News
-
Microsoft warns of surge in ACR Stealer attacks on enterprise customers
Microsoft said ACR Stealer attacks rose against enterprise customers between late April and mid-June. The malware used ClickFix, WebDAV, MSHTA and other tools to steal browser data and sensitive files.
-
Public exploits published for critical WordPress core flaws, patch urged
Public exploits are now circulating for critical WordPress core flaws that can chain into unauthenticated remote code execution. Site owners are being urged to update to WordPress 6.9.5 or 7.0.2 immediately.
-
Coca-Cola says Fairlife ransomware attack halts U.S. dairy production
Coca-Cola said a ransomware attack on its Fairlife dairy subsidiary disrupted operations and temporarily stopped U.S. production. The company said product safety was not affected and Canadian operations were not hit.
-
CISA adds four actively exploited flaws, including Adobe ColdFusion bug
CISA added four actively exploited flaws to its Known Exploited Vulnerabilities catalog, including a critical Adobe ColdFusion bug, and told federal civilian agencies to patch by July 10, 2026.
-
Google Dialogflow CX flaw could have exposed chats across agents
Google fixed a Dialogflow CX flaw that could have let an attacker with edit access to one agent read conversations and influence other Code Block-enabled agents in the same Cloud project. Varonis reported no signs of real-world abuse.
-
CERT/CC warns of hidden admin backdoor in several Tenda firmware versions
CERT/CC warned that several Tenda firmware versions contain an undocumented backdoor that can bypass password checks and grant admin access, leaving devices open to takeover until a fix is released.
-
BeyondTrust patches critical flaws in Remote Support and Privileged Remote Access
BeyondTrust patched four vulnerabilities in its Remote Support and Privileged Remote Access products, including two critical authentication flaws that could allow unauthorized access under specific configurations. The company said the issues were found internally and has not reported active exploitation.
-
Spain arrests man suspected of aiding pro-Russian hacktivist groups
Spain arrested a man in Palencia who is suspected of aiding pro-Russian hacktivist groups CyberArmy of Russia Reborn and Z-Pentest. Police seized devices, froze crypto wallets and said the probe began with FBI information.
-
GitHub agentic workflow flaw could expose private repositories, researchers say
Researchers say a prompt injection flaw in GitHub Agentic Workflows could let attackers use a public issue to pull data from private repositories without stealing an account or exploiting software vulnerabilities.
-
Iran-linked hackers use new Cavern C2 against Israeli targets
Iran-linked hackers used a new modular command and control framework called Cavern against Israeli organizations, according to Check Point Research. The activity relied on DLL side loading, service-provider trust chains and multiple post-exploitation modules.








