June, 2026 - Security Ticks

Eight-Year-Old Samsung KNOX Flaw Exposed Millions of Galaxy Devices to Kernel Attacks

CVE‑2026‑20971, Mobile & Wireless, Vulnerabilities / SecurityTicks

Eight-Year-Old Samsung KNOX Flaw Exposed Millions of Galaxy Devices to Kernel Attacks 2026-06-23 at 16:00 By Kevin Townsend The high-severity use-after-free vulnerability in Samsung’s KNOX security framework affected Android-powered Galaxy devices from the S9 through S25. The post Eight-Year-Old Samsung KNOX Flaw Exposed Millions of Galaxy Devices to Kernel Attacks appeared first on SecurityWeek. This […]

Eight-Year-Old Samsung KNOX Flaw Exposed Millions of Galaxy Devices to Kernel Attacks Read More »

Fake shops target shoppers across Europe with fake Samsung deals, counterfeit goods and World Cup scams

Scam Research / SecurityTicks

Fake shops target shoppers across Europe with fake Samsung deals, counterfeit goods and World Cup scams 2026-06-23 at 15:55 By Alecsandru Cătălin DAJ A Bitdefender Labs investigation identified more than 55 fake-shop campaigns targeting consumers across 12 European countries between March and May 2026. The campaigns mimicked some of the world’s most recognizable brands, including

Fake shops target shoppers across Europe with fake Samsung deals, counterfeit goods and World Cup scams Read More »

CISO Conversations: Carl Froggett – Combining CISO and CIO at Deep Instinct

CISO, CISO Conversations, CISO Strategy, Management & Strategy / SecurityTicks

CISO Conversations: Carl Froggett – Combining CISO and CIO at Deep Instinct 2026-06-23 at 15:50 By Kevin Townsend Carl Froggett combines CISO and CIO. He currently occupies both positions at Deep Instinct. Before then, he was CISO at Citi for almost 17 years. The post CISO Conversations: Carl Froggett – Combining CISO and CIO at

CISO Conversations: Carl Froggett – Combining CISO and CIO at Deep Instinct Read More »

Algerian Man Extradited to US for Running Cybercrime Marketplaces

arrested, cybercrime, extradited, hacker, marketplace, Tracking & Law Enforcement / SecurityTicks

Algerian Man Extradited to US for Running Cybercrime Marketplaces 2026-06-23 at 15:06 By Eduard Kovacs 26-year-old Abdellah Belmili faces up to 30 years in prison for allegedly operating the marketplaces Market0Day and Spoxy. The post Algerian Man Extradited to US for Running Cybercrime Marketplaces appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

Algerian Man Extradited to US for Running Cybercrime Marketplaces Read More »

FFmpeg PixelSmash Flaw Allows RCE on Video Players, Media Servers, NAS Appliances

FFmpeg, media player, PixelSmash, Vulnerabilities, vulnerability / SecurityTicks

FFmpeg PixelSmash Flaw Allows RCE on Video Players, Media Servers, NAS Appliances 2026-06-23 at 14:48 By Ionut Arghire Attackers can send crafted media files to execute code in any application that uses FFmpeg’s libavcodec library. The post FFmpeg PixelSmash Flaw Allows RCE on Video Players, Media Servers, NAS Appliances appeared first on SecurityWeek. This article

FFmpeg PixelSmash Flaw Allows RCE on Video Players, Media Servers, NAS Appliances Read More »

Agentic AI: The Weapon That No Longer Needs a Warrior

Uncategorized / SecurityTicks

Agentic AI: The Weapon That No Longer Needs a Warrior 2026-06-23 at 14:30 By Every weapon begins as an extension of the hand that holds it. The spear lengthened the reach of the arm. The bow sent the point flying without the throw. The rifle placed a man’s death a quarter mile beyond his sight,

Agentic AI: The Weapon That No Longer Needs a Warrior Read More »

OpenAI Refocuses Cybersecurity Efforts on Patching Over Discovery

AI, Artificial Intelligence, Codex, GPT-Cyber, OpenAI, patches / SecurityTicks

OpenAI Refocuses Cybersecurity Efforts on Patching Over Discovery 2026-06-23 at 14:07 By Eduard Kovacs OpenAI has expanded its Daybreak cybersecurity initiative with a new suite of tools and partnerships. The post OpenAI Refocuses Cybersecurity Efforts on Patching Over Discovery appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

OpenAI Refocuses Cybersecurity Efforts on Patching Over Discovery Read More »

GTA 6 early access offers are taking gamers’ crypto

Crypto, cybercrime, game, Malwarebytes, News, scams / SecurityTicks

GTA 6 early access offers are taking gamers’ crypto 2026-06-23 at 13:31 By Mirko Zorz Scam websites are circulating across the internet with a pitch aimed at millions of gamers: a way to play Grand Theft Auto VI before its release. The pages promise early access for a few hundred dollars in cryptocurrency, ask buyers

GTA 6 early access offers are taking gamers’ crypto Read More »

What ‘IPO’ really stands for — and whether you should be buying SpaceX and the AI giants

Uncategorized / SecurityTicks

What ‘IPO’ really stands for — and whether you should be buying SpaceX and the AI giants 2026-06-23 at 13:00 By Ken Fisher These three letters – I, P and O – excite emotions like few others in finance. This article is an excerpt from Latest Technology News | New York Post View Original Source

What ‘IPO’ really stands for — and whether you should be buying SpaceX and the AI giants Read More »

Two Scattered Spider hackers plead guilty over Transport for London cyberattack

cybercrime, EU, law enforcement, National Crime Agency, News, transportation, UK / SecurityTicks

Two Scattered Spider hackers plead guilty over Transport for London cyberattack 2026-06-23 at 12:59 By Sinisa Markovic Two members of the notorious hacker group Scattered Spider have pleaded guilty to charges related to a 2024 cyberattack on Transport for London (TfL) that resulted in £29 million in loss and recovery costs. Thalha Jubair, 20, from

Two Scattered Spider hackers plead guilty over Transport for London cyberattack Read More »

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT

Uncategorized / SecurityTicks

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT 2026-06-23 at 11:54 By Cybersecurity researchers have discovered a set of malicious npm packages that are designed to deliver a Windows-based remote access trojan (RAT). The list of identified packages, is below – aes-decode-runner-pro (145 downloads) postcss-minify-selector (256 downloads) postcss-minify-selector-parser (615 downloads) All the

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT Read More »

Trump Signs Executive Order Accelerating Post-Quantum Cryptography Migration

Cryptography, Data Protection, donald trump, executive order, Featured, Government, Post quantum cryptography, PQC, Quantum / SecurityTicks

Trump Signs Executive Order Accelerating Post-Quantum Cryptography Migration 2026-06-23 at 11:43 By Eduard Kovacs Federal agencies are required to transition high-value assets and high-impact systems to use PQC by the end of 2030 and 2031. The post Trump Signs Executive Order Accelerating Post-Quantum Cryptography Migration appeared first on SecurityWeek. This article is an excerpt from

Trump Signs Executive Order Accelerating Post-Quantum Cryptography Migration Read More »

Phishing hides in routine Microsoft 365 workflows

cybercrime, Fortra, Microsoft 365, News, Outlook, phishing / SecurityTicks

Phishing hides in routine Microsoft 365 workflows 2026-06-23 at 11:26 By Sinisa Markovic Attackers are abusing Outlook Groups and Microsoft 365 collaboration features to make phishing campaigns appear routine, according to Fortra. “The technique shifts malicious intent away from a single phishing email into a trusted productivity workflow. A user may see what looks like

Phishing hides in routine Microsoft 365 workflows Read More »

Xsolis Data Breach Affects 1.4 Million Individuals

data breach, Data Breaches, healthcare, Xsolis / SecurityTicks

Xsolis Data Breach Affects 1.4 Million Individuals 2026-06-23 at 09:20 By Eduard Kovacs Threat actors gained access to personal and protected health information that Xsolis received from its clients. The post Xsolis Data Breach Affects 1.4 Million Individuals appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Xsolis Data Breach Affects 1.4 Million Individuals Read More »

WhatsApp VBScript Campaign Uses Fake Documents to Install ManageEngine RMM Tool

Uncategorized / SecurityTicks

WhatsApp VBScript Campaign Uses Fake Documents to Install ManageEngine RMM Tool 2026-06-23 at 08:38 By Direct messages sent via WhatsApp are being used to distribute malicious Visual Basic Script (VBScript) files that lead to the installation of legitimate Remote Monitoring and Management (RMM) software. Per findings from Kaspersky, the active campaign is targeting users of

WhatsApp VBScript Campaign Uses Fake Documents to Install ManageEngine RMM Tool Read More »

A $1,400 experiment in AI security auditing outperformed OpenAI’s Codex Security

agentic AI, AI, auditing, cybersecurity, Don't miss, Features, Hot stuff, News, open source, research / SecurityTicks

A $1,400 experiment in AI security auditing outperformed OpenAI’s Codex Security 2026-06-23 at 08:30 By Mirko Zorz A research team has built a system that teaches AI agents to hunt for software bugs by writing the audit method down as plain text. The system, called EVOHUNT, keeps the underlying AI model fixed and improves only

A $1,400 experiment in AI security auditing outperformed OpenAI’s Codex Security Read More »

Residential proxy SDKs are hiding in LG and Samsung smart TV apps

Don't miss, hardware, Internet of Things, network, News, Proxy, smart tv / SecurityTicks

Residential proxy SDKs are hiding in LG and Samsung smart TV apps 2026-06-23 at 08:08 By Anamarija Pogorelec Smart TVs in living rooms run small apps that show fish tanks, clocks, solitaire games, and slideshows of puppies. A share of those apps can also send other people’s internet traffic out through the home connection. Spur

Residential proxy SDKs are hiding in LG and Samsung smart TV apps Read More »

Free, no-signup World Cup streams serve scams instead of football

cybercrime, fraud, Malwarebytes, News, scams / SecurityTicks

Free, no-signup World Cup streams serve scams instead of football 2026-06-23 at 07:30 By Sinisa Markovic Researchers at Malwarebytes identified dozens of websites claiming to offer free access to FIFA World Cup matches. Instead of streaming games, the sites directed visitors through a chain of advertising pages designed to generate revenue for their operators. Fake

Free, no-signup World Cup streams serve scams instead of football Read More »

Only 7% of companies are ready for the AI agents they deployed

agentic AI, cyber risk, data, News, report, Veeam Software / SecurityTicks

Only 7% of companies are ready for the AI agents they deployed 2026-06-23 at 07:00 By Anamarija Pogorelec Most organizations now run or pilot AI agents that operate on company data with limited human direction at each step, a share that reaches 88% in Veeam Software’s Data and AI Trust Gap report. The systems that

Only 7% of companies are ready for the AI agents they deployed Read More »

What I Learned About Burnout the Hard Way (and How to Actually Fix it)

Uncategorized / SecurityTicks

What I Learned About Burnout the Hard Way (and How to Actually Fix it) 2026-06-23 at 07:00 By The good news is that burnout can be manageable if you’re willing to treat it as an operational priority and not just an afterthought. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View

What I Learned About Burnout the Hard Way (and How to Actually Fix it) Read More »

June 2026