A China-linked cyber espionage group known as Velvet Ant spent nearly a decade inside the internal network of an unnamed organization without being detected, according to the results of a forensic investigation published by cybersecurity firm Sygnia. The group’s defining…
Tag: EN
One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes
A single click on a trusted Microsoft link could have let an attacker pull emails, calendar details, and indexed files out of Microsoft 365 Copilot Enterprise Search. Researchers at Varonis Threat Labs chained three bugs into a one-click exfiltration path…
Cybersecurity experts blast US government for restricting Anthropic’s AI models
Chief information security officers and prominent researchers called a recent export-control ban “dangerous.” This article has been indexed from Cybersecurity Dive – Latest News Read the original article: Cybersecurity experts blast US government for restricting Anthropic’s AI models
China-nexus group linked to multiyear campaign targeting US, Canadian medical research
A report links a sophisticated espionage effort targeting information about viruses, AI and military information. This article has been indexed from Cybersecurity Dive – Latest News Read the original article: China-nexus group linked to multiyear campaign targeting US, Canadian medical…
Public and Private Medical Community Targeted by China-Nexus Threat Actor Pursuing Artificial Intelligence, Cyber, Medical, and National Defense Research
Google Threat Intelligence Group (GTIG) has identified a sophisticated campaign attributed to UNC6508, a People’s Republic of China (PRC)-nexus threat actor, targeting institutions in the North American academic, medical, and military research community. While remaining undetected for over a year,…
Cybersecurity vets protest ‘dangerous’ US government ban on Anthropic’s most powerful models
A group made up of dozens of cybersecurity experts urged the White House to remove export control restrictions on Anthropic’s models Fable and Mythos, arguing that the order is going to limit the ability of cybersecurity defenders to secure their…
Ransomware Attack Shuts Down Mills of Australia’s Second-Largest Sugar Producer
Mackay Sugar was targeted in a cyberattack carried out by a threat group known as The Gentlemen. The post Ransomware Attack Shuts Down Mills of Australia’s Second-Largest Sugar Producer appeared first on SecurityWeek. This article has been indexed from SecurityWeek…
Vulnerability Summary for the Week of June 8, 2026
High Vulnerabilities PrimaryVendor — Product Description Published CVSS Score Source Info AdguardTeam–AdGuardHome AdGuard Home, when started with the –glinet flag, contains an authentication bypass vulnerability that allows unauthenticated attackers to gain full admin access by supplying a path traversal sequence…
Delinea and Cyera integrate for data-aware identity security
Delinea and Cyera announced a product integration that connects privileged access to sensitive data exposure, automatically correlating identities with the data they can access. Together, Delinea and Cyera help security teams identify, prioritize, and remediate the highest-risk access paths across…
I Reverse-Engineered 50 API Breaches. The Same Five Mistakes Keep Appearing.
Between December 22, 2025 and January 15, 2026, an attacker spent 24 consecutive days inside Navia Benefit Solutions’ systems. They quietly and methodically pulled Social Security numbers, dates of birth, health plan enrollment details, and COBRA records belonging to 2,697,540…
Deepfake porn sites are going offline (re-air) (Lock and Code S07E12)
This week on the Lock and Code podcast, we revisit an episode from 2024 with David Chiu that shows the progress made against deepfake porn. This article has been indexed from Malwarebytes Read the original article: Deepfake porn sites are…
Claude Fable 5 and Mythos 5 “abruptly disabled” after US gov. ban
Anthropic has been ordered by the US government to cut off its newest Claude Fable 5 and Mythos 5 models for fear of abuse. This article has been indexed from Malwarebytes Read the original article: Claude Fable 5 and Mythos…
⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More
Stuff broke again. Not in a movie way. An old tool was left exposed. An abandoned package was abused. A deprecated feature was still running in prod. This week is the same lesson in a new form: phishing kits are…
Chinese Hackers Target Medical, Military, and AI Research in North America
Google’s Threat Intelligence Group has been tracking the cyberespionage group as UNC6508 since early 2025. The post Chinese Hackers Target Medical, Military, and AI Research in North America appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…
Cyber Briefing: 2026.06.15
From compromised installers to synchronized cyber warfare: inside the tech turning corporate data into geopolitical battlegrounds. This article has been indexed from CyberMaterial Read the original article: Cyber Briefing: 2026.06.15
Feds Seize CFAKE and SOCFAKE Over Explicit Deepfakes of Famous Women
Both CFAKE and SOCFAKE (CFAKE.com and SOCFAKE.com) were seized after prosecutors said they hosted nonconsensual nude digital forgeries of famous women. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, AI and More Read the original article:…
China-Nexus Hackers Use Backdoored PAM Modules for Credential Theft and Authentication Bypass
A sophisticated China-linked threat actor known as Velvet Ant has been running a long-term cyber intrusion inside a major organization’s internal network, going undetected for nearly a decade. The campaign, now called Operation Highland, revealed a level of patience and…
Hackers Use Microsoft Graph Reconnaissance to Target Payroll and HR Employees
Hackers are using Microsoft’s own cloud tools to quietly hunt down payroll and HR staff inside corporate networks, then reroute employee salaries to accounts they control. Security teams are racing to respond as the campaign continues to spread across industries…
PRC-linked spies hid inside medical and military networks for more than a year, snooping through Gmail and stealing data
Google says the intruders were on the hunt for everything from drone tech to pathogens This article has been indexed from www.theregister.com – Articles Read the original article: PRC-linked spies hid inside medical and military networks for more than a…
Energy, Healthcare, and Finance: Why Midwest Industries Are Facing Surging Cyber Attacks
Across the United States, the average organization faced slightly fewer cyber attacks per week in May 2026 than it did a year earlier, according to Check Point Research — the national figure was essentially flat year over year. In the…