Cybersecurity news from across the internet
Cybersecurity news from across the internet

ActiveState explains how GitHub Actions attack chains can evade traditional CI security scanners, why passing a scan doesn't guarantee a secure pipeline, and how organizations can better govern their CI/CD workflows. [..…

Group-IB analysis argued Scattered Spider is a decentralized collective of independent clusters






OPNsense XPATH Injection (CVE-2026-53582)
SCHUTZWERK-SA-2025-001: Authentication Bypass for SafeLine SL6 and SL6+
[webapps] Discuz! X5.0 - Authentication Bypass
[webapps] Tenable Nessus 10.12.1 - SQL Injection
ISC Stormcast For Tuesday, July 7th, 2026 https://isc.sans.edu/podcastdetail/9996, (Tue, Jul 7th)
VU#213560: Tenda firmware (multiple versions) contains hidden authentication backdoor
VU#828543: HP Deskjet 2800 Printer Series Webservers contain Missing Authorization Vulnerability
RCS and DNS: The NAPTR Record, (Mon, Jul 6th)
Fake Netflix, Coca-Cola, and FIFA job scams target marketers
2026 Phishing by Industry Benchmarking Report: Findings on Human Risk
FTC Sends More Than $2.7 Million to Consumers Harmed by Handy Technologies
Claude Code’s hidden tracker was an “experiment,” says Anthropic