London Hydro has confirmed a data breach that exposed a range of customer information to unauthorized access. This article has been indexed from CyberMaterial Read the original article: London Hydro customer data breach
Cloudflare, browsers launch privacy token protocol
Cloudflare and the three major commercial browser makers have committed to developing Private Access Control Tokens (PACTs), a new protocol designed to help websites distinguish legitimate traffic from abusive requests without relying on CAPTCHAs or invasive identity checks. This article…
Two Scattered Spider members plead guilty to £39m TfL cybera
Two young British men have pleaded guilty to orchestrating a cyberattack on Transport for London that resulted in £39 million in damages and significant operational disruption. This article has been indexed from CyberMaterial Read the original article: Two Scattered Spider…
OpenClaw AI Marketplace Malicious Skills
Palo Alto Networks’ Unit 42 research team has identified malicious AI skills distributed through ClawHub, an artificial intelligence marketplace, that successfully bypass automated security scanning systems. This article has been indexed from CyberMaterial Read the original article: OpenClaw AI Marketplace…
Payouts King Initial Access Broker Deploys Edgecution Malware Through Malicious Edge Extension
A concerted campaign by an initial access broker with ties to the Payouts King ransomware ecosystem that leverages a novel browser-based delivery technique to establish persistent host-level control. The actor deploys a malicious Microsoft Edge extension dubbed “Edgecution” which abuses…
Tata Electronics Breached: Apple & Tesla Secrets Leaked in Massive Cyberattack!
Tata Electronics, a major manufacturing powerhouse and key supplier for tech giants like Apple and Tesla, has officially… The post Tata Electronics Breached: Apple & Tesla Secrets Leaked in Massive Cyberattack! appeared first on Hackers Online Club. This article has…
Embedding Forbidden Text in Spyware to Discourage AI Analysis
At least one malware developer is adding text about nuclear and biological weapons to their spyware, in an effort to stop automatic AI analysis. Details: The _index.js payload begins with a large JavaScript block comment containing fake system instructions and…
VPN Internals Explained: Protocols, Leaks, and What the Kill Switch Actually Does
A technical breakdown of how a VPN works: packet handling, protocol comparisons, DNS and WebRTC leak vectors, kill switch limitations, and why the enterprise VPN era is ending. VPN Internals Explained: Protocols, Leaks, and What the Kill Switch Actually Does…
Malicious AI Agent Skill Bypasses Security Scans and Seizes Full Control of Over 26,000 Agents
A malicious AI “skill” created as part of a controlled security experiment has exposed critical weaknesses in modern AI agent ecosystems, successfully bypassing security scanners and compromising more than 26,000 agents across individual and enterprise environments. According to researcher Niv…
“Total access to all your devices.” Sextortion scammers strike again
They say they have videos, malware, and total control of your devices. Here’s how to read a sextortion email like a security researcher instead of a victim. This article has been indexed from Malwarebytes Read the original article: “Total access…
Exploitable CI/CD Vulnerabilities Expose Millions of Repositories to Hijacking
The security defects allow unauthenticated users to take control of the open source software supply chain. The post Exploitable CI/CD Vulnerabilities Expose Millions of Repositories to Hijacking appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…
PoC Released for Microsoft Exchange Server EWS InstallApp SSRF Vulnerability
A proof-of-concept exploit has been released for CVE-2026-45502, a server-side request forgery (SSRF) vulnerability in the Microsoft Exchange Server’s Exchange Web Services (EWS) InstallApp operation. This vulnerability poses risks to organisations that have not yet deployed the security updates from…
BeyondTrust, LastPass Impacted by Klue-Salesforce Incident
Over a dozen Klue customers have confirmed that hackers stole data from their Salesforce instances. The post BeyondTrust, LastPass Impacted by Klue-Salesforce Incident appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: BeyondTrust, LastPass…
LastPass customer data exposed through Klue supply chain attack
LastPass disclosed that attackers used OAuth tokens compromised in a supply chain attack on Klue, a market intelligence platform that integrates with CRM and sales tools across organizations, to access customer data stored in its Salesforce environment. “On June 12th…
Fable 5 AI Model Builds Bootable Windows Kernel in Rust in Just 38 Minutes
A newly released AI model, Claude Fable 5, has made a significant advancement in autonomous systems programming by generating a bootable Windows NT-style kernel in Rust in just 38 minutes. The project, titled ntoskrnl-rs, began as an empty repository and…
Webmin Stored XSS Vulnerability Lets Attackers Exploit Root Users
A newly disclosed stored cross-site scripting (XSS) vulnerability in Webmin has raised significant security concerns, as it allows attackers with limited privileges to target and potentially compromise root users. This vulnerability, tracked as CVE-2026-22678, affects Webmin versions before 2.641 and…
FortiBleed: The Broker Who Turned 73,000 Firewalls Into a Product Catalog
FortiBleed exposed valid credentials for 73,000+ Fortinet firewalls, revealing a large-scale access-brokering operation targeting organizations worldwide. In mid-June 2026, researcher Volodymyr “Bob” Diachenko found a live, exposed server containing working login credentials for tens of thousands of Fortinet firewalls, a…
U.S. CISA adds Ubiquiti UniFi OS and Lantronix EDS5000 plugin flaws to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Ubiquiti UniFi OS and Lantronix EDS5000 flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Ubiquiti UniFi OS and Lantronix EDS5000 flaws to its Known Exploited…
StrikeShark: investigating a new campaign delivering Cobalt Strike through SharkLoader
Kaspersky researchers analyze a new global campaign dubbed StrikeShark that delivers Cobalt Strike Beacon via custom SharkLoader malware. This article has been indexed from Securelist Read the original article: StrikeShark: investigating a new campaign delivering Cobalt Strike through SharkLoader
Claude Fable 5 Wrote Windows Kernel Code in Rust in 38 Minutes
Anthropic’s Claude Fable 5 generated a complete, bootable NT-compatible Windows kernel written in Rust called ntoskrnl-rs from an empty directory in just 38 minutes of active model work, raising profound questions about AI-authored trust and the future of critical infrastructure…
Malicious AI Agent Skill Bypasses Security Scans and Seized Full Control of Over 26,000 Agents
A malicious AI “skill” created as part of a controlled security experiment has exposed critical weaknesses in modern AI agent ecosystems, successfully bypassing security scanners and compromising more than 26,000 agents across individual and enterprise environments. According to researcher Niv…
IT Security News Hourly Summary 2026-06-24 12h : 4 posts
4 posts were published in the last hour 9:37 : Cisco Unified Communications Manager Flaw Exposes Systems to SSRF Attacks and Root Access 9:36 : Google Workspace expands password reset alerts to all admins 9:36 : DoJ Seizes Huione Cloud…
Cisco Unified Communications Manager Flaw Exposes Systems to SSRF Attacks and Root Access
Cisco has disclosed a critical server-side request forgery (SSRF) vulnerability affecting its Unified Communications Manager (Unified CM) and Unified Communications Manager Session Management Edition (Unified CM SME). This vulnerability could enable unauthenticated remote attackers to write files to the underlying…
Google Workspace expands password reset alerts to all admins
Google’s Alert Center, a dashboard in the Google Admin console that displays security and administrative alerts and helps administrators identify, investigate, and respond to issues affecting their organization, is expanding the “Super Admin password reset” alert into the “Admin password…