Okta disclosed HollowByte, an 11-byte OpenSSL flaw that lets remote attackers exhaust server memory and trigger denial-of-service attacks. Okta’s Red Team disclosed a denial-of-service vulnerability in OpenSSL they named HollowByte, and the attack payload is exactly 11 bytes. A remote,…
Hugging Face Confirms AI-Driven Breach: Attackers used Autonomous Agents, defenders countered with AI
Hugging Face disclosed this week that it detected and contained a production infrastructure intrusion, driven end-to-end by an autonomous AI agent system, and defended against it using its own AI-based forensic analysis. The attackers exploited two code-execution flaws in Hugging…
IT Security News Hourly Summary 2026-07-18 21h : 1 posts
1 posts were published in the last hour 18:34 : Abbott Investigates Two Cyber Incidents Following Extortion Claims
Abbott Investigates Two Cyber Incidents Following Extortion Claims
Two separate cybersecurity incidents are being investigated by Abbott Laboratories after threat actors reportedly gained access to the company’s systems and accessed sensitive information. While one incident has been linked to the ShinyHunters extortion group, the other involves claims…
IT Security News Hourly Summary 2026-07-18 18h : 5 posts
5 posts were published in the last hour 15:10 : Nearly 7 Million Driver’s License Numbers Exposed After AssuranceAmerica Data Breach 15:9 : AI Agent Runs First End-to-End Ransomware Attack 15:9 : AssuranceAmerica Data Breach Exposes Personal Information of Nearly…
Nearly 7 Million Driver’s License Numbers Exposed After AssuranceAmerica Data Breach
Nearly seven million people are being notified after a cyberattack on Atlanta-based auto insurer AssuranceAmerica exposed highly sensitive personal information, including driver’s license numbers, Social Security numbers and insurance records, raising concerns about long-term identity theft risks. According to…
AI Agent Runs First End-to-End Ransomware Attack
Security researchers have long warned that AI would lower the barrier to cybercrime, but the latest case makes that threat tangible. In the operation described by Sysdig and covered by Forbes, an autonomous agent carried out the technical steps…
AssuranceAmerica Data Breach Exposes Personal Information of Nearly 7 Million Individuals
Auto insurance company AssuranceAmerica is notifying almost 6.99 million people of the possible exposure of their private information after experiencing a data breach. The company appeared on the state attorney generals earlier this month to reveal the cyberattack occurred…
Group-IB Uncovers ClickLock macOS Malware Targeting Passwords and Crypto Wallets
An aggressive social engineering technique has been used by ClickLock, an information-stealing macOS malware, to obtain victims’ information about their system login passwords. Security researchers at Group-IB report that the malware disables normal system functionality, leaving users with little interaction…
Two new high severity WordPress vulnerabilities, patch immediately!
The 7.0.2 WordPress security release addresses one critical and one high severity security issue. The vulnerabilities reported to the WordPress security team include: CVE-2026-60137 – A facilitated SQL injection issue reported as a team by TF1T, dtro, and haongo CVE-2026-60137…
GigaWiper
When Malware Doesn’t Have to Choose Between Espionage and Destruction This article has been indexed from CyberMaterial Read the original article: GigaWiper
Daxin: 13-Year-Old China-Linked Malware Found Still Active on Manufacturer’s Network
Researchers found China’s Daxin rootkit and a new Stupig backdoor on a Taiwan firm’s network, suggesting a stealthy intrusion dating back to 2013. Symantec’s Threat Hunter Team found Daxin running on a compromised host at a Taiwan-based subsidiary of a…
IT Security News Hourly Summary 2026-07-18 15h : 2 posts
2 posts were published in the last hour 13:4 : New Spirals Ransomware Uses IIS Web Shell and PsExec to Encrypt IT Firm in Under 24 Hours 12:8 : U.S. CISA adds Fortinet FortiSandbox and Microsoft SharePoint flaws to its…
New Spirals Ransomware Uses IIS Web Shell and PsExec to Encrypt IT Firm in Under 24 Hours
A previously unseen ransomware family dubbed “Spirals” struck an IT services company in South Asia in June 2026. Symantec’s Threat Hunter Team reports that the attackers moved from the initial breach to full network encryption in under 24 hours. The…
U.S. CISA adds Fortinet FortiSandbox and Microsoft SharePoint flaws to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Fortinet FortiSandbox and Microsoft SharePoint flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Fortinet FortiSandbox and Microsoft SharePoint flaws to its Known Exploited Vulnerabilities (KEV)…
wp2shell – Code Trace Deep Dive
wp2shell carries two CVEs (so far); CVE-2026-63030 & CVE-2026-60137. This article has been indexed from ZephrSec – Adventures In Information Security Read the original article: wp2shell – Code Trace Deep Dive
Your Period Tracker Is (Probably) Spying on You
Plus: Russian cyberspies turn to infrastructure hacking, DHS repeatedly fails to realize it’d been hacked, a breach exposes an AI music generator’s scraping ways, and more. This article has been indexed from Security Latest Read the original article: Your Period…
IT Security News Hourly Summary 2026-07-18 12h : 3 posts
3 posts were published in the last hour 9:34 : WP2Shell: Why Millions of WordPress Sites Are at Risk | CVE-2026-63030 9:34 : Citrix Secure Access and Endpoint Client for Windows Vulnerability Enables Privilege Escalation 9:5 : Critical WordPress Core…
WP2Shell: Why Millions of WordPress Sites Are at Risk | CVE-2026-63030
The CVE-2026-63030 – “wp2shell”: Why Millions of WordPress Sites Are Vulnerable and Emergency to Patch If you run… The post WP2Shell: Why Millions of WordPress Sites Are at Risk | CVE-2026-63030 appeared first on Hackers Online Club. This article has…
Citrix Secure Access and Endpoint Client for Windows Vulnerability Enables Privilege Escalation
Cloud Software Group has disclosed two security vulnerabilities affecting Citrix Secure Access Client for Windows and Citrix Endpoint Analysis Client for Windows, with one flaw allowing low-privileged attackers to gain full SYSTEM access on affected machines. The more severe issue,…
Critical WordPress Core Flaw Lets Anonymous Hackers Gain Remote Code Execution
A newly disclosed a pre-authentication remote code execution (RCE) vulnerability in WordPress Core, dubbed “wp2shell,” that requires no authentication and affects stock WordPress installations with zero plugins installed. Given that WordPress powers an estimated 500 million websites globally. The flaw…
Prompt Injection Attacks Are Thwarting AI Hacking Agents
“Context bombing” tricks malicious AI agents into shutting down before they can do harm. This article has been indexed from Security Latest Read the original article: Prompt Injection Attacks Are Thwarting AI Hacking Agents
EY Data Breach – Hackers Access Third-Party IT Support Platform and Steal Client Tax Documents
Ernst & Young LLP (EY) has confirmed a data security incident in which an unauthorized third party breached a third-party IT service management platform used by its tax practice, exfiltrating documents containing client personal and financial information. The Big Four…
OpenSSL DoS Vulnerability Lets Remote Attackers Exhaust Server Memory With an 11-Byte Payload
A newly disclosed vulnerability reminds us how deeply our digital infrastructure relies on foundational libraries. The Okta Red Team recently discovered “HollowByte,” a Denial of Service (DoS) flaw in OpenSSL that allows a remote, unauthenticated attacker to force a server…