A specific multi-touch gesture bypasses an authentication prompt, allowing anyone to send messages This article has been indexed from www.theregister.com – Articles Read the original article: Google fixing Android lock screen bug that lets Gemini send SMS without a PIN
Cyberattack Disrupts Operations of Japanese Frozen Food Giant Nichirei
The company disconnected its systems on July 13 and is starting to gradually restore operations. The post Cyberattack Disrupts Operations of Japanese Frozen Food Giant Nichirei appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…
Claude can now sign into websites with 1Password without exposing your credentials
1Password has introduced 1Password for Claude, a beta integration that lets Anthropic’s AI assistant complete browser tasks requiring authentication without accessing users’ passwords or other secrets. The integration is available to paid Claude subscribers (Pro, Max, Team, and Enterprise) using…
U.S. CISA adds KNX Association KNX Protocol Connection Authorization Option 1 and Oracle flaws to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds KNX Association KNX Protocol Connection Authorization Option 1 and Oracle flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added SonicWall and Microsoft flaws to its Known…
Risk Ledger Raises $32 Million in Series B Funding
The British firm has built a collaborative platform to help organizations address supply chain security risks. The post Risk Ledger Raises $32 Million in Series B Funding appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…
The Gentlemen Overtakes Qilin as Most Prolific Ransomware Threat
Analysis of ransomware incidents by ReliaQuest indicates a shift in the ransomware landscape This article has been indexed from www.infosecurity-magazine.com Read the original article: The Gentlemen Overtakes Qilin as Most Prolific Ransomware Threat
Ransomware attack halts Coca-Cola’s Fairlife US milk production
A ransomware attack has stopped milk production at Fairlife, the Coca-Cola dairy brand known for its high-protein milk, protein shakes, and nutrition drinks. Coca-Cola disclosed the incident on July 16, 2026, in a Form 8-K filed with the U.S. Securities…
FaceTime Scammers Impersonate Banks and Support to Steal Money Through Video Calls
Scammers are increasingly turning to FaceTime video calls to impersonate banks, tech support agents, and government officials in order to steal money and sensit Thank you for being a Ghacks reader. The post FaceTime Scammers Impersonate Banks and Support to…
GPT-5.6 Codex Reportedly Wipes Files From Home Directories
Recent reports indicate that GPT-5.6 Codex has unintentionally deleted files in users’ home directories under certain configurations, raising concerns about the risks of running advanced AI coding agents with unrestricted access to the system. This issue, brought to light by…
CISA Warns of Fortinet FortiSandbox OS Injection Vulnerabilities Exploited in Attacks
CISA has added two critical Fortinet FortiSandbox vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, warning that attackers are actively exploiting the flaws in real-world attacks. The vulnerabilities, identified as CVE-2026-39808 and CVE-2026-25089, allow unauthenticated attackers to execute unauthorized operating…
Fresh SharePoint Vulnerability Exploited Soon After Disclosure
The critical-severity security defect allows remote, authenticated attackers to execute arbitrary code on the server. The post Fresh SharePoint Vulnerability Exploited Soon After Disclosure appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Fresh…
CISA Adds Exploited SharePoint RCE Zero-Day CVE-2026-58644 to KEV
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a newly patched security flaw impacting Microsoft SharePoint Server to its Known Exploited Vulnerabilities (KEV) catalog, requiring Federal Civilian Executive Branch (FCEB) agencies to apply the fixes by July…
ClickLock’s kill loops, TELEPUZ ClickFix tricks, 1Password’s agentic login
ClickLock stealer uses kill loops to force password entry TELEPUZ malware uses ClickFix to steal data and run commands 1Password’s new Agentic Mode lets Claude log into accounts Notes: https://cisoseries.com/cybersecurity-news-clicklocks-kill-loops-telepuz-clickfix-tricks-1passwords-agentic-login/ Huge thanks to our sponsor, ThreatLocker Every security leader is…
DeepSeek Prepares Next Funding Round On Heels Of $7bn Raise
Chinese AI darling reportedly begins preliminary talks for round valuing it at about $71bn, one month after it concluded first deal This article has been indexed from Silicon UK Read the original article: DeepSeek Prepares Next Funding Round On Heels…
IT Security News Hourly Summary 2026-07-17 09h : 9 posts
9 posts were published in the last hour 7:4 : GoSerpent Silently Steals Government Files for Weeks Before Sending Them to Hackers 6:34 : EU Orders Google To Make Changes To Android, Search 6:34 : Two Scattered Spider Hackers Jailed…
GoSerpent Silently Steals Government Files for Weeks Before Sending Them to Hackers
A sophisticated cyber espionage campaign targeting government and diplomatic organizations across Southeast Asia has used a Go-based remote access Trojan, dubbed GoSerpent, to collect sensitive documents for weeks before exfiltrating them via network shares. Researchers first identified the activity in…
EU Orders Google To Make Changes To Android, Search
Under two EU specification measures, Google must give third-party AI tools broader access to Android and share more search data with rivals This article has been indexed from Silicon UK Read the original article: EU Orders Google To Make Changes…
Two Scattered Spider Hackers Jailed in UK’s Largest Cybercrime Prosecution
Two alleged leading members of the Scattered Spider cybercrime collective have been sentenced to five years and six months in prison each for their involvement in the 2024 cyberattack on Transport for London (TfL). The National Crime Agency (NCA) described…
Coca-Cola Suspends US Fairlife Production Due to Ransomware Attack
The company says the incident has not affected product quality and safety, nor Fairlife’s Canada production. The post Coca-Cola Suspends US Fairlife Production Due to Ransomware Attack appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…
Prompt injection is becoming the XSS of the web agent era
Autonomous web agents read whatever a page displays, and much of that content comes from strangers. Product reviews, seller listings, and advertisements sit beside trusted site menus on a single page. An agent that reads all of that text as…
China’s Moonshot AI Set To Narrow Anthropic Performance Gap
Beijing-based start-up reportedly plans Kimi K3 release in coming days, with open model set to surpass performance of Anthropic’s Opus 4.8 This article has been indexed from Silicon UK Read the original article: China’s Moonshot AI Set To Narrow Anthropic…
Linux Creator Linus Torvalds Rejects Anti-AI Push and Defends LLM Tools
Linux creator and top-level kernel maintainer Linus Torvalds has made it clear that the Linux kernel project will not adopt an anti-AI stance. He believes that large language models and related tools should be assessed based on their technical value…
7-Zip Vulnerability Lets Attackers Trigger Heap Buffer Overflow Using Malicious Files
A newly disclosed vulnerability in 7-Zip could allow attackers to execute arbitrary code by tricking users into opening a specially crafted XZ-compressed file. Tracked as CVE-2026-14266 and identified by Trend Micro’s Zero Day Initiative as ZDI-26-444 (ZDI-CAN-30169), the flaw is…
The script, not the voice, is what makes AI voice phishing work
The call comes in at 4:40 on a Friday. The voice belongs to a senior manager, or sounds close enough, and she needs a password reset before a flight. She is polite, she is in a hurry, and she has…