https://pngai.freak.net/security-news.html Daily static security news digest grouped by AppSec-oriented themes. en-us Tue, 09 Jun 2026 16:01:47 +0000 https://www.bleepingcomputer.com/news/security/github-disables-microsoft-repos-pushing-password-stealing-malware/ https://www.bleepingcomputer.com/news/security/github-disables-microsoft-repos-pushing-password-stealing-malware/ Tue, 09 Jun 2026 15:42:40 +0000 Developer Security ★ BleepingComputer - Microsoft removed 73 repositories across its Azure, microsoft, Azure-Samples, and MicrosoftDocs organizations on GitHub, disrupting continuous integration pipelines. [...] https://www.darkreading.com/vulnerabilities-threats/russian-groups-winrar-flaw-ukrainian-orgs https://www.darkreading.com/vulnerabilities-threats/russian-groups-winrar-flaw-ukrainian-orgs Tue, 09 Jun 2026 15:37:02 +0000 AI & Security Dark Reading - Two separate campaigns target CVE-2025-8088, fixed last July, to conduct data theft and cyberespionage against military and government targets in Ukraine. https://www.securityweek.com/claude-mythos-turns-n-days-into-n-hours-with-rapid-exploit-creation/ https://www.securityweek.com/claude-mythos-turns-n-days-into-n-hours-with-rapid-exploit-creation/ Tue, 09 Jun 2026 15:03:13 +0000 Developer Security SecurityWeek - Public LLM models with safeguards turned off can also build working exploits, increasing patch gap risks. https://dev.to/sujaypillai/docker-pass-vs-docker-secret-what-is-the-difference-33l7 https://dev.to/sujaypillai/docker-pass-vs-docker-secret-what-is-the-difference-33l7 Tue, 09 Jun 2026 14:33:07 +0000 Developer Security dev.to (security) - If you have been working with Docker secrets locally, you may have noticed two commands that sound... https://www.bleepingcomputer.com/news/security/new-veeam-vulnerability-exposes-backup-servers-to-rce-attacks/ https://www.bleepingcomputer.com/news/security/new-veeam-vulnerability-exposes-backup-servers-to-rce-attacks/ Tue, 09 Jun 2026 14:27:56 +0000 Developer Security ★ BleepingComputer - Veeam has released security updates to patch a critical Backup & Replication security flaw that can be exploited to gain remote code execution (RCE) on domain-joined backup servers. [...] https://dev.to/mdenda/implementing-forward-secrecy-in-rust-a-double-ratchet-and-three-storage-formats-1314 https://dev.to/mdenda/implementing-forward-secrecy-in-rust-a-double-ratchet-and-three-storage-formats-1314 Tue, 09 Jun 2026 14:00:00 +0000 Developer Security dev.to (security) - Per-message key rotation, KDF chains, and the three different ways I ended up storing ephemeral keys because chat and file transfer want different things. Part 4 of the Anyhide series. https://therecord.media/hackers-pose-as-women-seeking-romance-russian-military https://therecord.media/hackers-pose-as-women-seeking-romance-russian-military Tue, 09 Jun 2026 13:52:00 +0000 Vulnerabilities & Exploits ★ The Record - The group, dubbed SiribClone by Russian cybersecurity firm F6, has been active since at least the summer of 2025 and has primarily targeted members of the Russian armed forces stationed in border regions and combat zones. https://dev.to/aws/your-agent-doesnt-need-that-10000-token-api-response-context-offloading-with-strands-2imd https://dev.to/aws/your-agent-doesnt-need-that-10000-token-api-response-context-offloading-with-strands-2imd Tue, 09 Jun 2026 13:39:59 +0000 Developer Security dev.to (security) - Context engineering matters for two reasons: reliability and cost. If your agent's context window is... https://www.securityweek.com/new-platform-uses-cryptographic-invisibility-to-protect-ai-built-applications/ https://www.securityweek.com/new-platform-uses-cryptographic-invisibility-to-protect-ai-built-applications/ Tue, 09 Jun 2026 13:00:00 +0000 AI & Security SecurityWeek - Atsign’s AI Architect applies cryptographic protections to agentic software development, aiming to prevent attackers from exploiting vulnerabilities by making application identities effectively invisible. https://dev.to/agentshield/anyone-with-github-issue-access-can-steal-your-cicd-secrets-heres-why-1k97 https://dev.to/agentshield/anyone-with-github-issue-access-can-steal-your-cicd-secrets-heres-why-1k97 Tue, 09 Jun 2026 12:52:05 +0000 Developer Security dev.to (security) - Anyone who can file an issue on your GitHub repo can now leak your CI/CD secrets. No code, no... https://thehackernews.com/2026/06/winrar-flaw-exploited-by-russia-aligned.html https://thehackernews.com/2026/06/winrar-flaw-exploited-by-russia-aligned.html Tue, 09 Jun 2026 12:26:10 +0000 AI & Security ★ The Hacker News - Two Russia-aligned cyber attack campaigns have continued to exploit a security flaw in WinRAR to target Ukrainian organisations, almost a year after patches for the vulnerability were released. The activity has been attributed by Trend Micro to Earth Dahu (aka Gamaredon) and. https://www.securityweek.com/sap-patches-critical-netweaver-commerce-vulnerabilities/ https://www.securityweek.com/sap-patches-critical-netweaver-commerce-vulnerabilities/ Tue, 09 Jun 2026 12:15:30 +0000 Vulnerabilities & Exploits SecurityWeek - The flaws could lead to the disclosure of sensitive information, memory corruption, and disruption of normal system usage. https://thehackernews.com/2026/06/researchers-build-self-replicating-ai.html https://thehackernews.com/2026/06/researchers-build-self-replicating-ai.html Tue, 09 Jun 2026 11:59:03 +0000 AI & Security ★ The Hacker News - University of Toronto researchers have built and tested a proof-of-concept AI-driven computer worm that uses a locally hosted open-weight large language model to reason its way through a network, generate tailored attack strategies for each target it encounters, and replicate itself, all. https://thehackernews.com/2026/06/chrome-v8-zero-day-cve-2026-11645.html https://thehackernews.com/2026/06/chrome-v8-zero-day-cve-2026-11645.html Tue, 09 Jun 2026 11:58:49 +0000 Vulnerabilities & Exploits ★ The Hacker News - Google has released security updates to address 74 vulnerabilities, including one that has come under active exploitation in the wild. The high-severity vulnerability, tracked as CVE-2026-11645 (CVSS score: 8.8), has been described as an out-of-bounds memory access in V8, Chrome's JavaScript and. https://www.securityweek.com/over-100-npm-pypi-packages-hit-in-new-shai-hulud-supply-chain-attacks/ https://www.securityweek.com/over-100-npm-pypi-packages-hit-in-new-shai-hulud-supply-chain-attacks/ Tue, 09 Jun 2026 11:37:11 +0000 AI & Security SecurityWeek - The most recent variants of the self-propagating attacks are named Miasma and Hades. https://thehackernews.com/2026/06/the-hidden-security-risk-in-modern.html https://thehackernews.com/2026/06/the-hidden-security-risk-in-modern.html Tue, 09 Jun 2026 11:30:00 +0000 AI & Security ★ The Hacker News - Organizations have more visibility than ever. Growing tech stacks provide greater coverage, and network security teams are increasingly adopting AI and automation to help with routine tasks and reduce manual effort. https://www.securityweek.com/will-ai-kill-the-bug-bounty-industry/ https://www.securityweek.com/will-ai-kill-the-bug-bounty-industry/ Tue, 09 Jun 2026 11:00:00 +0000 AI & Security SecurityWeek - Anthropic's Mythos is accelerating vulnerability discovery to machine speed, forcing the bug bounty industry and offensive security teams to adapt to a future where finding flaws is no longer the hard part. https://www.bleepingcomputer.com/news/security/french-govt-messaging-service-breached-in-account-hijacking-attack/ https://www.bleepingcomputer.com/news/security/french-govt-messaging-service-breached-in-account-hijacking-attack/ Tue, 09 Jun 2026 10:53:00 +0000 AI & Security ★ BleepingComputer - DINUM, the digital affairs directorate of the French government, warned that hackers used a hijacked user account to breach Tchap, the French government's encrypted messaging platform. [...] https://thehackernews.com/2026/06/new-frost-attack-lets-websites-track.html https://thehackernews.com/2026/06/new-frost-attack-lets-websites-track.html Tue, 09 Jun 2026 09:50:41 +0000 Developer Security ★ The Hacker News - A malicious website can work out which sites you visit and which apps you open, using nothing but JavaScript and the timing of your SSD. The attack, called FROST, needs no native code, no extension, and no permission prompt. https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-check-point-flaw-exploited-by-ransomware-gangs/ https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-check-point-flaw-exploited-by-ransomware-gangs/ Tue, 09 Jun 2026 08:18:39 +0000 AI & Security ★ BleepingComputer - CISA has ordered U.S. government agencies to secure their Check Point Remote Access VPN and Mobile Access deployments against a critical vulnerability exploited in zero-day attacks by Qilin ransomware affiliates. https://www.bleepingcomputer.com/news/security/google-patches-fifth-chrome-zero-day-bug-exploited-in-attacks-this-year/ https://www.bleepingcomputer.com/news/security/google-patches-fifth-chrome-zero-day-bug-exploited-in-attacks-this-year/ Tue, 09 Jun 2026 06:56:27 +0000 Vulnerabilities & Exploits ★ BleepingComputer - Google has released emergency updates to patch another Chrome zero-day vulnerability that has been exploited in the wild, the fifth such flaw patched since the start of the year. [...] https://www.darkreading.com/cyberattacks-data-breaches/silent-ransom-us-law-firms-extortion-attacks https://www.darkreading.com/cyberattacks-data-breaches/silent-ransom-us-law-firms-extortion-attacks Mon, 08 Jun 2026 20:59:52 +0000 Critical Infrastructure / OT Dark Reading - The financially motivated group is combining vishing, IT impersonation, and in-person office intrusions to steal data and extort victims. https://www.darkreading.com/vulnerabilities-threats/check-point-vpn-flaw-exploited-early-may https://www.darkreading.com/vulnerabilities-threats/check-point-vpn-flaw-exploited-early-may Mon, 08 Jun 2026 20:28:35 +0000 Vulnerabilities & Exploits Dark Reading - A newly discovered, critical zero-day vulnerability is under attack; a Qilin ransomware affiliate has been blamed for at least one incident. https://therecord.media/uk-gives-big-tech-3-months-to-create-device-controls-kid-images https://therecord.media/uk-gives-big-tech-3-months-to-create-device-controls-kid-images Mon, 08 Jun 2026 20:24:00 +0000 Policy, Legal & Industry ★ The Record - The companies “must activate built-in features or implement technical solutions on smartphones and tablets to detect and block nude images for children,” according to a press release from the Home Office. Prime Minister Keir Starmer announced the measure in a speech at. https://www.darkreading.com/cyberattacks-data-breaches/iran-signed-ceasefire-hackers https://www.darkreading.com/cyberattacks-data-breaches/iran-signed-ceasefire-hackers Mon, 08 Jun 2026 19:07:48 +0000 Supply Chain Dark Reading - An extension of the Geneva Conventions could impose restrictions on cyberwarfare under ceasefire conditions and close a major loophole in international conflict. https://therecord.media/armenia-pro-europe-party-wins-election-despite-russia-disinformation https://therecord.media/armenia-pro-europe-party-wins-election-despite-russia-disinformation Mon, 08 Jun 2026 17:10:00 +0000 AI & Security ★ The Record - Pashinyan's Civil Contract party won nearly 50% of Sunday's vote, defeating the pro-Russian Strong Armenia party led by Russian-Armenian billionaire Samvel Karapetyan, which received around 23% of the vote. https://therecord.media/whatsapp-says-nso-targeted-users-with-attacks-against-court-order https://therecord.media/whatsapp-says-nso-targeted-users-with-attacks-against-court-order Mon, 08 Jun 2026 16:51:00 +0000 AI & Security ★ The Record - WhatsApp said it is filing a federal court contempt order against NSO for violating a permanent injunction that bars it from mounting attacks against its users. https://www.darkreading.com/application-security/hades-campaign-pypi-shai-hulud https://www.darkreading.com/application-security/hades-campaign-pypi-shai-hulud Mon, 08 Jun 2026 16:13:41 +0000 Developer Security Dark Reading - The latest attacks, which hit 37 PyPI wheels and 19 code packages, show a continued evolution of the persistent software supply chain threat. https://dev.to/phalkmin/age-verification-is-coming-free-software-can-build-it-right-1lh5 https://dev.to/phalkmin/age-verification-is-coming-free-software-can-build-it-right-1lh5 Mon, 08 Jun 2026 14:27:34 +0000 Developer Security dev.to (security) - In December 2025, Australia became the first country to ban under-16s from social media. Ten... https://therecord.media/russia-upgrades-rules-for-digital-spy-system-sorm https://therecord.media/russia-upgrades-rules-for-digital-spy-system-sorm Mon, 08 Jun 2026 14:04:00 +0000 Policy, Legal & Industry ★ The Record - New regulations published by Russia's Ministry of Digital Development at the end of May updated the technical standards governing SORM, formally known as the System for Operative Investigative Activities. https://www.sans.org/newsletters/newsbites/xxviii-42 https://www.sans.org/newsletters/newsbites/xxviii-42 Fri, 05 Jun 2026 00:00:00 +0000 AI & Security SANS NewsBites - Courses Build cyber prowess with training from renowned experts Ways to Train Multiple training options to best fit your schedule and preferred learning style https://www.sans.org/newsletters/newsbites/xxviii-41 https://www.sans.org/newsletters/newsbites/xxviii-41 Tue, 02 Jun 2026 00:00:00 +0000 AI & Security SANS NewsBites - Courses Build cyber prowess with training from renowned experts Ways to Train Multiple training options to best fit your schedule and preferred learning style https://krebsonsecurity.com/2026/06/hackers-used-metas-ai-support-bot-to-seize-instagram-accounts/ https://krebsonsecurity.com/2026/06/hackers-used-metas-ai-support-bot-to-seize-instagram-accounts/ Mon, 01 Jun 2026 17:32:50 +0000 AI & Security ★ Krebs on Security - The Instagram accounts for the Obama White House and the Chief Master Sergeant of the U.S. Space Force were briefly defaced with pro-Iranian images and messages over the weekend, after instructions began circulating on Telegram showing how to trick Meta's "AI support. https://www.sans.org/newsletters/newsbites/xxviii-40 https://www.sans.org/newsletters/newsbites/xxviii-40 Fri, 29 May 2026 00:00:00 +0000 AI & Security SANS NewsBites - Courses Build cyber prowess with training from renowned experts Ways to Train Multiple training options to best fit your schedule and preferred learning style https://krebsonsecurity.com/2026/05/netherlands-seizes-800-servers-arrests-2-for-aiding-cyberattacks/ https://krebsonsecurity.com/2026/05/netherlands-seizes-800-servers-arrests-2-for-aiding-cyberattacks/ Mon, 25 May 2026 13:21:49 +0000 AI & Security ★ Krebs on Security - Authorities in the Netherlands have arrested the co-owners of two related Internet hosting companies for operating IT infrastructure used by Russia to carry out cyberattacks, influence operations and disinformation campaigns inside the European Union. The two men were the focus of a. https://krebsonsecurity.com/2026/05/lawmakers-demand-answers-as-cisa-tries-to-contain-data-leak/ https://krebsonsecurity.com/2026/05/lawmakers-demand-answers-as-cisa-tries-to-contain-data-leak/ Fri, 22 May 2026 16:34:24 +0000 Developer Security ★ Krebs on Security - Lawmakers in both houses of Congress are demanding answers from the U.S. Cybersecurity & Infrastructure Security Agency (CISA) after KrebsOnSecurity reported this week that a CISA contractor intentionally published AWS GovCloud keys and a vast trove of other agency secrets on a. https://www.sans.org/newsletters/newsbites/xxviii-39 https://www.sans.org/newsletters/newsbites/xxviii-39 Fri, 22 May 2026 00:00:00 +0000 Developer Security SANS NewsBites - Courses Build cyber prowess with training from renowned experts Ways to Train Multiple training options to best fit your schedule and preferred learning style https://krebsonsecurity.com/2026/05/alleged-kimwolf-botmaster-dort-arrested-charged-in-u-s-and-canada/ https://krebsonsecurity.com/2026/05/alleged-kimwolf-botmaster-dort-arrested-charged-in-u-s-and-canada/ Thu, 21 May 2026 21:50:25 +0000 Critical Infrastructure / OT ★ Krebs on Security - Canadian authorities on Wednesday arrested a 23-year-old Ottawa man on suspicion of building and operating Kimwolf, a fast spreading Internet-of-Things botnet that enslaved millions of devices for use in a series of massive distributed denial-of-service (DDoS) attacks over the past six months.. https://www.sans.org/newsletters/newsbites/xxviii-38 https://www.sans.org/newsletters/newsbites/xxviii-38 Tue, 19 May 2026 00:00:00 +0000 AI & Security SANS NewsBites - Courses Build cyber prowess with training from renowned experts Ways to Train Multiple training options to best fit your schedule and preferred learning style https://krebsonsecurity.com/2026/05/cisa-admin-leaked-aws-govcloud-keys-on-github/ https://krebsonsecurity.com/2026/05/cisa-admin-leaked-aws-govcloud-keys-on-github/ Mon, 18 May 2026 20:48:21 +0000 Developer Security ★ Krebs on Security - Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and a large number of internal CISA systems. Security experts said the public.