Fake AI Agent Skill Passed Security Scans and Reportedly Reached 26,000 Agents Security firm AIR built a fake AI agent skill, pushed it through a popular skill marketplace and a... 2026-6-23 15:16:43 | 阅读: 0 | 收藏 | The Hacker News - thehackernews.com skill scanners stars stitch firm

Trump Order Sets 2030 Deadline for Federal Post-Quantum Crypto Migration Cryptography / Quantum ComputingPresident Trump signed an executive order on June 22 setting hard... 2026-6-23 15:16:40 | 阅读: 0 | 收藏 | The Hacker News - thehackernews.com migration 2030 deadlines fips pqc

GitHub Updates actions/checkout to Block Common Pwn Request Attack Patterns Workflow Security / Software Supply ChainGitHub is moving to strengthen software supply chain sec... 2026-6-23 14:22:3 | 阅读: 6 | 收藏 | The Hacker News - thehackernews.com github repository workflows security privileges

Agentic AI: The Weapon That No Longer Needs a Warrior Every weapon begins as an extension of the hand that holds it. The spear lengthened the reach of th... 2026-6-23 11:30:0 | 阅读: 6 | 收藏 | The Hacker News - thehackernews.com weapon phishing agents utilize warrior

Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT Supply Chain Attack / Developer SecurityCybersecurity researchers have discovered a set of malicio... 2026-6-23 08:54:32 | 阅读: 10 | 收藏 | The Hacker News - thehackernews.com postcss selector pyd payload minify

WhatsApp VBScript Campaign Uses Fake Documents to Install ManageEngine RMM Tool Malware / Social EngineeringDirect messages sent via WhatsApp are being used to distribute malicio... 2026-6-23 05:38:40 | 阅读: 6 | 收藏 | The Hacker News - thehackernews.com vbscript remote rmm windows download

OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Patch Security Flaws OpenAI on Monday said it's releasing an improved version of its GPT‑5.5‑Cyber model to trusted defe... 2026-6-23 03:56:58 | 阅读: 7 | 收藏 | The Hacker News - thehackernews.com security openai 2026 planet

ShapedPlugin WordPress Pro Plugins Backdoored in Supply Chain Attack Supply Chain Attack / MalwareMultiple WordPress plugins from ShapedPlugin were compromised in a su... 2026-6-22 18:0:48 | 阅读: 12 | 收藏 | The Hacker News - thehackernews.com wordpress wp woocommerce

Researchers Detail DifyTap Flaws in Dify That Could Expose AI Chats Across Tenants AI Security / VulnerabilityCybersecurity researchers have disclosed details of four vulnerabilitie... 2026-6-22 16:13:28 | 阅读: 15 | 收藏 | The Hacker News - thehackernews.com dify 2026 attacker bypass

29-Year-Old Squid Proxy Bug 'Squidbleed' Can Leak Cleartext HTTP Requests Vulnerability / Server SecurityA heap over-read in the Squid web proxy can leak another user's cle... 2026-6-22 14:29:46 | 阅读: 12 | 收藏 | The Hacker News - thehackernews.com squid proxy attacker calif strchr

New OXLOADER Loader Uses Malicious Google Ads to Deliver CastleStealer Malvertising / Endpoint SecurityCybersecurity researchers have disclosed details of a new campaign... 2026-6-22 13:20:12 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com oxloader evade storj dubbed

Google Sets Sept. 30 Deadline for Android Developer Verification in Four Countries Mobile Security / Open SourceGoogle has set September 30, 2026, as the day it begins enforcing And... 2026-6-22 12:45:8 | 阅读: 13 | 收藏 | The Hacker News - thehackernews.com developer developers certified installs droid

Stop Your Legacy Infrastructure from Hijacking Your AI Agents Earlier this month, I spoke at the Gartner Security & Risk Management Summit about a blind spot mos... 2026-6-22 11:58:0 | 阅读: 15 | 收藏 | The Hacker News - thehackernews.com security cloud agents attacker pilot

⚡ Weekly Recap: Browser Bugs, EDR Killers, TV Botnet, OpenBSD Flaw, Android Trojan, and More It’s Monday again.This week’s threat list looks painfully familiar: abused integrations, fake too... 2026-6-22 10:55:10 | 阅读: 24 | 收藏 | The Hacker News - thehackernews.com 2026 wordpress security malicious

Canada’s Spy Agency Used First-of-Its-Kind Warrant to Clean Botnet-Infected Devices Canada's spy service got a judge's permission to reach into infected servers, home routers, and IoT... 2026-6-22 09:11:37 | 阅读: 9 | 收藏 | The Hacker News - thehackernews.com canada csis court warrant routers

AryStinger Malware Infects 4,300 Legacy Routers to Build Reconnaissance Proxy Network IoT Security / VulnerabilityA new malware family is turning forgotten home routers into a distribu... 2026-6-22 06:57:44 | 阅读: 15 | 收藏 | The Hacker News - thehackernews.com xlab routers arystinger percent hardware

INTERPOL Warns Phishing, Ransomware, and AI Scams Are Rising Across Asia-Pacific Cybercrime / Artificial IntelligenceA new report from INTERPOL has revealed a "dramatic increase"... 2026-6-22 06:6:53 | 阅读: 16 | 收藏 | The Hacker News - thehackernews.com interpol pacific ransomware organized artificial

Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys Vulnerability / Web SecurityThreat actors are exploiting a recently patched security flaw impactin... 2026-6-20 09:56:4 | 阅读: 19 | 收藏 | The Hacker News - thehackernews.com 2026 gravitysmtp wordfence wordpress exposure

Unpatchable 'usbliter8' Exploit Breaks Apple A12 and A13 SecureROM Boot Chain Security researchers at Paradigm Shift have published a working exploit, dubbed usbliter8, that ach... 2026-6-19 18:37:41 | 阅读: 16 | 收藏 | The Hacker News - thehackernews.com attacker dma a12 a13 usbliter8

The Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security Processes The Gentlemen ransomware-as-a-service (RaaS) operation is actively developing and maintaining a sui... 2026-6-19 18:33:7 | 阅读: 18 | 收藏 | The Hacker News - thehackernews.com ransomware gentlemen affiliates byovd eset