Security Feed — BLACKMESA.CA

Security Feed — BLACKMESA.CA https://news.blackmesa.ca Aggregated cybersecurity news, advisories, and threat intelligence. en-ca Thu, 04 Jun 2026 20:40:58 +0000 240 https://blackmesa.ca/favicon.svg BLACKMESA.CA Security Feed https://news.blackmesa.ca <![CDATA[Name That Toon Contest]]> https://www.darkreading.com/events/celebrate-20-years-of-dark-reading-name-that-toon-contest https://www.darkreading.com/events/celebrate-20-years-of-dark-reading-name-that-toon-contest Fri, 26 Jun 2026 11:00:00 +0000 Dark Reading News <![CDATA[DentaQuest data breach exposed info of 2.6 million accounts]]> https://www.bleepingcomputer.com/news/security/dentaquest-data-breach-exposed-info-of-26-million-accounts/ https://www.bleepingcomputer.com/news/security/dentaquest-data-breach-exposed-info-of-26-million-accounts/ Thu, 04 Jun 2026 18:36:27 +0000 Bleeping Computer News Breach <![CDATA[Meta Silently Added Face-Recognition Code for Its Smart Glasses to Millions of Phones]]> https://www.wired.com/story/meta-smart-glasses-face-recognition-nametag-connections/ https://www.wired.com/story/meta-smart-glasses-face-recognition-nametag-connections/ Thu, 04 Jun 2026 17:28:11 +0000 Wired Security Media Privacy <![CDATA[Cisco Patches CVE-2026-20230 in Unified CM as Exploit Code Goes Public]]> https://thehackernews.com/2026/06/cisco-patches-cve-2026-20230-in-unified.html https://thehackernews.com/2026/06/cisco-patches-cve-2026-20230-in-unified.html Thu, 04 Jun 2026 16:55:51 +0000 The Hacker News News CVE Vuln Research <![CDATA[UN food agency discloses breach affecting 600,000 Gaza households]]> https://www.bleepingcomputer.com/news/security/un-world-food-programme-breach-affects-600-000-gaza-households/ https://www.bleepingcomputer.com/news/security/un-world-food-programme-breach-affects-600-000-gaza-households/ Thu, 04 Jun 2026 16:38:49 +0000 Bleeping Computer News Breach <![CDATA[New IronWorm malware hits 36 packages in npm supply-chain attack]]> https://www.bleepingcomputer.com/news/security/new-ironworm-malware-hits-36-packages-in-npm-supply-chain-attack/ https://www.bleepingcomputer.com/news/security/new-ironworm-malware-hits-36-packages-in-npm-supply-chain-attack/ Thu, 04 Jun 2026 15:25:37 +0000 Bleeping Computer News Malware <![CDATA[Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories]]> https://thehackernews.com/2026/06/claude-code-github-action-flaw-let-one.html https://thehackernews.com/2026/06/claude-code-github-action-flaw-let-one.html Thu, 04 Jun 2026 15:15:26 +0000 The Hacker News News Research <![CDATA[Agentic AI Is Transforming Defense, But Only Secure IT Infrastructure Will Maximize It]]> https://thehackernews.com/2026/06/agentic-ai-is-transforming-defense-but.html https://thehackernews.com/2026/06/agentic-ai-is-transforming-defense-but.html Thu, 04 Jun 2026 15:10:00 +0000 The Hacker News News <![CDATA[Proofpoint Warns TA4922 Deploys Atlas RAT, RomulusLoader, SilentRunLoader, and ValleyRAT]]> https://cybersecuritynews.com/proofpoint-warns-ta4922-deploys-atlas-rat/ https://cybersecuritynews.com/proofpoint-warns-ta4922-deploys-atlas-rat/ Thu, 04 Jun 2026 15:09:02 +0000 Cyber Security News News Malware <![CDATA[Bugcrowd Launches EU Data Residency Option For Evolving Data Sovereignty Needs]]> https://www.darkreading.com/cyber-risk/bugcrowd-launches-eu-data-residency-option-for-evolving-data-sovereignty-needs https://www.darkreading.com/cyber-risk/bugcrowd-launches-eu-data-residency-option-for-evolving-data-sovereignty-needs Thu, 04 Jun 2026 14:22:20 +0000 Dark Reading News <![CDATA[Hackers Are After the Gaps in Your Vulnerability Program: Here's Their Playbook]]> https://www.bleepingcomputer.com/news/security/hackers-are-after-the-gaps-in-your-vulnerability-program-heres-their-playbook/ https://www.bleepingcomputer.com/news/security/hackers-are-after-the-gaps-in-your-vulnerability-program-heres-their-playbook/ Thu, 04 Jun 2026 14:01:11 +0000 Bleeping Computer News Vuln <![CDATA[ThreatsDay Bulletin: AI Agents Gone Wrong, Sketchy C2 Tools, ClickFix Tricks, JS Backdoors & 20+ New Stories]]> https://thehackernews.com/2026/06/threatsday-bulletin-ai-agents-gone.html https://thehackernews.com/2026/06/threatsday-bulletin-ai-agents-gone.html Thu, 04 Jun 2026 14:00:49 +0000 The Hacker News News <![CDATA[How the “Swiss Cheese” model can help you choose the right MDR provider]]> https://www.rapid7.com/blog/post/dr-swiss-cheese-model-helps-choose-mdr-providers https://www.rapid7.com/blog/post/dr-swiss-cheese-model-helps-choose-mdr-providers Thu, 04 Jun 2026 13:53:41 +0000 Rapid7 Blog Research <![CDATA[Weaponized ChatGPT Download Site Delivers Malware Via Sponsored Search Results]]> https://cybersecuritynews.com/weaponized-chatgpt-download-site-delivers-malware/ https://cybersecuritynews.com/weaponized-chatgpt-download-site-delivers-malware/ Thu, 04 Jun 2026 13:46:12 +0000 Cyber Security News News Vuln Malware Research <![CDATA[Microsoft blames unexpected Windows driver updates on caching issue]]> https://www.bleepingcomputer.com/news/microsoft/microsoft-blames-unexpected-windows-driver-updates-on-caching-issue/ https://www.bleepingcomputer.com/news/microsoft/microsoft-blames-unexpected-windows-driver-updates-on-caching-issue/ Thu, 04 Jun 2026 13:41:42 +0000 Bleeping Computer News <![CDATA[Kali365 PhaaS Operation Expands Beyond Microsoft 365 to Target Okta and MAX Messenger]]> https://cybersecuritynews.com/kali365-phaas-operation-expands-beyond-microsoft-365/ https://cybersecuritynews.com/kali365-phaas-operation-expands-beyond-microsoft-365/ Thu, 04 Jun 2026 13:01:57 +0000 Cyber Security News News Phishing <![CDATA[Payouts King Ransomware Evades EDR With Obfuscation and Direct System Calls]]> https://cybersecuritynews.com/payouts-king-ransomware-evades-edr/ https://cybersecuritynews.com/payouts-king-ransomware-evades-edr/ Thu, 04 Jun 2026 12:51:47 +0000 Cyber Security News News Ransom <![CDATA[Police dismantles fake ID marketplace used by migrant smugglers]]> https://www.bleepingcomputer.com/news/security/police-dismantles-fake-id-marketplace-used-by-migrant-smugglers/ https://www.bleepingcomputer.com/news/security/police-dismantles-fake-id-marketplace-used-by-migrant-smugglers/ Thu, 04 Jun 2026 12:29:12 +0000 Bleeping Computer News <![CDATA[China-Linked TA4922 Expands Phishing Attacks to U.K., Germany, Italy, and South Africa]]> https://thehackernews.com/2026/06/china-linked-ta4922-expands-phishing.html https://thehackernews.com/2026/06/china-linked-ta4922-expands-phishing.html Thu, 04 Jun 2026 12:22:25 +0000 The Hacker News News Phishing <![CDATA[Hackers Actively Exploiting WordPress Plugin Vulnerability to Inject Malicious PHP Code]]> https://cybersecuritynews.com/wordpress-plugin-vulnerability-exploit/ https://cybersecuritynews.com/wordpress-plugin-vulnerability-exploit/ Thu, 04 Jun 2026 12:01:36 +0000 Cyber Security News News Vuln <![CDATA[NAVTOR NavBox]]> https://www.cisa.gov/news-events/ics-advisories/icsa-26-155-01 https://www.cisa.gov/news-events/ics-advisories/icsa-26-155-01 Thu, 04 Jun 2026 12:00:00 +0000 CISA Alerts & Advisories Advisory Vuln <![CDATA[Hitachi Energy MACH HiDraw]]> https://www.cisa.gov/news-events/ics-advisories/icsa-26-155-05 https://www.cisa.gov/news-events/ics-advisories/icsa-26-155-05 Thu, 04 Jun 2026 12:00:00 +0000 CISA Alerts & Advisories Advisory Vuln <![CDATA[Hitachi Energy ITT600 Explorer]]> https://www.cisa.gov/news-events/ics-advisories/icsa-26-155-02 https://www.cisa.gov/news-events/ics-advisories/icsa-26-155-02 Thu, 04 Jun 2026 12:00:00 +0000 CISA Alerts & Advisories Advisory Vuln DoS <![CDATA[B&R PPT30 Operating System]]> https://www.cisa.gov/news-events/ics-advisories/icsa-26-155-03 https://www.cisa.gov/news-events/ics-advisories/icsa-26-155-03 Thu, 04 Jun 2026 12:00:00 +0000 CISA Alerts & Advisories Advisory Vuln <![CDATA[Hitachi Energy RTU500]]> https://www.cisa.gov/news-events/ics-advisories/icsa-26-155-04 https://www.cisa.gov/news-events/ics-advisories/icsa-26-155-04 Thu, 04 Jun 2026 12:00:00 +0000 CISA Alerts & Advisories Advisory Vuln <![CDATA[Teams and Google Drive Leveraged to Compromise Systems Within 20 Minutes]]> https://cybersecuritynews.com/microsoft-teams-and-google-drive-abused/ https://cybersecuritynews.com/microsoft-teams-and-google-drive-abused/ Thu, 04 Jun 2026 11:55:45 +0000 Cyber Security News News Malware <![CDATA[Travel scams are everywhere. Here’s how to avoid them]]> https://www.malwarebytes.com/blog/scams/2026/06/travel-scams-are-everywhere-heres-how-to-avoid-them https://www.malwarebytes.com/blog/scams/2026/06/travel-scams-are-everywhere-heres-how-to-avoid-them Thu, 04 Jun 2026 11:28:12 +0000 Malwarebytes Labs Threat Intel <![CDATA[FlutterShell Backdoor Spreads to macOS via Malicious Google and YouTube Ads]]> https://thehackernews.com/2026/06/fluttershell-backdoor-spreads-to-macos.html https://thehackernews.com/2026/06/fluttershell-backdoor-spreads-to-macos.html Thu, 04 Jun 2026 11:19:53 +0000 The Hacker News News Malware Research <![CDATA[Cisco warns of critical Unified CM flaw with PoC exploit code]]> https://www.bleepingcomputer.com/news/security/cisco-warns-of-critical-unified-cm-flaw-with-poc-exploit-code/ https://www.bleepingcomputer.com/news/security/cisco-warns-of-critical-unified-cm-flaw-with-poc-exploit-code/ Thu, 04 Jun 2026 11:09:50 +0000 Bleeping Computer News Vuln Research <![CDATA[Hacking Meta’s AI Chatbot]]> https://www.schneier.com/blog/archives/2026/06/hacking-metas-ai-chatbot.html https://www.schneier.com/blog/archives/2026/06/hacking-metas-ai-chatbot.html Thu, 04 Jun 2026 11:04:09 +0000 Schneier on Security Media <![CDATA[Comodo Internet Security 0-Day Vulnerability Lets Attacker Crash the User’s Windows System]]> https://cybersecuritynews.com/comodo-internet-security-0-day-vulnerability/ https://cybersecuritynews.com/comodo-internet-security-0-day-vulnerability/ Thu, 04 Jun 2026 10:30:21 +0000 Cyber Security News News Vuln <![CDATA[Fake Sites Mimicking Open-Source Tools Rank High on Google to Deliver Malware via TDS]]> https://thehackernews.com/2026/06/fake-sites-mimicking-open-source-tools.html https://thehackernews.com/2026/06/fake-sites-mimicking-open-source-tools.html Thu, 04 Jun 2026 09:51:28 +0000 The Hacker News News Malware Research <![CDATA[Hackers Spied on a Stock Exchange Executive's Outlook Mailbox for Five Months]]> https://thehackernews.com/2026/06/hackers-spied-on-stock-exchange.html https://thehackernews.com/2026/06/hackers-spied-on-stock-exchange.html Thu, 04 Jun 2026 09:33:57 +0000 The Hacker News News <![CDATA[Cisco Unified Communications Manager Vulnerability Exposed Along With PoC Exploit Code]]> https://cybersecuritynews.com/cisco-unified-communications-manager-vulnerability/ https://cybersecuritynews.com/cisco-unified-communications-manager-vulnerability/ Thu, 04 Jun 2026 09:16:19 +0000 Cyber Security News News CVE Vuln Research <![CDATA[Meta’s AI support bot happily handed Instagram accounts to hackers]]> https://www.malwarebytes.com/blog/ai/2026/06/metas-ai-support-bot-happily-handed-instagram-accounts-to-hackers https://www.malwarebytes.com/blog/ai/2026/06/metas-ai-support-bot-happily-handed-instagram-accounts-to-hackers Thu, 04 Jun 2026 09:09:09 +0000 Malwarebytes Labs Threat Intel <![CDATA[CISA Warns of Android Framework Integer Overflow Vulnerability Exploited in Attacks]]> https://cybersecuritynews.com/android-framework-integer-overflow-vulnerability-exploited/ https://cybersecuritynews.com/android-framework-integer-overflow-vulnerability-exploited/ Thu, 04 Jun 2026 09:07:01 +0000 Cyber Security News News CVE Vuln <![CDATA[CVE-2026-9149 Libsolv: heap buffer overflow in libsolv repo_add_solv via negative maxsize from crafted .solv file]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-9149 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-9149 Thu, 04 Jun 2026 08:45:36 +0000 Microsoft Security Advisory CVE Vuln <![CDATA[CVE-2026-9150 Libsolv: stack-based buffer overflow in libsolv's debian metadata parser when handling sha384/sha512 checksums]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-9150 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-9150 Thu, 04 Jun 2026 08:45:29 +0000 Microsoft Security Advisory CVE Vuln <![CDATA[CVE-2026-46598 Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-46598 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-46598 Thu, 04 Jun 2026 08:45:22 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2026-27136 Invoking duplicate attributes can cause XSS in golang.org/x/net/html]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27136 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27136 Thu, 04 Jun 2026 08:45:09 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2026-42506 Invoking incorrect handling of namespaced elements in foreign content in golang.org/x/net/html]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42506 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42506 Thu, 04 Jun 2026 08:45:02 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2026-25681 Invoking incorrect handling of character references in DOCTYPE nodes in golang.org/x/net/html]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-25681 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-25681 Thu, 04 Jun 2026 08:44:55 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2026-39827 Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-39827 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-39827 Thu, 04 Jun 2026 08:44:26 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2026-39835 Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-39835 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-39835 Thu, 04 Jun 2026 08:44:06 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2026-25680 Invoking denial of service when parsing arbitrary HTML in golang.org/x/net/html]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-25680 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-25680 Thu, 04 Jun 2026 08:43:47 +0000 Microsoft Security Advisory CVE DoS <![CDATA[CVE-2026-42502 Invoking incorrect handling of HTML elements in foreign content in golang.org/x/net/html]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42502 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42502 Thu, 04 Jun 2026 08:43:19 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2026-39828 Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-39828 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-39828 Thu, 04 Jun 2026 08:42:55 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2026-43964 Postfix before 3.8.16, 3.9 before 3.9.10, and 3.10 before 3.10.9 sometimes allows a buffer over-read and process crash via an enhanced status code that lacks text after the third number]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-43964 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-43964 Thu, 04 Jun 2026 08:42:06 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2026-41140 Poetry: Path traversal in tar extraction on Python 3.10.0 - 3.10.12 and 3.11.0 - 3.11.4]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41140 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41140 Thu, 04 Jun 2026 08:41:49 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2026-35414 OpenSSH before 10.3 mishandles the authorized_keys principals option in uncommon scenarios involving a principals list in conjunction with a Certificate Authority that makes certain use of comma characters]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35414 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35414 Thu, 04 Jun 2026 08:40:55 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-1149 GNU Binutils ld xmalloc.c xstrdup memory leak]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-1149 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-1149 Thu, 04 Jun 2026 08:39:23 +0000 Microsoft Security Advisory CVE <![CDATA[Hackers Use Fake Chrome Web Store Copyright Notices to Steal Google Credentials]]> https://cybersecuritynews.com/hackers-use-fake-chrome-web-store-copyright-notices/ https://cybersecuritynews.com/hackers-use-fake-chrome-web-store-copyright-notices/ Thu, 04 Jun 2026 07:49:48 +0000 Cyber Security News News Phishing <![CDATA[Microsoft's Coreutils for Windows, (Thu, Jun 4th)]]> https://isc.sans.edu/diary/rss/33048 https://isc.sans.edu/diary/rss/33048 Thu, 04 Jun 2026 06:10:44 +0000 SANS Internet Storm Center Research <![CDATA[DoJ Disrupts Southeast Asia Crypto Fraud Networks, Freezes $3.8 Million in Assets]]> https://thehackernews.com/2026/06/doj-disrupts-southeast-asia-crypto.html https://thehackernews.com/2026/06/doj-disrupts-southeast-asia-crypto.html Thu, 04 Jun 2026 06:06:25 +0000 The Hacker News News Crypto <![CDATA[Pakistan Spies on Afghan Finance Ministry With Xeno RAT]]> https://www.darkreading.com/cyberattacks-data-breaches/pakistan-spies-afghan-finance-ministry-xeno-rat https://www.darkreading.com/cyberattacks-data-breaches/pakistan-spies-afghan-finance-ministry-xeno-rat Thu, 04 Jun 2026 04:01:00 +0000 Dark Reading News Malware <![CDATA[Chinese hackers use new Atlas RAT malware in European cyberattacks]]> https://www.bleepingcomputer.com/news/security/chinese-hackers-use-new-atlas-rat-malware-in-european-cyberattacks/ https://www.bleepingcomputer.com/news/security/chinese-hackers-use-new-atlas-rat-malware-in-european-cyberattacks/ Wed, 03 Jun 2026 21:45:27 +0000 Bleeping Computer News Malware <![CDATA[Attackers Use AI to Automate EDR Evasion Testing]]> https://www.darkreading.com/endpoint-security/attackers-automate-edr-evasion-testing https://www.darkreading.com/endpoint-security/attackers-automate-edr-evasion-testing Wed, 03 Jun 2026 21:34:07 +0000 Dark Reading News Malware <![CDATA[U.S. sanctions Nobitex crypto exchange used by Iranian ransomware actors]]> https://www.bleepingcomputer.com/news/security/the-us-sanctions-nobitex-crypto-exchange-used-by-ransomware/ https://www.bleepingcomputer.com/news/security/the-us-sanctions-nobitex-crypto-exchange-used-by-ransomware/ Wed, 03 Jun 2026 20:31:22 +0000 Bleeping Computer News Ransom Crypto <![CDATA[CISA warns of cyberattacks targeting fuel tank monitoring systems]]> https://www.bleepingcomputer.com/news/security/cisa-warns-of-cyberattacks-targeting-fuel-tank-monitoring-systems/ https://www.bleepingcomputer.com/news/security/cisa-warns-of-cyberattacks-targeting-fuel-tank-monitoring-systems/ Wed, 03 Jun 2026 20:21:56 +0000 Bleeping Computer News <![CDATA[Tropical Blend: Cyber & Politics Ramp Up Across Latin America]]> https://www.darkreading.com/cyberattacks-data-breaches/nation-state-cyber-activity-latin-america https://www.darkreading.com/cyberattacks-data-breaches/nation-state-cyber-activity-latin-america Wed, 03 Jun 2026 19:52:32 +0000 Dark Reading News APT <![CDATA[Broadcom VMware security advisory (AV26-548)]]> https://cyber.gc.ca/en/alerts-advisories/broadcom-vmware-security-advisory-av26-548 https://cyber.gc.ca/en/alerts-advisories/broadcom-vmware-security-advisory-av26-548 Wed, 03 Jun 2026 19:49:24 +0000 CCCS Alerts & Advisories Advisory <![CDATA[Cisco security advisory (AV26-547)]]> https://cyber.gc.ca/en/alerts-advisories/cisco-security-advisory-av26-547 https://cyber.gc.ca/en/alerts-advisories/cisco-security-advisory-av26-547 Wed, 03 Jun 2026 19:22:10 +0000 CCCS Alerts & Advisories Advisory <![CDATA[WhatsApp, Slack Notifications Could Hijack Google Gemini on Android]]> https://thehackernews.com/2026/06/whatsapp-slack-notifications-could.html https://thehackernews.com/2026/06/whatsapp-slack-notifications-could.html Wed, 03 Jun 2026 19:11:15 +0000 The Hacker News News <![CDATA[Cyber Insurance Rates Are Dropping, but Exclusions Widen]]> https://www.darkreading.com/cyber-risk/cyber-insurance-rates-drop-exclusions-widen https://www.darkreading.com/cyber-risk/cyber-insurance-rates-drop-exclusions-widen Wed, 03 Jun 2026 19:10:58 +0000 Dark Reading News <![CDATA[New 'HTTP/2 Bomb' DoS attack crashes web servers in under a minute]]> https://www.bleepingcomputer.com/news/security/new-http-2-bomb-dos-attack-crashes-web-servers-in-under-a-minute/ https://www.bleepingcomputer.com/news/security/new-http-2-bomb-dos-attack-crashes-web-servers-in-under-a-minute/ Wed, 03 Jun 2026 19:08:19 +0000 Bleeping Computer News DoS <![CDATA[Coding Gaffe Exposes Microsoft 365 Accounts to Widespread Takeover]]> https://www.darkreading.com/application-security/coding-gaffe-exposes-microsoft-365-accounts-takeover https://www.darkreading.com/application-security/coding-gaffe-exposes-microsoft-365-accounts-takeover Wed, 03 Jun 2026 19:00:41 +0000 Dark Reading News <![CDATA[xAI Asks Court to Strip Alleged Grok Deepfake Nudes Victims of Anonymity]]> https://www.wired.com/story/xai-asks-court-to-strip-alleged-grok-deepfake-nudes-victims-of-anonymity/ https://www.wired.com/story/xai-asks-court-to-strip-alleged-grok-deepfake-nudes-victims-of-anonymity/ Wed, 03 Jun 2026 18:49:32 +0000 Wired Security Media <![CDATA[We found this fake-invoice campaign while scammers were still building it]]> https://www.malwarebytes.com/blog/threat-intel/2026/06/we-found-this-fake-invoice-campaign-while-scammers-were-still-building-it https://www.malwarebytes.com/blog/threat-intel/2026/06/we-found-this-fake-invoice-campaign-while-scammers-were-still-building-it Wed, 03 Jun 2026 18:05:19 +0000 Malwarebytes Labs Threat Intel <![CDATA[One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens]]> https://thehackernews.com/2026/06/one-click-github-dev-attack-lets.html https://thehackernews.com/2026/06/one-click-github-dev-attack-lets.html Wed, 03 Jun 2026 17:58:00 +0000 The Hacker News News Research <![CDATA[Autonomous AI Tool Finds 2-Year-Old RCE Flaw in Redis (CVE-2026-23479)]]> https://thehackernews.com/2026/06/autonomous-ai-tool-finds-2-year-old-rce.html https://thehackernews.com/2026/06/autonomous-ai-tool-finds-2-year-old-rce.html Wed, 03 Jun 2026 16:40:00 +0000 The Hacker News News CVE Vuln <![CDATA[CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog]]> https://thehackernews.com/2026/06/cisa-adds-exploited-magento-rce-flaw.html https://thehackernews.com/2026/06/cisa-adds-exploited-magento-rce-flaw.html Wed, 03 Jun 2026 16:30:00 +0000 The Hacker News News CVE Vuln <![CDATA[Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT]]> https://thehackernews.com/2026/06/google-doubleclick-abused-in-new.html https://thehackernews.com/2026/06/google-doubleclick-abused-in-new.html Wed, 03 Jun 2026 16:29:16 +0000 The Hacker News News Malware Research <![CDATA[A Day in the Life of an MDR Analyst: Inside the Modern SOC]]> https://www.rapid7.com/blog/post/it-day-in-the-life-mdr-analyst-inside-the-modern-soc https://www.rapid7.com/blog/post/it-day-in-the-life-mdr-analyst-inside-the-modern-soc Wed, 03 Jun 2026 16:27:08 +0000 Rapid7 Blog Research <![CDATA[[Control Systems] Phoenix Contact Security Advisory (AV26-546)]]> https://cyber.gc.ca/en/alerts-advisories/control-systems-phoenix-contact-security-advisory-av26-546 https://cyber.gc.ca/en/alerts-advisories/control-systems-phoenix-contact-security-advisory-av26-546 Wed, 03 Jun 2026 15:39:58 +0000 CCCS Alerts & Advisories Advisory <![CDATA[CISA warns of active attacks exploiting Android, Linux bugs]]> https://www.bleepingcomputer.com/news/security/cisa-warns-of-active-attacks-exploiting-android-linux-bugs/ https://www.bleepingcomputer.com/news/security/cisa-warns-of-active-attacks-exploiting-android-linux-bugs/ Wed, 03 Jun 2026 15:36:16 +0000 Bleeping Computer News Vuln <![CDATA[Beyond the Zero-Day: See Your Network Like an Attacker | Webinar with HD Moore]]> https://thehackernews.com/2026/06/beyond-zero-day-see-your-network-like.html https://thehackernews.com/2026/06/beyond-zero-day-see-your-network-like.html Wed, 03 Jun 2026 14:56:46 +0000 The Hacker News News Vuln Breach <![CDATA[Microsoft 365 Android Apps Let Any App Steal Account Tokens via Leftover Debug Flag]]> https://thehackernews.com/2026/06/microsoft-365-android-apps-let-any-app.html https://thehackernews.com/2026/06/microsoft-365-android-apps-let-any-app.html Wed, 03 Jun 2026 14:56:35 +0000 The Hacker News News <![CDATA[What 345 Days of Untested Exposure Looks Like at a Bank]]> https://www.bleepingcomputer.com/news/security/what-345-days-of-untested-exposure-looks-like-at-a-bank/ https://www.bleepingcomputer.com/news/security/what-345-days-of-untested-exposure-looks-like-at-a-bank/ Wed, 03 Jun 2026 14:02:12 +0000 Bleeping Computer News <![CDATA[Continuing Scans for swagger.json, (Wed, Jun 3rd)]]> https://isc.sans.edu/diary/rss/33044 https://isc.sans.edu/diary/rss/33044 Wed, 03 Jun 2026 13:40:00 +0000 SANS Internet Storm Center Research <![CDATA[[Control systems] ABB security advisory (AV26-545)]]> https://cyber.gc.ca/en/alerts-advisories/control-systems-abb-security-advisory-av26-545 https://cyber.gc.ca/en/alerts-advisories/control-systems-abb-security-advisory-av26-545 Wed, 03 Jun 2026 13:01:01 +0000 CCCS Alerts & Advisories Advisory <![CDATA[Google Chrome security advisory (AV26-544)]]> https://cyber.gc.ca/en/alerts-advisories/google-chrome-security-advisory-av26-544 https://cyber.gc.ca/en/alerts-advisories/google-chrome-security-advisory-av26-544 Wed, 03 Jun 2026 12:49:19 +0000 CCCS Alerts & Advisories Advisory <![CDATA[Keep getting calls from questionable numbers? Meet Scam Number Check]]> https://www.malwarebytes.com/blog/product/2026/06/keep-getting-calls-from-questionable-numbers-meet-scam-number-check https://www.malwarebytes.com/blog/product/2026/06/keep-getting-calls-from-questionable-numbers-meet-scam-number-check Wed, 03 Jun 2026 12:16:04 +0000 Malwarebytes Labs Threat Intel <![CDATA[Malicious Notifications Could Trick Google Gemini Users]]> https://www.darkreading.com/application-security/malicious-notifications-could-trick-google-gemini-users https://www.darkreading.com/application-security/malicious-notifications-could-trick-google-gemini-users Wed, 03 Jun 2026 12:01:00 +0000 Dark Reading News <![CDATA[CISA Adds One Known Exploited Vulnerability to Catalog]]> https://www.cisa.gov/news-events/alerts/2026/06/03/cisa-adds-one-known-exploited-vulnerability-catalog https://www.cisa.gov/news-events/alerts/2026/06/03/cisa-adds-one-known-exploited-vulnerability-catalog Wed, 03 Jun 2026 12:00:00 +0000 CISA Alerts & Advisories Advisory CVE Vuln <![CDATA[Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP)]]> https://thehackernews.com/2026/06/shrinking-iam-attack-surface-through.html https://thehackernews.com/2026/06/shrinking-iam-attack-surface-through.html Wed, 03 Jun 2026 11:58:00 +0000 The Hacker News News <![CDATA[Acer working to patch max severity zero-days in Wave 7 routers]]> https://www.bleepingcomputer.com/news/security/acer-warns-of-max-severity-zero-days-affecting-wave-7-routers/ https://www.bleepingcomputer.com/news/security/acer-warns-of-max-severity-zero-days-affecting-wave-7-routers/ Wed, 03 Jun 2026 11:35:47 +0000 Bleeping Computer News Vuln <![CDATA[The sorry state of skill distribution]]> https://blog.trailofbits.com/2026/06/03/the-sorry-state-of-skill-distribution/ https://blog.trailofbits.com/2026/06/03/the-sorry-state-of-skill-distribution/ Wed, 03 Jun 2026 11:00:00 +0000 Trail of Bits Research <![CDATA[Unpatched Windows Search URI Vulnerability Lets Attackers Steal NTLMv2 Hashes]]> https://thehackernews.com/2026/06/unpatched-windows-search-uri.html https://thehackernews.com/2026/06/unpatched-windows-search-uri.html Wed, 03 Jun 2026 10:18:52 +0000 The Hacker News News CVE Vuln Research <![CDATA[ComoDoS - Exploiting a Remote Kernel Vulnerability in Comodo Internet Security]]> https://malwaretech.com/2026/06/exploiting-a-remote-kernel-vulnerability-in-comodo-internet-security.html https://malwaretech.com/2026/06/exploiting-a-remote-kernel-vulnerability-in-comodo-internet-security.html Wed, 03 Jun 2026 10:13:00 +0000 MalwareTech Threat Intel Vuln <![CDATA[Police dismantles 9 crime groups in illegal streaming crackdown]]> https://www.bleepingcomputer.com/news/security/police-dismantles-9-crime-groups-in-illegal-streaming-crackdown/ https://www.bleepingcomputer.com/news/security/police-dismantles-9-crime-groups-in-illegal-streaming-crackdown/ Wed, 03 Jun 2026 10:12:24 +0000 Bleeping Computer News <![CDATA[Global Stock Exchange Hit by Monthslong Email Campaign]]> https://www.darkreading.com/cyberattacks-data-breaches/global-stock-exchange-hit-monthslong-email-campaign https://www.darkreading.com/cyberattacks-data-breaches/global-stock-exchange-hit-monthslong-email-campaign Wed, 03 Jun 2026 10:01:00 +0000 Dark Reading News APT <![CDATA[Infostealers are becoming the go-to phishing payload]]> https://www.malwarebytes.com/blog/threat-intel/2026/06/infostealers-are-becoming-the-go-to-phishing-payload https://www.malwarebytes.com/blog/threat-intel/2026/06/infostealers-are-becoming-the-go-to-phishing-payload Wed, 03 Jun 2026 08:59:47 +0000 Malwarebytes Labs Threat Intel Phishing <![CDATA[CVE-2026-40226 In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40226 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40226 Wed, 03 Jun 2026 08:49:41 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2026-27144 Miscompilation allows memory corruption via CONVNOP-wrapped array copy in cmd/compile]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27144 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27144 Wed, 03 Jun 2026 08:49:33 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2026-32282 TOCTOU permits root escape on Linux via Root.Chmod in os in internal/syscall/unix]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32282 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32282 Wed, 03 Jun 2026 08:48:03 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2026-29181 OpenTelemetry-Go multi-value `baggage` header extraction causes excessive allocations (remote dos amplification)]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-29181 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-29181 Wed, 03 Jun 2026 08:47:52 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-58160 Tracing logging user input may result in poisoning logs with ANSI escape sequences]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58160 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58160 Wed, 03 Jun 2026 08:45:45 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-61727 Improper application of excluded DNS name constraints when verifying wildcard names in crypto/x509]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-61727 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-61727 Wed, 03 Jun 2026 08:45:23 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-61729 Excessive resource consumption when printing error string for host certificate validation in crypto/x509]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-61729 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-61729 Wed, 03 Jun 2026 08:45:16 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-60876 BusyBox wget thru 1.3.7 accepted raw CR (0x0D)/LF (0x0A) and other C0 control bytes in the HTTP request-target (path/query), allowing the request line to be split and attacker-controlled headers to be injected. To preserve the HTTP/1.1 request-line shape METHOD SP request-target SP HTTP/1.1, a raw space (0x20) in the request-target must also be rejected (clients should use %20)]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-60876 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-60876 Wed, 03 Jun 2026 08:44:50 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-9403 jqlang jq JSON jq_test.c run_jq_tests assertion]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-9403 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-9403 Wed, 03 Jun 2026 08:44:47 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-61725 Excessive CPU consumption in ParseAddress in net/mail]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-61725 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-61725 Wed, 03 Jun 2026 08:44:18 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-58188 Panic when validating certificates with DSA public keys in crypto/x509]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58188 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58188 Wed, 03 Jun 2026 08:44:06 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-61724 Excessive CPU consumption in Reader.ReadResponse in net/textproto]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-61724 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-61724 Wed, 03 Jun 2026 08:43:59 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-58186 Lack of limit when parsing cookies can cause memory exhaustion in net/http]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58186 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58186 Wed, 03 Jun 2026 08:43:51 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-58183 Unbounded allocation when parsing GNU sparse map in archive/tar]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58183 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58183 Wed, 03 Jun 2026 08:43:44 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2026-25541 Bytes is vulnerable to integer overflow in BytesMut::reserve]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-25541 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-25541 Wed, 03 Jun 2026 08:42:45 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2024-58266 The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the { and \xa0 characters, which may facilitate command injection]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-58266 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-58266 Wed, 03 Jun 2026 08:42:44 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-5791 Users: `root` appended to group listings]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-5791 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-5791 Wed, 03 Jun 2026 08:42:36 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-1176 GNU Binutils ld elflink.c _bfd_elf_gc_mark_rsec heap-based overflow]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-1176 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-1176 Wed, 03 Jun 2026 08:42:29 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2026-6357 pip self-update functionality can import newly installed modules after wheel installation]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-6357 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-6357 Wed, 03 Jun 2026 08:42:21 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-1178 GNU Binutils ld libbfd.c bfd_putl64 memory corruption]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-1178 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-1178 Wed, 03 Jun 2026 08:42:20 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-3198 GNU Binutils objdump bucomm.c display_info memory leak]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-3198 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-3198 Wed, 03 Jun 2026 08:42:12 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-46327 Go Snowflake Driver has race condition when checking access to Easy Logging configuration file]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-46327 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-46327 Wed, 03 Jun 2026 08:42:07 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-46394 In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-46394 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-46394 Wed, 03 Jun 2026 08:41:57 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2024-58251 In netstat in BusyBox through 1.37.0, local users can launch of network application with an argv[0] containing an ANSI terminal escape sequence, leading to a denial of service (terminal locked up) when netstat is used by a victim]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-58251 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-58251 Wed, 03 Jun 2026 08:41:47 +0000 Microsoft Security Advisory CVE DoS <![CDATA[CVE-2025-29923 go-redis allows potential out of order responses when `CLIENT SETINFO` times out during connection establishment]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29923 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29923 Wed, 03 Jun 2026 08:41:38 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2024-7598 Network restriction bypass via race condition during namespace termination]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-7598 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-7598 Wed, 03 Jun 2026 08:41:20 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-1180 GNU Binutils ld elf-eh-frame.c _bfd_elf_write_section_eh_frame memory corruption]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-1180 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-1180 Wed, 03 Jun 2026 08:41:06 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-1150 GNU Binutils ld libbfd.c bfd_malloc memory leak]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-1150 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-1150 Wed, 03 Jun 2026 08:40:55 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-1151 GNU Binutils ld xmemdup.c xmemdup memory leak]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-1151 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-1151 Wed, 03 Jun 2026 08:40:45 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2025-1152 GNU Binutils ld xstrdup.c xstrdup memory leak]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-1152 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-1152 Wed, 03 Jun 2026 08:40:34 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2026-5928 Static buffer overflow in deprecated nis_local_principal]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-5928 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-5928 Wed, 03 Jun 2026 08:40:02 +0000 Microsoft Security Advisory CVE Vuln <![CDATA[CVE-2013-1633 easy_install in setuptools before 0.7 uses HTTP to retrieve packages from the PyPI repository, and does not perform integrity checks on package contents, which allows man-in-the-middle attackers to execute arbitrary code via a crafted response to the default use of the product]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2013-1633 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2013-1633 Wed, 03 Jun 2026 08:39:48 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2023-27043 The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is granted only after verifying receipt of e-mail to a specific domain (e.g., only @company.example.com addresses may be used for signup). This occurs in email/_parseaddr.py in recent versions of Python]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-27043 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-27043 Wed, 03 Jun 2026 08:39:34 +0000 Microsoft Security Advisory CVE <![CDATA[New HTTP/2 Bomb Vulnerability Allows Remote DoS on NGINX, Apache, IIS, Envoy & Cloudflare]]> https://thehackernews.com/2026/06/new-http2-bomb-vulnerability-allows.html https://thehackernews.com/2026/06/new-http2-bomb-vulnerability-allows.html Wed, 03 Jun 2026 08:33:35 +0000 The Hacker News News Vuln DoS Research <![CDATA[CVE-2020-8561 Webhook redirect in kube-apiserver]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2020-8561 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2020-8561 Wed, 03 Jun 2026 08:02:13 +0000 Microsoft Security Advisory CVE <![CDATA[CVE-2021-25740 Holes in EndpointSlice Validation Enable Host Network Hijack]]> https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-25740 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-25740 Wed, 03 Jun 2026 08:02:08 +0000 Microsoft Security Advisory CVE <![CDATA[Weedhack Attacks Minecraft Users, CountLoader Hits 86K, Miners Spread via Pirated Content]]> https://thehackernews.com/2026/06/weedhack-attacks-minecraft-users.html https://thehackernews.com/2026/06/weedhack-attacks-minecraft-users.html Wed, 03 Jun 2026 06:16:54 +0000 The Hacker News News Malware Research <![CDATA[Zoom CISO: AI as a Security Enabler, Not Role-Replacer]]> https://www.darkreading.com/cybersecurity-operations/zoom-ciso-ai-security-enabler-role-replacer https://www.darkreading.com/cybersecurity-operations/zoom-ciso-ai-security-enabler-role-replacer Tue, 02 Jun 2026 21:51:07 +0000 Dark Reading News <![CDATA[FBI-Flagged Phishing Kit Kali365 Expands Its Reach]]> https://www.darkreading.com/cyber-risk/fbi-flagged-phishing-kit-kali365-expands-its-reach https://www.darkreading.com/cyber-risk/fbi-flagged-phishing-kit-kali365-expands-its-reach Tue, 02 Jun 2026 21:32:24 +0000 Dark Reading News Phishing <![CDATA[DriveSurge Hijacks Thousands of Sites for ClickFix, FakeUpdate Attacks]]> https://www.darkreading.com/cyberattacks-data-breaches/drivesurge-hijacks-thousands-sites-clickfix-fakeupdate-attacks https://www.darkreading.com/cyberattacks-data-breaches/drivesurge-hijacks-thousands-sites-clickfix-fakeupdate-attacks Tue, 02 Jun 2026 20:11:51 +0000 Dark Reading News Malware <![CDATA[HPE security advisory (AV26-543)]]> https://cyber.gc.ca/en/alerts-advisories/hpe-security-advisory-av26-543 https://cyber.gc.ca/en/alerts-advisories/hpe-security-advisory-av26-543 Tue, 02 Jun 2026 20:02:25 +0000 CCCS Alerts & Advisories Advisory <![CDATA[China Uses Dual-Method Cyberattack on Czech Orgs]]> https://www.darkreading.com/threat-intelligence/china-uses-dual-method-attack-czech-taiwan-orgs https://www.darkreading.com/threat-intelligence/china-uses-dual-method-attack-czech-taiwan-orgs Tue, 02 Jun 2026 19:50:53 +0000 Dark Reading News Phishing Malware <![CDATA[Securing AI Agents Before They Go Rogue Is Next to Impossible]]> https://www.darkreading.com/cyber-risk/securing-ai-agents-rogue https://www.darkreading.com/cyber-risk/securing-ai-agents-rogue Tue, 02 Jun 2026 19:10:14 +0000 Dark Reading News <![CDATA[Google June 2026 Android Update Patches 124 Flaws, One Actively Exploited]]> https://thehackernews.com/2026/06/google-june-2026-android-update-patches.html https://thehackernews.com/2026/06/google-june-2026-android-update-patches.html Tue, 02 Jun 2026 18:46:00 +0000 The Hacker News News Vuln <![CDATA[Mozilla security advisory (AV26-542)]]> https://cyber.gc.ca/en/alerts-advisories/mozilla-security-advisory-av26-542 https://cyber.gc.ca/en/alerts-advisories/mozilla-security-advisory-av26-542 Tue, 02 Jun 2026 18:35:44 +0000 CCCS Alerts & Advisories Advisory <![CDATA[These convincing copyright notices are designed to steal Google logins]]> https://www.malwarebytes.com/blog/threat-intel/2026/06/these-convincing-copyright-notices-are-designed-to-steal-google-logins https://www.malwarebytes.com/blog/threat-intel/2026/06/these-convincing-copyright-notices-are-designed-to-steal-google-logins Tue, 02 Jun 2026 18:24:07 +0000 Malwarebytes Labs Threat Intel <![CDATA[JetBrains security advisory (AV26-541)]]> https://cyber.gc.ca/en/alerts-advisories/jetbrains-security-advisory-av26-541 https://cyber.gc.ca/en/alerts-advisories/jetbrains-security-advisory-av26-541 Tue, 02 Jun 2026 18:22:12 +0000 CCCS Alerts & Advisories Advisory <![CDATA[Gamaredon Exploits WinRAR to Deliver GammaWorm and GammaSteel Against Ukraine]]> https://thehackernews.com/2026/06/gamaredon-exploits-winrar-to-deliver.html https://thehackernews.com/2026/06/gamaredon-exploits-winrar-to-deliver.html Tue, 02 Jun 2026 18:21:49 +0000 The Hacker News News Vuln Malware Breach <![CDATA[Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation]]> https://thehackernews.com/2026/06/oracle-weblogic-cve-2024-21182-added-to.html https://thehackernews.com/2026/06/oracle-weblogic-cve-2024-21182-added-to.html Tue, 02 Jun 2026 18:14:42 +0000 The Hacker News News CVE Vuln <![CDATA[[Control systems] Siemens security advisory (AV26-540)]]> https://cyber.gc.ca/en/alerts-advisories/control-systems-siemens-security-advisory-av26-540 https://cyber.gc.ca/en/alerts-advisories/control-systems-siemens-security-advisory-av26-540 Tue, 02 Jun 2026 18:07:51 +0000 CCCS Alerts & Advisories Advisory <![CDATA[Android security advisory – June 2026 monthly rollup (AV26-538) – Update 1]]> https://cyber.gc.ca/en/alerts-advisories/android-security-advisory-june-2026-monthly-rollup-av26-538 https://cyber.gc.ca/en/alerts-advisories/android-security-advisory-june-2026-monthly-rollup-av26-538 Tue, 02 Jun 2026 17:58:26 +0000 CCCS Alerts & Advisories Advisory <![CDATA[The npm Threat Landscape: Attack Surface and Mitigations (Updated June 2)]]> https://unit42.paloaltonetworks.com/monitoring-npm-supply-chain-attacks/ https://unit42.paloaltonetworks.com/monitoring-npm-supply-chain-attacks/ Tue, 02 Jun 2026 17:30:33 +0000 Palo Alto Unit 42 Threat Intel Malware <![CDATA[HP security advisory (AV26-539)]]> https://cyber.gc.ca/en/alerts-advisories/hp-security-advisory-av26-539 https://cyber.gc.ca/en/alerts-advisories/hp-security-advisory-av26-539 Tue, 02 Jun 2026 15:24:01 +0000 CCCS Alerts & Advisories Advisory <![CDATA[Samsung mobile security advisory (AV26-537)]]> https://cyber.gc.ca/en/alerts-advisories/samsung-mobile-security-advisory-av26-537 https://cyber.gc.ca/en/alerts-advisories/samsung-mobile-security-advisory-av26-537 Tue, 02 Jun 2026 15:09:15 +0000 CCCS Alerts & Advisories Advisory <![CDATA[Beyond Assume-Breach: How AI-Native Security Will Reshape Enterprise Defense]]> https://www.darkreading.com/cyber-risk/assume-breach-ai-native-security-reshape-enterprise-defense https://www.darkreading.com/cyber-risk/assume-breach-ai-native-security-reshape-enterprise-defense Tue, 02 Jun 2026 12:00:00 +0000 Dark Reading News Breach <![CDATA[CISA and Partners Urge Hardening Automatic Tank Gauge Systems]]> https://www.cisa.gov/resources-tools/resources/cisa-and-partners-urge-hardening-automatic-tank-gauge-systems https://www.cisa.gov/resources-tools/resources/cisa-and-partners-urge-hardening-automatic-tank-gauge-systems Tue, 02 Jun 2026 12:00:00 +0000 CISA Alerts & Advisories Advisory <![CDATA[CISA Adds Two Known Exploited Vulnerabilities to Catalog]]> https://www.cisa.gov/news-events/alerts/2026/06/02/cisa-adds-two-known-exploited-vulnerabilities-catalog https://www.cisa.gov/news-events/alerts/2026/06/02/cisa-adds-two-known-exploited-vulnerabilities-catalog Tue, 02 Jun 2026 12:00:00 +0000 CISA Alerts & Advisories Advisory CVE Vuln <![CDATA[AI-Driven Exploitation is Destroying Vulnerability Management. Here’s How to Handle It]]> https://thehackernews.com/2026/06/ai-driven-exploitation-is-destroying.html https://thehackernews.com/2026/06/ai-driven-exploitation-is-destroying.html Tue, 02 Jun 2026 11:58:00 +0000 The Hacker News News Vuln <![CDATA[The Intersection of Encryption and AI]]> https://www.schneier.com/blog/archives/2026/06/the-intersection-of-encryption-and-ai.html https://www.schneier.com/blog/archives/2026/06/the-intersection-of-encryption-and-ai.html Tue, 02 Jun 2026 11:06:25 +0000 Schneier on Security Media <![CDATA[Microsoft Threatening Security Researcher]]> https://www.schneier.com/blog/archives/2026/06/microsoft-threatening-security-researcher.html https://www.schneier.com/blog/archives/2026/06/microsoft-threatening-security-researcher.html Tue, 02 Jun 2026 11:00:42 +0000 Schneier on Security Media Vuln Research <![CDATA[From Fake Purchase Orders to Remote Access: Analyzing the JS.MonoGlyphRAT Threat to US Enterprises]]> https://any.run/cybersecurity-blog/monoglyphrat-attacks-us-enterprise/ https://any.run/cybersecurity-blog/monoglyphrat-attacks-us-enterprise/ Tue, 02 Jun 2026 10:34:41 +0000 Any.Run Malware Analysis Threat Intel Malware Research <![CDATA[How Leading Organizations Are Turning EDR Into Operational Resilience]]> https://thehackernews.com/2026/06/how-leading-organizations-are-turning.html https://thehackernews.com/2026/06/how-leading-organizations-are-turning.html Tue, 02 Jun 2026 10:30:00 +0000 The Hacker News News <![CDATA[Operation FlutterBridge: macOS Malvertising Campaign Spreads New FlutterShell Backdoor]]> https://unit42.paloaltonetworks.com/flutterbridge-new-fluttershell-backdoor/ https://unit42.paloaltonetworks.com/flutterbridge-new-fluttershell-backdoor/ Tue, 02 Jun 2026 10:00:31 +0000 Palo Alto Unit 42 Threat Intel Malware <![CDATA[23andMe exposed genetic information of millions, lawsuit says]]> https://www.malwarebytes.com/blog/data-breaches/2026/06/23andme-exposed-genetic-information-of-millions-lawsuit-says https://www.malwarebytes.com/blog/data-breaches/2026/06/23andme-exposed-genetic-information-of-millions-lawsuit-says Tue, 02 Jun 2026 09:53:19 +0000 Malwarebytes Labs Threat Intel Breach <![CDATA[Pakistan-Linked SideCopy Targets Afghanistan Finance Ministry with Xeno RAT]]> https://thehackernews.com/2026/06/pakistan-linked-sidecopy-targets.html https://thehackernews.com/2026/06/pakistan-linked-sidecopy-targets.html Tue, 02 Jun 2026 09:05:40 +0000 The Hacker News News Phishing Malware Research <![CDATA[Fake virus alerts are invading mobile games]]> https://www.malwarebytes.com/blog/mobile/2026/06/fake-virus-alerts-are-invading-mobile-games https://www.malwarebytes.com/blog/mobile/2026/06/fake-virus-alerts-are-invading-mobile-games Tue, 02 Jun 2026 09:03:55 +0000 Malwarebytes Labs Threat Intel <![CDATA[New Wave Of Phishing Emails with SVG Files, (Tue, Jun 2nd)]]> https://isc.sans.edu/diary/rss/33040 https://isc.sans.edu/diary/rss/33040 Tue, 02 Jun 2026 07:29:25 +0000 SANS Internet Storm Center Research Phishing <![CDATA[175: Bayrob]]> https://darknetdiaries.com/episode/175/ https://darknetdiaries.com/episode/175/ Tue, 02 Jun 2026 07:00:00 +0000 Darknet Diaries Podcast Malware <![CDATA[Dashlane Discloses Brute-Force Attack, Encrypted Vaults of Fewer Than 20 Users Downloaded]]> https://thehackernews.com/2026/06/dashlane-discloses-brute-force-attack.html https://thehackernews.com/2026/06/dashlane-discloses-brute-force-attack.html Tue, 02 Jun 2026 03:55:25 +0000 The Hacker News News <![CDATA[Anthropic to Open Mythos AI to EU's ENISA]]> https://www.darkreading.com/cyber-risk/anthropic-mythos-ai-eu-enisa https://www.darkreading.com/cyber-risk/anthropic-mythos-ai-eu-enisa Mon, 01 Jun 2026 21:07:48 +0000 Dark Reading News <![CDATA[Microsoft's Zero-Day Legal Threats Spark Backlash]]> https://www.darkreading.com/application-security/microsoft-zero-day-legal-threats-backlash https://www.darkreading.com/application-security/microsoft-zero-day-legal-threats-backlash Mon, 01 Jun 2026 18:52:26 +0000 Dark Reading News Vuln Research <![CDATA[Broadcom VMware security advisory (AV26-536)]]> https://cyber.gc.ca/en/alerts-advisories/broadcom-vmware-security-advisory-av26-536 https://cyber.gc.ca/en/alerts-advisories/broadcom-vmware-security-advisory-av26-536 Mon, 01 Jun 2026 18:31:58 +0000 CCCS Alerts & Advisories Advisory <![CDATA[Qualcomm security advisory – June 2026 monthly rollup (AV26-535)]]> https://cyber.gc.ca/en/alerts-advisories/qualcomm-security-advisory-june-2026-monthly-rollup-av26-535 https://cyber.gc.ca/en/alerts-advisories/qualcomm-security-advisory-june-2026-monthly-rollup-av26-535 Mon, 01 Jun 2026 18:27:07 +0000 CCCS Alerts & Advisories Advisory <![CDATA[Miasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing Worm]]> https://thehackernews.com/2026/06/miasma-supply-chain-attack-compromises.html https://thehackernews.com/2026/06/miasma-supply-chain-attack-compromises.html Mon, 01 Jun 2026 17:40:28 +0000 The Hacker News News Malware Breach <![CDATA[Oracle security advisory – July 2024 quarterly rollup (AV24-401) - Update 1]]> https://cyber.gc.ca/en/alerts-advisories/oracle-security-advisory-july-2024-quarterly-rollup-av24-401 https://cyber.gc.ca/en/alerts-advisories/oracle-security-advisory-july-2024-quarterly-rollup-av24-401 Mon, 01 Jun 2026 17:39:35 +0000 CCCS Alerts & Advisories Advisory <![CDATA[Hackers Used Meta’s AI Support Bot to Seize Instagram Accounts]]> https://krebsonsecurity.com/2026/06/hackers-used-metas-ai-support-bot-to-seize-instagram-accounts/ https://krebsonsecurity.com/2026/06/hackers-used-metas-ai-support-bot-to-seize-instagram-accounts/ Mon, 01 Jun 2026 17:32:50 +0000 Krebs On Security News <![CDATA[Vulnerability Disclosure in the Age of AI]]> https://www.schneier.com/blog/archives/2026/06/vulnerability-disclosure-in-the-age-of-ai.html https://www.schneier.com/blog/archives/2026/06/vulnerability-disclosure-in-the-age-of-ai.html Mon, 01 Jun 2026 16:49:39 +0000 Schneier on Security Media Vuln <![CDATA[Plesk security advisory (AV26-534)]]> https://cyber.gc.ca/en/alerts-advisories/plesk-security-advisory-av26-534 https://cyber.gc.ca/en/alerts-advisories/plesk-security-advisory-av26-534 Mon, 01 Jun 2026 14:56:27 +0000 CCCS Alerts & Advisories Advisory <![CDATA[Ivanti security advisory (AV26-533)]]> https://cyber.gc.ca/en/alerts-advisories/ivanti-security-advisory-av26-533 https://cyber.gc.ca/en/alerts-advisories/ivanti-security-advisory-av26-533 Mon, 01 Jun 2026 14:50:50 +0000 CCCS Alerts & Advisories Advisory <![CDATA[Fake BlueWallet steals passwords, accounts, and crypto from Macs]]> https://www.malwarebytes.com/blog/threat-intel/2026/06/fake-bluewallet-steals-passwords-accounts-and-crypto-from-macs https://www.malwarebytes.com/blog/threat-intel/2026/06/fake-bluewallet-steals-passwords-accounts-and-crypto-from-macs Mon, 01 Jun 2026 14:40:25 +0000 Malwarebytes Labs Threat Intel Breach Crypto <![CDATA[Patch Now: Another Palo Alto Auth Bypass Bug Under Active Exploit]]> https://www.darkreading.com/threat-intelligence/patch-palo-alto-auth-bypass-bug-exploit https://www.darkreading.com/threat-intelligence/patch-palo-alto-auth-bypass-bug-exploit Mon, 01 Jun 2026 14:35:51 +0000 Dark Reading News Vuln <![CDATA[⚡ Weekly Recap: New Linux Flaw, PAN-OS Exploit, AI-Powered Attacks, OAuth Phishing and More]]> https://thehackernews.com/2026/06/weekly-recap-new-linux-flaw-pan-os.html https://thehackernews.com/2026/06/weekly-recap-new-linux-flaw-pan-os.html Mon, 01 Jun 2026 13:59:54 +0000 The Hacker News News Vuln Phishing <![CDATA[Mozilla security advisory (AV26-532)]]> https://cyber.gc.ca/en/alerts-advisories/mozilla-security-advisory-av26-532 https://cyber.gc.ca/en/alerts-advisories/mozilla-security-advisory-av26-532 Mon, 01 Jun 2026 13:25:32 +0000 CCCS Alerts & Advisories Advisory <![CDATA[Red Hat security advisory (AV26-531)]]> https://cyber.gc.ca/en/alerts-advisories/red-hat-security-advisory-av26-531 https://cyber.gc.ca/en/alerts-advisories/red-hat-security-advisory-av26-531 Mon, 01 Jun 2026 13:19:43 +0000 CCCS Alerts & Advisories Advisory <![CDATA[[Control systems] CISA ICS security advisories (AV26–530)]]> https://cyber.gc.ca/en/alerts-advisories/control-systems-cisa-ics-security-advisories-av26-530 https://cyber.gc.ca/en/alerts-advisories/control-systems-cisa-ics-security-advisories-av26-530 Mon, 01 Jun 2026 13:15:12 +0000 CCCS Alerts & Advisories Advisory ICS/OT <![CDATA[Ubuntu security advisory (AV26-529)]]> https://cyber.gc.ca/en/alerts-advisories/ubuntu-security-advisory-av26-529 https://cyber.gc.ca/en/alerts-advisories/ubuntu-security-advisory-av26-529 Mon, 01 Jun 2026 13:07:31 +0000 CCCS Alerts & Advisories Advisory <![CDATA[Dell security advisory (AV26-528)]]> https://cyber.gc.ca/en/alerts-advisories/dell-security-advisory-av26-528 https://cyber.gc.ca/en/alerts-advisories/dell-security-advisory-av26-528 Mon, 01 Jun 2026 13:01:54 +0000 CCCS Alerts & Advisories Advisory <![CDATA[CVE-2026-0826: Critical unauthenticated stack buffer overflow in HP Poly VVX and Trio VoIP Phones (FIXED)]]> https://www.rapid7.com/blog/post/ve-cve-2026-0826-critical-unauthenticated-stack-buffer-overflow-hp-poly-vvx-trio-voip-phones-fixed https://www.rapid7.com/blog/post/ve-cve-2026-0826-critical-unauthenticated-stack-buffer-overflow-hp-poly-vvx-trio-voip-phones-fixed Mon, 01 Jun 2026 13:00:00 +0000 Rapid7 Blog Research CVE Vuln Research <![CDATA[CVE-2026-0826: How an Old Bug Can Feed AI-Powered Impersonation]]> https://www.rapid7.com/blog/post/ve-cve-2026-0826-how-an-old-bug-can-feed-ai-powered-impersonation https://www.rapid7.com/blog/post/ve-cve-2026-0826-how-an-old-bug-can-feed-ai-powered-impersonation Mon, 01 Jun 2026 13:00:00 +0000 Rapid7 Blog Research CVE <![CDATA[IBM security advisory (AV26-527)]]> https://cyber.gc.ca/en/alerts-advisories/ibm-security-advisory-av26-527 https://cyber.gc.ca/en/alerts-advisories/ibm-security-advisory-av26-527 Mon, 01 Jun 2026 12:52:02 +0000 CCCS Alerts & Advisories Advisory <![CDATA[Microsoft security advisory – May 2026 monthly rollup (AV26-456) – Update 2]]> https://cyber.gc.ca/en/alerts-advisories/microsoft-security-advisory-may-2026-monthly-rollup-av26-456 https://cyber.gc.ca/en/alerts-advisories/microsoft-security-advisory-may-2026-monthly-rollup-av26-456 Mon, 01 Jun 2026 12:34:39 +0000 CCCS Alerts & Advisories Advisory <![CDATA[CISA Adds One Known Exploited Vulnerability to Catalog]]> https://www.cisa.gov/news-events/alerts/2026/06/01/cisa-adds-one-known-exploited-vulnerability-catalog https://www.cisa.gov/news-events/alerts/2026/06/01/cisa-adds-one-known-exploited-vulnerability-catalog Mon, 01 Jun 2026 12:00:00 +0000 CISA Alerts & Advisories Advisory CVE Vuln <![CDATA[China-Aligned Groups Ramp Up Attacks: Dragon Weave Hits Czech Republic & Taiwan]]> https://thehackernews.com/2026/06/china-aligned-groups-ramp-up-attacks.html https://thehackernews.com/2026/06/china-aligned-groups-ramp-up-attacks.html Mon, 01 Jun 2026 11:54:24 +0000 The Hacker News News APT <![CDATA[The Security Growth Platform: Why MSPs Are Moving Beyond vCISO Tools]]> https://thehackernews.com/2026/06/the-security-growth-platform-why-msps.html https://thehackernews.com/2026/06/the-security-growth-platform-why-msps.html Mon, 01 Jun 2026 11:30:00 +0000 The Hacker News News <![CDATA[OpenAI Codex Authentication Tokens Stolen in codexui-android npm Supply Chain Attack]]> https://thehackernews.com/2026/06/openai-codex-authentication-tokens.html https://thehackernews.com/2026/06/openai-codex-authentication-tokens.html Mon, 01 Jun 2026 09:31:15 +0000 The Hacker News News Research <![CDATA[Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts]]> https://thehackernews.com/2026/06/critical-wp-maps-pro-flaw-actively.html https://thehackernews.com/2026/06/critical-wp-maps-pro-flaw-actively.html Mon, 01 Jun 2026 08:45:29 +0000 The Hacker News News Vuln <![CDATA[Your phone called. It needs a cleanup]]> https://www.malwarebytes.com/blog/mobile/2026/06/your-phone-called-it-needs-a-cleanup https://www.malwarebytes.com/blog/mobile/2026/06/your-phone-called-it-needs-a-cleanup Mon, 01 Jun 2026 08:31:44 +0000 Malwarebytes Labs Threat Intel <![CDATA[Rapid7 and Exclusive Networks Expand Partnership Across the Nordics]]> https://www.rapid7.com/blog/post/c-rapid7-exclusive-networks-expand-nordics-partnership-stronger-cybersecurity-outcomes-together https://www.rapid7.com/blog/post/c-rapid7-exclusive-networks-expand-nordics-partnership-stronger-cybersecurity-outcomes-together Mon, 01 Jun 2026 08:00:00 +0000 Rapid7 Blog Research <![CDATA[A week in security (May 25 – May 31)]]> https://www.malwarebytes.com/blog/news/2026/06/a-week-in-security-may-25-may-31 https://www.malwarebytes.com/blog/news/2026/06/a-week-in-security-may-25-may-31 Mon, 01 Jun 2026 07:01:00 +0000 Malwarebytes Labs Threat Intel <![CDATA[Payment apps are watching what you say (Lock and Code S07E11)]]> https://www.malwarebytes.com/blog/podcast/2026/05/payment-apps-are-watching-what-you-say-lock-and-code-s07e11 https://www.malwarebytes.com/blog/podcast/2026/05/payment-apps-are-watching-what-you-say-lock-and-code-s07e11 Mon, 01 Jun 2026 01:52:57 +0000 Malwarebytes Labs Threat Intel <![CDATA[Unidentified RAT pushes NetSupport RAT, (Mon, Jun 1st)]]> https://isc.sans.edu/diary/rss/33034 https://isc.sans.edu/diary/rss/33034 Mon, 01 Jun 2026 00:02:30 +0000 SANS Internet Storm Center Research Malware <![CDATA[YARA-X 1.17.0 Release, (Sun, May 31st)]]> https://isc.sans.edu/diary/rss/33032 https://isc.sans.edu/diary/rss/33032 Sun, 31 May 2026 16:01:29 +0000 SANS Internet Storm Center Research <![CDATA[Dutch Authorities Dismantle Botnet Linked to 17 Million Infected Devices]]> https://thehackernews.com/2026/05/dutch-authorities-dismantle-botnet.html https://thehackernews.com/2026/05/dutch-authorities-dismantle-botnet.html Sun, 31 May 2026 12:22:12 +0000 The Hacker News News Malware <![CDATA[Cybercrime Crew Claims It Hacked Mike Lindell’s MyPillow]]> https://www.wired.com/story/security-news-this-week-cybercrime-crew-claims-it-hacked-mike-lindells-mypillow/ https://www.wired.com/story/security-news-this-week-cybercrime-crew-claims-it-hacked-mike-lindells-mypillow/ Sat, 30 May 2026 10:30:00 +0000 Wired Security Media Ransom Privacy <![CDATA[PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation]]> https://thehackernews.com/2026/05/pan-os-globalprotect-authentication.html https://thehackernews.com/2026/05/pan-os-globalprotect-authentication.html Sat, 30 May 2026 06:41:26 +0000 The Hacker News News CVE Vuln <![CDATA[Friday Squid Blogging: Another Squid]]> https://www.schneier.com/blog/archives/2026/05/friday-squid-blogging-another-squid.html https://www.schneier.com/blog/archives/2026/05/friday-squid-blogging-another-squid.html Fri, 29 May 2026 21:05:33 +0000 Schneier on Security Media <![CDATA[Name That Toon: Mark of (Cybersecurity) Progress]]> https://www.darkreading.com/cloud-security/name-that-toon-mark-of-cybersecurity-progress https://www.darkreading.com/cloud-security/name-that-toon-mark-of-cybersecurity-progress Fri, 29 May 2026 20:22:04 +0000 Dark Reading News <![CDATA[Palo Alto Networks security advisory (AV26-462) – Update 1]]> https://cyber.gc.ca/en/alerts-advisories/palo-alto-networks-security-advisory-av26-462 https://cyber.gc.ca/en/alerts-advisories/palo-alto-networks-security-advisory-av26-462 Fri, 29 May 2026 20:10:00 +0000 CCCS Alerts & Advisories Advisory