Google Confirms Exploitation of Oracle PeopleSoft Zero-Day by ShinyHunters
Google has confirmed that a PeopleSoft vulnerability mitigated by Oracle this week has been exploited by ShinyHunters as a zero-day to steal data from organizations.…
Author: Cybernoz
Autonomous AI agents duped into leaking sensitive data in phishing test
The test used two configurations: a generic productivity profile and a stricter profile that included email safety instructions telling the agent to be cautious of…
durabletask: TeamPCP’s Latest PyPi Compromise
The supply chain campaign linked to TeamPCP continues with the compromise of durabletask v1.4.1, v1.4.2, and v1.4.3. DurableTask is the official Microsoft Python client for…
Huntress Labs to Host Hands-On “Hacking Windows” Training
As you may recall, IT Nation 2016 ended on a high note for Huntress Labs as we were named the “Best Newcomer” in the Partner…
Ex-school district employee jailed for hacks on former employer
A former IT employee at an Iowa school district was sentenced to 21 months in prison for conducting a prolonged cyberattack against the former employer that…
Bug Bounty Toolkit Powered by Claude and Free AI Providers
A new open-source bug bounty hunting toolkit called BugHunter, built on top of Anthropic’s Claude Code and now extended to support free AI providers like…
Anthropic Blocks Fable 5 and Mythos 5 Following U.S. National Security Directive – GBHackers Security
Anthropic has disabled all access to its Fable 5 and Mythos 5 artificial intelligence models following a sudden export-control directive from the United States government.…
LangGraph Flaw Chain Exposes Self-Hosted AI Agents to Remote Code Execution
Ravie LakshmananJun 12, 2026Vulnerability / AI Security Cybersecurity researchers have disclosed details of three now-patched security flaws impacting LangGraph, including a critical vulnerability chain that…
Frontier AI models could be an adversary’s force multiplier
Frontier AI models such as Anthropic Claude, Mythos, and OpenAI Daybreak fundamentally alter the cybersecurity equation by compressing the time, skill, and scale required to…
NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks
In response to a recent wave of supply chain attacks targeting the NPM ecosystem, GitHub announced that scripts from dependencies will no longer be executed…
Anthropic disables new models after government calls them a national security concern
The U.S. government on Friday ordered Anthropic to immediately suspend foreign access to Fable 5 and Mythos 5, its two most advanced artificial intelligence models,…
Ivanti patches critical Sentry flaws that lead to full device takeover
The second flaw, CVE-2026-10520, is a command injection issue that can lead to remote code execution with root privileges on the underlying OS. Because the…