โก DirtyClone leads the week, but the rest of the queue is ugly:
๐ง Linux root bug
๐จ PTC exploited
๐ Gaslight malware
๐ฏ Turla backdoor
๐งน StealC takedown
๐ค Agent prompt injection
๐ต๏ธ New infostealers
๐บ DVR proxy abuse
๐งฉ Urgent CVEs
Full recap: https://thehackernews.com/2026/06/weekly-recap-linux-kernel-flaws-ai.html
๐ง Linux root bug
๐จ PTC exploited
๐ Gaslight malware
๐ฏ Turla backdoor
๐งน StealC takedown
๐ค Agent prompt injection
๐ต๏ธ New infostealers
๐บ DVR proxy abuse
๐งฉ Urgent CVEs
Full recap: https://thehackernews.com/2026/06/weekly-recap-linux-kernel-flaws-ai.html
๐8๐ฅ4โก1
๐ฅ #WhatsApp is finally getting usernames.
The app has started global username reservations before a wider rollout later this year.
So people can message each other without handing over a phone number.
Details here: https://thehackernews.com/2026/06/whatsapp-is-finally-getting-usernames.html
The app has started global username reservations before a wider rollout later this year.
So people can message each other without handing over a phone number.
Details here: https://thehackernews.com/2026/06/whatsapp-is-finally-getting-usernames.html
๐ฅ28๐15๐9๐4
๐ The extension did not need to steal passwords to be dangerous.
Microsoft found a fake #Perplexity Chrome extension that logged searches and address bar input before redirecting users to real results.
How it worked, and what users should check: https://thehackernews.com/2026/06/malicious-perplexity-chrome-extension.html
Microsoft found a fake #Perplexity Chrome extension that logged searches and address bar input before redirecting users to real results.
How it worked, and what users should check: https://thehackernews.com/2026/06/malicious-perplexity-chrome-extension.html
๐คฏ6๐ฅ3๐2๐2
๐จ Oracle E-Business Suite has a new active exploitation problem.
CVE-2026-46817 is a CVSS 9.8 flaw in Oracle Payments that can allow unauthenticated HTTP takeover.
No public PoC. Attribution unknown.
Read the full report: https://thehackernews.com/2026/06/oracle-e-business-suite-flaw-cve-2026.html
CVE-2026-46817 is a CVSS 9.8 flaw in Oracle Payments that can allow unauthenticated HTTP takeover.
No public PoC. Attribution unknown.
Read the full report: https://thehackernews.com/2026/06/oracle-e-business-suite-flaw-cve-2026.html
๐ค6โก3๐ฅ3๐2๐คฏ1
โก Apple patched WebKit bugs found with AI tools.
The updates fix 30+ flaws across:
> iOS 26.5.2
> macOS Tahoe 26.5.2
> Safari 26.5.2
The fixes include WebKit CVEs, sandbox issues, and kernel-level bugs.
Details: https://thehackernews.com/2026/06/apple-patches-30-ios-macos-safari-flaws.html
The updates fix 30+ flaws across:
> iOS 26.5.2
> macOS Tahoe 26.5.2
> Safari 26.5.2
The fixes include WebKit CVEs, sandbox issues, and kernel-level bugs.
Details: https://thehackernews.com/2026/06/apple-patches-30-ios-macos-safari-flaws.html
๐ฅ5
โ ๏ธ Public PoC is out for CVE-2026-8037, a critical Progress Kemp LoadMaster API flaw.
It lets unauthenticated attackers run root commands when the API is enabled.
Patch now. Restrict API exposure.
Full story: https://thehackernews.com/2026/06/progress-kemp-loadmaster-flaw-could-let.html
It lets unauthenticated attackers run root commands when the API is enabled.
Patch now. Restrict API exposure.
Full story: https://thehackernews.com/2026/06/progress-kemp-loadmaster-flaw-could-let.html
๐คฏ5๐ค1
๐ฎ Tell an AI browser itโs just playing a game.
Researchers say "BioShocking" tricked six AI agents, including #ChatGPT Atlas, Comet, and #Claude, into copying GitHub SSH credentials from a signed-in session.
Read how the attack chain worked: https://thehackernews.com/2026/06/new-bioshocking-attack-tricks-ai.html
Researchers say "BioShocking" tricked six AI agents, including #ChatGPT Atlas, Comet, and #Claude, into copying GitHub SSH credentials from a signed-in session.
Read how the attack chain worked: https://thehackernews.com/2026/06/new-bioshocking-attack-tricks-ai.html
๐8๐ฅ6๐2
๐จ Nearby file sharing has a local blind spot.
Researchers found six flaws in AirDrop and Quick Share that can crash sharing services, bypass Samsung session checks, and trigger a crash in Googleโs Windows app.
Apple and Google have started fixes.
Read: https://thehackernews.com/2026/06/airdrop-and-quick-share-flaws-let.html
Researchers found six flaws in AirDrop and Quick Share that can crash sharing services, bypass Samsung session checks, and trigger a crash in Googleโs Windows app.
Apple and Google have started fixes.
Read: https://thehackernews.com/2026/06/airdrop-and-quick-share-flaws-let.html
๐5๐ฅ3๐2
๐ SimpleHelp RMM CVE-2026-48558 exploited for OIDC authentication bypass.
Attackers gain technician sessions to deploy TaskWeaver and Djinn Stealer. Djinn Stealer targets cloud, code, AI tools, browsers, SSH, and wallets.
Read the full story: https://thehackernews.com/2026/06/attackers-exploit-simplehelp-cve-2026.html
Attackers gain technician sessions to deploy TaskWeaver and Djinn Stealer. Djinn Stealer targets cloud, code, AI tools, browsers, SSH, and wallets.
Read the full story: https://thehackernews.com/2026/06/attackers-exploit-simplehelp-cve-2026.html
๐ฅ4๐3
Fraud infrastructure for FIFA World Cup 2026 was already in place before June 11 kickoff.
Check Point saw 60x spike in fake sportsbook apps (64 samples) + large-scale travel/phishing domains, some with MX set for email interception.
Full report: https://thehackernews.com/2026/06/what-numbers-say-about-fifa-2026-cyber.html
Check Point saw 60x spike in fake sportsbook apps (64 samples) + large-scale travel/phishing domains, some with MX set for email interception.
Full report: https://thehackernews.com/2026/06/what-numbers-say-about-fifa-2026-cyber.html
๐3๐ฅ2
๐ A leaked AI key is not just a secret anymore.
It is a running bill.
Researchers tested 444 iOS AI chatbot apps. Over 250 exposed paid LLM access through network traffic.
> Plaintext keys
> Replayable tokens
> Open backend proxies with no auth
Read the THN report: https://thehackernews.com/2026/06/282-ios-apps-found-leaking-llm-api-keys.html
It is a running bill.
Researchers tested 444 iOS AI chatbot apps. Over 250 exposed paid LLM access through network traffic.
> Plaintext keys
> Replayable tokens
> Open backend proxies with no auth
Read the THN report: https://thehackernews.com/2026/06/282-ios-apps-found-leaking-llm-api-keys.html
๐ค6๐ฅ3
๐ Old shell tricks didnโt die. They found a new target ๐ AI coding agents.
Researchers shows how Bash parsing can slip past weak text-based command guards, letting r''m become rm before execution.
GuardFall bypass worked on 10 of 11 open-source agents tested.
Read how it works: https://thehackernews.com/2026/06/guardfall-exposes-open-source-ai-coding.html
Researchers shows how Bash parsing can slip past weak text-based command guards, letting r''m become rm before execution.
GuardFall bypass worked on 10 of 11 open-source agents tested.
Read how it works: https://thehackernews.com/2026/06/guardfall-exposes-open-source-ai-coding.html
๐6
โ ๏ธ A fake โGoogle Notesโ extension is swapping #cryptocurrency wallet addresses inside Chromium browsers.
Experts call it "Silent Swap"
Unsigned .NET and Golang installers inject the extension, alter browser preference files, and use EtherHiding to rotate C2.
Details here โ https://thehackernews.com/2026/06/silent-swap-crypto-clipper-uses-fake.html
Experts call it "Silent Swap"
Unsigned .NET and Golang installers inject the extension, alter browser preference files, and use EtherHiding to rotate C2.
Details here โ https://thehackernews.com/2026/06/silent-swap-crypto-clipper-uses-fake.html
๐6๐คฏ6๐ฅ5
๐จ CVE-2026-33017 is being exploited against Langflow.
Attackers abuse an unauthenticated API endpoint to run Python code, drop Lambsys, and launch a Monero miner.
Lambsys can spread via reused SSH keys.
Langflow attack chain: https://thehackernews.com/2026/06/langflow-rce-exploited-to-deploy-monero.html
Attackers abuse an unauthenticated API endpoint to run Python code, drop Lambsys, and launch a Monero miner.
Lambsys can spread via reused SSH keys.
Langflow attack chain: https://thehackernews.com/2026/06/langflow-rce-exploited-to-deploy-monero.html
๐7๐ฅ3
๐ A new RustDuck botnet is turning routers, cameras, Android boxes, and poorly secured servers into DDoS nodes.
It spreads through weak Telnet/SSH logins, exposed ADB, and old flaws, while its newer core is being rewritten in Rust.
Details ๐ https://thehackernews.com/2026/06/rustduck-botnet-rebuilds-in-rust-to.html
It spreads through weak Telnet/SSH logins, exposed ADB, and old flaws, while its newer core is being rewritten in Rust.
Details ๐ https://thehackernews.com/2026/06/rustduck-botnet-rebuilds-in-rust-to.html
๐4๐ฅ1๐1
โ ๏ธ Microsoft is warning about a new way AI agents can be manipulated through MCP tools.
The issue is not a broken rule or a software bug.
A malicious tool description can hide instructions that make an agent collect company data, such as unpaid invoices, and send it out through a normal-looking tool call.
Details here: https://thehackernews.com/2026/06/microsoft-warns-poisoned-mcp-tool.html
The issue is not a broken rule or a software bug.
A malicious tool description can hide instructions that make an agent collect company data, such as unpaid invoices, and send it out through a normal-looking tool call.
Details here: https://thehackernews.com/2026/06/microsoft-warns-poisoned-mcp-tool.html
๐ฅ12
โ ๏ธ Citrix patched six NetScaler ADC and Gateway flaws, including an unauthenticated arbitrary file read.
Other bugs can trigger memory overread or DoS in specific SAML, Gateway, AAA, DNS, Oracle LB, TCP Profile, and HTTP/2 setups.
Details here: https://thehackernews.com/2026/07/citrix-patches-six-netscaler-flaws.html
Other bugs can trigger memory overread or DoS in specific SAML, Gateway, AAA, DNS, Oracle LB, TCP Profile, and HTTP/2 setups.
Details here: https://thehackernews.com/2026/07/citrix-patches-six-netscaler-flaws.html
โก6๐ฅ3
๐จ ClickFix is no longer just a fake CAPTCHA trick.
A researcher analyzed roughly 3,000 live payloads and found API-driven servers generating fresh obfuscated commands on request.
A newer Downloads-folder method keeps the bad code out of the clipboard to slip past AMSI.
Read: https://thehackernews.com/2026/07/researcher-analyzes-3000-live-clickfix.html
A researcher analyzed roughly 3,000 live payloads and found API-driven servers generating fresh obfuscated commands on request.
A newer Downloads-folder method keeps the bad code out of the clipboard to slip past AMSI.
Read: https://thehackernews.com/2026/07/researcher-analyzes-3000-live-clickfix.html
๐7๐ฅ2
โ ๏ธ 81M+ Azure CLI login attempts. At least 78 Microsoft accounts compromised.
The June 12-26 campaign used old breached passwords and the deprecated ROPC OAuth flow.
MFA was enabled in many cases, but Azure CLI sign-ins were still exposed.
Details here: https://thehackernews.com/2026/07/azure-cli-password-spray-hits-at-least.html
The June 12-26 campaign used old breached passwords and the deprecated ROPC OAuth flow.
MFA was enabled in many cases, but Azure CLI sign-ins were still exposed.
Details here: https://thehackernews.com/2026/07/azure-cli-password-spray-hits-at-least.html
๐ฅ7๐3
๐ฅ Anthropic is putting #Claude Fable 5 back online worldwide.
The U.S. lifted June 12 export controls tied to an Amazon-reported jailbreak that surfaced vulnerability-finding and exploit-code behavior.
Fable 5 returns July 1 across Claude platforms.
#Anthropic says its new classifier blocks the method in 99%+ of tries.
Read: https://thehackernews.com/2026/07/anthropic-restores-claude-fable-5-after.html
The U.S. lifted June 12 export controls tied to an Amazon-reported jailbreak that surfaced vulnerability-finding and exploit-code behavior.
Fable 5 returns July 1 across Claude platforms.
#Anthropic says its new classifier blocks the method in 99%+ of tries.
Read: https://thehackernews.com/2026/07/anthropic-restores-claude-fable-5-after.html
๐ฅ21๐ค6
๐ "Phantom squatting" is already in the wild.
AI models invent domains. Attackers register them first. Users can get the bad link from the AI itself.
Researchers found roughly 250,000 unowned AI-invented domains.
Details here: https://thehackernews.com/2026/07/phantom-squatting-uses-ai-hallucinated.html
AI models invent domains. Attackers register them first. Users can get the bad link from the AI itself.
Researchers found roughly 250,000 unowned AI-invented domains.
Details here: https://thehackernews.com/2026/07/phantom-squatting-uses-ai-hallucinated.html
๐ฅ7