Risk Discovery

DarkReading

Stressors, AI Forcing Changes to Cybersecurity Teams

Novo Nordisk Breach Exposes Software Development Pipeline Risk

Operation Escaneo Signals Shift in LatAm Threat Landscape

FIFA Bug Exposes World Cup Streams to Remote Takeover

Salesforce Data Thefts Continue via Klue App Compromise

Get Out of Security Debt by Tackling the Exposure Problem

EU Gets a Head Start in Developing 6G Network Security

INC Ransomware Thrives by Mastering the Basics

Sweeping Credential-Harvesting Heist Compromises 30K+ Fortinet Devices

UK Social Media Ban for Minors Has Privacy Experts Worried

Ars Technica

Microsoft discovers new lightweight backdoor that steals cryptocurrency

Apple patches high-severity eavesdropping vulnerability in Beats Studio Buds

Before SpaceX IPO, investors in China secretly acquired stakes

Massive breach spills credentials for thousands of sensitive networks

Tesco moving 40,000 server workloads off VMware amid Broadcom's “abusive conduct”

"Dangerous" AI models are coming no matter what

Windows and Linux users: The deadline to update Secure Boot keys is near

Year of free HPE software a “step in the correct direction” in VMware rivalry

Critical Copilot vulnerability allowed hackers to steal 2FA code from users

Users cry foul after AMD stripped memory crypto from its consumer CPUs

CyberScoop

Authorities disrupt Evil Corp’s SocGholish botnet

Congress tees up No FAKES Act, aiming at AI-generated deepfakes

How software development’s speed obsession enabled TeamPCP’s chaos crusade

Accenture shells out $4.18B on three companies in big industrial cybersecurity push

Attackers hit pair of critical Fortinet vulnerabilities the vendor disclosed in April

Lawmakers leery about Trump administration’s Anthropic order

AI’s constant patching treadmill can be a security problem

A case for how to shape ‘ingredient lists’ for AI models

Google exposes China espionage group that’s been lurking in networks undetected since 2023

Cybersecurity experts don’t think Anthropic’s Fable 5 presents a unique threat

InfoSecurity Magazine

Microsoft Attributes Mastra AI Supply Chain Attack to North Korea

Klue Breach Enables Hackers to Compromise Cybersecurity Firms via OAuth Tokens

UK Information Commissioner Resigns After Workplace Investigation

NCSC Urges Fortinet Customers to Tackle FortiBleed Fallout

AWS Unveils 'Continuum,' an AI-Powered Vulnerability Management Platform

Operation Endgame Disrupts Malware Network Linked to Major Ransomware Gang

Confidence Lacks in Threat Detection Across Non-Email Channels like Slack and Teams

Fake GitHub Stars and AI Videos Mask a Crypto Clipper

ICO Cautions Healthcare Worker After Princess of Wales Incident

Cybercriminals Are Worried About AI Taking Their Jobs Too

SecurityWeek

North Korean Hackers Blamed for Mastra NPM Supply Chain Attack

What the Latest ShinyHunters Breaches Reveal About Modern Cyberattacks

New Exploit Bypasses Apple’s Boot Defenses, Affects Millions of iPhones

Fortinet Responds to FortiBleed Campaign

More Cybersecurity Firms Disclose Impact From Klue Hack

Texas Parks & Wildlife Data Breach Affects 3 Million Individuals

French President Urges US to Share Cutting-Edge AI and Democracies to Cooperate on Regulation

In Other News: Apple Patches Beats Eavesdropping Flaw, DOT Closes Delta CrowdStrike Probe, AWS Continuum

CryptoBandits Malware Doubles as a Backdoor, Abuses Tor

FortiBleed: 86,000 Fortinet Device Credentials Compromised

ZDNet

June Prime Day live blog 2026: We're tracking Amazon deals on SSDs, TVs, laptops and more

You could qualify for Amazon Prime at 50% off without even knowing - here's the details

There are 3 obvious signs someone is stealing your Wi-Fi - and several ways to stop them

Sony WH-1000XM6 vs. Sennheiser Momentum 5: I used both pairs for months, and here's my pick

How I set up this $17 solar panel to give my doorbell camera unlimited battery life

I always change these 7 phone privacy settings on every new device - here's why

Sennheiser just gave me a compelling reason to retire my Bose and Sony headphones

I tested the new modular ThinkPad, and it's the repairable future I've been hoping for

4 easy tweaks you can make to your TV soundbar for more immersive audio

I made 7 changes to my Android Auto setup for better functionality when I'm driving

The Hacker News

Canada’s Spy Agency Used First-of-Its-Kind Warrant to Clean Botnet-Infected Devices

AryStinger Malware Infects 4,300 Legacy Routers to Build Reconnaissance Proxy Network

INTERPOL Warns Phishing, Ransomware, and AI Scams Are Rising Across Asia-Pacific

Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys

Unpatchable 'usbliter8' Exploit Breaks Apple A12 and A13 SecureROM Boot Chain

The Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security Processes

AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution

Operation Endgame Disrupts SocGholish Servers, Cleans 14,971 WordPress Sites

CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices

From Assistive to Agentic: The AI Shift That's Redefining Threat Management

BleepingComputer

AryStinger botnet infected thousands of D-Link routers worldwide

New Prinz Eugen ransomware prioritizes recent files for encryption

Microsoft links Mastra AI supply chain attack to North Korean hackers

Klue OAuth breach victim list grows as Icarus hackers claim attack

Hackers exploit info disclosure bug in Gravity SMTP WordPress plugin

Texas govt data breach exposes over 3 million driver’s licenses

Every AI Agent Is an Identity. Most Organizations Don't Treat Them That Way

Webinar: How attackers bypass MFA and how defenders can respond

Microsoft: June 2026 Windows updates break Recycle Bin prompts

CISA: Splunk Enterprise flaw actively exploited, patch by Sunday

gbhackers

Multi-Stage Steganographic Loader Deploys Remcos RAT and Multiple Infostealers Globally

282 iOS Apps Found Leaking LLM API Credentials in Network Traffic

LACUNA Chain Ghost Frames Technique Bypasses EDR Call-Stack Detection

Attackers Can Poison AI Research Agents Using Reddit and Wikipedia Content

AryStinger Botnet Uses Intranet Scanning and Traffic Tunneling to Hide Attacker Activity

Microsoft Confirms Windows 11 26H2 Upgrade via Enablement Package for Faster Deployment

Top 10 Best PCI DSS Compliance Solutions For 2026

Top 10 Best Cyber Insurance Providers For Businesses in 2026

Top 10 Best Cybersecurity Awareness Training Platforms 2026

Prinz Eugen Ransomware Uses Go-Based Encryptor to Target Fresh Files and Evade Forensics

Cybersecurity Dive

Infrastructure downtime has a $50k-per-hour price tag. It’s time to turn hours into minutes.

3 ways AI is transforming security operations - and where it delivers real impact

AI is transforming enterprise data risk. Here’s how security leaders are responding.

Nation-state rivals linked to majority of consequential attacks targeting critical UK sites

Major critical infrastructure disruptions are inevitable, acting CISA chief says

California water utility probes breach claim by Iran-linked actor

AI isn’t solving cybersecurity workforce woes

AI adoption correlates with incident frequency, underscoring need for governance

Critical vulnerabilities in Fortinet FortiSandbox are under exploitation

China-nexus group linked to multiyear campaign targeting US, Canadian medical research

Threatpost

Student Loan Breach Exposes 2.5M Records

Watering Hole Attacks Push ScanBox Keylogger

Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms

Ransomware Attacks are on the Rise

Cybercriminals Are Selling Access to Chinese Surveillance Cameras

Twitter Whistleblower Complaint: The TL;DR Version

Firewall Bug Under Active Attack Triggers CISA Warning

Fake Reservation Links Prey on Weary Travelers

iPhone Users Urged to Update to Patch 2 Zero-Days

Google Patches Chrome’s Fifth Zero-Day of the Year

The Register

Health board apologizes for phishing staff with with bogus vacation day

Gizmodo readers hit with ClickFix malware prompts after account compromise

Why Amazon hates 'human-in-the-loop' AI governance

Researchers drop checkm8-style BootROM exploit for A12 and A13 iPhones

Everything's bigger and better in Texas – even data breaches

Britain's privacy watchdog quits after 'poor judgment' admission

Rights groups brand Home Office's AI age guesser for asylum-seekers as biased and inaccurate

Google told researcher 'Nice catch!' Then denied bug bounty for flaw it still hasn't fixed

Major US carrier stored credit card info in the clear, employee learned on first day

Cyber offenses now account for around a third of all crime across Asia and South Pacific

VentureBeat

7,000 Langflow servers are under attack. LangGraph and LangChain have the same holes

Copilot searched your mailbox. LiteLLM handed out admin keys. Run this 5-check audit before your stack is next

85% of IT teams claim every AI agent is under control. Only 42% actually know who owns them.

Attackers scale deception with AI. Defenders need truth at machine speed.

NanoClaw and JFrog launch 'immune system' to block AI agents from downloading malicious code

Meta's AI support agent bound recovery emails for anyone who asked. Your SOC never saw an alert.

Microsoft launches MXC, an OS-level sandbox for AI agents, with OpenAI and Nvidia already on board

TechCrunch

Signal’s Meredith Whittaker wants you to remember that AI chatbots ‘are not your friends’

From PGP to Mythos: a brief history of export controls that didn’t stop anyone

Texas government data breach allowed hackers to steal 3 million driver’s licenses and passports

Cybercriminals allegedly hacked tens of thousands of Fortinet firewalls used by major companies all over the world

Apple plans to change its Hide My Email privacy feature that could make it less effective

Bug in FIFA World Cup internal system gave anyone ability to modify TV stream

India orders temporary ban on Telegram over exam fraud concerns

The US government’s Anthropic models ban was never about an AI jailbreak

Cybersecurity vets protest ‘dangerous’ US government ban on Anthropic’s most powerful models

As AI agents become employees, NewCore emerges with $66M to give them identities

Network World Security

FortiBleed campaign exposes 75,000 Fortinet firewalls worldwide

Cisco: AI growth is exposing campus network limits

HPE CTO Russo drills into data, orchestration, and observability for the agentic enterprise

Edge networks a particular challenge for summer power, IT staffing needs

Turn enterprise AI into real business value with a secure, scalable factory

Tether is shipping TurboQuant KV-cache quantization with Vulkan support into its QVAC SDK

AMD acquires MEXT to add predictive memory optimization to its AI stack

HPE Discover: Neri outlines an AI architecture built for agents

HPE product barrage targets AI networks, agents, management

2026 network outage report and internet health check

Help Net Security

23 ClawHub plugins squatting official scopes expose AI registry security gaps

Who pays when you gate cyber-capable AI models?

Agent Beacon: Open-source telemetry layer for AI agents

Encrypted DNS still tells an eavesdropper where to look

Product showcase: Avira Security for iOS blends security, privacy, and device optimization

Hundreds of AI-powered iOS apps found exposing credentials

The systemd 261 release brings a software TPM, new OS installer

Week in review: 74k Fortinet firewall credentials stolen, Splunk Enterprise RCE under active attack

Klue breach lead to Salesforce data theft, Huntress affected

Cybercriminals abused GitHub, YouTube and VirusTotal to push crypto-stealing malware

SC Magazine

Lessons from Identiverse 2026

Navigating Shadow AI in the Enterprise, Verizon's SECOND 2026 report, and the news - Ankita Gupta - ESW #464

LLMS, Identity, EDR, JiGong, QiLin, Warlock, with Rob Allen from Threatlocker... - Rob Allen - SWN #591

Malware campaign uses VirusTotal manipulation, legitimate news sites to gain reputation

Agentjacking attack exploits AI coding tools with fake error reports

Cloudflare blocked 38.5 billion cyberattacks against civil society organizations

Icarus threat actors exploit Klue OAuth breach to steal Salesforce data

Law enforcement disrupts SocGholish botnet and Evil Corp servers

Apple releases security update for Beats Studio Buds vulnerability

Nintendo confirms employee survey data stolen from third-party service

© 2026 RiskDiscovery | Sponsored by: Deception Logic