AttackFeed — Cybersecurity News Aggregator

Cybersecurity news from across the internet

Provided byWagner Cybersecurity LLC20+ years in cybersecurity

LIVE

2,016articles

updated about 3 hours ago

Attack1,116 Gov141 Vulnerability512 Privacy120 Fraud127

All Feeds Attack & News Gov Alerts / ISAC Vulnerability Alerts Privacy & Governance Fraud & Scams

Latest

Attack & NewshighBleeping Computer

Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with running a seemingly benign GitHub repository could execute a malicious payload that is invisible to both security agents and human reviewers. [...]

about 3 hours agoRead more

Latest

Clean GitHub repo tricks AI coding agents into running malware

Recent Articles

CISA sets urgent deadline to fix Cisco flaw exploited in attacks

Latest

Clean GitHub repo tricks AI coding agents into running malware

Recent Articles

CISA sets urgent deadline to fix Cisco flaw exploited in attacks

OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber Safeguards

Chinese Framework Powers 200,000 Scam Sites

Security News This Week: LastPass Users Had Their Data Stolen—Again

It's looking like a hot, messy summer for security teams as AI finds countless previously hidden vulns

FBI: Russian hackers now target Signal backup recovery keys

8 Top SAST Tools for Polyglot Monorepos and Platform Engineering in 2026

Even the Secret Service won't use company-issued phones

The Chinese Control the Majority of Argentina’s Squid Fleet

FBI Warns Russian Intelligence Hackers Target Signal Backup Recovery Keys

Woodgnat Hackers Use Mistic RAT to Broker Access for Ransomware Gangs

ATF cancels controversial commercial geolocation contract

New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks

Polymarket customers lose $3 million in supply-chain attack

Cybersecurity firms targeted by fraudulent OpenAI organization invites

Meta Is Testing Facial Recognition for Police and Military

The Pentagon Is Looking Into the Dialog Data Exposure for Unmasking National Security Officials

Russian Intelligence Services Continue to Target Commercial Messaging Applications

Chinese-Speaking APT Deploys New TinyRCT Backdoor in Southeast Asia Campaign

EFF to Grindr: This Pride Month, Put Safety and Privacy Over Profits

Hate “The Algorithm?” RSS Is One of the Tools You’ve Been Looking For

Amazon Q flaw let booby-trapped Git repos execute code, swipe cloud creds

Security Leaders Discuss Texas Hunting, Fishing License Data Breach

Amazon Q Flaw Enabled Cloud Credential Theft via Malicious Repositories

Lawmakers Must Act Now to Prevent Armed Police Drones

We Can Still Stop California’s 3D Printer Surveillance Scheme

More Klue Breach Victims Identified as Hackers Get Hacked

In Other News: Chinese Mythos-Like AI, Tata Electronics Breach, Snyk Layoffs

Your First GRC Agent: A Red Teamer's Walkthrough

Amazon Q Developer Flaw Could Let Malicious Repos Run Code via MCP Configs

New Linux pedit COW Exploit Enables Root Access by Poisoning Cached Binaries

FTC Report: Americans Lost $3.5 Billion to Imposter Scams Last Year

Malware steals Chrome session cookies to take over your accounts

macOS Flaw Allowed Standard Users to Disable CrowdStrike and Kandji Security Tools

Nebulock Raises $25 Million for AI-Native Contextual Security

CISA Adds Exploited PTC Windchill RCE Flaw to KEV as Web Shell Attacks Continue

Miasma campaign poisons 20-plus npm packages, hunts for developer secrets

New DirtyClone Linux Kernel Flaw Lets Local Users Gain Root via Cloned Packets

Guardian Agents: The Next Layer of Identity Governance

Attack & News

Clean GitHub repo tricks AI coding agents into running malware

OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber Safeguards

Chinese Framework Powers 200,000 Scam Sites

Security News This Week: LastPass Users Had Their Data Stolen—Again

It's looking like a hot, messy summer for security teams as AI finds countless previously hidden vulns

Gov Alerts / ISAC

Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution

Vulnerability Alerts

Photo ZIP campaign targeting hospitality industry delivers Node.js implant for persistent access

Privacy & Governance

The Chinese Control the Majority of Argentina’s Squid Fleet

Meta Is Testing Facial Recognition for Police and Military

Fraud & Scams

Russian Intelligence Services Continue to Target Commercial Messaging Applications

FTC Report: Americans Lost $3.5 Billion to Imposter Scams Last Year

Feed Activity

CISA Adds Two Known Exploited Vulnerabilities to Catalog

What do Ports Hear When Nobody's Listening&#x3f; An Assessment of Automated Cybercrime &#x5b;Guest Diary&#x5d;, (Wed, Jun 24th)

New CISA Guide Assists Federal Agencies with Transitioning to Modernized Zero Trust Architectures

Advancing Product Security: New IoT Guidance and New Engagement

CL-STA-1062 Targets Southeast Asian Governments and Critical Infrastructure

Microsoft a Leader in The Forrester Wave™ for Endpoint Management Platforms

Where Expertise Meets Algorithm: The Insikt Group® Intelligence Edge

Evaluating Mexico’s New Cybersecurity Plan

EFF to Grindr: This Pride Month, Put Safety and Privacy Over Profits

Hate “The Algorithm?” RSS Is One of the Tools You’ve Been Looking For

Lawmakers Must Act Now to Prevent Armed Police Drones

Malware steals Chrome session cookies to take over your accounts

Report: Device Code Phishing is Surging

Beware of &#8220;Parcel Expert&#8221; job offers: They&#8217;re parcel mule scams

What do Ports Hear When Nobody's Listening? An Assessment of Automated Cybercrime [Guest Diary], (Wed, Jun 24th)

Beware of “Parcel Expert” job offers: They’re parcel mule scams