I added hover over text, it messed up some of the formatting. But whatever, I gotta go write my TPS report.<h2>Krebs on Security</h2>2026-06-10 - <a href="https://krebsonsecurity.com/2026/06/who-runs-the-ransomware-group-the-gentlemen/" title="A cybercrime group known as The Gentlemen has emerged as the second most active ransomware gang by victim count, rapidly attracting a talented pool of hackers through an aggressive recruitment strategy that promises affiliates 90 percent of any ransom paid by victims. This post examines clues pointing to a real life identity for the administrator of The Gentlemen ransomware group.">Who Runs the Ransomware Group ‘The Gentlemen?’</a><br>2026-06-09 - <a href="https://krebsonsecurity.com/2026/06/a-record-breaking-patch-tuesday-for-june-2026/" title="Microsoft today released software updates to plug nearly 200 security holes across its Windows operating systems and supported software, a record number of fixes for the company's monthly Patch Tuesday cycle. Nearly three dozen of those bugs earned Microsoft's most dire "critical" rating, and exploit code for at least three of the weaknesses is now publicly available.">A Record-Breaking Patch Tuesday for June 2026</a><br><h2>Dark Reading</h2><h2>The Hacker News [ THN ] - Best Security Blog</h2>2026-06-13 - <a href="https://thehackernews.com/2026/06/critical-splunk-enterprise-flaw-lets.html" title="Splunk has released security updates to address a critical security flaw in Splunk Enterprise that could be exploited to conduct unauthenticated file operations and even remote code execution.

The vulnerability, tracked as CVE-2026-20253, is rated 9.8 on the CVSS scoring system.

"In Splunk Enterprise versions below 10.2.4 and 10.0.7, an unauthenticated user could create or truncate arbitrary">Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication</a><br>2026-06-13 - <a href="https://thehackernews.com/2026/06/us-orders-anthropic-to-suspend-fable-5.html" title="Anthropic said on Friday it will "abruptly disable" its most advanced artificial intelligence (AI) models, Claude Fable 5 and Mythos 5, for all users after the U.S. government ordered it to suspend access to the models for foreign nationals, whether inside or outside the U.S., citing national security concerns.

The AI company said it received an order at 5:21 p.m. ET, instructing it to suspend">U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals</a><br>2026-06-13 - <a href="https://thehackernews.com/2026/06/over-400-arch-linux-aur-packages.html" title="Attackers took over more than 400 packages in the Arch User Repository (AUR) this week and rewrote their build scripts to install a credential stealer on any machine that built them.

The malware is a Rust binary built to harvest developer secrets. When it lands with root, it can also load an eBPF rootkit to hide itself. The AUR is Arch Linux's community package collection, and it is separate">Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit</a><br>2026-06-13 - <a href="https://thehackernews.com/2026/06/google-sues-chinese-smishing-network.html" title="Google on Friday said it's pursuing legal action against a Chinese cybercrime network, accusing it of using its Gemini artificial intelligence (AI) agent to send phishing text messages targeting Americans.

The network is said to be behind the development and management of a phishing-as-a-service (PhaaS) software kit called Outsider, per the tech giant.

"The operation weaponized Gemini to help">Google Sues Chinese Smishing Network Accused of Using Gemini AI in Phishing</a><br>2026-06-12 - <a href="https://thehackernews.com/2026/06/china-linked-hackers-backdoored-linux.html" title="Instead of hiding on the laptops and servers defenders watch most closely, a China-nexus group spent close to a decade hidden inside the Linux login system itself.

Sygnia, which tracks the group as Velvet Ant, says it backdoored the PAM and OpenSSH components that decide who is allowed to sign in, planting its access where ordinary cleanup could not reach it. The network it targeted had no">China-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decade</a><br>2026-06-12 - <a href="https://thehackernews.com/2026/06/agentjacking-attack-tricks-ai-coding.html" title="Cybersecurity researchers have described what they say is a new class of attack that can trick artificial intelligence (AI) coding agents into running arbitrary code on developer machines.

Called Agentjacking by Tenet Security, the attack can be triggered by means of a fake error report crafted using Sentry, an open-source error-tracking and performance-monitoring platform.

"The attack">Agentjacking Attack Tricks AI Coding Agents Into Running Malicious Code</a><br>2026-06-12 - <a href="https://thehackernews.com/2026/06/rethinking-mdr-as-attackers-and.html" title="For most of the past decade, managed detection and response was the answer to a real problem. Security teams couldn't staff around the clock, couldn't hire enough analysts, and needed someone else to handle the alert queue. MDR stepped in. It worked well enough. Until now.

The threat landscape has changed faster than the MDR model can adapt. Attackers are using AI to move faster, generate more">Rethinking MDR as Attackers and Defenders Embrace AI</a><br>2026-06-12 - <a href="https://thehackernews.com/2026/06/langgraph-flaw-chain-exposes-self.html" title="Cybersecurity researchers have disclosed details of three now-patched security flaws impacting LangGraph, including a critical vulnerability chain that could result in remote code execution.

LangGraph is an open-source framework created by LangChain to build complex, stateful, and multi-agent artificial intelligence (AI) agentic applications.

"An SQL injection in LangGraph's function could">LangGraph Flaw Chain Exposes Self-Hosted AI Agents to Remote Code Execution</a><br>2026-06-12 - <a href="https://thehackernews.com/2026/06/interpol-takes-down-sniper-dz-phishing.html" title="An INTERPOL-led operation last month resulted in the disruption of Sniper Dz, a decade-long phishing-as-a-service (PhaaS) platform, Group-IB said Thursday.

The effort, codenamed Operation Ramz, took place between October 2025 and February 2026, and saw authorities from 13 countries in the Middle East and North Africa (MENA) region making 201 arrests.

Included among them was Guedz, the primary">INTERPOL Operation Takes Down Sniper Dz Phishing Platform, Arrests Administrator</a><br>2026-06-12 - <a href="https://thehackernews.com/2026/06/europol-disrupts-audia6-crypto.html" title="Authorities in Europe have disrupted AudiA6, a cryptocurrency laundering service used by ransomware gangs and cybercriminal networks.

Europol, in a statement issued Thursday, said the dismantling of AudiA6 cut off a "key financial pipeline used to wash hundreds of millions in illicit profits." The service is estimated to have been used to launder more than €336 million (~$389 million) since the">Europol Disrupts AudiA6 Crypto Laundering Service Used by Ransomware Gangs</a><br>2026-06-12 - <a href="https://thehackernews.com/2026/06/shinyhunters-exploits-oracle-peoplesoft.html" title="The ShinyHunters extortion crew exploited an unpatched flaw in Oracle PeopleSoft to break into enterprise systems, steal data, and demand payment to keep it private. The campaign hit universities hardest.

Google's Mandiant attributes it to the group it tracks as UNC6240, and dates the activity between May 27 and June 9. Oracle did not publish its advisory until June 10, so the bug was a">ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach Universities</a><br>2026-06-11 - <a href="https://thehackernews.com/2026/06/new-attacks-trick-openclaw-ai-agent.html" title="Two security teams have shown, in separate research published this week, that OpenClaw, the popular self-hosted AI agent, can be driven to run attacker-controlled code or hand over sensitive data through ordinary-looking inputs.

Imperva buried instructions inside shared contacts, vCards, and location pins that the agent executed without the victim ever seeing them. Varonis built a test agent on">New Attacks Trick OpenClaw AI Agent Into Running Code and Leaking Secrets</a><br>2026-06-11 - <a href="https://thehackernews.com/2026/06/new-greatxml-exploit-bypasses-windows.html" title="Security researcher Chaotic Eclipse (aka Nightmare-Eclipse and MSNightmare) has released a new Windows BitLocker bypass dubbed GreatXML, a day after they published an exploit for Microsoft Defender.

"This was an accidental discovery, it took a total of 4 hours to find this," the researcher said in a post on Blogger. "If you ever attempted to use Windows Defender Offline Scan, you're">New GreatXML Exploit Bypasses Windows BitLocker via Recovery Partition XML Files</a><br>2026-06-11 - <a href="https://thehackernews.com/2026/06/the-gentlemen-ransomware-claims-478.html" title="A new analysis of The Gentlemen operation has revealed that the financially motivated threat group initially operated as an affiliate responsible for conducting double extortion attacks, while leveraging resources from various ransomware-as-a-service (RaaS) schemes like LockBit (aka Tenacious Mantis), Qilin (aka Pestilent Mantis), and Medusa (aka Venomous Mantis).

According to a detailed report">The Gentlemen Ransomware Claims 478 Victims, Can Spread Like a Worm</a><br>2026-06-11 - <a href="https://thehackernews.com/2026/06/cybersecurity-stars-awards-2026-winners.html" title="Most good security work is invisible by design. Today is the exception.

The 2026 Cybersecurity Stars Awards winners are announced across 95 subcategories in four main award categories.

The reason is simple. Cybersecurity is full of work that deserves recognition and rarely gets it. Products that quietly close real gaps. Teams that stop incidents nobody reads about. Companies that raise the">Cybersecurity Stars Awards 2026: Winners Announced Across 95 Categories</a><br>2026-06-11 - <a href="https://thehackernews.com/2026/06/threatsday-bulletin-worm-code-leaked-ai.html" title="It's been one of those weeks. You expect the usual noise: recycled malware, sloppy attacks, another easy target getting hit. Instead, there's a supply chain attack kit in a public repo, a $5,000-a-month RAT that clones browsers, and research showing AI agents can be tricked into leaking real credentials.

The bigger problem is how polished this all looks now. Mule networks run like SaaS.">ThreatsDay Bulletin: Worm Code Leaked, AI Agent Phished, Claude Code Patch + 28 New Stories</a><br>2026-06-11 - <a href="https://thehackernews.com/2026/06/ai-broke-vulnerability-management-thats.html" title="For thirty years, vulnerability management ran on a buffer: the months between when a vulnerability was found and when someone could figure out how to weaponize it. The solution was straightforward enough; triage by severity, schedule the fix, validate, and move on. The buffer was what made that work.

Today, that buffer is gone.

AI didn't make your team slower. It changed the other side of the">AI Broke Vulnerability Management. That's Why CISOs Are Moving Budget to BAS.</a><br>2026-06-11 - <a href="https://thehackernews.com/2026/06/oceanlotus-hits-vietnam-investors-with.html" title="The Vietnam-aligned threat actor known as OceanLotus has been attributed to two distinct campaigns that targeted domestic entities and stock investors with a backdoor known as SPECTRALVIPER.

The campaigns involve a prolonged cyber espionage operation aimed at a Vietnamese infrastructure and transport construction corporation between mid-2024 and February 2026, as well as a supply chain attack">OceanLotus Hits Vietnam Investors With SPECTRALVIPER in FireAnt Attack</a><br>2026-06-11 - <a href="https://thehackernews.com/2026/06/github-to-disable-npm-install-scripts.html" title="GitHub has announced what it said are "breaking changes" coming to npm version 12, one of which turns off install scripts by default to combat software supply chain threats.

The changes aim to combat attack techniques that abuse the "npm install" command to trigger the execution of malicious code using npm lifecycle hooks. "Npm install" is used to download and install all the necessary">GitHub to Disable npm Install Scripts by Default to Stop Supply Chain Attacks</a><br>2026-06-10 - <a href="https://thehackernews.com/2026/06/china-linked-jdy-botnet-expands-to-1500.html" title="Cybersecurity researchers have warned of a "resurgence and expansion" of JDY, a covert network associated with China-nexus state-sponsored threat actors.

"The JDY botnet comprises over 1,500 SOHO [small office and home office] and IoT devices and operates as a centrally controlled, high-performance scanner used to discover, fingerprint, and continuously map exposed services at scale," Lumen's">China-Linked JDY Botnet Expands to 1,500+ Devices for Cyber Reconnaissance</a><br>2026-06-10 - <a href="https://thehackernews.com/2026/06/ivanti-fortinet-and-sap-release-patches.html" title="Fortinet, Ivanti, and SAP have released security updates to address multiple critical security vulnerabilities that could result in arbitrary code execution and information disclosure.

The security flaw patched by Fortinet relates to a command injection vulnerability in FortiSandbox, FortiSandbox Cloud, and FortiSandbox PaaS WEB UI. It's tracked as CVE-2026-25089 (CVSS score: 9.1).

"An">Ivanti, Fortinet, and SAP Release Patches for Multiple Critical Vulnerabilities</a><br>2026-06-10 - <a href="https://thehackernews.com/2026/06/unpatched-langflow-flaw-cve-2026-5027.html" title="A high-severity security flaw in Langflow, an open-source low-code platform to build artificial intelligence (AI) applications, has come under active exploitation in the wild, according to findings from VulnCheck.

The vulnerability in question is CVE-2026-5027 (CVSS score: 8.8), a case of path traversal that could allow an attacker to write files to arbitrary locations.

"The 'POST /api/v2/">Langflow Vulnerability CVE-2026-5027 Exploited for Unauthenticated RCE</a><br>2026-06-10 - <a href="https://thehackernews.com/2026/06/cisa-adds-cisco-chrome-and-arista-flaws.html" title="The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, following reports of active exploitation.

The list of vulnerabilities is as follows -


  CVE-2026-20245 (CVSS score: 7.8) - An improper encoding or escaping of output vulnerability in Cisco Catalyst SD-WAN Manager that could allow an">CISA Adds Cisco, Chrome, and Arista Flaws to KEV Catalog Amid Active Exploitation</a><br>2026-06-10 - <a href="https://thehackernews.com/2026/06/your-automated-pentest-looks-clean-see.html" title="Your pentest report looks clean. That might be the problem.

Run automated pentesting long enough, and the new findings start to dry up. By the third or fourth run, fewer issues appear. The report looks stable. Leadership reads "stable" as "secure." It usually isn't. The work slows down. The risk does not.

That gap is what a The Hacker News webinar with Picus Security sets out to close.

Autumn">Your Automated Pentest Looks Clean. See What It Missed in This Expert Webinar</a><br>2026-06-10 - <a href="https://thehackernews.com/2026/06/microsoft-patches-record-206-flaws.html" title="Microsoft on Tuesday released fixes for a record 206 security vulnerabilities impacting its software portfolio, including three flaws that have been publicly disclosed at the time of release.

Of the 206 flaws, 39 are rated Critical, and 167 are rated Important in severity. This includes 63 privilege escalation, 56 remote code execution, 30 information disclosure, 27 spoofing, 20 security">Microsoft Patches Record 206 Flaws, Including Three Zero-Days and Critical RCE Bugs</a><br>2026-06-10 - <a href="https://thehackernews.com/2026/06/anthropic-releases-claude-fable-5-its.html" title="On June 9, Anthropic released Claude Fable 5, the most capable model it has ever made, generally available. It also did something unusual: it shipped one model as two products, split not by capability but by a layer of safety classifiers.

Fable 5 goes to the public. Its twin, Claude Mythos 5, the same underlying model with the cyber safeguards lifted, stays locked to a vetted group of cyber">Anthropic Releases Claude Fable 5, Its Most Powerful AI Yet, With Cyber Safeguards</a><br>2026-06-10 - <a href="https://thehackernews.com/2026/06/servicenow-flaw-exploited-to-gain.html" title="ServiceNow has warned about a security incident in which unknown threat actors exploited a flaw to obtain deeper unauthorized access to susceptible instances.

"On June 5, 2026, ServiceNow applied a security update to hosted customer instances," the company revealed in an advisory that requires customer access. "The update concerned a security issue that could allow an unauthenticated user, in">ServiceNow Flaw Exploited to Gain Unauthorized Access to Customer Instances</a><br>2026-06-10 - <a href="https://thehackernews.com/2026/06/microsoft-defender-rogueplanet-zero-day.html" title="The anonymous security researcher going by the name Chaotic Eclipse (aka Nightmare-Eclipse) has released a proof-of-concept (PoC) exploit for yet another Microsoft Defender zero-day named RoguePlanet.

"The exploit is a race condition, so it's a hit or miss," the researcher, who published the exploit under a new GitHub account "MSNightmare" said. "I have managed to get a 100% success rate on">Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows</a><br>2026-06-10 - <a href="https://thehackernews.com/2026/06/six-proto6-vulnerabilities-in.html" title="Cybersecurity researchers have flagged half a dozen vulnerabilities in protobuf.js, a JavaScript and TypeScript implementation of Protocol Buffers (Protobuf), that, if successfully exploited, could result in remote code execution (RCE) and denial-of-service (DoS) attacks.

"In affected environments, a single malicious protobuf schema, descriptor, or crafted payload could be enough to trigger">Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS</a><br>2026-06-09 - <a href="https://thehackernews.com/2026/06/meta-to-use-off-site-business-data-for.html" title="Meta on Tuesday announced that it will use information shared by other businesses to personalize users' feed and responses from its artificial intelligence (AI) chatbot, expanding its scope beyond targeted ads.

"Businesses often share information about people's activity on their sites with us to make ads more relevant," Meta said in a statement.

"We already use this data - like games you play">Meta to Use Off-Site Business Data for Feed and AI Personalization</a><br>2026-06-09 - <a href="https://thehackernews.com/2026/06/veeam-backup-replication-rce-flaw-lets.html" title="Veeam has released security patches to address a critical flaw in its Backup &amp; Replication software that could result in remote code execution.

Tracked as CVE-2026-44963, the vulnerability carries a CVSS score of 9.4 out of a maximum of 10.0.

"A vulnerability allowing remote code execution (RCE) on the Backup Server by an authenticated domain user," Veeam said in a Tuesday advisory.

It">Veeam Backup & Replication RCE Flaw Lets Domain Users Run Remote Code</a><br>2026-06-09 - <a href="https://thehackernews.com/2026/06/microsoft-restores-some-github-repos.html" title="Microsoft on Monday confirmed that it temporarily removed some GitHub repositories in response to a recent security incident that led to 73 of its open-source projects being compromised to inject an information stealer into the code.

"Our priority is to protect customers and the broader ecosystem," a Microsoft spokesperson told The Hacker News via email. "We temporarily removed some">Microsoft Restores Some GitHub Repos, Keeps Others Offline as Miasma Probe Continues</a><br>2026-06-09 - <a href="https://thehackernews.com/2026/06/winrar-flaw-exploited-by-russia-aligned.html" title="Two Russia-aligned cyber attack campaigns have continued to exploit a security flaw in WinRAR to target Ukrainian organisations, almost a year after patches for the vulnerability were released.

The activity has been attributed by Trend Micro to Earth Dahu (aka Gamaredon) and SHADOW-EARTH-066 (aka UAC-0226). It involves the exploitation of CVE-2025-8088, a path traversal flaw that allows an">WinRAR Flaw Exploited by Russia-Aligned Groups to Deploy Stealers in Ukraine</a><br>2026-06-09 - <a href="https://thehackernews.com/2026/06/researchers-build-self-replicating-ai.html" title="University of Toronto researchers have built and tested a proof-of-concept AI-driven computer worm that uses a locally hosted open-weight large language model to reason its way through a network, generate tailored attack strategies for each target it encounters, and replicate itself, all without human intervention and without touching a commercial AI service.

The preprint, posted to arXiv on">Researchers Build Self-Replicating AI Worm That Operates Entirely on Local, Open-Weight Models</a><br>2026-06-09 - <a href="https://thehackernews.com/2026/06/chrome-v8-zero-day-cve-2026-11645.html" title="Google has released security updates to address 74 vulnerabilities, including one that has come under active exploitation in the wild.

The high-severity vulnerability, tracked as CVE-2026-11645 (CVSS score: 8.8), has been described as an out-of-bounds memory access in V8, Chrome's JavaScript and WebAssembly engine.

"Out-of-bounds read and write in V8 in Google Chrome prior to 149.0.7827.103">Chrome V8 Zero-Day CVE-2026-11645 Exploited in the Wild - Patch Now</a><br>2026-06-09 - <a href="https://thehackernews.com/2026/06/the-hidden-security-risk-in-modern.html" title="Organizations have more visibility than ever. Growing tech stacks provide greater coverage, and network security teams are increasingly adopting AI and automation to help with routine tasks and reduce manual effort.

But the same challenges persist. Outages still last hours, causing significant financial losses, operational disruption, and reputational impact. Threat response and mean time to">The Hidden Security Risk in Modern Networks: The Work Between Tools</a><br>2026-06-09 - <a href="https://thehackernews.com/2026/06/new-frost-attack-lets-websites-track.html" title="A malicious website can work out which sites you visit and which apps you open, using nothing but JavaScript and the timing of your SSD. The attack, called FROST, needs no native code, no extension, and no permission prompt.

You open the page, leave the tab sitting there, and it watches the drive for contention in the background.

Researchers at Graz University of Technology built it and">New FROST Attack Lets Websites Track What Sites and Apps You Open via SSD Timing</a><br>2026-06-09 - <a href="https://thehackernews.com/2026/06/hades-pypi-attack-19-packages-poisoned.html" title="The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel artifacts across 19 packages in the Python Package Index (PyPI) registry, as the Mini Shai-Hulud-style attacks continue to be refined and splintered to target specific ecosystems.

"The compromised releases shipped a *-setup.pth file that attempts to execute automatically">Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer</a><br>2026-06-09 - <a href="https://thehackernews.com/2026/06/litellm-flaw-cve-2026-42271-exploited.html" title="The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity flaw impacting BerriAI LiteLLM to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.

The vulnerability, tracked as CVE-2026-42271 (CVSS score: 8.7), is a command injection vulnerability that could allow any authenticated user to run arbitrary commands on the">LiteLLM Flaw CVE-2026-42271 Exploited in the Wild, Chains to Unauthenticated RCE</a><br>2026-06-09 - <a href="https://thehackernews.com/2026/06/one-character-linux-kernel-flaw-enables.html" title="Security researchers have published a detailed, working exploit for a Linux kernel use-after-free that lets an unprivileged local user escalate to root and break out of a container.

The flaw, CVE-2026-23111, sits in the kernel's nf_tables packet-filtering code and was patched upstream on February 5, 2026. Exodus Intelligence released its full technical walkthrough on June 8, and it is not even">One-Character Linux Kernel Flaw Enables Local Root Access, Exploits Now Public</a><br><h2>Schneier on Security</h2>2026-06-12 - <a href="https://www.schneier.com/blog/archives/2026/06/friday-squid-blogging-squid-inspired-fluid-pump.html" title="<p>This fluid pump was <a href="https://www.bu.edu/articles/2026/squid-inspired-lab-tech-wins-student-team-climate-award/">inspired</a> by the way squids propel themselves through the water.</p>
<p>As usual, you can also use this squid post to talk about the security stories in the news that I haven&#8217;t covered.</p>
<p><a href="https://www.schneier.com/blog/archives/2024/06/new-blog-moderation-policy.html">Blog moderation policy.</a></p>">Friday Squid Blogging: Squid-Inspired Fluid Pump</a><br>2026-06-12 - <a href="https://www.schneier.com/blog/archives/2026/06/bernie-sanders-ai-sovereign-wealth-fund-plan.html" title="<p>Let no one accuse Bernie Sanders of ducking the big questions. Writing in the New York Times last week, the senator <a href="https://www.nytimes.com/2026/06/01/opinion/artificial-intelligence-bernie-sanders.html">asked</a>: &#8220;Will the future of humanity be determined by a handful of billionaires who have promoted and developed AI, with virtually no democratic input, who stand to become even richer and more powerful than they are today?&#8221;</p>
<p>We agree entirely that this is one of the most potent questions facing global democracy today. Our book, <a href="https://mitpress.mit.edu/9780262049948/rewiring-democracy/">Rewiring Democracy</a>, surveys the emerging uses for and impacts of AI in democracy around the world and reaches the same conclusion: that the most urgent risk posed by AI is the ...</p>">Bernie Sanders’ AI Sovereign Wealth Fund Plan</a><br>2026-06-11 - <a href="https://www.schneier.com/blog/archives/2026/06/enhanced-license-plate-tracking.html" title="<p>The surveillance company Leonardo wants <a href="https://www.404media.co/this-company-will-add-phone-airpod-and-smartwatch-trackers-to-license-plate-readers/">more data</a>:</p>
<blockquote><p>A surveillance company plans to add sensors to automatic license plate readers (ALPRs) that would mean the devices, as well as capture the license plate of passing vehicles, would also sweep up unique identifiers of mobile phones, wearables, and other Bluetooth-enabled devices in those cars, potentially letting law enforcement identify specific drivers or passengers.</p>
<p>The technology, called SignalTrace, would turn ALPR cameras from devices focused on tracking cars to ones that can more readily track the location of particular people. ALPR cameras have become a commonly deployed technology all across the U.S.; SignalTrace would make some of those cameras capable of collecting much more data...</p></blockquote>">Enhanced License Plate Tracking</a><br>2026-06-10 - <a href="https://www.schneier.com/blog/archives/2026/06/nso-group-hacking-whatsapp-despite-court-order.html" title="<p>WhatsApp has <a href="https://www.securityweek.com/whatsapp-catches-spyware-firm-nso-defying-no-hacking-court-order/">caught</a> the NSO Group phishing its users, in violation of a court order.</p>">NSO Group Hacking WhatsApp Despite Court Order</a><br>2026-06-09 - <a href="https://www.schneier.com/blog/archives/2026/06/gps-as-a-key-distribution-platform.html" title="<p><a href="https://www.404media.co/the-u-s-military-quietly-turned-gps-into-a-global-numbers-station-evidence-suggests/">This</a> is interesting:</p>
<blockquote><p>The U.S. military has likely been quietly broadcasting codes for its global encryption network using public GPS for nearly 20 years, turning each satellite into a hidden &#8220;numbers station,&#8221; according to Steven Murdoch&#8230;</p>
<p>That means every device that uses GPS has been receiving hidden government information for years, and nobody outside the military knew it until now.</p>
<p>[&#8230;]</p>
<p>Murdoch discovered that this particular sentinel was transmitted by all 31 operational satellites within a window of a few hours on May 26, 2011, potentially heralding the activation of a new operational system. He confirmed that this timeline coincided with the rollout of the military&#8217;s Over-the-Air Distribution (OTAD) and the Over-the-Air Rekeying (OTAR) by cross-referencing declassified documents, including a 2015 presentation about the dates of the operation...</p></blockquote>">GPS As a Key Distribution Platform</a><br><h2>ThreatPost</h2><h2>Sydney Morning Herald</h2><h2>New York Times</h2>2026-06-12 - <a href="https://www.nytimes.com/2026/06/12/technology/spacex-ipo-journey.html" title="Elon Musk said he had initially given SpaceX less than a 10 percent chance of succeeding. His rocket company has come a long way.">SpaceX’s Unlikely Journey From Far-Out Idea to $2 Trillion Juggernaut</a><br>2026-06-12 - <a href="https://www.nytimes.com/2026/06/12/technology/spacex-ipo-elon-musk.html" title="The blockbuster stock market debut of Elon Musk’s rocket company paves the way for a wave of enormous offerings that are coming from OpenAI and Anthropic.">SpaceX Stock Rises 11% in Largest IPO Ever</a><br>2026-06-12 - <a href="https://www.nytimes.com/2026/06/12/technology/elon-musk-trillionaire.html" title="With SpaceX shares soaring 20 percent on their first day of trading, the world’s richest person crossed another milestone — one with 13 digits.">Elon Musk Becomes World’s First Trillionaire as SpaceX Stock Begins Trading</a><br>2026-06-12 - <a href="https://www.nytimes.com/2026/06/12/technology/spacex-ipo-openai-anthropic.html" title="Strong investor interest in SpaceX could be good news for the A.I. rivals, which have signaled that they, too, intend to go public this year.">What the SpaceX I.P.O. Means for OpenAI and Anthropic</a><br>2026-06-13 - <a href="https://www.nytimes.com/2026/06/12/technology/anthropic-mythos-fable5-blocked.html" title="The company said on Friday night that the federal government had ordered limits on its Mythos and Fable 5 A.I. systems, citing national security concerns.">Anthropic Blocks Foreigners From Using Mythos and Fable AI</a><br>2026-06-12 - <a href="https://www.nytimes.com/2026/06/12/upshot/spacex-stock-ipo.html" title="If you have index funds — such as in a 401(k) — they may soon include shares of the mega company. Here’s a rough calculation.">If You Have a 401(k), How Much SpaceX Stock Will You Own?</a><br>2026-06-12 - <a href="https://www.nytimes.com/2026/06/12/podcasts/hard-fork-live-part-1-satya-nadella.html" title="A tech titan, a digital rights defender and two menacing-looking robot dogs took the stage at our second-ever live show.">‘Hard Fork’ Live, Part 1: Satya Nadella and Cindy Cohn</a><br>2026-06-12 - <a href="https://www.nytimes.com/2026/06/12/technology/google-lawsuit-china-ai-scams.html" title="In a lawsuit, the tech giant accused the group of using Google’s Gemini system to create hundreds of fake corporate and government websites.">Google Sues to Stop Chinese Cybercrime Group from Using Its A.I.</a><br>2026-06-12 - <a href="https://www.nytimes.com/2026/06/11/insider/spacex-ipo-coverage-facts-price.html" title="Two Times tech reporters and their editor talk about assessing the sky-high valuation of the rocket and satellite maker, the potential economic impact of its public debut and the role of the world’s richest man in it all.">SpaceX IPO: How Our Reporters Assess the Sky-High Valuation and Potential Economic Impact</a><br>2026-06-12 - <a href="https://www.nytimes.com/2026/06/11/technology/spacex-ipo-price.html" title="Elon Musk’s rocket company said it would sell more than 555 million shares at $135 each in its blockbuster initial public offering, which is set to begin trading on Friday.">SpaceX Finalizes IPO Price at $135 a Share in World’s Largest Public Offering</a><br>2026-06-11 - <a href="https://www.nytimes.com/2026/06/11/technology/spacex-valuation-skeptics.html" title="Elon Musk’s rocket company is spending big and losing money. That has raised questions about whether it can justify its valuation for its blockbuster initial public offering.">Skeptics Question Whether SpaceX Is Worth $1.77 Trillion</a><br>2026-06-11 - <a href="https://www.nytimes.com/2026/06/11/technology/bezos-prometheus-ai-engineer.html" title="As co-chief executive of the start-up Prometheus, the Amazon founder is using A.I. to improve how devices ranging from computers to jet engines are made.">Jeff Bezos Wants to Build an ‘Artificial General Engineer’</a><br>2026-06-11 - <a href="https://www.nytimes.com/2026/06/11/business/spacex-tesla-ipo-elon-musk.html" title="Investors who bought the automaker’s shares in its initial public offering became rich. As a result, many have a deep faith in Elon Musk, the chief executive of Tesla and SpaceX.">How Tesla’s Stock Listing in 2010 Enabled SpaceX’s I.P.O.</a><br>2026-06-11 - <a href="https://www.nytimes.com/2026/06/10/technology/microsoft-satya-nadella-artificial-intelligence.html" title="At The New York Times’s Hard Fork Live event, Mr. Nadella addressed the backlash against artificial intelligence and President Trump’s comments about Americans sharing in the wealth of A.I. companies">Microsoft C.E.O. Satya Nadella Says ‘Everyone Is a Stakeholder’ in A.I.</a><br>2026-06-10 - <a href="https://www.nytimes.com/2026/06/10/technology/president-trump-americans-sharing-ai-wealth.html" title="President Trump touched on what is an increasingly hot topic in Washington: how average Americans can get a piece of the tech industry’s A.I. windfall.">Trump Muses About Government Taking a Piece of A.I. Companies</a><br>2026-06-11 - <a href="https://www.nytimes.com/2026/06/10/world/europe/uk-social-media-ban-under-16.html" title="Months after Australia banned social media for everyone under 16, the British government is considering new policies to keep children safe online.">Britain Is Weighing a Social Media Ban for Children. How Did It Get Here?</a><br>2026-06-10 - <a href="https://www.nytimes.com/2026/06/10/technology/antonio-gracias-elon-musk-spacex.html" title="Antonio Gracias, an investor who has built a $65 billion stake in the company, exemplifies the economic upside of being Mr. Musk’s ally.">Antonio Gracias, Elon Musk’s Friend, Is Set to Reap Billions From SpaceX’s IPO</a><br>2026-06-10 - <a href="https://www.nytimes.com/2026/06/10/technology/predator-catcher-vitaly-mistake.html" title="What happened when livestreaming vigilantes ambushed an innocent man.">They Tried To Catch a Child Predator on a Livestream. They Trapped Themselves Instead.</a><br>2026-06-12 - <a href="https://www.nytimes.com/2026/06/10/technology/spacex-ipo-employee-millionaires.html" title="While Elon Musk may soon become a trillionaire, his rocket company’s market debut is set to change the lives of its current and former employees, too.">SpaceX’s IPO Could Turn 4,400 Employees Into Millionaires</a><br>2026-06-10 - <a href="https://www.nytimes.com/2026/06/10/technology/personaltech/iphone-android-app-removal.html" title="If you need space back on your phone or tablet, removing built-in and unused apps can help free up storage and reduce screen clutter.">How to Remove Apps You Never Use (or at Least Hide Them)</a><br>2026-06-09 - <a href="https://www.nytimes.com/2026/06/09/business/energy-environment/general-motors-storage-batteries-electric-vehicles.html" title="The carmaker will follow Tesla in making components for large batteries used by electric utilities, data centers and other businesses to handle fluctuations in power supply and demand.">G.M. Plans to Develop Energy Storage Batteries as E.V. Sales Flag</a><br>2026-06-10 - <a href="https://www.nytimes.com/2026/06/09/technology/instagram-hack-ai-bug.html" title="The flaw, which Meta said it had fixed, allowed anyone to take over accounts using a bug in the company’s new artificial intelligence software.">Meta A.I. Bug Allowed Hackers to Take Over Instagram Accounts</a><br>2026-06-09 - <a href="https://www.nytimes.com/2026/06/09/technology/anthropic-ai-claude-fable-mythos.html" title="Called Claude Fable 5, it is twice as expensive as the company’s previous flagship system.">Anthropic Releases ‘Safe’ Version of Its Mythos A.I. Technology</a><br>2026-06-09 - <a href="https://www.nytimes.com/2026/06/09/technology/solvinity-kyndryl-blocked-deal-us-europe-rift.html" title="The Netherlands blocked a U.S. company from buying a Dutch firm that handles its national ID system, saying it would create a “threat to the public interest.”">Dutch Authorities Block $115 Million Deal by a U.S. Tech Company</a><br>2026-06-09 - <a href="https://www.nytimes.com/2026/06/09/business/apple-siri-ai-europe.html" title="A regulatory dispute has indefinitely delayed the release of Siri AI.">Why Apple’s A.I. Upgrade for Siri Won’t Be Available in Europe</a><br>2026-06-09 - <a href="https://www.nytimes.com/2026/06/09/magazine/ai-jobs-workforce-labor.html" title="A panel of experts explains how job seekers should prepare for the future of work.">In the Hybrid A.I.-Human Work Force, Who Will Actually Thrive?</a><br>2026-06-09 - <a href="https://www.nytimes.com/2026/06/08/business/energy-environment/iran-war-energy-oil.html" title="The Iran war is pushing countries to prioritize domestic energy in order to protect themselves from volatile oil and natural gas markets.">The Iran War is Forcing Energy-Importing Countries to Turn Inward</a><br><h2>Wall Street Journal</h2><h2>BBC</h2>2026-06-12 - <a href="https://www.bbc.com/news/articles/c4gyp523ly8o?at_medium=RSS&at_campaign=rss" title="The BBC breaks down how the tech mogul's fortune has grown.">Elon Musk's stratospheric rise to trillionaire status - in charts</a><br>2026-06-12 - <a href="https://www.bbc.com/news/articles/c0r1975ded7o?at_medium=RSS&at_campaign=rss" title="The boss of X, Tesla and SpaceX, already the world's richest person, is now also its first trillionaire.">Who is Elon Musk and what is his net worth?</a><br>2026-06-11 - <a href="https://www.bbc.com/news/articles/c9q39l447l4o?at_medium=RSS&at_campaign=rss" title="Social media firms face thousands of lawsuits, the BBC looks at four which could be significant.">Social media on trial: Four important cases to watch</a><br>2026-06-09 - <a href="https://www.bbc.com/news/articles/cx2vn7wp33po?at_medium=RSS&at_campaign=rss" title="After issues with insider trading, the prediction betting platform is adding new rules.">Kalshi to make some users reveal job details to tackle insider trading</a><br>2026-06-09 - <a href="https://www.bbc.com/news/articles/ckg701v1dp6o?at_medium=RSS&at_campaign=rss" title="Claude Fable 5 is a version of Anthropic's Claude Mythos, an AI program which caused a stir among technology, finance, and government leaders.">Version of AI tool 'too powerful for public' released to public</a><br>2026-06-09 - <a href="https://www.bbc.com/news/articles/cewq1w7r0zgo?at_medium=RSS&at_campaign=rss" title="The fake ads feature the governor of the Bank of England - the Bank has urged people to report them.">Farage says Reform has contacted X 'to highest level' over fake AI ads</a><br>2026-06-09 - <a href="https://www.bbc.com/news/articles/cn8qj8wjgxwo?at_medium=RSS&at_campaign=rss" title="Meta has accused the EU of "regulatory overreach" and says its decision will allow tech giants like OpenAI free access to WhatsApp.">EU orders Meta to open WhatsApp to rival AI chatbots</a><br>2026-06-09 - <a href="https://www.bbc.com/news/articles/cd958eqg1n5o?at_medium=RSS&at_campaign=rss" title="The company behind ChatGPT files its plans one week after Anthropic did the same.">AI giants' race to raise funds heats up as ChatGPT-owner plans stock market debut</a><br>2026-06-09 - <a href="https://www.bbc.co.uk/sounds/play/w3ct8jxz?at_medium=RSS&at_campaign=rss" title="Check before check-in. What's behind a new safety campaign about power banks on aircraft?">Tech Life</a><br><h2>SecurityBrief AU</h2><h2>ITNews AU</h2>2026-06-12 - <a href="https://www.itnews.com.au/news/audia6-crypto-launderers-arrested-network-taken-down-by-police-626582?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed" title="Australian ransomware victim's funds washed, AFP said.">AudiA6 crypto launderers arrested, network taken down by police</a><br>2026-06-12 - <a href="https://www.itnews.com.au/news/us-charges-suspected-russian-hacker-with-facilitating-cyber-campaign-626578?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed" title="Allegedly linked to Void Blizzard.">US charges suspected Russian hacker with facilitating cyber campaign</a><br>2026-06-12 - <a href="https://www.itnews.com.au/news/gov-looks-for-upstream-threat-blocking-by-telcos-cloud-operators-626577?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed" title="As a key action in the evolution of cyber strategy.">Gov looks for upstream threat blocking by telcos, cloud operators</a><br>2026-06-12 - <a href="https://www.itnews.com.au/news/federal-parliamentary-computer-network-set-for-its-most-significant-upgrade-626575?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed" title="With cyber resilience top-of-mind.">Federal Parliamentary Computer Network set for its "most significant" upgrade</a><br>2026-06-11 - <a href="https://www.itnews.com.au/news/marathon-oaic-investigation-finds-optus-breached-51000-customers-privacy-626553?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed" title="In White Pages case.">Marathon OAIC investigation finds Optus breached 51,000 customers' privacy</a><br>2026-06-11 - <a href="https://www.itnews.com.au/news/us-gov-shortens-cyber-fix-window-to-three-days-626541?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed" title="As AI threats rise.">US gov shortens cyber fix window to three days</a><br>2026-06-10 - <a href="https://www.itnews.com.au/news/anthropic-releases-mythos-class-model-for-public-use-626507?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed" title="Imposes a 30-day data retention for Mythos-class models.">Anthropic releases Mythos-class model for public use</a><br>2026-06-09 - <a href="https://www.itnews.com.au/news/apple-bumps-up-security-in-fresh-operating-system-releases-626486?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed" title="Slew of security and privacy updates announced at WWDC.">Apple bumps up security in fresh operating system releases</a><br>2026-06-09 - <a href="https://www.itnews.com.au/news/meta-accuses-nso-group-of-violating-court-order-by-whatsapp-spear-phishing-626482?utm_source=feed&utm_medium=rss&utm_campaign=iTnews+Security+feed" title="Has asked court to hold spyware vendor in contempt.">Meta accuses NSO Group of violating court order by WhatsApp spear phishing</a><br><h2>BleepingComputer</h2>2026-06-13 - <a href="https://www.bleepingcomputer.com/news/security/ex-school-district-employee-jailed-for-hacks-on-former-employer/" title="A former  IT employee at an Iowa school district was sentenced to 21 months in prison after conducting a prolonged cyberattack against the former employer that disrupted classroom operations, deleted accounts, and caused tens of thousands of dollars in damages. [...]">Ex-school district employee jailed for hacks on former employer</a><br>2026-06-13 - <a href="https://www.bleepingcomputer.com/news/security/chinese-hackers-hijack-auth-flow-spy-on-isolated-network-for-a-decade/" title="Chinese hackers took control of a target organization's authentication stack and maintained persistence for 10 years, with full visibility into the administrative activity. [...]">Chinese hackers hijack auth flow, spy on isolated network for a decade</a><br>2026-06-13 - <a href="https://www.bleepingcomputer.com/news/security/us-gov-asks-anthropic-to-ban-foreign-national-access-to-fable-mythos/" title="The US government has ordered Anthropic to block all foreign nationals from accessing Fable 5 and Mythos 5, forcing the company to suspend both models worldwide. Anthropic is complying but disputes the basis, calling the cited jailbreak narrow and the capability widely available elsewhere. [...]">US Gov asks Anthropic to ban 'foreign national' access to Fable, Mythos</a><br>2026-06-12 - <a href="https://www.bleepingcomputer.com/news/security/maine-disables-data-breach-notification-portal-after-fake-disclosures/" title="Maine has taken its public data breach reporting portal offline after fraudulent breach disclosures were published on the state's website, prompting a review of procedures to prevent abuse in the future. [...]">Maine disables data breach notification portal after fake disclosures</a><br>2026-06-12 - <a href="https://www.bleepingcomputer.com/news/security/phpbb-forum-fixes-auth-bypass-bug-lurking-for-a-decade/" title="A 10-year-old authentication bypass vulnerability discovered in the phpBB forum software allows an attacker to log in as any user, including administrators. [...]">phpBB forum fixes auth bypass bug lurking for a decade</a><br>2026-06-12 - <a href="https://www.bleepingcomputer.com/news/security/ukrainian-national-pleads-guilty-to-role-in-conti-ransomware-operation/" title="A Ukrainian national extradited from Ireland to the United States last year has pleaded guilty to conspiracy charges tied to the Conti ransomware operation. [...]">Ukrainian national pleads guilty to role in Conti ransomware operation</a><br>2026-06-12 - <a href="https://www.bleepingcomputer.com/news/security/over-400-arch-linux-packages-compromised-to-push-rootkit-infostealer/" title="More than 400 packages in the Arch User Repository (AUR) are distributing a Linux rootkit and infostealer malware targeting credentials and access tokens. [...]">Over 400 Arch Linux packages compromised to push rootkit, infostealer</a><br>2026-06-12 - <a href="https://www.bleepingcomputer.com/news/security/early-warning-signs-of-supply-chain-attacks-live-in-the-dark-web/" title="GitHub access sales, leaked repositories, and stolen API keys can all become supply-chain attack footholds. Flare explores how underground forums expose early signals tied to software supply-chain risk. [...]">Early Warning Signs of Supply-Chain Attacks Live in the Dark Web</a><br>2026-06-12 - <a href="https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-windows-update-failures-linked-to-wusa-installer/" title="Microsoft has fixed a known issue that caused Windows updates released since May 2025 to fail when installed via the Windows Update Standalone Installer (WUSA) from a network share. [...]">Microsoft fixes Windows update failures linked to WUSA installer</a><br>2026-06-12 - <a href="https://www.bleepingcomputer.com/news/security/pharmaceutical-giant-novo-nordisk-discloses-security-breach/" title="Danish pharmaceutical giant Novo Nordisk, the world's largest producer of insulin, disclosed a data breach affecting patient information from some clinical trials. [...]">Pharma giant Novo Nordisk discloses breach of clinical trials data</a><br>2026-06-12 - <a href="https://www.bleepingcomputer.com/news/security/cisa-gives-feds-3-days-to-patch-ivanti-flaw-exploited-in-attacks/" title="The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered government agencies to patch an actively exploited Ivanti Sentry flaw within three days, as mandated by the newly issued Binding Operational Directive (BOD) 26-04. [...]">CISA orders feds to patch actively exploited Ivanti flaw by Sunday</a><br>2026-06-12 - <a href="https://www.bleepingcomputer.com/news/security/french-govt-says-tchap-breach-affected-over-73-000-accounts/" title="The French government revealed that a recent breach of its Tchap encrypted messaging platform affects the accounts of over 73,000 employees in the French public sector. [...]">Over 73,000 French govt employees affected in Tchap messenger breach</a><br>2026-06-11 - <a href="https://www.bleepingcomputer.com/news/security/japanese-energy-firm-loses-drive-with-data-of-109-million-clients/" title="Kyushu Electric Power Co., Inc. has disclosed a physical security incident that affects private data of more than 10 million customers. [...]">Japanese energy firm loses drive with data of 10.9 million clients</a><br>2026-06-11 - <a href="https://www.bleepingcomputer.com/news/security/maine-breach-portal-abused-to-publish-fake-data-breach-disclosures/" title="In an unusual misinformation campaign, fraudulent data breach disclosures were submitted to Maine's official breach portal and publicly posted before their legitimacy could be verified, prompting companies to deny the claims. [...]">Maine breach portal abused to publish fake data breach disclosures</a><br>2026-06-11 - <a href="https://www.bleepingcomputer.com/news/security/oracle-mitigates-peoplesoft-zero-day-exploited-in-data-theft-attacks/" title="Oracle is warning about a critical PeopleSoft Suite zero-day vulnerability tracked as CVE-2026-35273 that allows unauthenticated remote code execution, with the flaw actively exploited in ShinyHunter data theft attacks. [...]">Oracle mitigates PeopleSoft zero-day exploited in data theft attacks</a><br><h2>/r/NetSec</h2>2026-06-13 - <a href="https://www.reddit.com/r/netsec/comments/1u4lqa8/getting_the_pid_from_random_numbers_in_php/" title="<!-- SC_OFF --><div class="md"><p>In my blog article I analyze how random numbers in older PHP versions were generated. It turns out you can, under certain circumstances, derive the id of the process which generated a random number!</p> <p>While it has exactly 0 practical application, it was super fun to dig into the php's source code. </p> </div><!-- SC_ON --> &#32; submitted by &#32; <a href="https://www.reddit.com/user/DrAdalbbert"> /u/DrAdalbbert </a> <br /> <span><a href="https://blog.ikaes.de/getting-the-pid-from-random-numbers/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u4lqa8/getting_the_pid_from_random_numbers_in_php/">[comments]</a></span>">Getting the PID from random numbers in PHP</a><br>2026-06-13 - <a href="https://www.reddit.com/r/netsec/comments/1u51f9t/meshcentral_from_xss_to_rce/" title="<!-- SC_OFF --><div class="md"><p>Using Claude Code to find and weaponise an XSS in MeshCentral using a rogue client, resulting in RCE.</p> </div><!-- SC_ON --> &#32; submitted by &#32; <a href="https://www.reddit.com/user/kev-thehermit"> /u/kev-thehermit </a> <br /> <span><a href="https://www.techanarchy.net/meshcentral-from-xss-to-rce/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u51f9t/meshcentral_from_xss_to_rce/">[comments]</a></span>">MeshCentral: From XSS to RCE</a><br>2026-06-12 - <a href="https://www.reddit.com/r/netsec/comments/1u46wbb/why_use_applevel_auth_when_every_database_has/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/dx7r__"> /u/dx7r__ </a> <br /> <span><a href="https://labs.watchtowr.com/why-use-app-level-auth-when-every-database-has-auth-splunk-enterprise-cve-2026-20253-pre-auth-rce/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u46wbb/why_use_applevel_auth_when_every_database_has/">[comments]</a></span>">Why Use App-Level Auth When Every Database Has Auth? (Splunk Enterprise CVE-2026-20253 Pre-Auth RCE) - watchTowr Labs</a><br>2026-06-13 - <a href="https://www.reddit.com/r/netsec/comments/1u4jjia/the_axios_npm_compromise_was_visible_in_registry/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/GapLimp8396"> /u/GapLimp8396 </a> <br /> <span><a href="https://autodoc.bearblog.dev/how-30-seconds-of-metadata-would-have-caught-the-axios-attack/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u4jjia/the_axios_npm_compromise_was_visible_in_registry/">[comments]</a></span>">The Axios npm compromise was visible in registry metadata before anyone ran npm install</a><br>2026-06-12 - <a href="https://www.reddit.com/r/netsec/comments/1u3wjtg/old_passwords_die_hard_abusing_credhist_for/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/lefterispanos"> /u/lefterispanos </a> <br /> <span><a href="https://www.lrqa.com/en/cyber-labs/cracking-credhist-dpapi/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u3wjtg/old_passwords_die_hard_abusing_credhist_for/">[comments]</a></span>">Old Passwords Die Hard: Abusing CREDHIST for offline credential recovery</a><br>2026-06-12 - <a href="https://www.reddit.com/r/netsec/comments/1u3xm0y/major_ai_clients_shipping_with_broken_oauth/" title="<!-- SC_OFF --><div class="md"><p>The MCP authorization specification (November 2025) mandates OAuth 2.1 with PKCE for remote MCP servers. In practice, this security model is only achievable if MCP clients implement the OAuth <code>refresh_token</code> grant. </p> <p>Most major vendors have been lagging with support, but more progress is finally being made! </p> <p>As of June 2026, the ecosystem has made progress since our initial April survey, with Gemini CLI achieving full support and several clients upgrading from &quot;not implemented&quot; to partial.</p> </div><!-- SC_ON --> &#32; submitted by &#32; <a href="https://www.reddit.com/user/mhat"> /u/mhat </a> <br /> <span><a href="https://www.redcaller.com/docs/references/mcp-client-oauth-refresh-token-support?rev=june2026">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u3xm0y/major_ai_clients_shipping_with_broken_oauth/">[comments]</a></span>">Major AI Clients Shipping With Broken OAuth Implementations (JUNE 2026 UPDATE)</a><br>2026-06-12 - <a href="https://www.reddit.com/r/netsec/comments/1u3m7yj/marking_your_own_homework_check_point_remote/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/dx7r__"> /u/dx7r__ </a> <br /> <span><a href="https://labs.watchtowr.com/marking-your-own-homework-check-point-remote-access-vpn-ikev1-authentication-bypass-cve-2026-50751/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u3m7yj/marking_your_own_homework_check_point_remote/">[comments]</a></span>">Marking Your Own Homework (Check Point Remote Access VPN IKEv1 Authentication Bypass CVE-2026-50751) - watchTowr Labs</a><br>2026-06-11 - <a href="https://www.reddit.com/r/netsec/comments/1u33dor/claude_fable_5_midtier_results_on_coding_tasks/" title="<!-- SC_OFF --><div class="md"><p>Despite all the hype around Mythos, Claude Fable 5 returned pretty mid-tier results on coding tasks: 59.8% passing functional solves and just 19.0% passing security solves on a benchmark of 200 real-world tasks.</p> </div><!-- SC_ON --> &#32; submitted by &#32; <a href="https://www.reddit.com/user/bugvader25"> /u/bugvader25 </a> <br /> <span><a href="https://www.endorlabs.com/learn/claude-fable-5-mythos-grade-hype">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u33dor/claude_fable_5_midtier_results_on_coding_tasks/">[comments]</a></span>">Claude Fable 5: mid-tier results on coding tasks</a><br>2026-06-11 - <a href="https://www.reddit.com/r/netsec/comments/1u2vd03/hacking_google_with_ai_for_500000/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/rockin-Musicien49"> /u/rockin-Musicien49 </a> <br /> <span><a href="https://brutecat.com/articles/hacking-google-with-ai/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u2vd03/hacking_google_with_ai_for_500000/">[comments]</a></span>">Hacking Google with A.I. for $500,000</a><br>2026-06-12 - <a href="https://www.reddit.com/r/netsec/comments/1u3y1zo/free_compromise_detection_for_github_repos/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/tracebit"> /u/tracebit </a> <br /> <span><a href="https://community.tracebit.com/supplychainattacks">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u3y1zo/free_compromise_detection_for_github_repos/">[comments]</a></span>">Free Compromise Detection for GitHub Repos - Tracebit Community Edition</a><br>2026-06-11 - <a href="https://www.reddit.com/r/netsec/comments/1u2tagh/prompt_injection_attacking_the_analysts_ai/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/GrapefruitCool2078"> /u/GrapefruitCool2078 </a> <br /> <span><a href="https://blog.flipflow.app/prompt-injection-in-security-tooling">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u2tagh/prompt_injection_attacking_the_analysts_ai/">[comments]</a></span>">Prompt injection: attacking the analyst's AI</a><br>2026-06-11 - <a href="https://www.reddit.com/r/netsec/comments/1u38afn/detecting_aispecific_threats_in_claude_enterprise/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/TheAlphaBravo"> /u/TheAlphaBravo </a> <br /> <span><a href="https://www.papermtn.co.uk/detecting-misuse-with-the-claude-compliance-api-the-threat-is-in-the-content/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u38afn/detecting_aispecific_threats_in_claude_enterprise/">[comments]</a></span>">Detecting AI-specific threats in Claude Enterprise from the Compliance API: a prefilter + LLM-as-judge pipeline with Sigma rules</a><br>2026-06-10 - <a href="https://www.reddit.com/r/netsec/comments/1u1zy6g/how_fraudsters_bypass_facial_recognition_and_stay/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/Sumsub_Insights"> /u/Sumsub_Insights </a> <br /> <span><a href="https://sumsub.com/blog/how-fraudsters-bypass-facial-recognition?utm_source=reddit&amp;utm_medium=social">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u1zy6g/how_fraudsters_bypass_facial_recognition_and_stay/">[comments]</a></span>">How Fraudsters Bypass Facial Recognition and Stay Hidden in 2026</a><br>2026-06-10 - <a href="https://www.reddit.com/r/netsec/comments/1u1neao/more_evidence_that_words_dont_mean_what_we/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/dx7r__"> /u/dx7r__ </a> <br /> <span><a href="https://labs.watchtowr.com/more-evidence-that-words-dont-mean-what-we-thought-they-meant-ivanti-sentry-pre-auth-os-command-injection-cve-2026-10520/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u1neao/more_evidence_that_words_dont_mean_what_we/">[comments]</a></span>">More Evidence That Words Don't Mean What We Thought They Meant (Ivanti Sentry Pre-Auth OS Command Injection CVE-2026-10520) - watchTowr Labs</a><br>2026-06-10 - <a href="https://www.reddit.com/r/netsec/comments/1u1u6lh/jupyter_enterprise_gateway_from_notebook_to/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/AnimalStrange"> /u/AnimalStrange </a> <br /> <span><a href="https://www.elttam.com/blog/jupyter-enterprise-gateway">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u1u6lh/jupyter_enterprise_gateway_from_notebook_to/">[comments]</a></span>">Jupyter Enterprise Gateway - From Notebook to Kubernetes Cluster Admin - elttam</a><br>2026-06-10 - <a href="https://www.reddit.com/r/netsec/comments/1u1whsw/certsign_inconsistent_revocation_status_crl/" title="<!-- SC_OFF --><div class="md"><p>certSIGN seems to have revoked a commonly-used intermediate cert. At least their CRL seems to say that.</p> </div><!-- SC_ON --> &#32; submitted by &#32; <a href="https://www.reddit.com/user/treenaks"> /u/treenaks </a> <br /> <span><a href="https://bugzilla.mozilla.org/show_bug.cgi?id=2046230">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u1whsw/certsign_inconsistent_revocation_status_crl/">[comments]</a></span>">certSIGN: Inconsistent revocation status (CRL "revoked" vs OCSP "good") for intermediate CA "certSIGN Web CA"</a><br>2026-06-09 - <a href="https://www.reddit.com/r/netsec/comments/1u10g5c/i_found_23_chrome_extensions_hijacking_758000/" title="<!-- SC_OFF --><div class="md"><p>I scanned Chrome extension manifests for <strong>chrome_settings_overrides</strong> and found 23 extensions silently routing 758,000 users' searches through hidden monetization networks.</p> <p>The pattern: install a free extension (satellite imagery, maps, news reader), your default search gets quietly replaced and every query goes through the operator's middleware before reaching a search network, generating affiliate revenue you never consented to.</p> <p>Key findings:</p> <ul> <li>8 distinct brokers behind these extensions. If one extension gets pulled, another goes up under a different name.</li> <li>Several extensions have zero functionality beyond the search override</li> <li>One extension affirmatively claims &quot;We don't track your searches&quot; while its own privacy policy says otherwise</li> <li>One uses runtime <strong>declarativeNetRequest</strong> injection so the real behavior is invisible to static analysis</li> </ul> <p>The `hspart` parameter in the final search redirect URL is the clustering key. One value maps an entire broker network regardless of extension name, domain, or publisher identity.</p> <p>Full report: <a href="https://malext.io/reports/SearchJack/">https://malext.io/reports/SearchJack/</a></p> </div><!-- SC_ON --> &#32; submitted by &#32; <a href="https://www.reddit.com/user/Huge-Skirt-6990"> /u/Huge-Skirt-6990 </a> <br /> <span><a href="https://malext.io/reports/SearchJack/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u10g5c/i_found_23_chrome_extensions_hijacking_758000/">[comments]</a></span>">I found 23 Chrome extensions hijacking 758,000 users' searches for affiliate revenue</a><br>2026-06-09 - <a href="https://www.reddit.com/r/netsec/comments/1u1eguf/apples_siriai_or_more_shouting_into_the_void/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/feross"> /u/feross </a> <br /> <span><a href="https://blog.cryptographyengineering.com/2026/06/09/apples-siri-ai-or-more-shouting-into-the-void-about-private-agents/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u1eguf/apples_siriai_or_more_shouting_into_the_void/">[comments]</a></span>">Apple’s Siri-AI, or more shouting into the void about “private” agents</a><br>2026-06-09 - <a href="https://www.reddit.com/r/netsec/comments/1u0wykc/ai_agents_may_always_fall_for_prompt_injections/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/User_Deprecated"> /u/User_Deprecated </a> <br /> <span><a href="https://arxiv.org/abs/2605.17634">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u0wykc/ai_agents_may_always_fall_for_prompt_injections/">[comments]</a></span>">AI Agents May Always Fall for Prompt Injections</a><br>2026-06-09 - <a href="https://www.reddit.com/r/netsec/comments/1u13ff7/winget_code_execution_persistence_and_detection/" title="&#32; submitted by &#32; <a href="https://www.reddit.com/user/netbiosX"> /u/netbiosX </a> <br /> <span><a href="https://ipurple.team/2026/06/09/winget/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/netsec/comments/1u13ff7/winget_code_execution_persistence_and_detection/">[comments]</a></span>">WinGet - Code Execution, Persistence and Detection Strategies</a><br><h2>/r/InfoSecNews</h2><h2>
</h2>