Cybersecurity and other IT news aggregator
LATEST FEEDS
-
ThreatsDay: AI Compute Hijacking, Apple Email Flaw, BlueHammer Ransomware + 14 Stories
ThreatsDay: AI Compute Hijacking, Apple Email Flaw, BlueHammer Ransomware + 14 Stories 2026-07-02 at 18:49 By This week’s security news is mostly about weak spots. Browsers, bots, sandboxes, AI systems, and email flows all show the same problem in different ways. Everything looks normal until someone tests a small gap and finds a way through.…
-
Elon Musk’s Tesla shocks Wall Street with record sales — but shares still tumble
Elon Musk’s Tesla shocks Wall Street with record sales — but shares still tumble 2026-07-02 at 18:08 By Reuters The strong figures suggest Tesla’s mainstay auto business is regaining momentum after two straight annual sales declines. This article is an excerpt from Latest Technology News | New York Post View Original Source
-
New CitrixBleed Vulnerability Exploited Immediately After Public Disclosure
New CitrixBleed Vulnerability Exploited Immediately After Public Disclosure 2026-07-02 at 18:04 By Ionut Arghire Hackers are targeting NetScaler appliances using public PoC code to retrieve arbitrary memory content in the HTTP response. The post New CitrixBleed Vulnerability Exploited Immediately After Public Disclosure appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original…
-
US government would get 5% stake in OpenAI under Sam Altman proposal: report
US government would get 5% stake in OpenAI under Sam Altman proposal: report 2026-07-02 at 17:19 By Ariel Zilber Sam Altman has argued that broad public ownership is the best way to ensure Americans benefit from the enormous wealth AI is expected to generate. This article is an excerpt from Latest Technology News | New…
-
Day in the Life of an Incident Responder: Following the Evidence
Day in the Life of an Incident Responder: Following the Evidence 2026-07-02 at 17:00 By Jamie Mamroe Incident response doesn’t always start with a dramatic alert or a perfectly framed timeline. More often, it starts with uncertainty. This article is an excerpt from LevelBlue Blog View Original Source
-
AsyncRAT and Remcos Delivered in Multi-Stage Phishing Campaign
AsyncRAT and Remcos Delivered in Multi-Stage Phishing Campaign 2026-07-02 at 17:00 By LevelBlue SpiderLabs Over the past two weeks, LevelBlue SpiderLabs has been tracking an active phishing campaign distributing malicious spreadsheet attachments. What initially appeared to be a limited phishing attempt quickly evolved into a widespread campaign impacting multiple organizations across various industries, including manufacturing,…
-
Scattered Spider suspect extradited over $8 million ransom scheme
Scattered Spider suspect extradited over $8 million ransom scheme 2026-07-02 at 16:43 By Anamarija Pogorelec A suspected Scattered Spider member has been extradited to the United States to face charges linked to cyberattacks against U.S. companies, including the breach of a luxury jewelry retailer that led to an $8 million cryptocurrency ransom demand after attackers…
-
The biggest blockchain upgrades still to come in 2026
The biggest blockchain upgrades still to come in 2026 2026-07-02 at 16:30 By Cointelegraph by Christina Comben From Ethereum’s Glamsterdam to Solana’s Alpenglow, 2026’s most important developments are protocol upgrades, not price charts. This article is an excerpt from Cointelegraph.com News View Original Source
-
How to Conduct a Successful Audit of AI-Driven Software Development
How to Conduct a Successful Audit of AI-Driven Software Development 2026-07-02 at 16:15 By Matias Madou As AI-generated code becomes commonplace, CISOs need new audit strategies to measure developer practices, govern AI tool usage, and identify software risks before they reach production. The post How to Conduct a Successful Audit of AI-Driven Software Development appeared…
-
UK payments blueprint outlines tokenized payments for ‘multi-money ecosystem’
UK payments blueprint outlines tokenized payments for ‘multi-money ecosystem’ 2026-07-02 at 16:04 By Cointelegraph by Zoltan Vardai UK regulators published an update to a national retail payments blueprint, calling for infrastructure support for tokenization and interoperability with new forms of digital money. This article is an excerpt from Cointelegraph.com News View Original Source
-
ToddyCat-Linked Umbrij Malware Abuses OAuth to Access Gmail via Google API
ToddyCat-Linked Umbrij Malware Abuses OAuth to Access Gmail via Google API 2026-07-02 at 16:04 By The threat actor known as ToddyCat has been attributed to a new malware called Umbrij that’s designed to gain surreptitious access to a victim’s email correspondence via the Google API. “In this campaign, the attackers focused their attention on corporate…
-
Aave brings V3 lending and GHO stablecoin to Monad
Aave brings V3 lending and GHO stablecoin to Monad 2026-07-02 at 16:00 By Cointelegraph by Ezra Reguerra Aave launched its V3 lending protocol on Monad with 12 supported assets as the network commits $15 million in first-year incentives to build liquidity and adoption. This article is an excerpt from Cointelegraph.com News View Original Source
-
New iboss platform gives organizations instant visibility into AI tools and usage
New iboss platform gives organizations instant visibility into AI tools and usage 2026-07-02 at 15:52 By Industry News iboss has launched the AI Security Platform, a new service that gives any organization visibility into the AI tools its people are using, free of charge. Signup is instant, deployment takes an afternoon, and a complete AI…
-
FortiBleed Campaign Linked to INC, Lynx Ransomware Attacks
FortiBleed Campaign Linked to INC, Lynx Ransomware Attacks 2026-07-02 at 15:34 By Ionut Arghire Researchers say credentials harvested from hundreds of thousands of FortiGate firewalls are being used to facilitate ransomware attacks by the INC and Lynx operations. The post FortiBleed Campaign Linked to INC, Lynx Ransomware Attacks appeared first on SecurityWeek. This article is…
-
Cloudflare changes AI crawler access rules
Cloudflare changes AI crawler access rules 2026-07-02 at 15:21 By Anamarija Pogorelec Cloudflare introduced new controls that let website owners manage AI traffic across three categories: Search, Agent, and Training. The feature is available to all Cloudflare customers, including those on the Free plan, and gives website owners more control over how different types of…
-
Identity Lifecycle Management Wasn’t Built for AI Agents
Identity Lifecycle Management Wasn’t Built for AI Agents 2026-07-02 at 14:30 By Identity lifecycle management was architected around a person with an employment record, a manager, and a departure date. AI agents have none of those. As autonomous principals proliferate across enterprise environments, the governance model built for humans develops structural blind spots that traditional…
-
Trump Administration Lifts Restrictions on Anthropic’s Claude Models After Cybersecurity Alarm
Trump Administration Lifts Restrictions on Anthropic’s Claude Models After Cybersecurity Alarm 2026-07-02 at 14:01 By Associated Press Anthropic said Tuesday night that its AI model called Claude Fable 5 is now widely available. The post Trump Administration Lifts Restrictions on Anthropic’s Claude Models After Cybersecurity Alarm appeared first on SecurityWeek. This article is an excerpt…
-
Why Response Time Is Becoming the Missing Metric in Workplace Safety and Security
Why Response Time Is Becoming the Missing Metric in Workplace Safety and Security 2026-07-02 at 14:00 By Even the strongest prevention programs cannot eliminate every risk. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source
-
Cisco Confirms In-the-Wild Exploitation of Unified CM Vulnerability
Cisco Confirms In-the-Wild Exploitation of Unified CM Vulnerability 2026-07-02 at 13:48 By Ionut Arghire A PoC exploit has been available since public disclosure, and the first exploitation attempts were observed last week. The post Cisco Confirms In-the-Wild Exploitation of Unified CM Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original…
-
‘BioShocking’ Attack Tricks AI Browsers Into Stealing Credentials
‘BioShocking’ Attack Tricks AI Browsers Into Stealing Credentials 2026-07-02 at 13:45 By Ionut Arghire Researchers show how context manipulation can cause agentic browsers to abandon safety guardrails and exfiltrate sensitive credentials. The post ‘BioShocking’ Attack Tricks AI Browsers Into Stealing Credentials appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
-
AI Agent Exploits Langflow RCE to Automate Database Ransomware Attack
AI Agent Exploits Langflow RCE to Automate Database Ransomware Attack 2026-07-02 at 12:13 By Security firm Sysdig says it has found what it believes is the first ransomware attack run from start to finish by an AI agent. Its Threat Research Team calls the operator JADEPUFFER and says a large language model handled the whole job: breaking…
-
FortiBleed Credential Theft Linked to INC and Lynx Ransomware Operations
FortiBleed Credential Theft Linked to INC and Lynx Ransomware Operations 2026-07-02 at 11:00 By The recently discovered financially-motivated FortiBleed campaign has been attributed to INC and Lynx ransomware operations, indicating that the verified, stolen credentials were intended for follow-on intrusions. “An operator tied to FortiBleed’s infrastructure was found actively working negotiation panels for both groups,…
-
Opera blocks ClickFix attacks with new clipboard protection feature
Opera blocks ClickFix attacks with new clipboard protection feature 2026-07-02 at 11:00 By Industry News Opera has launched Paste Protect, a clipboard protection feature designed to prevent clipboard-based attacks such as hijacking and pastejacking. Paste Protect includes built-in protection and warnings against ClickFix-based cyberattacks, which accounted for more than half of malware-delivery attacks in 2025.…
-
New ChocoPoC RAT Targets Vulnerability Researchers via Fake PoC Exploit Repos
New ChocoPoC RAT Targets Vulnerability Researchers via Fake PoC Exploit Repos 2026-07-02 at 10:24 By Attackers are hiding a data-stealing trojan inside fake exploit code aimed at the people who hunt bugs for a living. The malware, called ChocoPoC, travels in Python proof-of-concept (PoC) repositories on GitHub that claim to exploit hot new CVEs. Run…
-
Robinhood links with dYdX Labs to launch new DEX Arcus
Robinhood links with dYdX Labs to launch new DEX Arcus 2026-07-02 at 10:10 By Cointelegraph by Jesse Coghlan The crypto protocol dYdX has rebranded as Arcus and is joining Robinhood’s new blockchain to bring perpetual and tokenized stock trading. This article is an excerpt from Cointelegraph.com News View Original Source
-
SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active Exploitation
SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active Exploitation 2026-07-02 at 09:41 By The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a high-severity flaw impacting Microsoft SharePoint Server to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-2026-45659 (CVSS score: 8.8), is a case…
-
The endpoint recovery gap many teams discover during an incident
The endpoint recovery gap many teams discover during an incident 2026-07-02 at 09:00 By Mirko Zorz In this interview with Help Net Security, IGEL CTO Matthias Haas explains why backups alone do not equal recovery. He makes the case that endpoint recovery is often overlooked, leaving organizations exposed when thousands of devices go down at…
-
Review: CTRL+ALT+PWN
Review: CTRL+ALT+PWN 2026-07-02 at 08:30 By Anamarija Pogorelec Hacking gear that once sat in well-funded labs now ships to anyone with a credit card and a video tutorial. Frank Riccardi builds his consumer guide, CTRL+ALT+PWN: The Hacker’s Playbook (And How to Beat It), on that one condition. He spent twenty-five years in healthcare compliance and…
-
Catching ransomware on the wire before it locks the file server
Catching ransomware on the wire before it locks the file server 2026-07-02 at 08:00 By Sinisa Markovic Corporate networks keep sensitive files off individual workstations and store them on shared servers that staff reach through mapped network drives. That arrangement hands ransomware operators a target worth chasing. A single compromised laptop can begin encrypting files…
-
What the AI patch gap means for enterprise security
What the AI patch gap means for enterprise security 2026-07-02 at 07:30 By Sinisa Markovic Open-source maintainers are receiving more vulnerability reports than they can act on, and a rising share now comes from an AI system working at machine speed. Over roughly two months this spring, Anthropic’s Claude Mythos Preview combed through more than…
-
GitHub’s new tool helps prevent costly open-source license violations
GitHub’s new tool helps prevent costly open-source license violations 2026-07-02 at 07:00 By Anamarija Pogorelec GitHub’s Open Source Program Office (OSPO) uses the new GitHub License Compliance feature, now in public preview, to manage thousands of open-source dependencies and identify dependencies whose licenses require review. The feature is available to GitHub Advanced Security customers and…
-
Analyst warns BTC could drop further after worst June since 2022
Analyst warns BTC could drop further after worst June since 2022 2026-07-02 at 06:42 By Cointelegraph by Martin Young The June close above realized price but below the 200-week moving average “signals the bear bottom is still ahead per prior cycles,” one analyst said. This article is an excerpt from Cointelegraph.com News View Original Source
-
Venice AI becomes unicorn after $65M Series A as AI privacy concerns grow
Venice AI becomes unicorn after $65M Series A as AI privacy concerns grow 2026-07-02 at 06:31 By Cointelegraph by Felix Ng The funding round is Venice AI’s first external capital raise since it launched in May 2024. This article is an excerpt from Cointelegraph.com News View Original Source
-
Trumps’ American Bitcoin sinks 8.4% ahead of reverse stock split to stay listed
Trumps’ American Bitcoin sinks 8.4% ahead of reverse stock split to stay listed 2026-07-02 at 05:38 By Cointelegraph by Jesse Coghlan The Trump sons’ American Bitcoin hit a low on Wednesday ahead of the company’s reverse stock split, which aims to buoy shares and keep it on the Nasdaq. This article is an excerpt from…
-
Unpatched Argo CD Repo-Server Flaw Could Let Attackers Take Over Kubernetes Clusters
Unpatched Argo CD Repo-Server Flaw Could Let Attackers Take Over Kubernetes Clusters 2026-07-02 at 01:43 By Argo CD, a widely used tool for deploying software to Kubernetes, has an unpatched flaw in its repo-server component that lets an unauthenticated attacker run code, provided they can reach the component’s internal network port. Synacktiv, which found the…
-
19-Year-Old Scattered Spider Suspect Extradited to Face U.S. Hacking Charges
19-Year-Old Scattered Spider Suspect Extradited to Face U.S. Hacking Charges 2026-07-02 at 01:43 By A teenager accused of belonging to the hacking group Scattered Spider has been extradited from Finland to face U.S. charges of conspiracy, computer intrusion, and fraud, the U.S. Department of Justice announced on July 1. Peter Stokes, 19, a dual U.S. and Estonian…
-
Bitcoin tops $60K amid Fed inflation talks: Is bull trap or $65K next?
Bitcoin tops $60K amid Fed inflation talks: Is bull trap or $65K next? 2026-07-02 at 01:02 By Cointelegraph by Marcel Pechman Bitcoin rallied above $60,000 despite Federal Reserve rate hike fears and steady outflows from the BTC spot ETFs. Is the rally a bull trap? This article is an excerpt from Cointelegraph.com News View Original…
-
Robinhood rolls out public blockchain, plans crypto trading for UK residents
Robinhood rolls out public blockchain, plans crypto trading for UK residents 2026-07-02 at 00:38 By Cointelegraph by Turner Wright The company announced a suite of DeFi products, plans for launching crypto trading in the UK and its public mainnet after months of testing. This article is an excerpt from Cointelegraph.com News View Original Source
-
Tradeweb executes real-time tokenized US Treasury transaction on Canton Network
Tradeweb executes real-time tokenized US Treasury transaction on Canton Network 2026-07-01 at 23:38 By Cointelegraph by Nate Kostar Franklin Templeton transferred a tokenized US Treasury to Virtu Financial in what Tradeweb said was the first real-time transaction settled against USDCx. This article is an excerpt from Cointelegraph.com News View Original Source
-
Democrat backed by Ripple co-founder’s PAC wins Colorado primary
Democrat backed by Ripple co-founder’s PAC wins Colorado primary 2026-07-01 at 22:30 By Cointelegraph by Turner Wright Colorado’s Democratic and Republican primaries finished on Tuesday, with at least one candidate supported by $1 million from a crypto-aligned PAC going to the November general election. This article is an excerpt from Cointelegraph.com News View Original Source
-
Bitcoin bear market ‘dead’ after first TD9 reversal signal since July 2022 fires
Bitcoin bear market ‘dead’ after first TD9 reversal signal since July 2022 fires 2026-07-01 at 21:59 By Cointelegraph by William Suberg Bitcoin bear-market bottom signs appear as the TD9 indicator mirrors the final stages of the 2022 BTC price downtrend. This article is an excerpt from Cointelegraph.com News View Original Source
-
Microsoft Adds New Teams Controls to Block Unauthorized AI Bots From Meetings
Microsoft Adds New Teams Controls to Block Unauthorized AI Bots From Meetings 2026-07-01 at 21:08 By Ionut Arghire Microsoft’s new Teams admin policy requires organizer approval for external AI bots, giving organizations greater visibility and control over automated participants in sensitive meetings. The post Microsoft Adds New Teams Controls to Block Unauthorized AI Bots From…
-
SEO-Poisoned Software Sites Abuse ScreenConnect to Deploy AsyncRAT
SEO-Poisoned Software Sites Abuse ScreenConnect to Deploy AsyncRAT 2026-07-01 at 20:53 By Unknown threat actors are leveraging the ScreenConnect remote access tool as a way to deploy and execute AsyncRAT. Kaspersky said the activity is part of a “massive, multi-domain, multi-language” campaign that distributes malicious installer archives hosted on spoofed websites. These installers masquerade as…
-
VEIL#DROP Malware Chain Uses Blogger Platform to Deliver PureLogs Stealer
VEIL#DROP Malware Chain Uses Blogger Platform to Deliver PureLogs Stealer 2026-07-01 at 20:18 By Cybersecurity researchers have flagged a new multi-stage malware delivery attack chain that uses social engineering and Blogger pages to deliver an information stealer called PureLogs. The activity has been codenamed VEIL#DROP by Securonix. It’s suspected that the initial payloads are distributed…
-
Crypto ATM bans, restrictions now in effect in Tennessee and Georgia
Crypto ATM bans, restrictions now in effect in Tennessee and Georgia 2026-07-01 at 20:06 By Cointelegraph by Turner Wright Crypto ATM’s are fast disappearing in the US as Tennessee’s ban goes into effect today while operators in Minnesota have until Aug. 1 to comply with a similar law. This article is an excerpt from Cointelegraph.com…
-
Sony to stop releasing PlayStation games on discs as online sales dominate
Sony to stop releasing PlayStation games on discs as online sales dominate 2026-07-01 at 18:38 By Reuters The change will not apply to games released, or already scheduled for disc release, before 2028. This article is an excerpt from Latest Technology News | New York Post View Original Source
-
Ousaban Banking Trojan Targets Iberian Bank Users with Fake PDF Lures
Ousaban Banking Trojan Targets Iberian Bank Users with Fake PDF Lures 2026-07-01 at 18:26 By A Brazilian banking trojan called Ousaban is going after Windows users who bank in Spain and Portugal. Fortinet’s FortiGuard Labs identified the campaign in May 2026. It opens with a phishing PDF disguised as a corrupted file, checks that the visitor is…
-
Adobe Patches 7 CVSS 10.0 Flaws in ColdFusion and Campaign Classic
Adobe Patches 7 CVSS 10.0 Flaws in ColdFusion and Campaign Classic 2026-07-01 at 18:25 By Adobe has released patches for multiple maximum-severity security flaws impacting Adobe ColdFusion and Adobe Campaign Classic. The ColdFusion updates “resolves critical and important vulnerabilities that could lead to arbitrary code execution, privilege escalation, arbitrary file system read, and security feature bypass,” Adobe…
-
Critical Cursor Flaws Could Let Prompt Injection Escape Sandbox and Run Commands
Critical Cursor Flaws Could Let Prompt Injection Escape Sandbox and Run Commands 2026-07-01 at 17:42 By Two flaws in Cursor, an AI code editor, could let a single, ordinary-looking prompt break out of the editor’s safety sandbox and run any command on a developer’s computer. There is no click to fall for and no approval…
-
Meta contractors posed as teens to test rival AI chatbots on suicide, sex and drugs: report
Meta contractors posed as teens to test rival AI chatbots on suicide, sex and drugs: report 2026-07-01 at 17:28 By Ariel Zilber The covert effort was managed by Meta contractor Covalen and targeted OpenAI’s ChatGPT, Google’s Gemini and Character.AI, according to Wired. This article is an excerpt from Latest Technology News | New York Post…
Browse older archives
- July 2026
- June 2026
- May 2026
- April 2026
- March 2026
- February 2026
- January 2026
- December 2025
- November 2025
- October 2025
- September 2025
- August 2025
- July 2025
- June 2025
- May 2025
- April 2025
- March 2025
- February 2025
- January 2025
- December 2024
- November 2024
- October 2024
- September 2024
- August 2024
- July 2024
- June 2024
- May 2024
- April 2024
- March 2024
- February 2024
- January 2024
- December 2023
- November 2023
- October 2023
- September 2023
- August 2023
- July 2023
- June 2023
- May 2023