411 items
Unread (2149) All Dismissed
INFO
AI Agent Uncovers 21 Zero-Days in FFmpeg; Chrome Patches Record 429 Bugs
The Hacker News supply-chainbreachesmalware +19 1h ago
INFO
VoidStealer Malware Darts Past Google Chrome's Encryption
rss:darkreading 30d ago
INFO
Android Adds Intrusion Logging for Sophisticated Spyware Forensics
The Hacker News 24d ago
INFO
A 0-click exploit chain for the Pixel 10: When a Door Closes, a Window Opens
rss:googleprojectzero 24d ago
INFO
Google’s Surge in Chrome Vulnerability Discoveries Likely Driven by AI
SecurityWeek 15d ago
INFO
Google accidentally exposed details of unfixed Chromium flaw
BleepingComputer 15d ago
INFO
Google API Keys Remain Active After Deletion
rss:darkreading 15d ago
INFO
GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure
The Hacker News 9d ago
INFO
Google Unveils AI Threat Defense Platform to Fight AI-Powered Cyberattacks
SecurityWeek 8d ago
INFO
US charges Google security engineer with Polymarket insider trading
BleepingComputer 7d ago
INFO
Google Chrome adds session cookie theft protection for all users
BleepingComputer 7d ago
INFO
Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts
The Hacker News 5d ago
INFO
Google fixes one actively exploited Android zero-day, 124 flaws
BleepingComputer 3d ago
INFO
Google adds Android protection against AI deepfake scam calls
BleepingComputer 2d ago
INFO
Malicious Notifications Could Trick Google Gemini Users
rss:darkreading 2d ago
INFO
Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT
The Hacker News 2d ago
INFO
WhatsApp, Slack Notifications Could Hijack Google Gemini on Android
The Hacker News 2d ago
INFO
Fake Sites Mimicking Open-Source Tools Rank High on Google to Deliver Malware via TDS
The Hacker News 1d ago
INFO
FlutterShell Backdoor Spreads to macOS via Malicious Google and YouTube Ads
The Hacker News 1d ago
INFO
Gemini Voice Assistant Hijacked via Messaging Notifications
SecurityWeek 1d ago
INFO
New Exim BDAT Vulnerability Exposes GnuTLS Builds to Potential Code Execution
The Hacker News supply-chainbreachesmalware 24d ago
INFO
Attackers Weaponize RubyGems for Data Dead Drops
rss:darkreading breachesmalwarethreat-actors +2 23d ago
INFO
RubyGems Suspends New Signups After Hundreds of Malicious Packages Are Uploaded
The Hacker News 24d ago
INFO
GemStuffer Abuses 150+ RubyGems to Exfiltrate Scraped U.K. Council Portal Data
The Hacker News 24d ago
INFO
New TrickMo Variant Uses TON C2 and SOCKS5 to Create Android Network Pivots
The Hacker News supply-chainbreachesmalware 24d ago
INFO
Webinar: What the Riskiest SOC Alerts Go Unanswered - and How Radiant Security Can Help
The Hacker News supply-chainbreachesmalware 24d ago
HIGH
Mini Shai-Hulud Worm Compromises TanStack, Mistral AI, Guardrails AI & More Packages
The Hacker News supply-chainbreachesmalware +3 24d ago
INFO
After Replacing TeamPCP Malware, 'PCPJack' Steals Cloud Secrets
rss:darkreading 29d ago
INFO
GitHub Confirms Hack Impacting 3,800 Internal Repositories
SecurityWeek 16d ago
INFO
The Hackers Behind Shai-Hulud: Lucky or Skilled?
rss:darkreading 10d ago
HIGH
Grafana GitHub Breach Exposes Source Code via TanStack npm Attack
The Hacker News supply-chainbreachesmalware +16 17d ago
INFO
The npm Threat Landscape: Attack Surface and Mitigations (Updated May 1)
rss:unit42 35d ago
INFO
Worm Redux: Fresh Mini Shai-Hulud Infections Bite Supply Chain
rss:darkreading 24d ago
HIGH
Stealer Backdoor Found in 3 Node-IPC Versions Targeting Developer Secrets
The Hacker News 22d ago
HIGH
Four Malicious npm Packages Deliver Infostealers and Phantom Bot DDoS Malware
The Hacker News 19d ago
HIGH
Developer Workstations Are Now Part of the Software Supply Chain
The Hacker News 18d ago
HIGH
⚡ Weekly Recap: Exchange 0-Day, npm Worm, Fake AI Repo, Cisco Exploit and More
The Hacker News 18d ago
HIGH
Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account
The Hacker News 18d ago
INFO
Over 320 NPM Packages Hit by Fresh Mini Shai-Hulud Supply Chain Attack
SecurityWeek 16d ago
INFO
TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO
The Hacker News 12d ago
INFO
Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets
The Hacker News 7d ago
INFO
Miasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing Worm
The Hacker News 4d ago
INFO
Red Hat npm packages compromised to steal developer credentials
BleepingComputer 4d ago
INFO
Supply Chain Attack Hits 32 Red Hat NPM Packages
SecurityWeek 3d ago
INFO
New IronWorm malware hits 36 packages in npm supply-chain attack
BleepingComputer 1d ago
INFO
Rust-Written IronWorm Hits NPM Supply Chain
rss:darkreading 1d ago
INFO
IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks
The Hacker News 14h ago
INFO
Why Agentic AI Is Security's Next Blind Spot
The Hacker News supply-chainbreachesmalware 24d ago
INFO
Hackers Leak DentaQuest Information Impacting 2.6 Million
SecurityWeek breachesransomwaresupply-chain +11 21h ago
INFO
Instructure Breach Exposes Schools' Vendor Dependence
rss:darkreading 30d ago
INFO
ShinyHunters Claims Second Attack Against Instructure
rss:darkreading 28d ago
INFO
Instructure Reaches Ransom Agreement with ShinyHunters to Stop 3.65TB Canvas Leak
The Hacker News 25d ago
INFO
Congress Puts Heat on Instructure After Canvas Outage
rss:darkreading 21d ago
INFO
7-Eleven confirms breach after ShinyHunters claims
The Record 16d ago
INFO
7-Eleven data breach exposes personal information of 185,000 people
BleepingComputer 11d ago
INFO
185,000 Likely Impacted by 7-Eleven Data Breach
SecurityWeek 10d ago
INFO
Charter confirms data breach after ShinyHunters extortion threat
BleepingComputer 10d ago
INFO
Carnival Cruise confirms data breach affecting nearly 6 million people
BleepingComputer 8d ago
INFO
Charter Communications data breach affects 4.9 million accounts
BleepingComputer 8d ago
INFO
Charter Communications Data Breach Could Impact Nearly 5 Million
SecurityWeek 7d ago
INFO
Trellix Source Code Breach Highlights Growing Supply Chain Threats
rss:darkreading breachesmalwarethreat-actors 31d ago
INFO The Hacker News Sat, 06 Jun 2026 07:28:30 UTC
AI Agent Uncovers 21 Zero-Days in FFmpeg; Chrome Patches Record 429 Bugs
https://thehackernews.com/2026/06/ai-agent-uncovers-21-zero-days-in.html
TL;DR
Two things landed within days of each other this week. A security startup reported 21 previously unknown vulnerabilities in FFmpeg, the media library inside almost everything that touches video, all of them found by an autonomous AI agent. The same week, Google shipped Chrome 149 with patches for 42
supply-chainbreachesmalwarezero-day
Read full story ↗
Related coverage (19)
VoidStealer Malware Darts Past Google Chrome's Encryption
rss:darkreading 30d ago
Android Adds Intrusion Logging for Sophisticated Spyware Forensics
The Hacker News 24d ago
A 0-click exploit chain for the Pixel 10: When a Door Closes, a Window Opens
rss:googleprojectzero 24d ago
Google’s Surge in Chrome Vulnerability Discoveries Likely Driven by AI
SecurityWeek 15d ago
Google accidentally exposed details of unfixed Chromium flaw
BleepingComputer 15d ago
Google API Keys Remain Active After Deletion
rss:darkreading 15d ago
GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure
The Hacker News 9d ago
Google Unveils AI Threat Defense Platform to Fight AI-Powered Cyberattacks
SecurityWeek 8d ago
US charges Google security engineer with Polymarket insider trading
BleepingComputer 7d ago
Google Chrome adds session cookie theft protection for all users
BleepingComputer 7d ago
Critical WP Maps Pro Flaw Actively Exploited to Create Admin Accounts
The Hacker News 5d ago
Google fixes one actively exploited Android zero-day, 124 flaws
BleepingComputer 3d ago
Google adds Android protection against AI deepfake scam calls
BleepingComputer 2d ago
Malicious Notifications Could Trick Google Gemini Users
rss:darkreading 2d ago
Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT
The Hacker News 2d ago
WhatsApp, Slack Notifications Could Hijack Google Gemini on Android
The Hacker News 2d ago
Fake Sites Mimicking Open-Source Tools Rank High on Google to Deliver Malware via TDS
The Hacker News 1d ago
FlutterShell Backdoor Spreads to macOS via Malicious Google and YouTube Ads
The Hacker News 1d ago
Gemini Voice Assistant Hijacked via Messaging Notifications
SecurityWeek 1d ago