CISA has added a newly disclosed Microsoft SharePoint Server vulnerability, tracked as CVE-2026-45659, to its Known Exploited Vulnerabilities (KEV) Catalog, warning that the flaw is actively being exploited in real-world attacks. The vulnerability is a deserialization of untrusted data issue…
JetBrains Patches Critical Hub Authentication Bypass and Account Takeover Vulnerabilities
JetBrains has released patches for several critical vulnerabilities in JetBrains Hub that could allow for full authentication bypass, account takeover, and unauthorized privilege escalation across integrated JetBrains services. Administrators are urged to update their Hub instances immediately. Critical Hub Vulnerabilities…
Hackers Use Geofenced Webpages to Deliver Ousaban Banking Trojan in Spain and Portugal
A targeted phishing campaign delivering the Ousaban banking Trojan to users in Spain and Portugal, notable for its use of geofenced webpages, layered evasion techniques, and a modular delivery chain. The threat actor repurposes a playbook seen previously in Brazil…
“We’ve struck a chord with the new partner programme”
Specialist retailers and resellers are increasingly acting as IT security service providers and strategic partners for businesses. G DATA CyberDefense has therefore completely overhauled its partner programme. In future, it will reward not only turnover but also commitment. In this…
NCSC Shares Tips on How to Make a Pen Tester’s Job Harder
The NCSC has shared best practice advice from pen testers which could help improve system resilience This article has been indexed from www.infosecurity-magazine.com Read the original article: NCSC Shares Tips on How to Make a Pen Tester’s Job Harder
IT Security News Hourly Summary 2026-07-02 12h : 9 posts
9 posts were published in the last hour 9:34 : ValleyRAT Uses RC4 Encryption, Donut Shellcode, and rundll32 Injection for Stealth 9:34 : FortiBleed Credential Theft Linked to INC and Lynx Ransomware Operations 9:34 : AI Agent Exploits Langflow RCE…
ValleyRAT Uses RC4 Encryption, Donut Shellcode, and rundll32 Injection for Stealth
A recent surge in ValleyRAT activity that combines RC4-encrypted payloads, Donut-generated shellcode, and in-memory execution via suspended rundll32 processes to evade detection. First named by Proofpoint in 2023, ValleyRAT continues to evolve: LevelBlue’s telemetry shows a marked increase in successful…
FortiBleed Credential Theft Linked to INC and Lynx Ransomware Operations
The recently discovered financially-motivated FortiBleed campaign has been attributed to INC and Lynx ransomware operations, indicating that the verified, stolen credentials were intended for follow-on intrusions. “An operator tied to FortiBleed’s infrastructure was found actively working negotiation panels for both…
AI Agent Exploits Langflow RCE to Automate Database Ransomware Attack
Security firm Sysdig says it has found what it believes is the first ransomware attack run from start to finish by an AI agent. Its Threat Research Team calls the operator JADEPUFFER and says a large language model handled the whole job:…
Valar Atomics Works With Nvidia On Data Centre Pilot
Start-up Valar says small nuclear reactors can be used with closed-loop cooling systems to reduce data centre power, water needs This article has been indexed from Silicon UK Read the original article: Valar Atomics Works With Nvidia On Data Centre…
Meta Developing Plans To Sell AI Infrastructure
Facebook parent reportedly considering selling access to the compute power it has stockpiled at great expense in recent years This article has been indexed from Silicon UK Read the original article: Meta Developing Plans To Sell AI Infrastructure
Oxmiq Raises $35m To Develop Custom AI Tech Stack
California-based start-up founded by former Intel GPU chief aims to be ARM of AI era, licensing tech from GPU accelerators to software This article has been indexed from Silicon UK Read the original article: Oxmiq Raises $35m To Develop Custom…
Apple Hide My Email Vulnerability Lets Attackers Reveal Users’ Real Email Addresses
Apple’s Hide My Email privacy feature currently faces a significant flaw that may expose users’ real email addresses, compromising one of iCloud+’s core anonymity protections. According to 404 Media and independent tests, this issue has reportedly remained unaddressed for over…
Missed incidents, persistent threats, and response gaps: Insights from compromise assessment projects
Kaspersky Compromise Assessment specialists analyze trends from the service’s 2025 projects and provide tips on how to enhance your organization’s security. This article has been indexed from Securelist Read the original article: Missed incidents, persistent threats, and response gaps: Insights…
Alleged Scattered Spider Member Extradited to US
A teenager accused of hacking as part of Scattered Spider has been arrested This article has been indexed from www.infosecurity-magazine.com Read the original article: Alleged Scattered Spider Member Extradited to US
Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges
Alleged Scattered Spider member Peter Stokes, 19, was extradited from Finland to the U.S. over hacking, fraud, and extortion charges. Peter Stokes, 19, an alleged Scattered Spider member known online as “Bouquet,” has been extradited from Finland to the U.S.…
JADEPUFFER Agentic Ransomware Uses LLM to Automate Database Extortion
The first instance of agentic ransomware: JADEPUFFER, an LLM-driven extortion operation that automated an end-to-end database-crippling campaign. The actor gained execution on an internet-facing Langflow instance via CVE-2025-3248, used the AI-host environment to harvest cloud and API credentials, and pivoted…
Critical Flaws Double as Elevation of Privilege Dominates the Cyber Threats – Analysis of Microsoft Vulnerabilities Report 2026
Microsoft’s vulnerability landscape just sent a mixed signal that every security team needs to understand. According to the newly released Microsoft Vulnerabilities Report 2026 — the 13th annual edition published by BeyondTrust — the total number of disclosed Microsoft vulnerabilities…
Opera blocks ClickFix attacks with new clipboard protection feature
Opera has launched Paste Protect, a clipboard protection feature designed to prevent clipboard-based attacks such as hijacking and pastejacking. Paste Protect includes built-in protection and warnings against ClickFix-based cyberattacks, which accounted for more than half of malware-delivery attacks in 2025.…
New ChocoPoC RAT Targets Vulnerability Researchers via Fake PoC Exploit Repos
Attackers are hiding a data-stealing trojan inside fake exploit code aimed at the people who hunt bugs for a living. The malware, called ChocoPoC, travels in Python proof-of-concept (PoC) repositories on GitHub that claim to exploit hot new CVEs. Run…
Taiwan Detains Two Super Micro Staff In GPU Smuggling Probe
Authorities detain two staff from server maker Super Micro, release two others on bail amid probe into illicit Nvidia GPU exports to China This article has been indexed from Silicon UK Read the original article: Taiwan Detains Two Super Micro…
Swedish Court Orders Google To Pay Klarna $2bn In Damages
Klarna wins record payout of nearly $2bn from search giant over decade of unfair self-preferencing around shopping services This article has been indexed from Silicon UK Read the original article: Swedish Court Orders Google To Pay Klarna $2bn In Damages
Under Pressure: Insights from the 2026 Exposure Gap Report
Risk is concentrating. The 2026 Exposure Gap Report shows vulnerabilities claiming a larger share of critical exposure, and that shift has real implications for how security teams prioritize their response. Two findings are central to this change. Vulnerabilities now represent…
How Attackers Weaponize AI
Last Updated on July 2, 2026 Bundled Page This page requires JavaScript to display. AI THREAT INTELLIGENCE Unpacking… This article has been indexed from HACKMAGEDDON Read the original article: How Attackers Weaponize AI