📰

Today's News Highlights

🔐 The Hacker News High

Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites

Today · 09:59 UTC

An attacker tampered with trusted JavaScript files used by WordPress sites running PushEngage, OptinMonster, and TrustPulse, turning those files into a way to break into the sites.…

Read full article →
🔐 BleepingComputer High

Webinar: How behavioral AI stops phishing and account takeovers

Today · 12:12 UTC

Modern phishing, BEC, and account takeover attacks increasingly bypass traditional email defenses and create operational strain for security teams. This webinar explores how behavi…

Read full article →
🔐 Infosecurity Magazine Medium

Maine Takes Breach Reporting Portal Offline After Fake Entries

Today · 09:00 UTC

The Office of the Maine Attorney General has suspended its breach reporting portal

Read full article →
🤖 The Verge

Fox is buying Roku

Today · 11:44 UTC

Fox has announced that it's acquiring Roku outright, in a deal that values the streaming company at $22 billion. The deal will see Fox's TV networks and Tubi streamer combine with…

Read full article →
🤖 The Guardian Technology

Social media firms hit back as Starmer announces ban for under-16s in UK

Today · 11:02 UTC

Meta, YouTube and Snapchat say ban, which would stop children using their platforms, will drive them to ‘less safe services’UK politics live – latest updatesHow will the ban work?U…

Read full article →
🤖 ABC Technology (AU)

Labor's CGT plan flawed but better than what we have, economists tell inquiry

Today · 06:55 UTC

Economists have offered qualified support for the government's plans on day one of a Senate inquiry.

Read full article →

Top Stories by Impact

🏢 Rapid7 Blog Critical

Active Exploitation of Oracle PeopleSoft Zero-Day (CVE-2026-35273)

12 Jun 2026 · 13:43 UTC

OverviewOn June 10, 2026, Oracle published a security alert for CVE-2026-35273, a critical vulnerability in the Updates Environment Management component of PeopleSoft Enterprise Pe…

Read full article →
🔐 CISA Alerts Critical

CISA Adds One Known Exploited Vulnerability to Catalog

12 Jun 2026 · 12:00 UTC

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-35273 Oracle PeopleSoft Enterprise Peo…

Read full article →
🏢 Rapid7 Blog Critical

Weekly Metasploit Update: New Kerberos/Certificate tracing options, and multiple new modules

13 Jun 2026 · 00:22 UTC

New Tracing OptionsAs hard as we try to ensure that Metasploit is bug free, issues inevitably come up. Whether you’re running a module on an op or writing a new one, what we can do…

Read full article →
🔐 Dark Reading Critical

ShinyHunters Uses Oracle Zero-Day to Rampage Higher Ed

12 Jun 2026 · 20:26 UTC

A major bug in Oracle's ERP software disproportionately affected American universities, and hackers have capitalized by stealing gobs of data.

Read full article →
🤖 ITNews Australia High

AI agents are reshaping identity governance, and attackers are already exploiting the gap

Yesterday · 18:00 UTC

The rise of autonomous AI agents has fundamentally changed the enterprise security landscape, and most organisations are not keeping pace.

Read full article →
🏢 StepSecurity High

400+ AUR Packages Hijacked: What the “Atomic Arch” Campaign Means for Supply-Chain Security

13 Jun 2026 · 02:47 UTC

On June 11th 2026, security researchers and the Arch Linux community disclosed a large-scale supply-chain attack against the Arch User Repository (AUR). Attackers hijacked more tha…

Read full article →
🔐 Cloudflare Blog High

Project Glasswing: what Mythos showed us

18 May 2026

Cloudflare shares findings from testing Mythos and other security-focused LLMs against live code across critical infrastructure, including model strengths, weaknesses, and what is…

Read full article →
🔐 The Hacker News High

Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites

Today · 09:59 UTC

An attacker tampered with trusted JavaScript files used by WordPress sites running PushEngage, OptinMonster, and TrustPulse, turning those files into a way to break into the sites.…

Read full article →
🔐

Cybersecurity

CISA Alerts

1

CISA Adds One Known Exploited Vulnerability to Catalog

Critical

12 Jun 2026 · 12:00 UTC

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-35273 Oracle PeopleSoft Enterprise PeopleTools Missing Authentication for Crit…

Read full article →

Dark Reading

1

ShinyHunters Uses Oracle Zero-Day to Rampage Higher Ed

Critical

12 Jun 2026 · 20:26 UTC

A major bug in Oracle's ERP software disproportionately affected American universities, and hackers have capitalized by stealing gobs of data.

Read full article →
2

US Cracks Down on Anthropic AI Models Amid Abuse Concerns

Today · 12:17 UTC

Anthropic abruptly suspended all access to Fable 5 and Mythos 5 after receiving an export control directive that banned foreign nationals from using the AI models.

Read full article →
3

Claude Fable 5 Doesn't Change the Mythos Security Story

12 Jun 2026 · 13:01 UTC

Stay cool: Mythos 5 is an upgrade over Mythos Preview while Fable 5 is Mythos "made safe for general use," Anthropic explained.

Read full article →

Cloudflare Blog

1

Project Glasswing: what Mythos showed us

High

18 May 2026

Cloudflare shares findings from testing Mythos and other security-focused LLMs against live code across critical infrastructure, including model strengths, weaknesses, and what is needed before this work can scale.

Read full article →

The Hacker News

1

Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites

High

Today · 09:59 UTC

An attacker tampered with trusted JavaScript files used by WordPress sites running PushEngage, OptinMonster, and TrustPulse, turning those files into a way to break into the sites. When a site administrator was logged in…

Read full article →
2

152 Chrome Wallpaper Extensions with 105K Installs Linked to Adware and Fake Traffic

Today · 11:07 UTC

Cybersecurity researchers have discovered a network of 152 Google Chrome extensions that act as new tab live wallpaper add-ons to distribute a potentially unwanted program (PUP) family. The cluster spans 38 separate Chro…

Read full article →
3

The Onboarding Password Mistake That Creates Unnecessary Risk

Today · 11:30 UTC

Employee onboarding is a busy time for IT teams. New starters need devices, accounts, access permissions, and passwords, all delivered within a tight timeframe. That usually means sharing a temporary "first-day" password…

Read full article →

BleepingComputer

1

Webinar: How behavioral AI stops phishing and account takeovers

High

Today · 12:12 UTC

Modern phishing, BEC, and account takeover attacks increasingly bypass traditional email defenses and create operational strain for security teams. This webinar explores how behavioral AI can help automate detection, inv…

Read full article →
2

Ex-school district employee jailed for hacks on former employer

13 Jun 2026 · 20:53 UTC

A former IT employee at an Iowa school district was sentenced to 21 months in prison after conducting a prolonged cyberattack against the former employer that disrupted classroom operations, deleted accounts, and caused…

Read full article →
3

FBI disrupts massive AI-powered phishing service using a million URLs

Yesterday · 14:36 UTC

In a coordinated effort, the FBI, working with Google and Black Lotus Labs, has dismantled a massive Chinese phishing-as-a-service operation called Outsider Enterprise with thousands of phishing websites used to steal cr…

Read full article →

Infosecurity Magazine

1

Maine Takes Breach Reporting Portal Offline After Fake Entries

Medium

Today · 09:00 UTC

The Office of the Maine Attorney General has suspended its breach reporting portal

Read full article →
2

Cybersecurity Experts Urge US to Lift Ban on Anthropic's Frontier AI Models

Today · 10:30 UTC

Access to two Anthropic large language models, Mythos 5 and Fable 5, has effectively been banned to any non-US nationals by the Trump administration

Read full article →
3

UK Government Finds 400+ Vulnerabilities in AI Hackathons

Today · 09:30 UTC

Government departments find hundreds of vulnerabilities after testing frontier models

Read full article →

CyberScoop

1

Anthropic disables new models after government calls them a national security concern

13 Jun 2026 · 18:29 UTC

The Commerce Department’s expert control decree led to the company shutting off access to Fable 5 and Mythos 5 worldwide, drawing sharp criticism from researchers and industry analysts. The post Anthropic disables new mo…

Read full article →
2

FBI takes down massive China-based cybercrime network that caused $1.9B in losses

12 Jun 2026 · 21:56 UTC

Outsider provided phishing kits and infrastructure for cybercriminals to scam victims with lures claiming they missed packages, had unpaid tolls or parking violations. The post FBI takes down massive China-based cybercri…

Read full article →
3

US, France, and Italian authorities shut down massive deepfake porn site

12 Jun 2026 · 18:21 UTC

The website specialized in non-consensual sexual images of famous women, including politicians, first ladies, royalty, journalists, television presenters, athletes, and entertainers, and others. The post US, France, and…

Read full article →

Schneier on Security

1

The FCC Wants to Eliminate Burner Phones

Today · 11:01 UTC

A proposed FCC rule would kill burner phones: phones whose accounts are not attached to a particular person. The FCC plans to do this by legally forcing the country’s telecoms to store a wealth of personal information ab…

Read full article →
2

Upcoming Speaking Engagements

Yesterday · 16:07 UTC

This is a current list of where and when I am scheduled to speak: I’m giving a keynote at Cybernation 2026 in Berlin, Germany, on June 24, 2026. I’m speaking at the Potsdam Conference on National Cybersecurity at the Has…

Read full article →
3

Friday Squid Blogging: Squid-Inspired Fluid Pump

12 Jun 2026 · 21:05 UTC

This fluid pump was inspired by the way squids propel themselves through the water. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Blog moderation policy…

Read full article →

Cybercrime Magazine

1

Code Girls: The Secret Heroes Of World War II

12 Jun 2026 · 12:34 UTC

This week in cybersecurity from the editors at Cybercrime Magazine Sausalito, Calif. – Jun. 12, 2026 – Watch the YouTube Short During World War II, some of America’s most powerful weapons weren’t bombs or guns. They were…

Read full article →

Ars Technica

1

Threads of underground fungal networks are long enough to reach beyond the Solar System

13 Jun 2026 · 11:18 UTC

Researchers have quantified the length and mass of arbuscular mycorrhizal fungal networks globally.

Read full article →
2

Did a medieval flying monk spot Halley's comet, twice? It's complicated

Yesterday · 16:02 UTC

University of Leicester historian thinks Eilmer of Malmesbury saw two different comets: in 1018 and 1066

Read full article →
3

Review: Disclosure Day is big on action, light on ideas

13 Jun 2026 · 17:17 UTC

There's nothing new or surprising, but it's still an entertaining film from one of our greatest directors.

Read full article →

SANS Internet Storm Center

1

Evil MSI Background: BASE64 Statistical Analysis, (Mon, Jun 15th)

Today · 07:16 UTC

I like it when a fellow handler posts a diary entry about images with malicious content. Last one is Xavier: "The Evil MSI Background is Back!".

Read full article →
2

ISC Stormcast For Monday, June 15th, 2026 https://isc.sans.edu/podcastdetail/9972, (Mon, Jun 15th)

Today · 02:00 UTC

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Read full article →
3

ISC Stormcast For Friday, June 12th, 2026 https://isc.sans.edu/podcastdetail/9970, (Fri, Jun 12th)

12 Jun 2026 · 12:30 UTC

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Read full article →
🤖

AI & Technology

ITNews Australia

1

AI agents are reshaping identity governance, and attackers are already exploiting the gap

High

Yesterday · 18:00 UTC

The rise of autonomous AI agents has fundamentally changed the enterprise security landscape, and most organisations are not keeping pace.

Read full article →
2

Bunnings to sell through Google AI Mode

Yesterday · 20:03 UTC

New shopping option to become available within a fortnight.

Read full article →
3

LVP taps OpenClaw, Claude in hybrid cloud AI play

Yesterday · 19:00 UTC

Investment fund "moving aggressively on AI".

Read full article →

The Verge

1

Fox is buying Roku

Today · 11:44 UTC

Fox has announced that it's acquiring Roku outright, in a deal that values the streaming company at $22 billion. The deal will see Fox's TV networks and Tubi streamer combine with Roku's network of streaming devices, sma…

Read full article →
2

All the gear a 20-year gadget blogging veteran packs when traveling

Today · 11:30 UTC

Through more than two decades of travel for both work and leisure, my packing list has evolved from a random assortment of gadgets and accessories thrown together at the last minute into a refined checklist of gear honed…

Read full article →
3

Honor’s Magic V6 sets three foldable firsts

Today · 11:00 UTC

On paper, the Honor Magic V6 sounds like a tremendous leap forward for foldable phones: It's the thinnest one yet, with the biggest battery, and the best water-resistance ever. In practice, only the bigger battery feels…

Read full article →

The Guardian Technology

1

Social media firms hit back as Starmer announces ban for under-16s in UK

Today · 11:02 UTC

Meta, YouTube and Snapchat say ban, which would stop children using their platforms, will drive them to ‘less safe services’UK politics live – latest updatesHow will the ban work?UK parents: how do you feel about the ban…

Read full article →
2

X accused of giving racists ‘impunity’ after refusing to bar N- and P-word posts

Yesterday · 07:00 UTC

Site takes no action over hate posts against UK politicians including Kemi Badenoch, Shabana Mahmood and Zia YusufX has refused to take down dozens of social media posts reported as “hate, abuse or harassment” in which p…

Read full article →
3

Anthropic to disable its most advanced AI models after US order limiting foreign access

13 Jun 2026 · 12:37 UTC

Company said US government believes safeguards can be bypassed and product used to identify software vulnerabilitiesAnthropic said it will “abruptly disable” its most advanced AI models for all users after the US governm…

Read full article →

ABC Technology (AU)

1

Labor's CGT plan flawed but better than what we have, economists tell inquiry

Today · 06:55 UTC

Economists have offered qualified support for the government's plans on day one of a Senate inquiry.

Read full article →
2

Air quality monitoring to be upgraded in the NT after Inpex under-reporting

Today · 06:03 UTC

The Northern Territory government has announced a plan to introduce new air quality monitoring of toxic pollutants, including any carcinogenic emissions. It follows a review that found gas giant Inpex had underestimated…

Read full article →
3

'Potentially still a future': Liberty Bell Bay smelter given another reprieve

Today · 03:04 UTC

The administrator for the mothballed manganese smelter is continuing to engage with the consortium designated as its preferred buyer, the ABC understands.

Read full article →

The Guardian Technology

1

Anthropic releases 'safe' version of Claude Mythos AI model to public

9 Jun 2026 · 22:28 UTC

Anthropic released Fable 5, a public version of its advanced Mythos AI model class, while keeping tighter controls around cybersecurity and other sensitive uses.

Read full article →

Ars Technica AI

1

Anthropic shuts down Fable, Mythos models following Trump admin directive

13 Jun 2026 · 03:00 UTC

Commerce dept. worries that a Fable 5 "jailbreak" could be a national security threat.

Read full article →
2

SpaceX is now a public company valued for its AI potential, so what comes next?

12 Jun 2026 · 22:20 UTC

As of today, SpaceX is owned by investors who will want to see it make money.

Read full article →
3

Here's what Jeff Bezos' new startup Prometheus will do

12 Jun 2026 · 18:45 UTC

It isn't the only startup tackling physical AI, but it's one of the best-funded.

Read full article →

Import AI

1

Import AI 461: "Alignment is not on track"; FrontierCode; and synthetic research interns

Today · 11:30 UTC

Where are your agents right now?

Read full article →

Wired AI

1

Meta Tapped a Pentagon Supplier to Prototype Face Recognition for Its Glasses

Today · 09:00 UTC

Rank One, whose board includes a former CIA deputy director and a former FBI science chief, supplied face recognition to Meta for internal development of its smart glasses app.

Read full article →
2

A Court Has Ruled That Google Is Liable for False Statements Generated by AI Overviews

13 Jun 2026 · 09:00 UTC

The ruling holds that a company that designs, trains, operates, and manages an AI system must assume legal liability for any damages caused by the responses it generates.

Read full article →
3

Anthropic Says It’s Taking Claude Fable 5 Offline to Comply With US Government Order

13 Jun 2026 · 02:26 UTC

“The government believes it has become aware of a method of bypassing, or ‘jailbreaking’ Fable 5,” the company said in a blog post.

Read full article →

TechCrunch AI

1

The AI layoff wave is becoming a powder keg

Today · 07:25 UTC

What makes this combustible: at the very moment that tens of thousands of workers are being shown the door, a small cohort of AI insiders is becoming wealthy on a scale that's hard to comprehend.

Read full article →
2

As AI companies race to go public, who else is along for the ride?

Yesterday · 16:38 UTC

Startups are trying to "ride that SpaceX IPO wave."

Read full article →
3

As Anthropic suspends access to new models, India debates its AI future

Yesterday · 03:00 UTC

Tech leaders debate whether the Anthropic episode is a wake-up call for India’s AI ambitions.

Read full article →

NVIDIA AI Blog

1

NVIDIA Blackwell Leads on First Agentic AI Infrastructure Benchmark

12 Jun 2026 · 21:00 UTC

AgentPerf from Artificial Analysis, the industry’s first agentic AI benchmark, gives developers, enterprises and infrastructure providers a clear way to compare systems for agentic AI. In the first round of published res…

Read full article →
🏢

Vendor Security

Rapid7 Blog

1

Active Exploitation of Oracle PeopleSoft Zero-Day (CVE-2026-35273)

Critical

12 Jun 2026 · 13:43 UTC

OverviewOn June 10, 2026, Oracle published a security alert for CVE-2026-35273, a critical vulnerability in the Updates Environment Management component of PeopleSoft Enterprise PeopleTools. Oracle released an out-of-ban…

Read full article →
2

Weekly Metasploit Update: New Kerberos/Certificate tracing options, and multiple new modules

Critical

13 Jun 2026 · 00:22 UTC

New Tracing OptionsAs hard as we try to ensure that Metasploit is bug free, issues inevitably come up. Whether you’re running a module on an op or writing a new one, what we can do is make the debugging experience easier…

Read full article →

StepSecurity

1

400+ AUR Packages Hijacked: What the “Atomic Arch” Campaign Means for Supply-Chain Security

High

13 Jun 2026 · 02:47 UTC

On June 11th 2026, security researchers and the Arch Linux community disclosed a large-scale supply-chain attack against the Arch User Repository (AUR). Attackers hijacked more than 400 community packages and turned them…

Read full article →

OpenAI News

1

Introducing the OpenAI Partner Network

Yesterday · 17:00 UTC

OpenAI launches the Partner Network, investing $150M to help global partners accelerate enterprise AI adoption, deployment, and transformation.

Read full article →
2

New OpenAI Academy courses for the next era of work

12 Jun 2026 · 10:00 UTC

OpenAI introduces three Academy courses that help people build practical AI skills, create repeatable workflows, and apply agents in everyday work.

Read full article →
3

How Preply combines AI and human tutors to personalize learning

12 Jun 2026 · 00:00 UTC

Preply uses OpenAI to launch AI-generated lesson summaries, providing personalised feedback and language learning exercises.

Read full article →

Palo Alto Unit 42

1

Tracing Digital Intent: New MacOS Tahoe 26 Artifact Discovered

12 Jun 2026 · 22:00 UTC

Unit 42 has discovered a new macOS Tahoe 26 forensic artifact that tracks user menu selections across the operating system. Learn more here. The post Tracing Digital Intent: New MacOS Tahoe 26 Artifact Discovered appeare…

Read full article →

CrowdStrike Blog

1

Why AI Projects Stall and How CIOs Can Respond

12 Jun 2026 · 05:00 UTC

Read full article →