Japan’s Ground Self-Defense Force (JGSDF) used malware-infected counterfeit USB drives on sensitive military networks for nearly a year before detection in February 2025. This article has been indexed from CyberMaterial Read the original article: China-linked malware on USB drives infected…
Category: EN
Sophos AI Threat Taxonomy Framework
Sophos X-Ops has published a working taxonomy framework to help security professionals track and categorize the growing landscape of AI-related cybersecurity threats. This article has been indexed from CyberMaterial Read the original article: Sophos AI Threat Taxonomy Framework
CMA proposes app store payment reforms
The UK’s Competition and Markets Authority has proposed new conduct requirements that would compel Apple and Google to permit app developers to steer customers toward payment options outside the tech giants’ proprietary systems. This article has been indexed from CyberMaterial…
Kali Linux 2026.2 improves VM boot times
Offensive Security has released Kali Linux 2026.2 with faster boot times for penetration testers running the distribution in virtual machines. This article has been indexed from CyberMaterial Read the original article: Kali Linux 2026.2 improves VM boot times
SystemBC Malware Turns Windows Machines Into SOCKS5 Proxies for Ransomware Attacks
SystemBC (also tracked as Coroxy) remains a versatile and persistent Windows malware family that operators routinely deploy to convert compromised hosts into SOCKS5 proxy gateways and to maintain remote access for follow-on operations. First observed as a payload in exploit…
Exploitation of Recent Oracle E-Business Suite Vulnerability Begins
The critical-severity defect allows unauthenticated attackers to take over the E-Business Suite’s Payments product. The post Exploitation of Recent Oracle E-Business Suite Vulnerability Begins appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Exploitation…
Attackers Exploit SimpleHelp CVE-2026-48558 to Deploy TaskWeaver and Djinn Stealer
An unknown threat actor has been observed exploiting a recently disclosed maximum-severity security flaw in SimpleHelp to deliver two previously unreported malware families, TaskWeaver and Djinn Stealer. The intrusion involves the exploitation of CVE-2026-48558 (CVSS score: 10.0), a critical authentication…
US Offers $10 Million Bounty for Information on Russian Hackers Targeting Signal and WhatsApp Users
The U. Thank you for being a Ghacks reader. The post US Offers $10 Million Bounty for Information on Russian Hackers Targeting Signal and WhatsApp Users appeared first on gHacks. This article has been indexed from Cybersecurity News: Threats, Vulnerabilities…
WhatsApp Usernames Will Let You Chat Without Sharing Your Phone Number
WhatsApp is letting users reserve usernames before its 2026 launch, giving people a way to chat without sharing phone numbers. Here is how it works, why it matters, and the security limits to know This article has been indexed from…
AI Agents Are Visiting Your Website. Which Ones Should You Trust?
The internet is changing fast. For years, the main goal of search was simple: to help users find links. A user searched, reviewed results, clicked a website, and consumed the content directly from the source. But AI is changing that…
New Windows Backdoor Mistic Enables In-Memory Code Execution and Credential Theft
A newly identified Windows backdoor called Mistic has been quietly making its way through enterprise networks since April 2026, giving attackers persistent, low-profile access that is extremely difficult to detect. The malware has been spotted targeting organizations across the insurance,…
X Launches Hosted MCP Servers to Connect Cursor, Claude, and Other AI Tools
X (formerly Twitter) has officially launched hosted Model Context Protocol (MCP) servers, enabling AI development tools such as Grok Build, Cursor, and Claude Desktop to seamlessly connect with the platform’s API and documentation. Announced on Tuesday, the move positions X…
Mustang Panda Abuses Zoho WorkDrive for Command-and-Control and Data Exfiltration
A China-aligned cyber espionage group known as Mustang Panda has been caught running two simultaneous attack campaigns against Indian government and energy targets, using a trusted cloud storage service as its hidden command center. The group deployed newly developed malware…
Synology MailPlus Server Vulnerabilities Allow Attackers to Trigger DoS Attacks
Synology has released a critical security advisory addressing multiple vulnerabilities in its MailPlus Server package that could allow attackers to execute denial-of-service (DoS) attacks, access internal services, and read or modify arbitrary files. The vulnerabilities affect multiple versions of MailPlus…
Fake Perplexity AI Extension Captures Real-Time Search Suggestions and Browser Signals
A fake browser extension disguised as the popular AI search tool Perplexity AI has been caught quietly capturing users’ real-time search inputs and browser signals, raising serious concerns about how easily trusted brand names can be used against ordinary users.…
AirDrop and Quick Share Flaws Let Nearby Attackers Trigger Crashes and Bypass Checks
Two researchers have found six security flaws in AirDrop and Quick Share, the wireless features that beam files between nearby devices with no cables or shared network. An attacker within wireless range, with just a laptop and no prior connection,…
Kali Linux 2026.2 Release With new Hacking Tool and With Updated Desktop Environments
Kali Linux 2026.2 arrives on schedule in the final week of Q2 with a pragmatic blend of desktop environment refreshes, infrastructure hardening, and practical usability refinements that will matter to both pentesters and platform maintainers. The release emphasizes polish and…
SimpleHelp vulnerability exploited to deliver mighty Djinn Stealer (CVE-2026-48558)
Attackers are exploiting CVE-2026-48558, a recently patched authentication bypass vulnerability in SimpleHelp RMM, to drop the novel Djinn Stealer malware on victim computers. The malware is capable of targeting Windows, macOS, and Linux systems, and “collects credentials associated with cloud…
Hackers Leverage Blockchain to Hit Japan’s Hotels Through Booking.com Phishing
A wave of phishing emails sent to Booking.com partner accommodations in Japan in May led to blockchain-hosted malware This article has been indexed from www.infosecurity-magazine.com Read the original article: Hackers Leverage Blockchain to Hit Japan’s Hotels Through Booking.com Phishing
June 2026 Apple Updates, (Tue, Jun 30th)
Apple released updates for iOS/iPadOS, macOS, and Safari on Monday. There have been no updates for other Apple operating systems (visionOS, watchOS, tvOS). Usually, Apple updates all products at the same time. This article has been indexed from SANS Internet…