170 posts were published in the last hour
- 21:35 : How mapping security controls can ease the compliance burden
- 21:34 : Coca-Cola suspended production at its Fairlife dairy after a ransomware attack
- 20:34 : Wordfence Intelligence Weekly WordPress Vulnerability Report (July 6, 2026 to July 12, 2026)
- 20:34 : Researcher poisons open-weight AI model for under $100
- 19:34 : OAuth Client ID Spoofing Enables Stealthy Cloud Account Enumeration
- 19:5 : IT Security News Hourly Summary 2026-07-16 21h : 7 posts
- 18:32 : Claude for Chrome Flaw Puts Gmail at Risk From Rogue Extensions
- 18:32 : SpaceXAI Open-Sources Grok Build After Privacy Backlash
- 18:32 : The Biggest Data Breaches of 2026 So Far, Ranked by Impact
- 18:32 : Two Scattered Spider Hackers Get 5.5 Years Each for £29 Million TfL Hack
- 18:7 : Begun, the Patch Wars have
- 18:7 : Two Scattered Spider Members Sentenced to Prison Over £29 Million TfL Cyberattack
- 18:6 : Least privilege for AI agents: Identity, access, and tool binding
- 17:34 : Using Microsegmentation to Contain Autonomous AI Agents
- 17:34 : Ask Me Anything Cyber: Your VPN just became attackers’ front door
- 16:34 : Next.js Launches Monthly Security Release Program as First Update Patches 9 Vulnerabilities
- 16:34 : Top 10 Best Firewall as a Service (FWaaS) Providers – 2026
- 16:34 : AnyDesk 0-Day Vulnerability Lets Attackers Trigger Denial-of-Service
- 16:34 : Linus Torvalds Told Kernel Developers that Linux is Not Against AI projects
- 16:34 : Dutch Authorities Arrest Multiple Suspects in Global Investment Fraud Investigation
- 16:34 : Gaps in network security, oversight strategy hamper US’s aviation cybersecurity regulators
- 16:10 : Two Scattered Spider Members Sentenced to 5.6 Years Over TfL Cyberattack
- 16:10 : Top 10 Firewall Solutions Setting New Cybersecurity Standards in 2026
- 16:9 : Period tracker Stardust shares users’ health data with analytics firm, says Mozilla research
- 16:9 : UK cops say arrest of two young hackers disrupted the operations of an infamous hacking group
- 16:9 : C’mon, just copy this text string and paste it into your macOS Terminal – it’ll fix your computer, honest
- 16:9 : ThreatsDay: Game Cheat Spyware, 24-Hour Ransomware, Chrome Sync Stalking + 12 More Stories
- 16:9 : Iran-nexus actors using AI to enhance cyber playbook
- 16:5 : IT Security News Hourly Summary 2026-07-16 18h : 15 posts
- 15:32 : How a former DeepMind researcher raised at a $300M pre-seed valuation before launching a product
- 15:32 : Legacy Systems, Real-World Impacts: The Reality of OT Security
- 15:31 : Govt: Kudankulam Data Breach Did Not Impact Nuclear Security, No Immediate Review Planned
- 15:8 : AI Appreciation Day: Let’s Be Honest About What We’re Appreciating
- 15:8 : HelloNet campaign — new malicious modules launched through the ViPNet update system
- 15:8 : Protecting Privacy in an AI Era
- 15:8 : Announcing the General Availability of Prisma AIRS AI Gateway
- 15:8 : H1 2026 Cyber Attacks Statistics
- 15:7 : H1 2026 Cyber Attacks Statistics Infographic
- 15:7 : Dutch Police Disrupt €100 Million Investment Fraud Network Operating 20 Call Centers
- 15:7 : AI Penetration Testing Expands to Retrieval Poisoning, Memory Attacks, and Sensor Manipulation
- 15:7 : Hackers Actively Exploiting SonicWall SMA1000 0-Day Vulnerability in the Wild
- 15:7 : Bengaluru Housewife’s WhatsApp Hacked; Morphed Obscene Videos Shared Online
- 15:7 : n8n Token Exchange Flaw Could Let Attackers Log In as Users From Another Issuer
- 15:7 : Phishing Campaign Hides Lua Loader as TrueType Font File
- 14:34 : Your Agent Trusts That Wiki. Should It?
- 14:34 : The backlash against Flock cameras is spreading
- 14:34 : Cyber Briefing: 2026.07.16
- 14:10 : Palo Alto Networks and AT&T – Delivering Quantum-Resilient SASE Fabric
- 14:9 : The TTF Trap: A Global Campaign of a Low-Detection Lua Loader
- 14:9 : Adaptiva simplifies secure patch management for air-gapped networks
- 14:9 : Scattered Spider members jailed over Transport for London hack that cost £29 million
- 13:35 : Millions of Shark Robot Vacuums Vulnerable to Unpatched Remote Code Execution Flaw
- 13:35 : Two Scattered Spider Hackers Sentenced to Jail in UK
- 13:35 : CISA folds its own hard-won lessons into coordinated vulnerability disclosure guidance
- 13:35 : New ClickLock macOS Stealer Kills Apps Every 210ms Until Victims Type Their Password
- 13:35 : New TELEPUZ Malware Spreads via ClickFix to Steal Data and Run Commands
- 13:35 : Single Prompt Enables ChatGPT to Execute Full Cyber-Attack Chain, Researchers Claim
- 13:34 : Modular macOS Stealer Uses Kill Loops to Force Password Entry
- 13:11 : New Framework Redefines AI Penetration Testing Around Prompt Injection and Behavioral Objective Violations
- 13:11 : Hackers Exploit SonicWall SMA1000 Zero-Days to Execute Commands as Root
- 13:10 : Specter Turns Your Flipper Zero Into a Pocket Skimmer Detector
- 13:10 : JetBrains Patched 6 Vulnerabilities Across TeamCity, YouTrack and IntelliJ IDEA
- 13:9 : WhatsApp GhostPairing Lets Scammers Hijack Accounts Without Stealing Passwords
- 13:8 : Hackers Don’t Crack Telegram 2FA—They Copy Your Already Logged-In Session
- 13:8 : Brit Scattered Spider duo handed tickets to prison over Transport for London attack
- 13:8 : ‘ClickLock Stealer’ Bypasses macOS Security With Social Engineering, Process Killing
- 13:7 : AI Data Centers Are Being Built Faster Than They Can Be Secured
- 13:7 : CISA Orders Feds to Patch Oracle Flaw
- 13:7 : AWS CloudFront outage disrupts multiple services
- 13:7 : CISA urges vendors to formalize vulnerability disclosure
- 13:7 : Telegram t.me links disrupted over sanctioned VPN
- 13:6 : AI Bug-Finding Tools Need Human Validation
- 13:5 : IT Security News Hourly Summary 2026-07-16 15h : 16 posts
- 12:34 : Inside Microsoft’s Record-Breaking 622-Bug Release
- 12:34 : Russian cybercriminal used jailbroken Gemini CLI to rebuild botnet infrastructure in six minutes
- 12:34 : Daxin Resurfaces in Taiwan Alongside Stupig Pre-Login SYSTEM Backdoor
- 12:34 : New Agent Data Injection Attack Can Make AI Agents Misclick or Run Attacker Commands
- 12:34 : 20+ Hijacked Government Websites Became an Attack Channel
- 12:34 : “Selfish Bravado” Behind TfL Cyber-Attack, Judge Says as Pair Jailed
- 12:7 : OkoBot Malware Uses ClickFix, Hidden Browser Extensions to Steal Crypto Data
- 12:7 : OpenAI Unveils GPT-Red AI Model That Automatically Finds Prompt Injection Vulnerabilities
- 12:7 : Next.js Announces July Security Release to Fix 4 High-Severity and 5 Medium Flaws
- 12:7 : TuxBot v3: The IoT Botnet Built With AI – Bugs, Disclaimers and All
- 12:6 : GoSerpent: a persistent threat evolves with sophisticated data collection and exfiltration
- 12:6 : CISA Warns Russian FSB Hackers Are Targeting Critical Infrastructure Routers
- 12:6 : Inside “Gold Eagle”: The White House’s New AI-Driven Clearinghouse for Critical Infrastructure
- 12:6 : Breaking the Knot: Marlinspike Capital Inverts the Cybersecurity Investment Playbook
- 12:5 : Intruder brings AI-powered, on-demand penetration testing to web applications
- 12:5 : ValorC3 extends SaaS protection with immutable cloud backups
- 12:4 : ‘Selfish Bravado’ Behind TfL Cyber-Attack, Judge Says as Pair Jailed
- 11:35 : Kratos PhaaS Attacking Microsoft 365 Users Across the US, Europe to Steal Credentials
- 11:35 : GPT-Red – A Red Teamer to Find Prompt Injection Vulnerabilities in GPT 5.6 Sol
- 11:35 : Windows 10 refuses to die, and the security bill is coming due
- 11:34 : Oak Emerges From Stealth Mode With $60 Million in Funding
- 11:8 : Critical Zoom Workplace Flaw Lets Unauthenticated Attackers Take Over Accounts Remotely
- 11:8 : Dutch Police and Europol Disrupt Global Investment Scam Infrastructure and Arrest Key Suspects
- 11:8 : Phishing calls: How to protect yourself from fraudulent phone calls
- 11:7 : Security updates available for Adobe, Chrome, Firefox, VMWare, and Zoom
- 11:7 : Telegram shortlinks knocked offline over sanctioned VPN connection
- 11:7 : Splunk, Zoom Patch Critical Vulnerabilities
- 11:7 : Unpatched Shark Vacuum Flaw Could Let Attackers Control Other Vacuums Region-Wide
- 11:7 : AI Can Find Bugs, But Human Knowledge Still Proves Them
- 10:34 : Romania’s land registry hit by cyber attack, data allegedly for sale
- 10:7 : UAT-11795 deploys novel Starland RAT and bespoke WLDR C2 implant in financially motivated campaign
- 10:7 : The Hunter’s Paradox: Is it time to embrace automated threat hunting?
- 10:7 : Claude Code and DeepSeek Powered Chinese Cyber Espionage Campaign
- 10:6 : AI Appreciation Day: Security Leaders Say the Celebration Needs an Asterisk
- 10:6 : Samsung backs down on threat to delete health data
- 10:5 : IT Security News Hourly Summary 2026-07-16 12h : 17 posts
- 9:35 : CISA Warns of Actively Exploited Oracle E-Business Suite Flaw
- 9:35 : F5 Patches Multiple NGINX, BIG-IP Vulnerabilities
- 9:34 : Lineation.ai focuses on runtime security for autonomous AI agents
- 9:34 : Tenable One unifies code risks with enterprise exposure data
- 9:34 : OpenAI’s GPT-Red Automates Prompt Injection Testing to Harden GPT-5.6 Sol
- 9:34 : SANS Warns of AI Governance Gap as Use by Security Teams Surges
- 9:13 : EU Prepares To Fine Google Over Search, Android
- 9:13 : Splunk Enterprise Flaws Expose Stored Credentials and Allow Arbitrary SPL Searches
- 9:12 : Hackers Pair Stolen Wallet Databases With Keychain Passwords for Offline Crypto Theft
- 9:12 : CISA Warns of Oracle E-Business Suite Vulnerability Actively Exploited in Attacks
- 9:12 : Multiple Splunk Enterprise Vulnerabilities Enable Path Traversal and Information Disclosure Attacks
- 9:11 : Zoom Desktop Client for Windows Flaw Enables Account Takeover via Network Access
- 9:10 : New TuxBot v3 IoT Botnet Uses LLM-Generated Code to Hijack Devices and Launch DDoS Attacks
- 9:10 : China’s Top Cybersecurity Firms Hit by Mounting Military Procurement Bans
- 9:10 : Police take down investment fraud network that stole €100 million a month
- 9:9 : Microsoft makes Windows SSO prompts easier to manage
- 9:9 : US Launches Gold Eagle to Coordinate AI-Driven Vulnerability Management
- 8:37 : Thinking Machines Lab Debuts First AI Model
- 8:37 : Critical JetBrains Flaws Impact IntelliJ IDEA, TeamCity, and YouTrack Users
- 8:36 : Zoom Patches Critical Windows Flaw That Could Enable Account Takeover
- 8:8 : China Approves Long-Delayed iPhone AI Services
- 8:7 : Malicious AI Agents Attempt Reverse Shells, Credential Theft, and Persistent SSH Access
- 8:7 : Zoom Fixes CVE-2026-53412, a Critical Account Takeover Bug
- 8:7 : Old UEFI Shims Expose Systems to Secure Boot Bypass
- 8:6 : VS Code agent host runs Copilot, Claude, and Codex in a dedicated process
- 7:34 : What is a CrashStealer malware?
- 7:34 : Delivery Robots Set To Arrive On Stevenage Pavements
- 7:34 : Hackers Can Type a Secret Username at the Windows Login Screen to Open a SYSTEM Shell
- 7:34 : Zoom’s wake-up call, zero-day SonicWall patch, 23andMe’s growing breach bill
- 7:5 : IT Security News Hourly Summary 2026-07-16 09h : 14 posts
- 7:4 : Devon Council Approves 5G Gear On Lampposts
- 7:4 : Kratos PhaaS Targets Microsoft 365 Users With SharePoint Links and Cloudflare Anti-Bot Checks
- 7:3 : F5 Fixes 3 NGINX Flaws Enabling Potential Remote Code Execution, Memory Disclosure, and DoS Attacks
- 7:3 : Law firm insisted on one password to rule them all
- 7:2 : Nightmare Eclipse Drops ‘LegacyHive’ Windows Zero-Day
- 6:35 : UK AI Investment Reaches £4.56bn In Second Quarter
- 6:35 : UK Proposes Social Media Curfew For Older Teens
- 6:34 : Hackers Use Google Ads and Claude AI Chats to Steal macOS Credentials and Crypto Wallets
- 6:34 : LLM-Assisted TuxBot Botnet Targets IoT Devices Across 17 Processor Architectures
- 6:34 : GPT-5.6 Sol Ultra Writes Complete Chrome Exploit With V8 Sandbox Escape
- 6:34 : What is a SIEM? How it Works, Use Cases, and Top Tools (2026)
- 6:34 : Tech support scam caused massive data breach at Australian airline Qantas
- 6:34 : Trend Micro, Tanium, ESET and Tenable Patch Severe Product Vulnerabilities
- 6:34 : Reading between the lines of a cyber insurance policy
- 6:4 : What public money does to open-source projects
- 5:34 : China-Linked Daxin Backdoor Resurfaces in Taiwan Alongside New STUPIG SYSTEM-Level Malware
- 5:34 : Cursor 0-Day Flaw Executes Malicious git.exe From Repositories Without User Interaction
- 5:34 : Ransom demands are down, email is the top way attackers get in
- 5:6 : Quantum breakthrough links light and magnetism in atomically thin materials
- 5:6 : Companies keep getting breached by vulnerabilities they already knew about
- 4:5 : IT Security News Hourly Summary 2026-07-16 06h : 4 posts
- 4:4 : F5 Patches Multiple NGINX Vulnerabilities Enabling Heap Buffer Overflow and Code Execution Attacks
- 4:4 : Finance phishing works because it sounds boringly normal
- 4:4 : GPT-Red beat human red teamers on a prompt injection test
- 3:6 : ISC Stormcast For Thursday, July 16th, 2026 https://isc.sans.edu/podcastdetail/10010, (Thu, Jul 16th)
- 2:34 : Unpacking the AsyncAPI npm supply chain compromise and import-time payload delivery
- 2:6 : Cyberattack threatens utterly critical infrastructure in Japan: KFC
- 23:34 : The npm Threat Landscape: Attack Surface and Mitigations (Updated July 15)
- 23:8 : Why CISOs should use zero-trust security for IoT
- 22:5 : IT Security News Hourly Summary 2026-07-16 00h : 3 posts
- 21:56 : IT Security News Daily Summary 2026-07-15