Millenium RAT version 4.* exposes a compact but potent evolution: the malware has migrated from .NET to native C++, while retaining a stealthy Telegram-based command-and-control (C2) model that requires no bespoke server infrastructure. The sample set and telemetry analyzed by…
Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer
Cybersecurity researchers have uncovered two hijacked npm packages and a cluster of Go packages that are designed to deploy a Python-based information stealer on compromised Windows, Linux, and macOS hosts. “This attack avoids the most common npm execution paths through…
Apple Hikes Laptop, Tablet Prices Nearly 20 Percent
Apple raises prices of MacBooks, iPads after Tim Cook warns that soaring memory and storage component costs must be passed on to consumers This article has been indexed from Silicon UK Read the original article: Apple Hikes Laptop, Tablet Prices…
China’s Zhipu AI Model GLM-5.2 Detects Software Vulnerabilities Like Claude Mythos
Zhipu AI’s newly released GLM-5.2 model is attracting significant attention from the cybersecurity community due to its vulnerability detection capabilities, which are comparable to those of Anthropic’s restricted Claude Mythos system. This development raises new concerns about the effectiveness of…
DCloud Uni-App Framework Powers 236,000+ Scam Domains Across Global Fraud Economy
DCloud Uni-App has become a mass-production layer for fraud, with more than 236,000 distinct scam domains tied to a sprawling ecosystem of fake exchanges, wallet drainers, phishing portals, and investment schemes. The scale matters because it shows scam operations are…
DarkMoon: Open-source AI pentesting platform
Penetration testing has long run on expert time, with specialists spending days probing a network or web application by hand. Manual engagements stretch across weeks, expert consultants run into thousands of dollars a day, and results vary with the tester.…
Rokarolla Uses Fake Google Play Protect App to Target Banking and Cryptocurrency Users
Rokarolla, a sophisticated Android banking trojan distributed via malicious websites that masquerade as trusted applications such as TikTok, Google Chrome and even Google Play Protect. Unlike simple credential stealers, Rokarolla is a multi-functional fraud platform that targets at least 217…
OpenAI Launches GPT-5.6 Sol AI Model With Advanced Cyber Capabilities And Layered Safeguards
OpenAI has announced the limited preview of its next-generation AI model family, GPT‑5.6, headlined by the flagship “Sol” model, which introduces significant advancements in cybersecurity capabilities alongside a newly engineered layered safeguard architecture. The release, disclosed on June 26, 2026,…
China’s New Zhipu AI Reportedly Matches Claude Mythos in Vulnerability Detection
Zhipu AI’s open-weight GLM-5.2 model is reportedly performing on par with Anthropic’s restricted Claude Mythos in specific cybersecurity and software vulnerability detection tasks, a development that is intensifying concerns inside the U.S. government about the effectiveness of its AI export…
Sycophantic chatbots and the harms that build over many chats
People use AI chatbots for company, advice, and emotional support, and these systems answer in ways meant to hold their attention. Researchers describe the resulting risks as affective safety, a class of harm that exists because humans are emotional beings…
Companies keep bolting AI onto their products, and the security bill is coming due
Companies keep bolting AI and LLM features onto their products, and the security results are starting to show a pattern. The vulnerabilities those features create get rated high risk far more often than anything else, and they get fixed slower…
Most teams accept higher risk for faster AI database work
Database professionals are using AI for everyday work like writing queries, building schemas, and reviewing code, and a growing share rely on autonomous tools that act on the database itself. The use of AI in database management has almost tripled…
IT Security News Hourly Summary 2026-06-29 06h : 2 posts
2 posts were published in the last hour 4:2 : OpenAI Released GPT-5.6 Sol With Limited Access and Strong Cyberattack Protections 4:2 : RedAmon AI Tool that Chains Reconnaissance, Exploitation, and Post-exploitation
OpenAI Released GPT-5.6 Sol With Limited Access and Strong Cyberattack Protections
OpenAI has officially begun a limited preview of the GPT‑5.6 model series Sol, Terra, and Luna, positioning its flagship Sol as the company’s most capable and security-hardened AI model to date, available initially only to a small group of trusted…
RedAmon AI Tool that Chains Reconnaissance, Exploitation, and Post-exploitation
A new open-source offensive security platform called RedAmon is redefining automated penetration testing by chaining reconnaissance, exploitation, post-exploitation, AI-driven triage, and automated code remediation all into a single end-to-end pipeline that culminates in a GitHub pull request with the fix…
US Restricts Frontier AI models
US Loosens Anthropic Claude Mythos Access, Unpatchable iPhone Exploit Emerges, and CISO Burnout Drives Fractional Shift Washington granted a partial reprieve allowing Anthropic’s Claude Mythos to be released to more than 100 approved U.S. firms and institutions after export controls…
ISC Stormcast For Monday, June 29th, 2026 https://isc.sans.edu/podcastdetail/9986, (Mon, Jun 29th)
This post doesn’t have text content, please click on the link below to view the original article. This article has been indexed from SANS Internet Storm Center, InfoCON: green Read the original article: ISC Stormcast For Monday, June 29th, 2026…
IT Security News Hourly Summary 2026-06-29 03h : 1 posts
1 posts were published in the last hour 0:6 : Top Cyber Range Providers: A Comparison of 15 Leading Platforms
Top Cyber Range Providers: A Comparison of 15 Leading Platforms
Compare 15 cyber range platforms across live-fire exercises, AI testing, SOC training, OT realism, deployment options, pricing models, and data residency needs. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, AI and More Read the original…
IT Security News Hourly Summary 2026-06-29 00h : 2 posts
2 posts were published in the last hour 21:58 : IT Security News Weekly Summary 26 21:55 : IT Security News Daily Summary 2026-06-28
IT Security News Weekly Summary 26
210 posts were published in the last hour 21:55 : IT Security News Daily Summary 2026-06-28 20:34 : KDDI Data Breach Impacts up to 14.2 Million Email Accounts at Six ISPs 19:5 : IT Security News Hourly Summary 2026-06-28 21h…
IT Security News Daily Summary 2026-06-28
26 posts were published in the last hour 20:34 : KDDI Data Breach Impacts up to 14.2 Million Email Accounts at Six ISPs 19:5 : IT Security News Hourly Summary 2026-06-28 21h : 3 posts 18:34 : SECURITY AFFAIRS MALWARE…
KDDI Data Breach Impacts up to 14.2 Million Email Accounts at Six ISPs
KDDI Corporation disclosed a breach affecting up to 14.2 million email accounts after attackers exploited a vulnerability in third-party software. KDDI Corporation disclosed a data breach that exposed up to 14.2 million email accounts across six Japanese internet service providers.…
IT Security News Hourly Summary 2026-06-28 21h : 3 posts
3 posts were published in the last hour 18:34 : SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 103 18:34 : Romania’s Swift Response Stops Massive Cyberattack on Hospitals, Offers Global Lessons in Healthcare Security 18:34 : US Opens the Door for Trusted…