Security researchers have uncovered a massive data breach exposing 24 billion stolen credentials from infostealers, Telegram channels, and breach collections. The sheer magnitude of the data puts billions of affected accounts at risk, emphasizing the importance of immediate action to protect against account takeovers.
Published: Fri Jun 19 01:07:01 2026 by llama3.2 3B Q4_K_M
Apple has issued a firmware update for its Beats Studio Buds wireless earbuds to address a critical vulnerability that could allow nearby attackers to eavesdrop on users. The vulnerability, tracked as CVE-2025-20701, refers to a case of incorrect authorization impacting the Airoha Bluetooth audio SDK.
Published: Fri Jun 19 02:20:20 2026 by llama3.2 3B Q4_K_M
Peter Thiel’s Secretive Dialog Network Has Been Exposed, Revealing Sensitive Personal Data and Raising Concerns About Espionage and Blackmail. A vulnerability in the network's website has made internal records, including names of participants, their political profiles, login tokens, and dating data, publicly available.
Published: Fri Jun 19 03:28:25 2026 by llama3.2 3B Q4_K_M
Salesforce has disabled its integration with competitive intelligence app Klue Battlecards amid concerns over OAuth token abuse and potential exposure of customer data. The move comes following an investigation into unauthorized access to a subset of customer data via the affected platform, attributed to Icarus extortion group attacks. Experts have highlighted the risks associated with using non-human identities for third-party integrations, emphasizing the need for enhanced security measures in protecting sensitive information across various platforms.
Published: Fri Jun 19 04:37:47 2026 by llama3.2 3B Q4_K_M
Britain's Information Commissioner's Office (ICO) has been rocked by the resignation of its Director General, John Edwards, following an independent investigation into his conduct. The news comes after allegations were made against Edwards, which he admitted had caused offense, leading to his decision to resign from his position as ICO and Chair of the Information Commission with immediate effect.
Published: Fri Jun 19 06:56:38 2026 by llama3.2 3B Q4_K_M
The UK government's plans to use AI-powered facial age estimation technology on asylum-seeking children have been met with significant resistance from rights groups, who argue that the technology is biased and inaccurate. Will the UK government scrap plans to deploy this technology, or will it continue to push forward with its rollout? The future of this contentious technology remains uncertain as campaigners continue to raise concerns about its development and deployment.
Published: Fri Jun 19 07:08:46 2026 by llama3.2 3B Q4_K_M
Discover how to uncover hidden AI use, map every AI action to a human owner, and apply practical governance without heavy infrastructure changes. Learn more about the Shadow AI menace and its impact on organizations worldwide.
Published: Fri Jun 19 07:21:41 2026 by llama3.2 3B Q4_K_M
A critical vulnerability in Splunk Enterprise has been added to CISA's Known Exploited Vulnerabilities catalog, urging agencies to fix it by Sunday, June 21, 2026. The vulnerability allows unauthenticated remote attackers to create or truncate arbitrary files on affected systems. Organizations must take immediate action to secure their systems and address this critical alert from CISA.
Published: Fri Jun 19 07:28:13 2026 by llama3.2 3B Q4_K_M
3 million Texans' personal data exposed in Texas governor's vendor breach, with details of driving licenses and passports potentially among those leaked.
Published: Fri Jun 19 08:37:10 2026 by llama3.2 3B Q4_K_M
Agentic AI is redefining threat management strategies for enterprises by leveraging machine speed and autonomy to stay ahead of modern threats. The traditional approach to security has been challenged by the rapid evolution of AI capabilities, leading to a need for proactive security measures.
Published: Fri Jun 19 08:49:57 2026 by llama3.2 3B Q4_K_M
CISA Warns Fortinet Customers of FortiBleed: A Global Campaign of Credential Stuffing and Brute-Force Attacks on Thousands of Vulnerable Devices
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned Fortinet customers of a global campaign known as FortiBleed, which involves thousands of compromised devices worldwide. The attack vector employed by the threat actors utilizes brute-force, dictionary attacks, and credential stuffing to breach devices. CISA recommends that Fortinet customers take immediate action to secure their appliances against ongoing threats.
Published: Fri Jun 19 09:57:02 2026 by llama3.2 3B Q4_K_M
The global SocGholish Takedown, known as Operation EndGame, has left 14,971 WordPress sites infected with malware clean. This joint operation by law enforcement agencies from the Netherlands, Canada, the United States, and Germany against the notorious malware distribution network SocGholish highlights the ongoing threat of web injects and emphasizes the need for constant vigilance among WordPress administrators to protect their sites against this sophisticated technique.
Published: Fri Jun 19 10:03:49 2026 by llama3.2 3B Q4_K_M
Researchers have disclosed a critical BootROM vulnerability in Apple's A12 and A13 chip-based devices, including iPhones. The "usbliter8" exploit allows attackers to break the secure boot chain, raising significant security concerns for affected users. While there is no fix available, newer iPhone models are not vulnerable to this issue, making purchasing a new device a potential remedy.
Published: Fri Jun 19 11:13:09 2026 by llama3.2 3B Q4_K_M
Operation Endgame: A Global Effort to Disrupt SocGholish Malware and Protect WordPress Sites
A recent operation by international law enforcement agencies has disrupted the SocGholish malware network, cleaning up nearly 15,000 infected WordPress sites. This marks a significant victory in the fight against cyber threats and highlights the need for organizations to prioritize cybersecurity. Learn more about this operation and how it will impact the future of online security.
Published: Fri Jun 19 11:18:40 2026 by llama3.2 3B Q4_K_M
The AutoJack attack is a vulnerability in Microsoft's AutoGen framework that allows an attacker to hijack an AI agent and execute host code. The autojacking attack takes advantage of three weaknesses in the Model Context Protocol (MCP) WebSocket protocol: the socket trusts localhost, the authentication middleware skips MCP paths, and the endpoint takes commands directly from a request parameter without proper validation.
Published: Fri Jun 19 12:28:23 2026 by llama3.2 3B Q4_K_M
A recently disclosed unpatchable hardware vulnerability known as usbliter8 has exposed a critical flaw in Apple's SecureROM boot chain on A12 and A13 chips. This newly discovered bug enables arbitrary code execution within the SecureROM, potentially leading to significant security risks for affected devices unless proper precautions are taken.
Published: Fri Jun 19 14:48:57 2026 by llama3.2 3B Q4_K_M
The Sophisticated EDR Killer Suite of The Gentlemen RaaS: A Threat to Cybersecurity
In recent months, the cybersecurity landscape has witnessed a significant escalation in ransomware-as-a-service operations like The Gentlemen RaaS. This operation is known for its sophisticated tactics and use of endpoint detection and response (EDR) killers. The EDR killer suite employed by The Gentlemen RaaS has garnered attention due to its ability to evade detection and its sheer scale. Experts warn that this threat should not be underestimated, as it continues to evolve and adapt in response to emerging threats.
Published: Fri Jun 19 15:04:54 2026 by llama3.2 3B Q4_K_M
A recent hacking incident involving ShinyHunters and Madison Square Garden has highlighted the growing threat of facial recognition technology to individual privacy and security. The alleged data breach includes potential personal information from customers, references players and coaches from the Knicks, and even allegedly contains names of "talent" associated with the basketball team. This breach underscores the need for greater scrutiny of facial recognition technology and its use in various contexts, as well as the importance of prioritizing transparency, accountability, and safeguards against potential abuses.
Published: Sat Jun 20 04:58:30 2026 by llama3.2 3B Q4_K_M
FortiBleed Exposes Global Credential-Spraying Operation: A massive global operation has been exposed, compromising billions of login attempts against Fortinet VPNs and leaving numerous organizations worldwide vulnerable to attacks. The operation, dubbed "FortiBleed," was carried out by a multi-operator crew that exploited weaknesses in Fortinet's SSL VPN devices.
Published: Sat Jun 20 05:03:34 2026 by llama3.2 3B Q4_K_M
CISA Warns of Active Exploitation Following FortiBleed Leak: A Global Credential-Spraying Operation
A global credential-spraying operation using compromised credentials for approximately 74,000 Fortinet firewalls and VPN gateways has been exposed. CISA warns that threat actors are actively exploiting the leak to target systems worldwide, urging organizations to take immediate action to patch vulnerabilities and prevent potential breaches.
Published: Sat Jun 20 05:11:47 2026 by llama3.2 3B Q4_K_M
A critical security flaw in the Gravity SMTP WordPress plugin has exposed API keys and sensitive data, posing a significant threat to web security. In this article, we'll delve into the details of the vulnerability, its impact on web security, and what site owners can do to protect themselves.
Published: Sat Jun 20 06:20:57 2026 by llama3.2 3B Q4_K_M
The Gentlemen is a ransomware operation that has been making headlines in recent months due to its sophisticated tactics and innovative approach. The group uses a centralized EDR-killer suite called GentleKiller, which is designed to disable security tools before ransomware attacks. This makes The Gentlemen an attractive operator for affiliates as it materially lowers the entry barrier for them, making their job consequently easier. But what sets The Gentlemen apart from other ransomware operations? Read on to find out.
Published: Sat Jun 20 11:01:59 2026 by llama3.2 3B Q4_K_M
With three cryptographic keys set to expire on June 24, Windows and Linux users face a critical deadline that could leave them vulnerable to firmware-based UEFI infections. To avoid this fate, users must take immediate action to update their systems' Secure Boot certificates.
Published: Sun Jun 21 04:45:47 2026 by llama3.2 3B Q4_K_M
FortiBleed: A Global Credential-Spraying Operation Exposed Admin Passwords for 75,000 Fortinet Firewalls. This article provides an in-depth look at the latest cybersecurity threat and its implications for organizations worldwide.
Published: Sun Jun 21 13:11:01 2026 by llama3.2 3B Q4_K_M
A global credential-spraying operation has been exposed through a series of high-profile breaches linked to the FortiBleed exploit. Experts are sounding the alarm as they work to mitigate the damage and patch vulnerable systems, but the full extent of this crisis is still being assessed.
Published: Sun Jun 21 16:21:56 2026 by llama3.2 3B Q4_K_M
The Asia-Pacific region is grappling with a significant increase in cybercrime, with phishing, ransomware, and AI scams on the rise. The INTERPOL report highlights the need for governments and individuals to prioritize cybersecurity awareness and take proactive measures to protect themselves against emerging threats. As digital adoption accelerates across the region, it is crucial to strengthen operational cooperation, information sharing, and cyber resilience to mitigate the impact of these cybercrimes.
Published: Mon Jun 22 01:42:58 2026 by llama3.2 3B Q4_K_M
AryStinger Malware has infected over 4,300 legacy routers, turning them into a distributed reconnaissance proxy network. Learn how to identify the malware and protect yourself from its attacks in this exclusive report from The Hacker News.
Published: Mon Jun 22 02:51:35 2026 by llama3.2 3B Q4_K_M
The latest threat in the world of cybersecurity is a stealthy spy infrastructure built from compromised routers. AryStinger malware has infected over 4,300 routers worldwide, turning these devices into a sophisticated network for reconnaissance and intrusion support. Learn more about this emerging danger and how to protect yourself.
Published: Mon Jun 22 04:56:24 2026 by llama3.2 3B Q4_K_M
Apple's A12 and A13 devices are now vulnerable to a new unpatchable BootROM exploit called usbliter8, which can enable arbitrary code execution on affected hardware. The vulnerability is a result of design flaws in the USB controller, making it essential for organizations with impacted devices to take proactive measures to secure their infrastructure.
Published: Mon Jun 22 05:04:09 2026 by llama3.2 3B Q4_K_M
Gizmodo readers were targeted with malicious ClickFix prompts after their accounts were compromised in a recent cyberattack. The attack, which was carried out by an affiliate of the ErrTraffic company, used a malicious tool called ClickFix to trick users into running infected code via their terminals. Gizmodo promptly identified and resolved the security incident, but highlights the need for vigilance among users when interacting with unfamiliar websites or prompts.
Published: Mon Jun 22 06:14:46 2026 by llama3.2 3B Q4_K_M
A new era of deception is unfolding at the 2026 FIFA World Cup, with AI-powered scams threatening to outsmart even the most seasoned fans. As more than 150 million tickets are requested and over $13,000 FIFA-themed domains are registered, experts warn that the old ways of identifying scams simply aren’t as reliable any more.
Published: Mon Jun 22 06:25:50 2026 by llama3.2 3B Q4_K_M
Canada's CSIS agency successfully used a threat reduction warrant to neutralize two foreign-run botnets that had compromised devices within Canada. This groundbreaking operation highlights the growing concern about state-sponsored hacking and underscores the importance of cooperation between nations to combat these threats.
Published: Mon Jun 22 06:31:13 2026 by llama3.2 3B Q4_K_M
FortiBleed is a large-scale Russian credential-harvesting operation targeting FortiGate firewalls globally, exposing over 110 million credentials across 659+ harvesting pipelines. The campaign's sophistication highlights the increasing complexity of cyber warfare and underscores the need for organizations to prioritize security measures. In this article, we delve into the details of the FortiBleed operation, its attribution, phases, and recommendations for affected organizations.
Published: Mon Jun 22 06:37:21 2026 by llama3.2 3B Q4_K_M
A Canadian health board has apologized for conducting a phishing test on its staff using a "tasteless" approach, highlighting the importance of judgment and respect in cybersecurity awareness exercises. The incident serves as a reminder to organizations to prioritize their employees' well-being and avoid exploiting their current stress levels for security training.
Published: Mon Jun 22 08:26:42 2026 by llama3.2 3B Q4_K_M
Researchers have uncovered a new campaign that uses malicious Google Ads to deliver the CastleStealer malware, exploiting multiple layers of obfuscation to evade detection. The threat actor is believed to be a Russian-speaking entity with financial motivations.
Published: Mon Jun 22 08:31:51 2026 by llama3.2 3B Q4_K_M
Google has set September 30, 2026, as the deadline for implementing its Android developer verification system in four key countries, aimed at boosting mobile security by requiring app developers to register their identities with Google.
Published: Mon Jun 22 08:39:22 2026 by llama3.2 3B Q4_K_M
The increasing threat of legacy infrastructure hijacking AI agents has left security experts sounding the alarm. The article reveals how attackers are exploiting vulnerabilities in existing infrastructure to gain access to sensitive data and compromise AI systems.
Published: Mon Jun 22 08:48:58 2026 by llama3.2 3B Q4_K_M
The world of cybersecurity is constantly evolving, with new threats emerging daily to challenge our skills and expertise. By staying informed and taking proactive measures to protect ourselves, we can reduce the risk of falling victim to these attacks. This week's lesson: most attacks do not need a genius move. They need one trusted app, one stale login, one noisy plugin, or one user chasing a shortcut. Read more about the latest cybersecurity threats and expert insights on The Hacker News.
Published: Mon Jun 22 08:59:59 2026 by llama3.2 3B Q4_K_M
Anthropic's Mythos AI, a cutting-edge artificial intelligence model, has breached almost all classified systems managed by the NSA and US Cyber Command in a matter of hours. This incident has significant implications for national security, data sovereignty, and the future of cybersecurity.
Published: Mon Jun 22 09:05:47 2026 by llama3.2 3B Q4_K_M
A Canadian power utility has disclosed a data security incident that may have compromised personal information on some customer accounts. The company is investigating the breach and notifying affected customers, but key details remain unclear. With sensitive financial data not involved, the incident poses a risk of using compromised information for malicious purposes.
Published: Mon Jun 22 10:26:16 2026 by llama3.2 3B Q4_K_M
Brazil is investigating after a rogue alert message was sent out on its emergency warning system, affecting thousands of mobile phone users across the nation. The message read "Alerta extremo - Defesa Civil:misantropia," or "Extreme Alert - Defesa Civil: hatred of humanity." Anatel clarified that the messages were not issued by competent authorities and assured there was no reason for concern. The investigation is ongoing, with officials working to identify those responsible for the breach and ensure the system's security.
Published: Mon Jun 22 10:43:20 2026 by llama3.2 3B Q4_K_M
A critical vulnerability has been discovered in the widely used Squid web proxy software, which allows an attacker with access to the same proxy server as the intended victim to steal sensitive information from that user's HTTP requests. Learn more about the details behind Squidbleed and how to protect yourself from similar vulnerabilities.
Published: Mon Jun 22 10:52:40 2026 by llama3.2 3B Q4_K_M
OpenAI has launched its ambitious "Patch the Planet" initiative, aimed at patching open-source software bugs and bolstering the security capabilities of its cutting-edge AI models. This effort is part of OpenAI's broader strategy to enhance cybersecurity features and strengthen the resilience of its GPT-5.5-Cyber model.
Published: Mon Jun 22 13:09:50 2026 by llama3.2 3B Q4_K_M
A devastating supply chain attack on ShapedPlugin WordPress Pro Plugins has left numerous site owners vulnerable to malware. The attackers managed to infiltrate the vendor's build and distribution pipeline, injecting malicious code into the plugins through Easy Digital Downloads (EDD) infrastructure via account.shapedplugin[.]com. The compromised plugins were Product Slider Pro for WooCommerce, Real Testimonials Pro, and Smart Post Show Pro, with versions before 3.5.4, version 3.2.5, and versions before 4.0.2 being particularly vulnerable to the attack. This breach highlights the importance of staying vigilant in cybersecurity practices and ensuring the integrity of software updates.
Published: Mon Jun 22 13:15:57 2026 by llama3.2 3B Q4_K_M
Researchers have disclosed a list of four critical vulnerabilities in an open-source agentic workflow platform called Dify. These vulnerabilities could expose AI chats across tenants, allowing attackers to create covert exfiltration channels for every message and model response. The flaws were collectively codenamed DifyTap by Zafran Security.
Published: Mon Jun 22 13:24:59 2026 by llama3.2 3B Q4_K_M
Amd's Controversial U-Turn: The Reinstatement of Memory Encryption on Consumer CPUs
Published: Mon Jun 22 14:32:41 2026 by llama3.2 3B Q4_K_M
The urgent threat of AI-driven cyber catastrophes has been sounded by top intel agencies, warning that breaches will occur if we do not act swiftly to strengthen our security posture. The Five Eyes alliance emphasizes the need for immediate action to address this growing threat, which is now measured in months rather than years.
Published: Mon Jun 22 14:40:51 2026 by llama3.2 3B Q4_K_M
A recent data breach affecting over 3 million individuals by the Texas Parks and Wildlife Department (TPWD) has highlighted the vulnerability of sensitive personal information stored by third-party vendors. The breach occurred due to a cybersecurity incident involving the TPWD license system vendor, and measures are being taken to strengthen safeguards and prevent similar incidents in the future.
Published: Mon Jun 22 14:45:38 2026 by llama3.2 3B Q4_K_M
Supply chain hacker Icarus has struck again, targeting several well-established cybersecurity firms including Klue and Huntress. The attack exposed vulnerabilities in Salesforce-linked integrations and raised concerns about the security of sensitive customer data.
Published: Mon Jun 22 16:06:52 2026 by llama3.2 3B Q4_K_M
WhatsApp Malware Campaign Hijacks Trust, Installs Legitimate Admin Tools: A Case Study
A recent WhatsApp malware campaign used deceptive file names masquerading as business and financial documents to spread a malicious VBScript that installed legitimate-looking remote management tools. The threat actor targeted users in multiple countries, including Malaysia, Brazil, India, Mexico, Singapore, the UK, Spain, Taiwan, Australia, Russia, and Vietnam. Kaspersky assesses with low confidence that the operator is Chinese-speaking, based on simplified Chinese comments embedded throughout the scripts. Users are advised to be cautious when receiving unexpected attachments through WhatsApp, even from trusted contacts.
Published: Mon Jun 22 16:12:25 2026 by llama3.2 3B Q4_K_M
Cloudflare has partnered with Google Chrome, Microsoft Edge, and Mozilla Firefox to create Private Access Control Tokens (PACTs), a privacy-preserving protocol that enables websites to differentiate between legitimate user traffic and undesirable network requests. This initiative aims to combat bot-fraud by providing a digital token that verifies the authenticity of user interactions.
Published: Mon Jun 22 17:22:12 2026 by llama3.2 3B Q4_K_M
Sniff out stale AI override advice with this open source CLI, a critical tool for safeguarding against software supply chain attacks in the JavaScript development ecosystem. Learn more about CVE Lite CLI's impact on supply chain security and how to leverage its override auditing capabilities to protect your code.
Published: Mon Jun 22 19:31:55 2026 by llama3.2 3B Q4_K_M
OpenAI has recently unveiled an array of innovative cybersecurity-related initiatives, including enhanced GPT-5.5-Cyber model capabilities, expanded partner program opportunities, and the "Patch the Planet" initiative aimed at assisting open source project maintainers in identifying and patching security vulnerabilities.
Published: Mon Jun 22 19:39:38 2026 by llama3.2 3B Q4_K_M
OpenAI has announced the expansion of its GPT-5.5-Cyber model as part of its Daybreak initiative, providing tools to help defenders patch security flaws. The company is also launching Patch the Planet, an initiative aimed at securing open-source projects. This development comes as AI models accelerate vulnerability discovery, leaving software maintainers overwhelmed with an ever-increasing volume of bugs that need to be verified, triaged, and patched.
Published: Mon Jun 22 23:58:45 2026 by llama3.2 3B Q4_K_M
Leaders from the Five Eyes intelligence agencies have issued a strong warning about the growing threat of AI-powered cyberattacks, urging them to take immediate action to strengthen their cybersecurity defenses and prevent major operational and financial crises.
Published: Tue Jun 23 01:09:04 2026 by llama3.2 3B Q4_K_M
A recent WhatsApp VBScript campaign has been discovered, leveraging social engineering tactics to install the ManageEngine RMM tool. This article delves into the details of the campaign, its methods, and the implications for users, highlighting the need for increased cybersecurity awareness in the digital age.
Published: Tue Jun 23 02:18:06 2026 by llama3.2 3B Q4_K_M
Squidbleed is a recent vulnerability in the Squid proxy software that allows attackers to leak sensitive information such as user credentials and HTTP data through memory overread. Researchers discovered the bug and reported it as CVE-2026-47729, emphasizing its potential risks for widespread exploitation. Organizations using Squid must prioritize updating their systems with the latest patches or disabling FTP support to mitigate the attack surface.
Published: Tue Jun 23 03:32:19 2026 by llama3.2 3B Q4_K_M
A critical vulnerability has been discovered in ShapedPlugin Pro plugin updates, leaving hundreds of thousands of WordPress websites vulnerable to malicious attacks. The attackers compromised the vendor's build and distribution pipeline, injecting backdoor code into Pro plugin releases distributed through official licensed update channels. This attack highlights the importance of ensuring the security of software supply chains and underscores the need for vigilance among website owners.
Published: Tue Jun 23 04:46:22 2026 by llama3.2 3B Q4_K_M
Xsolis Data Breach Impacts 1.4 Million People: A Cautionary Tale of Phishing and Vulnerability Management
Published: Tue Jun 23 07:04:03 2026 by llama3.2 3B Q4_K_M
Agentic AI is changing the game in cybersecurity, enabling sophisticated attacks that are becoming increasingly difficult to detect and mitigate. As attackers continue to leverage these technologies, organizations must develop strategies for defending against agentic AI-powered threats.
Published: Tue Jun 23 08:15:28 2026 by llama3.2 3B Q4_K_M
GitHub has updated its actions/checkout feature to block common pwn request attack patterns, providing enhanced security features for protecting against cache poisoning and unauthorized access to sensitive data. The update aims to fortify the security of software supply chains and follows recent attacks that exploited vulnerabilities in this context.
Published: Tue Jun 23 09:29:16 2026 by llama3.2 3B Q4_K_M
Scattered Spider Hackers Face Justice: A Complex Web of Cybercrime and Guilty Pleas
Two members of the notorious Scattered Spider hacker group have pleaded guilty to criminal charges in connection with a devastating cyberattack against Transport for London. Thalha Jubair and Owen Flowers are among several individuals linked to the group's activities, which have been attributed to numerous high-profile breaches and ransomware attacks. Their guilty pleas mark an important step towards accountability for those responsible for these devastating incidents.
Published: Tue Jun 23 11:42:57 2026 by llama3.2 3B Q4_K_M
A new experiment has revealed critical weaknesses in the trust signals currently used to verify AI-driven skills, raising serious questions about the long-term security of organizations relying on these tools. Can we rely solely on internal checks and external link scrutiny to ensure our skills are trustworthy? The answer may not be as straightforward as it seems.
Published: Tue Jun 23 11:49:35 2026 by llama3.2 3B Q4_K_M
President Trump signed an executive order on June 22, 2026, setting hard deadlines for federal agencies to migrate to post-quantum cryptography (PQC) by December 31, 2030 and December 31, 2031. The order aims to ensure the security of digital communications in the face of growing threats from quantum computers.
Published: Tue Jun 23 11:59:28 2026 by llama3.2 3B Q4_K_M
Awareness and Vigilance: Over 1 Million AI Applications Exposed to Critical Vulnerabilities - Four bugs discovered in Dify platform, posing significant threat to over 1 million AI applications across various industries. Follow the latest developments in this story at Security Affairs.
Published: Tue Jun 23 13:09:02 2026 by llama3.2 3B Q4_K_M
A decades-old memory leak known as Squidbleed has been exposed through AI-powered bug hunting, highlighting the importance of regular software updates and the role of collaboration between researchers and developers in detecting vulnerabilities. The vulnerability affects a widely used caching proxy server called Squid, which could silently leak users' plaintext HTTP requests and potentially reveal sensitive data.
Published: Tue Jun 23 14:32:53 2026 by llama3.2 3B Q4_K_M
A private events group's website was left vulnerable due to a misconfigured architecture, exposing members' personal details to the public. The breach raises concerns about cybersecurity negligence and the consequences of lax web design practices.
Published: Tue Jun 23 14:40:58 2026 by llama3.2 3B Q4_K_M
A recent cyber attack campaign known as FortiBleed has targeted over 430,000 Fortinet firewalls globally, resulting in the identification of over 110 million credentials. The operation involves collecting credential lists, searching for exposed services, brute-forcing accessible systems, and deploying bespoke sniffers on compromised firewalls. This campaign is part of a broader initial access operation that targets multiple sectors and regions, including small and medium-sized businesses.
Published: Tue Jun 23 15:51:33 2026 by llama3.2 3B Q4_K_M
The White House has drastically shortened the deadline for adopting quantum-resistant encryption systems to protect against growing national security risks. The new deadline requires computing systems for "high-value assets" and "high-impact systems" to transition to post-quantum cryptographic key establishment schemes by December 31, 2030, and to quantum-safe digital signature schemes by December 31, 2031.
Published: Tue Jun 23 18:04:33 2026 by llama3.2 3B Q4_K_M
A critical security vulnerability was recently exposed in millions of Samsung Galaxy devices due to a KNOX kernel UAF bug. The flaw can be exploited from untrusted apps and may lead to complete device takeover, compromising user data. This highlights the importance of patching software quickly and emphasizes the need for vigilance when using mobile devices.
Published: Tue Jun 23 18:09:58 2026 by llama3.2 3B Q4_K_M
The White House has drastically shortened the deadline for government agencies and organizations to adopt new quantum-resistant encryption systems, requiring them to transition to post-quantum cryptographic key establishment schemes by December 31, 2030. This move comes in response to recent research showing that the resources and cost for building a cryptographically relevant quantum computer are far less than previously estimated.
Published: Tue Jun 23 20:22:08 2026 by llama3.2 3B Q4_K_M
Japanese telco KDDI has exposed 14.2 million managed email credentials due to a breach of its email system in June 2026. The company has bolstered its defenses but concerns remain about the potential impact on users' sensitive information, highlighting the importance of robust cybersecurity measures and transparency.
Published: Wed Jun 24 00:40:26 2026 by llama3.2 3B Q4_K_M
A critical security flaw in Cisco Unified Communications Manager has been discovered, allowing threat actors to exploit a recently disclosed vulnerability. The vulnerability, tracked as CVE-2026-20230, is rated at CVSS 8.6 and can be exploited using an unauthenticated remote attacker's server-side request forgery (SSRF) attacks through an affected device. This article provides an in-depth look at the identified weakness, its implications, and guidance on how to patch and mitigate this critical vulnerability.
Published: Wed Jun 24 03:52:10 2026 by llama3.2 3B Q4_K_M
The U.S. Department of Justice has seized a cloud computing account tied to the HuiOne Group, a Cambodian-based corporate conglomerate with alleged ties to widespread cybercrime and money laundering operations. The DoJ's announcement comes as part of a broader crackdown on Prince Group, a Transnational Criminal Organization (TCO) designated by the U.S. Treasury in May 2025. The seized account hosted backend infrastructure for an illicit Telegram-based marketplace that engaged in transactions with billions of dollars between 2021 and 2025, facilitating the movement of considerable funds stolen by Southeast Asian scam centers.
Published: Wed Jun 24 05:06:46 2026 by llama3.2 3B Q4_K_M
U.S. CISA adds Ubiquiti UniFi OS and Lantronix EDS5000 plugin flaws to its Known Exploited Vulnerabilities catalog, highlighting the ongoing threat of network exploitation and emphasizing the importance of swift action in addressing these vulnerabilities to protect network security.
Published: Wed Jun 24 05:13:30 2026 by llama3.2 3B Q4_K_M
FortiBleed is more than just a data breach; it's an illustration of how easy it has become to exploit device management interfaces due to modern AI-powered hacking tools. The operation, which exposed credentials for over 73,000 Fortinet firewalls, highlights the importance of proactive security measures and emphasizes that simply using strong passwords may not be enough to keep your networks secure. Understanding this threat requires staying informed about the latest vulnerabilities and hacking techniques.
Published: Wed Jun 24 05:18:33 2026 by llama3.2 3B Q4_K_M
A recent railway radio outage in Germany halted trains across the country for several hours, sparking questions about the resilience of critical infrastructure networks. The incident has raised concerns about the vulnerability of railway networks to cyber threats and physical damage, highlighting the need for more robust monitoring and incident response protocols.
Published: Wed Jun 24 05:23:54 2026 by llama3.2 3B Q4_K_M
London's Metropolitan Police Service is set to deploy static live facial recognition cameras in the West End and Soho, sparking controversy over its impact on public safety and individual rights. As concerns grow about the technology's use, advocates are calling for greater oversight and regulation to ensure that these technologies serve the needs of justice, rather than eroding trust in policing.
Published: Wed Jun 24 08:19:44 2026 by llama3.2 3B Q4_K_M
The emergence of frontier agentic models in early 2026 has marked a significant turning point in the cyber threat landscape. As AI entities actively test code, accelerate the offensive lifecycle, and compress the time between discovery and weaponization, organizations must adapt to this new reality. By adopting proactive environmental hardening strategies and identifying blind spots, organizations can mitigate the risks associated with these sophisticated threats. Learn more about the dawn of the apex agentic adversary and how it's changing the cybersecurity landscape.
Published: Wed Jun 24 08:34:25 2026 by llama3.2 3B Q4_K_M
Zero-Day Exploitation of Vulnerability (CVE-2026-20245) in Cisco Catalyst SD-WAN Manager: A Threat Actor's Stealthy Infiltration. Mandiant Services detected a threat actor exploiting CVE-2026-20245 to gain root-level access via a malicious CSV file upload. Organizations are advised to prioritize patching and upgrading to fixed software releases to prevent similar attacks.
Published: Wed Jun 24 09:47:00 2026 by llama3.2 3B Q4_K_M
A critical vulnerability in CI/CD workflow configurations has been discovered, allowing attackers to hijack workflows and compromise open-source supply chains. Experts warn that this vulnerability could have severe downstream impacts and emphasizes the need for organizations to take immediate action to patch these vulnerabilities.
Published: Wed Jun 24 09:53:02 2026 by llama3.2 3B Q4_K_M
In a world where frontier AI-powered cyber threats are on the rise, Continuous Threat Exposure Management (CTEM) emerges as the linchpin in the fight against these dangers. This cutting-edge approach transforms exposure management from a reporting exercise into a proactive risk-reduction program, leveraging advanced threat intelligence and collaboration between security teams and IT departments to unlock real business risk.
Published: Wed Jun 24 09:58:35 2026 by llama3.2 3B Q4_K_M
Cisco Unified CM Flaw CVE-2026-20230: A Critical Vulnerability Exposed
A critical vulnerability has been discovered in Cisco Unified Communications Manager (CUCM), allowing attackers to gain root access and exploit sensitive data. Organizations are advised to apply patches immediately to mitigate the risk of exploitation.
Published: Wed Jun 24 10:03:21 2026 by llama3.2 3B Q4_K_M
The NSA's latest tests with Anthropic's Mythos AI have raised more questions than answers about its capabilities and potential implications for national security. The initial claims that Mythos had broken into "almost all" of the NSA's classified systems were later disputed, and the true extent of the model's capabilities remains uncertain.
Published: Wed Jun 24 12:31:24 2026 by llama3.2 3B Q4_K_M
Amadey and StealC malware networks disrupted by global law enforcement effort; 27 million stolen login credentials recovered. Read more about Operation Endgame and its implications for cybersecurity.
Published: Wed Jun 24 12:38:38 2026 by llama3.2 3B Q4_K_M
Microsoft has used artificial intelligence to link two malware operations and disrupt their infrastructure as part of a racketeering suit, resulting in the takedown, suspension, and blocking of over 200 domains and command-and-control (C2) servers. This novel approach demonstrates the growing importance of AI-powered tools in disrupting cybercrime operations.
Published: Wed Jun 24 14:09:58 2026 by llama3.2 3B Q4_K_M
A critical vulnerability has been discovered in the Lantronix EDS5000 series devices, prompting CISA to issue an alert regarding active exploitation of CVE-2025-67038, a high-severity code injection flaw that could allow arbitrary commands to be executed with elevated privileges. Organizations are urged to apply available fixes by June 26, 2026.
Published: Wed Jun 24 14:15:54 2026 by llama3.2 3B Q4_K_M
Operation Endgame, a historic international effort to disrupt ransomware enablers, successfully took down StealC and Amadey malware infrastructure in a coordinated two-week operation. The operation targeted three malware families, SocGholish, Amadey, and StealC, resulting in the disruption of critical stages of the cybercrime supply chain. With over 140,000 infected computers linked to the malware families, Operation Endgame has made significant strides in tackling ransomware enablers worldwide.
Published: Wed Jun 24 14:21:43 2026 by llama3.2 3B Q4_K_M
International authorities and private technology companies have joined forces to disrupt a notorious "assembly line" for cybercrime, targeting two widely used tools: Amadey and StealC. The operation, dubbed "Operation Endgame," has severely crippled the distribution network of these tools, making it increasingly difficult for attackers to succeed in their malicious activities.
Published: Wed Jun 24 17:31:09 2026 by llama3.2 3B Q4_K_M
Cisco Systems is under attack once again, with multiple vulnerabilities being exploited by malicious actors. The latest wave of attacks targets the company's Unified Communications Manager and SD-WAN infrastructure, raising concerns about the security of Cisco's network services. With no patch yet available for these vulnerabilities, users are advised to prioritize their network security and take immediate action to address these threats.
Published: Wed Jun 24 17:51:48 2026 by llama3.2 3B Q4_K_M
Australia's national security landscape has taken a concerning turn, with nation-state actors successfully cracking critical infrastructure to cripple it at their chosen times. ASIO is taking proactive steps to counter these threats, but the country's vulnerability remains a pressing concern.
Published: Thu Jun 25 00:26:27 2026 by llama3.2 3B Q4_K_M
A critical zero-day vulnerability has been exposed in Cisco Catalyst SD-WAN, allowing unknown attackers to gain root access to affected systems. The discovery of this vulnerability highlights the growing concern about edge devices being targeted by cyber attackers and emphasizes the importance of proactive security measures to prevent similar incidents from occurring.
Published: Thu Jun 25 01:34:29 2026 by llama3.2 3B Q4_K_M
A 17-year-old student at a UK school discovered that the entire network was left wide open to invasion, exposing sensitive data and admin privileges to anyone with access. This incident serves as a stark reminder of the importance of robust security measures in protecting sensitive information.
Published: Thu Jun 25 02:45:28 2026 by llama3.2 3B Q4_K_M
Nathan Austad Pleads Guilty in DraftKings Hacking Scheme, Gets 18 Months: A High-Profile Case Study in Credential Stuffing and Cybercrime. Austad's guilty plea marks an important milestone in the investigation into the DraftKings credential-stuffing scheme, highlighting the growing threat of such attacks and emphasizing the importance of cybersecurity awareness and education.
Published: Thu Jun 25 03:52:44 2026 by llama3.2 3B Q4_K_M
The UK's Avon and Somerset Police has been accused of building an AI-powered crime-prediction machine with flawed algorithms, raising concerns about accuracy and potential impact on citizens' lives. As the government prepares to roll out similar projects across the country, critics warn that transparency and accountability are crucial to ensuring these programs serve justice rather than perpetuate bias.
Published: Thu Jun 25 06:15:46 2026 by llama3.2 3B Q4_K_M
North Korea-aligned threat actors have unleashed a novel macOS malware known as Gaslight, which employs prompt injection payloads to disrupt AI-assisted analysis and evade detection by artificial intelligence tools. This sophisticated malware has been identified as a Rust-based implant and information stealer, with features such as self-redaction of its Telegram bot token at runtime. Gaslight poses a significant threat to macOS users, and its attribution to North Korea-aligned threat actors underscores the potential for widespread cyber attacks in the coming months.
Published: Thu Jun 25 06:22:12 2026 by llama3.2 3B Q4_K_M
Researchers have found that threat actors exploited Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 months before its public disclosure, gaining elevated privileges and access into internal network traffic. The incident highlights the growing trend of zero-day vulnerabilities in edge devices like software-defined wide area networks.
Published: Thu Jun 25 06:27:58 2026 by llama3.2 3B Q4_K_M
The Mythos Era has brought about significant challenges for security operations teams, but a new approach is on the horizon: network detection and response (NDR). By leveraging AI-powered defense strategies, organizations can build more robust security postures and stay ahead of the curve. Learn how NDR can help your team survive in this rapidly evolving threat landscape.
Published: Thu Jun 25 07:45:08 2026 by llama3.2 3B Q4_K_M
The ThreatsDay Bulletin report highlights the latest threats and vulnerabilities that pose significant risks to security systems, including a critical Splunk Enterprise flaw, AI-powered attacks, and the discovery of six vulnerabilities in the curl library. Organizations and individuals must take proactive measures to protect their systems and data from these emerging threats.
Published: Thu Jun 25 09:09:25 2026 by llama3.2 3B Q4_K_M
A popular Google Chrome ad block extension for YouTube, Adblock for YouTube, with over 10 million installations, has been found to possess dormant script injection capability, raising significant privacy and security concerns among researchers and security experts.
Published: Thu Jun 25 10:18:01 2026 by llama3.2 3B Q4_K_M
Mistic is a new stealthy backdoor used by KongTuke-linked actors to provide long-term access to ransomware-targeted networks, making it a significant threat in the world of cyber security. Its extensive range of capabilities makes Mistic a formidable backdoor that can be used to maintain long-term access to compromised networks, while its stealth features pose significant challenges for cyber security professionals.
Published: Thu Jun 25 11:28:44 2026 by llama3.2 3B Q4_K_M
Runlayer Raises $30 Million in Series A Funding
Cal Water Finds No Evidence of OT Activity After Hackers Claimed They Could Disrupt Water Supply
Lantronix Serial-to-IP Converter Flaw Exploited in Attacks After OT Threat Warning
GitLab Patches Code Execution, Information Disclosure Vulnerabilities
25-Year-Old Vulnerability Patched in Curl
NIST Opens Updated IoT Security Guidance to Public Review
Chrome 149 Update Resolves 18 Severe Vulnerabilities
Cisco SD-WAN Zero-Day Exploited Months Before Patching
When Information Becomes the Attack Surface Understanding AI Agent Traps
Microsoft and Allies Smash Shared Infrastructure of Amadey and StealC Malware
New CISA Guide Assists Federal Agencies with Transitioning to Modernized Zero Trust Architectures
CISA Issues New Directive Improving How Federal Agencies Prioritize the Mitigation of Cyber Vulnerabilities
CISA Announces Winners of the 2026 President’s Cup Cybersecurity Competition
CISA Urges Stronger Security for Automatic Tank Gauge Systems
CISA Announces Revised Town Hall Schedule to Engage with Stakeholders on Cyber Incident Reporting for Critical Infrastructure
CISA Enhances Known Exploited Vulnerabilities Catalog to Include New Nomination Form
CISA Unveils New Initiative to Fortify America’s Critical Infrastructure
CISA, US and International Partners Release Guide to Secure Adoption of Agentic AI
CISA and U.S. Government Partners Unveil Guide to Accelerate Zero Trust Adoption in Operational Technology
CISA, National Cyber Security Centre (NCSC) UK, and Global Partners Issue Advisory on Chinese Government-Linked Covert Cyber Networks
Five Eyes Cyber Security Agencies Statement
CISA Offers Vital Resources as Venues Prepare for Key 2026 Events
Patch Smarter, Not Harder
NCSWIC releases additional content in its NCSWIC Video Series
CISA Highlights Vital Resources to Help Event Attendees Stay Safe
Preparing for the World Stage
Securing the American Experience
The End is Just the Beginning of Better Security: Enhanced Vulnerability Management with OpenEoX
Super Bowl LX: Strengthening Preparation, Building Resilience, Fostering Partnerships
NCSWIC releases the “‘What is a PACE Plan” video
Using SASE in a Modern TIC 3.0 Solution
Hubbell Aclara Metrum Cellular Web Interface
Siemens WinCC Certificate Manager
ABB Freelance Security Lock
Siemens SINEC INS
Impact of Linux Kernel vulnerabilities on B&R products
Siemens SIPROTEC 5 Using DIGSI5 Protocol
CISA Adds Four Known Exploited Vulnerabilities to Catalog
Siemens Products using OpenSSL
CISA Urges Hardening Fortinet Devices After Reports of Credential Exposure
Schneider Electric Easergy, EcoStruxture, PowerLogic, and Saitel Products
Mitsubishi Electric MELSEC iQ-F Series
Mitsubishi Electric Co.'s MELSEC iQ-F Series FX5-ENET/IP Ethernet Module
Rockwell Automation FactoryTalk Historian Site Edition
AVer PTC cameras
CISA Adds One Known Exploited Vulnerability to Catalog
Apollo Pharmacy Blood Glucose Monitoring System APG-01 BT
AzeoTech DAQFactory
Schneider Electric EasyLogic T150 and Saitel DP
Rockwell Automation FactoryTalk Analytics PavilionX
Rockwell Automation Logix 5370 & 5570 Controllers Vulnerable To Denial of Service Via CIP
Rockwell Automation RSLinx
Rockwell Automation FLEX I/O EtherNet/IP Adapters
CISA Adds One Known Exploited Vulnerability to Catalog
Rockwell Automation CompactLogix
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog
Yarbo Android/iOS Mobile Application and Cloud Infrastructure
Naxclow IoT Platform
Brickcom Cameras