Uncategorized

Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government Attacks

Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government Attacks 2026-06-29 at 20:48 By The China-aligned espionage group Mustang Panda is running two campaigns against the Indian government and hydropower targets, deploying new malware and turning a legitimate cloud service into its command channel. Acronis Threat Research Unit found active compromises inside Indian government networks, including […]

Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government Attacks Read More »

WhatsApp is Finally Getting Usernames to Help Keep Phone Numbers Private

WhatsApp is Finally Getting Usernames to Help Keep Phone Numbers Private 2026-06-29 at 20:48 By WhatsApp on Monday officially announced the start of global reservations of usernames with an aim to protect the privacy of more than three billion users on the messaging platform. The optional feature is designed to help users connect with someone

WhatsApp is Finally Getting Usernames to Help Keep Phone Numbers Private Read More »

⚡ Weekly Recap: Linux Kernel Flaws, AI Malware Tricks, Turla Backdoor, Infostealers and More

⚡ Weekly Recap: Linux Kernel Flaws, AI Malware Tricks, Turla Backdoor, Infostealers and More 2026-06-29 at 17:41 By This week was a reminder that attackers do not always need big tricks. One small mistake, one old access path, one missed patch, and suddenly the door is open. The noise is not all noise, either. Forums

⚡ Weekly Recap: Linux Kernel Flaws, AI Malware Tricks, Turla Backdoor, Infostealers and More Read More »

236,000 DCloud Uni-App Sites Used in Crypto Scams, Phishing, and Wallet Drainers

236,000 DCloud Uni-App Sites Used in Crypto Scams, Phishing, and Wallet Drainers 2026-06-29 at 16:36 By New findings unearthed by Infoblox show that more than 236,000 websites are using investment scam templates built using a legitimate Chinese open-source, cross-platform application development framework called DCloud Uni-App. The templates power bogus cryptocurrency exchanges, multi-language pig-butchering operations, WhatsApp

236,000 DCloud Uni-App Sites Used in Crypto Scams, Phishing, and Wallet Drainers Read More »

Why Post-Quantum Cryptography Starts With Credentials

Why Post-Quantum Cryptography Starts With Credentials 2026-06-29 at 14:42 By Today’s encrypted data, such as credentials, may no longer remain confidential in the future because the public-key cryptography protecting it will soon be broken by quantum computers. Although no machine today can break elliptic curve cryptography or RSA, quantum hardware is advancing rapidly and will

Why Post-Quantum Cryptography Starts With Credentials Read More »

Gamaredon Expands Ukraine Attacks with New Malware and Cloud Service Abuse

Gamaredon Expands Ukraine Attacks with New Malware and Cloud Service Abuse 2026-06-29 at 14:40 By A Russian advanced persistent threat (APT) group has continued to evolve and expand its malware arsenal as part of its ongoing cyber onslaught against Ukraine throughout 2025. Slovakian cybersecurity company ESET said it observed 35 distinct spear-phishing campaigns mounted by

Gamaredon Expands Ukraine Attacks with New Malware and Cloud Service Abuse Read More »

Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw

Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw 2026-06-29 at 12:56 By A public proof-of-concept is now out for CVE-2026-55200, a critical flaw in libssh2 that lets a malicious or compromised SSH server trigger memory corruption on a connecting client, with possible code execution. No credentials, no user interaction. The bug affects every

Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw Read More »

Microsoft Removes 119 Edge Extensions That Hid Malware in Images and Fonts

Microsoft Removes 119 Edge Extensions That Hid Malware in Images and Fonts 2026-06-29 at 11:32 By Microsoft has shut down a long-running malicious extension operation on the Edge Add-ons store that hid its payloads inside ordinary image and font files, then woke up days after install to steal credentials and run ad fraud. The company

Microsoft Removes 119 Edge Extensions That Hid Malware in Images and Fonts Read More »

Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer

Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer 2026-06-29 at 10:31 By Cybersecurity researchers have uncovered two hijacked npm packages and a cluster of Go packages that are designed to deploy a Python-based information stealer on compromised Windows, Linux, and macOS hosts. “This attack avoids the most common npm execution

Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer Read More »

Ukraine Says Russian Intelligence Used Fake Support Texts to Steal Messaging Credentials

Ukraine Says Russian Intelligence Used Fake Support Texts to Steal Messaging Credentials 2026-06-27 at 20:27 By The Security Service of Ukraine (SSU) said it, together with the U.S. Federal Bureau of Investigation (FBI), uncovered a long-running campaign orchestrated by Russian intelligence services to break into the messaging accounts of government officials, military personnel, politicians, and

Ukraine Says Russian Intelligence Used Fake Support Texts to Steal Messaging Credentials Read More »

US allows Anthropic to release Mythos AI to ‘trusted’ US organizations

US allows Anthropic to release Mythos AI to ‘trusted’ US organizations 2026-06-27 at 19:17 By Reuters Anthropic’s powerful AI model, Mythos 5, gets government go-ahead for “trusted” US organizations after a two-week ban. This article is an excerpt from Latest Technology News | New York Post View Original Source

US allows Anthropic to release Mythos AI to ‘trusted’ US organizations Read More »

OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber Safeguards

OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber Safeguards 2026-06-27 at 15:19 By OpenAI on Friday released three versions of GPT-5.6, called Sol, Terra, and Luna, as a limited preview to a small number of companies as part of an ongoing engagement with the U.S. government. While Sol is the latest flagship model

OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber Safeguards Read More »

FBI Warns Russian Intelligence Hackers Target Signal Backup Recovery Keys

FBI Warns Russian Intelligence Hackers Target Signal Backup Recovery Keys 2026-06-26 at 22:38 By The FBI and CISA have updated their March warning about Russian intelligence phishing Signal accounts, and the operators have added a step: they now coax targets into handing over their Signal Backup Recovery Key. Hand it over once, and the attacker can restore

FBI Warns Russian Intelligence Hackers Target Signal Backup Recovery Keys Read More »

New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks

New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks 2026-06-26 at 21:17 By A newly discovered cyber attack campaign has been observed delivering a previously undocumented malware family called SharkLoader that acts as a loader for deploying Cobalt Strike Beacon on compromised hosts. Kaspersky, which is tracking the activity under the moniker StrikeShark, said the

New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks Read More »

Mom gets groundbreaking mastectomy from a $2M robot named Carol — and went to the beach with a tiny scar weeks later

Mom gets groundbreaking mastectomy from a $2M robot named Carol — and went to the beach with a tiny scar weeks later 2026-06-26 at 20:26 By Allie Yang The robot was cleared by the FDA a few months ago to perform the delicate surgery that avoids skin and preserves the nipple. This article is an

Mom gets groundbreaking mastectomy from a $2M robot named Carol — and went to the beach with a tiny scar weeks later Read More »

Chinese-Speaking APT Deploys New TinyRCT Backdoor in Southeast Asia Campaign

Chinese-Speaking APT Deploys New TinyRCT Backdoor in Southeast Asia Campaign 2026-06-26 at 19:21 By A Chinese-speaking advanced persistent threat (APT) actor has been linked to a new custom backdoor called TinyRCT as part of cyber attacks aimed at government entities and critical infrastructure in Southeast Asia. The activity, particularly aimed at state-owned enterprises in the

Chinese-Speaking APT Deploys New TinyRCT Backdoor in Southeast Asia Campaign Read More »

Security Leaders Discuss Texas Hunting, Fishing License Data Breach

Security Leaders Discuss Texas Hunting, Fishing License Data Breach 2026-06-26 at 18:30 By The Texas Parks and Wildlife Department reported that the personal information of more than three million Texas hunting and fishing license customers may have been affected by a recent data breech. This article is an excerpt from Subscribe to Security Magazine’s RSS

Security Leaders Discuss Texas Hunting, Fishing License Data Breach Read More »

🎙️SECURITY.COM The Podcast: The Parasite in the Machine: Unmasking the Speagle Infostealer

🎙️SECURITY.COM The Podcast: The Parasite in the Machine: Unmasking the Speagle Infostealer 2026-06-26 at 17:30 By Enterprise Security Group Innocuous error reports, hypersonic targets, and a mystery with no fingerprints This article is an excerpt from SECURITY.COM View Original Source

🎙️SECURITY.COM The Podcast: The Parasite in the Machine: Unmasking the Speagle Infostealer Read More »

New Linux pedit COW Exploit Enables Root Access by Poisoning Cached Binaries

New Linux pedit COW Exploit Enables Root Access by Poisoning Cached Binaries 2026-06-26 at 16:57 By A flaw in the Linux kernel’s traffic-control subsystem can let a local unprivileged user gain root on affected systems. CVE-2026-46331, nicknamed “pedit COW,” is an out-of-bounds write in the packet-editing action (act_pedit) that corrupts shared page-cache memory. A public, working

New Linux pedit COW Exploit Enables Root Access by Poisoning Cached Binaries Read More »

Scroll to Top