Trending

• KDDI Data Breach Exposes 14.2 Million Logins: Shared Infrastructure Flaw Hits Six ISPs 2026-06-29 11:18 Tech Times Japanese telecommunications giant KDDI Corporation disclosed on June 23 that attackers exploited a vulnerability in unnamed third-party software to break into a shared email platform it operates on behalf of six internet service providers, potentially …
• UNC1151 Ghostwriter Hackers Target Belarusian Politician in Gmail Phishing Campaign 2026-06-29 10:31 Cyber Security News A well-known hacker group called UNC1151, also widely known as Ghostwriter, has been caught running a targeted phishing campaign against a prominent Belarusian pro-democracy politician. The group, which has long been tied to the interests of the Belarusian …
• ESET takes part in global Operation Endgame to disrupt Amadey botnet and Stealc infostealer 2026-06-29 09:46 EIN Presswire DUBAI , DUBAI, UNITED ARAB EMIRATES, June 29, 2026 /⁨EINPresswire.com⁩/ -- ESET Research assisted in disrupting the Amadey botnet and the Stealc infostealer by providing technical analysis, infrastructure tracking, and affiliate-level insights. …
• Microsoft Removes 119 Edge Extensions That Hid Malware in Images and Fonts 2026-06-29 09:32 The Hacker News Microsoft has shut down a long-running malicious extension operation on the Edge Add-ons store that hid its payloads inside ordinary image and font files, then woke up days after install to steal credentials and run ad fraud. The company calls it StegoAd …
• Centre warns of malware targeting WhatsApp Web, desktop users 2026-06-29 09:19 NewsBytes Malware targeting WhatsApp users The CERT-In advisory, dated June 25, highlights that a large-scale malware distribution campaign is targeting WhatsApp Web and desktop users. The campaign involves the distribution of malicious Visual Basic Script (VBScript …
• Miasma Malware Uses binding.gyp and Bun to Hide Payloads in npm Packages 2026-06-29 08:59 VPNCentral A new Miasma malware wave is abusing binding.gyp files and the Bun JavaScript runtime to execute hidden payloads inside npm packages. The attack affects packages tied to the LeoPlatform and RStreams ecosystems, which developers use in data pipeline, cloud …
• FBI Sounds Alarm Over Russian Intelligence Signal Phishing 2026-06-29 08:48 Infosecurity Magazine Russian intelligence officers are trying to steal backup recovery keys from the Signal accounts of high-risk users, the FBI has warned. A new public service announcement (PSA) issued on June 26 revealed that “multiple clusters” of Russian spies, including …
• DOJ Seizes Nearly 400 Domains Used for Illegal World Cup Streaming and Malware Threats 2026-06-29 07:36 GBHackers The U.S. Department of Justice (DOJ) has announced the seizure of nearly 400 internet domains used to stream FIFA World Cup 2026 matches illegally. This operation represents one of the largest coordinated anti-piracy enforcement actions related to a global …
• AiTM Phishing Kit Targets AWS Console Credentials and MFA Codes in Real Time 2026-06-29 06:26 VPNCentral A targeted adversary-in-the-middle phishing kit has been used to steal AWS console credentials and multi-factor authentication codes in real time. The campaign copied the AWS sign-in experience and relayed victim inputs through attacker-controlled …
• CERT-In flags major WhatsApp malware threat: Don’t open these file attachments 2026-06-29 06:13 News9 Live Users are advised to verify suspicious attachments with the sender before opening them, even if the message comes from a trusted contact. New Delhi: The Indian Computer Emergency Response Team (CERT-In), the country’s cybersecurity agency, on Wednesday …
• Mozilla Warns Clean GitHub Repositories Can Trick Claude Code Into Running Malware 2026-06-29 05:56 WindowsReport.com Mozilla’s Zero Day Investigative Network (0DIN) has demonstrated a new attack technique that could allow seemingly harmless GitHub repositories to compromise developers using AI-powered coding assistants such as Claude Code. According to the researchers …
• Prompts Are The New Malware As Enterprise AI Defenses Fall Behind 2026-06-29 04:52 Forbes In its 2026 Global Threat Report, CrowdStrike reported prompt injection attacks at more than 90 organizations during 2025. The injected prompts were used to generate commands that stole credentials and cryptocurrency. CrowdStrike framed the shift by noting …
• Fake Crypto Wallet Recovery Tools Bring Malware to Users Who Use Google to Search for Solutions 2026-06-29 04:08 iTech Post - New York Losing access to a cryptocurrency wallet is already stressful enough, but security researchers are now warning that searching for help online could make things significantly worse. Fake Crypto Wallet Recovery Tools Bring Malware A new scam has been flagged …
• AssuranceAmerica Managing General Agency, LLC Data Breach Alert: Edelson Lechtzin LLP Launches Investigation Into Exposure of Personal Information 2026-06-28 22:52 WFMZ - Pennsylvania National class action firm offering free case evaluations to individuals impacted by the AssuranceAmerica Managing General Agency, LLC cybersecurity incident  ATLANTA, June 28, 2026 /PRNewswire/ -- Edelson Lechtzin LLP, a highly rated national …
• How to detect phishing emails? 2026-06-28 22:42 Techstory Do you want to detect an incoming phishing email? With this becoming a more common phenomenon, it is important that we learn to understand how it works and how we can stay aware. Let’s begin and see how we can detect a phishing email. What is a phishing …
• KDDI Data Breach Impacts up to 14.2 Million Email Accounts at Six ISPs 2026-06-28 22:32 Security Affairs KDDI Data Breach Impacts up to 14.2 Million Email Accounts at Six ISPs KDDI Corporation disclosed a breach affecting up to 14.2 million email accounts after attackers exploited a vulnerability in third-party software. KDDI Corporation disclosed a data …
• Americans have only hours left to get $2,500 no-strings-attached payments from data breach settlement 2026-06-28 22:28 The U.S. Sun SOME Americans could be eligible for payments worth a few thousand dollars this year, but they must act before it’s too late. The direct payment opportunity comes as part of class action settlement, and it joins a long list of some similar high-value cases …
• Anonymous-Linked Hacktivist Aubrey Cottle Jailed Over Texas GOP Cyberattack 2026-06-28 17:25 Hackread Aubrey Cottle, an Anonymous-linked hacker from Oshawa, has been sentenced to 18 months after he admitted his involvement in a 2021 website defacement attack on the Republican Party of Texas (also called GOP/Grand Old Party). The sentencing was …
• Watch out — that income tax form could actually be dangerous malware 2026-06-28 16:21 TechRadar Follow us Add us as a preferred source on Google Newsletter Subscribe to our newsletter Fake tax notices are becoming delivery vehicles for sophisticated remote access malware Attackers hide malicious code behind convincing government branding and legal …
• WhatsApp web, desktop users at risk of cyber attacks: CERT-In warns of large-scale malware campaign 2026-06-28 15:42 The Hindu Business Line The advisory was issued based on a note prepared by Kaspersky and Securelist findings saying that the threat actors leverage compromised WhatsApp accounts to send malicious attachments directly to victims. | Photo Credit: Dado Ruvic The Indian Computer …
• CERT-in warns WhatsApp web, desktop users of large-scale malware campaign 2026-06-28 15:11 Telengana Today CERT-In has warned of a large-scale malware campaign targeting WhatsApp Web and Desktop users through malicious VBScript attachments sent from compromised accounts. Users are advised to avoid opening unexpected files and verify suspicious messages to …
• AI coding agents can be tricked into installing malware via 'clean' GitHub repositories — Mozilla's 0din team shows how Claude Code can be exploited by its own helpfulness 2026-06-28 14:38 Tom's Hardware Follow us Add us as a preferred source on Google Newsletter Subscribe to our newsletter "Think out of the box" is painted onto millions of motivation posters across the world, a shooting message for middle managers and eliciting eyerolls from …
• Fake Support Accounts, Real Spies: FBI Exposes Evolving Russian Phishing Threat To Messaging Apps 2026-06-28 14:13 The Free Press - Tampa - Florida The FBI and the Cybersecurity and Infrastructure Security Agency (CISA) have issued an update to their March 20, 2026, Public Service Announcement to warn the public about an aggressive, evolving cyber threat. Russian intelligence agencies are actively …
• CertIn Warns Against Malware Campaign Spreading Through WhatsApp Web 2026-06-28 13:48 Deccan Chronicle New Delhi : WhatsApp web and desktop users are being targeted by a large-scale malware distribution campaign that could give criminals unauthorised access and compromise their devices, national cybersecurity watchdog CertIn said in a note. The Indian …
• Black Spark Resistance Claims Data Breach at Shahed Drone Production Facility 2026-06-28 10:13 Militarnyi Members of the Black Spark resistance movement operating inside Russia infiltrated the production facility for Shahed drones in the Alabuga Special Economic Zone and exfiltrated data from its servers. The movement announced the operation in a post on its X …
• Malicious GitHub Repositories Could Trick AI Coding Agents Into Running Hidden Malware, Researchers Warn 2026-06-28 06:15 International Business Times Singapore A newly demonstrated attack technique shows how malicious GitHub repositories could manipulate AI-powered coding assistants into executing hidden malware without embedding any malicious code in the repository itself. The proof-of-concept, detailed by …
• Bluekit Phishing-as-a-Service Uses Browser-in-the-Middle Attacks to Steal Microsoft Logins 2026-06-28 06:03 VPNCentral Bluekit, a phishing-as-a-service platform first documented earlier this year, has evolved into an operational phishing threat that can steal Microsoft login sessions and bypass common MFA checks. A new Netcraft analysis says Bluekit now uses a Browser-in …
• How to protect your (and your child's) identity after a data breach 2026-06-28 01:33 KSAT - Texas ALAMO HEIGHTS, Texas – Schools have become a new favorite target for identity thieves, according to cybersecurity experts. Data breaches are often a common occurrence for adults, but after a breach occurred at Alamo Heights Independent School District, …
• Apple Strengthens Cooperation with Tata Following Cyber-Attack on Supplier 2026-06-28 01:15 Voice Of Emirates California, United States – Apple continues to strengthen its cooperation with the Indian Tata Group, one of its key partners in device manufacturing, following a cyber-attack on a Tata subsidiary that led to the leaking of sensitive files and data online …
• Big Wins for Trump at the Supreme Court, and a $2.5 Billion Cyberattack Whodunit 2026-06-27 22:23 The New York Times This transcript was created using speech recognition software. While it has been reviewed by human transcribers, it may contain errors. Please review the episode audio before quoting from this transcript and email transcripts@nytimes.com with any questions …
• THE NEW YORK TIMES: Jaguar Land Rover hack dented UK economy in costliest cyberattack in nation’s history 2026-06-27 21:54 The Nightly Last year, hackers burrowed into the computer systems of Jaguar Land Rover, a crown jewel of British manufacturing. It was a devastating attack that forced Jaguar to lock down its computers and suspend production for five weeks. The hack even put a dent in …
• ngCERT raises alarm as bank loses $2 million to ATM cash-out cyberattack 2026-06-27 21:02 Nairametrics The Nigeria Computer Emergency Response Team (ngCERT) has issued a cybersecurity advisory warning financial institutions across the country about a growing wave of cyber-enabled ATM cash-out attacks. According to the advisory, cybercriminals successfully …
• Experts share tips to protect against identity theft after ransomware attack on Alamo Heights ISD 2026-06-27 19:32 KENS - Texas A ransomware attack on Alamo Heights ISD compromised sensitive data of over 26,000 people. Experts share important steps to prevent identity theft and fraud. SAN ANTONIO — A recent ransomware attack on Alamo Heights ISD exposed the personal information of …
• North Korea macOS Malware Targets AI Analyst Tools: Gaslight Embeds 38 Fake Error Messages 2026-06-27 17:28 Tech Times A North Korea-linked macOS backdoor disclosed this week by SentinelOne does something no previous malware in its lineage attempted: it tries to make the AI assistant reviewing it believe the analysis session is broken. SentinelLABS researcher Phil Stokes …
• North Korea macOS Malware Gaslight Manipulates AI Triage Tools, Not the Sandbox 2026-06-27 17:28 Tech Times Security researchers at SentinelOne disclosed a newly discovered macOS implant on June 23, 2026, that does something no in-the-wild malware family had previously done at scale: rather than hiding from the security tools scanning it, it attempts to …
• Hospitality Sector Hit by Phishing Campaign Using Fake Guest Complaint Emails 2026-06-27 16:48 Security Affairs Hospitality Sector Hit by Phishing Campaign Using Fake Guest Complaint Emails Microsoft warns of a phishing campaign targeting the hospitality sector with fake guest emails that install TonRAT using resilient persistence. Microsoft Threat Intelligence …
• University of Nottingham cyber attack to delay student results and 'put graduate jobs at risk' 2026-06-27 15:33 Nottingham Evening Post Hackers from the criminal Shinyhunters group gained access to the Russell Group university's student records system(Image: Joseph Raynor/ Reach PLC) The cyber attack on the University of Nottingham that leaked the personal data of thousands of …
• Spear-phishing: State services targeted by cyberattack on National Day 2026-06-27 14:33 RTL Today A cyberattack targeted Luxembourg State services on Tuesday, 23 June, in the midst of National Day celebrations. The cyber risk assessment unit confirmed on Friday afternoon that state workstations had been hit by a spear-phishing attempt – a targeted form …
• US insurance rulemaker suspends investment risk designations after cyber attack 2026-06-27 14:22 The Financial Times
• Feds Nab Iranian In Montenegro Over Alleged $3.4BN Cyberattack Campaign Targeting US Institutions 2026-06-27 13:58 Zero Hedge In the years leading up to President Trump coming into office and ordering Operation Epic Fury targeting the Islamic Republic for regime change, which failed to accomplish this (early-stated) goal, Iran had frequently been accused of orchestrating major …
• The World Cup Brings Scams Like Phishing Back To The Centerstage 2026-06-27 12:35 International Business Times As the World Cup 2026 is underway, social engineering is back on the menu. Despite all the concerns around the exploitation of frontier AI models like Mythos, low hanging fruit techniques like phishing scams continue to pose the most significant risk to …
• New Bluekit Phishing-as-a-Service Bypasses MFA to Steal Microsoft Login Credentials 2026-06-27 10:05 Cyber Security News A sophisticated Phishing-as-a-Service (PhaaS) platform called Bluekit has been confirmed operational at scale, with cybersecurity firm Netcraft detecting approximately 70 live hostnames in a single week. First documented by Varonis Threat Labs as an …
• Privacy Tip #497 – LastPass Security Incident Raises Concern for Targeted Phishing Attacks 2026-06-27 09:46 JD Supra - California LastPass has confirmed that a security incident with a vendor, a third-party market intelligence platform “which integrates with our Salesforce and Gong systems” has compromised some customers information. As a result, the threat actor was able to use …
• New Redstone Arsenal facility trains agents to tackle ransomware, digital evidence 2026-06-27 08:19 WAFF 48 - Alabama
• Russian hackers behind cyberattack on JLR last year: Report 2026-06-27 08:14 NewsBytes Attack cost UK economy $2.5 billion The cyberattack on JLR didn't just hurt the company, but also the British economy as a whole. The attack is estimated to have cost the UK economy around $2.5 billion. For months, there was speculation about who was …
• Apple supplier Tata tightens internal controls after data breach 2026-06-27 05:52 ETTelecom.com A security guard stands at the boundary of a Tata Electronics' components factory for Apple’s iPhone in Hosur, Tamil Nadu, June 15, 2026. REUTERS/Priyanshu Singh.By Munsif Vengattil and Aditya Kalra NEW DELHI: Tata Electronics, a key Indian …
• Hotel Phishing Clears All Email Security Filters: Microsoft Names New Attack Class 2026-06-27 04:07 Travelers Today An active phishing campaign targeting hotels across Europe and Asia since April 2026 has exposed a structural gap in enterprise email security — one that allows malicious messages to pass every standard authentication check a corporate inbox runs. …
• Hotel Phishing Attack Uses Calendly to Bypass Email Authentication Filters 2026-06-27 03:13 Tech Times A phishing campaign that has been targeting hotels across Europe and Asia since April 2026 is exploiting a fundamental flaw in how enterprise email security works — routing malicious messages through Calendly's legitimate notification infrastructure so …
• How does LifeLock help protect you from a data breach? 2026-06-27 03:07 TechRadar When you get a notification that your identity was compromised in a data breach, you might spiral at the thought of someone taking your identity and credit score on a joy ride. But things aren’t as hopeless as they might seem. Identity theft protection …
• Apple supplier Tata Electronics tightens security after data breach 2026-06-27 02:49 MacDailyNews Tata Electronics, a major Indian supplier to Apple, has restricted internal access to sensitive systems while it investigates a leak of thousands of confidential client files on the dark web, according to a Tata source and two industry officials, Reuters …