CVE-2026-20253 is a CVSS 9.8 pre-auth flaw in Splunk Enterprise’s PostgreSQL sidecar service. An unauthenticated attacker can write files and chain the primitive to RCE. A public PoC exists; no workaround, patch only. How CVE-2026-20253 Turns Splunk’s PostgreSQL Sidecar Into…
Nmap for Beginners: Understanding Scans Before You Run Them
Nmap measures port states, service versions, and OS fingerprints by analyzing how targets respond to crafted packets. This guide explains the concepts behind each scan type so the output makes sense from the first run. Nmap for Beginners: Understanding Scans…
Microsoft Working on Patch for ‘RoguePlanet’ Zero-Day
The public PoC code exploits a race condition in Microsoft Defender to spawn a command prompt with System privileges. The post Microsoft Working on Patch for ‘RoguePlanet’ Zero-Day appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…
The Chainguard Athena coalition already shipped 2,000 patches across 500 open source projects
Chainguard launched Athena, an industry coalition that pools open source vulnerability findings and remediates them under embargo before public disclosure. The group went live with more than two dozen member organizations. Founding members include BNY, Chainguard, Cisco, Cloudflare, Corridor, DepthFirst,…
Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chats
Cybersecurity researchers have flagged a “coordinated malware campaign” on the JetBrains Marketplace that has published no less than 15 malicious plugins capable of exfiltrating artificial intelligence (AI) provider keys. “Every plugin poses as an AI coding assistant built on DeepSeek…
EU Security Experts to Support Ukrainian Organizations in Case of Cyber-Attacks
Ukraine has been added to the EU Cybersecurity Reserve, which provides incident response services against large-scale incidents This article has been indexed from www.infosecurity-magazine.com Read the original article: EU Security Experts to Support Ukrainian Organizations in Case of Cyber-Attacks
IT Security News Hourly Summary 2026-06-17 12h : 6 posts
6 posts were published in the last hour 9:32 : Intel Brings New 18A-P Process Online 9:32 : SprySOCKS Windows Backdoor Uses Kernel Driver to Hide Processes, Files, and Network Traffic 9:32 : FulcrumSec Targets Novo Nordisk, Leaks Clinical and…
Intel Brings New 18A-P Process Online
Struggling chipmaker begins early-stage production with latest 18A-P process, as it pushes ahead with foundry plans This article has been indexed from Silicon UK Read the original article: Intel Brings New 18A-P Process Online
SprySOCKS Windows Backdoor Uses Kernel Driver to Hide Processes, Files, and Network Traffic
Windows variants of SprySOCKS, a backdoor long associated with FishMonger (aka Earth Lusca/TAG-22), expanding a toolset that was until now Linux-only. The two Windows builds internally labelled WIN_DRV and WIN_PLUS preserve the original SprySOCKS protocol and command set while adding…
FulcrumSec Targets Novo Nordisk, Leaks Clinical and Research Data
FulcrumSec leaked data stolen from Novo Nordisk, claiming to have exfiltrated 1.3TB, including clinical records and AI research assets. On June 15, 2026, a data-theft extortion group calling itself FulcrumSec began leaking files from Novo Nordisk, the Danish maker of…
EdTech Faces a Cybersecurity Crisis: Data Breaches Surge
EdTech firms face rising cyberattacks as ShinyHunters and FulcrumSec target schools, exposing sensitive data and disrupting services. Resecurity (USA) warns the education technology (EdTech) sector has become a prime target for cybercriminals, as attacks against educational institutions and related platforms…
Oracle’s Second Monthly Security Updates Deliver 245 Patches
Oracle has released its June 2026 Critical Security Patch Update to fix vulnerabilities in Communications, EBS, Enterprise Manager and other products. The post Oracle’s Second Monthly Security Updates Deliver 245 Patches appeared first on SecurityWeek. This article has been indexed…
Fifteen JetBrains Marketplace Plugins Found Stealing API Keys
Aikido Security has discovered at least 15 IDE plugins on the JetBrains Marketplace This article has been indexed from www.infosecurity-magazine.com Read the original article: Fifteen JetBrains Marketplace Plugins Found Stealing API Keys
Security awareness training that works: How companies truly motivate employees
Many companies invest in security awareness training—yet participation often falls short of expectations. Why is that? And what actually works in practice? This article shows how organizations can specifically foster motivation, which measures have proven effective, and how security awareness…
Apple is bringing Hide My Email and Sign in with Apple under one domain
Apple will unify the email domains used by Sign in with Apple and iCloud+ Hide My Email under a shared domain, private.icloud.com, later this summer. Hide My Email is a service included with iCloud+, Apple’s subscription service. It allows users…
Ukraine can now tap EU cyber support during major attacks
Ukraine can now call on emergency cyber support from the European Union during large-scale cybersecurity incidents. The move follows a decision by the Council of the European Union to add the country to the EU Cybersecurity Reserve. The Reserve operates…
Staffing Is Top SOC Challenge Even as AI Proliferates, Says SANS
SANS Institute study finds few SOCs have built AI into defined workflows, despite widespread adoption This article has been indexed from www.infosecurity-magazine.com Read the original article: Staffing Is Top SOC Challenge Even as AI Proliferates, Says SANS
SpaceX To Buy Cursor In $60bn Deal
Aerospace firm agrees to buy company behind popular AI coding tool in all-stock deal in boost to its AI ambitions This article has been indexed from Silicon UK Read the original article: SpaceX To Buy Cursor In $60bn Deal
15 Malicious JetBrains Plugins Caught Stealing DeepSeek, OpenAI API Keys
Hackers are using 15 malicious JetBrains plugins posing as AI coding assistants to steal DeepSeek, OpenAI, and other developer API keys. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, AI and More Read the original article:…
China-Linked FishMonger Ports SprySOCKS to Windows With Kernel-Level Stealth and UEFI Bootkit Hints
China-linked FishMonger used two SprySOCKS Windows variants that leveraged kernel drivers and the Print Spooler to target governments in four countries. ESET researchers have found two previously undocumented Windows versions of SprySOCKS, a backdoor that the security community had until…
Chrome and Firefox Updated to Patch Critical, High-Severity Vulnerabilities
The browser updates address multiple memory safety bugs that could potentially lead to remote code execution. The post Chrome and Firefox Updated to Patch Critical, High-Severity Vulnerabilities appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…
Ofcom Warns Over Enforcement Of Youth Social Media Ban
Media regulator says finding effective way to keep children under 16 off social platforms remains unknown territory This article has been indexed from Silicon UK Read the original article: Ofcom Warns Over Enforcement Of Youth Social Media Ban
Hacking Group Claims Credit For Novo Nordisk Breach
Gang says it stole data on unreleased drugs, clinical trials from Danish pharmaceutical giant after failed $25m ransom demand This article has been indexed from Silicon UK Read the original article: Hacking Group Claims Credit For Novo Nordisk Breach
Steam Workshop Malware Campaign Uses Wallpaper Engine to Steal Accounts and Infect Gamers
A sophisticated malware campaign has been abusing Steam Workshop’s sharing model to distribute backdoors, infostealers and crypto miners hidden inside Wallpaper Engine packages, primarily targeting gamers in China and Russia. The campaign exploits Wallpaper Engine’s “application” wallpaper type essentially standalone…