A threat campaign targeting Indian government job seekers is using a recruitment notice for Senior Field Officer positions in the Cabinet Secretariat as a lure to deploy a custom remote access Trojan, SheetAgent RAT. The campaign begins with a ZIP…
SonicWall warns of active exploitation of two SMA 1000 zero-days
SonicWall warns of active attacks exploiting two SMA 1000 zero-days, including a flaw enabling arbitrary command execution. SonicWall confirmed the active exploitation of two zero-day vulnerabilities affecting Secure Mobile Access (SMA) 1000 appliances. The vulnerabilities were internally discovered and reported…
Fluke – 821,100 breached accounts
In July 2026, electronic test and measurement equipment company Fluke was targeted in a ShinyHunters “pay or leak” extortion campaign. The group subsequently published more than 100GB of data allegedly taken from the company. The corpus contained largely corporate contact…
This fake Apple app can unlock your Mac’s password vault
Disguised as Apple’s CrashReporter, CrashStealer steals passwords, browser data, crypto wallets, and other sensitive information. This article has been indexed from Malwarebytes Read the original article: This fake Apple app can unlock your Mac’s password vault
FreeRDP 3.29.0 security update resolves 22 advisories
FreeRDP is a free implementation of the Remote Desktop Protocol, released under the Apache license, and it runs on a large share of workstations and servers through the many tools built on it. The 3.29.0 version is a security, bugfix,…
AWS retools Security Hub for AI and multicloud threats
AWS added AI workload protection and Microsoft Azure security monitoring to Security Hub, its centralized security platform for collecting and prioritizing security findings across cloud environments. Support for additional cloud platforms will follow. “Collecting findings was never the hard part.…
Government Updates UK’s National Risk Register with Cyber Warnings
The UK government is warning of the potential impact of catastrophic cyber-attacks This article has been indexed from www.infosecurity-magazine.com Read the original article: Government Updates UK’s National Risk Register with Cyber Warnings
UK Man Jailed Over SWAT Calls After Being Identified By FBI
Callum Dare, 26, sentenced to prison in first sentence in Wales for hoax calls designed to trigger armed police response This article has been indexed from Silicon UK Read the original article: UK Man Jailed Over SWAT Calls After Being…
New LegacyHive Windows 0-day Vulnerability Allows Users to Load Another User’s Registry
A proof-of-concept exploit dubbed LegacyHive has been released, enabling a Windows elevation-of-privilege vulnerability in the Windows User Profile Service that allows a standard user to load another user’s registry hive under their own registry classes root. Registry hives are files…
Gamers Download Fake Cheats and Hand Attackers a Live Remote Control of Their Windows PCs
New research uncovered 11 malicious NuGet packages disguised as game cheats, bots, and management panels for popular online titles. The campaign targets gaming communities playing titles such as Albion Online, GTA5RP, GrandRP, Majestic RP, and Throne and Liberty. Once installed,…
Chinese Hackers Embed Claude Code and DeepSeek in AI-Powered Government Cyberattacks
An active, highly structured intrusion campaign co-opting commercial artificial intelligence platforms as operational engines for state-sponsored operations. Rather than acting as peripheral research tools, Claude Code and DeepSeek-v4-pro were embedded directly into the core execution flows of a China-linked cyber…
Researcher Claims Bypass of EU Age Verification App Using Chrome Extension
Security researcher Paul Moore has once again exposed critical weaknesses in the EU’s flagship age verification system, this time by bypassing the latest app release (version 2026.07-1) using a Chrome extension powered by ClaudeAI. The proof-of-concept shows that, despite months…
Virgin Media Fined After Dropping Calls Of Those Trying To Switch
Record £28m Ofcom fine comes after Virgin Media repeatedly dropped calls, put customers on hold for no reason for nearly three years This article has been indexed from Silicon UK Read the original article: Virgin Media Fined After Dropping Calls…
Product showcase: Trust Chain TPRM turns vendor compliance evidence into verified assurance
Trust Chain is an AI-native third-party risk management (TPRM) solution by Strike Graph that replaces the security questionnaire model with validated evidence of compliance. Rather than asking vendors to self-report their security posture, Trust Chain requires vendors to submit evidence,…
Fortinet adds AI controls and data loss prevention to FortiEndpoint
Fortinet has announced new capabilities for its unified endpoint platform, FortiEndpoint, designed to help organizations securely adopt AI, protect sensitive data, and reduce risk. By bringing AI visibility and control, native data security, endpoint risk scoring, and FortiAI-assisted operations into…
Drivers Sue Uber Over AI Manipulation
Uber allegedly uses AI systems to predict lowest fares drivers will accept, manipulates their behaviour using slot machine-like tactics This article has been indexed from Silicon UK Read the original article: Drivers Sue Uber Over AI Manipulation
FaceTime Scammers Combine Credential Theft, Remote-Access Apps, and iOS Exploits for Device Takeover.
Apple-focused scam operations are increasingly using FaceTime as a high-trust social-engineering channel to steal credentials and, in higher-risk cases, prepare victims for device compromise. Apple said threat actors may approach targets via phone calls, FaceTime, SMS, email, and other communications,…
Critical Vulnerabilities Patched With Fresh Chrome 150, Firefox 152 Updates
Public exploit code targeting the Firefox flaws exists, but no in-the-wild exploitation has been observed. The post Critical Vulnerabilities Patched With Fresh Chrome 150, Firefox 152 Updates appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…
CMMC Phase II suspended, tracking troops in Iran, defenders turn to context bombing
Pentagon suspends CMMC Phase II requirements US troop location data under attack in Iran “Context Bombing” flips the script on prompt injections Get the show notes here: https://cisoseries.com/cybersecurity-news-cmmc-phase-ii-suspended-tracking-troops-in-iran-defenders-turn-to-context-bombing/ Huge thanks to our sponsor, ThreatLocker Every security leader is being asked…
11 Old Signed UEFI Shims Just Broke Secure Boot on Millions of PCs
ESET found 11 Microsoft-signed UEFI shims, some over a decade old, that let attackers bypass Secure Boot without a single new exploit. 11 Old Signed UEFI Shims Just Broke Secure Boot on Millions of PCs on Latest Hacking News |…
Two Joomla Extensions Hit by Zero-Day File Upload Attacks Before Patches Landed
CISA added CVE-2026-48939 and CVE-2026-56291 to its Known Exploited Vulnerabilities catalog after automated attackers exploited file upload flaws in iCagenda and Balbooa Forms weeks before either bug had a CVE number. Two Joomla Extensions Hit by Zero-Day File Upload Attacks…
Staff Sue Meta Over Alleged Use Of AI To Conduct Layoffs
AI systems disproportionately targeted people with medical conditions, pregnancies in mass layoff of thousands, lawsuit claims This article has been indexed from Silicon UK Read the original article: Staff Sue Meta Over Alleged Use Of AI To Conduct Layoffs
Google Chrome 150 Update Fixes 15 Security Vulnerabilities, Including 2 Critical Use-After-Free Flaws
Google Chrome version 150 addresses vulnerabilities in several core browser components, including Ozone, Skia, V8, GPU, Media, UI, Navigation, libyuv, and Linux Toolkit Theming. Among the updates, two critical vulnerabilities, designated as CVE-2026-15764 and CVE-2026-15765, involve use-after-free issues in Ozone,…
Hackers Abuse OAuth Device Codes and Entra ID Enrollment for Persistent SaaS Access
AI-enabled phishing-as-a-service operations are driving a sharp increase in identity attacks in 202620262026, with threat actors increasingly abusing OAuth device authorization flows and Microsoft Entra ID device enrollment to obtain durable access to SaaS environments. Jalisco is a device code…