cyber
·
news
News
Deep Dives
Settings
Sign in
2781 items
Unread (2781)
All
Dismissed
All
Critical
High
Supply Chain
Ransomware
Breaches
Zero-Day
CVEs
INFO
U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals
The Hacker News
supply-chain
breaches
malware
55m ago
CRITICAL
CVE-2026-53838 (CVSS 9.8) — OpenClaw before 2026.5.27 contains a state mutation vulnerability in node pairing reconnection that ...
NVD
CVE-2026-53838
8h ago
INFO
Tracing Digital Intent: New MacOS Tahoe 26 Artifact Discovered
rss:unit42
threat-actors
malware
nation-state
8h ago
INFO
Friday Squid Blogging: Squid-Inspired Fluid Pump
rss:schneier
analysis
policy
9h ago
INFO
ShinyHunters Uses Oracle Zero-Day to Rampage Higher Ed
rss:darkreading
breaches
malware
threat-actors
+15
10h ago
INFO
Instructure Breach Exposes Schools' Vendor Dependence
rss:darkreading
37d ago
INFO
ShinyHunters Claims Second Attack Against Instructure
rss:darkreading
35d ago
INFO
Instructure Reaches Ransom Agreement with ShinyHunters to Stop 3.65TB Canvas Leak
The Hacker News
31d ago
INFO
Congress Puts Heat on Instructure After Canvas Outage
rss:darkreading
28d ago
INFO
7-Eleven confirms breach after ShinyHunters claims
The Record
23d ago
INFO
7-Eleven data breach exposes personal information of 185,000 people
BleepingComputer
17d ago
INFO
185,000 Likely Impacted by 7-Eleven Data Breach
SecurityWeek
17d ago
INFO
Charter confirms data breach after ShinyHunters extortion threat
BleepingComputer
17d ago
INFO
Carnival Cruise confirms data breach affecting nearly 6 million people
BleepingComputer
15d ago
INFO
Charter Communications data breach affects 4.9 million accounts
BleepingComputer
14d ago
INFO
Charter Communications Data Breach Could Impact Nearly 5 Million
SecurityWeek
14d ago
INFO
Hackers Leak DentaQuest Information Impacting 2.6 Million
SecurityWeek
7d ago
INFO
Oracle PeopleSoft servers hacked in ShinyHunters data theft attacks
BleepingComputer
2d ago
INFO
University of Nottingham Confirms Breach After Hackers Leak Data
SecurityWeek
1d ago
INFO
University of Nottingham confirms cyber incident as Shiny Hunters group claims data theft
The Record
1d ago
INFO
Maine disables data breach notification portal after fake disclosures
BleepingComputer
breaches
ransomware
supply-chain
+1
11h ago
INFO
Maine breach portal abused to publish fake data breach disclosures
BleepingComputer
1d ago
INFO
Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit
The Hacker News
supply-chain
breaches
malware
+2
11h ago
INFO
Over 400 Arch Linux packages compromised to push rootkit, infostealer
BleepingComputer
13h ago
INFO
400+ Arch Linux AUR Packages Hijacked to Install Rust Credential Stealer
The Hacker News
11h ago
INFO
Google Sues Chinese Smishing Network Accused of Using Gemini AI in Phishing
The Hacker News
supply-chain
breaches
malware
+22
11h ago
INFO
VoidStealer Malware Darts Past Google Chrome's Encryption
rss:darkreading
37d ago
INFO
Android Adds Intrusion Logging for Sophisticated Spyware Forensics
The Hacker News
30d ago
INFO
A 0-click exploit chain for the Pixel 10: When a Door Closes, a Window Opens
rss:googleprojectzero
30d ago
INFO
Google’s Surge in Chrome Vulnerability Discoveries Likely Driven by AI
SecurityWeek
22d ago
INFO
Google accidentally exposed details of unfixed Chromium flaw
BleepingComputer
22d ago
INFO
Google API Keys Remain Active After Deletion
rss:darkreading
22d ago
INFO
GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure
The Hacker News
16d ago
INFO
Google Unveils AI Threat Defense Platform to Fight AI-Powered Cyberattacks
SecurityWeek
15d ago
INFO
US charges Google security engineer with Polymarket insider trading
BleepingComputer
14d ago
INFO
Google Chrome adds session cookie theft protection for all users
BleepingComputer
14d ago
INFO
Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts
The Hacker News
11d ago
INFO
Google fixes one actively exploited Android zero-day, 124 flaws
BleepingComputer
10d ago
INFO
Google adds Android protection against AI deepfake scam calls
BleepingComputer
9d ago
INFO
Malicious Notifications Could Trick Google Gemini Users
rss:darkreading
9d ago
INFO
Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT
The Hacker News
9d ago
INFO
WhatsApp, Slack Notifications Could Hijack Google Gemini on Android
The Hacker News
9d ago
INFO
Fake Sites Mimicking Open-Source Tools Rank High on Google to Deliver Malware via TDS
The Hacker News
8d ago
INFO
FlutterShell Backdoor Spreads to macOS via Malicious Google and YouTube Ads
The Hacker News
8d ago
INFO
Gemini Voice Assistant Hijacked via Messaging Notifications
SecurityWeek
8d ago
INFO
AI Agent Uncovers 21 Zero-Days in FFmpeg; Chrome Patches Record 429 Bugs
The Hacker News
6d ago
INFO
UNC3753 Used Vishing and Physical Intrusions in U.S. Data Theft Extortion Campaign
The Hacker News
4d ago
INFO
Google patches new Chrome zero-day flaw exploited in the wild
BleepingComputer
3d ago
INFO
phpBB forum fixes auth bypass bug lurking for a decade
BleepingComputer
breaches
ransomware
supply-chain
12h ago
INFO
China-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decade
The Hacker News
supply-chain
breaches
malware
12h ago
CRITICAL
CVE-2026-48558 (CVSS 10) — SimpleHelp versions 5.5.15 and prior and 6.0 pre-release versions contain an authentication bypass v...
NVD
CVE-2026-48558
12h ago
INFO
Ukrainian national pleads guilty to role in Conti ransomware operation
BleepingComputer
breaches
ransomware
supply-chain
+16
12h ago
INFO
Middle East Cyber Battle Field Broadens — Especially in UAE
rss:darkreading
38d ago
INFO
Cyber Resilience is the New Business Continuity Plan
SecurityWeek
24d ago
INFO
Windows Zero-Day Barrage Continues After Patch Tuesday
rss:darkreading
24d ago
INFO
Identity Alone Isn't Enough: Why Device Security Has to Share the Load
BleepingComputer
23d ago
INFO
Anthropic: Mythos Detected 23,000 Potential Vulnerabilities Across 1,000 OSS Projects
SecurityWeek
18d ago
INFO
Iranian APT Targets Aviation, Software Companies With Updated Tools
SecurityWeek
17d ago
INFO
MuddyWater Uses DLL Side-Loading in Espionage Campaign Targeting 9 Countries
The Hacker News
17d ago
INFO
Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer
The Hacker News
15d ago
INFO
Global Stock Exchange Hit by Monthslong Email Campaign
rss:darkreading
9d ago
INFO
What 345 Days of Untested Exposure Looks Like at a Bank
BleepingComputer
9d ago
INFO
China-Linked TA4922 Expands Phishing Attacks to UK, Germany, Italy, and South Africa
The Hacker News
8d ago
INFO
'Hades' Campaign Against PyPI Puts New Spin on Shai-Hulud
rss:darkreading
4d ago
INFO
WinRAR Flaw Exploited by Russia-Aligned Groups to Deploy Stealers in Ukraine
The Hacker News
3d ago
INFO
GitHub disables Microsoft repos pushing password-stealing malware
BleepingComputer
3d ago
INFO
Microsoft Restores Some GitHub Repos, Keeps Others Offline as Miasma Probe Continues
The Hacker News
3d ago
INFO
No Patch Planned for Exploited Arista EOS Vulnerability
SecurityWeek
3d ago
INFO
Bankruptcy admin approves settlement fund of $47 million for 23andMe data breach victims
The Record
breaches
ransomware
nation-state
13h ago
INFO
Major US surveillance program poised to lapse after legislative deadlock
The Record
breaches
ransomware
nation-state
13h ago
HIGH
Microsoft shares mitigation for YellowKey Windows zero-day
BleepingComputer
breaches
ransomware
supply-chain
+71
23d ago
INFO
Azerbaijani Energy Firm Hit by Repeated Microsoft Exchange Exploitation
The Hacker News
30d ago
INFO
Microsoft's MDASH AI System Finds 16 Windows Flaws Fixed in Patch Tuesday
The Hacker News
30d ago
HIGH
Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation
The Hacker News
29d ago
INFO
Zero-Day Exploit Against Windows BitLocker
rss:schneier
25d ago
INFO
Compromised Nx Console 18.95.0 Targeted VS Code Developers with Credential Stealer
The Hacker News
24d ago
INFO
The New Phishing Click: How OAuth Consent Bypasses MFA
The Hacker News
24d ago
INFO
Legacy Windows Tool MSHTA Fuels Surge in Silent Malware Attacks
SecurityWeek
24d ago
HIGH
Microsoft Disrupts Malware-Signing Service Run by ‘Fox Tempest’
SecurityWeek
24d ago
INFO
Stealer Spoofs Google, Microsoft & Apple, Then Backdoors macOS
rss:darkreading
24d ago
HIGH
Cybercrime service disrupted for abusing Microsoft platform to sign malware
BleepingComputer
24d ago
INFO
Webworm Deploys EchoCreep and GraphWorm Backdoors Using Discord and MS Graph API
The Hacker News
23d ago
INFO
Microsoft Takes Down Malware-Signing Service Behind Ransomware Attacks
The Hacker News
23d ago
INFO
Microsoft Rolls Out Mitigations for ‘YellowKey’ BitLocker Bypass
SecurityWeek
23d ago
INFO
Microsoft Open-Sources RAMPART and Clarity to Secure AI Agents During Development
The Hacker News
23d ago
INFO
Microsoft warns of new Defender zero-days exploited in attacks
BleepingComputer
22d ago
INFO
Microsoft Patches Exploited UnDefend and RedSun Defender Zero-Days
SecurityWeek
22d ago
INFO
China's Webworm Uses Discord, Microsoft Graphs to Hack EU Govts.
rss:darkreading
21d ago
INFO
FBI warns of Kali365 phishing-as-a-service after April Microsoft 365 attacks
The Record
21d ago
INFO
FBI warns of Kali365 phishing service targeting Microsoft 365 accounts
BleepingComputer
18d ago
INFO
Microsoft: Domain Controller lookup may fail on Windows Server 2016
BleepingComputer
17d ago
INFO
Anthropic Expands Claude’s Enterprise Security Governance With 28 New Integrations
SecurityWeek
17d ago
INFO
Microsoft Defender can now automatically isolate hacked endpoints
BleepingComputer
17d ago
INFO
Microsoft Issues Out-of-Band SharePoint Patch
rss:darkreading
17d ago
INFO
AI Chatbot Recommendations Redirect Users to Cryptojacking Malware Sites
The Hacker News
16d ago
INFO
Windows 11 KB5089573 update released with performance improvements
BleepingComputer
16d ago
INFO
Microsoft fixes KB5089549 Windows security update install issues
BleepingComputer
11d ago
INFO
Microsoft confirms outage affecting MFA, My Sign-Ins platform
BleepingComputer
11d ago
INFO
Microsoft fixes outage affecting MFA setup, MySignIn service
BleepingComputer
11d ago
INFO
Microsoft says it will not pursue security researchers after zero-day backlash
The Record
11d ago
INFO
Microsoft investigates Office Apps, Teams file access issues
BleepingComputer
11d ago
INFO
Microsoft's Zero-Day Legal Threats Spark Backlash
rss:darkreading
11d ago
INFO
Microsoft Threatening Security Researcher
rss:schneier
10d ago
INFO
Exclusive: How One Line of Code Put Billions of Microsoft Android App Downloads at Risk
SecurityWeek
10d ago
INFO
Microsoft Exchange Online outage causes email delays, failures
BleepingComputer
10d ago
INFO
FBI-Flagged Phishing Kit Kali365 Expands Its Reach
rss:darkreading
10d ago
INFO
Microsoft's Coreutils project brings Linux commands to Windows
BleepingComputer
10d ago
INFO
New HTTP/2 Bomb Vulnerability Allows Remote DoS on NGINX, Apache, IIS, Envoy & Cloudflare
The Hacker News
9d ago
INFO
Microsoft Tries to Calm Legal Threat Fears After Zero-Day Disclosure Backlash
SecurityWeek
9d ago
INFO
One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens
The Hacker News
9d ago
INFO
Microsoft 365 Android Apps Let Any App Steal Account Tokens via Leftover Debug Flag
The Hacker News
9d ago
INFO
Coding Gaffe Exposes Microsoft 365 Accounts to Widespread Takeover
rss:darkreading
9d ago
INFO
VS Code Vulnerability Allows One-Click GitHub Token Theft
SecurityWeek
8d ago
INFO
Researcher publishes GitHub token-stealing exploit, blames Microsoft’s disclosure process
The Record
8d ago
INFO
Microsoft blames unexpected Windows driver updates on caching issue
BleepingComputer
8d ago
INFO
PCPJack Hijacks 230 AWS, Google Cloud, and Azure Servers for Covert SMTP Relay Network
The Hacker News
8d ago
INFO
New Threat Cluster OP-512 Targets Microsoft IIS Servers with Custom Web Shell Framework
The Hacker News
7d ago
INFO
Chinese APT deploys new malware to keep access to hacked networks
BleepingComputer
7d ago
INFO
Miasma Worm Hits 73 Microsoft GitHub Repositories in Major Supply Chain Attack
The Hacker News
6d ago
INFO
Hands on with Intelligent Terminal, an AI-powered Windows Terminal
BleepingComputer
5d ago
INFO
VS Code Adds 2-Hour Extension Auto-Update Delay to Limit Supply Chain Attacks
The Hacker News
5d ago
INFO
When “Hi, This Is IT” Comes Through Microsoft Teams
rss:unit42
4d ago
INFO
Windows 11 KB5094126 & KB5093998 cumulative updates released
BleepingComputer
3d ago
INFO
Microsoft June 2026 Patch Tuesday fixes 6 zero-days, 200 flaws
BleepingComputer
3d ago
INFO
Microsoft releases Windows 10 KB5094127 extended security update
BleepingComputer
3d ago
INFO
Microsoft Patches 200 Vulnerabilities
SecurityWeek
3d ago
INFO
Miasma Supply Chain Worm Burrows Into 73 Microsoft Repositories
rss:darkreading
3d ago
INFO
Microsoft Exchange Flaw Lets Attackers Spoof Any Email Address
rss:darkreading
3d ago
INFO
Microsoft Defender 'RoguePlanet' zero-day grants SYSTEM privileges
BleepingComputer
3d ago
INFO
Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows
The Hacker News
3d ago
INFO
Microsoft Patches Record 206 Flaws, Including Three Zero-Days and Critical RCE Bugs
The Hacker News
2d ago
INFO
Microsoft patches YellowKey, GreenPlasma, MiniPlasma zero-days
BleepingComputer
2d ago
INFO
Microsoft: Some Windows PCs fail to install latest monthly updates
BleepingComputer
2d ago
INFO
New Windows Zero-Day Exploit ‘RoguePlanet’ Released
SecurityWeek
2d ago
INFO
Microsoft ships largest Patch Tuesday on record, with one bug under active attack
The Record
2d ago
INFO
Microsoft patches Exchange Server zero-day exploited in attacks
BleepingComputer
2d ago
INFO
Nightmare-Eclipse Drops Yet Another Microsoft Exploit, RoguePlanet
rss:darkreading
2d ago
INFO
Microsoft fixes BitLocker recovery bug on Windows Server 2025
BleepingComputer
1d ago
INFO
‘GreatXML’ Zero-Day Exploit Bypasses BitLocker
SecurityWeek
1d ago
INFO
New GreatXML Exploit Bypasses Windows BitLocker via Recovery Partition XML Files
The Hacker News
1d ago
INFO
Microsoft fixes Windows update failures linked to WUSA installer
BleepingComputer
18h ago
INFO
In Other News: Google Security Layoffs, AudiA6 Takedown, $400 Million Coupang Fine
SecurityWeek
14h ago
INFO
South Korea hits Coupang with record $409 million fine over data breach
The Record
breaches
ransomware
nation-state
+1
14h ago
INFO
Coupang hit with record $409 million data breach fine in Korea
BleepingComputer
1d ago
CRITICAL
CVE-2026-6853 (CVSS 9.8) — Improper restriction of excessive authentication attempts vulnerability in Başbelen Group Food Cafe ...
NVD
CVE-2026-6853
15h ago
CRITICAL
CVE-2026-53787 (CVSS 9.8) — Amasty Order Attributes for Magento 2 before version 4.0.0 contains an unauthenticated arbitrary fil...
NVD
CVE-2026-53787
15h ago
HIGH
Popular GitHub Action Tags Redirected to Imposter Commit to Steal CI/CD Credentials
The Hacker News
supply-chain
breaches
malware
+93
25d ago
INFO
ABB AC500 V3 Stack Buffer Overflow in Cryptographic Message Syntax
rss:cisa-advisories
31d ago
INFO
Fuji Electric Tellus
rss:cisa-advisories
31d ago
INFO
ABB AC500 V3 Multiple Vulnerabilities
rss:cisa-advisories
31d ago
INFO
Subnet Solutions PowerSYSTEM Center
rss:cisa-advisories
31d ago
INFO
ABB Automation Builder Gateway for Windows
rss:cisa-advisories
31d ago
INFO
ABB WebPro SNMP Card PowerValue Multiple Vulnerabilities
rss:cisa-advisories
31d ago
INFO
Siemens Siemens ROS#
rss:cisa-advisories
29d ago
INFO
Siemens gWAP
rss:cisa-advisories
29d ago
INFO
Siemens SIMATIC
rss:cisa-advisories
29d ago
INFO
Siemens Ruggedcom Rox
rss:cisa-advisories
29d ago
INFO
Siemens Ruggedcom Rox
rss:cisa-advisories
29d ago
INFO
Siemens Simcenter Femap
rss:cisa-advisories
29d ago
INFO
Universal Robots Polyscope 5
rss:cisa-advisories
29d ago
INFO
Siemens Ruggedcom Rox
rss:cisa-advisories
29d ago
INFO
Siemens Teamcenter
rss:cisa-advisories
29d ago
INFO
Siemens Solid Edge
rss:cisa-advisories
29d ago
INFO
Siemens SENTRON 7KT PAC1261 Data Manager
rss:cisa-advisories
29d ago
INFO
Siemens Opcenter RDnL
rss:cisa-advisories
29d ago
INFO
Siemens Ruggedcom Rox
rss:cisa-advisories
29d ago
INFO
Siemens Industrial Devices
rss:cisa-advisories
29d ago
INFO
Siemens SIMATIC S7 PLC Web Server
rss:cisa-advisories
29d ago
INFO
Siemens SIPROTEC 5
rss:cisa-advisories
29d ago
INFO
Siemens SIMATIC
rss:cisa-advisories
29d ago
INFO
Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt
The Hacker News
26d ago
INFO
Kieback & Peter DDC Building Controllers
rss:cisa-advisories
24d ago
INFO
Siemens RUGGEDCOM APE1808 Devices
rss:cisa-advisories
24d ago
INFO
ABB CoreSense HM and CoreSense M10
rss:cisa-advisories
24d ago
INFO
ScadaBR
rss:cisa-advisories
24d ago
INFO
ZKTeco CCTV Cameras
rss:cisa-advisories
24d ago
INFO
CISA Exposes Secrets, Credentials in 'Private' Repo
rss:darkreading
24d ago
INFO
GitHub Investigating TeamPCP Claimed Breach of ~4,000 Internal Repositories
The Hacker News
24d ago
INFO
GitHub investigates internal repositories breach claimed by TeamPCP
BleepingComputer
24d ago
INFO
GitHub confirms breach of 3,800 repos via malicious VSCode extension
BleepingComputer
23d ago
INFO
Schnieider Electric EcoStruxure Machine Expert HVAC (SEVD-2026-132-01)
rss:cisa-advisories
23d ago
INFO
Senator presses CISA for answers about alleged GitHub repository leak
The Record
23d ago
INFO
GitHub confirms being hacked by TeamPCP, says customer data unaffected
The Record
23d ago
INFO
Grafana breach caused by missed token rotation after TanStack attack
BleepingComputer
23d ago
INFO
GitHub Confirms Breach, 4K Internal Repos Stolen
rss:darkreading
23d ago
INFO
GitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension
The Hacker News
23d ago
INFO
GitHub links repo breach to TanStack npm supply-chain attack
BleepingComputer
22d ago
INFO
ABB Terra AC Wallbox
rss:cisa-advisories
22d ago
INFO
ABB B&R Automation Studio
rss:cisa-advisories
22d ago
INFO
ABB B&R Automation Runtime
rss:cisa-advisories
22d ago
INFO
ABB B&R PCs
rss:cisa-advisories
22d ago
INFO
Grafana Says Codebase and Other Data Stolen via TanStack Supply Chain Attack
SecurityWeek
21d ago
INFO
Megalodon GitHub Attack Targets 5,561 Repos with Malicious CI/CD Workflows
The Hacker News
21d ago
INFO
CISA Security Leak
rss:schneier
21d ago
INFO
Lawmakers Demand Answers as CISA Tries to Contain Data Leak
Krebs
21d ago
INFO
Packagist Supply Chain Attack Infects 8 Packages Using GitHub-Hosted Linux Malware
The Hacker News
20d ago
INFO
npm Adds 2FA-Gated Publishing and Package Install Controls Against Supply Chain Attacks
The Hacker News
20d ago
INFO
Laravel Lang packages hijacked to deploy credential-stealing malware
BleepingComputer
20d ago
INFO
Over 5,500 GitHub Repositories Infected in ‘Megalodon’ Supply Chain Attack
SecurityWeek
18d ago
INFO
ABB Terra AC
rss:cisa-advisories
17d ago
INFO
ABB LVS MConfig
rss:cisa-advisories
17d ago
INFO
ABB Ability Camera Connect
rss:cisa-advisories
17d ago
INFO
Eppendorf BioFlo 320
rss:cisa-advisories
17d ago
INFO
ABB AbilityTM Zenon Remote Transport Vulnerability
rss:cisa-advisories
17d ago
INFO
ABB AC500 V2
rss:cisa-advisories
17d ago
INFO
ABB B&R Automation Runtime DoS Vulnerability in System Diagnostics Manager (SDM)
rss:cisa-advisories
17d ago
INFO
Feeding Frenzy: 'Megalodon' Malware Infects Thousands of GitHub Repos
rss:darkreading
17d ago
INFO
Malicious npm Package Stole Files From Claude AI User Directory via GitHub
The Hacker News
16d ago
INFO
ABB EIBPORT
rss:cisa-advisories
15d ago
INFO
Jinan USR IOT Technology Limited (PUSR) USR-W610 RS232/485 to Wi-Fi/Ethernet Converter
rss:cisa-advisories
15d ago
INFO
ABB Busch-Welcome 2 Wire Door Opener Actuator
rss:cisa-advisories
15d ago
INFO
Fourth Frontier Frontier X Mobile Application, Frontier X2
rss:cisa-advisories
15d ago
INFO
CP Plus 8 Ch. Network Video Recorder
rss:cisa-advisories
15d ago
INFO
XCharge C6
rss:cisa-advisories
15d ago
INFO
KMW CCTV Security Cameras
rss:cisa-advisories
15d ago
INFO
MacGregor Voyage Data Recorder (VDR) G4e
rss:cisa-advisories
15d ago
INFO
Supply Chain Compromises Impact Nx Console and GitHub Repositories
rss:cisa-advisories
15d ago
INFO
Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal
The Hacker News
15d ago
INFO
Microsoft calls zero-day releases ‘never justifiable’ as researcher threatens to drop more
The Record
14d ago
INFO
OpenAI Codex Authentication Tokens Stolen in codexui-android npm Supply Chain Attack
The Hacker News
11d ago
INFO
Red Hat removes tainted packages after software pipeline compromise
The Record
10d ago
INFO
VS Code zero-day lets hackers steal GitHub tokens in one click
BleepingComputer
9d ago
INFO
NAVTOR NavBox
rss:cisa-advisories
8d ago
INFO
Hitachi Energy MACH HiDraw
rss:cisa-advisories
8d ago
INFO
Hitachi Energy ITT600 Explorer
rss:cisa-advisories
8d ago
INFO
B&R PPT30 Operating System
rss:cisa-advisories
8d ago
INFO
Hitachi Energy RTU500
rss:cisa-advisories
8d ago
INFO
Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories
The Hacker News
8d ago
INFO
⚡ Weekly Recap: Instagram Account Hacks, Android Zero-Day, GitHub Worm and More
The Hacker News
4d ago
INFO
NFCShare Android malware spreads via fake banking app updates on GitHub
BleepingComputer
4d ago
INFO
Siemens KACO Blueplanet Inverters
rss:cisa-advisories
3d ago
INFO
Schneider Electric EcoStruxure Panel Server
rss:cisa-advisories
3d ago
INFO
Schneider Electric Modicon Network Managed Switches
rss:cisa-advisories
3d ago
INFO
GitHub announces npm security changes to tackle supply-chain attacks
BleepingComputer
2d ago
INFO
The ‘Miasma’ worm source code briefly leaked on GitHub
BleepingComputer
2d ago
INFO
GitHub to Disable npm Install Scripts by Default to Stop Supply Chain Attacks
The Hacker News
2d ago
INFO
Yarbo Android/iOS Mobile Application and Cloud Infrastructure
rss:cisa-advisories
1d ago
INFO
Naxclow IoT Platform
rss:cisa-advisories
1d ago
INFO
Brickcom Cameras
rss:cisa-advisories
1d ago
INFO
Early Warning Signs of Supply-Chain Attacks Live in the Dark Web
BleepingComputer
16h ago
INFO
Claude Fable 5 Doesn't Change the Mythos Security Story
rss:darkreading
breaches
malware
threat-actors
17h ago
INFO
Industry Reactions to Claude Fable 5: Feedback Friday
SecurityWeek
breaches
ransomware
supply-chain
18h ago
INFO
Agentjacking Attack Tricks AI Coding Agents Into Running Malicious Code
The Hacker News
supply-chain
breaches
malware
18h ago
INFO
CISA Adds One Known Exploited Vulnerability to Catalog
rss:cisa-advisories
actively-exploited
advisories
+1
18h ago
INFO
CISA Adds One Known Exploited Vulnerability to Catalog
rss:cisa-advisories
1d ago
INFO
Iranian Cyber Group Handala Claims Cal Water Hack
SecurityWeek
breaches
ransomware
supply-chain
19h ago
CRITICAL
CVE-2026-11849 (CVSS 9.8) — The iRM-IEI Remote Management developed by IEI Integration Corp has a Hardcoded Credentials vulnera...
NVD
CVE-2026-11849
19h ago
INFO
Bernie Sanders’ AI Sovereign Wealth Fund Plan
rss:schneier
analysis
policy
19h ago
INFO
Rethinking MDR as Attackers and Defenders Embrace AI
The Hacker News
supply-chain
breaches
malware
19h ago
INFO
Pharma giant Novo Nordisk discloses breach of clinical trials data
BleepingComputer
breaches
ransomware
supply-chain
20h ago
HIGH
MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems
The Hacker News
supply-chain
breaches
malware
+26
25d ago
INFO
'Dirty Frag' Exploit Poised to Blow Up on Enterprise Linux Distros
rss:darkreading
32d ago
INFO
It's Patch Tuesday for Microsoft & Not a Zero-Day In Sight
rss:darkreading
31d ago
INFO
Microsoft Patches 138 Vulnerabilities, Including DNS and Netlogon RCE Flaws
The Hacker News
30d ago
INFO
[Webinar] How Modern Attack Paths Cross Code, Pipelines, and Cloud
The Hacker News
30d ago
INFO
Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistence
The Hacker News
28d ago
INFO
Can Laws Stop Deepfakes? South Korea Aims to Find Out
rss:darkreading
26d ago
INFO
Processes and Culture Top Reasons Behind Data Breaches
rss:darkreading
23d ago
INFO
When Identity is the Attack Path
The Hacker News
22d ago
INFO
CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV
The Hacker News
22d ago
INFO
Meta settles school district lawsuit claiming addictive design harmed students' mental health
The Record
21d ago
INFO
Claude Mythos AI Finds 10,000 High-Severity Flaws in Widely Used Software
The Hacker News
20d ago
INFO
⚡ Weekly Recap: Linux Flaws, Defender 0-Days, Router Botnets, and Supply Chain Chaos
The Hacker News
18d ago
INFO
CERT-In Mandates 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks
The Hacker News
17d ago
INFO
RevEng.AI Raises $15 Million to Hunt for Flaws and Backdoors in Software Binaries
SecurityWeek
16d ago
INFO
California Sues 23andMe, Alleging It Failed to Protect User Data in 2023 Breach
SecurityWeek
14d ago
INFO
California AG sues 23andMe over 2023 breach exposing health data
BleepingComputer
14d ago
INFO
Kirki, Burst Statistics WordPress Plugin Flaws in Attackers’ Crosshairs
SecurityWeek
9d ago
INFO
Chrome 149 Patches 429 Vulnerabilities
SecurityWeek
7d ago
INFO
EU unveils tech sovereignty package to cut reliance on US, Chinese suppliers
The Record
7d ago
INFO
Will AI Kill the Bug Bounty Industry?
SecurityWeek
3d ago
INFO
SAP Patches Critical NetWeaver, Commerce Vulnerabilities
SecurityWeek
3d ago
INFO
Microsoft June 2026 Patch Tuesday fixes 3 zero-day, 200 flaws
BleepingComputer
3d ago
INFO
SAP fixes critical flaws in NetWeaver and Commerce Cloud
BleepingComputer
3d ago
INFO
CISA Rewrites Federal Patching Requirements for AI Threat Era
rss:darkreading
2d ago
INFO
CISA tells govt agencies to patch critical exploited flaws in 3 days
BleepingComputer
1d ago
INFO
LangGraph Flaw Chain Exposes Self-Hosted AI Agents to Remote Code Execution
The Hacker News
20h ago
INFO
Ivanti Sentry Exploitation Attempts Hitting Honeypots
SecurityWeek
breaches
ransomware
supply-chain
+6
20h ago
INFO
Ivanti: Max severity Sentry flaw allows code execution as root
BleepingComputer
3d ago
INFO
Critical Vulnerabilities Patched in Fortinet, Ivanti Products
SecurityWeek
2d ago
INFO
Ivanti, Fortinet, and SAP Release Patches for Multiple Critical Vulnerabilities
The Hacker News
2d ago
INFO
Max severity Ivanti Sentry vulnerability now exploited in attacks
BleepingComputer
2d ago
INFO
Max-Severity Ivanti Flaw Exploited 24 Hours After Disclosure
rss:darkreading
1d ago
INFO
CISA orders feds to patch actively exploited Ivanti flaw by Sunday
BleepingComputer
22h ago
INFO
Chrome 149 Update Patches 28 Vulnerabilities
SecurityWeek
breaches
ransomware
supply-chain
21h ago
INFO
INTERPOL Operation Takes Down Sniper Dz Phishing Platform, Arrests Administrator
The Hacker News
supply-chain
breaches
malware
21h ago
INFO
Anthropic Disputes Fable 5 AI Jailbreak
SecurityWeek
breaches
ransomware
supply-chain
21h ago
INFO
Over 73,000 French govt employees affected in Tchap messenger breach
BleepingComputer
breaches
ransomware
supply-chain
23h ago
CRITICAL
CVE-2026-35273: Oracle PeopleSoft Enterprise PeopleTools Missing Authentication for Critical Function Vulnerability (Oracle PeopleSoft Enterprise PeopleTools)
CISA KEV
CVE-2026-35273
actively-exploited
ransomware
+5
1d ago
CRITICAL
CVE-2026-35273 (CVSS 9.8) — Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Upda...
NVD
2d ago
INFO
Oracle Addresses PeopleSoft Vulnerability Amid Reports of Zero-Day Attacks
SecurityWeek
1d ago
INFO
Oracle mitigates PeopleSoft zero-day exploited in data theft attacks
BleepingComputer
1d ago
INFO
ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach Universities
The Hacker News
1d ago
INFO
Google Confirms Exploitation of Oracle PeopleSoft Zero-Day by ShinyHunters
SecurityWeek
23h ago
INFO
Europol Disrupts AudiA6 Crypto Laundering Service Used by Ransomware Gangs
The Hacker News
supply-chain
breaches
malware
+1
1d ago
INFO
Authorities dismantle 'AudiA6' ransomware crypto-laundering service
BleepingComputer
1d ago
INFO
Phishing Attack Volume Down 20%, but Risk Still Rising
rss:darkreading
breaches
malware
threat-actors
1d ago
INFO
Japanese energy firm loses drive with data of 10.9 million clients
BleepingComputer
breaches
ransomware
supply-chain
1d ago
HIGH
CVE-2026-53812 (CVSS 7.7) — OpenClaw before 2026.5.18 contains a server-side request forgery vulnerability in browser control th...
NVD
CVE-2026-53812
1d ago
HIGH
CVE-2026-53811 (CVSS 8.8) — OpenClaw before 2026.5.7 contains a privilege escalation vulnerability in the Matrix allowFrom featu...
NVD
CVE-2026-53811
1d ago
HIGH
CVE-2026-53810 (CVSS 8.8) — OpenClaw before 2026.5.18 contains a code execution vulnerability where marketplace runtime extensio...
NVD
CVE-2026-53810
1d ago
HIGH
CVE-2026-53807 (CVSS 8.8) — OpenClaw before 2026.5.6 contains an authorization bypass vulnerability in Telegram interactive call...
NVD
CVE-2026-53807
1d ago
HIGH
CVE-2026-53806 (CVSS 8.8) — OpenClaw before 2026.5.12 contains a shell option parsing vulnerability that allows combined POSIX s...
NVD
CVE-2026-53806
1d ago
Page 1 / 56
Next
INFO
rss:darkreading
Fri, 12 Jun 2026 20:26:32 UTC
✕ Dismiss
ShinyHunters Uses Oracle Zero-Day to Rampage Higher Ed
https://www.darkreading.com/vulnerabilities-threats/shinyhunters-oracle-zero-day-higher-ed
TL;DR
A major bug in Oracle's ERP software disproportionately affected American universities, and hackers have capitalized by stealing gobs of data.
breaches
malware
threat-actors
zero-day
Read full story ↗
Related coverage (15)
Instructure Breach Exposes Schools' Vendor Dependence
rss:darkreading
37d ago
ShinyHunters Claims Second Attack Against Instructure
rss:darkreading
35d ago
Instructure Reaches Ransom Agreement with ShinyHunters to Stop 3.65TB Canvas Leak
The Hacker News
31d ago
Congress Puts Heat on Instructure After Canvas Outage
rss:darkreading
28d ago
7-Eleven confirms breach after ShinyHunters claims
The Record
23d ago
7-Eleven data breach exposes personal information of 185,000 people
BleepingComputer
17d ago
185,000 Likely Impacted by 7-Eleven Data Breach
SecurityWeek
17d ago
Charter confirms data breach after ShinyHunters extortion threat
BleepingComputer
17d ago
Carnival Cruise confirms data breach affecting nearly 6 million people
BleepingComputer
15d ago
Charter Communications data breach affects 4.9 million accounts
BleepingComputer
14d ago
Charter Communications Data Breach Could Impact Nearly 5 Million
SecurityWeek
14d ago
Hackers Leak DentaQuest Information Impacting 2.6 Million
SecurityWeek
7d ago
Oracle PeopleSoft servers hacked in ShinyHunters data theft attacks
BleepingComputer
2d ago
University of Nottingham Confirms Breach After Hackers Leak Data
SecurityWeek
1d ago
University of Nottingham confirms cyber incident as Shiny Hunters group claims data theft
The Record
1d ago