Cybersecurity and other IT news aggregator

Elon Musk’s SpaceX sets $135 price for blockbuster IPO, upending Wall Street convention 2026-06-04 at 01:20 By Reuters The company is aiming to raise $75 billion, the most ever for an IPO, in a deal that would value it at $1.75 trillion. This article is an excerpt from Latest Technology News | New York Post…

British lawmaker Jess Asato sues Elon Musk’s xAI after Grok users made fake sexualized images of her in a bikini 2026-06-04 at 01:20 By Reuters xAI said earlier this year it restricted image editing in Grok, and blocked users from generating images of people in revealing clothing in “jurisdictions where it’s illegal.” This article is…

Selfie fingerprint’ scam is ‘real,’ some AI experts warn — others say it’s bunk: ‘Stuff out of spy novels’ 2026-06-04 at 01:20 By Reda Wigle Anxiety is building amid social media claims that hackers are using AI to extract fingerprints from people innocently flashing peace signs in posted pics. This article is an excerpt from…

They made six figures on prediction markets with these really random bets 2026-06-04 at 01:20 By Will Zimmerman “It doesn’t seem real to me,” said a Pennsylvania teacher who has made $175k betting on pop stars like Ariana Grande. This article is an excerpt from Latest Technology News | New York Post View Original Source

WhatsApp, Slack Notifications Could Hijack Google Gemini on Android 2026-06-04 at 01:19 By A single poisoned notification from WhatsApp, Slack, SMS, Signal, Instagram, or Messenger could have hijacked Google Gemini’s voice assistant on Android and made it open a victim’s connected windows, fake a message from their boss, push the phone into a Zoom call,…

Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT 2026-06-04 at 01:19 By Cybersecurity researchers have flagged a new malspam campaign that makes use of Google’s DoubleClick domain as a way to evade detection and ultimately deliver a remote access trojan (RAT) named DesckVB RAT. “Before the victim ever reaches attacker-controlled infrastructure, the…

Beyond the Zero-Day: See Your Network Like an Attacker | Webinar with HD Moore 2026-06-04 at 01:19 By Assume the breach. Zero-days keep shipping, AI is writing exploits faster than anyone patches, and “patch everything in time” stopped working years ago. Stop betting the org on winning that race. You don’t control which bug lands.…

Microsoft 365 Android Apps Let Any App Steal Account Tokens via Leftover Debug Flag 2026-06-04 at 01:19 By A development flag left switched on in production builds of several Microsoft 365 Android apps disabled the check that limits account-token sharing to trusted Microsoft apps. Any other app on the same phone could ask for the…

Autonomous AI Tool Finds 2-Year-Old RCE Flaw in Redis (CVE-2026-23479) 2026-06-04 at 01:19 By Redis has patched a use-after-free in its blocking-client code that lets an authenticated user run arbitrary OS commands on the machine hosting the database. The flaw was found by an autonomous AI tool built to hunt bugs in large codebases. Tracked…

Americans are suspicious that software updates make their electronic devices worse: research 2026-06-03 at 21:29 By SWNS A majority of Americans believe software updates are making their devices worse, not better, according to new research. This article is an excerpt from Latest Technology News | New York Post View Original Source

Only 9% of Organizations Patch Critical Vulnerabilities in 24 Hours 2026-06-03 at 21:28 By Only 9% remediate high-severity flaws in production within 24 hours; 74% do so in one to seven days.  This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source

Teen boys are choosing AI girlfriends over real-life relationships — the effect on them can be disastrous, expert says 2026-06-03 at 20:20 By Reda Wigle Generation Alpha would rather keep company with robo-girlfriends than risk potential rejection and challenges of an IRL partner. This article is an excerpt from Latest Technology News | New York…

One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens 2026-06-03 at 20:19 By Cybersecurity researchers have disclosed a one-click attack via Microsoft Visual Studio Code (VS Code) that makes it possible to steal a user’s GitHub token. “Just by clicking a link, it’s possible for an attacker to steal a GitHub token that…

Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP) 2026-06-03 at 20:19 By The Fragmented State of Modern Enterprise Identity Enterprise IAM is approaching a breaking point. As organizations scale, identity becomes increasingly fragmented across thousands of applications, decentralized teams, machine identities, and autonomous systems. The result is Identity Dark Matter: identity…

Beyond the Zero-Day: See Your Network Like an Attacker | Webinar with HD Moore 2026-06-03 at 20:19 By Assume the breach. Zero-days keep shipping, AI is writing exploits faster than anyone patches, and “patch everything in time” stopped working years ago. Stop betting the org on winning that race. You don’t control which bug lands.…

OpenAI and CEO Sam Altman Accused of Prioritizing Profit Over Safety in Lawsuit 2026-06-03 at 19:28 By Florida has sued OpenAI and CEO Sam Altman, claiming they place the profits over safety.  This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source

Residential AI Data Centers: Security, Privacy, and Governance Concerns 2026-06-03 at 14:59 By The concept of placing mini data centers and distributed AI computer nodes inside residential homes may appear innovative from an energy efficiency perspective, but it introduces significant security concerns.  This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View…

Weedhack Attacks Minecraft Users, CountLoader Hits 86K, Miners Spread via Pirated Content 2026-06-03 at 14:59 By Cybersecurity researchers have flagged a new campaign targeting Minecraft players via YouTube to spread malware capable of gaining control of victims’ systems. The Minecraft-focused malware-as-a-service (MaaS) campaign has been codenamed Weedhack by McAfee Labs, stating the activity has been…

Unpatched Windows Search URI Vulnerability Lets Attackers Steal NTLMv2 Hashes 2026-06-03 at 13:18 By Cybersecurity researchers have disclosed details of an unpatched issue that could be exploited to disclose a user’s NTLMv2 hash to the attacker. Like in the case of CVE-2026-33829, which impacted the Windows Snipping Tool’s ms-screensketch: URI handler, the newly flagged issue…

Espionage Campaign Targeted Stock Exchange Executive for Five Months 2026-06-03 at 13:00 By Threat Hunter Team Unknown attackers stole a senior executive’s Outlook mailbox in incremental batches, exfiltrating through Dropbox and OneDrive Personal to keep the traffic indistinguishable from legitimate activity. This article is an excerpt from SECURITY.COM View Original Source

New HTTP/2 Bomb Vulnerability Allows Remote DoS on NGINX, Apache, IIS, Envoy & Cloudflare 2026-06-03 at 11:33 By Cybersecurity researchers have discovered a remote denial-of-service exploit that affects major web servers, including NGINX, Apache HTTPD, Microsoft IIS, Envoy, and Cloudflare Pingora. The vulnerability has been codenamed HTTP/2 Bomb by Calif. “The vulnerable behavior exists in…