguised as Student Proxies Turned Browsers Into a DDoS BotnetJul 14, 9:10 am
10U.S. Sanctions First VPN Service and Malware Cryptor Seller Over Ransomware SupportJul 14, 9:10 am
11Microsoft Maps Year-Long ShinyHunters-Linked Salesforce Data Theft Across Three PathsJul 14, 7:10 am
12ISC Stormcast For Tuesday, July 14th, 2026 https://isc.sans.edu/podcastdetail/10006, (Tue, Jul 14th)Jul 14, 3:10 am
13Japan's largest taxi operator shuts systems after cyberattackJul 13, 9:10 pm
14Hackers backdoor Jscrambler npm package with infostealer malwareJul 13, 8:10 pm
15New CrashStealer malware poses as Apple crash reporting toolJul 13, 7:10 pm
16Google and Microsoft Pull ModHeader With 1.6 Million Installs After Dormant Collector FoundJul 13, 6:10 pm
17CrashStealer macOS Malware Uses Notarized Dropper to Pass Gatekeeper ChecksJul 13, 6:10 pm
18New MemGhost Attack Plants Persistent False Memories in AI Agents Through One EmailJul 13, 4:10 pm
19Lessons Learned from CISA’s Recent GitHub LeakJul 13, 4:10 pm
20⚡ Weekly Recap: ShareFile Threat, Citrix Bleed 2 Ransomware, AI Coding Attacks, and MoreJul 13, 4:10 pm
21CISA warns of actively exploited RCE flaws in Joomla extensionsJul 13, 4:10 pm
22Lidl discloses online shop breach after service provider hackJul 13, 3:10 pm
23Forg365 PhaaS Targets Microsoft 365 with Device Code and AitM Session TheftJul 13, 2:10 pm
24UK charges suspects linked to Russian Coms call spoofing platformJul 13, 2:10 pm
25Breach at the Beach: Play the Ultimate Entra ID CTFJul 13, 2:10 pm
26Attacker Uses Suspected AI-Generated PowerShell Script to Map Active DirectoryJul 13, 1:10 pm
27Thinking Fast and Slow in the SOC: The Case for Combining Autonomous AI with Analyst CopilotsJul 13, 1:10 pm
28Meta Files Patent for AI That Can Listen All Day and Track How You're FeelingJul 13, 1:10 pm
29EU sanctions Russian GRU military hackers over cyberattacksJul 13, 12:10 pm
30US and allies warn of Russian critical infrastructure attacksJul 13, 10:10 am
31Misconfigured Server Reveals Three Evilginx Phishing Operations Targeting Microsoft 365Jul 13, 9:10 am
32iCagenda and Balbooa Forms Joomla Flaws Reportedly Exploited as Zero-DaysJul 13, 7:10 am
33Someone Is Scanning for Your MCP Servers and AI Assistant Credentials, (Mon, Jul 13th)Jul 13, 5:10 am
34ISC Stormcast For Monday, July 13th, 2026 https://isc.sans.edu/podcastdetail/10004, (Mon, Jul 13th)Jul 13, 2:10 am
35OpenAI temporarily relaxes GPT-5.6 Sol usage limitsJul 13, 1:10 am
36Claude Fable 5 stays free for paid users until July 19 as Anthropic buys more timeJul 12, 8:10 pm
37RedHook Android malware now uses Wireless ADB for shell accessJul 12, 3:10 pm
38Hackers Weaponize Balochistan Police Portal in Multi-Group Espionage CampaignsJul 11, 7:10 pm
39Compromised jscrambler 8.14.0 npm Release Drops Rust Infostealer During InstallJul 11, 7:10 pm
40Australia warns of global campaign targeting vulnerable CMS platformsJul 11, 3:10 pm
41Wireshark 4.6.7 Released, (Sat, Jul 11th)Jul 11, 10:10 am
42'Ghostcommit' hides prompt injection in images to fool AI agents, steal secretsJul 11, 9:10 am
43Critical Zimbra Flaw Could Let Crafted Emails Run Malicious Code in User SessionsJul 11, 8:10 am
44New U-Boot flaws could enable stealthy firmware attacksJul 10, 10:10 pm
45URGENT - Progress Tells ShareFile Customers to Shut Down Storage Zone Controllers Over Security ThreatJul 10, 7:10 pm
46Six New U-Boot Flaws Could Let Malicious Images Crash Devices or Run Code at BootJul 10, 6:10 pm
47Injective Labs GitHub Compromise Pushes Wallet-Key-Stealing npm PackagesJul 10, 6:10 pm
48Ryuk ransomware member pleads guilty in the US, faces 15 years in prisonJul 10, 6:10 pm
49Progress urges ShareFile admins to shut down servers over “credible” threatJul 10, 5:10 pm
50Police suspects Dutch hackers were involved in Odido breachJul 10, 5:10 pm
51Laser Attack Resets Tangem Wallet Passwords on Cards That Can't Be PatchedJul 10, 4:10 pm
52Money launderer accused of stealing seized crypto while in prisonJul 10, 4:10 pm
53Hackers exploit critical auth bypass in Gitea Docker imageJul 10, 4:10 pm
54Researcher Details WhatsApp-to-Host Attack Chain Using Three OpenClaw FlawsJul 10, 3:10 pm
55Attackers Exploit 'Ill Bloom' Vulnerability to Drain Over $5 Million From Cryptocurrency WalletsJul 10, 2:10 pm
56New MODBEACON RAT Uses gRPC Streaming for Encrypted C2 TrafficJul 10, 2:10 pm
57The Replicant in Your Directory: AI Agents and the Identity Security GapJul 10, 2:10 pm
58Hackers Use Fake Microsoft Entra Passkey Enrollment to Gain Microsoft 365 AccessJul 10, 12:10 pm
59Study of 281 Free Android VPN Apps Finds Traffic Leaks, Unencrypted Data, and TrackingJul 10, 12:10 pm
60Exposed Hacker Server Reveals WP-SHELLSTORM Backdooring Thousands of WordPress SitesJul 10, 12:10 pm
61From 17,000 to 1.1 Million Assets: How Lumen Technologies Rebuilt Exposure Management at ScaleJul 10, 12:10 pm
62Zimbra urges customers to patch critical web client XSS flawJul 10, 12:10 pm
63Unpatched XRING Flaw in XQUIC Lets Remote Clients Crash HTTP/3 ServersJul 10, 12:10 pm
64Ransomware Negotiator Gets 70 Months in Prison for Aiding BlackCat AttacksJul 10, 10:10 am
65Attackers Exploit 'Ill Bloom' Vulnerability to Drain $3.1 Million From Cryptocurrency WalletsJul 10, 10:10 am
66"Comment stuffing" in an HTML phishing attachment as a mechanism for evading AI-based detection?, (Fri, Jul 10th)Jul 10, 10:10 am
67Former ransomware negotiator gets 4 years for BlackCat attacksJul 10, 9:10 am
68ISC Stormcast For Friday, July 10th, 2026 https://isc.sans.edu/podcastdetail/10002, (Fri, Jul 10th)Jul 10, 2:10 am
69OpenMandriva Linux says contributor tried to sabotage the projectJul 9, 11:10 pm
70Injective SDK on npm infected with cryptocurrency wallet stealerJul 9, 8:10 pm
71New GigaWiper Windows Backdoor Bundles Disk Wiping, Fake Ransomware, and SpywareJul 9, 7:10 pm
72Dormant GitHub Accounts Help Attackers Blend In While Mapping Corporate OrgsJul 9, 7:10 pm
73ThreatsDay: Cloud Bucket Hijacking, Windows LPE Chain, Global Fraud Bust + 17 More StoriesJul 9, 5:10 pm
74npm 12 Disables Install Scripts by Default to Reduce Supply Chain RiskJul 9, 5:10 pm
75Microsoft expects more Windows security updates from AI-discovered flawsJul 9, 5:10 pm
76New Helix vishing group emerges in SharePoint data theft attacksJul 9, 5:10 pm
77The Hidden Security Risks of Reduced Summer IT CoverageJul 9, 3:10 pm
78New Forg365 phishing platform uses AI to target Microsoft 365 accountsJul 9, 3:10 pm
79AI Attacks Move in Minutes. Join This Webinar on Building a Defense That Keeps UpJul 9, 1:10 pm
80GodDamn Ransomware Uses PoisonX Driver to Disable Endpoint DefensesJul 9, 12:10 pm
81Summer of ClearinghousesJul 9, 12:10 pm
82Microsoft to retire the OWA Light client in Exchange ServerJul 9, 11:10 am
83Microsoft Patches RoguePlanet Defender Flaw That Can Grant SYSTEM PrivilegesJul 9, 10:10 am
84Police arrests 5,800 suspects in global anti-fraud crackdownJul 9, 10:10 am
85Meta's New AI Image Tool Lets Others Use Your Public Instagram Photos in AI ImagesJul 9, 8:10 am
86AssuranceAmerica data breach exposes records of 6.9 million driversJul 9, 8:10 am
87Top AI Agents Built to Catch Malicious Code Can Be Tricked Into Running ItJul 9, 6:10 am
88Microsoft patches RoguePlanet Defender zero-day vulnerabilityJul 9, 6:10 am
89Fake 7-Zip Installers Turn Devices Into Residential Proxy NodesJul 9, 5:10 am
90GhostApproval Symlink Flaws Could Let Malicious Repos Run Code in AI Coding AgentsJul 9, 5:10 am
91_HELP_ME_ESCAPE_FROM_BELARUS_PLEASE_ [Guest Diary], (Tue, Jul 7th)Jul 9, 2:10 am
92ISC Stormcast For Thursday, July 9th, 2026 https://isc.sans.edu/podcastdetail/10000, (Thu, Jul 9th)Jul 9, 2:10 am
93Mount Royal University confirms breach as hackers claim attackJul 8, 10:10 pm
94Fake Paysafe, Skrill SDKs on NPM and PyPi steal credentialsJul 8, 8:10 pm
95Hackers exploit Roundcube flaw to spy on academic researchersJul 8, 7:10 pm
96AI Coding Agents Found Triggering Endpoint Security Rules Built to Catch AttackersJul 8, 6:10 pm
97New HalluSquatting Attack Could Trick AI Coding Assistants Into Installing Botnet MalwareJul 8, 5:10 pm
98Entra passkey enrollment vishing targets Microsoft 365 usersJul 8, 5:10 pm
99Ubiquiti Patches Critical UniFi Flaws Across Connect, Talk, Access, Protect, and OSJul 8, 3:10 pm
100SCMBANKER Malware Uses ClickFix Lures to Target Mexican Banking UsersJul 8, 2:10 pm
101New Ghost Phishing Wave Is Breaking Traditional Email SecurityJul 8, 2:10 pm
1023 Ways AI Powers Service Desk Attacks and How to Prevent ThemJul 8, 2:10 pm
103Felons, Fraudsters Flog Offensive Cybersecurity StartupJul 8, 1:10 pm
104GitHub Copilot Refuses Harmful Requests in Chat, Then Writes Them in CodeJul 8, 12:10 pm
105Telco giant KDDI says data breach affects over 12 million peopleJul 8, 12:10 pm
106The Verification Step Is the New ATO Battleground in 2026Jul 8, 12:10 pm
107GitHub 'Verified' Commits Can Be Rewritten Into New Hashes Without Breaking SignaturesJul 8, 12:10 pm
108DuckDuckGo browser now blocks YouTube video adsJul 8, 12:10 pm
109China-Linked UAT-7810 Expands ORB Network With New LONGLEASH MalwareJul 8, 10:10 am
110CISA orders feds to prioritize patching Langflow auth bypass flawJul 8, 10:10 am
111My Stack Simulator, (Wed, Jul 8th)Jul 8, 9:10 am
112Ubiquiti warns of new max severity UniFi OS vulnerabilityJul 8, 9:10 am
113CISA orders feds to patch max severity ColdFusion flaw by FridayJul 8, 8:10 am
114CISA Adds 4 Actively Exploited Adobe, Joomla, and Langflow Flaws to KEVJul 8, 7:10 am
11515-Year-Old GhostLock Flaw Enables Root and Container Escape on Most Linux DistrosJul 8, 7:10 am
116ISC Stormcast For Wednesday, July 8th, 2026 https://isc.sans.edu/podcastdetail/9998, (Wed, Jul 8th)Jul 8, 2:10 am
117Accenture confirms breach after hacker offers stolen data for saleJul 7, 10:10 pm
118More Odd DNS Records: NIMLOC, (Tue, Jul 7th)Jul 7, 7:10 pm
119Chinese hackers develop LONGLEASH malware to expand ORB networkJul 7, 7:10 pm
120Rogue Agent Flaw Could Have Let Attackers Hijack Google Dialogflow CX ChatbotsJul 7, 6:10 pm
121RedWing MaaS Packages Android Bank Fraud as a Telegram Rental ServiceJul 7, 6:10 pm
122Hidden backdoor in Tenda router firmware grants admin accessJul 7, 6:10 pm
123DEBULL Tooling Abuses Microsoft Device-Code Flow to Target M365 AccountsJul 7, 5:10 pm
124Spain arrests suspected member of pro-Russian hacktivist groupsJul 7, 4:10 pm
125Public GitHub Issue Could Trick GitHub Agentic Workflows Into Leaking Private Repo DataJul 7, 3:10 pm
126Writer AI Flaw Could Let Agent Previews Leak Session Tokens Across TenantsJul 7, 2:10 pm
127Court Filing Reveals Windows Device ID Helped FBI Trace Alleged Scattered Spider HackerJul 7, 2:10 pm
128The GitHub Actions Attack Pattern Your CI Security Scanners MissJul 7, 2:10 pm
129Webinar tomorrow: Why modern email attacks require a new approach to defenseJul 7, 1:10 pm
130What Changes When Your Software Supply Chain Includes AI Writing Your Code?Jul 7, 12:10 pm
131New Januscape Linux flaw allows VM escape on Intel, AMD devicesJul 7, 12:10 pm
132Suspected China-Aligned Hackers Exploit Roundcube Flaws Against UniversitiesJul 7, 10:10 am
133Microsoft to enable Windows settings backup by default for orgsJul 7, 10:10 am
134BeyondTrust warns of critical flaws in remote access softwareJul 7, 9:10 am
135CERT/CC Warns of Hidden Admin Backdoor in Tenda Router FirmwareJul 7, 8:10 am
136Microsoft testing new Cloud Rebuild Windows 11 recovery featureJul 7, 8:10 am
137BeyondTrust Patches Critical Auth Bypass Flaws in Remote Support and PRAJul 7, 7:10 am
138ISC Stormcast For Tuesday, July 7th, 2026 https://isc.sans.edu/podcastdetail/9996, (Tue, Jul 7th)Jul 7, 2:10 am
139Fake IT support calls on Microsoft Teams push EtherRAT malwareJul 6, 9:10 pm
140Phishing poses as big-brand job interview to steal Google accountsJul 6, 9:10 pm
141Iran-Linked Hackers Use New Cavern C2 Framework to Target Israeli OrganizationsJul 6, 8:10 pm
14216-Year-Old Linux KVM Flaw Lets Guest VMs Escape to Host on Intel and AMD x86 SystemsJul 6, 7:10 pm
143Vietnam arrests suspects behind HiAnime anime piracy serviceJul 6, 7:10 pm
144Threat Actors Probe Gitea Docker Flaw CVE-2026-20896 13 Days After DisclosureJul 6, 6:10 pm
145⚡ Weekly Recap: Proxy Botnets, Browser Ransomware, AI Agent Tricks, Fake PoC Malware and MoreJul 6, 2:10 pm
146Max severity Adobe ColdFusion flaw now exploited in attacksJul 6, 2:10 pm
147RCS and DNS: The NAPTR Record, (Mon, Jul 6th)Jul 6, 2:10 pm
148Software Is Now Written at the Speed of Thought. Security Isn't.Jul 6, 2:10 pm
149Suspected China-Nexus Hackers Use Fake Indian Tax Filing Utility to Deploy DcRATJul 6, 1:10 pm
150How to Evaluate an AI SOC Platform in 2026: 6 Capabilities That Separate Leaders from Bolt-On AI solutionsJul 6, 1:10 pm
151ISC Stormcast For Monday, July 6th, 2026 https://isc.sans.edu/podcastdetail/9994, (Mon, Jul 6th)Jul 6, 12:10 pm
152New Java-Based QuimaRAT MaaS Built to Run on Windows, Linux, and macOSJul 6, 9:10 am
153New TrojPix Attack Leaks Data From Air-Gapped Systems via Video Cable EmissionsJul 6, 9:10 am
154Opera GX Flaw Let Malicious Sites Auto-Install Mods to Steal Data From Visited PagesJul 6, 8:10 am
155SkillCloak Lets Malicious AI Agent Skills Evade Static Scanners with Self-Extracting PackingJul 6, 7:10 am
156Flipper Zero firmware development continues with community helpJul 5, 3:10 pm
157JadePuffer ransomware used AI agent to automate entire attackJul 4, 3:10 pm
158U.S. Government Entity Paid Kairos $1 Million in Data-Theft Extortion CaseJul 4, 2:10 pm
159North Korean Hackers Publish 108 Malicious Packages and Extensions in PolinRider CampaignJul 4, 12:10 pm
160Unpatched Flaws Disclosed in Filesystem Bundled Into Millions of Embedded DevicesJul 3, 10:10 pm
161New Avalon Malware Framework Packs CrownX Ransomware CapabilitiesJul 3, 8:11 pm
162New "Bad Epoll" Linux Kernel Flaw Lets Unprivileged Users Gain Root, Hits AndroidJul 3, 8:10 pm
163NetNut proxy network disrupted, 2 million infected devices cut offJul 3, 6:10 pm
164North Korea-Linked npm Packages Mimic Rollup Polyfills to Steal Developer SecretsJul 3, 5:10 pm
165ARToken PhaaS exposes EvilTokens' Microsoft 365 phishing toolkitJul 3, 3:10 pm
166Armored Likho Targets Government Agencies, Power Sector with BusySnake StealerJul 3, 2:10 pm
167European Parliament Member Investigating Spyware Was Hacked With PegasusJul 3, 11:10 am
168PamStealer Uses Fake Maccy Sites and PAM Checks to Steal Mac Login PasswordsJul 3, 9:10 am
169Claude Fable 5 isn’t permanently leaving subscriptions, Anthropic saysJul 3, 2:10 am
170Claude Fable relaunch disappoints users with nerfed performanceJul 3, 1:10 am
171Ransomware Groups Turn to Citrix Bleed 2, BYOVD, and Supply Chain CredentialsJul 2, 8:10 pm
172Google Disrupts NetNut Residential Proxy Network Spanning 2 Million Home DevicesJul 2, 8:10 pm
173FBI Seizes NetNut Proxy Platform, Popa BotnetJul 2, 8:10 pm
174Google loses final appeal to overturn €4.1 billion EU fineJul 2, 4:10 pm
175ThreatsDay: AI Compute Hijacking, Apple Email Flaw, BlueHammer Ransomware + 14 StoriesJul 2, 4:10 pm
176ToddyCat-Linked Umbrij Malware Abuses OAuth to Access Gmail via Google APIJul 2, 2:10 pm
177ConsentFix and ClickFix: How Microsoft 365 Accounts are Hijacked in 3 SecondsJul 2, 2:10 pm
178Identity Lifecycle Management Wasn't Built for AI Agents Jul 2, 1:10 pm
179Microsoft fixes bug that removed Copilot buttons in OutlookJul 2, 1:10 pm
180Cisco finally confirms attackers exploiting Unified CM flawJul 2, 12:10 pm
181Opera rolls out Paste Protect feature to fight ClickFix attacksJul 2, 11:10 am
182CISA: Microsoft SharePoint RCE flaw now actively exploitedJul 2, 11:10 am
183FortiBleed Credential Theft Linked to INC and Lynx Ransomware OperationsJul 2, 10:10 am
184AI Agent Exploits Langflow RCE to Automate Database Ransomware AttackJul 2, 10:10 am
185Alleged Scattered Spider hacker extradited to the United StatesJul 2, 9:10 am
186New ChocoPoC RAT Targets Vulnerability Researchers via Fake PoC Exploit ReposJul 2, 8:10 am
187SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active ExploitationJul 2, 7:10 am
188Medtronic notifies customers impacted by ShinyHunters data breachJul 2, 5:10 am
189ISC Stormcast For Thursday, July 2nd, 2026 https://isc.sans.edu/podcastdetail/9992, (Thu, Jul 2nd)Jul 2, 2:10 am
190FortiBleed credential-theft campaign linked to Lynx ransomwareJul 1, 10:10 pm
191New ChocoPoC malware targets researchers via trojanized PoC exploitsJul 1, 9:10 pm
192Kubota says hackers had month-long access to network systemsJul 1, 9:10 pm
19319-Year-Old Scattered Spider Suspect Extradited to Face U.S. Hacking ChargesJul 1, 8:10 pm
194Unpatched Argo CD Repo-Server Flaw Could Let Attackers Take Over Kubernetes ClustersJul 1, 8:10 pm
195ChocoPoc malware delivered via trojanized exploits on GitHubJul 1, 8:10 pm
196VEIL#DROP Malware Chain Uses Blogger Platform to Deliver PureLogs StealerJul 1, 7:10 pm
197SEO-Poisoned Software Sites Abuse ScreenConnect to Deploy AsyncRATJul 1, 7:10 pm
198DHS confirms hackers breached HSIN info-sharing platformJul 1, 6:10 pm
199Hackers target Microsoft 365 accounts with 81 million login attemptsJul 1, 5:10 pm
200Webinar: Why traditional email security is no longer enoughJul 1, 5:10 pm
201Critical Cursor Flaws Could Let Prompt Injection Escape Sandbox and Run CommandsJul 1, 4:10 pm
202Adobe Patches 7 CVSS 10.0 Flaws in ColdFusion and Campaign ClassicJul 1, 4:10 pm
203Ousaban Banking Trojan Targets Iberian Bank Users with Fake PDF LuresJul 1, 4:10 pm
204AI-Generated Browser Ransomware Abuses Chromium API on Windows and AndroidJul 1, 3:10 pm
205Progress Kemp LoadMaster Pre-Auth RCE Flaw Faces Active Exploitation AttemptsJul 1, 3:10 pm
206Turning Indicators into Intelligence in OpenCTI with Criminal IPJul 1, 3:10 pm
2072026 Cybersecurity Assessment: The Gap Between Awareness and ResilienceJul 1, 1:10 pm
208Over 900 Oracle E-Business instances exposed to ongoing attacksJul 1, 1:10 pm
209Microsoft Accelerates Post-Quantum Cryptography Shift to 2029Jul 1, 12:10 pm
210Microsoft fixes GIF functionality in the Windows Emoji PanelJul 1, 11:10 am
211Amazon fined $2.25M for withholding evidence from fraud victimsJul 1, 10:10 am
212Anthropic Restores Claude Fable 5 After U.S. Lifts Jailbreak-Linked Export ControlsJul 1, 8:10 am
213Phantom Squatting Uses AI-Hallucinated Domains for Phishing and MalwareJul 1, 8:10 am
214Adobe patches seven max severity ColdFusion, Campaign flawsJul 1, 8:10 am
215Why Ask Credentials If There Are Secret Codes?, (Wed, Jul 1st)Jul 1, 6:10 am
216Researcher Analyzes 3,000 Live ClickFix Payloads, Exposing API-Driven Malware DeliveryJul 1, 6:10 am
217Azure CLI Password Spray Hits at Least 78 Microsoft Accounts in 81M+ AttemptsJul 1, 6:10 am
218Citrix Patches Six NetScaler Flaws Allowing File Read and Denial-of-ServiceJul 1, 5:10 am
219ISC Stormcast For Wednesday, July 1st, 2026 https://isc.sans.edu/podcastdetail/9990, (Wed, Jul 1st)Jul 1, 2:10 am
220Anthropic to restore Claude Fable access on WednesdayJul 1, 1:10 am
221Anthropic rolls out Sonnet 5 with near-Opus 4.8 performance at a lower priceJul 1, 12:10 am
222Microsoft accelerates quantum-safe roadmap as risks growJun 30, 10:10 pm
223New BioShocking attack manipulates AI browser into data theftJun 30, 10:10 pm
224Malicious PyPI packages give hackers control of Telegram bot serversJun 30, 9:10 pm
225RustDuck Botnet Rebuilds in Rust to Hijack Routers and Servers for DDoSJun 30, 7:10 pm
226Microsoft Warns Poisoned MCP Tool Descriptions Can Make AI Agents Leak DataJun 30, 7:10 pm
227Langflow RCE Exploited to Deploy Monero Miner on Exposed AI App EndpointsJun 30, 6:10 pm
228Silent Swap Crypto Clipper Uses Fake Google Notes Extension to Replace Wallet AddressesJun 30, 4:10 pm
229Fake Perplexity extension on Chrome Web Store tracked searchesJun 30, 4:10 pm
230282 iOS AI Apps Leak API Keys and Open AI Proxy Access in Network Traffic StudyJun 30, 3:10 pm
231GuardFall Exposes Open-Source AI Coding Agents to Decades-Old Shell Injection RisksJun 30, 3:10 pm
232Lessons from the Underground: How to Combat Business Email CompromiseJun 30, 2:10 pm
233What the Numbers Say About FIFA 2026 Cyber RiskJun 30, 1:10 pm
234Microsoft adds smarter bot protection to Teams meetingsJun 30, 12:10 pm
235Insurance giant Aflac discloses data breach after subsidiary hackJun 30, 12:10 pm
236Attackers Exploit SimpleHelp CVE-2026-48558 to Deploy TaskWeaver and Djinn StealerJun 30, 12:10 pm
237AirDrop and Quick Share Flaws Let Nearby Attackers Trigger Crashes and Bypass ChecksJun 30, 11:10 am
238Mircosoft adds smarter bot protection to Teams meetingsJun 30, 11:10 am
239June 2026 Apple Updates, (Tue, Jun 30th)Jun 30, 10:10 am
240Blackfield ransomware asks Nidec Corporation for $2 million ransomJun 30, 10:10 am
241Kali Linux 2026.2 released with 9 new tools, NetHunter updatesJun 30, 10:10 am
242Progress Kemp LoadMaster Flaw Could Let Attackers Run Root Commands Pre-AuthJun 30, 9:10 am
243New BioShocking Attack Tricks AI Browsers Into Leaking User CredentialsJun 30, 9:10 am
244CISA: Windows BlueHammer flaw now exploited by ransomware gangsJun 30, 9:10 am
245Apple Patches 30+ iOS, macOS, Safari Flaws, Including AI-Discovered WebKit BugsJun 30, 8:10 am
246Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the WildJun 30, 6:10 am
247ISC Stormcast For Tuesday, June 30th, 2026 https://isc.sans.edu/podcastdetail/9988, (Tue, Jun 30th)Jun 30, 3:10 am
248NAIC says public data stolen in ShinyHunters' PeopleSoft breachJun 29, 9:10 pm
249Nissan discloses employee data breach linked to Oracle zero-day attacksJun 29, 9:10 pm
250Malicious Perplexity Chrome Extension Intercepted Searches and Address Bar InputJun 29, 8:10 pm
251Microsoft extends Windows Server 2022 hotpatching until October 2027Jun 29, 6:10 pm
252WhatsApp rolls out usernames to help users hide their phone numberJun 29, 6:10 pm
253Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government AttacksJun 29, 5:10 pm
254WhatsApp is Finally Getting Usernames to Help Keep Phone Numbers PrivateJun 29, 5:10 pm
255⚡ Weekly Recap: Linux Kernel Flaws, AI Malware Tricks, Turla Backdoor, Infostealers and MoreJun 29, 3:10 pm
256U.S. offers $10 million for hackers targeting WhatsApp, Signal usersJun 29, 3:10 pm
257236,000 DCloud Uni-App Sites Used in Crypto Scams, Phishing, and Wallet DrainersJun 29, 2:10 pm
258Hackers now exploit critical Oracle E-Business flaw in attacksJun 29, 2:10 pm
259Critical SimpleHelp flaw exploited to deploy new stealer malwareJun 29, 2:10 pm
260Agentic AI Has an Identity Problem and Attackers Know ItJun 29, 2:10 pm
261Webinar: Why business email compromise attacks keep succeedingJun 29, 1:10 pm
262US seizes hundreds of FIFA World Cup illegal streaming domainsJun 29, 12:10 pm
263Gamaredon Expands Ukraine Attacks with New Malware and Cloud Service AbuseJun 29, 12:10 pm
264Why Post-Quantum Cryptography Starts With CredentialsJun 29, 12:10 pm
265Adding some Automation to the favicon.ico method of Host Recon, (Mon, Jun 29th)Jun 29, 12:10 pm
266Microsoft Removes 119 Edge Extensions That Hid Malware in Images and FontsJun 29, 10:10 am
267Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH FlawJun 29, 8:10 am
268Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python InfostealerJun 29, 7:10 am
269ISC Stormcast For Monday, June 29th, 2026 https://isc.sans.edu/podcastdetail/9986, (Mon, Jun 29th)Jun 29, 2:10 am
270Data breach exposes up to 14.2 million email logins at six ISPsJun 28, 3:10 pm
271YARA-X 1.18.0 and 1.19.0 Release, (Sun, Jun 28th)Jun 28, 8:10 am
272Ukraine Says Russian Intelligence Used Fake Support Texts to Steal Messaging CredentialsJun 27, 6:10 pm
273Clean GitHub repo tricks AI coding agents into running malwareJun 27, 3:10 pm
274OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber SafeguardsJun 27, 1:10 pm
275FBI: Russian hackers now target Signal backup recovery keysJun 26, 10:10 pm
276FBI Warns Russian Intelligence Hackers Target Signal Backup Recovery KeysJun 26, 8:10 pm
277CISA sets urgent deadline to fix Cisco flaw exploited in attacksJun 26, 8:10 pm
278New SharkLoader Malware Deploys Cobalt Strike in StrikeShark CyberattacksJun 26, 7:10 pm
279Cybersecurity firms targeted by fraudulent OpenAI organization invitesJun 26, 6:10 pm
280Polymarket customers lose $3 million in supply-chain attackJun 26, 6:10 pm
281Chinese-Speaking APT Deploys New TinyRCT Backdoor in Southeast Asia CampaignJun 26, 5:10 pm
282Amazon Q Developer Flaw Could Let Malicious Repos Run Code via MCP ConfigsJun 26, 3:10 pm
283Your First GRC Agent: A Red Teamer's WalkthroughJun 26, 2:10 pm
284Guardian Agents: The Next Layer of Identity GovernanceJun 26, 1:10 pm
285New DirtyClone Linux Kernel Flaw Lets Local Users Gain Root via Cloned PacketsJun 26, 1:10 pm
286CISA Adds Exploited PTC Windchill RCE Flaw to KEV as Web Shell Attacks ContinueJun 26, 1:10 pm
287New Linux pedit COW Exploit Enables Root Access by Poisoning Cached BinariesJun 26, 1:10 pm
288Microsoft Warns of Photo ZIP Phishing Campaign Targeting Hotels with Node.js ImplantJun 26, 11:10 am
289Miasma Malware Targets npm Packages and GitHub Actions in Supply Chain AttackJun 26, 11:10 am
290Russia Used Cellebrite on Jailed Activist's iPhone Months After Sales CutoffJun 26, 9:10 am
291Google Details Turla's New STOCKSTAY Backdoor Used in Ukraine Espionage AttacksJun 26, 8:10 am
292Poland busts SIM-swapping gang tied to millions in crypto theftJun 25, 11:10 pm
293Anthropic is testing desktop-like Claude Cowork for mobileJun 25, 11:10 pm
294Order-tracking app Shop abused to push callback phishing attacksJun 25, 8:10 pm
295Microsoft quietly extends free Windows 10 ESU support to October 2027Jun 25, 7:10 pm
296New macOS malware embeds fake errors to confuse AI analysis toolsJun 25, 5:10 pm
297PirloTV sports piracy network disrupted as 44 domains seizedJun 25, 4:10 pm
298Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection CapabilityJun 25, 3:10 pm
299Bluekit phishing kit adopts browser-in-the-middle for login theftJun 25, 3:10 pm
300The Four Elevations of Effective Fraud PreventionJun 25, 2:10 pm
301Webinar: Why account takeovers remain one of the hardest threats to stopJun 25, 1:10 pm
302ThreatsDay Bulletin: Smart TV Proxyware, 24-Year curl Bug, AI Crime Forums + 13 More StoriesJun 25, 1:10 pm
303Surviving the Mythos Era: Richard Bejtlich on the Case for NDRJun 25, 12:10 pm
304New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted AnalysisJun 25, 11:10 am
305New Mistic Backdoor Linked to KongTuke in ClickFix and ModeloRAT CampaignsJun 25, 10:10 am
306Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Gain Root AccessJun 25, 6:10 am
307What do Ports Hear When Nobody's Listening? An Assessment of Automated Cybercrime [Guest Diary], (Wed, Jun 24th)Jun 25, 1:10 am
308Google releases new privacy controls for activity history, personalizationJun 25, 12:10 am
309Mandiant reveals how Cisco SD-WAN zero-day attacks gained root accessJun 24, 10:10 pm
310DraftKings hacker 'Snoopy' sentenced to 18 months in prisonJun 24, 10:10 pm
311Malicious Edge extension abuses Native Messaging as bridge to malwareJun 24, 9:10 pm
312Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials RecoveredJun 24, 6:10 pm
313CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively ExploitedJun 24, 6:10 pm
314Amadey, StealC malware operations disrupted in Operation Endgame actionJun 24, 3:10 pm
315CISA warns of max severity Ubiquiti flaws exploited in attacksJun 24, 3:10 pm
316Cordyceps CI/CD Flaws Expose 300+ GitHub Repositories to Supply-Chain AttacksJun 24, 2:10 pm
317Securing the service desk: Why social engineering attacks keep succeedingJun 24, 2:10 pm
318Dawn of the Apex Agentic AdversaryJun 24, 1:10 pm
319Stealthy Mistic backdoor linked to ransomware access broker KongTukeJun 24, 11:10 am
320DoJ Seizes Huione Cloud Account Tied to Cyber Scam Money LaunderingJun 24, 10:10 am
321Cisco Unified CM Flaw Exploited After PoC Reveals File-Write Path to RootJun 24, 8:10 am
322Linux Process Name Masquerading, (Wed, Jun 24th)Jun 24, 7:10 am
323ISC Stormcast For Wednesday, June 24th, 2026 https://isc.sans.edu/podcastdetail/9984, (Wed, Jun 24th)Jun 24, 2:10 am
324Cisco Unified CM flaw CVE-2026-20230 now exploited in attacksJun 23, 10:10 pm
325Windows 11 KB5095093 update rolls out new Point-in-Time restore featureJun 23, 9:10 pm
326Tata Electronics confirms cyberattack as hackers leak dataJun 23, 9:10 pm
327FortiBleed Targeted FortiGate Firewalls in 110 Million-Credential Harvesting OperationJun 23, 8:10 pm
328Healthtech firm Xolis suffers data breach impacting 1.4 million peopleJun 23, 8:10 pm
329New macOS ClickFix attack silently mounts DMGs to push infostealerJun 23, 7:10 pm
330Trump Order Sets 2030 Deadline for Federal Post-Quantum Crypto MigrationJun 23, 5:10 pm
331Fake AI Agent Skill Passed Security Scans and Reportedly Reached 26,000 AgentsJun 23, 5:10 pm
332Scattered Spider Hackers Plead Guilty on Day 1 of TrialJun 23, 5:10 pm
333Scattered Spider members plead guilty to hacking Transport for LondonJun 23, 4:10 pm
334GitHub Updates actions/checkout to Block Common Pwn Request Attack PatternsJun 23, 3:10 pm
335LastPass confirms data breach in Klue supply chain attackJun 23, 2:10 pm
336The Exploit Doesn't Exist. You Can Still Prove It Works Against YouJun 23, 2:10 pm
337Agentic AI: The Weapon That No Longer Needs a WarriorJun 23, 1:10 pm
338Webinar: Why email security teams are drowning in alertsJun 23, 1:10 pm
339Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RATJun 23, 10:10 am
340WhatsApp VBScript Campaign Uses Fake Documents to Install ManageEngine RMM ToolJun 23, 7:10 am
341OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Patch Security FlawsJun 23, 5:10 am
342CVE-2024-40766: The Patch Fixed the Bug. Nobody Fixed the Configuration., (Tue, Jun 23rd)Jun 23, 3:10 am
343ISC Stormcast For Tuesday, June 23rd, 2026 https://isc.sans.edu/podcastdetail/9982, (Tue, Jun 23rd)Jun 23, 2:10 am
344WhatsApp phishing attack uses fake business docs to hack PCsJun 22, 11:10 pm
345JaredFromSubway MEV bot hacked in $15 million crypto theftJun 22, 10:10 pm
346FFmpeg fixes PixelSmash flaw in widely used video decoderJun 22, 9:10 pm
347FortiBleed campaign used custom FortiGate sniffer to steal credentialsJun 22, 8:10 pm
348ShapedPlugin WordPress Pro Plugins Backdoored in Supply Chain AttackJun 22, 7:10 pm
349Microsoft fixes AutoGen Studio flaw that enabled code executionJun 22, 6:10 pm
350Microsoft says Windows 11 26H2 is coming soon, details upgrade processJun 22, 6:10 pm
351Researchers Detail DifyTap Flaws in Dify That Could Expose AI Chats Across TenantsJun 22, 5:10 pm
352A Glimpse into the “Search Your Target” Market for Stolen CredentialsJun 22, 3:10 pm
353Webshells Remain Popular, (Mon, Jun 22nd)Jun 22, 3:10 pm
35429-Year-Old Squid Proxy Bug 'Squidbleed' Can Leak Cleartext HTTP RequestsJun 22, 3:10 pm
355Google Sets Sept. 30 Deadline for Android Developer Verification in Four CountriesJun 22, 2:10 pm
356New OXLOADER Loader Uses Malicious Google Ads to Deliver CastleStealerJun 22, 2:10 pm
357⚡ Weekly Recap: Browser Bugs, EDR Killers, TV Botnet, OpenBSD Flaw, Android Trojan, and MoreJun 22, 1:10 pm
358Stop Your Legacy Infrastructure from Hijacking Your AI AgentsJun 22, 1:10 pm
359Canada’s Spy Agency Used First-of-Its-Kind Warrant to Clean Botnet-Infected DevicesJun 22, 10:10 am
360AryStinger Malware Infects 4,300 Legacy Routers to Build Reconnaissance Proxy NetworkJun 22, 8:10 am
361INTERPOL Warns Phishing, Ransomware, and AI Scams Are Rising Across Asia-PacificJun 22, 7:10 am
362ISC Stormcast For Monday, June 22nd, 2026 https://isc.sans.edu/podcastdetail/9980, (Mon, Jun 22nd)Jun 22, 2:10 am
363AryStinger botnet infected thousands of D-Link routers worldwideJun 21, 3:10 pm
364New Prinz Eugen ransomware prioritizes recent files for encryptionJun 20, 4:10 pm
365Microsoft links Mastra AI supply chain attack to North Korean hackersJun 20, 3:10 pm
366Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API KeysJun 20, 11:10 am
367Klue OAuth breach victim list grows as Icarus hackers claim attackJun 19, 11:10 pm
368Hackers exploit info disclosure bug in Gravity SMTP WordPress pluginJun 19, 9:10 pm
369The Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security ProcessesJun 19, 7:10 pm
370Unpatchable 'usbliter8' Exploit Breaks Apple A12 and A13 SecureROM Boot ChainJun 19, 7:10 pm
371AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code ExecutionJun 19, 5:10 pm
372Texas govt data breach exposes over 3 million driver’s licensesJun 19, 5:10 pm
373Operation Endgame Disrupts SocGholish Servers, Cleans 14,971 WordPress SitesJun 19, 4:10 pm
374CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate DevicesJun 19, 3:10 pm
375Every AI Agent Is an Identity. Most Organizations Don't Treat Them That WayJun 19, 2:10 pm
376From Assistive to Agentic: The AI Shift That's Redefining Threat ManagementJun 19, 1:10 pm
377Webinar: How attackers bypass MFA and how defenders can respondJun 19, 1:10 pm
378Forget Data Leakage: Shadow AI's Real Threat Is Access ControlJun 19, 12:10 pm
379Microsoft: June 2026 Windows updates break Recycle Bin promptsJun 19, 12:10 pm
380CISA: Splunk Enterprise flaw actively exploited, patch by SundayJun 19, 11:10 am
381Salesforce Disables Klue App Integration After OAuth Token Abuse Exposes Customer DataJun 19, 10:10 am
382NY man charged after harassing college student with AI-generated nudesJun 19, 9:10 am
383eBanking Phishing Delivered Through IPv4-Mapped IPv6 Address, (Fri, Jun 19th)Jun 19, 8:10 am
384Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via MicrophoneJun 19, 7:10 am
385CISA warns Fortinet users to secure devices after FortiBleed leakJun 19, 7:10 am
386Gentlemen ransomware uses multiple EDR killers to disable defensesJun 18, 11:10 pm
387Nintendo confirms data stolen in WebMD subsidiary cyberattackJun 18, 8:10 pm
388F5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code ExecutionJun 18, 7:10 pm
389‘Popa’ Botnet Linked to Publicly-Traded Israeli FirmJun 18, 6:10 pm
390USB worm spreads crypto-stealing malware via Windows shortcut filesJun 18, 5:10 pm
391ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More StoriesJun 18, 4:10 pm
392INC Ransomware Emerges as Major RaaS Threat in 2026 with 830+ Victims Since 2023Jun 18, 3:10 pm
393Klue OAuth breach linked to 'Icarus' Salesforce data theft attacksJun 18, 3:10 pm
394Microsoft Details Windows Clipper Malware Campaign Using USB LNK Worm and Tor-Based C2Jun 18, 3:10 pm
395Police cleans nearly 15,000 SocGholish-infected sites tied to Evil CorpJun 18, 2:10 pm
396DragonForce Hackers Abuse Microsoft Teams Relays to Hide Backdoor.Turn C2 TrafficJun 18, 2:10 pm
3975 reasons Microsoft 365 backup isn’t enough for business data protectionJun 18, 2:10 pm
398Orphaned AI Agents: How to Find Hidden Access Risks Inside Your NetworkJun 18, 1:10 pm
399Telegram admits it couldn't police exam-leak channels, India tells courtJun 18, 1:10 pm
400Apple fixes Beats Studio Buds flaw that let hackers spy on conversationsJun 18, 1:10 pm
401ShapedPlugin update flow hacked to infect WordPress sitesJun 18, 1:10 pm
402The Scripts on Your Checkout Page Are Now a PCI DSS ProblemJun 18, 12:10 pm
403F5 issues out-of-band patches for critical NGINX vulnerabilitiesJun 18, 12:10 pm
404Microsoft fixes Windows Server 2016 security update failuresJun 18, 11:10 am
405Leak confirms OpenAI is testing a ChatGPT for Science subscriptionJun 18, 2:10 am
406The Behavior of Coordinated SSH Brute Force Attacks over the last three months [Guest Diary], (Wed, Jun 17th)Jun 18, 2:10 am
407ISC Stormcast For Thursday, June 18th, 2026 https://isc.sans.edu/podcastdetail/9978, (Thu, Jun 18th)Jun 18, 2:10 am
408Google to use UK and EU user IP addresses for ad personalizationJun 17, 9:10 pm
409Microsoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in DevelopmentJun 17, 7:10 pm
410Crypto Clipper Campaign Abuses Fake Reviews, AI Narrators, and VirusTotal CommentsJun 17, 7:10 pm
411Junior Hacker Used Tailscale and OpenSSH to Keep Access After His C2 Went OfflineJun 17, 5:10 pm
412FortiBleed leak exposes Fortinet VPN credentials for 73,000 devices.Jun 17, 4:10 pm
413The browser blind spot: Why your security tool may not be blocking what you think it is [Guest Diary], (Wed, Jun 17th)Jun 17, 4:10 pm
414India's Telegram ban hit the UAE too. Here's how to get around itJun 17, 2:10 pm
415Why Account Takeovers Are Rising and How to Stop ThemJun 17, 2:10 pm
416Microsoft confirms Office apps launch issues after June updatesJun 17, 12:10 pm
417Adversarial Exposure Validation Turns Security Visibility into Confident PrioritizationJun 17, 12:10 pm
418The Top 10 Attack Surface Exposures in 2026Jun 17, 11:10 am
419Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot ChatsJun 17, 10:10 am
420CISA orders feds to patch max severity Joomla plugin flaw by FridayJun 17, 10:10 am
421Microsoft working on Defender patch for RoguePlanet zero-dayJun 17, 9:10 am
422144 Mastra npm Packages Compromised via Hijacked Contributor AccountJun 17, 8:10 am
423CISA Warns of Actively Exploited Joomla JCE Flaw Allowing PHP Code ExecutionJun 17, 7:10 am
424Kodak confirms data breach claimed by ShinyHunters extortion gangJun 17, 7:10 am
425ISC Stormcast For Wednesday, June 17th, 2026 https://isc.sans.edu/podcastdetail/9976, (Wed, Jun 17th)Jun 17, 2:10 am
426Malicious JetBrains Marketplace plugins steal AI API keys from developersJun 16, 10:10 pm
427Google Vertex AI SDK Flaw Let Attackers Hijack Model Uploads via Bucket SquattingJun 16, 8:10 pm
428New Rokarolla Android malware targets 217 banking, crypto appsJun 16, 8:10 pm
429ClickFix Campaigns Expand Malware Delivery With New Loaders and Fake Update LuresJun 16, 7:10 pm
430Steam Workshop abused to spread malware via Wallpaper Engine appJun 16, 7:10 pm
431GhostTree Attack Abused Recursive Windows Junctions to Hide MalwareJun 16, 3:10 pm
432UK to require ID or face scan before you can make social media accountsJun 16, 3:10 pm
433New Rokarolla Android Malware Steals PINs, SMS Codes, and Crypto Wallet FundsJun 16, 2:10 pm
434FTC warns of record $3.5 billion losses to imposter scams in 2025Jun 16, 2:10 pm
435Survey: 94% of Incidents Involve Anonymized Infrastructure. Teams Are Still ReactiveJun 16, 12:10 pm
436China-Linked SprySOCKS Backdoor Expands to Windows with Driver-Based StealthJun 16, 11:10 am
437Ransomware gang abuses Microsoft Teams relays to hide malicious trafficJun 16, 11:10 am
438Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last WeekJun 16, 11:10 am
439CISA warns of another cPanel plugin flaw exploited in attacksJun 16, 11:10 am
440Critical Fortinet FortiSandbox flaws now exploited in attacksJun 16, 10:10 am
441Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT MalwareJun 16, 9:10 am
442Windows version of SprySOCKS Linux malware used to attack govt orgsJun 16, 9:10 am
443From a VHDX File to a Remcos RAT, (Tue, Jun 16th)Jun 16, 8:10 am
444CISA Flags LiteSpeed cPanel Plugin Flaw Exploited for Root Privilege EscalationJun 16, 7:10 am
445Cisco Releases Security Updates for Actively Exploited SD-WAN Manager FlawJun 16, 7:10 am
446iRhythm discloses data breach, says hackers stole patient infoJun 16, 7:10 am
447ISC Stormcast For Tuesday, June 16th, 2026 https://isc.sans.edu/podcastdetail/9974, (Tue, Jun 16th)Jun 16, 2:10 am
448Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense EmailsJun 15, 10:10 pm
449DOJ seizes CFAKE, SOCFAKE deepfake nude sites under TAKE IT DOWN ActJun 15, 10:10 pm
450North Korean Hackers Are Turning Developer Tools Into Malware Delivery ChannelsJun 15, 8:10 pm
451SimpleHelp bug lets hackers create rogue remote support accountsJun 15, 8:10 pm
452LiteLLM Vulnerability Chain Lets Low-Privilege Users Take Over AI Gateway ServersJun 15, 6:10 pm
453Cisco fixes SD-WAN vManage flaw exploited in zero-day attacksJun 15, 6:10 pm
454OptinMonster WordPress plugin hacked in CDN supply-chain attackJun 15, 6:10 pm
455Council of Europe investigates ShinyHunters data breach claimsJun 15, 5:10 pm
456One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA CodesJun 15, 4:10 pm
457FBI: Fraudsters use couriers to steal money in crypto scamsJun 15, 4:10 pm
458⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and MoreJun 15, 3:10 pm
459Chinese hackers breach REDCap servers, steal medical researchJun 15, 2:10 pm
460Vibe coders are gonna vibe code: How CISOs are tackling code sprawlJun 15, 2:10 pm
461Webinar: How behavioral AI stops phishing and account takeoversJun 15, 1:10 pm
462Infinite Campus data breach affects 137,000 school staff accountsJun 15, 1:10 pm
463New attack turned Microsoft 365 Copilot into 1-click data theft toolJun 15, 1:10 pm
464The Onboarding Password Mistake That Creates Unnecessary RiskJun 15, 12:10 pm
465Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on SitesJun 15, 11:10 am
466152 Chrome Wallpaper Extensions with 105K Installs Linked to Adware and Fake TrafficJun 15, 11:10 am
467Palo Alto Warns of Active Exploitation of PAN-OS GlobalProtect VPN FlawJun 15, 8:10 am
468Sniper Dz Scams Target MENA Users via Fake Facebook Offers and Browser AlertsJun 15, 8:10 am
469Evil MSI Background: BASE64 Statistical Analysis, (Mon, Jun 15th)Jun 15, 8:10 am
470ISC Stormcast For Monday, June 15th, 2026 https://isc.sans.edu/podcastdetail/9972, (Mon, Jun 15th)Jun 15, 2:10 am
471FBI disrupts massive AI-powered phishing service using a million URLsJun 14, 3:10 pm
472Ex-school district employee jailed for hacks on former employerJun 13, 9:10 pm
473Critical Splunk Enterprise Flaw Lets Attackers Run Code Without AuthenticationJun 13, 2:10 pm
474Chinese hackers hijack auth flow, spy on isolated network for a decadeJun 13, 2:10 pm
475US Gov asks Anthropic to ban 'foreign national' access to Fable, MythosJun 13, 10:10 am
476U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign NationalsJun 13, 7:10 am
477Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF RootkitJun 12, 9:10 pm
478China-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a DecadeJun 12, 8:10 pm
479Google Sues Chinese Smishing Network Accused of Using Gemini AI in PhishingJun 12, 8:10 pm
480400+ Arch Linux AUR Packages Hijacked to Install Rust Credential StealerJun 12, 8:10 pm
481Maine disables data breach notification portal after fake disclosuresJun 12, 8:10 pm
482phpBB forum fixes auth bypass bug lurking for a decadeJun 12, 7:10 pm
483Ukrainian national pleads guilty to role in Conti ransomware operationJun 12, 6:10 pm
484Over 400 Arch Linux packages compromised to push rootkit, infostealerJun 12, 5:10 pm
485Early Warning Signs of Supply-Chain Attacks Live in the Dark WebJun 12, 3:10 pm
486Agentjacking Attack Tricks AI Coding Agents Into Running Malicious CodeJun 12, 1:10 pm
487ISC Stormcast For Friday, June 12th, 2026 https://isc.sans.edu/podcastdetail/9970, (Fri, Jun 12th)Jun 12, 1:10 pm
488Rethinking MDR as Attackers and Defenders Embrace AIJun 12, 12:10 pm
489Microsoft fixes Windows update failures linked to WUSA installerJun 12, 12:10 pm
490Pharma giant Novo Nordisk discloses breach of clinical trials dataJun 12, 11:10 am
491INTERPOL Operation Takes Down Sniper Dz Phishing Platform, Arrests AdministratorJun 12, 10:10 am
492LangGraph Flaw Chain Exposes Self-Hosted AI Agents to Remote Code ExecutionJun 12, 10:10 am
493CISA orders feds to patch actively exploited Ivanti flaw by SundayJun 12, 9:10 am
494Europol Disrupts AudiA6 Crypto Laundering Service Used by Ransomware GangsJun 12, 8:10 am
495Over 73,000 French govt employees affected in Tchap messenger breachJun 12, 8:10 am
496Tchap data breach affects over 73,000 French govt employeesJun 12, 7:10 am
497Japanese energy firm loses drive with data of 10.9 million clientsJun 12, 12:10 am
498Maine breach portal abused to publish fake data breach disclosuresJun 11, 11:10 pm
499ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach UniversitiesJun 11, 9:10 pm
500Oracle mitigates PeopleSoft zero-day exploited in data theft attacksJun 11, 8:10 pm
AI Testing

Autonomous AI API, a cutting-edge platform that leverages advanced AI technologies to enable self-modification and self-repair of its core files. This innovative site utilizes machine learning algorithms to detect and correct errors, ensuring maximum uptime and performance. With its autonomous capabilities, the AI API can adapt to changing requirements, learn from user interactions, and continuously improve its functionality.