📰

Today's News Highlights

🏢 Rapid7 Blog Critical

CVE-2026-10520, CVE-2026-10523 - Multiple critical vulnerabilities affecting Ivanti Sentry

Today · 10:21 UTC

OverviewOn June 9, 2026, Ivanti published a security advisory for two critical vulnerabilities affecting Ivanti Sentry (formerly known as MobileIron Sentry), which per the vendor w…

Read full article →
🔐 The Hacker News Critical

Microsoft Patches Record 206 Flaws, Including Three Zero-Days and Critical RCE Bugs

Today · 09:38 UTC

Microsoft on Tuesday released fixes for a record 206 security vulnerabilities impacting its software portfolio, including three flaws that have been publicly disclosed at the time…

Read full article →
🔐 BleepingComputer Critical

Ivanti: Max severity Sentry flaw allows code execution as root

Today · 06:26 UTC

Ivanti has patched two critical vulnerabilities in its Sentry secure mobile gateway solution, including a maximum-severity flaw that enables remote attackers to execute code with r…

Read full article →
🔐 Infosecurity Magazine Critical

Microsoft Fixes 200 CVEs in June Patch Tuesday

Today · 08:00 UTC

Microsoft has patched 200 vulnerabilities including three zero-days

Read full article →
🔐 BleepingComputer Critical

Microsoft patches YellowKey, GreenPlasma, MiniPlasma zero-days

Today · 09:57 UTC

On Tuesday, Microsoft patched two zero-day vulnerabilities that let attackers gain SYSTEM privileges on fully patched Windows systems, and a third one that grants access to BitLock…

Read full article →
🤖 ITNews Australia Medium

Anthropic releases Mythos-class model for public use

Today · 00:28 UTC

Imposes a 30-day data retention for Mythos-class models.

Read full article →

Top Stories by Impact

🏢 Rapid7 Blog Critical

Patch Tuesday - June 2026

Yesterday · 21:04 UTC

Microsoft is publishing 200 vulnerabilities on June 2026 Patch Tuesday. Microsoft is not aware of exploitation in the wild for any of these vulnerabilities, and is aware of public…

Read full article →
🏢 Rapid7 Blog Critical

CVE-2026-10520, CVE-2026-10523 - Multiple critical vulnerabilities affecting Ivanti Sentry

Today · 10:21 UTC

OverviewOn June 9, 2026, Ivanti published a security advisory for two critical vulnerabilities affecting Ivanti Sentry (formerly known as MobileIron Sentry), which per the vendor w…

Read full article →
🔐 The Hacker News Critical

Microsoft Patches Record 206 Flaws, Including Three Zero-Days and Critical RCE Bugs

Today · 09:38 UTC

Microsoft on Tuesday released fixes for a record 206 security vulnerabilities impacting its software portfolio, including three flaws that have been publicly disclosed at the time…

Read full article →
🏢 Rapid7 Blog Critical

Rapid7 Gains Access To Anthropic’s Project Glasswing To Explore Frontier AI For Cybersecurity

Yesterday · 13:35 UTC

Wade Woolwine is Senior Director, Product Security at Rapid7.Rapid7 is excited to join Anthropic’s Project Glasswing, which includes access to Claude Mythos Preview, giving our tea…

Read full article →
🔐 CISA Alerts Critical

Siemens KACO Blueplanet Inverters

Yesterday · 12:00 UTC

View CSAF Summary KACO blueplanet Inverters contain multiple vulnerabilities that could allow an attacker to derive the credentials from the devices serial number and misuse them t…

Read full article →
🔐 CISA Alerts Critical

Schneider Electric EcoStruxure Panel Server

Yesterday · 12:00 UTC

View CSAF Summary Schneider Electric is aware of its vulnerability in its EcoStruxure Panel Server offer. The EcoStruxure Panel Server is a high performance, modular gateway with e…

Read full article →
🔐 Krebs on Security Critical

A Record-Breaking Patch Tuesday for June 2026

Yesterday · 22:07 UTC

Microsoft today released software updates to plug nearly 200 security holes across its Windows operating systems and supported software, a record number of fixes for the company's…

Read full article →
🔐 Schneier on Security Critical

Critical Zcash Vulnerability Found and Fixed

8 Jun 2026 · 17:06 UTC

If you’re a user—owner?—of this cryptocurrency, this is important: On May 29, the security researcher Taylor Hornby found a critical vulnerability in Zcash Orchard privacy pool usi…

Read full article →
🔐

Cybersecurity

The Hacker News

1

Microsoft Patches Record 206 Flaws, Including Three Zero-Days and Critical RCE Bugs

Critical

Today · 09:38 UTC

Microsoft on Tuesday released fixes for a record 206 security vulnerabilities impacting its software portfolio, including three flaws that have been publicly disclosed at the time of release. Of the 206 flaws, 39 are rat…

Read full article →
2

Your Automated Pentest Looks Clean. See What It Missed in This Expert Webinar

Medium

Today · 10:27 UTC

Your pentest report looks clean. That might be the problem. Run automated pentesting long enough, and the new findings start to dry up. By the third or fourth run, fewer issues appear. The report looks stable. Leadership…

Read full article →
3

Anthropic Releases Claude Fable 5, Its Most Powerful AI Yet, With Cyber Safeguards

Today · 07:37 UTC

On June 9, Anthropic released Claude Fable 5, the most capable model it has ever made, generally available. It also did something unusual: it shipped one model as two products, split not by capability but by a layer of s…

Read full article →

CISA Alerts

1

Siemens KACO Blueplanet Inverters

Critical

Yesterday · 12:00 UTC

View CSAF Summary KACO blueplanet Inverters contain multiple vulnerabilities that could allow an attacker to derive the credentials from the devices serial number and misuse them to gain unauthorized access. KACO new ene…

Read full article →
2

Schneider Electric EcoStruxure Panel Server

Critical

Yesterday · 12:00 UTC

View CSAF Summary Schneider Electric is aware of its vulnerability in its EcoStruxure Panel Server offer. The EcoStruxure Panel Server is a high performance, modular gateway with enhanced cybersecurity that provides easy…

Read full article →
3

CISA Adds Three Known Exploited Vulnerabilities to Catalog

Critical

Yesterday · 12:00 UTC

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-7473 Arista Extensible Operating System Incomplete Comparison with Missing…

Read full article →

Krebs on Security

1

A Record-Breaking Patch Tuesday for June 2026

Critical

Yesterday · 22:07 UTC

Microsoft today released software updates to plug nearly 200 security holes across its Windows operating systems and supported software, a record number of fixes for the company's monthly Patch Tuesday cycle. Nearly thre…

Read full article →

Schneier on Security

1

Critical Zcash Vulnerability Found and Fixed

Critical

8 Jun 2026 · 17:06 UTC

If you’re a user—owner?—of this cryptocurrency, this is important: On May 29, the security researcher Taylor Hornby found a critical vulnerability in Zcash Orchard privacy pool using Claude Opus 4.8. The Zcash team hired…

Read full article →
2

NSO Group Hacking WhatsApp Despite Court Order

Today · 11:08 UTC

WhatsApp has caught the NSO Group phishing its users, in violation of a court order.

Read full article →
3

GPS As a Key Distribution Platform

Yesterday · 15:06 UTC

This is interesting: The U.S. military has likely been quietly broadcasting codes for its global encryption network using public GPS for nearly 20 years, turning each satellite into a hidden “numbers station,” according…

Read full article →

Ars Technica

1

Locked in heated rivalry with researcher, Microsoft fixes 0-day they disclosed

Critical

Yesterday · 20:56 UTC

A separate zero-day also disclosed by Nightmare Eclipse appears to be patched as well.

Read full article →
2

Starlink charges $10 monthly hardware fee in move away from one-time purchases

Yesterday · 21:05 UTC

Starlink, SpaceX's top moneymaker, also raised service prices by $5 to $10.

Read full article →
3

Three key vital signs make up the "urban pulse" of a city

Yesterday · 20:35 UTC

Cities are dynamic, not static grids, and urbanization is a "spiky," cyclical, and asynchronous process.

Read full article →

BleepingComputer

1

Ivanti: Max severity Sentry flaw allows code execution as root

Critical

Today · 06:26 UTC

Ivanti has patched two critical vulnerabilities in its Sentry secure mobile gateway solution, including a maximum-severity flaw that enables remote attackers to execute code with root privileges. [...]

Read full article →
2

Microsoft patches YellowKey, GreenPlasma, MiniPlasma zero-days

Critical

Today · 09:57 UTC

On Tuesday, Microsoft patched two zero-day vulnerabilities that let attackers gain SYSTEM privileges on fully patched Windows systems, and a third one that grants access to BitLocker-protected drives. [...]

Read full article →
3

Microsoft: Some Windows PCs fail to install latest monthly updates

Today · 11:33 UTC

Microsoft warned customers on Tuesday that they may have issues installing the latest monthly updates on some Windows devices that were upgraded to Windows 11 24H2 or 25H2. [...]

Read full article →

Dark Reading

1

Blame AI: Patch Tuesday Hits Record 206 CVEs

Critical

Yesterday · 21:42 UTC

Voluminous patch updates could soon be the norm, as artificial intelligence accelerates the speed and scale of vulnerability discovery.

Read full article →
2

Microsoft Exchange Flaw Lets Attackers Spoof Any Email Address

Medium

Yesterday · 20:20 UTC

"Ghost-Sender" uses Exchange Online or on-premises in hybrid mode with a third-party mail server or spam filter to achieve this level of spoofing.

Read full article →
3

The Invisible Battlefield: How Cyber War Is Reshaping Everyday Life

Yesterday · 21:57 UTC

Former National Cyber Director Chris Inglis warns that cyber attacks threaten hospitals, utilities and essential services.

Read full article →

SANS Internet Storm Center

1

Microsoft June 2026 Patch Tuesday, (Tue, Jun 9th)

Critical

Yesterday · 17:34 UTC

Microsoft today released patches for 204 vulnerabilities. 38 of these vulnerabilities are considered critical, and three have been disclosed before today. Six of the vulnerabilities affect Microsoft cloud solutions and d…

Read full article →
2

How has use of framing protection security headers changed in the past 3 years?, (Wed, Jun 10th)

Today · 08:29 UTC

Back in 2023, I wrote a diary[1] discussing how commonly X-Frame-Options and CSP headers containing the frame-ancestors directive were used on 1 million most popular domains on the internet (based on the Tranco list[2]),…

Read full article →
3

ISC Stormcast For Wednesday, June 10th, 2026 https://isc.sans.edu/podcastdetail/9966, (Wed, Jun 10th)

Today · 02:00 UTC

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Read full article →

Infosecurity Magazine

1

Microsoft Fixes 200 CVEs in June Patch Tuesday

Critical

Today · 08:00 UTC

Microsoft has patched 200 vulnerabilities including three zero-days

Read full article →
2

New Fable 5 Is a "Mythos-Class" LLM Available to All, Anthropic Announces

Today · 11:00 UTC

Anthropic unveils Claude Mythos 5 and Fable 5, a restricted-access frontier AI model and guardrailed version for everyone to use

Read full article →
3

Over a Quarter of Identity Crime Victims Hit by Multiple Incidents, ITRC Data Shows

Today · 10:15 UTC

Nearly 26% of identity crime victims faced multiple incidents in the past year, as ITRC warns of a growing "multi-layered crisis"

Read full article →

CyberScoop

1

Microsoft breaks Patch Tuesday record with 206 vulnerabilities

High

Yesterday · 19:53 UTC

Fears and warnings about a roaring flood of error-riddled software have materialized. And the disease is spreading. The post Microsoft breaks Patch Tuesday record with 206 vulnerabilities appeared first on CyberScoop.

Read full article →
2

CISA is rethinking how it prioritizes risks and vulnerabilities for feds, private sector

High

Yesterday · 16:27 UTC

Acting director Nick Andersen said a binding operational directive is en route for agencies, and that more specific discussions need to happen with critical infrastructure owners. The post CISA is rethinking how it prior…

Read full article →
3

Anthropic’s new model is Mythos on a leash

Yesterday · 17:00 UTC

Claude Fable 5 offers Mythos-level performance for most tasks with safeguards on sensitive topics. Anthropic claims testing found no universal jailbreaks. Whether that actually holds up in practice is harder to predict.…

Read full article →

Cloudflare Blog

1

Project Glasswing: what Mythos showed us

High

18 May 2026

Cloudflare shares findings from testing Mythos and other security-focused LLMs against live code across critical infrastructure, including model strengths, weaknesses, and what is needed before this work can scale.

Read full article →

Cybercrime Magazine

1

2026 CISO Compensation Data: Salaries, Bonuses, Equity

Yesterday · 12:41 UTC

This week in cybersecurity from the editors at Cybercrime Magazine Sausalito, Calif. – Jun. 9, 2026 – Read the report The 2026 CISO Report from Cybersecurity Ventures in partnership with Sophos examines the latest compen…

Read full article →
2

WireBadger Malicious Cable Detector For Penetration Testers And Red Teams

8 Jun 2026 · 12:46 UTC

This week in cybersecurity from the editors at Cybercrime Magazine Sausalito, Calif. – Jun. 8, 2026 – WireBadger production information USB technology was designed for convenience and universal compatibility. When a cabl…

Read full article →
🤖

AI & Technology

ITNews Australia

1

Anthropic releases Mythos-class model for public use

Medium

Today · 00:28 UTC

Imposes a 30-day data retention for Mythos-class models.

Read full article →
2

Aurora Energy to modernise its ERP system

Today · 03:50 UTC

Lays out target endstate.

Read full article →
3

Stockland builds AI assistant as a bridge into SAP

Yesterday · 20:23 UTC

Connects infrequent users to finance data faster.

Read full article →

The Guardian Technology

1

Palantir to sue Sadiq Khan over blocked £50m Met police contract

Medium

Yesterday · 15:13 UTC

US spy-tech company to challenge London mayor’s intervention after he raised concerns over breach of procurement rulesPalantir intends to sue the London mayor, Sadiq Khan, after he blocked a contract between the US spy-t…

Read full article →
2

Chinese activist in UK told by X that abusive deepfakes do not breach rules

Medium

Today · 06:00 UTC

Apple Peiqing Ni targeted by account portraying her as promiscuous drug addict after posting about Tiananmen SquareA high-profile Chinese activist in the UK who was inundated with deepfake posts on X portraying her as a…

Read full article →
3

Crackdown on tech platforms will go ahead despite US intervention, says No 10

Yesterday · 17:47 UTC

US embassy came out against UK’s proposed under-16 social media ban, which would affect American firmsWhite House displeasure over the prospect of an under-16 social media ban will not deter the UK from cracking down on…

Read full article →

Wired AI

1

Anthropic Offers Mythos Upgrade for Cyber Partners and a ‘Safe’ Version for the Rest of You

Yesterday · 17:00 UTC

Anthropic is releasing Claude Mythos 5 to trusted organizations and Claude Fable 5 to the public, a version it says can’t be used for cyberattacks.

Read full article →
2

Artificial Intelligence Sneaks Into the World Cup Thanks to Google Gemini

Today · 10:00 UTC

The Argentine national team will be Google’s test bench and technological showcase during the World Cup.

Read full article →
3

Alex Vindman Survived Trump’s Retaliation Machine. Now He’s Running for Senate

Yesterday · 10:30 UTC

In 2019, Alex Vindman testified during President Trump’s first impeachment trial–a decision that ended his military career. Now he wants to challenge the president from the halls of Congress.

Read full article →

TechCrunch AI

1

Google just fired a warning shot in the AI subscription price wars

Today · 00:26 UTC

Google just made it significantly cheaper to enjoy its budget AI subscription tier.

Read full article →
2

Meta signs first AI data center deal in India with Reliance

Today · 07:05 UTC

The 168-megawatt facility will support Meta's global AI computing needs and can be expanded over time.

Read full article →
3

How Justin Ernest invested nearly $500M into hot startups without a traditional VC fund

Yesterday · 23:17 UTC

Instead of spending a year raising a formal venture fund, the Sabertooth VC founder used a captive network of LPs to invest in startups like Anthropic, Anduril, and SpaceX.

Read full article →

The Guardian Technology

1

Anthropic releases 'safe' version of Claude Mythos AI model to public

9 Jun 2026 · 22:28 UTC

Anthropic released Fable 5, a public version of its advanced Mythos AI model class, while keeping tighter controls around cybersecurity and other sensitive uses.

Read full article →

Ars Technica AI

1

Anthropic says these topics are too dangerous to let its Fable 5 model talk about

Yesterday · 19:20 UTC

New frontier model refuses cybersecurity, biology, and chemistry queries.

Read full article →
2

Google announces Gemini 3.5 Live Translate for instant voice-to-voice translation

Yesterday · 18:57 UTC

Voice translations preserve speaker's tone, pacing, pitch—with SynthID watermarks for security.

Read full article →
3

Apple says its AI is still private, even when it's running on Google's servers

Yesterday · 13:05 UTC

Some models run in Google's cloud, but without giving Google any kind of access.

Read full article →

MIT Technology Review AI

1

Learning to lead in a hybrid human-AI enterprise

Yesterday · 10:20 UTC

As adoption of AI agents looks set to surge by as much as 300% in the next two years, leadership teams are carefully considering the implications of a hybrid human-AI workforce. Unlike existing enterprise-level automatio…

Read full article →
2

Five things you need to know about AI

Yesterday · 09:16 UTC

At SXSW London last week I gave a talk called “Five things you need to know about AI,” in which I shared what I think are the biggest themes in AI right now. I pulled a few things from our first AI10 list, an annual guid…

Read full article →

The Verge

1

The three sets of earbuds I reach for

Today · 12:00 UTC

I have been an audio reviewer for 20 years. My time as a freelance headphones panelist at Wirecutter, and the multitude of reviews I’ve written for sites like Reviewed, Digital Trends, IGN, and now The Verge, have given…

Read full article →
2

BYD to install thousands of 5-minute EV chargers across Europe

Today · 11:04 UTC

Chinese EV colossus BYD has announced plans to speed up its conquest of the European auto market with the rollout of superfast Flash Chargers across the continent. BYD has already installed the first new chargers in Germ…

Read full article →
3

Xbox exploring ‘radically different’ console business models

Today · 11:04 UTC

The RAMageddon crisis has got Microsoft rethinking its Xbox console hardware business. Xbox CEO Asha Sharma and Xbox strategy chief Matthew Ball have both revealed this week that Microsoft is reevaluating plans for its n…

Read full article →

Import AI

1

Import AI 460: Reward hacking society, RSI data from Anthropic; and RL-based quadcopter racing

8 Jun 2026 · 12:31 UTC

When will markets price the singularity?

Read full article →

Google DeepMind

1

Fluid, natural voice translation with Gemini 3.5 Live Translate

Yesterday · 15:16 UTC

Gemini 3.5 Live Translate brings near real-time, natural speech translation to Google AI Studio, Google Translate and Google Meet.

Read full article →
2

Introducing Gemma 4 12B: a unified, encoder-free multimodal model

Yesterday · 14:10 UTC

Read full article →
3

Powering the future of robotics in Europe

Yesterday · 14:02 UTC

Read full article →

NVIDIA AI Blog

1

NVIDIA Confidential Computing to Help Expand Apple’s Private Cloud Compute

Yesterday · 22:34 UTC

NVIDIA GPUs with Confidential Computing are now used for confidential inference in Apple’s Private Cloud Compute (PCC), as it expands beyond Apple’s data centers to Google Cloud. Unveiled during Apple’s annual WWDC gathe…

Read full article →
2

How the UK Is Turning Sovereign AI Ambition Into Action With NVIDIA Technologies

8 Jun 2026 · 06:00 UTC

A year ago at London Tech Week, NVIDIA founder and CEO Jensen Huang and U.K. Prime Minister Keir Starmer made a declaration: the U.K. would be an AI maker, not an AI taker. At this year’s event, NVIDIA and its partners a…

Read full article →
3

NVIDIA and LG Group Build an AI Factory to Advance Physical AI, Mobility and AI Infrastructure

8 Jun 2026 · 03:00 UTC

NVIDIA and LG Group are building an AI factory to accelerate LG Group’s next wave of AI-driven businesses, spanning robotics, autonomous driving, data center technologies and GPU cloud services. The AI factory will provi…

Read full article →

ABC Technology (AU)

1

Canberrans looking for cost-of-living relief in ACT budget might be left wanting

Today · 07:01 UTC

During practice at this Canberra football club, players discuss the ways they are saving money. But if they were looking for cost-of-living relief in today's ACT budget, they might not have found what they were looking f…

Read full article →
2

The ACT budget papers are out. Here are the five key takeaways

Today · 07:00 UTC

This year's ACT budget reveals rates will increase for most Canberra home owners, along with the territory's deficit, but the controversial health levy introduced last year will be ditched.

Read full article →
3

Why Bunnings moving a store 10km down the road has caused such a stir

Today · 06:18 UTC

A plan by hardware giant Bunnings move its Bunbury store 10km to a neighbouring shire has angered and concerned residents and businesses.

Read full article →
🏢

Vendor Security

Rapid7 Blog

1

Patch Tuesday - June 2026

Critical

Yesterday · 21:04 UTC

Microsoft is publishing 200 vulnerabilities on June 2026 Patch Tuesday. Microsoft is not aware of exploitation in the wild for any of these vulnerabilities, and is aware of public disclosure for three. This is similar to…

Read full article →
2

CVE-2026-10520, CVE-2026-10523 - Multiple critical vulnerabilities affecting Ivanti Sentry

Critical

Today · 10:21 UTC

OverviewOn June 9, 2026, Ivanti published a security advisory for two critical vulnerabilities affecting Ivanti Sentry (formerly known as MobileIron Sentry), which per the vendor website is an “in-line gateway that manag…

Read full article →
3

Rapid7 Gains Access To Anthropic’s Project Glasswing To Explore Frontier AI For Cybersecurity

Critical

Yesterday · 13:35 UTC

Wade Woolwine is Senior Director, Product Security at Rapid7.Rapid7 is excited to join Anthropic’s Project Glasswing, which includes access to Claude Mythos Preview, giving our teams the opportunity to explore how fronti…

Read full article →

Check Point Research

1

8th June – Threat Intelligence Report

Critical

8 Jun 2026 · 14:47 UTC

For the latest discoveries in cyber research for the week of 1st June, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES DentaQuest, a U.S. dental benefits administrator owned by Sun Life, has su…

Read full article →

CrowdStrike Blog

1

June 2026 Patch Tuesday: Microsoft Patches 206 Vulnerabilities Including Three Publicly Disclosed Zero-Days

Critical

Yesterday · 05:00 UTC

Read full article →
2

CrowdStrike 2026 Technology Threat Landscape Report: China’s Ambitions Fuel Attacks

Medium

Yesterday · 05:00 UTC

Read full article →
3

CrowdStrike and Zscaler Bring Continuous Identity to Zero Trust Access

8 Jun 2026 · 05:00 UTC

Read full article →

AWS Security

1

ICYMI: May 2026 @AWS Security

High

8 Jun 2026 · 21:00 UTC

Read all about the latest AWS security features, compliance updates, and hands-on resources in our new, monthly digest posts. You’ll find expert blog posts, new service capabilities, code samples, and workshops. AWS Secu…

Read full article →
2

Operationalizing AWS security: A maturity roadmap

8 Jun 2026 · 16:18 UTC

Enabling security tooling is the starting point. Making it operational—where findings drive decisions, response times are measurable, and your security posture improves week over week—is where most organizations struggle…

Read full article →

Palo Alto Unit 42

1

Threat Brief: Active Exploitation of PAN-OS CVE-2026-0257

High

Yesterday · 14:05 UTC

We include indicators of activity and mitigations for PAN-OS vulnerability CVE-2026-0257. The post Threat Brief: Active Exploitation of PAN-OS CVE-2026-0257 appeared first on Unit 42.

Read full article →
2

Blinding the Watchmen: Abusing Cloud Logging Services for Defense Evasion and Visibility

Medium

Yesterday · 22:00 UTC

Unit 42 research examines attack scenarios targeting cloud logging services. Learn how to defend against log manipulation and defense evasion. The post Blinding the Watchmen: Abusing Cloud Logging Services for Defense Ev…

Read full article →
3

When “Hi, This Is IT” Comes Through Microsoft Teams

Medium

8 Jun 2026 · 23:00 UTC

Attackers are increasingly targeting collaboration platforms like Microsoft Teams. Learn the risks and key steps to strengthen your organization's security. The post When “Hi, This Is IT” Comes Through Microsoft Teams ap…

Read full article →

Microsoft Security

1

AI brands as bait: How threat actors are using the AI hype in social engineering

High

8 Jun 2026 · 16:00 UTC

As threat actors operationalize AI to accelerate attacks, they are also leveraging the wider global interest around AI itself as a social engineering lure. The post AI brands as bait: How threat actors are using the AI h…

Read full article →
2

Reconstructing AI activity in investigations

Yesterday · 17:35 UTC

Learn how to investigate AI activity in Microsoft 365 Copilot and Azure AI services using a structured, telemetry-driven approach. This playbook helps security teams reconstruct events, assess data exposure, and detect p…

Read full article →

Microsoft Threat Intel

1

AI brands as bait: How threat actors are using the AI hype in social engineering

High

8 Jun 2026 · 16:00 UTC

As threat actors operationalize AI to accelerate attacks, they are also leveraging the wider global interest around AI itself as a social engineering lure. The post AI brands as bait: How threat actors are using the AI h…

Read full article →

Cisco Talos

1

Microsoft Patch Tuesday for June 2026 — Snort rules and prominent vulnerabilities

High

Yesterday · 21:21 UTC

Microsoft Patch Tuesday details for June 2026.

Read full article →

StepSecurity

1

New in the Threat Center: Compromised Components, Now Available via API

High

Yesterday · 21:04 UTC

StepSecurity's new Threat Center API returns the compromised packages for any supply chain incident, so you can automate response and confirm exposure fast.

Read full article →
2

Pythagora-io/gpt-pilot Compromised on GitHub - Shai-Hulud Credential Stealer Blocked by Python Linter

High

Yesterday · 21:04 UTC

An attacker hijacked a co-founder's GitHub account for gpt-pilot, a 33K-star AI coding tool, and force-pushed a credential-stealing Shai-Hulud payload to the main branch. The ruff Python linter caught formatting and lint…

Read full article →
3

The Hades Campaign: Graph ML PyPI Packages Deploy Cross-Platform Memory Scrapers, AI Analyst Misdirection, and a Wiper Deterrent

Medium

Yesterday · 21:04 UTC

On June 8, 2026, multiple Graph ML PyPI packages in the bioinformatics ecosystem were compromised in the Hades campaign, deploying cross-platform memory scrapers, AI prompt injections to misdirect scanners, and a token-r…

Read full article →

OpenAI News

1

From data to decisions: how LSEG is scaling trusted AI

Today · 00:00 UTC

See how LSEG uses OpenAI to scale trusted AI across its global business, accelerating insights, shrinking release cycles, and empowering 4,000 employees.

Read full article →
2

How engineers at Nextdoor use Codex to build without limits

Yesterday · 12:00 UTC

How engineers at Nextdoor use Codex with GPT-5.5 to investigate hard-to-reproduce issues, build across platforms, and focus on product outcomes.

Read full article →
3

What Codex unlocks for Notion

Yesterday · 10:00 UTC

How Notion uses Codex to one-shot specs, build AI Voice Input for the web, and multiply engineering power across small teams.

Read full article →