CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog Web Security / VulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on... 2026-6-4 07:19:33 | 阅读: 9 | 收藏 | The Hacker News - thehackernews.com php cachewarmer 2026 serialized remote

DoJ Disrupts Southeast Asia Crypto Fraud Networks, Freezes $3.8 Million in Assets Cryptocurrency / Law EnforcementThe U.S. Department of Justice (DoJ) on Wednesday announced the re... 2026-6-4 06:6:25 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com police americans compounds investment criminal

WhatsApp, Slack Notifications Could Hijack Google Gemini on Android Vulnerability / Artificial IntelligenceA single poisoned notification from WhatsApp, Slack, SMS,... 2026-6-3 19:11:15 | 阅读: 14 | 收藏 | The Hacker News - thehackernews.com gemini yair victim safebreach memory

Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT Malware / Microsoft DefenderCybersecurity researchers have flagged a new malspam campaign that mak... 2026-6-3 16:29:16 | 阅读: 13 | 收藏 | The Hacker News - thehackernews.com victim loader trojan microsoft security

Microsoft 365 Android Apps Let Any App Steal Account Tokens via Leftover Debug Flag Vulnerability / Mobile SecurityA development flag left switched on in production builds of several... 2026-6-3 14:56:35 | 阅读: 2 | 收藏 | The Hacker News - thehackernews.com microsoft powerpoint enclave copilot 2026

Autonomous AI Tool Finds 2-Year-Old RCE Flaw in Redis (CVE-2026-23479) Vulnerability / Cloud SecurityRedis has patched a use-after-free in its blocking-client code tha... 2026-6-3 13:47:9 | 阅读: 2 | 收藏 | The Hacker News - thehackernews.com client cloud memory xint lua

One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens Vulnerability / Software DevelopmentCybersecurity researchers have disclosed a one-click attack vi... 2026-6-3 12:58:22 | 阅读: 20 | 收藏 | The Hacker News - thehackernews.com github microsoft webviews malicious attacker

Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP) The Fragmented State of Modern Enterprise IdentityEnterprise IAM is approaching a breaking point.... 2026-6-3 11:58:0 | 阅读: 12 | 收藏 | The Hacker News - thehackernews.com ivip orchid security identities estate

Beyond the Zero-Day: See Your Network Like an Attacker | Webinar with HD Moore Assume the breach. Zero-days keep shipping, AI is writing exploits faster than anyone patches, and... 2026-6-3 11:28:59 | 阅读: 19 | 收藏 | The Hacker News - thehackernews.com network attacker foothold shape

Unpatched Windows Search URI Vulnerability Lets Attackers Steal NTLMv2 Hashes Vulnerability / Network SecurityCybersecurity researchers have disclosed details of an unpatched i... 2026-6-3 10:18:52 | 阅读: 19 | 收藏 | The Hacker News - thehackernews.com attacker ntlmv2 2026 microsoft crumb

New HTTP/2 Bomb Vulnerability Allows Remote DoS on NGINX, Apache, IIS, Envoy & Cloudflare Vulnerability / Server SecurityCybersecurity researchers have discovered a remote denial-of-servic... 2026-6-3 08:33:35 | 阅读: 14 | 收藏 | The Hacker News - thehackernews.com bomb memory calif envoy hpack

Weedhack Attacks Minecraft Users, CountLoader Hits 86K, Miners Spread via Pirated Content Cybersecurity researchers have flagged a new campaign targeting Minecraft players via YouTube to sp... 2026-6-3 06:16:54 | 阅读: 16 | 收藏 | The Hacker News - thehackernews.com malicious miner countloader c2 weedhack

Google June 2026 Android Update Patches 124 Flaws, One Actively Exploited Vulnerability / Mobile SecurityGoogle on Monday released patches for 124 security vulnerabilities... 2026-6-2 18:46:0 | 阅读: 14 | 收藏 | The Hacker News - thehackernews.com security 2026 48595 privileges

Gamaredon Exploits WinRAR to Deliver GammaWorm and GammaSteel Against Ukraine Threat Intelligence / MalwareThe Russian hacking group known as Gamaredon has been attributed to t... 2026-6-2 18:21:49 | 阅读: 18 | 收藏 | The Hacker News - thehackernews.com gammaload sekoia gammaworm vbscript 2026

Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation Vulnerability / Network SecurityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) o... 2026-6-2 18:14:42 | 阅读: 15 | 收藏 | The Hacker News - thehackernews.com weblogic security network 2026 attacker

AI-Driven Exploitation is Destroying Vulnerability Management. Here’s How to Handle It. AI-driven exploitation timelines are rapidly shrinking, and they are not going to stop shrinking. V... 2026-6-2 11:58:0 | 阅读: 23 | 收藏 | The Hacker News - thehackernews.com attackers exposure timelines emerging

How Leading Organizations Are Turning EDR Into Operational Resilience Most organizations now recognize that endpoint protection alone is no longer sufficient.That's wh... 2026-6-2 10:30:0 | 阅读: 11 | 收藏 | The Hacker News - thehackernews.com security operational resilience bitdefender lean

Pakistan-Linked SideCopy Targets Afghanistan Finance Ministry with Xeno RAT Cyber Espionage / Threat IntelligenceCybersecurity researchers have disclosed details of a spear-p... 2026-6-2 09:5:40 | 阅读: 22 | 收藏 | The Hacker News - thehackernews.com xeno remote indian pashto malicious

Dashlane Discloses Brute-Force Attack, Encrypted Vaults of Fewer Than 20 Users Downloaded Identity Security / Data ProtectionPassword manager Dashlane has disclosed that "fewer than" 20 us... 2026-6-2 03:55:25 | 阅读: 17 | 收藏 | The Hacker News - thehackernews.com dashlane security vaults protections

Miasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing Worm A new Mini Shai-Hulud supply chain attack campaign, codenamed Miasma, has compromised @redhat-clou... 2026-6-1 17:40:28 | 阅读: 21 | 收藏 | The Hacker News - thehackernews.com cloud github redhat client malicious