Silent Swap Crypto Clipper Uses Fake Google Notes Extension to Replace Wallet Addresses Cybersecurity researchers have flagged an active browser extension campaign that is designed to ste... 2026-6-30 15:40:18 | 阅读: 5 | 收藏 | The Hacker News - thehackernews.com clipboard malicious attacker chrome mcafee

GuardFall Exposes Open-Source AI Coding Agents to Decades-Old Shell Injection Risks AI Security / Software Supply ChainThe safety check that is supposed to stop an AI coding agent fr... 2026-6-30 14:26:15 | 阅读: 5 | 收藏 | The Hacker News - thehackernews.com adversa agents claude destructive roughly

282 iOS AI Apps Leak API Keys and Open AI Proxy Access in Network Traffic Study API Security / Mobile SecurityResearchers tested 444 AI chatbot apps for iPhone and found that 282... 2026-6-30 13:49:34 | 阅读: 0 | 收藏 | The Hacker News - thehackernews.com 282 developers revoke openai security

What the Numbers Say About FIFA 2026 Cyber Risk The FIFA World Cup 2026 opened on June 11. By that date, according to Check Point Research, the fr... 2026-6-30 11:30:0 | 阅读: 7 | 收藏 | The Hacker News - thehackernews.com 2026 fifa tournament brands cup

Attackers Exploit SimpleHelp CVE-2026-48558 to Deploy TaskWeaver and Djinn Stealer An unknown threat actor has been observed exploiting a recently disclosed maximum-severity security... 2026-6-30 11:18:47 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com stealer taskweaver cloud oidc

AirDrop and Quick Share Flaws Let Nearby Attackers Trigger Crashes and Bypass Checks Two researchers have found six security flaws in AirDrop and Quick Share, the wireless features t... 2026-6-30 09:27:58 | 阅读: 4 | 收藏 | The Hacker News - thehackernews.com airdrop attacker crash windows network

New BioShocking Attack Tricks AI Browsers Into Leaking User Credentials Agent Security / Browser SecurityConvince an AI browser that it is playing a game, and it can hand... 2026-6-30 08:37:19 | 阅读: 9 | 收藏 | The Hacker News - thehackernews.com layerx security puzzle repository perplexity

Progress Kemp LoadMaster Flaw Could Let Attackers Run Root Commands Pre-Auth Vulnerability / API SecurityA critical vulnerability in Progress Kemp LoadMaster can let an unauth... 2026-6-30 07:38:7 | 阅读: 8 | 收藏 | The Hacker News - thehackernews.com loadmaster attacker 2026 memory sanitized

Apple Patches 30+ iOS, macOS, Safari Flaws, Including AI-Discovered WebKit Bugs Artificial Intelligence / VulnerabilityApple on Monday released security updates for iOS, macOS, a... 2026-6-30 07:15:7 | 阅读: 8 | 收藏 | The Hacker News - thehackernews.com 2026 memory security addressed

Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild Vulnerability / Enterprise SoftwareA critical security flaw impacting Oracle E-Business Suite has... 2026-6-30 05:4:6 | 阅读: 12 | 收藏 | The Hacker News - thehackernews.com security 2026 defused exploited

Malicious Perplexity Chrome Extension Intercepted Searches and Address Bar Input Browser Security / Web SecurityMicrosoft has found a malicious Chrome extension that posed as the... 2026-6-29 18:40:9 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com microsoft perplexity attacker chrome branding

WhatsApp is Finally Getting Usernames to Help Keep Phone Numbers Private WhatsApp on Monday officially announced the start of global reservations of usernames with an aim t... 2026-6-29 16:9:21 | 阅读: 9 | 收藏 | The Hacker News - thehackernews.com username rolling inbound

Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government Attacks Threat Intelligence / MalwareThe China-aligned espionage group Mustang Panda is running two campa... 2026-6-29 15:3:40 | 阅读: 10 | 收藏 | The Hacker News - thehackernews.com acronis cloud india indian hydropower

⚡ Weekly Recap: Linux Kernel Flaws, AI Malware Tricks, Turla Backdoor, Infostealers and More This week was a reminder that attackers do not always need big tricks. One small mistake, one old... 2026-6-29 14:41:7 | 阅读: 13 | 收藏 | The Hacker News - thehackernews.com 2026 security microsoft windows malicious

236,000 DCloud Uni-App Sites Used in Crypto Scams, Phishing, and Wallet Drainers New findings unearthed by Infoblox show that more than 236,000 websites are using investment scam t... 2026-6-29 11:57:40 | 阅读: 10 | 收藏 | The Hacker News - thehackernews.com dcloud investment infoblox fingerprint exchanges

Why Post-Quantum Cryptography Starts With Credentials Today’s encrypted data, such as credentials, may no longer remain confidential in the future becaus... 2026-6-29 11:42:16 | 阅读: 16 | 收藏 | The Hacker News - thehackernews.com resistant security migration attackers lived

Gamaredon Expands Ukraine Attacks with New Malware and Cloud Service Abuse A Russian advanced persistent threat (APT) group has continued to evolve and expand its malware ars... 2026-6-29 11:40:24 | 阅读: 12 | 收藏 | The Hacker News - thehackernews.com gamaredon malicious eset drives powershell

Microsoft Removes 119 Edge Extensions That Hid Malware in Images and Fonts Microsoft has shut down a long-running malicious extension operation on the Edge Add-ons store that... 2026-6-29 08:32:31 | 阅读: 3 | 收藏 | The Hacker News - thehackernews.com microsoft payload stegoad security

Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw Vulnerability / Open SourceA public proof-of-concept is now out for CVE-2026-55200, a critical fla... 2026-6-29 07:6:34 | 阅读: 21 | 收藏 | The Hacker News - thehackernews.com libssh2 ssh client overflow corruption

Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer Cybersecurity researchers have uncovered two hijacked npm packages and a cluster of Go packages t... 2026-6-29 05:36:6 | 阅读: 17 | 收藏 | The Hacker News - thehackernews.com github python stage developer c2