141 posts were published in the last hour
- 20:34 : Beyond Cloud Uptime: API Security and AI Resilience for 2026
- 20:7 : Implementing Zero-Trust Networking and Identity for Microsoft Foundry Agents
- 20:7 : Apple says former employee exploited ‘rare’ bug to download confidential files after leaving for OpenAI
- 20:7 : Lidl Notified Online Shop Customers in Germany, Belgium, and the Netherlands of a Data Breach
- 19:5 : IT Security News Hourly Summary 2026-07-13 21h : 3 posts
- 19:4 : Meta Removes Muse Image Instagram Feature After Consent Backlash
- 19:4 : U.S. CISA adds a Cisco IOS flaw to its Known Exploited Vulnerabilities catalog
- 18:34 : Machine Identity Debt: Why Human Identity Is No Longer Cloud Security’s Primary Boundary
- 18:4 : Google and Microsoft Pull ModHeader With 1.6 Million Installs After Dormant Collector Found
- 18:4 : CrashStealer macOS Malware Uses Notarized Dropper to Pass Gatekeeper Checks
- 17:34 : Microsoft Entra ID security updates: Passkeys are the default authentication method in Entra ID
- 17:4 : New macOS Stealer Mimics Apple’s Crash Report Framework to Steal Browser Credentials
- 17:4 : Hackers breach Lidl’s IT service provider, steal customer data
- 16:34 : Compromised Jscrambler npm Releases Target Developer Environments with Cross-Platform Rust Infostealer
- 16:34 : Hackers find a new trick to collect Microsoft Entra user data without raising red flags
- 16:34 : US authorities warn that state-linked hackers are targeting vulnerable networking devices
- 16:5 : IT Security News Hourly Summary 2026-07-13 18h : 13 posts
- 16:2 : EU and UK officially blame Russian spies for cyberattack on Poland’s power grid
- 16:2 : Counterfeit USB Drives Spread China-Linked Virus in Japan’s Military
- 16:2 : Zimbra Urges Immediate Update to Fix Critical Classic Web Client XSS Vulnerability
- 15:32 : Lessons Learned from CISA’s Recent GitHub Leak
- 15:32 : NSA Urges Organizations to Disable Cisco Smart Install as Russian Hackers Target Routers
- 15:32 : New MemGhost Attack Plants Persistent False Memories in AI Agents Through One Email
- 15:32 : ⚡ Weekly Recap: ShareFile Threat, Citrix Bleed 2 Ransomware, AI Coding Attacks, and More
- 15:32 : Open Directory Exposes Three Evilginx Phishing Operators
- 15:31 : Hackers have found a new trick to collect Microsoft Entra user data without raising red flags
- 15:9 : Exposed: Three Evilginx Campaigns Targeting Microsoft 365
- 15:9 : Trusting your kids online isn’t enough (Lock and Code S07E14)
- 15:9 : EU and UK blacklist Russia’s cyber operators over efforts to destabilize Europe
- 15:8 : Pakistani Police Systems Hit by Chinese and Indian Espionage
- 14:35 : Get Peace of Mind: Protect Data for Life With BigMind DR for $59.99
- 14:35 : Fake Bank Apps Let Scammers Control Android Phones in Southeast Asia
- 14:35 : Progress Warns of ShareFile Storage Zone Controller Threat
- 14:35 : LAPD lets contract with surveillance giant Flock expire, citing ‘serious concerns’ over civil liberties and privacy
- 14:34 : Hacker Conversations: Jesse McGraw (GhostExodus), From Blackhat Hacker to Redemption
- 14:34 : Authentic GitHub Repository Can Trick AI Agents Into Installing Malware
- 14:34 : Cyber Briefing: 2026.07.13
- 14:8 : Torq and Criminal IP Partner to Deliver Decision-Ready Threat Intelligence for Autonomous SOC Operations
- 14:8 : Russian FSB-Linked Turla Hackers Target French Ministries, Embassies, and Defense Entities
- 14:7 : Physicists say quantum mechanics may not need imaginary numbers after all
- 14:7 : AI-Powered ‘Intelligent Worm’ Could Regenerate Exploits and Adapt to Defenses in Real Time
- 14:7 : CISA Warns of Joomla Sites Running iCagenda or Balbooa Exploited in Attacks
- 14:7 : Hackers Using Vibe-Coded Generated PowerShell Script to Enumerate Active Directory Accounts
- 14:7 : Debian 13 Released With Security Updates, Bug Fixes and Driver Updates
- 14:6 : Ghostcommit attack hides malicious AI instructions in images
- 14:6 : Tidal Cyber connects assets, vulnerabilities, and threats through Threat-Led Defense
- 13:36 : Adaptive Malware Could Evade Signature Detection by Regenerating Its Attack Capabilities
- 13:35 : Hackers Can Exploit RabbitMQ OAuth Flaw to Access Every Message, Queue, and User
- 13:35 : Goodbye, Skeleton Keys: Why Machine Identity Broke IAM, and What SPIFFE Is Doing About It
- 13:35 : Email Agent Hijacking: The Hidden Threat That Breaks Post-Delivery Security
- 13:34 : AI Agents are Only As Effective as Their Harness
- 13:34 : Lumen expands managed detection and response with Cortex XSIAM integration
- 13:34 : Cloudflare Precursor uses continuous behavioral analysis to stop advanced bots
- 13:34 : Forg365 PhaaS Targets Microsoft 365 with Device Code and AitM Session Theft
- 13:34 : New compliance guidance available: HITRUST i1 on AWS
- 13:7 : EU Targets FSB-Linked Hackers in New Sanctions Over Cyber Sabotage
- 13:7 : Novel OAuth Client ID Spoofing Technique Targets Cloud Environments
- 13:7 : APT-C-60 Uses Proton Drive for SpyGlace
- 13:7 : AssuranceAmerica Breach Exposes 7M Licenses
- 13:6 : Debian 13.6 Rolls Out Vital Security Fixes
- 13:6 : EU and UK sanction Russian GRU cyber hackers
- 13:6 : ESET H1 2026 Report and Major Data Breaches
- 13:5 : IT Security News Hourly Summary 2026-07-13 15h : 10 posts
- 12:33 : Attackers Combine MCP Recon With Cloud Metadata SSRF to Steal Service Account Tokens
- 12:32 : iPhone and MacBook Forensics Investigation Exposes £113,000 Property Fraud Operation
- 12:32 : Cybersecurity M&A Roundup: 37 Deals Announced in June 2026
- 12:32 : Fake OAuth client IDs are helping attackers slip past sign-in logs
- 12:32 : Ransomware negotiator who betrayed clients sentenced to 70 months in prison
- 12:32 : Attacker Uses Suspected AI-Generated PowerShell Script to Map Active Directory
- 12:32 : Thinking Fast and Slow in the SOC: The Case for Combining Autonomous AI with Analyst Copilots
- 12:32 : Meta Files Patent for AI That Can Listen All Day and Track How You’re Feeling
- 12:31 : Progress Software Warns of “External Security Threat” to ShareFile
- 12:5 : World Cup grudge attackers may have scored Argentine FA access via year-old infostealer infection
- 12:4 : Why conversational AI is redefining your security perimeter
- 12:4 : RabbitMQ Vulnerability Threatens Enterprise Systems
- 12:4 : Security threat prompts Progress to disable ShareFile accounts, tell customers to shut down servers
- 11:37 : Siggen Backdoor Hits Windows Developers Via Infected Visual Studio Projects
- 11:37 : AI Data Centers and the Concentration of Wealth
- 11:35 : Fake crypto gift card sites are getting harder to spot
- 11:17 : BusySnake Stealer Uses Reverse SSH Tunnels and AI-Generated Loaders to Evade Detection
- 11:15 : Debian 13.6 Released With Security Updates for Linux, Apache, Curl, QEMU, and More
- 11:13 : Armored Likho APT Uses AI-Generated Loaders to Deploy BusySnake Stealer Against Government Targets
- 11:11 : VEXAIoT Multi-Agent System Automates IoT Reconnaissance and Exploit Execution
- 11:9 : Critical WordPress Plugin Vulnerability Allows Attackers to Gain Full Control Over Website
- 11:7 : Russian State Hackers Target Vulnerable Routers Worldwide, Joint Advisory Warns
- 10:35 : Progress orders emergency ShareFile server shutdown over mystery security threat
- 10:35 : A Leak of San Francisco Police Drone Footage Exposes the New Reality of Urban Surveillance
- 10:34 : EU Targets Russian Intelligence Officers Accused of Running a Yearslong Cyber Spying Campaign
- 10:34 : Zimbra Patches Critical Code Execution Vulnerability
- 10:11 : Dutch Nationals Suspected in Odido Hack That Exposed Six Million Customers
- 10:9 : SpyGlace Attacks Abuse Trusted Developer Services to Evade Network Detection
- 10:8 : Anthropic Extends Claude Fable 5 Access From July 12 to July 19
- 10:7 : Hackers Compromised jscrambler With 15,800+ Weekly Downloads to Attack Developers
- 10:5 : IT Security News Hourly Summary 2026-07-13 12h : 7 posts
- 9:40 : Organizations Warned of Exploited Joomla Extension Vulnerabilities
- 9:38 : Claude Code users keep 50% higher limits until July 19
- 9:36 : FastNetMon eliminates third-party bgp lookups with Netomics
- 9:34 : Hacker Extradited from Ukraine Pleads Guilty to Ryuk Ransomware Charges
- 9:13 : CISA Warns of Actively Exploited iCagenda and Balbooa Forms File Upload Flaws
- 9:11 : Copy-paste might be the riskiest thing your enterprise employees do all day
- 9:10 : When cybercriminals outrun the feed
- 8:43 : Critical WordPress OAuth SSO Plugin Flaw Allows Unauthenticated Attackers to Gain Admin Access
- 8:42 : Spear-Phishing Campaign Uses Proton Drive Links and LNK Files to Deliver SpyGlace
- 8:40 : One Misconfigured Python HTTP Server Exposed Three Active Campaigns from Attackers
- 8:39 : Hackers Weaponize Real Academic Event Materials to Infect Researchers With RokRAT
- 8:39 : Centers Laboratory Data Breach Affects 540,000 Individuals
- 8:38 : Progress Prompts ShareFile Storage Zone Controller Shutdown Amid Security Concerns
- 8:36 : Misconfigured Server Reveals Three Evilginx Phishing Operations Targeting Microsoft 365
- 8:34 : Australian Cyber Agency Warns of Global CMS Exploitation Campaign
- 8:6 : Australia Alerts Organizations to Ongoing CMS Exploitation Attacks
- 8:5 : AI Agent Discovers 15-Year-Old Linux Kernel Privilege Escalation Bug Named GhostLock
- 7:34 : A week in security (July 6 – July 12)
- 7:33 : Multifunction Windows backdoor, NSA revives TAO, urgent ShareFile warning
- 7:8 : New VEXAIoT AI Agents Autonomously Exploit IoT Vulnerabilities With 95% Success Rate
- 7:7 : Hackers Can Exploit Motorola MR2600 Firmware Update Process to Gain Code Execution
- 7:7 : Why SBOMs, signing, and provenance still don’t tell you if software is safe
- 7:6 : iCagenda and Balbooa Forms Joomla Flaws Reportedly Exploited as Zero-Days
- 7:5 : IT Security News Hourly Summary 2026-07-13 09h : 7 posts
- 6:32 : Exposed Server Unmasks Evilginx Operators Stealing Microsoft 365 Sessions and OAuth Tokens
- 6:32 : Jscrambler npm Supply Chain Attack Steals Cloud Credentials and Crypto Wallet Secrets
- 6:32 : Cynative: Open-source deep research agent
- 6:6 : FBI Disrupts Malicious Network Running On Android Set-Top Boxes
- 6:6 : Operation Capsule Vault Uses Malicious ISO Files and Process Injection to Deliver RokRAT
- 6:5 : 15 Best Free Cybersecurity Resources to Learn in 2026
- 6:5 : Microsoft demystifies how Windows updates work
- 5:34 : A hardware security AI assistant that checks chips for hidden backdoors
- 5:5 : Microsoft Tests AI-Powered Copilot Tool to Diagnose Windows 11 Performance Issues
- 5:5 : Citrix Unveils NetScaler MCP Gateway With Centralized Security for AI Agents
- 5:5 : Microsoft Testing Copilot Feature That Shows What’s Slowing Down Your Windows 11 PC
- 5:4 : SpaceX and Starlink X Account Reportedly Compromised to Push Fake Crypto Coins
- 5:4 : 99.9% of fixable AI vulnerabilities remain unpatched
- 4:34 : Someone Is Scanning for Your MCP Servers and AI Assistant Credentials, (Mon, Jul 13th)
- 4:34 : Enterprises are rethinking where their AI applications run
- 4:7 : New GhostCommit Technique Hides Exploits in Images to Evade AI Code Reviewers
- 2:4 : ISC Stormcast For Monday, July 13th, 2026 https://isc.sans.edu/podcastdetail/10004, (Mon, Jul 13th)
- 1:33 : ShareFile shutdown, double-agent ransomware negotiator sentenced, Helix uses vishing
- 22:34 : Debian 13.6 security update patches over a hundred advisories in trixie
- 22:6 : Ryuk Ransomware Member Pleads Guilty Over Attacks on U.S. Organizations
- 22:5 : IT Security News Hourly Summary 2026-07-13 00h : 2 posts
- 21:58 : IT Security News Weekly Summary 28
- 21:55 : IT Security News Daily Summary 2026-07-12