📡 NEWS PROCESSOR

pub-andromeda.oasis // 10000 artículos // v0.3
total: 10000
mostrando: 150
🥇 gold: 2282
✅ reliable: 5140
⚠️ mixed: 2218
🚫 caution: 360
96
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad ✓ 5 fuentes Tue, 07 Jul 2026 15:24:30
The flaw allows an unauthenticated attacker to craft a GitHub Issue in an org's public repository and then silently pull data from its private repos, too.
agrupados por: github · private · agentic · gitlost · leaking · workflows
87
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes 📊 datos Mon, 06 Jul 2026 17:00:02
Building a shortlist for an AI SOC evaluation can be tough. SIEM, SOAR, and pureplay AI SOC vendors are all saying the same thing. But behind the identical label sit very different products, from chat assistants bolted onto a legacy SIEM to agent platforms that run detection, triage, investigation, …
agrupados por: platform
97
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 9 fuentes 📊 datos Thu, 09 Jul 2026 01:42:49
Microsoft has released a security patch to address a Defender zero-day vulnerability known as "RoguePlanet," disclosed after the June 2026 Patch Tuesday. [...]
agrupados por: microsoft · rogueplanet · defender · patches · vulnerability · zero
96
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad ✓ 7 fuentes 📊 datos Thu, 09 Jul 2026 11:52:35
Affecting every major distribution since 2011, the Linux kernel vulnerability allows attackers to gain root access. The post 15-Year-Old Linux Vulnerability ‘GhostLock’ Earns Researchers $92k From Google appeared first on SecurityWeek.
agrupados por: ghostlock · google · vulnerability
90
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes Thu, 09 Jul 2026 12:51:06
Meta has announced that its new artificial intelligence (AI) model Muse Image lets people use public Instagram posts and reels to generate AI content, and it's enabled by default. "You can also @-mention Instagram accounts in the Meta AI app to bring specific Instagram profiles right into your imag…
agrupados por: instagram · meta · photos
88
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 5 fuentes Wed, 08 Jul 2026 16:51:07
An AI coding assistant that refuses to answer a dangerous request in its chat box can answer it anyway if the same request is broken into small, ordinary-looking steps inside a code editor. That is the finding of a new study of GitHub Copilot by researchers Abhishek Kumar and Carsten Maple. The mod…
agrupados por: code · copilot · github · harmful
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 14 fuentes Tue, 07 Jul 2026 17:00:00
Software supply chain security was hard enough. Then AI joined the build pipeline. For five years, "software supply chain security" meant one question: what's in your code? Which open-source packages, which versions, which transitive dependencies three layers deep that nobody chose on purpose? So…
68
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Tue, 07 Jul 2026 18:57:09
Cybersecurity researchers have disclosed details of a now-patched critical session isolation vulnerability in Writer, an enterprise generative artificial intelligence (AI) platform, that could result in cross-tenant compromise. The one-click vulnerability has been codenamed WriteOut by the Sand Sec…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 7 fuentes 📊 datos Tue, 07 Jul 2026 18:57:20
U.S. prosecutors linked an alleged Scattered Spider hacker to a break-in at a luxury jewelry retailer using a persistent Windows device ID, according to a newly unsealed federal complaint. Microsoft records tied that ID first to the account the attackers used to keep access during the May 2025 intr…
agrupados por: alleged · scattered · spider · extradited · hacker
96
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 7 fuentes 📊 datos Thu, 09 Jul 2026 10:39:51
A new phishing-as-a-service (PhaaS) operation called Forg365 focuses on stealing Microsoft 365 accounts by combining adversary-in-the-middle (AiTM) and device code methods with AI-assisted lure generation. [...]
agrupados por: accounts · microsoft · target
96
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad ✓ 11 fuentes 📊 datos Tue, 07 Jul 2026 20:36:43
Varonis reported the flaw to Google in late 2025 and it has been addressed, but it reminds defenders to take a fresh look at their AI Infrastructure security.
agrupados por: agent · dialogflow · flaw · rogue
81
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes Tue, 07 Jul 2026 22:40:15
A new Android malware operation called RedWing is being rented out on Telegram as a ready-made bank-fraud service. It lets even low-skill criminals take over a victim's phone, steal their banking logins, and capture the one-time codes that protect their accounts. Zimperium's zLabs, which found the …
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 8 fuentes 📊 datos Wed, 08 Jul 2026 11:03:12
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerabilities are listed below - CVE-2026-48282 (CVSS score: 10.0) - A path traversal vulnera…
agrupados por: actively · cisa · exploited
70
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes 📊 datos Wed, 08 Jul 2026 14:34:33
A Chinese threat actor tracked as UAT-7810 is actively refining its bespoke malware to expand its Operational Relay Box (ORB) network by breaking into internet-facing networking devices. According to findings from Cisco Talos, UAT-7810 is an advanced persistent threat (APT) actor that's responsible…
76
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Wed, 08 Jul 2026 17:00:00
For years, account takeover (ATO) followed a predictable script. Attackers bought stolen credentials in bulk, ran them through automated tools, and waited for matches. Credential stuffing was cheap, scalable, and for defenders, relatively well understood. That era is ending. Not because attackers g…
52
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Wed, 08 Jul 2026 17:21:24
New research shows that a signed Git commit's hash is not the one-of-a-kind name that much of the software world assumes it to be. Given any signed commit, someone without the signing key can mint a second commit with the same files, author, and date, and a valid signature, GitHub still stamps "Veri…
86
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes Wed, 08 Jul 2026 18:22:15
A new banking fraudulent operation is targeting customers of Mexican banks, fintech, payment processors, and cryptocurrency exchanges using ClickFix lures. The activity cluster, tracked by Elastic Security Labs under the moniker REF6045, involves infecting victims through fake CAPTCHA verification …
82
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes Wed, 08 Jul 2026 18:30:00
A recent EvilTokens campaign targeting businesses across the US and Europe is exposing a new email security blind spot. This “ghost phishing” technique keeps the malicious page hidden until it decrypts and comes to life inside the victim’s browser. For security leaders, the risk is clear: tradition…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 8 fuentes 📊 datos Wed, 08 Jul 2026 20:08:05
Ubiquiti has shipped updates to address multiple critical security flaws impacting UniFi Connect, UniFi Talk, UniFi Access, UniFi Protect, and UniFi OS that could result in privilege escalation and arbitrary command execution. The list of vulnerabilities is as follows - CVE-2026-50746 (CVSS sco…
91
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes Wed, 08 Jul 2026 20:37:24
AI coding assistants have a habit of making things up. Ask one to fetch a popular tool, and it will sometimes hand back a real-sounding name for a project that does not exist. New research, which its authors call HalluSquatting, turns that habit into an attack: work out the fake names an AI reliabl…
94
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 6 fuentes Wed, 08 Jul 2026 22:32:12
Sophos looked at a week of its own endpoint data and found that AI coding agents such as Claude Code, Cursor, and OpenAI Codex are setting off detection rules written to catch human intruders. The agents are not malicious. They just do a lot of things that, to a behavioral engine, look exactly like…
95
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad ✓ 13 fuentes Fri, 03 Jul 2026 08:13:22
NetNut rented access to millions of compromised devices, allowing cybercriminals and nation-state actors to mask their identities during attacks. The post Google, FBI Disrupt NetNut Residential Proxy Network Powered by Millions of Devices appeared first on SecurityWeek.
agrupados por: devices · proxy · residential
95
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 8 fuentes Thu, 09 Jul 2026 09:57:18
Researchers at Wiz found that a flaw in six popular AI coding assistants lets a booby-trapped code project quietly take control of a developer's computer. The assistant asks permission to edit one harmless-looking file, but the write lands on a sensitive one instead. The affected tools are Amazon Q…
agrupados por: agents · code · coding
85
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes Thu, 09 Jul 2026 10:45:02
Ask an AI coding agent to scan open-source code for security holes, and it might run the attacker's code on your own machine instead. That is the finding in a proof-of-concept published Wednesday by the AI Now Institute, an attack it calls "Friendly Fire." It works against Anthropic's Claude Code a…
77
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad ✓ 2 fuentes Thu, 09 Jul 2026 10:00:00
Microsoft signed a malicious kernel driver, and now it's being used to kill security software in ransomware attacks.
agrupados por: goddamn · ransomware · uses
60
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Thu, 09 Jul 2026 16:30:00
Everyone seems to have announced a clearinghouse over the past few weeks. We did too. Ours is called Athena, and the main thing that sets it apart is that it was already real and running when we announced it — built quietly months earlier, heads down, taking findings and shipping fixes, because cust…
84
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 2 fuentes Thu, 09 Jul 2026 17:56:58
AI has changed how fast attacks move. Work that once took an attacker days now takes minutes. Using models like Mythos, attackers write tailored bait, pick targets, test what lands, and jump to the next host before your team clears the first alert. That is the gap, and it is not your fault. The too…
69
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Thu, 09 Jul 2026 20:39:28
Most security mess starts as admin work. A link gets clicked. A tool gets trusted. A bucket name gets reused. A setting stays loose because nobody wants to touch it. This week is full of that kind of damage. Not loud. Not clever. Just small gaps doing big jobs. The worst part is how normal it all l…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 13 fuentes 📊 datos Thu, 09 Jul 2026 22:19:02
GitHub has officially announced the release of npm version 12 with install scripts disabled by default, along with deprecating granular access tokens (GATs) designed to bypass two-factor authentication (2FA). The Microsoft-owned subsidiary noted that the following npm install behaviors that used to…
81
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 2 fuentes Thu, 09 Jul 2026 23:38:07
Microsoft has taken apart a destructive Windows backdoor it calls GigaWiper. What stands out is how it is built: not one tool but three older destructive programs bolted into one, offered as commands the operator can choose from. Each is a different way to break a machine: wipe the whole disk, over…
76
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Fri, 10 Jul 2026 00:08:49
Datadog Security Labs is warning of "several overlapping campaigns" that are systematically enumerating corporate GitHub organizations, repositories, and user accounts through the GitHub API. "Operators rely on automated scraping tooling with custom or legitimate-sounding user agents, leveraging Gi…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 15 fuentes 📊 datos Mon, 06 Jul 2026 23:07:01
A use-after-free bug in Linux's KVM hypervisor can be triggered from a guest virtual machine to corrupt the shadow-page state of the host kernel that runs it. Dubbed 'Januscape' and tracked as CVE-2026-53359, the flaw sits in the shadow MMU code that KVM shares across both Intel and AMD. The public…
agrupados por: escape · guest · host
92
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes 📎 bien sourced Fri, 03 Jul 2026 19:06:33
A previously undocumented threat actor known as Armored Likho has been attributed to cyber attacks targeting government agencies and the electric power sector across Russia, Brazil, and Kazakhstan. "Armored Likho blends financially motivated campaigns targeting private individuals with targeted cyb…
agrupados por: armored · government · likho · power
70
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Mon, 06 Jul 2026 12:03:56
Scanners meant to catch malicious add-on "skills" for AI coding agents can be fooled by a few simple changes that leave the malware working, according to a new study from researchers at the Hong Kong University of Science and Technology. Their strongest trick slipped past every scanner tested more …
85
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 2 fuentes Mon, 06 Jul 2026 12:57:50
Researchers found a flaw in Opera GX, the gaming-focused version of the Opera browser, that let a malicious website silently install a browser add-on and use it to lift specific data from the pages a victim visits. In a proof of concept, they reconstructed a signed-in user's full Gmail address from…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 10 fuentes 📊 datos Mon, 06 Jul 2026 13:43:33
Cybersecurity researchers have flagged a novel Java-based remote access trojan (RAT) called QuimaRAT that's capable of targeting Windows, Linux, and macOS environments. According to LevelBlue, the cross-platform malware is advertised under a malware-as-a-service (MaaS) model, costing anywhere betwe…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 7 fuentes Mon, 06 Jul 2026 14:20:54
Researchers at Shandong University have shown a fast new way to pull data off computers that are cut off from every network. The technique, called TrojPix, tweaks on-screen pixels in ways the eye cannot see, so that the video cable carrying them radiates a faint radio signal a nearby receiver can de…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 7 fuentes Mon, 06 Jul 2026 16:28:16
A suspected China-nexus threat activity cluster has been observed targeting Indian taxpayers, tax professionals, and corporate finance teams to deliver a remote access trojan designed to steal sensitive data from compromised hosts. The multi-stage campaign, codenamed Operation DragonReturn by Seqri…
88
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes Mon, 06 Jul 2026 18:31:14
A streaming box should not need a threat model. Neither should a username field, a demo repo, a reset flow, or a browser permission prompt. That is the irritating part this week: the risky pieces were ordinary. Home devices became a routing cover. Clean code pulled dirt from a dependency. Identity …
89
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes 📊 datos Mon, 06 Jul 2026 21:58:59
Threat actors have been observed attempting to exploit a recently patched critical security flaw in Gitea Docker images, according to Sysdig. The vulnerability in question is CVE-2026-20896 (CVSS score: 9.8), a vulnerability that stems from the DevOps platform trusting the "X-WEBAUTH-USER" header f…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 24 fuentes Tue, 07 Jul 2026 00:04:26
An Iranian hacking group affiliated with Iran's Ministry of Intelligence and Security (MOIS) has been wielding a previously undocumented modular command-and-control (C2) framework dubbed Cavern (aka Cav3rn) targeting Israeli organizations. The activity, which has primarily singled out IT providers …
80
fiabilidad
Hacker News (YC) MIXED 5.5 tecnología ✓ 3 fuentes 📊 datos Fri, 03 Jul 2026 20:38:26
Article URL: https://citizenlab.ca/research/member-of-committee-investigating-spyware-hacked-with-pegasus/ Comments URL: https://news.ycombinator.com/item?id=48779683 Points: 399 # Comments: 105
agrupados por: european · parliament
68
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Sat, 04 Jul 2026 01:49:31
Security firm runZero has disclosed seven vulnerabilities in FatFs, a small filesystem library that lets a device read and write the FAT and exFAT formats used on USB drives and SD cards. The flaws matter because FatFs is nearly everywhere. It ships inside the firmware that runs security cameras, d…
94
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 11 fuentes 📊 datos Sat, 04 Jul 2026 16:47:24
The North Korean threat actors linked to the Contagious Interview campaign have been observed publishing 108 unique packages and web browser extensions spanning npm, Packagist, Go, and Google Chrome as part of an ongoing activity referred to as PolinRider. "The campaign remains active, and new mali…
97
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 13 fuentes 📊 datos Sat, 04 Jul 2026 18:17:53
A U.S. government entity paid about $1 million to keep stolen files from being leaked, according to a new case study by Rakesh Krishnan for Ransom-ISAC, built on a leaked negotiation chat and the blockchain trail the payment left. The odd part: the group that took the money calls itself Kairos, but…
95
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 8 fuentes Thu, 02 Jul 2026 13:30:49
The recently discovered financially-motivated FortiBleed campaign has been attributed to INC and Lynx ransomware operations, indicating that the verified, stolen credentials were intended for follow-on intrusions. "An operator tied to FortiBleed's infrastructure was found actively working negotiati…
agrupados por: fortibleed · lynx · ransomware · linked
94
fiabilidad
The Register RELIABLE 7.5 tecnología ✓ 6 fuentes Thu, 02 Jul 2026 20:05:50
Don't count on the LLM to return your data - even if you pay up
agrupados por: attack · ransomware · agentic · langflow
90
fiabilidad
The Register RELIABLE 7.5 tecnología ✓ 4 fuentes Thu, 02 Jul 2026 16:40:30
Attackers need little more than a valid SharePoint account to execute code on vulnerable on-prem servers
agrupados por: added · cisa · exploitation · sharepoint
96
fiabilidad
The Register RELIABLE 7.5 tecnología ✓ 7 fuentes 📊 datos Fri, 03 Jul 2026 14:03:00
Other residential proxy brands may rely on the same network
agrupados por: google · million · netnut
75
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 2 fuentes Thu, 02 Jul 2026 12:54:23
Attackers are hiding a data-stealing trojan inside fake exploit code aimed at the people who hunt bugs for a living. The malware, called ChocoPoC, travels in Python proof-of-concept (PoC) repositories on GitHub that claim to exploit hot new CVEs. Run one, and it quietly lifts your saved passwords, …
61
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Thu, 02 Jul 2026 17:00:00
Identity lifecycle management was architected around a person with an employment record, a manager, and a departure date. AI agents have none of those. As autonomous principals proliferate across enterprise environments, the governance model built for humans develops structural blind spots that trad…
88
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes Thu, 02 Jul 2026 18:34:13
The threat actor known as ToddyCat has been attributed to a new malware called Umbrij that's designed to gain surreptitious access to a victim's email correspondence via the Google API. "In this campaign, the attackers focused their attention on corporate email communications hosted on Gmail, targe…
97
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 7 fuentes Thu, 02 Jul 2026 20:54:18
This week’s security news is mostly about weak spots. Browsers, bots, sandboxes, AI systems, and email flows all show the same problem in different ways. Everything looks normal until someone tests a small gap and finds a way through. This is not one big break. It is small permissions, weak checks…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 16 fuentes 📊 datos Fri, 03 Jul 2026 00:00:33
Threat actors associated with the Anubis ransomware operation have been observed exploiting the Citrix Bleed 2 (CVE-2025-5777) vulnerability to obtain initial access. "Although tactics differ between affiliates, common patterns emerged in tradecraft through use of legitimate Remote Management and M…
72
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 2 fuentes Fri, 03 Jul 2026 13:33:37
Cybersecurity researchers have flagged a new macOS information stealer called PamStealer that employs a series of clever tricks to infect systems and siphon sensitive data. The stealer, discovered by Jamf Threat Labs, is distributed as a compiled AppleScript (.scpt) file impersonating Maccy, a legi…
98
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 35 fuentes 📎 bien sourced Fri, 03 Jul 2026 21:37:15
Threat actors with ties to North Korea have been linked to a fresh set of malicious npm packages that masquerade as Rollup polyfill tooling to facilitate remote access and data theft. According to JFrog, the packages "rollup-packages-polyfill-core" and "rollup-runtime-polyfill-core" mimic the legit…
62
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Sat, 04 Jul 2026 00:25:24
Cybersecurity researchers have discovered a previously undocumented modular malware framework codenamed Avalon that's distributed by means of a multi-stage phishing chain capable of bypassing traditional security controls. Avalon combines credential collection, lateral movement, remote access, reco…
95
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 14 fuentes 📊 datos Sat, 04 Jul 2026 01:10:01
A newly disclosed Linux kernel flaw called Bad Epoll (CVE-2026-46242) lets an ordinary user with no special access take full control of a machine as root. It affects Linux desktops, servers, and Android, and a fix is out. Bad Epoll sits in the same small stretch of kernel code where Anthropic's mos…
75
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 2 fuentes Wed, 01 Jul 2026 22:48:50
Cybersecurity researchers have flagged a new multi-stage malware delivery attack chain that uses social engineering and Blogger pages to deliver an information stealer called PureLogs. The activity has been codenamed VEIL#DROP by Securonix. It's suspected that the initial payloads are distributed e…
74
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Wed, 01 Jul 2026 23:23:06
Unknown threat actors are leveraging the ScreenConnect remote access tool as a way to deploy and execute AsyncRAT. Kaspersky said the activity is part of a "massive, multi-domain, multi-language" campaign that distributes malicious installer archives hosted on spoofed websites. These installers ma…
82
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 2 fuentes 📊 datos Thu, 02 Jul 2026 00:58:07
A teenager accused of belonging to the hacking group Scattered Spider has been extradited from Finland to face U.S. charges of conspiracy, computer intrusion, and fraud, the U.S. Department of Justice announced on July 1. Peter Stokes, 19, a dual U.S. and Estonian citizen, appeared in a Chicago fed…
90
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 5 fuentes Thu, 02 Jul 2026 01:10:06
Argo CD, a widely used tool for deploying software to Kubernetes, has an unpatched flaw in its repo-server component that lets an unauthenticated attacker run code, provided they can reach the component's internal network port. Synacktiv, which found the bug, says it can lead to a full cluster take…
92
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 5 fuentes 📊 datos Mon, 29 Jun 2026 17:27:40
New findings unearthed by Infoblox show that more than 236,000 websites are using investment scam templates built using a legitimate Chinese open-source, cross-platform application development framework called DCloud Uni-App. The templates power bogus cryptocurrency exchanges, multi-language pig-bu…
98
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 10 fuentes 📎 bien sourced Mon, 29 Jun 2026 20:11:07
This week was a reminder that attackers do not always need big tricks. One small mistake, one old access path, one missed patch, and suddenly the door is open. The noise is not all noise, either. Forums are talking, researchers are finding easy cracks, and defenders have more cleanup waiting. Here…
93
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 5 fuentes Mon, 29 Jun 2026 20:33:40
The China-aligned espionage group Mustang Panda is running two campaigns against the Indian government and hydropower targets, deploying new malware and turning a legitimate cloud service into its command channel. Acronis Threat Research Unit found active compromises inside Indian government networ…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 8 fuentes 📊 datos Mon, 29 Jun 2026 21:00:00
Apple on Monday released security updates for iOS, macOS, and the Safari web browser to address over three dozen flaws, including four vulnerabilities in WebKit that were discovered using artificial intelligence (AI) tools like Anthropic Claude and OpenAI Codex Security. The WebKit vulnerabilities …
68
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Mon, 29 Jun 2026 21:10:00
Microsoft has found a malicious Chrome extension that posed as the AI search engine Perplexity and quietly logged what people searched for. It routed every query and every character typed into the address bar through an attacker-controlled server before redirecting users to real results. Microsoft …
79
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes Mon, 29 Jun 2026 21:39:21
WhatsApp on Monday officially announced the start of global reservations of usernames with an aim to protect the privacy of more than three billion users on the messaging platform. The optional feature is designed to help users connect with someone on the service through usernames, as opposed to di…
95
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 15 fuentes 📊 datos Tue, 30 Jun 2026 10:34:06
A critical security flaw impacting Oracle E-Business Suite has come under active exploitation in the wild, according to Defused Cyber. The vulnerability, tracked as CVE-2026-46817 (CVSS score: 9.8), refers to an improper privilege management and authentication flaw in Oracle Payments that could be …
91
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 5 fuentes 📊 datos Tue, 30 Jun 2026 13:08:07
A critical vulnerability in Progress Kemp LoadMaster can let an unauthenticated attacker execute arbitrary commands as root on the appliance by sending a crafted request to its API. The flaw, tracked as CVE-2026-8037, carries a CVSS score of 9.8 according to ZDI. A patch is available. If you run Lo…
74
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 2 fuentes Tue, 30 Jun 2026 14:07:19
Convince an AI browser that it is playing a game, and it can hand over your login details. That is the finding behind BioShocking, a technique from security firm LayerX that tricked six AI browsers and assistants into copying a user's credentials and sending them to an attacker. The targets include…
72
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Tue, 30 Jun 2026 14:57:58
Two researchers have found six security flaws in AirDrop and Quick Share, the wireless features that beam files between nearby devices with no cables or shared network. An attacker within wireless range, with just a laptop and no prior connection, can crash the sharing service on a Mac or iPhone se…
71
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad 📊 datos Tue, 30 Jun 2026 16:48:47
An unknown threat actor has been observed exploiting a recently disclosed maximum-severity security flaw in SimpleHelp to deliver two previously unreported malware families, TaskWeaver and Djinn Stealer. The intrusion involves the exploitation of CVE-2026-48558 (CVSS score: 10.0), a critical authen…
95
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 12 fuentes 📊 datos Tue, 30 Jun 2026 17:00:00
The FIFA World Cup 2026 opened on June 11. By that date, according to Check Point Research, the fraud infrastructure targeting it had already been built, staged, and partially deployed. Threat actor activity was pre-planned, months out, across three sectors and at least ten languages. Check Point E…
82
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes 📊 datos Tue, 30 Jun 2026 19:19:34
Researchers tested 444 AI chatbot apps for iPhone and found that 282 of them, nearly two-thirds, exposed paid AI access through their network traffic. In many cases, the path in was visible just by watching what the app sent: a plaintext API key, a reusable token, or a backend server that accepted …
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 35 fuentes Tue, 30 Jun 2026 19:56:15
The safety check that is supposed to stop an AI coding agent from running a dangerous command can be walked straight past using a shell trick that has been public for decades. New research from Adversa AI, which is named the bypass GuardFall, found it works against ten of the eleven popular open-so…
98
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 9 fuentes 📎 bien sourced Tue, 30 Jun 2026 21:10:18
Cybersecurity researchers have flagged an active browser extension campaign that is designed to steal cryptocurrency by stealthily replacing wallet addresses when unsuspecting users initiate a transaction. The cryptocurrency clipper activity has been codenamed Silent Swap by McAfee Labs. "The camp…
64
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad 📊 datos Tue, 30 Jun 2026 21:17:20
Threat actors are continuing to exploit a critical Langflow vulnerability as part of fresh attacks designed to deliver a Monero cryptocurrency miner. The activity has been found to weaponize CVE-2026-33017 (CVSS score: 9.3), an unauthenticated remote code execution (RCE) vulnerability in Langflow, …
62
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Tue, 30 Jun 2026 23:15:25
A new two-stage malware family called RustDuck is hijacking home routers, IP cameras, Android boxes, and poorly secured servers, then stitching them into a network built to knock websites and online services offline. Researchers at QiAnXin's XLab have tracked it since February 2026, and say the rea…
95
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 11 fuentes Tue, 30 Jun 2026 23:16:07
New Microsoft research shows how attackers can hijack AI agents that act on a user's behalf, using nothing more than a poisoned tool description to make the agent quietly hand over company data to an outsider. The trick is that the agent never breaks a rule. Every step looks routine, so in a defaul…
77
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes 📊 datos Wed, 01 Jul 2026 09:24:22
Citrix on Tuesday released security updates to address multiple flaws in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway) that could be exploited by an attacker to facilitate arbitrary file reads or trigger a denial-of-service (DoS) condition. The vulnerabilities …
77
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Wed, 01 Jul 2026 11:02:12
ClickFix, the trick that fools people into running malware by hand, has quietly grown a back office. New research shows the malicious commands behind its fake "prove you're human" pages are now handed out by API-driven servers that give each visitor the same malware in a different disguise. The sam…
97
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 8 fuentes 📊 datos Wed, 01 Jul 2026 11:16:03
Cybersecurity researchers have warned of a "massive, ongoing, automated password spray attack" aimed at Microsoft's Azure command-line interface (CLI), compromising dozens of accounts in the process. The activity, per Huntress, originates from an IPv6 address range (2a0a:d683::/32) controlled by in…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 61 fuentes 📊 datos Wed, 01 Jul 2026 12:16:17
Anthropic is putting Claude Fable 5 back online worldwide. On June 30, the U.S. Commerce Department lifted the export controls it had imposed on Fable and its more tightly controlled sibling Mythos 5 about two and a half weeks earlier. Fable 5 returns to users on Wednesday, July 1, across Claude.ai…
70
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Wed, 01 Jul 2026 12:50:51
Large language models keep inventing web addresses that do not exist. Attackers have started buying those made-up domains before anyone else can, then hosting phishing pages on them to catch traffic that AI tools point their way. Palo Alto Networks' Unit 42 calls the trick phantom squatting, and it…
94
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes 📎 bien sourced Wed, 01 Jul 2026 16:11:36
Microsoft on Tuesday said it's accelerating its quantum safe security roadmap, stating technology advances in quantum computing are making it essential to replace existing encryption standards sooner than previously expected. "Advances in quantum research and development have shifted the risk horiz…
82
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad 📊 datos Wed, 01 Jul 2026 17:00:00
Organizations have never had greater awareness of cyber risk. Yet turning that awareness into operational resilience has never been more challenging. The 2026 Bitdefender Cybersecurity Assessment confirms this is the case, as this year's findings reveal a series of surprising contradictions. Here a…
81
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 2 fuentes Wed, 01 Jul 2026 18:29:19
Cybersecurity researchers have flagged a new malware artifact generated using DeepSeek that constructed a novel attack path combining "unrealistic browser-malware concepts with a real browser capability" to turn it into a working ransomware technique that runs entirely inside the browser on both Win…
75
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 2 fuentes 📊 datos Wed, 01 Jul 2026 19:26:18
A recently disclosed critical security flaw impacting Progress Kemp LoadMaster is seeing active exploitation attempts, according to an advisory from eSentire's Threat Response Unit (TRU). The Canadian cybersecurity company said it identified exploitation attempts targeting CVE-2026-8037 (CVSS score…
92
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 5 fuentes 📊 datos Wed, 01 Jul 2026 20:12:54
Two flaws in Cursor, an AI code editor, could let a single, ordinary-looking prompt break out of the editor's safety sandbox and run any command on a developer's computer. There is no click to fall for and no approval box to ignore. Cato AI Labs found the pair and named them DuneSlide. They are tra…
91
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes 📊 datos Wed, 01 Jul 2026 20:55:46
Adobe has released patches for multiple maximum-severity security flaws impacting Adobe ColdFusion and Adobe Campaign Classic. The ColdFusion updates "resolves critical and important vulnerabilities that could lead to arbitrary code execution, privilege escalation, arbitrary file system read, and s…
86
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes Wed, 01 Jul 2026 20:56:55
A Brazilian banking trojan called Ousaban is going after Windows users who bank in Spain and Portugal. Fortinet's FortiGuard Labs identified the campaign in May 2026. It opens with a phishing PDF disguised as a corrupted file, checks that the visitor is really in Spain or Portugal, and hides its re…
94
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes 📎 bien sourced 📊 datos Tue, 23 Jun 2026 19:52:03
GitHub is moving to strengthen software supply chain security by updating "actions/checkout" to block pwn request attacks that exploit the risky use of the "pull_request_target workflow" trigger to run malicious code with the workflow's full privileges. Effective June 18, 2026, the latest version o…
95
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 31 fuentes 📊 datos Tue, 23 Jun 2026 20:46:40
President Trump signed an executive order on June 22 setting hard deadlines for federal agencies to move high-value assets and high-impact systems to post-quantum cryptography. Key establishment must move by December 31, 2030; digital signatures by December 31, 2031. EO 14409 leaves national securi…
51
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad 🔮 especulativo 📊 datos Tue, 23 Jun 2026 20:46:43
Security firm AIR built a fake AI agent skill, pushed it through a popular skill marketplace and an Instagram ad, and says it reached roughly 26,000 agents, including some on corporate accounts. Every skill security scanner the firm tested it against marked it safe. The payload was harmless by desi…
80
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 2 fuentes 📊 datos Tue, 23 Jun 2026 23:50:49
A Russian-speaking initial access broker (IAB) driven by financial gain is assessed to be behind a large-scale credential-harvesting operation known as FortiBleed that has targeted over 430,000 FortiGate firewalls globally. The campaign, active since February 2026, involves collecting credential li…
95
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 15 fuentes 📊 datos Wed, 24 Jun 2026 12:20:38
Threat actors have begun to exploit a recently disclosed critical security flaw impacting Cisco Unified Communications Manager (Unified CM) and Unified Communications Manager Session Management Edition (Unified CM SME). The vulnerability, tracked as CVE-2026-20230 (CVSS score: 8.6), is a case of im…
95
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 8 fuentes Wed, 24 Jun 2026 14:25:12
The U.S. Department of Justice (DoJ) on Tuesday announced the seizure of a cloud computing account put to use by subsidiaries of Cambodia-based corporate conglomerate HuiOne Group, as the Treasury unveiled fresh sanctions against nine individuals and 26 entities linked to Prince Group. "These subsi…
59
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Wed, 24 Jun 2026 17:00:00
We are standing at the end of an era we never thought to mourn: the era of human-speed threats. For years, cybersecurity moved to a rhythm organizations could follow. A researcher found a bug, a CVE was cataloged, a vendor navigated a patch cycle, and weeks or even months later, a fix was deployed.…
97
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 18 fuentes Wed, 24 Jun 2026 18:18:11
Cybersecurity researchers have flagged a new class of CI/CD workflow weakness that allows attackers to hijack workflows and compromise open-source supply chains. The "critical exploitable pattern" has been codenamed Cordyceps by Novee Security. The issue can allow full attacker control of repositor…
83
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Wed, 24 Jun 2026 21:29:50
A coordinated law enforcement operation, in partnership with private sector companies, including Bitdefender, Bitsight, ESET, and Microsoft, has resulted in the takedown of criminal infrastructure powering Amadey and StealC. "The main common goal was to disrupt the 'assembly lines' cybercriminals u…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 22 fuentes 📊 datos Wed, 24 Jun 2026 22:49:18
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday warned of active exploitation of a critical security flaw impacting Lantronix EDS5000 Series devices, urging Federal Civilian Executive Branch (FCEB) agencies to apply the fixes by June 26, 2026. The vulnerability in questi…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 16 fuentes 📊 datos Thu, 25 Jun 2026 11:16:54
An unknown threat actor exploited a recently disclosed high-severity security flaw impacting Cisco Catalyst SD-WAN as a zero-day at least two months before it was publicly disclosed, according to new findings from Google-owned Mandiant. The vulnerability, tracked as CVE-2026-20245 (CVSS score: 7.8)…
74
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Thu, 25 Jun 2026 14:24:37
A new, stealthy backdoor named Mistic has been deployed as part of suspected financially motivated attacks aimed at multiple organizations spanning insurance, education, IT, and professional services sectors since April 2026. According to Symantec and Carbon Black's Threat Hunter Team, the backdoor…
85
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes Thu, 25 Jun 2026 14:53:03
A previously undocumented Rust-based macOS implant and information stealer has been found to embed a prompt injection payload designed to trick a malware analyst's artificial intelligence (AI) tools and trick it into aborting or refusing an analysis of the artifact. The malware has been codenamed G…
61
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Thu, 25 Jun 2026 16:47:31
Despite the abundance of telemetry at analysts’ disposal, many security operations teams struggle to answer a few basic questions during incident investigation: What happened? What evidence do we have? How do we know we’re seeing it all, in context? Answering these questions requires teams to go be…
86
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad 📎 bien sourced 📊 datos Thu, 25 Jun 2026 17:54:43
It’s dumb out there again. This week has the usual smell of prod on fire and nobody wanting to admit who left the door open — old creds still working, trusted apps doing sketchy crap, browser tricks jumping the fence, and “normal” workflows turning into phishing pipes because apparently email was n…
61
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Thu, 25 Jun 2026 19:42:52
An analysis of a popular Google Chrome ad block extension for YouTube has uncovered the ability to execute arbitrary JavaScript code. According to Island, the extension, named Adblock for YouTube (ID: cmedhionkhpnakcndndgjdbohmhepckk), has more than 10 million installs and carries a Featured badge …
94
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 14 fuentes Fri, 26 Jun 2026 12:45:46
The Russian state-sponsored threat actor known as Turla has been attributed to a previously undocumented .NET backdoor called STOCKSTAY that has been deployed against government and military organizations in Ukraine, and entities that have an interest in Italian foreign policy. Describing the Windo…
97
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 7 fuentes 📊 datos Fri, 26 Jun 2026 14:19:35
Russian authorities used Cellebrite's UFED forensic tools to break into the iPhone of detained opposition activist Andrey Pivovarov in June 2021, three months after Cellebrite said it would stop selling its tools and services to Russia and Belarus. The finding, published June 25 by the Citizen Lab,…
58
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Fri, 26 Jun 2026 14:57:12
An active phishing campaign has been targeting hotel and other hospitality organizations across Europe and Asia since April 2026, using photo-themed ZIP files to drop a Node.js implant and dig into front-desk machines, Microsoft says. The company has not attributed the activity to a known threat ac…
95
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 36 fuentes Fri, 26 Jun 2026 16:35:45
Cybersecurity researchers have flagged yet another evolution of the supply chain attack linked to the Mini Shai-Hulud, Miasma, and Hades malware family that has compromised a new set of npm packages, even as it has propagated to the Go ecosystem. "The latest activity includes malicious npm releases…
88
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes Fri, 26 Jun 2026 17:00:00
AI agents are moving through enterprise environments, inheriting permissions, traversing systems, and executing decisions at machine speed with minimal oversight. The identity infrastructure built to govern human access wasn't designed for autonomous actors, and the gap between what enterprises are …
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 15 fuentes 📊 datos Fri, 26 Jun 2026 17:21:35
DirtyClone is a new Linux kernel privilege escalation in the DirtyFrag family. JFrog Security Research published a working exploit walkthrough for the flaw on June 25, the first public demonstration for this variant. Tracked as CVE-2026-43503 (CVSS 8.8), it lets a local user corrupt file-backed mem…
95
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 25 fuentes Fri, 26 Jun 2026 18:01:56
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a critical remote code execution vulnerability impacting PTC Windchill PDMlink and PTC FlexPLM enterprise Product Data Management (PDM) and Product Lifecycle Management (PLM) software to its Known Exploited Vulnerabil…
91
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 5 fuentes 📊 datos Fri, 26 Jun 2026 19:23:00
A high-severity flaw in Amazon Q Developer let a malicious repository run commands and steal a developer's cloud credentials. The path was short: a developer opens the repo, trusts the workspace, and Amazon Q does the rest. Amazon has patched it. Tracked as CVE-2026-12957 (CVSS 8.5), the bug sat in…
84
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 2 fuentes 📊 datos Fri, 26 Jun 2026 19:27:55
A flaw in the Linux kernel's traffic-control subsystem can let a local unprivileged user gain root on affected systems. CVE-2026-46331, nicknamed "pedit COW," is an out-of-bounds write in the packet-editing action (act_pedit) that corrupts shared page-cache memory. A public, working exploit appeare…
95
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 14 fuentes Fri, 26 Jun 2026 21:51:25
A Chinese-speaking advanced persistent threat (APT) actor has been linked to a new custom backdoor called TinyRCT as part of cyber attacks aimed at government entities and critical infrastructure in Southeast Asia. The activity, particularly aimed at state-owned enterprises in the energy and govern…
79
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Fri, 26 Jun 2026 23:47:46
A newly discovered cyber attack campaign has been observed delivering a previously undocumented malware family called SharkLoader that acts as a loader for deploying Cobalt Strike Beacon on compromised hosts. Kaspersky, which is tracking the activity under the moniker StrikeShark, said the campaign…
95
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 8 fuentes Sat, 27 Jun 2026 01:08:29
The FBI and CISA have updated their March warning about Russian intelligence phishing Signal accounts, and the operators have added a step: they now coax targets into handing over their Signal Backup Recovery Key. Hand it over once, and the attacker can restore the account's backup, read the privat…
71
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad 📊 datos Sat, 27 Jun 2026 17:49:37
OpenAI on Friday released three versions of GPT-5.6, called Sol, Terra, and Luna, as a limited preview to a small number of companies as part of an ongoing engagement with the U.S. government. While Sol is the latest flagship model and the most powerful, Terra strikes a balance between efficiency a…
97
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 53 fuentes Sat, 27 Jun 2026 22:57:11
The Security Service of Ukraine (SSU) said it, together with the U.S. Federal Bureau of Investigation (FBI), uncovered a long-running campaign orchestrated by Russian intelligence services to break into the messaging accounts of government officials, military personnel, politicians, and activists in…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 24 fuentes 📊 datos Wed, 17 Jun 2026 11:20:46
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a maximum-severity security flaw impacting Widget Factory Joomla Content Editor (JCE) to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-202…
91
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes 📊 datos Wed, 17 Jun 2026 13:08:24
As many as 145 npm packages associated with the Mastra namespace ("@mastra/*"), a popular open-source JavaScript and TypeScript framework for building artificial intelligence (AI) applications, have been compromised as part of a software supply chain attack codenamed easy-day-js, per findings from E…
72
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad 📊 datos Wed, 17 Jun 2026 16:00:00
Breaches don't always start with a zero-day. An exposed admin panel can get brute-forced, or credentials reused from a previous attack. But when a vulnerability does drop — like MongoBleed earlier this year, which let attackers pull credentials and session tokens from server memory without authentic…
84
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Wed, 17 Jun 2026 19:21:58
Cybersecurity researchers have flagged a "coordinated malware campaign" on the JetBrains Marketplace that has published no less than 15 malicious plugins capable of exfiltrating artificial intelligence (AI) provider keys. "Every plugin poses as an AI coding assistant built on DeepSeek and other lar…
64
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Wed, 17 Jun 2026 20:28:00
For security teams, the findings never stop, but confidence in knowing which ones matter is becoming harder to maintain. The problem is no longer visibility. It's validation. Security teams must decide which findings warrant action while operating under constant pressure and incomplete information.…
68
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Wed, 17 Jun 2026 21:30:56
A French-speaking attacker broke into a small French automotive business, planted a keylogger, and stole banking and email credentials. Ordinary stuff, until one move near the end. Before his command-and-control server went dark, he installed OpenSSH and Tailscale on a victim's machine, building a…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 11 fuentes 📊 datos Wed, 17 Jun 2026 23:06:28
Microsoft has formally disclosed that it's working to release a patch to address a Defender zero-day codenamed RoguePlanet. The vulnerability has now been assigned the CVE identifier CVE-2026-50656 (CVSS score: 7.8), with the tech giant describing it as a privilege escalation flaw. "Microsoft is a…
75
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes Wed, 17 Jun 2026 23:44:24
An unknown threat actor has been observed leveraging paid or promoted posts on legitimate news websites to drum up buzz for their warez, according to new findings from Check Point Research. The threat actor also has at their disposal a dedicated WordPress phishing page that acts as the central hub,…
72
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 2 fuentes Thu, 18 Jun 2026 19:00:07
Threat actors associated with the DragonForce ransomware have been observed using a custom Go-based remote access trojan (RAT) called Backdoor.Turn to conceal command-and-control (C2) traffic inside Microsoft Teams relay infrastructure. According to findings from Broadcom-owned Symantec and Carbon …
60
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Thu, 18 Jun 2026 19:28:39
An independent PCI assessor tested Reflectiz against the new PCI DSS rules. Here is the verdict: See the full QSA assessment here → When a customer types their card number into your checkout, their browser is running far more than your code. Analytics tags, a tag manager, a support widget, a paymen…
97
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 8 fuentes 📊 datos Thu, 18 Jun 2026 19:42:48
Cybersecurity researchers have charted the evolution of INC from an nascent ransomware-as-a-service (RaaS) operation to one of the most prolific cybercrime groups in 2026, claiming no less than 830 victims since August 2023. "The disruption of LockBit and the shutdown of BlackCat created opportunit…
98
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 12 fuentes Thu, 18 Jun 2026 20:00:42
Microsoft has disclosed details of a Windows-based cryptocurrency clipper campaign that has targeted users since February 2026. "The clipper in this campaign relies on Windows Script Host and ActiveX-driven logic to launch a bundled Tor proxy and poll a hidden-service C2 [command-and-control] serve…
83
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes Thu, 18 Jun 2026 20:57:54
The internet did not break this week. It got used exactly as designed, which is worse. Searches were siphoned through shady browser add-ons. AI chat links turned into malware delivery paths. macOS attacks ran in memory and left almost nothing behind. Cloud agents looked like helpers until attackers…
86
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes Thu, 18 Jun 2026 21:03:49
If an autonomous AI agent interacts with your company's core intellectual property today, can your security team instantly name the person who authorized it? For most enterprises, the answer is a simple no. The rush to adopt internal AI tools has left a massive trail of administrative debt: orphan…
97
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 8 fuentes Tue, 16 Jun 2026 15:14:34
Cybersecurity researchers have flagged two previously undocumented Windows variants of what was believed to be a Linux-only backdoor called SprySOCKS. "The Windows variants discovered are internally marked as WIN_DRV and WIN_PLUS," ESET said in a report shared with The Hacker News. "Both come with …
94
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 5 fuentes 📊 datos Tue, 16 Jun 2026 16:00:41
Bad actors are exploiting multiple security vulnerabilities in Fortinet FortiSandbox, according to threat intelligence firm Defused Cyber. In a post shared on X, the company said it has observed exploitation of CVE-2026-39813, CVE-2026-39808, and CVE-2026-25089 over the past 24 hours. CVE-2026-398…
59
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Tue, 16 Jun 2026 17:00:00
Security teams have never had more IP data at their disposal. Every day, analysts ingest enrichment feeds, geolocation data, reputation scores, telemetry, and threat intelligence from a growing ecosystem of vendors and platforms. Yet despite this abundance of information, many organizations continu…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 8 fuentes 📊 datos Tue, 16 Jun 2026 18:40:17
Security researchers at Zimperium's zLabs have documented a new Android banking trojan, Rokarolla, that targets 217 banking and cryptocurrency apps and packs 137 remote commands. Together, they give an operator near-total control of an infected phone: it lifts lock-screen PINs, reads and sends SMS,…
82
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes Tue, 16 Jun 2026 23:11:28
Cybersecurity researchers have flagged multiple ClickFix campaigns that deliver three malware loaders called BabaDeda Loader, Lorem Ipsum Loader, and Potemkin, per independent reports from Morphisec, BlueVoyant, and Huntress, respectively. Attacks involving BabaDeda Loader, observed in April 2026, …
93
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes Wed, 17 Jun 2026 00:35:41
A flaw in the Google Cloud Vertex AI SDK for Python let an attacker with no access to a victim's project hijack the victim's machine learning model upload and run code inside Google's serving infrastructure. Palo Alto Networks Unit 42, which found and reported the bug through Google's bug bounty pr…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 22 fuentes 📊 datos Tue, 16 Jun 2026 11:11:52
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a security flaw impacting LiteSpeed cPanel Plugin to its Known Exploited Vulnerabilities (KEV) catalog, requiring Federal Civilian Executive Branch (FCEB) agencies to apply the fixes by June 18, 2026. The vulnerability in qu…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 26 fuentes 📊 datos Tue, 16 Jun 2026 11:35:58
Cisco has released security updates for a medium-severity security flaw in Catalyst SD-WAN Manager that has come under active exploitation in the wild. The vulnerability, tracked as CVE-2026-20262, carries a CVSS score of 6.5 out of 10.0. "A vulnerability in the web UI of Cisco Catalyst SD-WAN Man…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 12 fuentes Tue, 16 Jun 2026 13:44:55
The North Korean state-sponsored hacking group known as ScarCruft (aka APT37) has been observed using spear-phishing messages impersonating Microsoft Account security notifications to deliver malware called NarwhalRAT. "The attack email contained a message impersonating an MS account security alert…
80
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes 📊 datos Mon, 15 Jun 2026 11:47:32
Palo Alto Networks has revealed that it has observed "active exploitation" of a recently disclosed PAN-OS vulnerability by an unknown threat actor to obtain unauthorized access to GlobalProtect portals. The vulnerability in question is CVE-2026-0257 (CVSS score: 7.8), an authentication bypass flaw …
88
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes Mon, 15 Jun 2026 12:00:22
Cybersecurity researchers have disclosed details of fraudulent activity targeting users across the Middle East and North Africa by employing various fraudulent Facebook accounts impersonating politicians, public figures, and trusted organizations. "These accounts promoted fake offers, including fre…
85
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes Mon, 15 Jun 2026 15:29:38
An attacker tampered with trusted JavaScript files used by WordPress sites running PushEngage, OptinMonster, and TrustPulse, turning those files into a way to break into the sites. When a site administrator was logged in as the file loaded, the code created an admin account under the attacker's con…
68
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad 📊 datos Mon, 15 Jun 2026 16:37:50
Cybersecurity researchers have discovered a network of 152 Google Chrome extensions that act as new tab live wallpaper add-ons to distribute a potentially unwanted program (PUP) family. The cluster spans 38 separate Chrome Web Store publisher accounts and three brand backends: tabplugins[.]com, yow…
51
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Mon, 15 Jun 2026 17:00:00
Employee onboarding is a busy time for IT teams. New starters need devices, accounts, access permissions, and passwords, all delivered within a tight timeframe. That usually means sharing a temporary "first-day" password so employees can access systems for the first time. The issue is that these pa…
⚡ Procesando...