A series of high-impact campaigns linked by overlapping tradecraft to ShinyHunters, in which attackers abused trusted Salesforce OAuth relationships to bypass conventional MFA protections, establish persistence, and exfiltrate CRM data at scale. The activity, observed from mid-202520252025 through mid-202620262026, affected…
Fake smart home residents could stand in for real ones in security research
Smart home security research runs on a scarce ingredient: recordings of how real people use the gadgets in their homes. Getting that data means wiring up someone’s house and watching for months, which is slow, costly, and about as invasive…
Pro-Iran Hacktivist Groups Launch DDoS and Hack-and-Leak Attacks Against Critical Infrastructure
A decentralized network of pro-Iran hacktivist groups is intensifying cyber operations against critical infrastructure, government entities, technology providers, and organizations perceived as aligned with U.S., Israeli, or Western interests. The activity is dominated by distributed denial-of-service attacks, defacements, credential-focused operations,…
Your vendor’s vendor might be the real breach risk
In this Help Net Security video, Chris Boehm, Field CTO, Zero Networks, breaks down how a vendor breach can become your breach. He explains that attackers now target the subcontractors behind your trusted vendors. A compromised credential at a company…
ModHeader Chrome Extension Exposes 900,000 Users to Potential Browsing History Theft
ModHeader version 7.0.187.0.187.0.18, a popular Chrome extension used for modifying HTTP headers, contained dormant code capable of collecting and exfiltrating browsing history data from an estimated 900,000 users, according to research disclosed on July 13, 2026. Google removed the extension…
Chatto: Open-source team messenger with privacy at its core
Teams that want their group chats off commercial platforms have a growing menu of self-hosted options. Chatto joined that group when its developer released the code under an open-source license and posted binaries for anyone to run on their own…
Telegram’s t.me Domain Suspended, Breaking Invite and Channel Links Worldwide
Telegram’s core short-link domain, t.me, has been placed under a serverHold status at the .me registry. This action can remove the domain from the global DNS, making all associated links inaccessible. The incident affects various Telegram features, including invite links,…
Critical ServiceNow AI Platform Flaw Allows Unauthenticated Attackers to Escape Sandbox and Execute Remote Code
ServiceNow has released security updates to address a critical remote code execution vulnerability in its AI Platform. This vulnerability, tracked as CVE-2026-6875, could allow unauthenticated attackers to execute code within affected ServiceNow environments. The issue is described as a sandbox-escape…
Cybersecurity jobs available right now: July 14, 2026
Cyber Network Engineer Fiserv | USA | On-site – View job details As a Cyber Network Engineer, you will lead the design, governance, and security review of enterprise network architectures across on-premises and cloud environments. You will provide expertise in…
IT Security News Hourly Summary 2026-07-14 06h : 2 posts
2 posts were published in the last hour 4:4 : NSA Warns Russian State-Sponsored Hackers Exploiting Vulnerable Routers to Target Critical Infrastructure 4:4 : Telegram’s t.me Domain Suspended, ServerHold Status Breaks Links Worldwide
NSA Warns Russian State-Sponsored Hackers Exploiting Vulnerable Routers to Target Critical Infrastructure
The U.S. National Security Agency (NSA) and international cybersecurity partners have issued a warning that Russian state-sponsored threat actors are actively exploiting vulnerable and poorly configured network routers to access organizations in critical infrastructure sectors. In a joint Cybersecurity Advisory…
Telegram’s t.me Domain Suspended, ServerHold Status Breaks Links Worldwide
Telegram’s core t[.]me domain has been placed on serverHold at the .me registry, a registry-level status that removes the domain from the global DNS and breaks every t[.]me short link worldwide. WHOIS records confirm the domain now carries eight status…
ISC Stormcast For Tuesday, July 14th, 2026 https://isc.sans.edu/podcastdetail/10006, (Tue, Jul 14th)
This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from SANS Internet Storm Center, InfoCON: green Read the original article: ISC Stormcast For Tuesday, July 14th, 2026…
AI Security Threats in 2026: Annual Insights from Check Point Research
Key Takeaways Vulnerability response times have collapsed from days to hours. AI can reason about code well enough to generate working exploits at scale, so defenders now face patch windows of 12 to 72 hours instead of the traditional timeframe…
IT Security News Hourly Summary 2026-07-14 03h : 1 posts
1 posts were published in the last hour 1:2 : AI Security Threats in 2026: Insights from Check Point Research
AI Security Threats in 2026: Insights from Check Point Research
Key Takeaways Vulnerability response times have collapsed from days to hours. AI can reason about code well enough to generate working exploits at scale, so defenders now face patch windows of 12 to 72 hours instead of the traditional timeframe…
Defending SaaS-based applications against ShinyHunters OAuth abuse
Microsoft Threat Intelligence identified threat actor activity with overlapping tradecraft commonly associated with ShinyHunters, including voice phishing (vishing), supply-chain compromise, and misconfigured guest access targeting SaaS-based applications. The post Defending SaaS-based applications against ShinyHunters OAuth abuse appeared first on Microsoft…
SpaceX and Starlink X Accounts Hacked in Crypto Scam
Reportedly compromised SpaceX and Starlink X accounts were used to promote a fraudulent cryptocurrency scam. The post SpaceX and Starlink X Accounts Hacked in Crypto Scam appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read…
IT Security News Hourly Summary 2026-07-14 00h : 1 posts
1 posts were published in the last hour 21:55 : IT Security News Daily Summary 2026-07-13
IT Security News Daily Summary 2026-07-13
141 posts were published in the last hour 20:34 : Beyond Cloud Uptime: API Security and AI Resilience for 2026 20:7 : Implementing Zero-Trust Networking and Identity for Microsoft Foundry Agents 20:7 : Apple says former employee exploited ‘rare’ bug…
Beyond Cloud Uptime: API Security and AI Resilience for 2026
This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from Blog Read the original article: Beyond Cloud Uptime: API Security and AI Resilience for 2026
Implementing Zero-Trust Networking and Identity for Microsoft Foundry Agents
Once your multi-agent system (Parts 6-8) is functionally solid, the question that comes up in every enterprise security review is the same: how do you know an agent is only doing what it’s authorized to do, over a network path…
Apple says former employee exploited ‘rare’ bug to download confidential files after leaving for OpenAI
Apple would not comment on the “security breach,” which allegedly allowed a former employee to download sensitive files from Apple’s network long after he departed the company for rival OpenAI. This article has been indexed from Security News | TechCrunch…
Lidl Notified Online Shop Customers in Germany, Belgium, and the Netherlands of a Data Breach
Lidl disclosed a third-party data breach affecting online shop customers in Germany, Belgium, and the Netherlands. Payment data was not exposed. Lidl contacted customers of its online shop in Germany, Belgium, and the Netherlands last week to inform them that…