The cyber attacks timeline for 1-15 June 2026 is out with 80 confirmed events dominated by cyber crime, malware, and exploitation of public-facing applications. Information & Communication led the most targeted sectors, while supply chain was under fire. This article…
Hackers steal passport and driver’s license data of 3 million Texans
A breach at a Texas Parks and Wildlife Department vendor exposed personal information belonging to more than three million Texans. This article has been indexed from Malwarebytes Read the original article: Hackers steal passport and driver’s license data of 3…
Russian Initial Access Broker Behind FortiBleed Campaign
Using a custom sniffer, the threat actor has captured over 110 million credentials since at least February 2026. The post Russian Initial Access Broker Behind FortiBleed Campaign appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…
GTA 6 early access offers are taking gamers’ crypto
Scam websites are circulating across the internet with a pitch aimed at millions of gamers: a way to play Grand Theft Auto VI before its release. The pages promise early access for a few hundred dollars in cryptocurrency, ask buyers…
2 Scattered Spider-Linked Hackers Plead Guilty Over £39M TfL Cyberattack
Two teenagers face sentencing after admitting to a massive Scattered Spider cyberattack that hit Transport for London (TfL) and US healthcare networks. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, AI and More Read the original…
Microsoft Uncovers Parallel Threat Activity From Two Cyberattackers in Single Intrusion
Microsoft’s latest incident write-up shows that a single intrusion can mask two parallel threat activity streams, one tied to Storm-2603 and another to an unknown actor, making the attack far more complex than a conventional ransomware case. The incident began…
Two Scattered Spider hackers plead guilty over Transport for London cyberattack
Two members of the notorious hacker group Scattered Spider have pleaded guilty to charges related to a 2024 cyberattack on Transport for London (TfL) that resulted in £29 million in loss and recovery costs. Thalha Jubair, 20, from London, and…
Critical FFmpeg Vulnerability Allows Attackers to Weaponize Media Files
A critical vulnerability has been disclosed in FFmpeg’s MagicYUV decoder that allows attackers to weaponize seemingly harmless media files and, in some scenarios, achieve remote code execution (RCE). The flaw, tracked as CVE-2026-8461 and dubbed “PixelSmash,” is a heap out-of-bounds…
Critical libssh2 Vulnerability Allows Attackers to Execute Remote Code Via Malicious SSH packets
A critical security vulnerability has been identified in the widely used libssh2 library, allowing remote attackers to execute arbitrary code through specially crafted SSH packets. The flaw, tracked as CVE-2026-55200, carries a CVSS score of 9.2 and is classified under…
New Phishing Attack Abuses Outlook and Microsoft 365 Groups Features to Attack Users
Phishing attacks have grown more sophisticated, and attackers are no longer relying on clunky fake emails or obvious scam messages. A newly identified campaign shows how threat actors are turning everyday Microsoft 365 tools into weapons, hiding their attacks inside…
IT Security News Hourly Summary 2026-06-23 12h : 13 posts
13 posts were published in the last hour 10:5 : Tata Electronics Data Breach Exposes Confidential Apple and Tesla Documents 10:4 : Researcher Earns $148,337 for Google Cloud Production RCE Vulnerability 10:4 : GTA 6 early access is nothing but…
Tata Electronics Data Breach Exposes Confidential Apple and Tesla Documents
Indian electronics manufacturing giant Tata Electronics confirmed a “cybersecurity incident” on Monday after ransomware group World Leaks published over 200,000 files totaling more than 630 gigabytes on the dark web, allegedly containing proprietary and confidential documents belonging to Apple and…
Researcher Earns $148,337 for Google Cloud Production RCE Vulnerability
A researcher has earned a total of 148,337 USD from Google for uncovering a set of flaws in Google Cloud’s Application Integration service that escalated into remote code execution (RCE) in Google Cloud production. The core bug is now tracked…
GTA 6 early access is nothing but a scam
No matter what a website claims, nobody is selling legitimate GTA 6 early access. And scammers are counting on fans believing otherwise. This article has been indexed from Malwarebytes Read the original article: GTA 6 early access is nothing but…
Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT
Cybersecurity researchers have discovered a set of malicious npm packages that are designed to deliver a Windows-based remote access trojan (RAT). The list of identified packages, is below – aes-decode-runner-pro (145 downloads) postcss-minify-selector (256 downloads) postcss-minify-selector-parser (615 downloads) All the…
Canadian Electricity Provider London Hydro Discloses Data Breach
Hackers stole customers’ names, addresses, email addresses, phone numbers, and account information. The post Canadian Electricity Provider London Hydro Discloses Data Breach appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Canadian Electricity Provider…
Mavenir turns NOC knowledge into automation for autonomous networks
Mavenir has announced its Agentic Service Assurance Framework, a TM Forum IG1251/IG1453-aligned, multi-agent system that automates complex network operations across multiple domains without replacing existing systems. The framework pairs an Intent Orchestrator with a multi-layer agentic ecosystem in which AI…
Hack The Box adds crisis simulations and SOC training to strengthen cyber readiness
Hack The Box (HTB) has announced new capabilities to help security leaders gain greater visibility into skills, performance and operational readiness. As AI transforms cyberattacks and cybersecurity operations, HTB is expanding its cyber readiness platform to help organizations identify gaps,…
Omada Identity Sovereign targets Europe’s growing digital sovereignty demands
Omada has introduced Omada Identity Sovereign, a new solution that enables organizations to take direct control over where and how their identity governance is deployed. The solution addresses the digital sovereignty requirements, including data, operational, and jurisdictional control, that regulated…
Scattered Spider Teens Convicted of TfL Cyber-Attack
Two young British men have pleaded guilty to hacking Transport for London as part of a Scattered Spider plot This article has been indexed from www.infosecurity-magazine.com Read the original article: Scattered Spider Teens Convicted of TfL Cyber-Attack
California Lawsuit Claims AI Inflated Petrol Prices
Consumers sue petrol station operators in California under new antitrust law that prevents use of shared pricing algorithms This article has been indexed from Silicon UK Read the original article: California Lawsuit Claims AI Inflated Petrol Prices
SK Hynix Tops Samsung Market Value Amid Memory Boom
Samsung dethroned as South Korea’s most valuable listed company for first time since 2000, as sustained AI spending rewrites rules This article has been indexed from Silicon UK Read the original article: SK Hynix Tops Samsung Market Value Amid Memory…
Critical libssh2 Vulnerability Lets Remote Attackers Execute Code via Crafted SSH Packets
A critical security vulnerability has been identified in libssh2, a widely used client-side SSH library. This flaw allows remote attackers to execute code by sending specially crafted SSH packets. The vulnerability, tracked as CVE-2026-55200, has a CVSS score of 9.2…
ShapedPlugin Supply Chain Attack Backdoors Pro Plugin Updates
Attackers backdoored ShapedPlugin Pro updates, deploying malware that steals credentials, 2FA secrets, and grants full site access. If you installed a ShapedPlugin Pro plugin between April and June 2026 and kept it updated, your site may be compromised. Not because…