North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels Cybersecurity researchers have flagged two malicious cyber campaigns that exhibit similarities with... 2026-6-15 19:32:52 | 阅读: 8 | 收藏 | The Hacker News - thehackernews.com malicious windows contagious developers ottercookie

LiteLLM Vulnerability Chain Lets Low-Privilege Users Take Over AI Gateway Servers A default low-privilege account on a LiteLLM proxy can climb to full admin and run code on the serv... 2026-6-15 16:39:1 | 阅读: 10 | 收藏 | The Hacker News - thehackernews.com proxy litellm attacker mcp 2026

One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes Vulnerability / Enterprise SecurityA single click on a trusted Microsoft link could have let an at... 2026-6-15 15:9:5 | 阅读: 0 | 收藏 | The Hacker News - thehackernews.com copilot microsoft bing attacker varonis

⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More Stuff broke again. Not in a movie way. An old tool was left exposed. An abandoned package was abu... 2026-6-15 13:49:29 | 阅读: 0 | 收藏 | The Hacker News - thehackernews.com 2026 software phishing remote malicious

The Onboarding Password Mistake That Creates Unnecessary Risk Employee onboarding is a busy time for IT teams. New starters need devices, accounts, access permis... 2026-6-15 11:30:0 | 阅读: 15 | 收藏 | The Hacker News - thehackernews.com onboarding passwords security specops attackers

152 Chrome Wallpaper Extensions with 105K Installs Linked to Adware and Fake Traffic Browser Security / PrivacyCybersecurity researchers have discovered a network of 152 Google Chrome... 2026-6-15 11:7:50 | 阅读: 14 | 收藏 | The Hacker News - thehackernews.com wallpaper wallpapers hd uninstall utm

Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites An attacker tampered with trusted JavaScript files used by WordPress sites running PushEngage, Opti... 2026-6-15 09:59:38 | 阅读: 10 | 收藏 | The Hacker News - thehackernews.com pushengage attacker sansec trustpulse

Sniper Dz Scams Target MENA Users via Fake Facebook Offers and Browser Alerts Social Engineering / Browser SecurityCybersecurity researchers have disclosed details of fraudulen... 2026-6-15 06:30:22 | 阅读: 13 | 收藏 | The Hacker News - thehackernews.com premium ib investment vapid

Palo Alto Warns of Active Exploitation of PAN-OS GlobalProtect VPN Flaw Vulnerability / VPN SecurityPalo Alto Networks has revealed that it has observed "active exploitat... 2026-6-15 06:17:32 | 阅读: 18 | 收藏 | The Hacker News - thehackernews.com security 2026 exploited palo alto

Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication Vulnerability / Enterprise SoftwareSplunk has released security updates to address a critical se... 2026-6-13 13:23:3 | 阅读: 22 | 收藏 | The Hacker News - thehackernews.com database attacker remote exploited backup

U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals Anthropic said on Friday it will "abruptly disable" its most advanced artificial intelligence (AI)... 2026-6-13 05:42:50 | 阅读: 20 | 收藏 | The Hacker News - thehackernews.com anthropic jailbreak claude mythos

Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit Attackers took over more than 400 packages in the Arch User Repository (AUR) this week and rewrote... 2026-6-12 19:33:25 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com aur payload lockfile stealer wave

400+ Arch Linux AUR Packages Hijacked to Install Rust Credential Stealer Attackers took over more than 400 packages in the Arch User Repository (AUR) this week and rewrote... 2026-6-12 19:24:50 | 阅读: 13 | 收藏 | The Hacker News - thehackernews.com aur payload lockfile wave sonatype

Google Sues Chinese Smishing Network Accused of Using Gemini AI in Phishing Cybercrime / Artificial IntelligenceGoogle on Friday said it's pursuing legal action against a Chi... 2026-6-12 18:59:32 | 阅读: 18 | 收藏 | The Hacker News - thehackernews.com phishing outsider fraudulent network brands

China-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decade Instead of hiding on the laptops and servers defenders watch most closely, a China-nexus group spen... 2026-6-12 18:17:55 | 阅读: 16 | 收藏 | The Hacker News - thehackernews.com attacker pam openssh velvet facing

Agentjacking Attack Tricks AI Coding Agents Into Running Malicious Code Artificial Intelligence / VulnerabilityCybersecurity researchers have described what they say is a... 2026-6-12 12:4:33 | 阅读: 23 | 收藏 | The Hacker News - thehackernews.com sentry developer attacker agents malicious

Rethinking MDR as Attackers and Defenders Embrace AI For most of the past decade, managed detection and response was the answer to a real problem. Secur... 2026-6-12 11:0:0 | 阅读: 15 | 收藏 | The Hacker News - thehackernews.com mdr security triage attackers

LangGraph Flaw Chain Exposes Self-Hosted AI Agents to Remote Code Execution Vulnerability / AI SecurityCybersecurity researchers have disclosed details of three now-patched s... 2026-6-12 09:50:36 | 阅读: 22 | 收藏 | The Hacker News - thehackernews.com checkpoint langgraph attacker injection langchain

INTERPOL Operation Takes Down Sniper Dz Phishing Platform, Arrests Administrator An INTERPOL-led operation last month resulted in the disruption of Sniper Dz, a decade-long phishin... 2026-6-12 08:52:55 | 阅读: 9 | 收藏 | The Hacker News - thehackernews.com phishing dz sniper phaas ib

Europol Disrupts AudiA6 Crypto Laundering Service Used by Ransomware Gangs Authorities in Europe have disrupted AudiA6, a cryptocurrency laundering service used by ransomware... 2026-6-12 06:38:41 | 阅读: 7 | 收藏 | The Hacker News - thehackernews.com audia6 laundering illicit ransomware criminal