IT Security News

Cybersecurity news and articles about information security, vulnerabilities, exploits, hacks, laws, spam, viruses, malware, breaches.

Main menu

Skip to content
  • Advertising
  • Contact
  • Legal and Contact information
  • Opt-out preferences
  • Privacy Policy
  • Social Media
    • Telegram Channel
EN, The Hacker News

Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation

2026-06-02 21:06

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity security flaw impacting Oracle WebLogic Server to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. The vulnerability, CVE-2024-21182 (CVSS score: 7.5), allows an…

Read more →

EN, The Hacker News

Gamaredon Exploits WinRAR to Deliver GammaWorm and GammaSteel Against Ukraine

2026-06-02 21:06

The Russian hacking group known as Gamaredon has been attributed to the continued exploitation of a WinRAR vulnerability to deliver multiple malware families aimed at data theft and propagation. Per Sekoia, the activity involves the weaponization of CVE-2025-8088, a path…

Read more →

EN, Security Latest

Android Is Fighting Phone Scams With a New Feature to Prove Who’s Calling

2026-06-02 20:06

Available for Android 12 and later, the anti-scam feature is baked into Google Dialer, which sends a silent “confirmation signal” to ensure whoever’s calling you is who they appear to be. This article has been indexed from Security Latest Read…

Read more →

All CISA Advisories, EN

CISA and Partners Urge Hardening Automatic Tank Gauge Systems

2026-06-02 20:06

CISA and Partners Urge Hardening Automatic Tank Gauge Systems Overview The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), the National Security Agency (NSA), the Department of Energy (DOE), the Environmental Protection Agency (EPA), the Transportation…

Read more →

Cyber Security News, EN

Russia Says Foreign Spyware Found on High-Ranking Officials’ Mobile Phones

2026-06-02 20:06

Russia’s Federal Security Service (FSB) has claimed it disrupted a large-scale cyber-espionage operation involving the deployment of advanced spyware on mobile devices used by high-ranking government officials. The agency stated that the campaign was orchestrated by unidentified foreign intelligence services…

Read more →

Cyber Security News, EN

Red Hat Confirms Supply Chain Compromise of @redhat-cloud-services npm Packages

2026-06-02 20:06

Red Hat has officially confirmed a supply chain compromise affecting multiple packages published under the @redhat-cloud-services npm namespace, disclosed publicly on June 1, 2026. A compromised GitHub account was used to inject malicious code into frontend libraries maintained within a…

Read more →

Cyber Security News, EN

Attackers Abuse AWS, Google Cloud, Cloudflare, and Microsoft Services to Hide Malicious Traffic

2026-06-02 20:06

Cybercriminals are increasingly weaponizing trusted cloud infrastructure, including Amazon Web Services, Google Cloud, Microsoft Azure, Cloudflare, and GitHub, to camouflage malicious traffic, evade detection, and sustain long-lived Command and Control (C2) operations. A recent threat intelligence investigation using ANY.RUN’s Threat…

Read more →

EN, Microsoft Security Blog

Microsoft Build 2026: Securing code, agents, and models across the development lifecycle

2026-06-02 20:06

Discover how Microsoft enables fast, secure AI development with MDASH and new security capabilities. The post Microsoft Build 2026: Securing code, agents, and models across the development lifecycle appeared first on Microsoft Security Blog. This article has been indexed from…

Read more →

EN, Hackread – Cybersecurity News, Data Breaches, AI and More

Fake ChatGPT Desktop App Ads Used to Push Password-Stealing Malware

2026-06-02 20:06

Fake ChatGPT desktop app ads pushed password-stealing malware by abusing trusted AI links, hiding from scanners, and tricking users into downloads. This article has been indexed from Hackread – Cybersecurity News, Data Breaches, AI and More Read the original article:…

Read more →

Cybersecurity Dive - Latest News, EN

Trump signs EO seeking early government access to powerful AI models

2026-06-02 20:06

The directive represents an about-face for an administration that previously repudiated government AI reviews. This article has been indexed from Cybersecurity Dive – Latest News Read the original article: Trump signs EO seeking early government access to powerful AI models

Read more →

EN, eSecurity Planet

Claude Code GitHub Actions Flaw Created Supply Chain Attack Risk

2026-06-02 19:06

Claude Code GitHub Actions flaws could enable repository compromise, credential theft, and supply chain attacks. The post Claude Code GitHub Actions Flaw Created Supply Chain Attack Risk appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet…

Read more →

EN, Security Affairs

Instagram Account Hijacks Expose the Security Risks of AI-Powered Support

2026-06-02 19:06

Attackers exploited Meta’s AI support chatbot to reset Instagram passwords and hijack accounts without accessing victims’ email inboxes. Attackers abused Meta’s AI-powered support chatbot to reset Instagram passwords and hijack accounts without accessing victims’ email inboxes. The issue affected several…

Read more →

Blog - Wordfence, EN

Attackers Actively Exploiting Critical Vulnerability in Burst Statistics Plugin

2026-06-02 19:06

On May 13th, 2026, we publicly disclosed a critical Authentication Bypass vulnerability in Burst Statistics, a WordPress plugin with 200,000 active installations. This vulnerability can be leveraged by unauthenticated attackers, with knowledge of an administrator username, to impersonate that administrator…

Read more →

EN, securityweek

Two New Reports Offer Competing Explanations for Cybersecurity’s Growing Crisis

2026-06-02 19:06

As AI shortens the path from vulnerability disclosure to exploitation, researchers disagree on whether the problem is inadequate security tools or inadequate operational control. The post Two New Reports Offer Competing Explanations for Cybersecurity’s Growing Crisis appeared first on SecurityWeek.…

Read more →

Cybersecurity Dive - Latest News, EN

Dozens of Red Hat npm packages targeted in supply chain attack

2026-06-02 19:06

Researchers said a variant of the Mini Shai-Hulud is involved in the compromise. This article has been indexed from Cybersecurity Dive – Latest News Read the original article: Dozens of Red Hat npm packages targeted in supply chain attack

Read more →

EN, eSecurity Planet

Google Patches Android Zero-Day Under Active Exploitation

2026-06-02 18:06

Google has patched CVE-2025-48595, an actively exploited Android zero-day that enables privilege escalation on affected devices. The post Google Patches Android Zero-Day Under Active Exploitation  appeared first on eSecurity Planet. This article has been indexed from eSecurity Planet Read the…

Read more →

EN, Security Affairs

U.S. CISA adds Oracle WebLogic flaw to its Known Exploited Vulnerabilities catalog

2026-06-02 18:06

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Oracle WebLogic flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Palo Alto Networks PAN-OS flaw, tracked as CVE-2024-21182 (CVSS score of 7.5), to its Known…

Read more →

AWS Security Blog, EN

Secure multi-tenant AI agents with Amazon Bedrock AgentCore resource-based policies

2026-06-02 18:06

Software as a service (SaaS) providers building AI-powered applications on Amazon Bedrock AgentCore often need to serve multiple tenants with distinct security requirements from a shared infrastructure. Some tenants require cross-account access from their own Amazon Web Services (AWS) accounts,…

Read more →

hourly summary

IT Security News Hourly Summary 2026-06-02 18h : 13 posts

2026-06-02 18:06

13 posts were published in the last hour 16:3 : How to prepare security controls for future AI regulations 16:3 : Password manager Dashlane says hackers stole some customers’ password vaults 16:3 : Dozens of Red Hat npm packages targeted…

Read more →

EN, Search Security Resources and Information from TechTarget

How to prepare security controls for future AI regulations

2026-06-02 18:06

<p>The global AI regulatory landscape is fragmented and volatile. As a result, cybersecurity leaders must reconcile competing compliance requirements and safeguard organizational AI without creating roadblocks to the overall AI strategy’s success.</p> <p>While the EU AI Act imposes a comprehensive,…

Read more →

EN, Security News | TechCrunch

Password manager Dashlane says hackers stole some customers’ password vaults

2026-06-02 18:06

The password manager giant said hackers were able to ‘brute-force’ its two-factor system, allowing them to access customer accounts and download their password vaults. This article has been indexed from Security News | TechCrunch Read the original article: Password manager…

Read more →

Cybersecurity Dive - Latest News, EN

Dozens of Red Hat npm packages targeted in supply- chain attack

2026-06-02 18:06

Researchers said a variant of the mini Shai-Hulud is involved in the compromise. This article has been indexed from Cybersecurity Dive – Latest News Read the original article: Dozens of Red Hat npm packages targeted in supply- chain attack

Read more →

CySecurity News - Latest Information Security and Hacking Incidents, EN

Online Shopping Red Flags That Could Signal Fraud and Financial Scams

2026-06-02 17:06

  Shopping online offers convenience and savings, but it also comes with risks. Fraudsters use fake deals, deceptive websites, and misleading advertisements to target consumers. Despite growing awareness, online shopping scams remain widespread. Recognizing warning signs early can help prevent…

Read more →

CySecurity News - Latest Information Security and Hacking Incidents, EN

Megalodon Malware Backdoors 5,500+ GitHub Repos in 6-Hour Supply-Chain Attack

2026-06-02 17:06

  On May 18, 2026, a massive automated supply-chain attack codenamed Megalodon struck GitHub, injecting malicious CI/CD backdoors into more than 5,500 repositories in under six hours. Security firm SafeDep discovered the campaign, which pushed 5,718 malicious commits to 5,561…

Read more →

Page 85 of 5578
« 1 … 83 84 85 86 87 … 5,578 »

Pages

  • Advertising
  • Contact
  • Legal and Contact information
  • Opt-out preferences
  • Privacy Policy
  • Social Media
    • Telegram Channel

Recent Posts

  • Authorities Seize 106 Servers and 101 Domains in Major SocGholish Malware Takedown June 19, 2026
  • State Digital Surveillance Puts Foreign Travelers and Businesses at Risk Across 31 Countries June 19, 2026
  • SpaceX wants to build AI data centers in space. Will it work? June 19, 2026
  • Asia-Pacific scam networks generate nearly $40 billion a year June 19, 2026
  • Splunk Enterprise Vulnerability Exploited in Attacks Days After Disclosure June 19, 2026
  • FortiBleed Emergency: 74,000 Fortinet Logins Exposed June 19, 2026
  • New infosec products of the week: June 19, 2026 June 19, 2026
  • IT Security News Hourly Summary 2026-06-19 06h : 1 posts June 19, 2026
  • Killing me gently: Inside Gentlemen’s EDR killer framework June 19, 2026
  • Microsoft Exposes Malware Operation Combining USB LNK Worms and Tor-Based C2 Servers June 19, 2026
  • Alibaba Cloud Bets on France as Europe Seeks More Control Over AI June 19, 2026
  • AI Crackdowns, Mega Mergers, and Security Chaos Define This Week in Tech June 19, 2026
  • AutoJack: How a single page can RCE the host running your AI agent June 19, 2026
  • PeopleSoft PeopleTools Pre-Authentication RCE: A PSIGW SSRF Chain That Executes Inside the JVM June 19, 2026
  • Ralph Lauren – 139,903 breached accounts June 19, 2026
  • Authorities Dismantle SocGholish Malware Network — 106 Servers and 101 Domains Seized June 19, 2026
  • Most security pros say their culture is ‘just average’ June 19, 2026
  • How the Peter Thiel-Linked Dialog Club Secretly Ranks Its Members June 19, 2026
  • IT Security News Hourly Summary 2026-06-19 00h : 5 posts June 19, 2026
  • Operation Endgame 4.0 – 153,527 breached accounts June 19, 2026

Copyright © 2026 IT Security News. All Rights Reserved. The Magazine Basic Theme by bavotasan.com.

Manage Consent
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
  • Manage options
  • Manage services
  • Manage {vendor_count} vendors
  • Read more about these purposes
View preferences
  • {title}
  • {title}
  • {title}