AttackFeed — Cybersecurity News Aggregator

Cybersecurity news from across the internet

Provided byWagner Cybersecurity LLC20+ years in cybersecurity

LIVE

1,166articles

updated about 1 hour ago

Attack625 Gov96 Vulnerability374 Privacy71 Fraud0

All Feeds Attack & News Gov Alerts / ISAC Vulnerability Alerts Privacy & Governance Fraud & Scams

Latest

Attack & NewsSecurityWeek

NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks

By default, npm install will no longer execute scripts from dependencies, unless explicitly allowed. The post NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks appeared first on SecurityWeek.

about 2 hours agoRead more

Latest

NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks

Recent Articles

Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication

Latest

NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks

Recent Articles

Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication

Extradited Ukrainian Man Admits Role in Conti Ransomware Attacks

Chinese hackers hijack auth flow, spy on isolated network for a decade

The FCC Wants to Kill Burner Phones

US Gov asks Anthropic to ban 'foreign national' access to Fable, Mythos

Anthropic Says It Has Taken Its Latest AI Models Offline to Comply With New Export Controls

U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals

Victory! 702 has Expired!

NanoClaw now armed with JFrog for safer packages

Tracing Digital Intent: New MacOS Tahoe 26 Artifact Discovered

FBI takes down massive China-based cybercrime network that caused $1.9B in losses

Why Use App-Level Auth When Every Database Has Auth? (Splunk Enterprise CVE-2026-20253 Pre-Auth RCE)

Maine disables data breach notification portal after fake disclosures

Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit

400+ Arch Linux AUR Packages Hijacked to Install Rust Credential Stealer

Google Sues Chinese Smishing Network Accused of Using Gemini AI in Phishing

Fired IT worker jailed for 21 months after sabotaging old school district

US, France, and Italian authorities shut down massive deepfake porn site

phpBB forum fixes auth bypass bug lurking for a decade

China-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decade

Atomic Arch Campaign Hijacks 20+ Linux AUR Packages to Deliver Malware

Ukrainian national pleads guilty to role in Conti ransomware operation

Conti ransomware group member pleads guilty, faces up to 20 years in prison

Over 400 Arch Linux packages compromised to push rootkit, infostealer

In Other News: Google Security Layoffs, AudiA6 Takedown, $400 Million Coupang Fine

ShinyHunters is actively extorting universities after exploiting an unpatched Oracle flaw

Security Experts Discuss Validity of Handala’s Cal Water Hacking Claim

Security Experts Discuss the Claude Fable 5 Launch

ShinyHunters Target Universities in Oracle PeopleSoft Zero-Day Attack

Early Warning Signs of Supply-Chain Attacks Live in the Dark Web

Ransomware Payment Crypto Laundering Platform Taken Out by FBI and Europol

Novo Nordisk reports cyberattack as UK gives Wegovy pill the nod

The SpaceX Pre-IPO Market: How Crypto Rails Are Opening Synthetic Access

Microsoft has mostly repaired a flaw in Surface hardware that allowed unprotected devices to be bricked by a single packet

GitHub to Update npm to Thwart Software Supply Chain Attacks

Industry Reactions to Claude Fable 5: Feedback Friday

Google fires sueball at alleged Chinese phishers over AI-powered fraud ops

Agentjacking Attack Tricks AI Coding Agents Into Running Malicious Code

CISA Adds One Known Exploited Vulnerability to Catalog

Attack & News

NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks

Extradited Ukrainian Man Admits Role in Conti Ransomware Attacks

Chinese hackers hijack auth flow, spy on isolated network for a decade

Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication

The FCC Wants to Kill Burner Phones

Gov Alerts / ISAC

CISA Adds One Known Exploited Vulnerability to Catalog

Vulnerability Alerts

Tracing Digital Intent: New MacOS Tahoe 26 Artifact Discovered

Privacy & Governance

Victory! 702 has Expired!

Yes to California's Bill to Ban Surveillance Pricing

Feed Activity

A Vulnerability in Oracle PeopleSoft PeopleTools Could Allow for Remote Code Execution

CISA Adds One Known Exploited Vulnerability to Catalog

CISA Issues New Directive Improving How Federal Agencies Prioritize the Mitigation of Cyber Vulnerabilities

Critical Patches Issued for Microsoft Products, June 9, 2026

Why Use App-Level Auth When Every Database Has Auth? (Splunk Enterprise CVE-2026-20253 Pre-Auth RCE)

Marking Your Own Homework (Check Point Remote Access VPN IKEv1 Authentication Bypass CVE-2026-50751)

ShinyHunters Targets Education Sector with Oracle PeopleSoft Exploit

From SQLi to RCE – Exploiting LangGraph’s Checkpointer

‘News’ Site Keeps Hallucinating EFF Staffers

LGBT Q&A: We’re Back With Season 2!

Congress Just Rushed Through a Disastrous Copyright Office Overhaul