Threat actors have begun to exploit a recently disclosed critical security flaw impacting Cisco Unified Communications Manager (Unified CM) and Unified Communications Manager Session Management Edition (Unified CM SME). The vulnerability, tracked as CVE-2026-20230 (CVSS score: 8.6), is a case…
Feds seize scam infrastructure, Dragos unveils AI for OT security, Scattered Spider hackers plead guilty
Feds seize alleged cyber-scam infrastructure Dragos unveils AI for OT security Scattered Spider hackers plead guilty Get the show notes here: https://cisoseries.com/cybersecurity-news-feds-seize-scam-infrastructure-dragos-unveils-ai-for-ot-security-scattered-spider-hackers-plead-guilty/ Huge thanks to our episode sponsor, Guardsquare Is your mobile app truly protected? Relying on the OS isn’t…
Met Police To Deploy Facial Recognition In West End
UK’s largest police force plans static facial-recognition deployments in Soho, West End by end of year, with more to follow in 2027 This article has been indexed from Silicon UK Read the original article: Met Police To Deploy Facial Recognition…
Federal Probe After Tesla Crash Kills Woman Inside Brick House
US driving safety regulator begins special investigation after Tesla car with ADAS engaged ploughs into Texas home This article has been indexed from Silicon UK Read the original article: Federal Probe After Tesla Crash Kills Woman Inside Brick House
Hackers Exploit RAR Vulnerability to Drop Startup VBS in Ukraine UAV Malware Campaign
A newly observed espionage campaign targeting Ukraine’s unmanned aerial vehicle (UAV) ecosystem leverages a RAR archive exploit to install a persistent VBS loader, which then retrieves a Windows payload linked to an emergent actor the researcher calls GhostShell (Malwarebox ID…
IT Security News Hourly Summary 2026-06-24 09h : 7 posts
7 posts were published in the last hour 6:36 : Linux Process Name Masquerading, (Wed, Jun 24th) 6:36 : Samsung KNOX Kernel Flaw Exposes Galaxy Devices to Memory Corruption Attacks 6:35 : Where IT meets OT and railway cybersecurity gets…
Linux Process Name Masquerading, (Wed, Jun 24th)
In a previous diary, I talked about stack strings[1] with a practical example of them. Since my SEC670 class, I’m even more interested in malware obfuscation techniques. I had a look at process names. When you list running processes on a computer,…
Samsung KNOX Kernel Flaw Exposes Galaxy Devices to Memory Corruption Attacks
Samsung has addressed a critical kernel vulnerability in its KNOX security framework that puts millions of Galaxy devices at risk of memory-corruption attacks, potentially allowing full device compromise. This issue, tracked as CVE-2026-20971, was discovered by LucidBit Labs and affects…
Where IT meets OT and railway cybersecurity gets harder
In this interview with Help Net Security, Jorge Aldegunde, Global Head of Railway Services at DNV, talks through what happens when old operational technology meets newer IT in monorail systems. He explains why open networks widened the attack surface, how…
Competition Court Gives Go-Ahead To £3bn Apple Claim
Which? gets green light for class-action case claiming Apple overcharged millions of iPhone users by locking them into iCloud This article has been indexed from Silicon UK Read the original article: Competition Court Gives Go-Ahead To £3bn Apple Claim
GTA 6 Early Access Scam Uses Fake VIP Pages to Steal Cryptocurrency Payments
A fresh wave of scam websites is exploiting the fevered anticipation for Grand Theft Auto VI, offering “VIP early access” in exchange for cryptocurrency payments and delivering nothing in return. These pages are carefully designed to look legitimate neon Vice…
Hackers Exploiting Cisco Unified CM Vulnerability
Cisco noted that a PoC had been available for CVE-2026-20230 when it announced patches in early June. The post Hackers Exploiting Cisco Unified CM Vulnerability appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article:…
Praxen: Open-source AI agent behavior verification
Praxen is an open-source tool with a simple job: it checks whether an AI agent does what it claims to do. The tool takes an agent’s declared policy, looks at how the agent operates, and points out every spot where…
Bajaj Auto Discloses Ransomware Cyberattack Impacting Company and Technology Unit
Bajaj Auto has reported a ransomware attack that affected its internal systems and those of its wholly owned subsidiary, Bajaj Auto Technology Ltd (BATL). This incident highlights the growing threat of cyberattacks targeting major manufacturing and automotive organizations. The attack…
Product showcase: How to evaluate AI SOC platforms and where Prophet AI leads
The Agentic SOC market is loud. Dozens of vendors promise to take alert triage, investigation, and response off your analysts’ plates, but most claims have never been tested in production. The hard part is separating operational improvement from this marketing…
CISA Adds Ubiquiti UniFi OS Flaws to KEV Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added three critical vulnerabilities affecting Ubiquiti UniFi OS to its Known Exploited Vulnerabilities (KEV) catalog. This highlights the increasing risk to both enterprise and small-office network environments that rely on this…
Anthropic Launches Claude Tag AI Agent for Slack to Automate Enterprise Team Workflows
Anthropic has launched “Claude Tag,” a new AI agent capability designed to integrate seamlessly into Slack and automate workflows for enterprise teams. This announcement, made on June 23, 2026, signifies a growing synergy between collaborative platforms and autonomous AI systems.…
You have got to be KDDI-ng – Japanese telco exposes 14.2 million managed email credentials
Five ISPs and plenty of users await their fate This article has been indexed from www.theregister.com – Articles Read the original article: You have got to be KDDI-ng – Japanese telco exposes 14.2 million managed email credentials
Security testing was built for a slower world
Software teams are pushing code into production faster than security testing can keep up. AI is accelerating development cycles and adding pressure to security programs that rely on periodic validation and manual penetration testing. The 2026 State of AI Security…
CISA Warns of Ubiquiti UniFi OS Vulnerability Actively Exploited in Attacks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added multiple Ubiquiti UniFi OS vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, warning that at least one of the flaws is now being actively exploited in the wild. Federal civilian…
Cybersecurity jobs available right now: June 24, 2026
Application Security Leader DriveNets | Israel | Hybrid – View job details As an Application Security Leader, you will define security requirements, drive secure coding practices, oversee vulnerability management, and integrate security testing and automation into development pipelines. You will…
FortiBleed: Fortinet Says It’s Not a Bug
Fortinet finally weighs in on FortiBleed – it’s not a bug. Plus a healthcare AI firm loses 1.4 million people’s data to a single phishing email, a trading bot built to prey on others gets played for $15 million, and…
IT Security News Hourly Summary 2026-06-24 06h : 1 posts
1 posts were published in the last hour 3:33 : Anthropic’s Mythos Model Found Vulnerabilities in Classified US Government Systems, Official Says
Anthropic’s Mythos Model Found Vulnerabilities in Classified US Government Systems, Official Says
A U.S. official told The Associated Press on Tuesday that one of Anthropic’s artificial intelligence models had identified vulnerabilities in highly sensitive and secure U.S. government computer systems during a testing exercise. The official, who spoke on the condition of…