News

Phishing hides in routine Microsoft 365 workflows

Phishing hides in routine Microsoft 365 workflows 2026-06-23 at 11:26 By Sinisa Markovic Attackers are abusing Outlook Groups and Microsoft 365 collaboration features to make phishing campaigns appear routine, according to Fortra. “The technique shifts malicious intent away from a single phishing email into a trusted productivity workflow. A user may see what looks like […]

Phishing hides in routine Microsoft 365 workflows Read More »

A $1,400 experiment in AI security auditing outperformed OpenAI’s Codex Security

A $1,400 experiment in AI security auditing outperformed OpenAI’s Codex Security 2026-06-23 at 08:30 By Mirko Zorz A research team has built a system that teaches AI agents to hunt for software bugs by writing the audit method down as plain text. The system, called EVOHUNT, keeps the underlying AI model fixed and improves only

A $1,400 experiment in AI security auditing outperformed OpenAI’s Codex Security Read More »

Residential proxy SDKs are hiding in LG and Samsung smart TV apps

Residential proxy SDKs are hiding in LG and Samsung smart TV apps 2026-06-23 at 08:08 By Anamarija Pogorelec Smart TVs in living rooms run small apps that show fish tanks, clocks, solitaire games, and slideshows of puppies. A share of those apps can also send other people’s internet traffic out through the home connection. Spur

Residential proxy SDKs are hiding in LG and Samsung smart TV apps Read More »

Free, no-signup World Cup streams serve scams instead of football

Free, no-signup World Cup streams serve scams instead of football 2026-06-23 at 07:30 By Sinisa Markovic Researchers at Malwarebytes identified dozens of websites claiming to offer free access to FIFA World Cup matches. Instead of streaming games, the sites directed visitors through a chain of advertising pages designed to generate revenue for their operators. Fake

Free, no-signup World Cup streams serve scams instead of football Read More »

Only 7% of companies are ready for the AI agents they deployed

Only 7% of companies are ready for the AI agents they deployed 2026-06-23 at 07:00 By Anamarija Pogorelec Most organizations now run or pilot AI agents that operate on company data with limited human direction at each step, a share that reaches 88% in Veeam Software’s Data and AI Trust Gap report. The systems that

Only 7% of companies are ready for the AI agents they deployed Read More »

23 ClawHub plugins squatting official scopes expose AI registry security gaps

23 ClawHub plugins squatting official scopes expose AI registry security gaps 2026-06-22 at 11:00 By Help Net Security Plugin registries for AI agents use npm-style scopes like @openclaw/ and @clawhub/ to signal who published a package. But on ClawHub, a registry whose plugins run with Claude, OpenClaw, and other agents, those official scopes weren’t reserved

23 ClawHub plugins squatting official scopes expose AI registry security gaps Read More »

Who pays when you gate cyber-capable AI models?

Who pays when you gate cyber-capable AI models? 2026-06-22 at 09:00 By Mirko Zorz In this interview with Help Net Security, Jaya Baloo, COO & CISO at Aisle, examines the debate over restricting access to cyber-capable AI models. She lays out the strongest argument for gating these tools, then explains where it breaks down for

Who pays when you gate cyber-capable AI models? Read More »

Agent Beacon: Open-source telemetry layer for AI agents

Agent Beacon: Open-source telemetry layer for AI agents 2026-06-22 at 08:30 By Mirko Zorz AI coding agents such as Claude Code, Codex CLI, Cursor, and Claude Cowork run on developer laptops, CI jobs, cloud environments, where they edit files, run commands, and call outside tools. Beacon, an open-source project from Asymptote Labs, configures telemetry for

Agent Beacon: Open-source telemetry layer for AI agents Read More »

Encrypted DNS still tells an eavesdropper where to look

Encrypted DNS still tells an eavesdropper where to look 2026-06-22 at 08:00 By Mirko Zorz Encrypted DNS runs across much of the Internet. DNS over TLS, HTTPS, and QUIC keep the contents of a query away from anyone watching a network link. The encryption covers the message inside each packet. The packet still carries plaintext

Encrypted DNS still tells an eavesdropper where to look Read More »

Product showcase: Avira Security for iOS blends security, privacy, and device optimization

Product showcase: Avira Security for iOS blends security, privacy, and device optimization 2026-06-22 at 07:30 By Anamarija Pogorelec Avira Mobile Security for iOS combines security, privacy, and device optimization tools in a single application. The app is also available for Android, macOS, and Windows devices. After downloading the application from the App Store users are

Product showcase: Avira Security for iOS blends security, privacy, and device optimization Read More »

The systemd 261 release brings a software TPM, new OS installer

The systemd 261 release brings a software TPM, new OS installer 2026-06-22 at 01:30 By Anamarija Pogorelec Linux distributions that ship systemd as their init system now have a new version to track. The systemd 261 update adds a cloud metadata subsystem, carries process state through kexec reboots, and continues a long-running effort to load

The systemd 261 release brings a software TPM, new OS installer Read More »

Week in review: 74k Fortinet firewall credentials stolen, Splunk Enterprise RCE under active attack

Week in review: 74k Fortinet firewall credentials stolen, Splunk Enterprise RCE under active attack 2026-06-21 at 11:00 By Help Net Security Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: A hardware neural network backdoor that hides in plain sight Deep learning systems on edge devices often rely on

Week in review: 74k Fortinet firewall credentials stolen, Splunk Enterprise RCE under active attack Read More »

Klue breach lead to Salesforce data theft, Huntress affected

Klue breach lead to Salesforce data theft, Huntress affected 2026-06-19 at 15:57 By Zeljka Zorz Cybersecurity vendor Huntress was among multiple companies hit by a breach originating at Klue, a market intelligence platform used to integrate CRM and sales data across various business tools. Huntress published a detailed account of the incident on June 18,

Klue breach lead to Salesforce data theft, Huntress affected Read More »

Cybercriminals abused GitHub, YouTube and VirusTotal to push crypto-stealing malware

Cybercriminals abused GitHub, YouTube and VirusTotal to push crypto-stealing malware 2026-06-19 at 15:11 By Sinisa Markovic A cryptocurrency-stealing malware campaign used inflated GitHub activity, software reviews, YouTube tutorials and favorable VirusTotal comments to make malicious trading and gambling tools appear trustworthy, Check Point researchers found. According to the researchers, the attackers packaged the malware as

Cybercriminals abused GitHub, YouTube and VirusTotal to push crypto-stealing malware Read More »

Unauthenticated RCE in Splunk Enterprise under active attack (CVE-2026-20253)

Unauthenticated RCE in Splunk Enterprise under active attack (CVE-2026-20253) 2026-06-19 at 13:50 By Zeljka Zorz CISA has added CVE-2026-20253, a critical, remotely exploitable vulnerability in Splunk Enterprise, to its Known Exploited Vulnerabilities catalog, and ordered US federal civilian agencies to apply mitigations by June 21, 2026. In-the-wild exploitation has also been confirmed by the vendor

Unauthenticated RCE in Splunk Enterprise under active attack (CVE-2026-20253) Read More »

Forget traffic lights, Google’s reCAPTCHA may ask for hand gestures

Forget traffic lights, Google’s reCAPTCHA may ask for hand gestures 2026-06-19 at 13:46 By Anamarija Pogorelec Google has introduced hand gesture verification for reCAPTCHA, a new method for verifying that a user is human. Google’s reCAPTCHA is part of Google Cloud Fraud Defense, a fraud and abuse prevention platform for bot, account, and transaction protection.

Forget traffic lights, Google’s reCAPTCHA may ask for hand gestures Read More »

Mastodon 4.6 adds profile Collections and two-factor controls

Mastodon 4.6 adds profile Collections and two-factor controls 2026-06-19 at 12:54 By Anamarija Pogorelec People who run accounts on the open source social network Mastodon can now group profiles together and share those groups across the web. The 4.6 release centers on a feature called Collections, along with reworked profiles, email newsletters, server administration controls,

Mastodon 4.6 adds profile Collections and two-factor controls Read More »

Google sets timeline for Android developer verification enforcement

Google sets timeline for Android developer verification enforcement 2026-06-19 at 12:10 By Anamarija Pogorelec Android’s developer verification protections will take effect on September 30, 2026, starting with users in Brazil, Indonesia, Singapore, and Thailand. Developers distributing apps through participating stores in those markets must complete the verification process by the deadline. Google Play, HONOR App

Google sets timeline for Android developer verification enforcement Read More »

Your browser tab could become encrypted storage for someone else’s files

Your browser tab could become encrypted storage for someone else’s files 2026-06-19 at 08:30 By Mirko Zorz Decentralized storage networks already hand pieces of people’s data to strangers’ machines. The lasting question across these networks is whether the machine holding the data can read it. A research paper by Gregory Magarshak, a professor at IENYC,

Your browser tab could become encrypted storage for someone else’s files Read More »

Law enforcement hits SocGholish: 106 servers down, 15,000 sites cleaned

Law enforcement hits SocGholish: 106 servers down, 15,000 sites cleaned 2026-06-18 at 17:21 By Zeljka Zorz SocGholish, an operation that’s been delivering malware to users via fake software updates, has suffered a major blow: the international law enforcement coalition behind Operation Endgame has taken down 106 of its servers and domains, and cleaned up nearly

Law enforcement hits SocGholish: 106 servers down, 15,000 sites cleaned Read More »

Scroll to Top