Instagram Recovery Tool Bug Exposed 20,225 Accounts to Password Reset Abuse
Meta has disclosed a security incident involving an Instagram account recovery tool after attackers used a flaw to send password reset links to email addresses…
Month: June 2026
Qilin ransomware affiliate exploited Check Point VPN zero-day (CVE-2026-50751)
A Qilin ransomware affiliate is believed to be exploiting CVE-2026-50751, an authentication bypass vulnerability in Check Point VPN Remote Access and Mobile Access, the company…
Pirated PC games are delivering password-stealing malware
A new Windows malware campaign hides inside pirated PC games and modified installers for franchises like Far Cry, Need for Speed, FIFA, and Assassin’s Creed.…
VerdantBamboo Deploys BSD Variant of BRICKSTORM on Linux Appliances
Ravie LakshmananJun 08, 2026Cyber Espionage / Malware A China-nexus cyber espionage group has been observed deploying a BSD variant of a known backdoor called BRICKSTORM,…
DfE proposes changes to student funding for assistive technology
The UK’s Department for Education (DfE) is proposing to reduce the scope of software provided through the Disabled Students’ Allowance (DSA), stating that advances in…
CBSE Cybersecurity Clearance Enables Class 12 Re-Evaluation
The Central Board of Secondary Education has secured the final CBSE cybersecurity clearance required for its examiner-facing re-evaluation portal, allowing the reassessment of Class 12 answer scripts…
Is OpenAI’s New Lockdown Mode An Admission That Default ChatGPT Was Never Safe Enough?
OpenAI introduced two new protections designed to help users and organizations mitigate prompt injection attacks when it launched Lockdown Mode in February. Last week, the…
174,000 Impacted by Lansing Community College Data Breach
Lansing Community College (LCC) is notifying over 174,000 people that their personal information was compromised in a data breach more than one year ago. The…
UNC3753 Escalates: From Vishing Calls to Physical Office Intrusions at US Legal and Financial Firms
UNC3753 Escalates: From Vishing Calls to Physical Office Intrusions at US Legal and Financial Firms Pierluigi Paganini June 08, 2026 UNC3753 phones staff posing as…
The AI security race needs accountability, not overregulation
AI models such as Anthropic’s Claude Mythos and OpenAI’s Daybreak represent a fundamental inflection point in security. These advances are not only reshaping technology but…
15 tough cybersecurity questions every CISO must answer
“Nonhuman identities are an emerging frontier of cyber risk, and many traditional identity governance tools have not yet evolved to address them. As organizations adopt…
Dragos applies Claude Mythos Preview to uncover vulnerabilities in OT security software
Industrial cybersecurity firm Dragos has joined Anthropic’s Project Glasswing, applying Claude Mythos Preview to explore its own products for novel vulnerabilities. The work will help…