Cyber Security News

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued Binding Operational Directive (BOD) 26-04, titled “Prioritizing Security Updates Based on Risk,” compelling all Federal Civilian Executive Branch (FCEB) agencies to remediate the most dangerous known exploited vulnerabilities within just three calendar days. The directive, released on June 10, 2026, represents the most aggressive federal […]

The post CISA Requires Federal Agencies to Patch Critical Vulnerabilities Within 3 Days appeared first on Cyber Security News.

A notorious hacking group has been caught targeting stock investors in Vietnam through a supply chain attack, hijacking a popular investment software platform to deliver a powerful backdoor. The operation, carried out by OceanLotus (also known as APT32), marks a notable shift in the group’s tactics as it turns focus increasingly toward domestic targets inside […]

The post OceanLotus APT Compromises FireAnt MetaKit in Supply-Chain Attack on Stock Investors appeared first on Cyber Security News.

A new malware loader called GoFlateLoader has been quietly spreading across the internet, and what makes it stand out is not how complex it is but how effective a simple trick has made it. Written in the Go programming language, this loader has one job: to decode and drop dangerous information-stealing programs onto a victim’s […]

The post GoFlateLoader Uses Massive PE Overlay to Deliver Lumma, Vidar, and StealC Infostealers appeared first on Cyber Security News.

A critical security vulnerability in Langflow, tracked as CVE-2026-5027, is raising serious concerns after researchers confirmed that attackers can exploit the flaw to execute malicious code on affected systems. The issue stems from improper input validation in the application’s file upload functionality, which allows path-traversal attacks that can lead to arbitrary file writes. The vulnerability […]

The post Critical Langflow Vulnerability Exploited to Execute Malicious Code appeared first on Cyber Security News.

A sophisticated Phishing-as-a-Service (PhaaS) platform called SniperDz has been quietly enabling a wide range of online fraud that goes far beyond basic credential theft. The platform provides cybercriminals with a ready-made toolkit to run convincing scams at scale, targeting victims across the Middle East and North Africa through social media platforms like Facebook and Instagram. […]

The post Hackers Abuse SniperDz PhaaS Ecosystem for Brand Impersonation and Browser Hijacking appeared first on Cyber Security News.

A security researcher known as brutecat has disclosed how an AI-driven fuzzing pipeline uncovered more than $500,000 in vulnerabilities across Google’s infrastructure in under three months, exposing systemic access-control failures hidden inside roughly 1,500 APIs. The researcher began by targeting Google’s discovery documents machine-readable API specifications, similar to Swagger docs, that list all available endpoints, parameters, and […]

The post Researcher Hacked Google Using AI and Earned $500,000 Bug Bounty appeared first on Cyber Security News.

GitHub has announced a major security-focused update to the Node Package Manager (npm), introducing breaking changes in the upcoming npm v12 release to reduce software supply chain attack risks significantly. The update, expected in July 2026, will turn off automatic execution of installation scripts by default, one of the most commonly abused mechanisms in malicious […]

The post GitHub to Automate Disable npm Script Installs to Block Supply Chain Attacks appeared first on Cyber Security News.

A new study has revealed that advanced large language models (LLMs), particularly Anthropic’s Claude Mythos Preview, are dramatically accelerating the development of N-day exploits, reducing timelines from weeks to just hours and significantly increasing risk during the patch gap. Unlike zero-day vulnerabilities, N-day vulnerabilities are publicly disclosed flaws that remain unpatched across many systems. These […]

The post Claude Mythos Turning N-Days Into N-Hours With Rapid Working Exploit Creation appeared first on Cyber Security News.

CISA has added a critical vulnerability in Check Point Security Gateway to its Known Exploited Vulnerabilities (KEV) catalog, warning that threat actors are actively exploiting the flaw in ransomware campaigns. The vulnerability, tracked as CVE-2026-50751, allows unauthenticated remote attackers to bypass user authentication and establish unauthorized VPN connections, posing severe risks to enterprise networks worldwide. […]

The post CISA Warns of Check Point Security Gateway Vulnerability Actively Exploited in Ransomware Attacks appeared first on Cyber Security News.

Hackers are using weaponized DMG files to target macOS users with infostealer malware, exploiting the long-standing myth that Apple devices are safe from cyber threats. These attacks rely on fake software installers disguised as legitimate apps, tricking users into handing over access without raising any alarm. The speed of these campaigns has made them one […]

The post Hackers Use Weaponized DMG Files to Target macOS Users With Infostealer Malware appeared first on Cyber Security News.

Anthropic launched Claude Fable 5 on June 9, 2026, as the first publicly available model in its new Mythos class, its most capable AI to date, excelling in software engineering, knowledge work, and vision benchmarks. Researcher “Pliny the Liberator” defeats Claude Fable 5’s safety classifiers using multi-agent decomposition, Unicode tricks, and narrative framing, leaking the […]

The post Anthropic’s Claude Fable 5 Jailbroken to Generate Stack Exploits appeared first on Cyber Security News.

Hackers are turning everyday software searches into a trap. A sophisticated cryptojacking campaign is actively targeting users who search for popular PC utilities online, luring them into downloading malware-laced files that secretly mine cryptocurrency using their own GPU. The attackers have built a network of more than 150 fake download sites that closely mimic trusted […]

The post Hackers Abuse Fake Utility Downloads to Install ScreenConnect and Mine Cryptocurrency appeared first on Cyber Security News.

Hackers are using fake tax notification emails to trick Windows users into downloading dangerous multi-stage malware that runs entirely in memory, leaving almost no trace behind. The campaign, tracked as Operation TaxShadow, has been active since at least May 20, 2026, targeting individuals by impersonating official Indian government tax authorities. The emails are crafted to create […]

The post Hackers Use Tax Phishing Emails to Deploy In-Memory Malware on Windows Systems appeared first on Cyber Security News.

ServiceNow has confirmed a security vulnerability that could allow unauthorized actors to query customer instance tables, raising concerns about potential data exposure across enterprise environments. The issue, disclosed through threat intelligence channels, involves improper access controls that may enable attackers to execute queries against backend instance tables without proper authentication. ServiceNow, widely used for IT […]

The post ServiceNow Confirms Vulnerability Allowing Unauthorized Access to Customer Instance Tables appeared first on Cyber Security News.

A malicious package targeting software developers has been discovered on npm, one of the most widely used package registries in the world. The package, named dbmux, was found to contain hidden malware capable of giving attackers complete control over any developer’s system that had it installed or running. The incident was disclosed on June 9, […]

The post Hackers Infect npm Package dbmux With Malware to Fully Compromise Developer Systems appeared first on Cyber Security News.

AI agents are becoming a core part of how companies manage their inboxes, triaging messages, pulling up files, and even replying to emails on behalf of employees. What researchers have now confirmed is that these agents can be tricked just like humans, and sometimes more easily. A new phishing simulation has shown that an AI […]

The post OpenClaw AI Agent Leaks Sensitive Credentials in New Phishing Attack Simulation appeared first on Cyber Security News.

Windows administrators should quickly deploy Microsoft’s June 9, 2026 security updates to fix a newly disclosed zero‑day in the Windows Collaborative Translation Framework (CTFMON), tracked as CVE‑2026‑45586. The flaw allows a local attacker with low privileges to escalate to SYSTEM, making it a valuable post‑exploitation primitive for threat actors. Windows CTF 0-Day Vulnerability CVE‑2026‑45586 is […]

The post Windows Collaborative Translation Framework 0-Day Vulnerability Allows Privilege Escalation appeared first on Cyber Security News.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning about a newly discovered zero-day vulnerability in Google Chromium that is actively being exploited in the wild. The flaw, tracked as CVE-2026-11645, affects the Chromium V8 JavaScript engine and could allow attackers to execute arbitrary code within a browser sandbox. According to […]

The post CISA Warns of Google Chromium 0-Day Vulnerability Exploited in Attacks appeared first on Cyber Security News.

The longer it takes to confirm a threat, the longer the business stays exposed. Slow triage leaves SOC teams stuck between suspicious alerts and clear response decisions, giving malware, phishing attacks, and other threats more time to progress.   For CISOs and security leaders, this is no longer just an analyst productivity issue. It is a […]

The post Slow Triage Is Raising Business Risk. Here’s How SOC Teams Cut Investigation Time  appeared first on Cyber Security News.

Windows systems are impacted by two new Remote Desktop Protocol (RDP) information disclosure vulnerabilities, CVE-2026-42908 and CVE-2026-45639. Both issues were resolved in Microsoft’s security updates released on June 9, 2026. Both flaws stem from out-of-bounds reads in the RDP stack and are rated Important, with a CVSS v3 base score of 7.5. Windows Remote Desktop Protocol Vulnerabilities […]

The post Windows RDP Vulnerabilities Allow Attacker to Expose Sensitive Data appeared first on Cyber Security News.