Fake Microsoft Login Popup Campaign Uses Deceptive Browser in Browser Trick
Attackers use a fake browser popup that mimics Microsoft's OAuth login screen to steal credentials from unsuspecting users.
The Latest
Assistive AI Agents in Microsoft 365 Pose Stealth Identity Risk
Researchers found that compromised assistive AI agents in Microsoft 365 can send malicious emails using a real user's permissions, evading…
MagicAd Android Trojan Uses Translucent Overlays to Bypass Ad Permissions
MagicAd uses translucent activity windows to display ads without Android's overlay permission, and was found in over 50 apps on…
Russia Aligned Hackers Exploit WinRAR Bug to Infiltrate Ukrainian Systems
Two Russia aligned hacking groups continue to exploit a year old WinRAR vulnerability to deploy information stealing malware against Ukrainian…
Poisoned PyPI Packages Deploy Bun Runtime to Steal Developer Credentials
Attackers have poisoned 19 PyPI packages with a new variant of a known supply chain malware that downloads the Bun…
Apache HTTP Server 2.4.68 Patches 13 Flaws Including Memory Corruption and DoS
The Apache Software Foundation released version 2.4.68 of its HTTP Server on June 8, 2026, patching 13 security vulnerabilities that…
Linux Kernel Flaw Enables Container Breakout in Ongoing Attacks
CISA adds a Linux kernel privilege escalation flaw to its exploited vulnerabilities catalog, warning of active attacks targeting containerized environments.
Automated Security Agent Discovers 21 New Flaws in Widely Used Media Library
The autonomous agent found vulnerabilities spanning multiple components including the VP9 decoder and RTMP client, with one critical flaw reachable…
Malspam Campaign Abuses Google’s Ad Network to Deliver Stealthy .NET Malware
Attackers are hiding behind Google's trusted DoubleClick ad infrastructure to route victims toward a fileless malware loader that runs entirely…
Google Ships Record Breaking Chrome Security Update with 429 Fixes
Google's Chrome 149.0.7827.53 stable release contains a record 429 vulnerability fixes including 22 critical severity bugs spanning GPU, networking, and…
EDRChoker Exploits Windows QoS to Quietly Disable EDR Agents
The open source tool uses Windows' policy based quality of service to throttle EDR agent bandwidth to 8 bps, sidestepping detection methods used for traditional firewall blocking.
Linux Kernel nftables Use After Free Flaw Grants Root Access on Major Distributions
A use after free flaw in Linux kernel nftables enables local privilege escalation to root on Debian and Ubuntu systems.
Chinese Threat Group OP 512 Strikes Legacy IIS Servers With Custom Web Shell Arsenal
Researchers discovered that the attacker waited 75 days after initial access before deploying a custom web shell framework designed to…
Hackers Exploit Check Point VPN Authentication Bypass in Active Attacks
A critical authentication bypass in Check Point VPN products is being actively exploited, with attackers gaining network access without valid…
Spotlight
LiteLLM Vulnerability Actively Exploited in Attacks Leading to Full System Takeover
Attackers are chaining a LiteLLM command injection flaw with a Starlette authentication bypass to compromise AI gateway deployments without needing any credentials.
Meta Thwarts NSO Group’s Latest WhatsApp Phishing Campaign and Seeks Contempt Ruling
Meta uncovered NSO Group's attempt to bypass a permanent court order by launching a fresh phishing campaign on WhatsApp using malicious domains and test accounts.
Websites Can Now Spy on Your Apps and Browsing Activity Through SSD Timing Flaw
A new side channel technique called FROST uses browser storage APIs and SSD timing measurements to identify which other applications and websites a user has open.
Single Character Error in Linux Kernel Opens Door to Full System Takeover
A single character error in the Linux kernel's nf_tables subsystem enables unprivileged users to gain root access and escape containers, with multiple working exploits now publicly available.
Features
China-Linked Hackers Target Linux Appliances with New BSD Backdoor Variant
A Chinese cyber espionage group deployed a BSD variant of the BRICKSTORM backdoor on Linux appliances, infiltrating a victim's network…
Vishing and In Person Office Raids: How a New Threat Group Steals Corporate Data
A financially motivated threat group is using phone calls impersonating IT support and in person office visits to steal sensitive…
Apple Debuts AI Tool in iOS 27 to Automatically Replace Weak Passwords
Apple's upcoming iOS 27 update will let its AI agentically replace compromised passwords across the Passwords app and Safari, marking…
New C0XMO Botnet Variant Exploits DD-WRT Flaw and Eliminates Competing Malware
The C0XMO botnet, a new variant of Gafgyt, exploits a DD-WRT router vulnerability and actively removes competing malware from infected…
OWASP Blueprint for Securing Autonomous AI Agents in Production
The OWASP report provides security teams with a practical taxonomy and autonomy mapping framework for protecting AI agents that can…
French Government Encrypted Chat Platform Tchap Breached Via Hijacked Account
Attackers hijacked a user account to breach Tchap, the French government's encrypted messaging app, stealing over 13GB of files and…
