IT Security News Weekly Summary 25

210 posts were published in the last hour

• 21:55 : IT Security News Daily Summary 2026-06-21
• 21:8 : SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 102
• 20:6 : The Shadow AI Paradox: Governing Innovation At Machine Speed
• 20:6 : Exploring The 2025 Cyber Threat Landscape: Analysis From The IT And Food And Agriculture Sectors
• 18:4 : Security Affairs newsletter Round 582 by Pierluigi Paganini – INTERNATIONAL EDITION
• 17:13 : New Prinz Eugen Ransomware Targets Recently Modified Files First, Researchers Find
• 17:13 : Gravity SMTP Vulnerability Under Active Exploitation, Over 17 Million Attack Attempts Detected
• 16:5 : IT Security News Hourly Summary 2026-06-21 18h : 2 posts
• 15:9 : Haldwani Cyber Fraud: ₹2.5 Lakh Stolen Without OTP, Raising Bank Security Concerns
• 15:9 : Bitcoin Drops Below $60,000 as Market Selloff and Security Fears Weigh on Crypto
• 13:13 : Unpatchable BootROM Flaw Exposes Apple A12 and A13 SecureROM Chain
• 10:5 : IT Security News Hourly Summary 2026-06-21 12h : 2 posts
• 9:31 : Virus vs Worm: Why the Propagation Difference Actually Matters
• 9:31 : A Critical Deadline Is Approaching for Windows and Linux Security
• 8:33 : Week in review: 74k Fortinet firewall credentials stolen, Splunk Enterprise RCE under active attack
• 7:33 : GentleKiller Ransomware Abuses Vulnerable Drivers to Disable 400+ EDR Security Processes
• 22:5 : IT Security News Hourly Summary 2026-06-21 00h : 1 posts
• 21:55 : IT Security News Daily Summary 2026-06-20
• 21:4 : Signal’s Meredith Whittaker wants you to remember that AI chatbots ‘are not your friends’
• 19:5 : IT Security News Hourly Summary 2026-06-20 21h : 1 posts
• 18:6 : CyberSentinel AI with 33 Security Tools, Including Nmap, SQLMap, ZAP, and uses Claude, GPT
• 17:2 : This simple twist could bring quantum computers closer to reality
• 16:33 : Operation Escaneo Signals Shift in Latin America Cyber Threat Landscape
• 16:33 : AutoJack Reveals New Threat to Autonomous AI Agent Security
• 16:13 : Man in the Middle Attack: Techniques, Real Examples, and Defences
• 16:13 : Inside GentleKiller: The EDR-Killer Powering The Gentlemen
• 16:5 : IT Security News Hourly Summary 2026-06-20 18h : 1 posts
• 15:8 : Critical Flaws in SiderAI and MaxAI Chrome Extensions Expose Millions to Browser Hijacking
• 14:32 : How to Detect a Keylogger on Your System
• 14:32 : usbliter8 Exploit Achieves Code Execution in Apple’s Unpatchable SecureROM
• 14:31 : Why Amazon hates ‘human-in-the-loop’ AI governance
• 14:31 : GopherWhisper APT
• 13:5 : IT Security News Hourly Summary 2026-06-20 15h : 1 posts
• 12:33 : MDR Provider Comparison: Time to Discover and Respond to Threats
• 12:4 : Cybersecurity Leaders Face Growing Workloads as AI Changes the Job
• 11:9 : Texas TPWD Vendor Breach Exposes 3 Million Customer Records
• 11:9 : Apple Patches Beats Studio Buds Flaw That Could Enable Wiretapping
• 10:34 : Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys
• 10:6 : Hackers Claim to Leak Stolen Madison Square Garden Data
• 10:6 : French President Urges US to Share Cutting-Edge AI and Democracies to Cooperate on Regulation
• 10:5 : IT Security News Hourly Summary 2026-06-20 12h : 2 posts
• 9:7 : CISA Warns of Active Exploitation Following FortiBleed Leak
• 9:6 : FortiBleed Exposes Global Credential-Spraying Operation
• 7:31 : Vidar Infostealer Bypasses Google Chrome’s ABE Encryption via APC Injection
• 7:6 : Gentlemen RaaS Unifies HexKiller, ThrottleBlood, and HavocKiller in New Evasion Suite
• 7:5 : IT Security News Hourly Summary 2026-06-20 09h : 1 posts
• 6:36 : AutoJack Exploit Chain Hits Microsoft AutoGen Studio With Zero-Click RCE Attack
• 5:6 : From PGP to Mythos: a brief history of export controls that didn’t stop anyone
• 5:6 : JCPenney – 368,418 breached accounts
• 5:6 : AutoJack – A Single Web Page Can Hijack Your AI Agent to Execute Malicious Code
• 5:6 : 5 People You Meet In Cybersecurity – David Shipley Interviews Amy Lee
• 4:5 : IT Security News Hourly Summary 2026-06-20 06h : 2 posts
• 4:4 : Innovator Spotlight: Centrii
• 4:4 : Innovator Spotlight: Ensemble
• 2:33 : Threat Brief: Mitigating Large-Scale Credential Attacks
• 23:4 : Encryption, spyware, and now Mythos: History shows why cyber export control doesn’t work
• 22:34 : Android 17 Is Live on Pixel, but Samsung and Other Android Users Still Have to Wait
• 22:10 : Analysis of Reported Credential Compromise of FortiGate Devices
• 22:5 : IT Security News Hourly Summary 2026-06-20 00h : 2 posts
• 21:55 : IT Security News Daily Summary 2026-06-19
• 21:33 : Friday Squid Blogging: Victims of Unregulated Squid Fishing
• 20:33 : The Department of Know: SearchLeak, Check Point zero-day, and pulling the plug on Fable
• 19:33 : What Are AI SOC Agents? Use Cases, Architecture, and the Leading Vendors
• 19:10 : ShinyHunters targets Oracle PeopleSoft customers through critical zero-day
• 19:10 : AI-Powered Attacks Become Top Concern for Security Professionals, New Filigran Survey Reveals
• 19:5 : Unpatchable ‘usbliter8’ Exploit Breaks Apple A12 and A13 SecureROM Boot Chain
• 18:34 : Testing Strategies for Web Development Code Generated by LLMs
• 17:34 : Meteor 3.0 Migration Helped Rocket.Chat Move Off End-of-Life Node.js Runtime
• 17:34 : CISA Adds LiteSpeed cPanel Plugin Vulnerability to KEV List Following Active Exploitation
• 17:34 : NSPM-12: The New Baseline for National Security Cybersecurity
• 17:34 : AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution
• 16:33 : Nearly 15,000 infected websites cleaned in SocGholish crackdown
• 16:7 : Researchers drop checkm8-style BootROM exploit for A12 and A13 iPhones
• 16:7 : Chrome Extensions’ Critical Flaws Let Attackers Easily Compromise Millions of Browsers
• 16:5 : IT Security News Hourly Summary 2026-06-19 18h : 9 posts
• 15:34 : In Other News: Apple Patches Beats Eavesdropping Flaw, DOT Closes Delta CrowdStrike Probe, AWS Continuum
• 15:34 : INC Ransomware Climbs Into Top Tier of Cybercrime Operations, Surpasses 830 Victims
• 15:34 : India Temporarily Bans Telegram Ahead of NEET UG 2026 Re-Exam to Curb Fraud
• 15:34 : Ukraine Joins EU Cybersecurity Reserve to Strengthen Cyber Resilience and Emergency Response
• 15:34 : Operation Endgame Disrupts SocGholish Servers, Cleans 14,971 WordPress Sites
• 15:7 : Gcore Helps Ucom Safeguard Public Live Broadcast Infrastructure During Armenia’s Parliamentary Elections
• 15:6 : Amazon Prime Day 2026: Bargains Begin June 23 — and So Do the Scams
• 15:6 : Timelines
• 15:6 : CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices
• 14:32 : Researchers found a Wordle strategy that wins 99% of the time
• 14:31 : Teaching Cybersecurity the Way It’s Actually Used
• 14:31 : Cyber Briefing: 2026.06.19
• 14:7 : Nintendo America Employee Data Exposed After Shadowbyt3$ Targets TinyPulse
• 14:7 : Critical Chrome Extension Vulnerabilities Let Attackers Easily Compromise Browsers
• 14:7 : 14,971 WordPress Sites Cleaned in Global SocGholish Takedown
• 14:6 : HazyBeacon Weaponizes AWS Lambda Function URLs for Stealth Command-and-Control Relays
• 13:34 : eFAQ Publishes Investigation Into Alleged Scam Activity and Coordinated Reputation Attacks
• 13:34 : Critical WordPress Plugin Bug Could Allow File Deletion Attacks on 1 Million Sites
• 13:33 : Klue breach lead to Salesforce data theft, Huntress affected
• 13:9 : Everything’s bigger and better in Texas – even data breaches
• 13:9 : CISA Urges Hardening Fortinet Devices Following FortiBleed Attack
• 13:9 : INC Ransomware Uses Rust-Based Windows and Linux/ESXi Encryptors in New Attacks
• 13:9 : Hackers Abuse Third-Party Okendo Reviews Script to Spread SmartApeSG Malware Campaign
• 13:9 : From Assistive to Agentic: The AI Shift That’s Redefining Threat Management
• 13:9 : Microsoft fixes Windows Server 2016 update failures
• 13:9 : Kodak confirms breach; ShinyHunters leak deadline passes
• 13:9 : Google reCAPTCHA adds hand gesture verification
• 13:9 : CMA fines Marks Electrical £720k for unauthorized opt-ins
• 13:8 : Render hosts Localhost dev conference on AI-native infrastructure
• 13:5 : IT Security News Hourly Summary 2026-06-19 15h : 1 posts
• 12:34 : Cybercriminals abused GitHub, YouTube and VirusTotal to push crypto-stealing malware
• 12:4 : Apple patches Beats Studio Buds flaw that could turn earbuds into a wiretap
• 12:4 : Nintendo Confirms Third-Party Survey Data Breach, Says Customer Information Remains Secure
• 12:4 : Forget Data Leakage: Shadow AI’s Real Threat Is Access Control
• 11:31 : Anthropic’s Fable and the State of AI
• 11:31 : Britain’s privacy watchdog quits after ‘poor judgment’ admission
• 11:31 : CryptoBandits Malware Doubles as a Backdoor, Abuses Tor
• 11:7 : UEFI DBX Update Guidance Targets Vulnerable Vendor-Signed Boot Applications
• 11:7 : Rights groups brand Home Office’s AI age guesser for asylum-seekers as biased and inaccurate
• 11:7 : 124M Passwords Exposed as Infostealer Malware Hits Millions of Devices
• 11:7 : 24B Records Exposed in Massive Leak of Emails, Passwords, and Login Data
• 11:7 : U.S. CISA adds Splunk Enterprise flaw to its Known Exploited Vulnerabilities catalog and urges agencies to fix it by Sunday
• 11:7 : FortiBleed: 86,000 Fortinet Device Credentials Compromised
• 11:7 : Forget traffic lights, Google’s reCAPTCHA may ask for hand gestures
• 11:7 : Unauthenticated RCE in Splunk Enterprise under active attack (CVE-2026-20253)
• 11:7 : AWS Unveils ‘Continuum,’ an AI-Powered Vulnerability Management Platform
• 10:33 : Operation Endgame Disrupts Malware Network Linked to Major Ransomware Gang
• 10:11 : FIFA World Cup 2026: Hackers Target Football Fans With Fake Tickets Sites
• 10:11 : Mastodon 4.6 adds profile Collections and two-factor controls
• 10:5 : IT Security News Hourly Summary 2026-06-19 12h : 9 posts
• 9:34 : SmartApeSG Hackers Abuse Okendo Reviews Widget in E-Commerce Supply Chain Attack
• 9:34 : China-Linked Showboat Malware Uses Linux Persistence to Target Telecom Companies
• 9:34 : Cybersecurity Firms Impacted by Klue Supply Chain Attack
• 9:34 : Accenture to buy Dragos, runZero, and NetRise in $4.2 billion cybersecurity deal
• 9:34 : Google sets timeline for Android developer verification enforcement
• 9:33 : Salesforce Disables Klue App Integration After OAuth Token Abuse Exposes Customer Data
• 9:7 : CISA Issues Alert on Critical Splunk Enterprise Bug Under Active Exploitation
• 9:6 : HazyBeacon Abuses AWS Lambda Function URLs for Stealthy Command-and-Control Operations
• 9:6 : Confidence Lacks in Threat Detection Across Non-Email Channels like Slack and Teams
• 8:32 : Node.js Releases Security Updates for 12 Vulnerabilities, Two Rated High Severity
• 8:32 : The Invisible CEO of Crisis: Breaking the Cycle of CISO Burnout
• 8:32 : Expanding Our Footprint: Local Cloud Availability for Prisma AIRS in Japan
• 8:31 : Hackers Use Weaponized Windows Shortcuts to Spread Crypto Clipper Across USB Drives
• 8:31 : Node.js Fixes 12 Vulnerabilities, Including 2 High-Severity Authentication Bypasses
• 8:31 : CISA Warns of Splunk Enterprise Critical Function Vulnerability Actively Exploited in Attacks
• 8:31 : Frontier Airlines API Exposes Passport, Credit Card, and Personal Data via Boarding Pass Information
• 8:6 : Did Iranian hackers cause operational disruptions to water and wastewater systems in the USA?
• 8:6 : INC Ransomware Uses Double Extortion and Printer Ransom Notes to Pressure Victims
• 8:6 : ISA VDA 6.0.3 (part 2) — Information Security Sheet: IS Policies and Organization
• 8:6 : Peter Thiel ‘s Secret Society Leak Creates a Perfect Target List for Espionage, Influence Operations, and Blackmail
• 7:34 : eBanking Phishing Delivered Through IPv4-Mapped IPv6 Address, (Fri, Jun 19th)
• 7:34 : AI-Powered Public Surveillance and Biometric Data Collection Expand Government Monitoring
• 7:34 : Cisco to Acquire WideField Security to Boost Splunk’s Agentic SOC
• 7:33 : BlackFog brings shadow AI visibility to macOS endpoints with ADX Vision
• 7:33 : Police clean WordPress sites, Klue OAuth breach, Warner’s CISA warnings
• 7:9 : The ASLR Caveat on NGINX’s Critical HTTP/3 Flaw Changes Nothing About Urgency
• 7:9 : EU Set To Place Azure, AWS In DMA Crosshairs
• 7:8 : Early Manus Backers Funding Re-Acquisition From Meta
• 7:8 : Showboat Malware Uses Pastebin-Hosted C Code to Enable Linux Process Hiding
• 7:8 : 15,000 WordPress Websites Cleaned Up in SocGholish Botnet Takedown
• 7:8 : Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone
• 7:8 : The OpenSSL Library AI Policy
• 7:5 : IT Security News Hourly Summary 2026-06-19 09h : 4 posts
• 6:6 : DeepSeek Hits $59bn Valuation In First Funding Round
• 6:6 : New Crypto Clipper Uses Windows Script Host and ActiveXObject for Remote Code Execution
• 6:6 : 24 Billion Stolen Credentials Exposed in Massive Data Leak
• 6:6 : Your browser tab could become encrypted storage for someone else’s files
• 5:31 : iPhone BootROM Vulnerability Opens Door to Full Apple SoC Trust Chain Compromise
• 5:31 : Hackers Exploit Klue Integration to Steal Salesforce CRM Data Using OAuth Tokens
• 5:31 : Companies are discarding the logs they need to catch a breach
• 5:4 : Authorities Seize 106 Servers and 101 Domains in Major SocGholish Malware Takedown
• 5:4 : State Digital Surveillance Puts Foreign Travelers and Businesses at Risk Across 31 Countries
• 5:4 : SpaceX wants to build AI data centers in space. Will it work?
• 5:4 : Asia-Pacific scam networks generate nearly $40 billion a year
• 4:34 : Splunk Enterprise Vulnerability Exploited in Attacks Days After Disclosure
• 4:33 : FortiBleed Emergency: 74,000 Fortinet Logins Exposed
• 4:11 : New infosec products of the week: June 19, 2026
• 4:5 : IT Security News Hourly Summary 2026-06-19 06h : 1 posts
• 3:33 : Killing me gently: Inside Gentlemen’s EDR killer framework
• 3:4 : Microsoft Exposes Malware Operation Combining USB LNK Worms and Tor-Based C2 Servers
• 1:34 : Alibaba Cloud Bets on France as Europe Seeks More Control Over AI
• 1:34 : AI Crackdowns, Mega Mergers, and Security Chaos Define This Week in Tech
• 1:34 : AutoJack: How a single page can RCE the host running your AI agent
• 1:6 : PeopleSoft PeopleTools Pre-Authentication RCE: A PSIGW SSRF Chain That Executes Inside the JVM
• 1:6 : Ralph Lauren – 139,903 breached accounts
• 1:6 : Authorities Dismantle SocGholish Malware Network — 106 Servers and 101 Domains Seized
• 22:34 : Most security pros say their culture is ‘just average’
• 22:34 : How the Peter Thiel-Linked Dialog Club Secretly Ranks Its Members
• 22:5 : IT Security News Hourly Summary 2026-06-19 00h : 5 posts
• 22:4 : Operation Endgame 4.0 – 153,527 breached accounts
• 21:55 : IT Security News Daily Summary 2026-06-18
• 21:34 : Stop Treating Your LLMs Like Web Servers
• 21:34 : How Biometrics Help Combat Human Trafficking at Major Events Like the FIFA World Cup and Super Bowl
• 21:34 : CISA Urges Hardening Fortinet Devices After Reports of Credential Exposure
• 20:8 : SearchLeak Flaw Exposed Sensitive Data in Microsoft 365 Copilot
• 19:34 : MacBook Neo vs Windows Laptops for Cybersecurity Tasks
• 19:33 : Accelerate security investigations with Kiro CLI
• 19:9 : Operation Endgame Disrupts SocGholish Malware Infrastructure
• 19:9 : AI Is Finding Bugs Faster Than Enterprises Can Patch — Here’s What Data Security Teams Should Do
• 19:9 : Tor-Based Clipper Malware Targets Wallet Seed Phrases
• 19:9 : F5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code Execution
• 19:5 : IT Security News Hourly Summary 2026-06-18 21h : 11 posts
• 18:7 : Close Encounters of the Human Kind
• 18:7 : DNS Is Your Most Critical — and Most Misconfigured — Security Control
• 18:7 : Top Java Security Vulnerabilities and How to Prevent Them in Modern Java
• 18:7 : ‘Popa’ Botnet Linked to Publicly-Traded Israeli Firm
• 18:7 : Are Job Search Platforms Putting Your Data at Risk?
• 18:7 : Operation Endgame Disrupts SocGholish Malware Network Tied to Ransomware Attacks
• 18:7 : CISA Adds One Known Exploited Vulnerability to Catalog
• 18:7 : Apollo Pharmacy Blood Glucose Monitoring System APG-01 BT
• 18:7 : Hackers Breached Klue Integration to Steal Salesforce CRM Data via OAuth Tokens
• 18:6 : New iPhone BootROM Vulnerability Exposes Apple SoCs to Full Chain-of-Trust Compromise
• 18:6 : New Forrester study shows customers who unified with Microsoft Security benefited from 124% ROI
• 17:34 : Wordfence Intelligence Weekly WordPress Vulnerability Report (June 8, 2026 to June 14, 2026)
• 17:34 : UK Orders Google To Improve Search Transparency