IT Security News Daily Summary 2026-06-30

155 posts were published in the last hour

• 21:2 : Silent Swap Uses Fake Chrome Extension to Steal Crypto
• 21:2 : Watch out for “high paying, low effort” Amazon job texts
• 20:32 : U.S. CISA adds SimpleHelp flaw to its Known Exploited Vulnerabilities catalog
• 20:2 : Infosec professionals sour on automated pentesting tools
• 19:32 : Microsoft Teams’ New Feature Blocks Bots from Joining Meetings
• 19:32 : Anthropic’s Claude Code Reportedly Uses Hidden Code to Detect Chinese Users
• 19:32 : Accelerating the quantum-safe timeline
• 19:5 : IT Security News Hourly Summary 2026-06-30 21h : 3 posts
• 19:2 : RustDuck Botnet Rebuilds in Rust to Hijack Routers and Servers for DDoS
• 19:2 : Microsoft Warns Poisoned MCP Tool Descriptions Can Make AI Agents Leak Data
• 18:32 : libssh2 CVE-2026-55200 Shows Why Outbound SSH Is an Attack Surface
• 17:32 : New EvilTokens Attack Exposes Browser Visibility Gap in Enterprise SOCs
• 17:31 : Langflow RCE Exploited to Deploy Monero Miner on Exposed AI App Endpoints
• 17:2 : Modern Enterprises: How to Evaluate the Security and Compliance of Office Software
• 17:2 : Huntress CEO says threat hunter used ‘poor judgment’ in alerting ransomware crim about law enforcement probe
• 16:34 : Hackers Steal Data of 4.38 Million Aflac Japan Customers
• 16:33 : A Defining Moment in Identity Security
• 16:33 : New BioShocking Attack Allows Attackers to Trick AI Browser and Leak Credentials
• 16:33 : False Positive or First Sign of a Breach? How Tier 1 SOC Analysts Can Tell the Difference Faster
• 16:32 : Securing AI agents: When AI tools move from reading to acting
• 16:32 : ​​What’s new in Microsoft Security: June 2026
• 16:32 : Nissan Discloses Employee Data Breach Linked to Oracle Zero-Day
• 16:32 : DHS proposes new system for public-private infrastructure security collaboration
• 16:32 : Critical flaw in SimpleHelp exploited in attacks targeting sensitive credentials
• 16:5 : IT Security News Hourly Summary 2026-06-30 18h : 18 posts
• 16:3 : An Ingredient List Doesn’t Stop the Worm: What SBOMs Can and Can’t Do
• 16:3 : Nissan Americas Hit in Global Oracle PeopleSoft Data Breach
• 16:3 : Five Eyes Warns New AI Models Pose Urgent Cyber Risk
• 16:2 : GPT-5.6 Sol Debuts With Enhanced Cyber Protections, Limited to Trusted Partners
• 16:2 : Post-Quantum Cryptography Readiness Becomes a Strategic Cybersecurity Priority for Enterprises
• 16:2 : Silent Swap Crypto Clipper Uses Fake Google Notes Extension to Replace Wallet Addresses
• 16:2 : Critical SimpleHelp Vulnerability Exploited For Malware Delivery
• 15:6 : Reflectiz to Host Webinar, Joined by Taboola, on Securing Third-Party Marketing in the AI Era
• 15:6 : NDSS Symposium Heads to Seoul in 2027 to Expand Global Cybersecurity Collaboration
• 15:6 : Hackers Use Fake FIFA World Cup 2026 T-Shirt Offers to Spread Voidrift Malware
• 15:6 : iPhone 18 Leak: Apple’s Next Pro Design May Have Appeared Online
• 15:6 : iPhone Security Fixes May Arrive Sooner as AI Speeds Up Threats
• 15:5 : SimpleHelp Flaw Exploited to Deploy Malware Targeting Windows, macOS, and Linux
• 15:5 : $10 Million Reward for Russian Hackers Targeting Messaging App Users
• 15:5 : Update time: Apple releases security patches for iOS, MacOS Tahoe, Safari
• 15:5 : 282 iOS AI Apps Leak API Keys and Open AI Proxy Access in Network Traffic Study
• 15:5 : GuardFall Exposes Open-Source AI Coding Agents to Decades-Old Shell Injection Risks
• 15:5 : DHS proposes new framework for public-private infrastructure security collaboration
• 14:32 : Aikido Security acquires Root to expand backported fixes for open source vulnerabilities
• 14:32 : Cyber Briefing: 2026.06.30
• 14:3 : Aflac Japan Data Breach Exposes Sensitive Customer Information
• 14:3 : BlueHammer Vulnerability Exploited in Ransomware Attacks
• 14:3 : Digi International’s DANI automates network diagnostics and device management
• 14:2 : Jamf enables AI Governance and shadow AI detection on Mac
• 14:2 : Cequence Platform 9.0 uses AI to simplify API security and compliance
• 14:2 : Oracle E-Business Suite Payments flaw under attack (CVE-2026-46817)
• 13:33 : Moving Forward Responsibly: Our 2025 Impact Report
• 13:32 : Critical Progress Kemp LoadMaster Vulnerability Enables Pre-Auth Remote Code Execution
• 13:32 : Update on Fortinet Use of Frontier AI
• 13:32 : Hackers Hijack WhatsApp Web Sessions to Launch CEO Fraud Through DLL Sideloading
• 13:32 : Hackers Use SystemBC Malware to Hide C2 Traffic and Maintain Persistent Access
• 13:32 : Bing Search for ‘ManageEngine OpManager’ Delivers Akira Ransomware
• 13:32 : OpenMatter Network brings verifiable trust to AI governance
• 13:32 : What the Numbers Say About FIFA 2026 Cyber Risk
• 13:6 : OpenMatter Network Introduces Verifiable Trust Layer for Secure Collaboration and AI Agents
• 13:6 : AppViewX Launches Global Partner Program Amid Rising Demand for Machine and Agent Identity Security
• 13:5 : BumbleBee and AdaptixC2 Deliver Akira Ransomware Through Bing SEO Poisoning
• 13:5 : Aflac Japan Data Breach Impacts 4.38 Million
• 13:5 : IT Security News Hourly Summary 2026-06-30 15h : 18 posts
• 13:4 : Decades-Old Bash Tricks Expose AI Coding Agents to Supply Chain Attacks
• 12:32 : Apple Fixes WebKit Flaws in iOS and macOS, With Help From AI Tools
• 12:31 : The Realities of AI Video Surveillance
• 12:11 : PoC Released for NTLM reflection bypass Vulnerability that Emanbles SYSTEM Access on Windows Server
• 12:10 : Multiple AirDrop and Quick Share Vulnerabilities Allow Attackers to Crash Devices
• 12:10 : TONResolver Malware Uses TON Smart Contracts as Dead Drop Resolver for C2 Switching
• 12:9 : SimpleHelp Authentication Bypass Vulnerability Exploited in the Wild to Deploy TaskWeaver Loader
• 12:9 : Multiple WolfSSL Vulnerabilities Expose Billions of Servers and IoT Devices to Cyberattacks
• 12:9 : PoC Released for NTLM Reflection Bypass Flaw that Enables SYSTEM Access on Windows Server
• 12:8 : GitHub Advisory Database Hits Record Volume as Vulnerability Reports Surpass Review Capacity
• 12:8 : Supreme Court Rules Constitutional Privacy Protections Apply to Cellphone Users’ Location History
• 12:8 : Hacker Conversations: Chris Thompson, Former Head of IBM X-Force Red, Co-Founder of RemoteThreat
• 12:8 : ClickFix Now Cybercriminals’ Favorite Malware Delivery Technique
• 12:7 : AirDrop and Quick Share Flaws Enable Crashes
• 12:7 : China-linked malware on USB drives infected Japanese military
• 12:7 : Sophos AI Threat Taxonomy Framework
• 12:7 : CMA proposes app store payment reforms
• 12:7 : Kali Linux 2026.2 improves VM boot times
• 11:32 : SystemBC Malware Turns Windows Machines Into SOCKS5 Proxies for Ransomware Attacks
• 11:32 : Exploitation of Recent Oracle E-Business Suite Vulnerability Begins
• 11:32 : Attackers Exploit SimpleHelp CVE-2026-48558 to Deploy TaskWeaver and Djinn Stealer
• 11:31 : US Offers $10 Million Bounty for Information on Russian Hackers Targeting Signal and WhatsApp Users
• 11:5 : WhatsApp Usernames Will Let You Chat Without Sharing Your Phone Number
• 11:5 : AI Agents Are Visiting Your Website. Which Ones Should You Trust?
• 11:4 : New Windows Backdoor Mistic Enables In-Memory Code Execution and Credential Theft
• 11:4 : X Launches Hosted MCP Servers to Connect Cursor, Claude, and Other AI Tools
• 11:4 : Mustang Panda Abuses Zoho WorkDrive for Command-and-Control and Data Exfiltration
• 11:3 : Synology MailPlus Server Vulnerabilities Allow Attackers to Trigger DoS Attacks
• 11:3 : Fake Perplexity AI Extension Captures Real-Time Search Suggestions and Browser Signals
• 11:2 : AirDrop and Quick Share Flaws Let Nearby Attackers Trigger Crashes and Bypass Checks
• 10:33 : Kali Linux 2026.2 Release With new Hacking Tool and With Updated Desktop Environments
• 10:32 : SimpleHelp vulnerability exploited to deliver mighty Djinn Stealer (CVE-2026-48558)
• 10:31 : Hackers Leverage Blockchain to Hit Japan’s Hotels Through Booking.com Phishing
• 10:6 : June 2026 Apple Updates, (Tue, Jun 30th)
• 10:5 : Amazon Q’s MCP Flaw Is an Industry Warning: AI Tools Still Lack Workspace Trust Standards
• 10:5 : ToddyCat: your hidden email assistant. Part 2
• 10:5 : IT Security News Hourly Summary 2026-06-30 12h : 7 posts
• 10:4 : The AI Token Costs That Can Break Cybersecurity
• 9:33 : Boss Scam Uses DLL Sideloading to Hijack WhatsApp Web and Defraud Enterprises
• 9:33 : Attackers actively exploit the Oracle E-Business Suite flaw CVE-2026-46817
• 9:33 : Nissan Employee Data Breached in Oracle PeopleSoft Hack
• 9:32 : Progress Kemp LoadMaster Flaw Could Let Attackers Run Root Commands Pre-Auth
• 9:32 : New BioShocking Attack Tricks AI Browsers Into Leaking User Credentials
• 9:31 : UK Healthcare Sector Records Tenfold Increase in Cyber-Attacks
• 9:3 : TfL Hackers Were Known To Police For Years
• 9:3 : Kali Linux 2026.2 Released With 9 New Tools and VM Boot Tweaking
• 9:2 : Critical SimpleHelp Vulnerability Exploited for Malware Delivery
• 8:34 : Shadow AI Is Not a Tool Problem. It’s a Timing Problem.
• 8:33 : Kali Linux 2026.2 trims VM boot times, refreshes its desktops
• 8:32 : Over 300 UK Firms Hit by Ransomware in a Year
• 8:9 : Australia To Double Penalty For Social Media Ban Failures
• 8:8 : More NI Schools Warned After C2K Network Hack
• 8:7 : ISA VDA 6.0.3 (part 4) — Information Security Sheet: IT Security / Cyber Security
• 8:7 : OpenClaw for iOS: The viral open-source AI agent comes to iPhone and iPad
• 7:34 : Japan Hotel Industry Targeted With TONResolver RAT and Guest Complaint Phishing Emails
• 7:33 : Apple Patches 30+ iOS, macOS, Safari Flaws, Including AI-Discovered WebKit Bugs
• 7:32 : US seizes illegal World Cup domains, WhatsApp offers usernames for phone privacy, $10M reward for Russia-based cyber campaign
• 7:14 : Was Madison Square Garden Hacked?
• 7:13 : South Korea Unveils $880bn Tech Investment Plan
• 7:11 : Massive Data Centre Planned For North Devon
• 7:9 : Quantifind Raises $200 Million for AI-Native Risk Intelligence
• 7:5 : IT Security News Hourly Summary 2026-06-30 09h : 3 posts
• 6:32 : Mustang Panda Targets India’s Government and Energy Sectors With ZOHOMURK and MINIRECON
• 6:32 : Microsoft builds a bouncer to keep bots out of Teams meetings
• 6:32 : AirDrop and Quick Share vulnerabilities affect protocols on five billion devices as fixes begin
• 6:4 : Ford Rehires Humans To Fix AI Quality Failures
• 6:4 : Malicious Chromium Extension Spoofs Perplexity AI to Hijack Browser Searches
• 6:4 : How to Become a SOC Analyst With No Experience (Step-by-Step 2026)
• 6:4 : Product showcase: Scam calls, phishing, and data breaches? Meet AVG Mobile Security
• 5:32 : New Controller Flaws Expose Highway Signs and Billboards to Remote Hacking
• 5:32 : Hottest cybersecurity open-source tools of the month: June 2026
• 5:32 : Vulnerability reports are arriving faster than GitHub can review them
• 5:31 : Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild
• 5:7 : Mistic Malware Blends Into Microsoft Endpoint Components Using Malicious EndpointDlp.dll
• 5:7 : Nissan Confirms Data Breach Following Oracle PeopleSoft 0-Day Attacks
• 5:7 : Half the defense base still builds security around compliance
• 5:6 : WSL containers now build and run Linux workloads on Windows
• 4:34 : Cybersecurity jobs available right now: June 30, 2026
• 2:34 : ISC Stormcast For Tuesday, June 30th, 2026 https://isc.sans.edu/podcastdetail/9988, (Tue, Jun 30th)
• 2:33 : India’s central bank mandated use of .bank domains to enhance trust – but its registry leaked sensitive info
• 2:3 : Inside the inbox: Why cybercriminals want to break into your email account
• 1:5 : IT Security News Hourly Summary 2026-06-30 03h : 2 posts
• 0:6 : BioShocking AI: AI Browser Vulnerability Lets Attackers Bypass Guardrails
• 0:6 : Security researchers tricked LLMs into giving them cocaine recipes by abusing role models for prompt injection
• 23:32 : WhatsApp Usernames Are Coming. You Can Reserve Yours Right Now
• 22:34 : U.S. Targets Russian Cyber Spies With $10M Bounty Over Messaging App Attacks
• 22:34 : Four years into Ukraine invasion, Russia turns influence-ops back to US and Europe
• 22:6 : Meta Contractors Posed as Teens to Prompt Rival Chatbots About Suicide, Sex, and Drugs
• 22:6 : Vulnerability Summary for the Week of June 22, 2026
• 22:5 : IT Security News Hourly Summary 2026-06-30 00h : 2 posts
• 21:55 : IT Security News Daily Summary 2026-06-29