Unpatchable 'usbliter8' Exploit Breaks Apple A12 and A13 SecureROM Boot Chain Security researchers at Paradigm Shift have published a working exploit, dubbed usbliter8, that ach... 2026-6-19 18:37:41 | 阅读: 9 | 收藏 | The Hacker News - thehackernews.com attacker dma a12 a13 usbliter8

The Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security Processes The Gentlemen ransomware-as-a-service (RaaS) operation is actively developing and maintaining a sui... 2026-6-19 18:33:7 | 阅读: 9 | 收藏 | The Hacker News - thehackernews.com ransomware gentlemen affiliates byovd eset

AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution Microsoft researchers have detailed an exploit chain, named AutoJack, that turns an AI browsing age... 2026-6-19 15:30:47 | 阅读: 6 | 收藏 | The Hacker News - thehackernews.com microsoft autogen mcp pypi attacker

Operation Endgame Disrupts SocGholish Servers, Cleans 14,971 WordPress Sites Dutch law enforcement authorities, along with counterparts from Canada , Germany, and the U.S., h... 2026-6-19 15:7:54 | 阅读: 7 | 收藏 | The Hacker News - thehackernews.com socgholish tds malicious wordpress infections

CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices Threat Intelligence / Firewall SecurityThe U.S. Cybersecurity and Infrastructure Security Agency (... 2026-6-19 14:0:21 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com security passwords fortibleed appliances socradar

From Assistive to Agentic: The AI Shift That's Redefining Threat Management IntroductionThe average enterprise security team has 40 or more security tools, giving a lot of v... 2026-6-19 11:58:0 | 阅读: 9 | 收藏 | The Hacker News - thehackernews.com security agentic ctem agents

Forget Data Leakage: Shadow AI's Real Threat Is Access Control The first wave of enterprise AI concern was straightforward. It was simply employees pasting sensit... 2026-6-19 10:30:0 | 阅读: 4 | 收藏 | The Hacker News - thehackernews.com agents security shadow agentic identities

Salesforce Disables Klue App Integration After OAuth Token Abuse Exposes Customer Data Salesforce has revealed that it disabled the Klue Battlecards app integration within its platform i... 2026-6-19 09:3:57 | 阅读: 16 | 收藏 | The Hacker News - thehackernews.com klue salesforce 2026 huntress reliaquest

Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone Mobile Security / VulnerabilityApple has updated its Beats Studio Buds wireless earbuds to patch... 2026-6-19 06:36:9 | 阅读: 12 | 收藏 | The Hacker News - thehackernews.com usbliter8 a13 a12 hardware

F5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code Execution Vulnerability / Cloud SecurityF5 has released security updates to address two critical security fl... 2026-6-18 17:32:14 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com 2026 ingress security attacker aslr

ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories The internet did not break this week. It got used exactly as designed, which is worse.Searches were... 2026-6-18 15:27:54 | 阅读: 13 | 收藏 | The Hacker News - thehackernews.com phishing security malicious windows attackers

Microsoft Details Windows Clipper Malware Campaign Using USB LNK Worm and Tor-Based C2 Microsoft has disclosed details of a Windows-based cryptocurrency clipper campaign that has targete... 2026-6-18 14:30:42 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com clipper worm clipboard c2 wscript

INC Ransomware Emerges as Major RaaS Threat in 2026 with 830+ Victims Since 2023 Vulnerability / Enterprise SecurityCybersecurity researchers have charted the evolution of INC fro... 2026-6-18 14:12:48 | 阅读: 12 | 收藏 | The Hacker News - thehackernews.com ransomware acronis sectors affiliates payload

DragonForce Hackers Abuse Microsoft Teams Relays to Hide Backdoor.Turn C2 Traffic Remote Access Trojan / RansomwareThreat actors associated with the DragonForce ransomware have bee... 2026-6-18 13:30:7 | 阅读: 15 | 收藏 | The Hacker News - thehackernews.com microsoft ransomware network c2 dragonforce

Orphaned AI Agents: How to Find Hidden Access Risks Inside Your Network AI Security / Data SecurityIf an autonomous AI agent interacts with your company's core intellectu... 2026-6-18 11:58:0 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com security privileges interacts orphaned network

The Scripts on Your Checkout Page Are Now a PCI DSS Problem Payment Security / ComplianceAn independent PCI assessor tested Reflectiz against the new PCI DSS... 2026-6-18 11:0:0 | 阅读: 10 | 收藏 | The Hacker News - thehackernews.com reflectiz saq qsa dss assessor

Crypto Clipper Campaign Abuses Fake Reviews, AI Narrators, and VirusTotal Comments Malware / Social EngineeringAn unknown threat actor has been observed leveraging paid or promoted... 2026-6-17 18:14:24 | 阅读: 10 | 收藏 | The Hacker News - thehackernews.com reputation download promoted github sourceforge

Microsoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in Development Endpoint Security / VulnerabilityMicrosoft has formally disclosed that it's working to release a p... 2026-6-17 17:36:28 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com microsoft rogueplanet 2026 defender eclipse

Junior Hacker Used Tailscale and OpenSSH to Keep Access After His C2 Went Offline A French-speaking attacker broke into a small French automotive business, planted a keylogger, and... 2026-6-17 16:0:56 | 阅读: 15 | 收藏 | The Hacker News - thehackernews.com tailscale c2 cato poisson openssh

Adversarial Exposure Validation Turns Security Visibility into Confident Prioritization For security teams, the findings never stop, but confidence in knowing which ones matter is becomin... 2026-6-17 11:58:0 | 阅读: 19 | 收藏 | The Hacker News - thehackernews.com security exposure aev breachlock