Cybersecurity and other IT news aggregator

LATEST FEEDS

  • ThreatsDay: AI Compute Hijacking, Apple Email Flaw, BlueHammer Ransomware + 14 Stories

    ThreatsDay: AI Compute Hijacking, Apple Email Flaw, BlueHammer Ransomware + 14 Stories 2026-07-02 at 18:49 By This week’s security news is mostly about weak spots. Browsers, bots, sandboxes, AI systems, and email flows all show the same problem in different ways. Everything looks normal until someone tests a small gap and finds a way through.…


  • Elon Musk’s Tesla shocks Wall Street with record sales — but shares still tumble

    Elon Musk’s Tesla shocks Wall Street with record sales — but shares still tumble 2026-07-02 at 18:08 By Reuters The strong figures suggest Tesla’s mainstay auto business is regaining momentum after two straight annual sales declines. This article is an excerpt from Latest Technology News | New York Post View Original Source


  • New CitrixBleed Vulnerability Exploited Immediately After Public Disclosure

    New CitrixBleed Vulnerability Exploited Immediately After Public Disclosure 2026-07-02 at 18:04 By Ionut Arghire Hackers are targeting NetScaler appliances using public PoC code to retrieve arbitrary memory content in the HTTP response. The post New CitrixBleed Vulnerability Exploited Immediately After Public Disclosure appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original…


  • US government would get 5% stake in OpenAI under Sam Altman proposal: report

    US government would get 5% stake in OpenAI under Sam Altman proposal: report 2026-07-02 at 17:19 By Ariel Zilber Sam Altman has argued that broad public ownership is the best way to ensure Americans benefit from the enormous wealth AI is expected to generate. This article is an excerpt from Latest Technology News | New…


  • Day in the Life of an Incident Responder: Following the Evidence

    Day in the Life of an Incident Responder: Following the Evidence 2026-07-02 at 17:00 By Jamie Mamroe Incident response doesn’t always start with a dramatic alert or a perfectly framed timeline. More often, it starts with uncertainty. This article is an excerpt from LevelBlue Blog View Original Source


  • AsyncRAT and Remcos Delivered in Multi-Stage Phishing Campaign

    AsyncRAT and Remcos Delivered in Multi-Stage Phishing Campaign 2026-07-02 at 17:00 By LevelBlue SpiderLabs Over the past two weeks, LevelBlue SpiderLabs has been tracking an active phishing campaign distributing malicious spreadsheet attachments. What initially appeared to be a limited phishing attempt quickly evolved into a widespread campaign impacting multiple organizations across various industries, including manufacturing,…


  • Scattered Spider suspect extradited over $8 million ransom scheme

    Scattered Spider suspect extradited over $8 million ransom scheme 2026-07-02 at 16:43 By Anamarija Pogorelec A suspected Scattered Spider member has been extradited to the United States to face charges linked to cyberattacks against U.S. companies, including the breach of a luxury jewelry retailer that led to an $8 million cryptocurrency ransom demand after attackers…


  • The biggest blockchain upgrades still to come in 2026

    The biggest blockchain upgrades still to come in 2026 2026-07-02 at 16:30 By Cointelegraph by Christina Comben From Ethereum’s Glamsterdam to Solana’s Alpenglow, 2026’s most important developments are protocol upgrades, not price charts. This article is an excerpt from Cointelegraph.com News View Original Source


  • How to Conduct a Successful Audit of AI-Driven Software Development

    How to Conduct a Successful Audit of AI-Driven Software Development 2026-07-02 at 16:15 By Matias Madou As AI-generated code becomes commonplace, CISOs need new audit strategies to measure developer practices, govern AI tool usage, and identify software risks before they reach production. The post How to Conduct a Successful Audit of AI-Driven Software Development appeared…


  • UK payments blueprint outlines tokenized payments for ‘multi-money ecosystem’

    UK payments blueprint outlines tokenized payments for ‘multi-money ecosystem’ 2026-07-02 at 16:04 By Cointelegraph by Zoltan Vardai UK regulators published an update to a national retail payments blueprint, calling for infrastructure support for tokenization and interoperability with new forms of digital money. This article is an excerpt from Cointelegraph.com News View Original Source


  • ToddyCat-Linked Umbrij Malware Abuses OAuth to Access Gmail via Google API

    ToddyCat-Linked Umbrij Malware Abuses OAuth to Access Gmail via Google API 2026-07-02 at 16:04 By The threat actor known as ToddyCat has been attributed to a new malware called Umbrij that’s designed to gain surreptitious access to a victim’s email correspondence via the Google API. “In this campaign, the attackers focused their attention on corporate…


  • Aave brings V3 lending and GHO stablecoin to Monad

    Aave brings V3 lending and GHO stablecoin to Monad 2026-07-02 at 16:00 By Cointelegraph by Ezra Reguerra Aave launched its V3 lending protocol on Monad with 12 supported assets as the network commits $15 million in first-year incentives to build liquidity and adoption. This article is an excerpt from Cointelegraph.com News View Original Source


  • New iboss platform gives organizations instant visibility into AI tools and usage

    New iboss platform gives organizations instant visibility into AI tools and usage 2026-07-02 at 15:52 By Industry News iboss has launched the AI Security Platform, a new service that gives any organization visibility into the AI tools its people are using, free of charge. Signup is instant, deployment takes an afternoon, and a complete AI…


  • FortiBleed Campaign Linked to INC, Lynx Ransomware Attacks

    FortiBleed Campaign Linked to INC, Lynx Ransomware Attacks 2026-07-02 at 15:34 By Ionut Arghire Researchers say credentials harvested from hundreds of thousands of FortiGate firewalls are being used to facilitate ransomware attacks by the INC and Lynx operations. The post FortiBleed Campaign Linked to INC, Lynx Ransomware Attacks appeared first on SecurityWeek. This article is…


  • Cloudflare changes AI crawler access rules

    Cloudflare changes AI crawler access rules 2026-07-02 at 15:21 By Anamarija Pogorelec Cloudflare introduced new controls that let website owners manage AI traffic across three categories: Search, Agent, and Training. The feature is available to all Cloudflare customers, including those on the Free plan, and gives website owners more control over how different types of…


  • Identity Lifecycle Management Wasn’t Built for AI Agents 

    Identity Lifecycle Management Wasn’t Built for AI Agents  2026-07-02 at 14:30 By Identity lifecycle management was architected around a person with an employment record, a manager, and a departure date. AI agents have none of those. As autonomous principals proliferate across enterprise environments, the governance model built for humans develops structural blind spots that traditional…


  • Trump Administration Lifts Restrictions on Anthropic’s Claude Models After Cybersecurity Alarm

    Trump Administration Lifts Restrictions on Anthropic’s Claude Models After Cybersecurity Alarm 2026-07-02 at 14:01 By Associated Press Anthropic said Tuesday night that its AI model called Claude Fable 5 is now widely available. The post Trump Administration Lifts Restrictions on Anthropic’s Claude Models After Cybersecurity Alarm appeared first on SecurityWeek. This article is an excerpt…


  • Why Response Time Is Becoming the Missing Metric in Workplace Safety and Security

    Why Response Time Is Becoming the Missing Metric in Workplace Safety and Security 2026-07-02 at 14:00 By Even the strongest prevention programs cannot eliminate every risk. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source


  • Cisco Confirms In-the-Wild Exploitation of Unified CM Vulnerability

    Cisco Confirms In-the-Wild Exploitation of Unified CM Vulnerability 2026-07-02 at 13:48 By Ionut Arghire A PoC exploit has been available since public disclosure, and the first exploitation attempts were observed last week. The post Cisco Confirms In-the-Wild Exploitation of Unified CM Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original…


  • ‘BioShocking’ Attack Tricks AI Browsers Into Stealing Credentials

    ‘BioShocking’ Attack Tricks AI Browsers Into Stealing Credentials 2026-07-02 at 13:45 By Ionut Arghire Researchers show how context manipulation can cause agentic browsers to abandon safety guardrails and exfiltrate sensitive credentials. The post ‘BioShocking’ Attack Tricks AI Browsers Into Stealing Credentials appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source


  • AI Agent Exploits Langflow RCE to Automate Database Ransomware Attack

    AI Agent Exploits Langflow RCE to Automate Database Ransomware Attack 2026-07-02 at 12:13 By Security firm Sysdig says it has found what it believes is the first ransomware attack run from start to finish by an AI agent. Its Threat Research Team calls the operator JADEPUFFER and says a large language model handled the whole job: breaking…


  • FortiBleed Credential Theft Linked to INC and Lynx Ransomware Operations

    FortiBleed Credential Theft Linked to INC and Lynx Ransomware Operations 2026-07-02 at 11:00 By The recently discovered financially-motivated FortiBleed campaign has been attributed to INC and Lynx ransomware operations, indicating that the verified, stolen credentials were intended for follow-on intrusions. “An operator tied to FortiBleed’s infrastructure was found actively working negotiation panels for both groups,…


  • Opera blocks ClickFix attacks with new clipboard protection feature

    Opera blocks ClickFix attacks with new clipboard protection feature 2026-07-02 at 11:00 By Industry News Opera has launched Paste Protect, a clipboard protection feature designed to prevent clipboard-based attacks such as hijacking and pastejacking. Paste Protect includes built-in protection and warnings against ClickFix-based cyberattacks, which accounted for more than half of malware-delivery attacks in 2025.…


  • New ChocoPoC RAT Targets Vulnerability Researchers via Fake PoC Exploit Repos

    New ChocoPoC RAT Targets Vulnerability Researchers via Fake PoC Exploit Repos 2026-07-02 at 10:24 By Attackers are hiding a data-stealing trojan inside fake exploit code aimed at the people who hunt bugs for a living. The malware, called ChocoPoC, travels in Python proof-of-concept (PoC) repositories on GitHub that claim to exploit hot new CVEs. Run…


  • Robinhood links with dYdX Labs to launch new DEX Arcus

    Robinhood links with dYdX Labs to launch new DEX Arcus 2026-07-02 at 10:10 By Cointelegraph by Jesse Coghlan The crypto protocol dYdX has rebranded as Arcus and is joining Robinhood’s new blockchain to bring perpetual and tokenized stock trading. This article is an excerpt from Cointelegraph.com News View Original Source


  • SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active Exploitation

    SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active Exploitation 2026-07-02 at 09:41 By The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a high-severity flaw impacting Microsoft SharePoint Server to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-2026-45659 (CVSS score: 8.8), is a case…


  • The endpoint recovery gap many teams discover during an incident

    The endpoint recovery gap many teams discover during an incident 2026-07-02 at 09:00 By Mirko Zorz In this interview with Help Net Security, IGEL CTO Matthias Haas explains why backups alone do not equal recovery. He makes the case that endpoint recovery is often overlooked, leaving organizations exposed when thousands of devices go down at…


  • Review: CTRL+ALT+PWN

    Review: CTRL+ALT+PWN 2026-07-02 at 08:30 By Anamarija Pogorelec Hacking gear that once sat in well-funded labs now ships to anyone with a credit card and a video tutorial. Frank Riccardi builds his consumer guide, CTRL+ALT+PWN: The Hacker’s Playbook (And How to Beat It), on that one condition. He spent twenty-five years in healthcare compliance and…


  • Catching ransomware on the wire before it locks the file server

    Catching ransomware on the wire before it locks the file server 2026-07-02 at 08:00 By Sinisa Markovic Corporate networks keep sensitive files off individual workstations and store them on shared servers that staff reach through mapped network drives. That arrangement hands ransomware operators a target worth chasing. A single compromised laptop can begin encrypting files…


  • What the AI patch gap means for enterprise security

    What the AI patch gap means for enterprise security 2026-07-02 at 07:30 By Sinisa Markovic Open-source maintainers are receiving more vulnerability reports than they can act on, and a rising share now comes from an AI system working at machine speed. Over roughly two months this spring, Anthropic’s Claude Mythos Preview combed through more than…


  • GitHub’s new tool helps prevent costly open-source license violations

    GitHub’s new tool helps prevent costly open-source license violations 2026-07-02 at 07:00 By Anamarija Pogorelec GitHub’s Open Source Program Office (OSPO) uses the new GitHub License Compliance feature, now in public preview, to manage thousands of open-source dependencies and identify dependencies whose licenses require review. The feature is available to GitHub Advanced Security customers and…


  • Analyst warns BTC could drop further after worst June since 2022

    Analyst warns BTC could drop further after worst June since 2022 2026-07-02 at 06:42 By Cointelegraph by Martin Young The June close above realized price but below the 200-week moving average “signals the bear bottom is still ahead per prior cycles,” one analyst said. This article is an excerpt from Cointelegraph.com News View Original Source


  • Venice AI becomes unicorn after $65M Series A as AI privacy concerns grow

    Venice AI becomes unicorn after $65M Series A as AI privacy concerns grow 2026-07-02 at 06:31 By Cointelegraph by Felix Ng The funding round is Venice AI’s first external capital raise since it launched in May 2024. This article is an excerpt from Cointelegraph.com News View Original Source


  • Trumps’ American Bitcoin sinks 8.4% ahead of reverse stock split to stay listed

    Trumps’ American Bitcoin sinks 8.4% ahead of reverse stock split to stay listed 2026-07-02 at 05:38 By Cointelegraph by Jesse Coghlan The Trump sons’ American Bitcoin hit a low on Wednesday ahead of the company’s reverse stock split, which aims to buoy shares and keep it on the Nasdaq. This article is an excerpt from…


  • Unpatched Argo CD Repo-Server Flaw Could Let Attackers Take Over Kubernetes Clusters

    Unpatched Argo CD Repo-Server Flaw Could Let Attackers Take Over Kubernetes Clusters 2026-07-02 at 01:43 By Argo CD, a widely used tool for deploying software to Kubernetes, has an unpatched flaw in its repo-server component that lets an unauthenticated attacker run code, provided they can reach the component’s internal network port. Synacktiv, which found the…


  • 19-Year-Old Scattered Spider Suspect Extradited to Face U.S. Hacking Charges

    19-Year-Old Scattered Spider Suspect Extradited to Face U.S. Hacking Charges 2026-07-02 at 01:43 By A teenager accused of belonging to the hacking group Scattered Spider has been extradited from Finland to face U.S. charges of conspiracy, computer intrusion, and fraud, the U.S. Department of Justice announced on July 1. Peter Stokes, 19, a dual U.S. and Estonian…


  • Bitcoin tops $60K amid Fed inflation talks: Is bull trap or $65K next?

    Bitcoin tops $60K amid Fed inflation talks: Is bull trap or $65K next? 2026-07-02 at 01:02 By Cointelegraph by Marcel Pechman Bitcoin rallied above $60,000 despite Federal Reserve rate hike fears and steady outflows from the BTC spot ETFs. Is the rally a bull trap? This article is an excerpt from Cointelegraph.com News View Original…


  • Robinhood rolls out public blockchain, plans crypto trading for UK residents

    Robinhood rolls out public blockchain, plans crypto trading for UK residents 2026-07-02 at 00:38 By Cointelegraph by Turner Wright The company announced a suite of DeFi products, plans for launching crypto trading in the UK and its public mainnet after months of testing. This article is an excerpt from Cointelegraph.com News View Original Source


  • Tradeweb executes real-time tokenized US Treasury transaction on Canton Network

    Tradeweb executes real-time tokenized US Treasury transaction on Canton Network 2026-07-01 at 23:38 By Cointelegraph by Nate Kostar Franklin Templeton transferred a tokenized US Treasury to Virtu Financial in what Tradeweb said was the first real-time transaction settled against USDCx. This article is an excerpt from Cointelegraph.com News View Original Source


  • Democrat backed by Ripple co-founder’s PAC wins Colorado primary

    Democrat backed by Ripple co-founder’s PAC wins Colorado primary 2026-07-01 at 22:30 By Cointelegraph by Turner Wright Colorado’s Democratic and Republican primaries finished on Tuesday, with at least one candidate supported by $1 million from a crypto-aligned PAC going to the November general election. This article is an excerpt from Cointelegraph.com News View Original Source


  • Bitcoin bear market ‘dead’ after first TD9 reversal signal since July 2022 fires

    Bitcoin bear market ‘dead’ after first TD9 reversal signal since July 2022 fires 2026-07-01 at 21:59 By Cointelegraph by William Suberg Bitcoin bear-market bottom signs appear as the TD9 indicator mirrors the final stages of the 2022 BTC price downtrend. This article is an excerpt from Cointelegraph.com News View Original Source


  • Microsoft Adds New Teams Controls to Block Unauthorized AI Bots From Meetings

    Microsoft Adds New Teams Controls to Block Unauthorized AI Bots From Meetings 2026-07-01 at 21:08 By Ionut Arghire Microsoft’s new Teams admin policy requires organizer approval for external AI bots, giving organizations greater visibility and control over automated participants in sensitive meetings. The post Microsoft Adds New Teams Controls to Block Unauthorized AI Bots From…


  • SEO-Poisoned Software Sites Abuse ScreenConnect to Deploy AsyncRAT

    SEO-Poisoned Software Sites Abuse ScreenConnect to Deploy AsyncRAT 2026-07-01 at 20:53 By Unknown threat actors are leveraging the ScreenConnect remote access tool as a way to deploy and execute AsyncRAT. Kaspersky said the activity is part of a “massive, multi-domain, multi-language” campaign that distributes malicious installer archives hosted on spoofed websites. These installers masquerade as…


  • VEIL#DROP Malware Chain Uses Blogger Platform to Deliver PureLogs Stealer

    VEIL#DROP Malware Chain Uses Blogger Platform to Deliver PureLogs Stealer 2026-07-01 at 20:18 By Cybersecurity researchers have flagged a new multi-stage malware delivery attack chain that uses social engineering and Blogger pages to deliver an information stealer called PureLogs. The activity has been codenamed VEIL#DROP by Securonix. It’s suspected that the initial payloads are distributed…


  • Crypto ATM bans, restrictions now in effect in Tennessee and Georgia

    Crypto ATM bans, restrictions now in effect in Tennessee and Georgia 2026-07-01 at 20:06 By Cointelegraph by Turner Wright Crypto ATM’s are fast disappearing in the US as Tennessee’s ban goes into effect today while operators in Minnesota have until Aug. 1 to comply with a similar law. This article is an excerpt from Cointelegraph.com…


  • Sony to stop releasing PlayStation games on discs as online sales dominate

    Sony to stop releasing PlayStation games on discs as online sales dominate 2026-07-01 at 18:38 By Reuters The change will not apply to games released, or already scheduled for disc release, before 2028. This article is an excerpt from Latest Technology News | New York Post View Original Source


  • Ousaban Banking Trojan Targets Iberian Bank Users with Fake PDF Lures

    Ousaban Banking Trojan Targets Iberian Bank Users with Fake PDF Lures 2026-07-01 at 18:26 By A Brazilian banking trojan called Ousaban is going after Windows users who bank in Spain and Portugal. Fortinet’s FortiGuard Labs identified the campaign in May 2026. It opens with a phishing PDF disguised as a corrupted file, checks that the visitor is…


  • Adobe Patches 7 CVSS 10.0 Flaws in ColdFusion and Campaign Classic

    Adobe Patches 7 CVSS 10.0 Flaws in ColdFusion and Campaign Classic 2026-07-01 at 18:25 By Adobe has released patches for multiple maximum-severity security flaws impacting Adobe ColdFusion and Adobe Campaign Classic. The ColdFusion updates “resolves critical and important vulnerabilities that could lead to arbitrary code execution, privilege escalation, arbitrary file system read, and security feature bypass,” Adobe…


  • Critical Cursor Flaws Could Let Prompt Injection Escape Sandbox and Run Commands

    Critical Cursor Flaws Could Let Prompt Injection Escape Sandbox and Run Commands 2026-07-01 at 17:42 By Two flaws in Cursor, an AI code editor, could let a single, ordinary-looking prompt break out of the editor’s safety sandbox and run any command on a developer’s computer. There is no click to fall for and no approval…


  • Meta contractors posed as teens to test rival AI chatbots on suicide, sex and drugs: report

    Meta contractors posed as teens to test rival AI chatbots on suicide, sex and drugs: report 2026-07-01 at 17:28 By Ariel Zilber The covert effort was managed by Meta contractor Covalen and targeted OpenAI’s ChatGPT, Google’s Gemini and Character.AI, according to Wired. This article is an excerpt from Latest Technology News | New York Post…


Browse older archives

Scroll to Top