Cybersecurity News from Across the Internet
Veeam has released security patches to address a critical flaw in its Backup & Replication software that could result in remote code execution. Tracked as CVE-2026-44963, the vulnerability carries a CVSS score of 9.4 out of a maximum of 10.0. “A vulnerability allowing remote code execution (RCE) on the Backup Server by an authenticated domain … Read More “Veeam Backup & Replication RCE Flaw Lets Domain Users Run Remote Code – The Hacker News” »
Meta on Tuesday announced that it will use information shared by other businesses to personalize users’ feed and responses from its artificial intelligence (AI) chatbot, expanding its scope beyond targeted ads. “Businesses often share information about people’s activity on their sites with us to make ads more relevant,” Meta said in a statement. “We already … Read More “Meta to Use Off-Site Business Data for Feed and AI Personalization – The Hacker News” »
Network Log Analysis helps teams turn raw logs into useful alerts, timelines, audit records, and incident evidence instead of storing data without action. – Read More – Hackread – Cybersecurity News, Data Breaches, AI and More
I’ve made it through Pwn2Own Berlin, had a little vacation, and now I’m back for Patch Tuesday. Microsoft and Adobe didn’t disappoint. In fact, they have heralded my return with the largest Patch Tuesday release ever. Thanks? Take a break from your regularly scheduled activities and let’s take a look at the latest security patches … Read More “The June 2026 Security Update Review – Zero Day Initiative – Blog” »
The Cybersecurity and Infrastructure Agency wants to fundamentally reevaluate how it prioritizes risks and vulnerabilities, both for privately-owned critical infrastructure and within the federal government, acting director Nick Andersen said Tuesday. The plans include a binding operational directive for federal agencies set to be published Wednesday and getting more specific with critical infrastructure owners and … Read More “CISA is rethinking how it prioritizes risks and vulnerabilities for feds, private sector – CyberScoop” »
The Cybersecurity and Infrastructure Agency wants to fundamentally reevaluate how it prioritizes risks and vulnerabilities, both for privately-owned critical infrastructure and within the federal government, acting director Nick Andersen said Tuesday. The plans include a binding operational directive for federal agencies set to be published Wednesday and getting more specific with critical infrastructure owners and … Read More “CISA is rethinking how it prioritizes risks and vulnerabilities for feds, private sector – CyberScoop” »
Microsoft on Monday confirmed that it temporarily removed some GitHub repositories in response to a recent security incident that led to 73 of its open-source projects being compromised to inject an information stealer into the code. “Our priority is to protect customers and the broader ecosystem,” a Microsoft spokesperson told The Hacker News via email. … Read More “Microsoft Restores Some GitHub Repos, Keeps Others Offline as Miasma Probe Continues – The Hacker News” »
Microsoft on Monday confirmed that it temporarily removed some GitHub repositories in response to a recent security incident that led to 73 of its open-source projects being compromised to inject an information stealer into the code. “Our priority is to protect customers and the broader ecosystem,” a Microsoft spokesperson told The Hacker News via email. … Read More “Microsoft Restores Some GitHub Repos, Keeps Others Offline as Miasma Probe Continues – The Hacker News” »
Electronic signature security starts before the first document is sent. A company needs to know how files are… – Read More – Hackread – Cybersecurity News, Data Breaches, AI and More
Electronic signature security starts before the first document is sent. A company needs to know how files are… – Read More – Hackread – Cybersecurity News, Data Breaches, AI and More
Earlier this year, Anthropic executives said that their new AI model, Claude Mythos, had such powerful capabilities for harm that they would not release it publicly. On Tuesday, the company said it was making an altered version of Mythos available to the public, promising “new guardrails” that thwart the model’s best-in-class performance in hacking and … Read More “Anthropic’s new model is Mythos on a leash – CyberScoop” »
Earlier this year, Anthropic executives said that their new AI model, Claude Mythos, had such powerful capabilities for harm that they would not release it publicly. On Tuesday, the company said it was making an altered version of Mythos available to the public, promising “new guardrails” that thwart the model’s best-in-class performance in hacking and … Read More “Anthropic’s new model is Mythos on a leash – CyberScoop” »
Tech company says it ‘caught and disrupted’ NSO Group’s attempts to access accounts in Jordan and Lebanon A spyware firm has been targeting WhatsApp users with malicious links in contravention of a US court order forbidding it from doing so, Meta has said. In a post, Meta said WhatsApp had “caught and disrupted spear phishing … Read More “Spyware firm targeted WhatsApp users in defiance of US court order, Meta says – Data and computer security | The Guardian” »
Checkmarx report warns that business pressure is among the reason security leaders let security compliance slip – Read More –
Most dev teams use AI coding assistants but only 30% have full governance in place – Read More –
Cisco customers are confronting yet another actively exploited zero-day vulnerability affecting the vendor’s SD-WAN management software, reinforcing pressure on organizations that have experienced rare breaks from active threats this year. The vulnerability — CVE-2026-20245 — marks the seventh actively exploited zero-day in Cisco SD-WANs this year. Cisco said it first became aware of active exploitation … Read More “Cisco customers encounter another SD-WAN zero-day under attack – CyberScoop” »
Critical phpBB authentication bypass lets attackers hijack any account with one request – Read More –
Google has released security updates to address 74 vulnerabilities, including one that has come under active exploitation in the wild. The high-severity vulnerability, tracked as CVE-2026-11645 (CVSS score: 8.8), has been described as an out-of-bounds memory access in V8, Chrome’s JavaScript and WebAssembly engine. “Out-of-bounds read and write in V8 in Google Chrome prior to … Read More “Chrome V8 Zero-Day CVE-2026-11645 Exploited in the Wild – Patch Now – The Hacker News” »
University of Toronto researchers have built and tested a proof-of-concept AI-driven computer worm that uses a locally hosted open-weight large language model to reason its way through a network, generate tailored attack strategies for each target it encounters, and replicate itself, all without human intervention and without touching a commercial AI service. The preprint, posted … Read More “Researchers Build Self-Replicating AI Worm That Operates Entirely on Local, Open-Weight Models – The Hacker News” »
Two Russia-aligned cyber attack campaigns have continued to exploit a security flaw in WinRAR to target Ukrainian organisations, almost a year after patches for the vulnerability were released. The activity has been attributed by Trend Micro to Earth Dahu (aka Gamaredon) and SHADOW-EARTH-066 (aka UAC-0226). It involves the exploitation of CVE-2025-8088, a path traversal flaw … Read More “WinRAR Flaw Exploited by Russia-Aligned Groups to Deploy Stealers in Ukraine – The Hacker News” »
Google has released security updates to address 74 vulnerabilities, including one that has come under active exploitation in the wild. The high-severity vulnerability, tracked as CVE-2026-11645 (CVSS score: 8.8), has been described as an out-of-bounds memory access in V8, Chrome’s JavaScript and WebAssembly engine. “Out-of-bounds read and write in V8 in Google Chrome prior to … Read More “Chrome V8 Zero-Day CVE-2026-11645 Exploited in the Wild – Patch Now – The Hacker News” »
Maine Attorney General portal lists a Discord breach notice claiming 10 million affected, but odd filing details leave it unverified and questionable. – Read More – Hackread – Cybersecurity News, Data Breaches, AI and More
Organizations have more visibility than ever. Growing tech stacks provide greater coverage, and network security teams are increasingly adopting AI and automation to help with routine tasks and reduce manual effort. But the same challenges persist. Outages still last hours, causing significant financial losses, operational disruption, and reputational impact. Threat response and mean time to … Read More “The Hidden Security Risk in Modern Networks: The Work Between Tools – The Hacker News” »
The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel artifacts across 19 packages in the Python Package Index (PyPI) registry, as the Mini Shai-Hulud-style attacks continue to be refined and splintered to target specific ecosystems. “The compromised releases shipped a *-setup.pth file that attempts to … Read More “Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer – The Hacker News” »
A malicious website can work out which sites you visit and which apps you open, using nothing but JavaScript and the timing of your SSD. The attack, called FROST, needs no native code, no extension, and no permission prompt. You open the page, leave the tab sitting there, and it watches the drive for contention … Read More “New FROST Attack Lets Websites Track What Sites and Apps You Open via SSD Timing – The Hacker News” »
An Iranian-linked hacker group called Handala claimed to have hit Israeli military targets with massive cyberattacks on Sunday,… – Read More – Hackread – Cybersecurity News, Data Breaches, AI and More
The flaw, CVE-2026-11645, can allow a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page – Read More –
Speaking at Infosecurity Europe, Ashish Shrestha, former CISO at Jaguar Land Rover revealed why he wanted over 30,000 employees to change their passwords in the immediate aftermath of the incident – Read More –
Check Point says a critical vulnerability in its Remote Access VPN and Mobile Access solutions has been exploited by Qilin – Read More –
Meta’s WhatsApp demands contempt ruling after users report NSO Group-linked phishing – Read More –
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity flaw impacting BerriAI LiteLLM to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-2026-42271 (CVSS score: 8.7), is a command injection vulnerability that could allow any authenticated user to run arbitrary commands on the – … Read More “LiteLLM Flaw CVE-2026-42271 Exploited in the Wild, Chains to Unauthenticated RCE – The Hacker News” »
Posted by Moritz Bechler via Fulldisclosure on Jun 08 Advisory ID: SYSS-2026-004 Product: SAP NetWeaver ABAP / SAP_BASIS Manufacturer: SAP SE Affected Version(s): SAP_BASIS 700 – 918 Tested Version(s): 7.93 Patch 300 Vulnerability Type: CWE-347: Improper Verification of Cryptographic Signature Risk Level: High Solution Status: Fixed Manufacturer Notification: 2025-11-06 Solution Date: 2026-02-10… – Read More … Read More “[SYSS-2026-004] SAP NetWeaver SAML XML Signature Wrapping – Full Disclosure” »
Posted by SEC Consult Vulnerability Lab via Fulldisclosure on Jun 08 SEC Consult Vulnerability Lab Security Advisory < 20260608-0 > ======================================================================= title: Privilege Escalation via Binary Planting product: Genetec-provided RabbitMQ in multiple Genetec products vulnerable version: Multiple products, see below. fixed version: Multiple products, see … Read More “SEC Consult SA-20260608-0 :: Privilege Escalation via Binary Planting in Genetec-provided RabbitMQ in multiple Genetec products – Full Disclosure” »
Artificial Intelligence is no longer limited to analytics dashboards or chatbot interfaces. Today’s businesses are rapidly scaling and implementing… The post Securing AI Agents: Why Identity and Privilege Management Must Extend Beyond Humans appeared first on JISA Softech Pvt Ltd. – Read More – JISA Softech Pvt Ltd
AI is quickly becoming the foundation for the digital transformation of today. Enterprises are turning more and more to… The post Preparing AI Infrastructure for Post-Quantum Threats appeared first on JISA Softech Pvt Ltd. – Read More – JISA Softech Pvt Ltd
WhatsApp says it blocked Israeli firm NSO’s Pegasus spyware activity and is asking a US court to treat the targeting as an injunction breach. – Read More – Hackread – Cybersecurity News, Data Breaches, AI and More
Mythos is real. I know a big chunk of the industry thinks it’s a marketing stunt, and I get why. I get it. But I’ve seen the findings, and they’re bad. These aren’t “whoops, this line right here is wrong, and that’s RCE.” They’re novel combinations of a few dozen issues out of thousands of … Read More “The Hardest Fork – The Hacker News” »
Security researchers have published a detailed, working exploit for a Linux kernel use-after-free that lets an unprivileged local user escalate to root and break out of a container. The flaw, CVE-2026-23111, sits in the kernel’s nf_tables packet-filtering code and was patched upstream on February 5, 2026. Exodus Intelligence released its full technical walkthrough on June … Read More “One-Character Linux Kernel Flaw Enables Local Root Access, Exploits Now Public – The Hacker News” »
Operation FlutterBridge uses fake Google ads and shell companies to deploy FlutterShell, a new macOS backdoor targeting unsuspecting users. – Read More – Hackread – Cybersecurity News, Data Breaches, AI and More
Hackers are cloning Ghidra, dnSpy, ILSpy and other free tool sites to spread Malware like RemusStealer, crypto clippers and loaders through fake downloads. – Read More – Hackread – Cybersecurity News, Data Breaches, AI and More
Meta on Monday said it detected and blocked spear-phishing attempts linked to Israeli spyware vendor NSO Group. In addition, the tech giant said it’s filing a federal court contempt order against the company for violating a permanent injunction that barred it from targeting WhatsApp and its users. “They tried to trick people into clicking on … Read More “Meta Blocks NSO Group’s New WhatsApp Phishing Attack, Files Contempt Order – The Hacker News” »
Meta said Monday that it caught a spearphishing campaign linked to spyware maker NSO Group despite a court injunction, prompting the tech giant to file a contempt-of-court complaint. The company won a civil case last year against NSO Group barring it from targeting WhatsApp users and securing $168 million in damages, although NSO Group has … Read More “Meta accuses NSO Group of defying spyware injunction, files contempt of court complaint – CyberScoop” »
Hackers are cloning Ghidra, dnSpy, ILSpy and other free tool sites to spread Malware like RemusStealer, crypto clippers and loaders through fake downloads. – Read More – Hackread – Cybersecurity News, Data Breaches, AI and More
Check Point has warned of active exploitation of a critical vulnerability impacting Remote Access VPN and Mobile Access deployments that are configured to use the deprecated IKEv1 key exchange protocol. The vulnerability, tracked as CVE-2026-50751 (CVSS score: 9.3), is a case of a logic flow weakness in certificate validation that allows an unauthenticated remote attacker … Read More “Critical Check Point VPN Flaw Exploited to Bypass Passwords in IKEv1 Setups – The Hacker News” »
North Korean actor UNK_DeadDrop targeted developers with fake coding tasks to steal crypto – Read More –
Monday again. The weekend was meant to be quiet. It wasn’t. Last week had poisoned packages, a broken AI helper, and a worm tearing through repos. The ugly part: basic tricks still worked. A chatbot got fooled. A bot token got leaked inside the malware. The same old mistakes showed up again. And while everyone … Read More “⚡ Weekly Recap: Instagram Account Hacks, Android Zero-Day, GitHub Worm and More – The Hacker News” »
Cybersecurity firm Resecurity reports Silent Ransom Group is using a fast flux botnet to hide data leak sites while targeting law firms with theft and vishing. – Read More – Hackread – Cybersecurity News, Data Breaches, AI and More
OpenAI brings Lockdown Mode and Active Sessions to ChatGPT to curb prompt injection data theft – Read More –
Phishing has always been a numbers game. AI has turned it into a volume machine. Attackers can now create convincing emails, fake login pages, and tailored lures in minutes. Every polished message adds another case for Tier 1 to review, another link to inspect, and another alert that cannot be dismissed at a glance. As … Read More “AI Phishing Is Crushing SOCs with Alert Volume: How to Reduce Tier 1 Overload – The Hacker News” »
Meta says an Instagram recovery tool bug allowed attackers to abuse password resets, affecting 20,225 accounts and exposing users without 2FA to account takeover risk. – Read More – Hackread – Cybersecurity News, Data Breaches, AI and More
![[SYSS-2026-004] SAP NetWeaver SAML XML Signature Wrapping – Full Disclosure](https://attackfeed.com/wp-content/uploads/2026/06/fulldisclosure-img-78NBiE.png "[SYSS-2026-004] SAP NetWeaver SAML XML Signature Wrapping")
