149 posts were published in the last hour
- 21:32 : New York Bans Smart Glasses Across 1,240 Courts
- 21:32 : Chrome 150 Adds Android Back Button, Major Security Fixes
- 21:32 : Massive Telstra Outage Hits Mobile Networks, Rail, and Payments in Australia
- 21:32 : Claude Code Espionage Campaign Exposes a New Enterprise AI Risk
- 21:31 : Friday Squid Blogging: “Squidbleed” Vulnerability
- 21:31 : The Department of Know: France gets ready for quantum, JadePuffer ransomware, UK’s Cyber Shield
- 21:4 : WP-SHELLSTORM Exposed: Hackers Backdoored Thousands of WordPress Websites
- 19:31 : URGENT – Progress Tells ShareFile Customers to Shut Down Storage Zone Controllers Over Security Threat
- 19:7 : Akamai Cloud Pulse Audit Logs Are Generally Available
- 19:6 : Autonomous AI Defense: It’s Time to Take AI Off the Leash
- 19:5 : IT Security News Hourly Summary 2026-07-10 21h : 5 posts
- 18:32 : Top 6 Managed Detection and Response Providers
- 18:32 : Top 10 Best Unified Threat Management (UTM) Solutions in 2026
- 18:32 : One WhatsApp Message Turns OpenClaw Into a Remote Access Tool for Hackers
- 18:31 : Progress Urges ShareFile Admins to Shut Down Servers Over Credible Security Threat
- 18:31 : Injective SDK Supply Chain Attack Exposed Developers to Cryptocurrency Wallet Theft
- 18:4 : Destructive Windows backdoor stuffs multiple wipers and ransomware code into a single package
- 18:4 : Six New U-Boot Flaws Could Let Malicious Images Crash Devices or Run Code at Boot
- 18:4 : Injective Labs GitHub Compromise Pushes Wallet-Key-Stealing npm Packages
- 17:33 : How the GodDamn Ransomware Driver Bypasses Your EDR
- 17:32 : Edtech gets schooled by third-party cyberthreats
- 17:32 : Why Apple, Meta and Snap Want You to Stop Looking at Your Phone
- 17:32 : OpenMandriva Accuses Former Contributor of Project Sabotage
- 17:31 : QIZ Security Raises $17 Million to Expand Cryptographic Security and Post-Quantum Readiness Platform
- 17:9 : The AI Cybersecurity Gap Between Attackers and Defenders
- 16:32 : Securing our future: July 2026 progress report on Microsoft’s Secure Future Initiative
- 16:32 : AWS designated as a critical third party to the UK financial sector
- 16:31 : Initial access broker linked to weaponization of CitrixBleed2 flaw
- 16:7 : Top 10 Best Social Engineering Testing Companies in 2026
- 16:6 : Top 10 Best Cloud Security Providers – 2026 Review
- 16:6 : CISA Details Incident Response to Exposed AWS GovCloud Keys
- 16:6 : CISA details security lapses that led to GitHub leak of passwords, cloud access keys
- 16:5 : IT Security News Hourly Summary 2026-07-10 18h : 3 posts
- 15:32 : In Other News: DHS Database Hacked, Adobe Boosts Patch Cadence, Canada Disrupts Ransomware Ops
- 15:32 : Laser Attack Resets Tangem Wallet Passwords on Cards That Can’t Be Patched
- 15:31 : Microsoft Warns New ‘GigaWiper’ Malware Combines Espionage and Destructive Capabilities
- 15:4 : Researcher Details WhatsApp-to-Host Attack Chain Using Three OpenClaw Flaws
- 14:32 : Florida ransomware negotiator convicted for helping ransomware gang extort US companies
- 14:32 : Cyber Briefing: 2026.07.10
- 14:5 : 281 Android VPN Apps Expose Users to Traffic Leaks, Tracking and Tunnel Hijacking
- 14:5 : Free Mobile VPNs Leak Data and Track Users – Research
- 14:4 : This new Windows malware can take over your PC and wipe it clean
- 14:4 : Anthropic and OpenAI Security Tools Could Fuel Cyber-Attacks, Researchers Warn
- 13:34 : Cybersecurity Negotiator Gets 70 Months for Helping BlackCat Extort Victims
- 13:34 : How Check Point Email Security Stopped a Student Job Scam Before It Reached the Inbox
- 13:34 : New MODBEACON RAT Uses gRPC Streaming for Encrypted C2 Traffic
- 13:33 : KDDI data breach exposes 12M people
- 13:33 : Accenture Data Breach: 35GB Source Code Stolen
- 13:33 : Blip: Free cross-platform file-sharing app
- 13:32 : ESMA launches crypto custody oversight under MiCA
- 13:32 : CIRCIA cyber incident reporting rules finalization expected
- 13:5 : Linux FUSE Vulnerability Allows Unprivileged Users to Pop a Root Shell
- 13:5 : Hackers Exploit CitrixBleed 2 to Hijack MFA-Protected Sessions and Deploy DragonForce Ransomware
- 13:5 : IT Security News Hourly Summary 2026-07-10 15h : 13 posts
- 13:4 : Forg365 PhaaS Uses Telegram and AI Lures to Hijack Microsoft 365 Accounts
- 13:4 : Ransomware Never Stopped: Over 9,000 Confirmed Attacks Since 2018
- 13:4 : Hackers are Turning AI Gateways as Attack Surfaces to Compromise Enterprise Networks
- 13:3 : Linux Kernel FUSE Vulnerability Lets Attackers Gain Root Privileges
- 13:3 : GNU Guix Vulnerabilities Allow Remote Privilege Escalation via Malicious Binary Substitutes
- 13:3 : Malicious Windows Shortcuts Use PowerShell and Node.js to Enable Remote Code Execution
- 13:3 : Hackers Can Go From CitrixBleed 2 Exploitation to Ransomware in Under an Hour
- 13:3 : Third US Security Expert Sentenced to Prison for Helping Ransomware Gang
- 13:2 : AI Agents Built to Detect Malware Can Be Manipulated Into Running It
- 13:2 : New Ransomware Exploits Malicious Driver to Remove Cybersecurity Protections
- 12:32 : GNU Guix Vulnerabilities Let Attackers Overwrite Arbitrary Files and Escalate Privileges
- 12:31 : Fashion mart Miinto unzips breach details, warns shoppers to watch for phisherfolk
- 12:31 : Incode brings on-device processing to age estimation for privacy-focused verification
- 12:3 : China, India-Linked Hackers Both Targeted Same Pakistani Police Force
- 12:3 : Hackers Use Fake Microsoft Entra Passkey Enrollment to Gain Microsoft 365 Access
- 12:3 : Study of 281 Free Android VPN Apps Finds Traffic Leaks, Unencrypted Data, and Tracking
- 12:3 : Exposed Hacker Server Reveals WP-SHELLSTORM Backdooring Thousands of WordPress Sites
- 12:3 : From 17,000 to 1.1 Million Assets: How Lumen Technologies Rebuilt Exposure Management at Scale
- 12:3 : Unpatched XRING Flaw in XQUIC Lets Remote Clients Crash HTTP/3 Servers
- 11:32 : AI Surveillance and Social Progress
- 11:32 : How mule betting scams recruit ordinary people
- 11:32 : Okta Warns of Vishing Attacks Targeting Microsoft 365 Customers
- 11:7 : NetScaler MCP Gateway Secures LLM and Agentic AI Traffic From a Single Platform
- 11:7 : New Multi-Stage LNK Attack Targets Hospitality Firms With Node.js Backdoor
- 11:7 : Wireshark 4.6.7 Released to Patch 12 Vulnerabilities in SSH, TLS, Wi-Fi and pcapng
- 11:7 : 222 GitHub Repositories Linked to Fake Go Package Malware Operation
- 11:7 : Hackers Impersonate Robinhood With Fake Sign-In Alerts in Callback Phishing Attacks
- 11:7 : Xalgorix AI Penetration Testing Tool with 22-Phase Testing Methodology
- 11:6 : Odyssey Stealer Hits macOS Users in 100+ Countries, Targets 300 Crypto Wallet Extensions
- 11:6 : Two Chrome updates in two days fix critical vulnerabilities
- 10:5 : Security User Stories How-To – for product managers and developers
- 10:5 : Former Ransomware Negotiator Sentenced to 70 Months in Prison for Secretly Helping BlackCat Gang
- 10:5 : Django SQL Injection Vulnerability Actively Exploited in the Wild
- 10:5 : GigaWiper Malware Attacking Windows Systems With Data Wipers and Fake Ransomware Notices
- 10:5 : IT Security News Hourly Summary 2026-07-10 12h : 12 posts
- 10:5 : Ransomware Negotiator Sentenced for BlackCat Ransomware Operators to Attack Victims
- 10:4 : Hackers Turn 50+ Dormant GitHub Accounts Into a Network for Corporate Source Code Recon
- 10:4 : Microsoft Warns of Increase in Number of Security Updates
- 10:4 : Interpol Operation First Light 2026 Nets 5,811 Arrests and $293 Million Seized Across 97 Countries
- 9:34 : “Comment stuffing” in an HTML phishing attachment as a mechanism for evading AI-based detection?, (Fri, Jul 10th)
- 9:34 : FastNetMon Launches Netomics, a Self-Hosted Routing Intelligence Platform
- 9:34 : Process Parameter Poisoning Technique Hides Shellcode Inside Windows Startup Data
- 9:34 : Redefining the CISO Contract: From Securing the Business to Securely Doing Business
- 9:34 : Scot NHS Trust probes email stuffup involving maternity patients’ data
- 9:34 : GigaWiper Combines Multiple Malware for System-Level Sabotage
- 9:33 : Ransomware Negotiator Gets 70 Months in Prison for Aiding BlackCat Attacks
- 9:33 : Attackers Exploit ‘Ill Bloom’ Vulnerability to Drain $3.1 Million From Cryptocurrency Wallets
- 9:4 : Odyssey Stealer Attacks Macs Worldwide and Replaces Crypto Wallet Apps With Drainers
- 9:4 : GigaWiper Merges Three Malware Families Into One Destructive Backdoor
- 9:4 : ‘HalluSquatting’ Turns AI Hallucinations Into Botnet Delivery Mechanism
- 9:4 : NHS Warns Staff Over Unauthorized Access to Patient Data
- 8:31 : Braintree NuGet Typosquat Uses XOR-Obfuscated C2 to Hide Environment Secret Theft
- 8:31 : GhostApproval Symlink Codes Could Run Malicious Codes in AI Coding Agents
- 8:3 : AI-assisted software engineering is creating a new delivery paradox
- 8:2 : Sysdig uncovers first documented agentic ransomware operation
- 8:2 : Network of 200 GitHub Repositories Used for Malware Infection
- 8:2 : July 2026 Patch Tuesday forecast: Is CVE tracking still practical?
- 7:32 : Fake Robinhood Sign-In Alerts Trick Users Into Calling Hacker-Controlled Phone Numbers
- 7:32 : The open source library holding up your stack might have one maintainer
- 7:32 : Workato expands Agent Studio with Headless API, AI guardrails
- 7:31 : Interpol’s global fraud sweep, China’s Claude Code flag, old Github account tricks
- 7:5 : IT Security News Hourly Summary 2026-07-10 09h : 8 posts
- 7:3 : Can a self-driving robotaxi take you to the police if you are doing something illegal in the car?
- 7:2 : Wireshark 4.6.7 Released With Fixes for Vulnerabilities Allowing Crashes via Malicious Packets
- 7:2 : Six U-Boot FIT Signature Verification Flaws Enable Code Execution and DoS Attacks
- 7:2 : Most data brokers won’t tell you what happened to your deletion request
- 6:32 : Hackers Compromise AWS AI Gateway Connected to Amazon Bedrock to Deploy XMRig Cryptominer
- 6:32 : GigaWiper Uses OneDrive Update Scheduled Task for Persistent Destructive Access
- 6:31 : Microsoft is rewriting Windows patch guidance because of AI
- 6:5 : Z.ai Launches Programming Agent In Latest Anthropic Challenge
- 6:4 : Ransomware Negotiator Jailed for Leaking Victim Secrets to BlackCat Hackers
- 6:4 : Filigran report: Organisations can see their threats but can’t act fast enough
- 6:4 : Turning software supply chain security into a daily habit
- 5:32 : Malicious Braintree.Net Typosquat Steals PAN, CVV, and Payment Gateway Credentials
- 5:32 : OpenAI Launches GPT-5.6 With Multi-Agent Cybersecurity and Vulnerability-Exploitation Capabilities
- 5:31 : OpenAI Releases GPT-5.6 and ChatGPT Work, a New Companion to Handle Your Tasks
- 5:31 : AWS gives its ERP agent deny-by-default rules and a separate identity
- 5:6 : Microsoft Uses AI-Powered Agentic Scanning to Find Windows Security Flaws and Accelerate Patching
- 5:6 : Multiple U-Boot Vulnerabilities Enable Pre-Authentication Code Execution and Device DoS Attacks
- 5:6 : Only 28% of financial workforce MFA is phishing-resistant
- 4:33 : New infosec products of the week: July 10, 2026
- 4:9 : AI-Assisted Hackers Compromise AWS Cloud in 72 Hours Using Stolen Credentials
- 4:9 : Roundcube Webmail Security Update Patches Critical Zero-Click XSS and SSRF Bypass Flaws
- 2:33 : A questionable breach, bad routers at home and at work and AI gives defenders a win
- 2:4 : ISC Stormcast For Friday, July 10th, 2026 https://isc.sans.edu/podcastdetail/10002, (Fri, Jul 10th)
- 2:4 : Microsoft warns customers AI will mean busier Patch Tuesdays
- 1:10 : Strengthening the open source supply chain with Red Hat partners
- 1:10 : The new currency of enterprise velocity
- 0:2 : Introducing OAuth Support for AWS MCP Server
- 23:33 : Kerberoasting Attack Explained Step by Step
- 22:33 : An unnamed US county – perhaps in Ohio – paid $1M extortion demand to cybercriminals
- 22:6 : Tudou Guarantee Successors Expand Cybercrime Marketplace
- 22:6 : INTERPOL Operation First Light Nets 5,811 Arrests and Seizes $293 Million
- 22:5 : IT Security News Hourly Summary 2026-07-10 00h : 7 posts
- 21:55 : IT Security News Daily Summary 2026-07-09