cyber·news

INFO

Gemini Voice Assistant Hijacked via Messaging Notifications

SecurityWeek breachesransomwaresupply-chain +18 1d ago

INFO

VoidStealer Malware Darts Past Google Chrome's Encryption

rss:darkreading 30d ago

INFO

Android Adds Intrusion Logging for Sophisticated Spyware Forensics

The Hacker News 23d ago

INFO

A 0-click exploit chain for the Pixel 10: When a Door Closes, a Window Opens

rss:googleprojectzero 23d ago

INFO

Google’s Surge in Chrome Vulnerability Discoveries Likely Driven by AI

SecurityWeek 15d ago

INFO

Google accidentally exposed details of unfixed Chromium flaw

BleepingComputer 15d ago

INFO

Google API Keys Remain Active After Deletion

rss:darkreading 15d ago

INFO

GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure

The Hacker News 9d ago

INFO

Google Unveils AI Threat Defense Platform to Fight AI-Powered Cyberattacks

SecurityWeek 8d ago

INFO

US charges Google security engineer with Polymarket insider trading

BleepingComputer 7d ago

INFO

Google Chrome adds session cookie theft protection for all users

BleepingComputer 7d ago

INFO

Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts

The Hacker News 4d ago

INFO

Google fixes one actively exploited Android zero-day, 124 flaws

BleepingComputer 3d ago

INFO

Google adds Android protection against AI deepfake scam calls

BleepingComputer 2d ago

INFO

Malicious Notifications Could Trick Google Gemini Users

rss:darkreading 2d ago

INFO

Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT

The Hacker News 2d ago

INFO

WhatsApp, Slack Notifications Could Hijack Google Gemini on Android

The Hacker News 2d ago

INFO

Fake Sites Mimicking Open-Source Tools Rank High on Google to Deliver Malware via TDS

The Hacker News 1d ago

INFO

FlutterShell Backdoor Spreads to macOS via Malicious Google and YouTube Ads

The Hacker News 1d ago

INFO

'The Com' Cyberattacks Support Violence & Sexploitation

rss:darkreading breachesmalwarethreat-actors 7d ago

INFO

New Russian-Linked GREYVIBE Targets Ukraine with AI-Powered Cyberattacks

The Hacker News supply-chainbreachesmalware 7d ago

HIGH

MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems

The Hacker News supply-chainbreachesmalware +19 18d ago

INFO

'Dirty Frag' Exploit Poised to Blow Up on Enterprise Linux Distros

rss:darkreading 25d ago

INFO

It's Patch Tuesday for Microsoft & Not a Zero-Day In Sight

rss:darkreading 24d ago

INFO

Microsoft Patches 138 Vulnerabilities, Including DNS and Netlogon RCE Flaws

The Hacker News 23d ago

INFO

[Webinar] How Modern Attack Paths Cross Code, Pipelines, and Cloud

The Hacker News 23d ago

INFO

Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistence

The Hacker News 21d ago

INFO

Can Laws Stop Deepfakes? South Korea Aims to Find Out

rss:darkreading 19d ago

INFO

Processes and Culture Top Reasons Behind Data Breaches

rss:darkreading 16d ago

INFO

When Identity is the Attack Path

The Hacker News 15d ago

INFO

CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV

The Hacker News 14d ago

INFO

Meta settles school district lawsuit claiming addictive design harmed students' mental health

The Record 14d ago

INFO

Claude Mythos AI Finds 10,000 High-Severity Flaws in Widely Used Software

The Hacker News 13d ago

INFO

⚡ Weekly Recap: Linux Flaws, Defender 0-Days, Router Botnets, and Supply Chain Chaos

The Hacker News 11d ago

INFO

CERT-In Mandates 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks

The Hacker News 10d ago

INFO

RevEng.AI Raises $15 Million to Hunt for Flaws and Backdoors in Software Binaries

SecurityWeek 9d ago

INFO

California Sues 23andMe, Alleging It Failed to Protect User Data in 2023 Breach

SecurityWeek 7d ago

INFO

California AG sues 23andMe over 2023 breach exposing health data

BleepingComputer 7d ago

INFO

Kirki, Burst Statistics WordPress Plugin Flaws in Attackers’ Crosshairs

SecurityWeek 2d ago

INFO

Chrome 149 Patches 429 Vulnerabilities

SecurityWeek 16h ago

INFO

EU unveils tech sovereignty package to cut reliance on US, Chinese suppliers

The Record 13h ago

INFO

Man sent to prison for selling data of 7 millions elderly Americans

BleepingComputer breachesransomwaresupply-chain 7d ago

INFO

What 2,000 Exposed Vibe-Coded Apps Reveal About the Limits of Most Security Stacks

The Hacker News supply-chainbreachesmalware 7d ago

INFO

Chrome 148 Update Patches 151 Vulnerabilities

SecurityWeek breachesransomwaresupply-chain 7d ago

HIGH

Grafana GitHub Breach Exposes Source Code via TanStack npm Attack

The Hacker News supply-chainbreachesmalware +16 16d ago

INFO

The npm Threat Landscape: Attack Surface and Mitigations (Updated May 1)

rss:unit42 35d ago

INFO

Worm Redux: Fresh Mini Shai-Hulud Infections Bite Supply Chain

rss:darkreading 24d ago

HIGH

Stealer Backdoor Found in 3 Node-IPC Versions Targeting Developer Secrets

The Hacker News 22d ago

HIGH

Four Malicious npm Packages Deliver Infostealers and Phantom Bot DDoS Malware

The Hacker News 18d ago

HIGH

Developer Workstations Are Now Part of the Software Supply Chain

The Hacker News 18d ago

HIGH

⚡ Weekly Recap: Exchange 0-Day, npm Worm, Fake AI Repo, Cisco Exploit and More

The Hacker News 18d ago

HIGH

Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account

The Hacker News 17d ago

INFO

Over 320 NPM Packages Hit by Fresh Mini Shai-Hulud Supply Chain Attack

SecurityWeek 16d ago

INFO

TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO

The Hacker News 11d ago

INFO

Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets

The Hacker News 7d ago

INFO

Miasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing Worm

The Hacker News 4d ago

INFO

Red Hat npm packages compromised to steal developer credentials

BleepingComputer 4d ago

INFO

Supply Chain Attack Hits 32 Red Hat NPM Packages

SecurityWeek 3d ago

INFO

New IronWorm malware hits 36 packages in npm supply-chain attack

BleepingComputer 1d ago

INFO

Rust-Written IronWorm Hits NPM Supply Chain

rss:darkreading 1d ago

INFO

IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks

The Hacker News 9h ago

INFO

Hackers Leak DentaQuest Information Impacting 2.6 Million

SecurityWeek breachesransomwaresupply-chain +11 15h ago

INFO

Instructure Breach Exposes Schools' Vendor Dependence

rss:darkreading 30d ago

INFO

ShinyHunters Claims Second Attack Against Instructure

rss:darkreading 28d ago

INFO

Instructure Reaches Ransom Agreement with ShinyHunters to Stop 3.65TB Canvas Leak

The Hacker News 24d ago

INFO

Congress Puts Heat on Instructure After Canvas Outage

rss:darkreading 21d ago

INFO

7-Eleven confirms breach after ShinyHunters claims

The Record 16d ago

INFO

7-Eleven data breach exposes personal information of 185,000 people

BleepingComputer 10d ago

INFO

185,000 Likely Impacted by 7-Eleven Data Breach

SecurityWeek 10d ago

INFO

Charter confirms data breach after ShinyHunters extortion threat

BleepingComputer 10d ago

INFO

Carnival Cruise confirms data breach affecting nearly 6 million people

BleepingComputer 8d ago

INFO

Charter Communications data breach affects 4.9 million accounts

BleepingComputer 7d ago

INFO

Charter Communications Data Breach Could Impact Nearly 5 Million

SecurityWeek 7d ago

INFO

Kimsuky Deploys HTTPSpy, Expands Arsenal with HelloDoor and VS Code Tunnels

The Hacker News supply-chainbreachesmalware 7d ago

INFO

Anthropic confirms Claude Mythos-class models will roll out to the public

BleepingComputer breachesransomwaresupply-chain 8d ago

INFO

As Global Powers Explore Humanoid Robots, Cyber-Risk Looms

rss:darkreading breachesmalwarethreat-actors 8d ago

INFO

GreyVibe hackers use ChatGPT, Gemini to power cyberattacks

BleepingComputer breachesransomwaresupply-chain +1 8d ago

INFO

Russia-Linked ‘GreyVibe’ Attackers Use AI to Supercharge Cyberattacks

SecurityWeek 8d ago

INFO

BTMOB Android malware service generates custom phishing payloads

BleepingComputer breachesransomwaresupply-chain 8d ago

INFO

FBI warns of fake FIFA websites running World Cup fraud schemes

BleepingComputer breachesransomwaresupply-chain 8d ago

INFO

Dutch Raid Fails to Dent Russian Bulletproof Host

rss:darkreading breachesmalwarethreat-actors 8d ago

INFO

Hackers exploit FortiClient EMS flaw to push infostealer malware

BleepingComputer CVE-2026-35616breachesransomware 8d ago

INFO

Critical Gogs RCE Vulnerability Lets Any Authenticated User Execute Arbitrary Code

The Hacker News supply-chainbreachesmalware 8d ago

INFO

Geordie Raises $30 Million for AI Security and Governance Platform

SecurityWeek breachesransomwaresupply-chain 8d ago

INFO

Agentic AI Isn't Risky; the Way Orgs Deploy It Is

rss:darkreading breachesmalwarethreat-actors 8d ago

INFO

China-Linked TA4922 Expands Phishing Attacks to UK, Germany, Italy, and South Africa

The Hacker News supply-chainbreachesmalware +10 1d ago

INFO

Middle East Cyber Battle Field Broadens — Especially in UAE

rss:darkreading 30d ago

INFO

Cyber Resilience is the New Business Continuity Plan

SecurityWeek 17d ago

INFO

Windows Zero-Day Barrage Continues After Patch Tuesday

rss:darkreading 17d ago

INFO

Identity Alone Isn't Enough: Why Device Security Has to Share the Load

BleepingComputer 16d ago

INFO

Anthropic: Mythos Detected 23,000 Potential Vulnerabilities Across 1,000 OSS Projects

SecurityWeek 11d ago

INFO

Iranian APT Targets Aviation, Software Companies With Updated Tools

SecurityWeek 10d ago

INFO

MuddyWater Uses DLL Side-Loading in Espionage Campaign Targeting 9 Countries

The Hacker News 10d ago

INFO

Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer

The Hacker News 8d ago

INFO

Global Stock Exchange Hit by Monthslong Email Campaign

rss:darkreading 2d ago

INFO

What 345 Days of Untested Exposure Looks Like at a Bank

BleepingComputer 2d ago

INFO

Carnival Data Breach Exposed 6 Million People

SecurityWeek breachesransomwaresupply-chain 8d ago

INFO

New Gogs zero-day flaw lets hackers get remote code execution

BleepingComputer breachesransomwaresupply-chain 8d ago

INFO

How SIEM helps MSPs reduce noise and stop threats faster

BleepingComputer breachesransomwaresupply-chain 8d ago

INFO

Cruise giant Carnival confirms data breach affecting nearly 6 million people

The Record breachesransomwarenation-state 8d ago

HIGH

Popular GitHub Action Tags Redirected to Imposter Commit to Steal CI/CD Credentials

The Hacker News supply-chainbreachesmalware +81 17d ago

INFO

ABB AC500 V3 Stack Buffer Overflow in Cryptographic Message Syntax

rss:cisa-advisories 24d ago

INFO

Fuji Electric Tellus

rss:cisa-advisories 24d ago

INFO

ABB AC500 V3 Multiple Vulnerabilities

rss:cisa-advisories 24d ago

INFO

Subnet Solutions PowerSYSTEM Center

rss:cisa-advisories 24d ago

INFO

ABB Automation Builder Gateway for Windows

rss:cisa-advisories 24d ago

INFO

ABB WebPro SNMP Card PowerValue Multiple Vulnerabilities

rss:cisa-advisories 24d ago

INFO

Siemens Siemens ROS#

rss:cisa-advisories 22d ago

INFO

Siemens gWAP

rss:cisa-advisories 22d ago

INFO

Siemens SIMATIC

rss:cisa-advisories 22d ago

INFO

Siemens Ruggedcom Rox

rss:cisa-advisories 22d ago

INFO

Siemens Ruggedcom Rox

rss:cisa-advisories 22d ago

INFO

Siemens Simcenter Femap

rss:cisa-advisories 22d ago

INFO

Universal Robots Polyscope 5

rss:cisa-advisories 22d ago

INFO

Siemens Ruggedcom Rox

rss:cisa-advisories 22d ago

INFO

Siemens Teamcenter

rss:cisa-advisories 22d ago

INFO

Siemens Solid Edge

rss:cisa-advisories 22d ago

INFO

Siemens SENTRON 7KT PAC1261 Data Manager

rss:cisa-advisories 22d ago

INFO

Siemens Opcenter RDnL

rss:cisa-advisories 22d ago

INFO

Siemens Ruggedcom Rox

rss:cisa-advisories 22d ago

INFO

Siemens Industrial Devices

rss:cisa-advisories 22d ago

INFO

Siemens SIMATIC S7 PLC Web Server

rss:cisa-advisories 22d ago

INFO

Siemens SIPROTEC 5

rss:cisa-advisories 22d ago

INFO

Siemens SIMATIC

rss:cisa-advisories 22d ago

INFO

Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

The Hacker News 19d ago

INFO

Kieback & Peter DDC Building Controllers

rss:cisa-advisories 17d ago

INFO

Siemens RUGGEDCOM APE1808 Devices

rss:cisa-advisories 17d ago

INFO

ABB CoreSense HM and CoreSense M10

rss:cisa-advisories 17d ago

INFO

ScadaBR

rss:cisa-advisories 17d ago

INFO

ZKTeco CCTV Cameras

rss:cisa-advisories 17d ago

INFO

CISA Exposes Secrets, Credentials in 'Private' Repo

rss:darkreading 17d ago

INFO

GitHub Investigating TeamPCP Claimed Breach of ~4,000 Internal Repositories

The Hacker News 16d ago

INFO

GitHub investigates internal repositories breach claimed by TeamPCP

BleepingComputer 16d ago

INFO

GitHub confirms breach of 3,800 repos via malicious VSCode extension

BleepingComputer 16d ago

INFO

Schnieider Electric EcoStruxure Machine Expert HVAC (SEVD-2026-132-01)

rss:cisa-advisories 16d ago

INFO

Senator presses CISA for answers about alleged GitHub repository leak

The Record 16d ago

INFO

GitHub confirms being hacked by TeamPCP, says customer data unaffected

The Record 16d ago

INFO

Grafana breach caused by missed token rotation after TanStack attack

BleepingComputer 16d ago

INFO

GitHub Confirms Breach, 4K Internal Repos Stolen

rss:darkreading 16d ago

INFO

GitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension

The Hacker News 15d ago

INFO

GitHub links repo breach to TanStack npm supply-chain attack

BleepingComputer 15d ago

INFO

ABB Terra AC Wallbox

rss:cisa-advisories 15d ago

INFO

ABB B&R Automation Studio

rss:cisa-advisories 15d ago

INFO

ABB B&R Automation Runtime

rss:cisa-advisories 15d ago

INFO

ABB B&R PCs

rss:cisa-advisories 15d ago

INFO

Grafana Says Codebase and Other Data Stolen via TanStack Supply Chain Attack

SecurityWeek 14d ago

INFO

Megalodon GitHub Attack Targets 5,561 Repos with Malicious CI/CD Workflows

The Hacker News 14d ago

INFO

CISA Security Leak

rss:schneier 14d ago

INFO

Lawmakers Demand Answers as CISA Tries to Contain Data Leak

Krebs 14d ago

INFO

Packagist Supply Chain Attack Infects 8 Packages Using GitHub-Hosted Linux Malware

The Hacker News 13d ago

INFO

npm Adds 2FA-Gated Publishing and Package Install Controls Against Supply Chain Attacks

The Hacker News 13d ago

INFO

Laravel Lang packages hijacked to deploy credential-stealing malware

BleepingComputer 13d ago

INFO

Over 5,500 GitHub Repositories Infected in ‘Megalodon’ Supply Chain Attack

SecurityWeek 11d ago

INFO

ABB Terra AC

rss:cisa-advisories 10d ago

INFO

ABB LVS MConfig

rss:cisa-advisories 10d ago

INFO

ABB Ability Camera Connect

rss:cisa-advisories 10d ago

INFO

Eppendorf BioFlo 320

rss:cisa-advisories 10d ago

INFO

ABB AbilityTM Zenon Remote Transport Vulnerability

rss:cisa-advisories 10d ago

INFO

ABB AC500 V2

rss:cisa-advisories 10d ago

INFO

ABB B&R Automation Runtime DoS Vulnerability in System Diagnostics Manager (SDM)

rss:cisa-advisories 10d ago

INFO

Feeding Frenzy: 'Megalodon' Malware Infects Thousands of GitHub Repos

rss:darkreading 10d ago

INFO

Malicious npm Package Stole Files From Claude AI User Directory via GitHub

The Hacker News 9d ago

INFO

ABB EIBPORT

rss:cisa-advisories 8d ago

INFO

Jinan USR IOT Technology Limited (PUSR) USR-W610 RS232/485 to Wi-Fi/Ethernet Converter

rss:cisa-advisories 8d ago

INFO

ABB Busch-Welcome 2 Wire Door Opener Actuator

rss:cisa-advisories 8d ago

INFO

Fourth Frontier Frontier X Mobile Application, Frontier X2

rss:cisa-advisories 8d ago

INFO

CP Plus 8 Ch. Network Video Recorder

rss:cisa-advisories 8d ago

INFO

XCharge C6

rss:cisa-advisories 8d ago

INFO

KMW CCTV Security Cameras

rss:cisa-advisories 8d ago

INFO

MacGregor Voyage Data Recorder (VDR) G4e

rss:cisa-advisories 8d ago

INFO

Supply Chain Compromises Impact Nx Console and GitHub Repositories

rss:cisa-advisories 8d ago

INFO

Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal

The Hacker News 8d ago

INFO

Microsoft calls zero-day releases ‘never justifiable’ as researcher threatens to drop more

The Record 7d ago

INFO

OpenAI Codex Authentication Tokens Stolen in codexui-android npm Supply Chain Attack

The Hacker News 4d ago

INFO

Red Hat removes tainted packages after software pipeline compromise

The Record 3d ago

INFO

VS Code zero-day lets hackers steal GitHub tokens in one click

BleepingComputer 2d ago

INFO

NAVTOR NavBox

rss:cisa-advisories 1d ago

INFO

Hitachi Energy MACH HiDraw

rss:cisa-advisories 1d ago

INFO

Hitachi Energy ITT600 Explorer

rss:cisa-advisories 1d ago

INFO

B&R PPT30 Operating System

rss:cisa-advisories 1d ago

INFO

Hitachi Energy RTU500

rss:cisa-advisories 1d ago

INFO

Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories

The Hacker News 1d ago

INFO

Canadian man gets 33 years for using social media to coerce US children into sending sexual content

The Record breachesransomwarenation-state 8d ago

INFO

ThreatsDay Bulletin: Claude Security Plugin, Azure Priv-Esc, Kali365 MFA Bypass, FIFA Scams +15 More

The Hacker News supply-chainbreachesmalware 8d ago

INFO

Chinese-speaking fraud gang could be stealing millions from 2026 World Cup fans

The Record breachesransomwarenation-state 8d ago

INFO

Russia conducting daily attacks on UK 'from seabed to cyberspace,' spy chief warns

The Record breachesransomwarenation-state 8d ago

INFO

New BTMOB Android Malware Enables Full Device Takeover

SecurityWeek breachesransomwaresupply-chain 8d ago

INFO

Critical FortiClient EMS Vulnerability Exploited in Fresh Attacks

SecurityWeek breachesransomwaresupply-chain 8d ago

INFO

Romanian gets 5 years in prison for hacking Oregon govt network

BleepingComputer breachesransomwaresupply-chain 8d ago

INFO

IBM and Red Hat Commit $5 Billion to Secure Open Source Supply Chains Under “Project Lightwell”

SecurityWeek breachesransomwaresupply-chain 8d ago

INFO

Focus on Cyber Insurance: How Quantifying Risk Is Reshaping Security

rss:darkreading breachesmalwarethreat-actors 8d ago

INFO

Webinar: Why network incidents take too long to resolve

BleepingComputer breachesransomwaresupply-chain +1 8d ago

INFO

Webinar: Too many tools are slowing network incident response

BleepingComputer 10d ago

INFO

New Edamame Platform Aims to Catch AI Coding Agents Going Off the Rails

SecurityWeek breachesransomwaresupply-chain 8d ago

INFO

New AI Usage Report: Enterprise AI Risk Is Heavily Concentrated Among a Small Group of AI "Power users"

The Hacker News supply-chainbreachesmalware 8d ago

INFO

Gitea Vulnerability Exposed 30,000 Deployments to Attacks

SecurityWeek breachesransomwaresupply-chain 8d ago

INFO

Raising the Cybersecurity Stakes: Ante up for the Agentic Era

SecurityWeek breachesransomwaresupply-chain 8d ago

INFO

Sextortionist sentenced to 33 years for targeting 145 children

BleepingComputer breachesransomwaresupply-chain 8d ago

INFO

BTMOB RAT Spreads Across Brazil, LatAm via MaaS Model

rss:darkreading breachesmalwarethreat-actors 8d ago

INFO

JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware

The Hacker News supply-chainbreachesmalware 8d ago

INFO

Nordic CISOs Handle Rising Cyber Threats Remarkably Well

rss:darkreading breachesmalwarethreat-actors 8d ago

INFO

Name That Toon Contest

rss:darkreading breachesmalwarethreat-actors 8d ago

INFO

GPU mining malware spreads via SEO poisoning, AI chatbots

BleepingComputer breachesransomwaresupply-chain 9d ago

Prev Page 5 / 12 Next

INFO SecurityWeek Thu, 04 Jun 2026 12:57:37 UTC

Gemini Voice Assistant Hijacked via Messaging Notifications

https://www.securityweek.com/gemini-voice-assistant-hijacked-via-messaging-notifications/

TL;DR

Attackers could have triggered dangerous actions, including controlling smart home devices via Google Home and starting Zoom video calls. The post Gemini Voice Assistant Hijacked via Messaging Notifications appeared first on SecurityWeek .

breachesransomwaresupply-chain

Read full story ↗