Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability An analysis of a popular Google Chrome ad block extension for YouTube has uncovered the ability to... 2026-6-25 14:12:52 | 阅读: 5 | 收藏 | The Hacker News - thehackernews.com youtube chrome adblock injection island

ThreatsDay Bulletin: Smart TV Proxyware, 24-Year curl Bug, AI Crime Forums + 13 More Stories It’s dumb out there again.This week has the usual smell of prod on fire and nobody wanting to admit... 2026-6-25 12:24:43 | 阅读: 9 | 收藏 | The Hacker News - thehackernews.com microsoft malicious phishing marketplace 2026

Surviving the Mythos Era: Richard Bejtlich on the Case for NDR Despite the abundance of telemetry at analysts’ disposal, many security operations teams struggle t... 2026-6-25 11:17:31 | 阅读: 7 | 收藏 | The Hacker News - thehackernews.com network ndr security corelight

New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis A previously undocumented Rust-based macOS implant and information stealer has been found to embed... 2026-6-25 09:23:3 | 阅读: 4 | 收藏 | The Hacker News - thehackernews.com llm python analysis gaslight injection

New Mistic Backdoor Linked to KongTuke in ClickFix and ModeloRAT Campaigns Initial Access Broker / RansomwareA new, stealthy backdoor named Mistic has been deployed as par... 2026-6-25 08:54:37 | 阅读: 9 | 收藏 | The Hacker News - thehackernews.com ransomware modelorat microsoft kongtuke mistic

Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Gain Root Access Vulnerability / Threat IntelligenceAn unknown threat actor exploited a recently disclosed high-sev... 2026-6-25 05:46:54 | 阅读: 10 | 收藏 | The Hacker News - thehackernews.com 2026 mandiant attacker peering privileges

CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited Vulnerability / Network SecurityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA)... 2026-6-24 17:19:18 | 阅读: 23 | 收藏 | The Hacker News - thehackernews.com 2026 network security privileges malicious

Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered A coordinated law enforcement operation, in partnership with private sector companies, including Bi... 2026-6-24 15:59:50 | 阅读: 15 | 收藏 | The Hacker News - thehackernews.com amadey stealc stealer 2026 c2

Cordyceps CI/CD Flaws Expose 300+ GitHub Repositories to Supply-Chain Attacks Open Source / Supply Chain SecurityCybersecurity researchers have flagged a new class of CI/CD wo... 2026-6-24 12:48:11 | 阅读: 29 | 收藏 | The Hacker News - thehackernews.com attacker novee security microsoft workflows

Dawn of the Apex Agentic Adversary Network Security / Vulnerability ManagementWe are standing at the end of an era we never thought t... 2026-6-24 11:30:0 | 阅读: 15 | 收藏 | The Hacker News - thehackernews.com runzero predator agentic network asset

DoJ Seizes Huione Cloud Account Tied to Cyber Scam Money Laundering Money Laundering / CybercrimeThe U.S. Department of Justice (DoJ) on Tuesday announced the seizure... 2026-6-24 08:55:12 | 阅读: 12 | 收藏 | The Hacker News - thehackernews.com huione laundering criminal guarantee prince

Cisco Unified CM Flaw Exploited After PoC Reveals File-Write Path to Root Vulnerability / Network SecurityThreat actors have begun to exploit a recently disclosed critical... 2026-6-24 06:50:38 | 阅读: 9 | 收藏 | The Hacker News - thehackernews.com unified webdialer security 2026 attacker

FortiBleed Targeted FortiGate Firewalls in 110 Million-Credential Harvesting Operation Initial Access Broker / Firewall SecurityA Russian-speaking initial access broker (IAB) driven by... 2026-6-23 18:20:49 | 阅读: 12 | 收藏 | The Hacker News - thehackernews.com fortigate fortibleed 2026 firewalls

Fake AI Agent Skill Passed Security Scans and Reportedly Reached 26,000 Agents Security firm AIR built a fake AI agent skill, pushed it through a popular skill marketplace and a... 2026-6-23 15:16:43 | 阅读: 5 | 收藏 | The Hacker News - thehackernews.com skill scanners stars stitch firm

Trump Order Sets 2030 Deadline for Federal Post-Quantum Crypto Migration Cryptography / Quantum ComputingPresident Trump signed an executive order on June 22 setting hard... 2026-6-23 15:16:40 | 阅读: 5 | 收藏 | The Hacker News - thehackernews.com migration 2030 deadlines fips pqc

GitHub Updates actions/checkout to Block Common Pwn Request Attack Patterns Workflow Security / Software Supply ChainGitHub is moving to strengthen software supply chain sec... 2026-6-23 14:22:3 | 阅读: 12 | 收藏 | The Hacker News - thehackernews.com github repository workflows security privileges

Agentic AI: The Weapon That No Longer Needs a Warrior Every weapon begins as an extension of the hand that holds it. The spear lengthened the reach of th... 2026-6-23 11:30:0 | 阅读: 14 | 收藏 | The Hacker News - thehackernews.com weapon phishing agents utilize warrior

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT Supply Chain Attack / Developer SecurityCybersecurity researchers have discovered a set of malicio... 2026-6-23 08:54:32 | 阅读: 14 | 收藏 | The Hacker News - thehackernews.com postcss selector pyd payload minify

WhatsApp VBScript Campaign Uses Fake Documents to Install ManageEngine RMM Tool Malware / Social EngineeringDirect messages sent via WhatsApp are being used to distribute malicio... 2026-6-23 05:38:40 | 阅读: 14 | 收藏 | The Hacker News - thehackernews.com vbscript remote rmm windows download

OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Patch Security Flaws OpenAI on Monday said it's releasing an improved version of its GPT‑5.5‑Cyber model to trusted defe... 2026-6-23 03:56:58 | 阅读: 14 | 收藏 | The Hacker News - thehackernews.com security openai 2026 planet