“Cyber warfare is as much about psychological strategy as technical prowess.”
― James Scott
-

New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis [email protected] (The Hacker News)
A previously undocumented Rust-based macOS implant and information stealer has been found to embed a prompt injection payload designed to trick a malware analyst’s artificial intelligence (AI) tools and trick it into aborting or refusing an analysis of the artifact. The malware has been codenamed Gaslight owing to this deceptive behavior. It’s been assessed with…
-

New Mistic Backdoor Linked to KongTuke in ClickFix and ModeloRAT Campaigns [email protected] (The Hacker News)
A new, stealthy backdoor named Mistic has been deployed as part of suspected financially motivated attacks aimed at multiple organizations spanning insurance, education, IT, and professional services sectors since April 2026. According to Symantec and Carbon Black’s Threat Hunter Team, the backdoor, also tracked as MLTBackdoor, is said to be linked to an initial access…
-

Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Gain Root Access [email protected] (The Hacker News)
An unknown threat actor exploited a recently disclosed high-severity security flaw impacting Cisco Catalyst SD-WAN as a zero-day at least two months before it was publicly disclosed, according to new findings from Google-owned Mandiant. The vulnerability, tracked as CVE-2026-20245 (CVSS score: 7.8), allows an authenticated, local attacker to execute arbitrary commands with elevated privilegesRead More
-

CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited [email protected] (The Hacker News)
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday warned of active exploitation of a critical security flaw impacting Lantronix EDS5000 Series devices, urging Federal Civilian Executive Branch (FCEB) agencies to apply the fixes by June 26, 2026. The vulnerability in question is CVE-2025-67038 (CVSS score: 9.8), a code injection flaw that could result…
-

Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered [email protected] (The Hacker News)
A coordinated law enforcement operation, in partnership with private sector companies, including Bitdefender, Bitsight, ESET, and Microsoft, has resulted in the takedown of criminal infrastructure powering Amadey and StealC. “The main common goal was to disrupt the ‘assembly lines’ cybercriminals use to launch ransomware, financial fraud, and attacks on critical infrastructure,” Europol said inRead More
-
As Q-Day looms, 90% of systems are unprepared for PQC
Quantum computing could break encryption in the next several years, and research suggests that few organizations are ready. Experts say CISOs must act now.Read More
-

Cordyceps CI/CD Flaws Expose 300+ GitHub Repositories to Supply-Chain Attacks [email protected] (The Hacker News)
Cybersecurity researchers have flagged a new class of CI/CD workflow weakness that allows attackers to hijack workflows and compromise open-source supply chains. The “critical exploitable pattern” has been codenamed Cordyceps by Novee Security. The issue can allow full attacker control of repositories at dozens of the largest organizations worldwide, including Microsoft, Google, Apache, andRead More
-

Dawn of the Apex Agentic Adversary [email protected] (The Hacker News)
We are standing at the end of an era we never thought to mourn: the era of human-speed threats. For years, cybersecurity moved to a rhythm organizations could follow. A researcher found a bug, a CVE was cataloged, a vendor navigated a patch cycle, and weeks or even months later, a fix was deployed. In…
-

DoJ Seizes Huione Cloud Account Tied to Cyber Scam Money Laundering [email protected] (The Hacker News)
The U.S. Department of Justice (DoJ) on Tuesday announced the seizure of a cloud computing account put to use by subsidiaries of Cambodia-based corporate conglomerate HuiOne Group, as the Treasury unveiled fresh sanctions against nine individuals and 26 entities linked to Prince Group. “These subsidiaries are alleged to have assisted individuals and organizations in transferring…
-

Cisco Unified CM Flaw Exploited After PoC Reveals File-Write Path to Root [email protected] (The Hacker News)
Threat actors have begun to exploit a recently disclosed critical security flaw impacting Cisco Unified Communications Manager (Unified CM) and Unified Communications Manager Session Management Edition (Unified CM SME). The vulnerability, tracked as CVE-2026-20230 (CVSS score: 8.6), is a case of improper input validation for specific HTTP requests that could allow an unauthenticated, remoteRead More
“Security used to be an inconvenience sometimes, but now it’s a necessity all the time.”
― Martina Navratilova
