Malware Network Security2 Min Read July 8, 2026 China-Linked UAT-7810 Expands ORB Network With New LONGLEASH Malware A Chinese threat actor tracked as UAT-7810 is actively refining its bespoke malware to expand its Operational Relay Box (ORB) network by breaking into int…
3 Min Read July 8, 2026 15-Year-Old GhostLock Flaw Enables Root and Container Escape on Most Linux Distros Researchers at Nebula Security have disclosed GhostLock… Cloud Security Vulnerability
3 Min Read July 8, 2026 CISA Adds 4 Actively Exploited Adobe, Joomla, and Langflow Flaws to KEV The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on… AI Security Vulnerability
3 Min Read July 7, 2026 RedWing MaaS Packages Android Bank Fraud as a Telegram Rental Service A new Android malware operation called RedWing is being rented out on… Malware Mobile Security
Email Security Vulnerability4 Min Read July 7, 2026 Suspected China-Aligned Hackers Exploit Roundcube Flaws Against Universities A suspected China-aligned threat activity cluster has been observed exploiting Roundcube webmail software belonging to physics and engineering…
Exploits Malware Network Vulnerabilities2 Min Read July 7, 2026 CERT/CC Warns of Hidden Admin Backdoor in Tenda Router Firmware Several versions of firmware released by Chinese network device manufacturer Tenda have been found to embed an undocumented authentication…
Enterprise Security Vulnerability2 Min Read July 7, 2026 BeyondTrust Patches Critical Auth Bypass Flaws in Remote Support and PRA BeyondTrust has released updates to address two critical security flaws affecting Remote Support (RS) and Privileged Remote Access (PRA)…
Malware Threat Intelligence3 Min Read July 6, 2026 Iran-Linked Hackers Use New Cavern C2 Framework to Target Israeli Organizations An Iranian hacking group affiliated with Iran's Ministry of Intelligence and Security (MOIS) has been wielding a previously undocumented…
Linux Vulnerability5 Min Read July 6, 2026 16-Year-Old Linux KVM Flaw Lets Guest VMs Escape to Host on Intel and AMD x86 Systems A use-after-free bug in Linux's KVM hypervisor can be triggered from a guest virtual machine to corrupt the shadow-page state of the host…
DevOps Vulnerability2 Min Read July 6, 2026 Threat Actors Probe Gitea Docker Flaw CVE-2026-20896 13 Days After Disclosure Threat actors have been observed attempting to exploit a recently patched critical security flaw in Gitea Docker images, according to Sysdig.…
Cybersecurity Hacking15 Min Read July 6, 2026 ⚡ Weekly Recap: Proxy Botnets, Browser Ransomware, AI Agent Tricks, Fake PoC Malware and More A streaming box should not need a threat model. Neither should a username field, a demo repo, a reset flow, or a browser permission prompt.…
Cyber Espionage Endpoint Security2 Min Read July 6, 2026 New TrojPix Attack Leaks Data From Air-Gapped Systems via Video Cable Emissions Researchers at Shandong University have shown a fast new way to pull data off computers that are cut off from every network. The…
Endpoint Security Malware4 Min Read July 6, 2026 New Java-Based QuimaRAT MaaS Built to Run on Windows, Linux, and macOS Cybersecurity researchers have flagged a novel Java-based remote access trojan (RAT) called QuimaRAT that's capable of targeting Windows,…
Vulnerability Web Security4 Min Read July 6, 2026 Opera GX Flaw Let Malicious Sites Auto-Install Mods to Steal Data From Visited Pages Researchers found a flaw in Opera GX, the gaming-focused version of the Opera browser, that let a malicious website silently install a…
AI Security Threat Detection5 Min Read July 6, 2026 SkillCloak Lets Malicious AI Agent Skills Evade Static Scanners with Self-Extracting Packing Scanners meant to catch malicious add-on "skills" for AI coding agents can be fooled by a few simple changes that leave the malware working,…
Cyber Extortion Threat Intelligence3 Min Read July 4, 2026 U.S. Government Entity Paid Kairos $1 Million in Data-Theft Extortion Case A U.S. government entity paid about $1 million to keep stolen files from being leaked, according to a new case study by Rakesh Krishnan…
Cryptocurrency Malware3 Min Read July 4, 2026 North Korean Hackers Publish 108 Malicious Packages and Extensions in PolinRider Campaign The North Korean threat actors linked to the Contagious Interview campaign have been observed publishing 108 unique packages and web browser…
IoT Security Vulnerability4 Min Read July 3, 2026 Unpatched Flaws Disclosed in Filesystem Bundled Into Millions of Embedded Devices Security firm runZero has disclosed seven vulnerabilities in FatFs, a small filesystem library that lets a device read and…
Android Linux4 Min Read July 3, 2026 New "Bad Epoll" Linux Kernel Flaw Lets Unprivileged Users Gain Root, Hits Android A newly disclosed Linux kernel flaw called Bad Epoll (CVE-2026-46242) lets an ordinary user with no special access take full control of a…
Artificial Intelligence Endpoint Security4 Min Read July 3, 2026 New Avalon Malware Framework Packs CrownX Ransomware Capabilities Cybersecurity researchers have discovered a previously undocumented modular malware framework codenamed Avalon that's distributed by means of…
Malware Software Supply Chain5 Min Read July 3, 2026 North Korea-Linked npm Packages Mimic Rollup Polyfills to Steal Developer Secrets Threat actors with ties to North Korea have been linked to a fresh set of malicious npm packages that masquerade as Rollup polyfill tooling to…
Cyber Espionage Infostealer4 Min Read July 3, 2026 Armored Likho Targets Government Agencies, Power Sector with BusySnake Stealer A previously undocumented threat actor known as Armored Likho has been attributed to cyber attacks targeting government agencies and the…
Mobile Security Spyware4 Min Read July 3, 2026 European Parliament Member Investigating Spyware Was Hacked With Pegasus A new report from the Citizen Lab has revealed that former Member of the European Parliament Stelios Kouloglou had his mobile device…
Credential Theft Cryptocurrency3 Min Read July 3, 2026 PamStealer Uses Fake Maccy Sites and PAM Checks to Steal Mac Login Passwords Cybersecurity researchers have flagged a new macOS information stealer called PamStealer that employs a series of clever tricks to infect…
Botnet Cybercrime3 Min Read July 2, 2026 Google Disrupts NetNut Residential Proxy Network Spanning 2 Million Home Devices Google has significantly degraded NetNut, one of the biggest networks that turns home devices into rented relays for other people's traffic.…
Cyber Attack Malware5 Min Read July 2, 2026 Ransomware Groups Turn to Citrix Bleed 2, BYOVD, and Supply Chain Credentials Threat actors associated with the Anubis ransomware operation have been observed exploiting the Citrix Bleed 2 (CVE-2025-5777) vulnerability…
Cybersecurity News Hacking News11 Min Read July 2, 2026 ThreatsDay: AI Compute Hijacking, Apple Email Flaw, BlueHammer Ransomware + 14 Stories This week’s security news is mostly about weak spots. Browsers, bots, sandboxes, AI systems, and email flows all show the same problem…
API Security Cyberespionage4 Min Read July 2, 2026 ToddyCat-Linked Umbrij Malware Abuses OAuth to Access Gmail via Google API The threat actor known as ToddyCat has been attributed to a new malware called Umbrij that's designed to gain surreptitious access to a…
Enterprise Security Identity Governance13 Min Read July 2, 2026 Identity Lifecycle Management Wasn't Built for AI Agents Identity lifecycle management was architected around a person with an employment record, a manager, and a departure date. AI agents have none…
Artificial Intelligence Malware5 Min Read July 2, 2026 AI Agent Exploits Langflow RCE to Automate Database Ransomware Attack Security firm Sysdig says it has found what it believes is the first ransomware attack run from start to finish by an AI agent. Its…
Network Security Ransomware3 Min Read July 2, 2026 FortiBleed Credential Theft Linked to INC and Lynx Ransomware Operations The recently discovered financially-motivated FortiBleed campaign has been attributed to INC and Lynx ransomware operations, indicating that…
Malware Vulnerability Research4 Min Read July 2, 2026 New ChocoPoC RAT Targets Vulnerability Researchers via Fake PoC Exploit Repos Attackers are hiding a data-stealing trojan inside fake exploit code aimed at the people who hunt bugs for a living. The malware, called…
Threat Intelligence Vulnerability3 Min Read July 2, 2026 SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active Exploitation The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a high-severity flaw impacting Microsoft SharePoint Server…
Kubernetes Server Security3 Min Read July 1, 2026 Unpatched Argo CD Repo-Server Flaw Could Let Attackers Take Over Kubernetes Clusters Argo CD, a widely used tool for deploying software to Kubernetes, has an unpatched flaw in its repo-server component that lets an…
Cybercrime Ransomware3 Min Read July 1, 2026 19-Year-Old Scattered Spider Suspect Extradited to Face U.S. Hacking Charges A teenager accused of belonging to the hacking group Scattered Spider has been extradited from Finland to face U.S. charges of conspiracy,…
Malware SEO Poisoning2 Min Read July 1, 2026 SEO-Poisoned Software Sites Abuse ScreenConnect to Deploy AsyncRAT Unknown threat actors are leveraging the ScreenConnect remote access tool as a way to deploy and execute AsyncRAT. Kaspersky said the activity…
Cyber Attack Malware3 Min Read July 1, 2026 VEIL#DROP Malware Chain Uses Blogger Platform to Deliver PureLogs Stealer Cybersecurity researchers have flagged a new multi-stage malware delivery attack chain that uses social engineering and Blogger pages to…
Endpoint Security Malware3 Min Read July 1, 2026 Ousaban Banking Trojan Targets Iberian Bank Users with Fake PDF Lures A Brazilian banking trojan called Ousaban is going after Windows users who bank in Spain and Portugal. Fortinet's FortiGuard…
Encryption Quantum Computing2 Min Read July 1, 2026 Microsoft Accelerates Post-Quantum Cryptography Shift to 2029 Microsoft on Tuesday said it's accelerating its quantum safe security roadmap, stating technology advances in quantum computing are making it…
Artificial Intelligence Threat Intelligence4 Min Read July 1, 2026 Phantom Squatting Uses AI-Hallucinated Domains for Phishing and Malware Large language models keep inventing web addresses that do not exist. Attackers have started buying those made-up domains before anyone else…
Artificial Intelligence Critical Infrastructure4 Min Read July 1, 2026 Anthropic Restores Claude Fable 5 After U.S. Lifts Jailbreak-Linked Export Controls Anthropic is putting Claude Fable 5 back online worldwide. On June 30, the U.S. Commerce Department lifted the export controls it had…
Cloud Security Password Security3 Min Read July 1, 2026 Azure CLI Password Spray Hits at Least 78 Microsoft Accounts in 81M+ Attempts Cybersecurity researchers have warned of a "massive, ongoing, automated password spray attack" aimed at Microsoft's Azure command-line…
Social Engineering Threat Intelligence4 Min Read July 1, 2026 Researcher Analyzes 3,000 Live ClickFix Payloads, Exposing API-Driven Malware Delivery ClickFix, the trick that fools people into running malware by hand, has quietly grown a back office. New research shows the malicious commands…
AI Security Vulnerability3 Min Read June 30, 2026 Attackers Exploit SimpleHelp CVE-2026-48558 to Deploy TaskWeaver and Djinn Stealer An unknown threat actor has been observed exploiting a recently disclosed maximum-severity security flaw in SimpleHelp to deliver two…
Vulnerability Wireless Security4 Min Read June 30, 2026 AirDrop and Quick Share Flaws Let Nearby Attackers Trigger Crashes and Bypass Checks Two researchers have found six security flaws in AirDrop and Quick Share, the wireless features that beam files between nearby devices with no…
Agent Security Browser Security3 Min Read June 30, 2026 New BioShocking Attack Tricks AI Browsers Into Leaking User Credentials Convince an AI browser that it is playing a game, and it can hand over your login details. That is the finding behind BioShocking, a…