News

The uptime questions every engineering leader should ask this week

The uptime questions every engineering leader should ask this week 2026-06-25 at 09:30 By Mirko Zorz In this interview with Help Net Security, Mattias Geniar, CTO at Oh Dear, explains why most outages start quietly, as creeping latency or a slow rise in errors. He argues teams alert on the wrong things: absolute numbers instead […]

The uptime questions every engineering leader should ask this week Read More »

LLM security advice looks solid until you check the hard cases

LLM security advice looks solid until you check the hard cases 2026-06-25 at 09:00 By Anamarija Pogorelec Plenty of people now type their security worries straight into a chatbot. A hacked account, a suspicious email, a stalker who might be tracking a phone, all of it lands in the same window someone would use to

LLM security advice looks solid until you check the hard cases Read More »

Best practices for AI in open-source work

Best practices for AI in open-source work 2026-06-25 at 08:00 By Anamarija Pogorelec Free and open source software developers us AI coding assistants such as Claude Code, Copilot CLI, Antigravity, and OpenCode in their daily work. The Software Freedom Conservancy responded to that trend with a set of recommendations for contributors who use these tools,

Best practices for AI in open-source work Read More »

What your next cyber insurance renewal will demand

What your next cyber insurance renewal will demand 2026-06-25 at 07:30 By Help Net Security In this Help Net Security video, Michael Loewy, co-founder, Tide Foundation, explains how cyber insurance is rewriting security programs at renewal time. Insurers want more questionnaires, more evidence, and more attestations, because the market is moving from trusting your answers

What your next cyber insurance renewal will demand Read More »

Law enforcement hits StealC and Amadey malware networks

Law enforcement hits StealC and Amadey malware networks 2026-06-24 at 18:05 By Zeljka Zorz Operation Endgame, the largest international law enforcement operation aimed at disrupting ransomware and cybercrime infrastructure across the world, has claimed its latest targets: StealC and Amadey. The notice on disrupted websites (Source: Microsoft) While developed by separate criminal groups, those two

Law enforcement hits StealC and Amadey malware networks Read More »

Algerian national accused of running cybercrime marketplaces extradited to US

Algerian national accused of running cybercrime marketplaces extradited to US 2026-06-24 at 17:09 By Sinisa Markovic An Algerian national accused of running online marketplaces that sold phishing kits and fraud tools has been extradited from Spain to the United States to face bank fraud conspiracy charges. The post Algerian national accused of running cybercrime marketplaces

Algerian national accused of running cybercrime marketplaces extradited to US Read More »

Anthropic’s Claude Tag gives AI agents independent identities

Anthropic’s Claude Tag gives AI agents independent identities 2026-06-24 at 16:56 By Anamarija Pogorelec Anthropic introduced an agent identity model for Claude Tag, its AI assistant designed for team collaboration in shared workspaces. The model gives Claude its own identity, permissions, and tool access, configured by administrators and tied to a workspace or channel. Because

Anthropic’s Claude Tag gives AI agents independent identities Read More »

Phishing attack on healthcare firm Xsolis impacts 1.4 million people

Phishing attack on healthcare firm Xsolis impacts 1.4 million people 2026-06-24 at 15:00 By Sinisa Markovic Healthcare technology company Xsolis confirmed that a phishing attack resulted in unauthorized access to its network. The company develops AI-powered software for hospitals, health systems, and health plans and serves more than 600 hospitals and health insurers. “On January

Phishing attack on healthcare firm Xsolis impacts 1.4 million people Read More »

Cisco Unified CM flaw actively exploited to drop webshells (CVE-2026-20230)

Cisco Unified CM flaw actively exploited to drop webshells (CVE-2026-20230) 2026-06-24 at 14:36 By Zeljka Zorz CVE-2026-20230, a server-side request forgery (SSRF) vulnerability affecting Cisco’s Unified Communications Manager (Unified CM), is being exploited to drop webshells and achieve remote code execution capability on the underlying server. “Our honeypots are seeing automated sweeps dropping webshells, all

Cisco Unified CM flaw actively exploited to drop webshells (CVE-2026-20230) Read More »

LastPass customer data exposed through Klue supply chain attack

LastPass customer data exposed through Klue supply chain attack 2026-06-24 at 12:59 By Sinisa Markovic LastPass disclosed that attackers used OAuth tokens compromised in a supply chain attack on Klue, a market intelligence platform that integrates with CRM and sales tools across organizations, to access customer data stored in its Salesforce environment. “On June 12th

LastPass customer data exposed through Klue supply chain attack Read More »

Google Workspace expands password reset alerts to all admins

Google Workspace expands password reset alerts to all admins 2026-06-24 at 12:07 By Anamarija Pogorelec Google’s Alert Center, a dashboard in the Google Admin console that displays security and administrative alerts and helps administrators identify, investigate, and respond to issues affecting their organization, is expanding the “Super Admin password reset” alert into the “Admin password

Google Workspace expands password reset alerts to all admins Read More »

Cybersecurity jobs available right now: June 24, 2026

Cybersecurity jobs available right now: June 24, 2026 2026-06-24 at 07:00 By Anamarija Pogorelec Application Security Leader DriveNets | Israel | Hybrid – View job details As an Application Security Leader, you will define security requirements, drive secure coding practices, oversee vulnerability management, and integrate security testing and automation into development pipelines. You will establish

Cybersecurity jobs available right now: June 24, 2026 Read More »

What the Fortibleed campaign means for organizations running FortiGate firewalls

What the Fortibleed campaign means for organizations running FortiGate firewalls 2026-06-23 at 17:46 By Zeljka Zorz A massive credential-harvesting campaign targeting FortiGate firewalls has exposed thousands of organizations to potential network compromise, and a trove of attacker tools, scripts, and credentials left inadvertently exposed on a server has given researchers an unusually detailed look at

What the Fortibleed campaign means for organizations running FortiGate firewalls Read More »

Monitoring Agents and SaaS AI Platforms with Microsoft Agent 365 [Part 1]

Monitoring Agents and SaaS AI Platforms with Microsoft Agent 365 [Part 1] 2026-06-23 at 17:00 By Agent usage is exploding and in Microsoft 365, agents aren’t monitored by default. Even though it’s early days for tools that can monitor agents, Microsoft’s newly released Agent 365 evolves this new category with some powerful capabilities. This article

Monitoring Agents and SaaS AI Platforms with Microsoft Agent 365 [Part 1] Read More »

Using Reddit to manipulate AI search results is surprisingly easy

Using Reddit to manipulate AI search results is surprisingly easy 2026-06-23 at 16:27 By Sinisa Markovic A Reddit comment that takes only a few seconds to write can end up influencing the answers generated by AI research tools. A Cornell Tech study found that a short snippet of user-generated text, sometimes as little as 13

Using Reddit to manipulate AI search results is surprisingly easy Read More »

GTA 6 early access offers are taking gamers’ crypto

GTA 6 early access offers are taking gamers’ crypto 2026-06-23 at 13:31 By Mirko Zorz Scam websites are circulating across the internet with a pitch aimed at millions of gamers: a way to play Grand Theft Auto VI before its release. The pages promise early access for a few hundred dollars in cryptocurrency, ask buyers

GTA 6 early access offers are taking gamers’ crypto Read More »

Two Scattered Spider hackers plead guilty over Transport for London cyberattack

Two Scattered Spider hackers plead guilty over Transport for London cyberattack 2026-06-23 at 12:59 By Sinisa Markovic Two members of the notorious hacker group Scattered Spider have pleaded guilty to charges related to a 2024 cyberattack on Transport for London (TfL) that resulted in £29 million in loss and recovery costs. Thalha Jubair, 20, from

Two Scattered Spider hackers plead guilty over Transport for London cyberattack Read More »

Phishing hides in routine Microsoft 365 workflows

Phishing hides in routine Microsoft 365 workflows 2026-06-23 at 11:26 By Sinisa Markovic Attackers are abusing Outlook Groups and Microsoft 365 collaboration features to make phishing campaigns appear routine, according to Fortra. “The technique shifts malicious intent away from a single phishing email into a trusted productivity workflow. A user may see what looks like

Phishing hides in routine Microsoft 365 workflows Read More »

A $1,400 experiment in AI security auditing outperformed OpenAI’s Codex Security

A $1,400 experiment in AI security auditing outperformed OpenAI’s Codex Security 2026-06-23 at 08:30 By Mirko Zorz A research team has built a system that teaches AI agents to hunt for software bugs by writing the audit method down as plain text. The system, called EVOHUNT, keeps the underlying AI model fixed and improves only

A $1,400 experiment in AI security auditing outperformed OpenAI’s Codex Security Read More »

Scroll to Top