Microsoft has found a malicious Chrome extension that posed as the AI search engine Perplexity and quietly logged what people searched for. It routed every query and every character typed into the address bar through an attacker-controlled server before redirecting…
IT Security News Hourly Summary 2026-06-29 21h : 1 posts
1 posts were published in the last hour 18:31 : Why mobile security audits are important in the enterprise
Why mobile security audits are important in the enterprise
<p>Mobile devices in the enterprise are an increasingly large target for cyberattacks. Mobile security audits help IT identify device, app, network and user risks before those risks lead to data loss or unauthorized access.</p> <p>With the growing amount of both…
U.S. Seizes Hundreds Domains Used to Stream World Cup Matches Illegally
The U.S. Department of Justice (DOJ) has announced the seizure of nearly 400 domains used to illegally stream FIFA World Cup 2026 matches, marking a significant crackdown on global digital piracy networks. The operation, conducted under “Operation Offsides,” targeted websites…
New Claude Code Attack Allows Attackers to Take Full Control of Developers’ Systems
Researchers at Mozilla’s Zero Day Investigative Network (0DIN) have demonstrated a proof-of-concept attack that shows how a completely clean-looking GitHub repository can trick AI-powered coding agents like Claude Code into silently opening a reverse shell on a developer’s machine, without…
EvilTokens Phishing Breaches Finance Firms Using “Ghost” Code Across U.S. and European Businesses
EvilTokens can keep serious account-takeover activity out of your SOC’s view by relying on “ghost” code that only surfaces after the browser decrypts it. Because of this, analysis that looks only at the static URL can overlook the part of the…
WhatsApp Launches New Username Feature to Communicate Without Exposing Phone Numbers
WhatsApp introduces a new privacy update that lets users connect using unique handles, eliminating the need to share phone numbers with strangers or new group members. Earlier, we detailed that WhatsApp is preparing to roll out a long-anticipated username feature.…
Critical Gemini CLI Vulnerability Lets Attackers Execute Arbitrary Code
A critical security vulnerability in Google’s Gemini CLI has been disclosed, allowing attackers to execute arbitrary code in certain CI/CD environments, particularly GitHub Actions workflows. The issue, tracked as CVE-2026-12537, impacts multiple versions of the Gemini CLI and its related…
Microsoft 365 Apps RCE Vulnerability Exploited Using a Malicious Excel File
Microsoft has disclosed a critical remote code execution vulnerability in its Office ecosystem that can be exploited through a malicious Excel file. The vulnerability, tracked as CVE-2025-60727, affects multiple versions of Microsoft Office and underscores the continued risk posed by…
Critical Dell Wyse Vulnerabilities Enable Remote Code Execution Attacks
Dell Technologies has released a critical security advisory addressing multiple vulnerabilities in its Wyse Management Suite (WMS), warning that attackers could exploit these flaws to execute arbitrary code on affected systems. The vulnerabilities affect Dell Wyse Management Suite versions before…
Hackers Exploiting Critical Oracle E-Business Suite Vulnerability Actively in Attacks
Threat actors are actively exploiting CVE-2026-46817, a critical unauthenticated remote takeover vulnerability in Oracle E-Business Suite (EBS), with live attack activity captured across honeypot infrastructure over the weekend of June 27–28, 2026. CVE-2026-46817 is a critical-severity flaw residing in the…
Public PoC Released for Deserialization RCE Vulnerability in Splunk Secure Gateway
A public proof-of-concept (PoC) exploit has been released for CVE-2026-20251, a high-severity remote code execution (RCE) vulnerability affecting Splunk Secure Gateway (SSG). The flaw, carrying a CVSS score of 8.8, allows a low-privileged authenticated attacker to execute arbitrary code on…
FCRF Launches India’s Largest Cybercrime Hackathon for 2026
The Future Crime Research Foundation (FCRF) has announced what is being positioned as India’s largest cybercrime hackathon, a move that reflects the growing urgency around digital threats in the country. With cyber fraud, phishing, ransomware, and AI-driven deception becoming…
Chromium extension uses AI‑related branding to redirect browser search
A malicious Chromium-based extension that spoofs the AI-powered answer engine Perplexity AI redirects browser search traffic using MV3 APIs and intermediary infrastructure. The post Chromium extension uses AI‑related branding to redirect browser search appeared first on Microsoft Security Blog. This…
In major privacy win, Supreme Court rules geofence warrants are protected by privacy rights
The Supreme Court’s decision to limit geofence warrants is a win for privacy advocates, who called their use unconstitutional but sought an outright ban. This article has been indexed from Security News | TechCrunch Read the original article: In major…
Factoring RSA Keys with Many Zeros
Interesting research on a new class of weak RSA keys: keys with lots of zeros. It turns out that these keys are out in the wild. The badkeys project is an open-source service that checks public keys for known vulnerabilities.…
JSP webshells being dropped on unpatched PTC Windchill instances
The US Cybersecurity and Infrastructure Security Agency (CISA) added a vulnerability (CVE-2026-12569) in Windchill and FlexPLM, two product lifecycle management software platforms developed by PTC, to its Known Exploited Vulnerabilities (KEV) catalog. Entries in the KEV catalog don’t contain links…
Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government Attacks
The China-aligned espionage group Mustang Panda is running two campaigns against the Indian government and hydropower targets, deploying new malware and turning a legitimate cloud service into its command channel. Acronis Threat Research Unit found active compromises inside Indian government networks, including machines…
WhatsApp is Finally Getting Usernames to Help Keep Phone Numbers Private
WhatsApp on Monday officially announced the start of global reservations of usernames with an aim to protect the privacy of more than three billion users on the messaging platform. The optional feature is designed to help users connect with someone…
IT Security News Hourly Summary 2026-06-29 18h : 16 posts
16 posts were published in the last hour 16:2 : WhatsApp Rolling Out Username Feature to Bolster Phone Number Privacy 16:2 : Iran-Linked Cyberattacks Against Israel Triple as Critical Infrastructure Faces Rising Threats 16:2 : China’s New AI Model Challenges…
WhatsApp Rolling Out Username Feature to Bolster Phone Number Privacy
An optional ‘username key’ adds another layer by requiring a secondary credential before someone can message users. The post WhatsApp Rolling Out Username Feature to Bolster Phone Number Privacy appeared first on SecurityWeek. This article has been indexed from SecurityWeek…
Iran-Linked Cyberattacks Against Israel Triple as Critical Infrastructure Faces Rising Threats
Surging numbers of cyber intrusions tied to Iran have been logged by Israeli officials, revealing persistent digital hostilities despite lulls in physical warfare. The National Cyber Directorate notes attacks on critical systems now occur at almost three times the…
China’s New AI Model Challenges U.S. Cybersecurity Leaders
China’s latest open-weight artificial intelligence model is drawing attention within the cybersecurity community after independent evaluations indicated that it can rival some of the vulnerability detection capabilities of leading U.S. frontier AI systems. The findings are fueling renewed debate…
Insurance body confirms hackers posted Oracle PeopleSoft breach data
NAIC warned that some ratings agencies have suspended data feeds as a precaution. This article has been indexed from Cybersecurity Dive – Latest News Read the original article: Insurance body confirms hackers posted Oracle PeopleSoft breach data