Today's News Highlights
Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites
Today · 09:59 UTC
An attacker tampered with trusted JavaScript files used by WordPress sites running PushEngage, OptinMonster, and TrustPulse, turning those files into a way to break into the sites.…
Read full article →Webinar: How behavioral AI stops phishing and account takeovers
Today · 12:12 UTC
Modern phishing, BEC, and account takeover attacks increasingly bypass traditional email defenses and create operational strain for security teams. This webinar explores how behavi…
Read full article →Maine Takes Breach Reporting Portal Offline After Fake Entries
Today · 09:00 UTC
The Office of the Maine Attorney General has suspended its breach reporting portal
Read full article →Fox is buying Roku
Today · 11:44 UTC
Fox has announced that it's acquiring Roku outright, in a deal that values the streaming company at $22 billion. The deal will see Fox's TV networks and Tubi streamer combine with…
Read full article →Social media firms hit back as Starmer announces ban for under-16s in UK
Today · 11:02 UTC
Meta, YouTube and Snapchat say ban, which would stop children using their platforms, will drive them to ‘less safe services’UK politics live – latest updatesHow will the ban work?U…
Read full article →Labor's CGT plan flawed but better than what we have, economists tell inquiry
Today · 06:55 UTC
Economists have offered qualified support for the government's plans on day one of a Senate inquiry.
Read full article →Top Stories by Impact
Active Exploitation of Oracle PeopleSoft Zero-Day (CVE-2026-35273)
12 Jun 2026 · 13:43 UTC
OverviewOn June 10, 2026, Oracle published a security alert for CVE-2026-35273, a critical vulnerability in the Updates Environment Management component of PeopleSoft Enterprise Pe…
Read full article →CISA Adds One Known Exploited Vulnerability to Catalog
12 Jun 2026 · 12:00 UTC
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-35273 Oracle PeopleSoft Enterprise Peo…
Read full article →Weekly Metasploit Update: New Kerberos/Certificate tracing options, and multiple new modules
13 Jun 2026 · 00:22 UTC
New Tracing OptionsAs hard as we try to ensure that Metasploit is bug free, issues inevitably come up. Whether you’re running a module on an op or writing a new one, what we can do…
Read full article →ShinyHunters Uses Oracle Zero-Day to Rampage Higher Ed
12 Jun 2026 · 20:26 UTC
A major bug in Oracle's ERP software disproportionately affected American universities, and hackers have capitalized by stealing gobs of data.
Read full article →AI agents are reshaping identity governance, and attackers are already exploiting the gap
Yesterday · 18:00 UTC
The rise of autonomous AI agents has fundamentally changed the enterprise security landscape, and most organisations are not keeping pace.
Read full article →400+ AUR Packages Hijacked: What the “Atomic Arch” Campaign Means for Supply-Chain Security
13 Jun 2026 · 02:47 UTC
On June 11th 2026, security researchers and the Arch Linux community disclosed a large-scale supply-chain attack against the Arch User Repository (AUR). Attackers hijacked more tha…
Read full article →Project Glasswing: what Mythos showed us
18 May 2026
Cloudflare shares findings from testing Mythos and other security-focused LLMs against live code across critical infrastructure, including model strengths, weaknesses, and what is…
Read full article →Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites
Today · 09:59 UTC
An attacker tampered with trusted JavaScript files used by WordPress sites running PushEngage, OptinMonster, and TrustPulse, turning those files into a way to break into the sites.…
Read full article →Cybersecurity
CISA Alerts
CISA Adds One Known Exploited Vulnerability to Catalog
Critical12 Jun 2026 · 12:00 UTC
CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-35273 Oracle PeopleSoft Enterprise PeopleTools Missing Authentication for Crit…
Read full article →Dark Reading
ShinyHunters Uses Oracle Zero-Day to Rampage Higher Ed
Critical12 Jun 2026 · 20:26 UTC
A major bug in Oracle's ERP software disproportionately affected American universities, and hackers have capitalized by stealing gobs of data.
Read full article →US Cracks Down on Anthropic AI Models Amid Abuse Concerns
Today · 12:17 UTC
Anthropic abruptly suspended all access to Fable 5 and Mythos 5 after receiving an export control directive that banned foreign nationals from using the AI models.
Read full article →Claude Fable 5 Doesn't Change the Mythos Security Story
12 Jun 2026 · 13:01 UTC
Stay cool: Mythos 5 is an upgrade over Mythos Preview while Fable 5 is Mythos "made safe for general use," Anthropic explained.
Read full article →Cloudflare Blog
Project Glasswing: what Mythos showed us
High18 May 2026
Cloudflare shares findings from testing Mythos and other security-focused LLMs against live code across critical infrastructure, including model strengths, weaknesses, and what is needed before this work can scale.
Read full article →The Hacker News
Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites
HighToday · 09:59 UTC
An attacker tampered with trusted JavaScript files used by WordPress sites running PushEngage, OptinMonster, and TrustPulse, turning those files into a way to break into the sites. When a site administrator was logged in…
Read full article →152 Chrome Wallpaper Extensions with 105K Installs Linked to Adware and Fake Traffic
Today · 11:07 UTC
Cybersecurity researchers have discovered a network of 152 Google Chrome extensions that act as new tab live wallpaper add-ons to distribute a potentially unwanted program (PUP) family. The cluster spans 38 separate Chro…
Read full article →The Onboarding Password Mistake That Creates Unnecessary Risk
Today · 11:30 UTC
Employee onboarding is a busy time for IT teams. New starters need devices, accounts, access permissions, and passwords, all delivered within a tight timeframe. That usually means sharing a temporary "first-day" password…
Read full article →BleepingComputer
Webinar: How behavioral AI stops phishing and account takeovers
HighToday · 12:12 UTC
Modern phishing, BEC, and account takeover attacks increasingly bypass traditional email defenses and create operational strain for security teams. This webinar explores how behavioral AI can help automate detection, inv…
Read full article →Ex-school district employee jailed for hacks on former employer
13 Jun 2026 · 20:53 UTC
A former IT employee at an Iowa school district was sentenced to 21 months in prison after conducting a prolonged cyberattack against the former employer that disrupted classroom operations, deleted accounts, and caused…
Read full article →FBI disrupts massive AI-powered phishing service using a million URLs
Yesterday · 14:36 UTC
In a coordinated effort, the FBI, working with Google and Black Lotus Labs, has dismantled a massive Chinese phishing-as-a-service operation called Outsider Enterprise with thousands of phishing websites used to steal cr…
Read full article →Infosecurity Magazine
Maine Takes Breach Reporting Portal Offline After Fake Entries
MediumToday · 09:00 UTC
The Office of the Maine Attorney General has suspended its breach reporting portal
Read full article →Cybersecurity Experts Urge US to Lift Ban on Anthropic's Frontier AI Models
Today · 10:30 UTC
Access to two Anthropic large language models, Mythos 5 and Fable 5, has effectively been banned to any non-US nationals by the Trump administration
Read full article →UK Government Finds 400+ Vulnerabilities in AI Hackathons
Today · 09:30 UTC
Government departments find hundreds of vulnerabilities after testing frontier models
Read full article →CyberScoop
Anthropic disables new models after government calls them a national security concern
13 Jun 2026 · 18:29 UTC
The Commerce Department’s expert control decree led to the company shutting off access to Fable 5 and Mythos 5 worldwide, drawing sharp criticism from researchers and industry analysts. The post Anthropic disables new mo…
Read full article →FBI takes down massive China-based cybercrime network that caused $1.9B in losses
12 Jun 2026 · 21:56 UTC
Outsider provided phishing kits and infrastructure for cybercriminals to scam victims with lures claiming they missed packages, had unpaid tolls or parking violations. The post FBI takes down massive China-based cybercri…
Read full article →US, France, and Italian authorities shut down massive deepfake porn site
12 Jun 2026 · 18:21 UTC
The website specialized in non-consensual sexual images of famous women, including politicians, first ladies, royalty, journalists, television presenters, athletes, and entertainers, and others. The post US, France, and…
Read full article →Schneier on Security
The FCC Wants to Eliminate Burner Phones
Today · 11:01 UTC
A proposed FCC rule would kill burner phones: phones whose accounts are not attached to a particular person. The FCC plans to do this by legally forcing the country’s telecoms to store a wealth of personal information ab…
Read full article →Upcoming Speaking Engagements
Yesterday · 16:07 UTC
This is a current list of where and when I am scheduled to speak: I’m giving a keynote at Cybernation 2026 in Berlin, Germany, on June 24, 2026. I’m speaking at the Potsdam Conference on National Cybersecurity at the Has…
Read full article →Friday Squid Blogging: Squid-Inspired Fluid Pump
12 Jun 2026 · 21:05 UTC
This fluid pump was inspired by the way squids propel themselves through the water. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Blog moderation policy…
Read full article →Cybercrime Magazine
Code Girls: The Secret Heroes Of World War II
12 Jun 2026 · 12:34 UTC
This week in cybersecurity from the editors at Cybercrime Magazine Sausalito, Calif. – Jun. 12, 2026 – Watch the YouTube Short During World War II, some of America’s most powerful weapons weren’t bombs or guns. They were…
Read full article →Ars Technica
Threads of underground fungal networks are long enough to reach beyond the Solar System
13 Jun 2026 · 11:18 UTC
Researchers have quantified the length and mass of arbuscular mycorrhizal fungal networks globally.
Read full article →Did a medieval flying monk spot Halley's comet, twice? It's complicated
Yesterday · 16:02 UTC
University of Leicester historian thinks Eilmer of Malmesbury saw two different comets: in 1018 and 1066
Read full article →Review: Disclosure Day is big on action, light on ideas
13 Jun 2026 · 17:17 UTC
There's nothing new or surprising, but it's still an entertaining film from one of our greatest directors.
Read full article →SANS Internet Storm Center
Evil MSI Background: BASE64 Statistical Analysis, (Mon, Jun 15th)
Today · 07:16 UTC
I like it when a fellow handler posts a diary entry about images with malicious content. Last one is Xavier: "The Evil MSI Background is Back!".
Read full article →ISC Stormcast For Monday, June 15th, 2026 https://isc.sans.edu/podcastdetail/9972, (Mon, Jun 15th)
Today · 02:00 UTC
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Read full article →ISC Stormcast For Friday, June 12th, 2026 https://isc.sans.edu/podcastdetail/9970, (Fri, Jun 12th)
12 Jun 2026 · 12:30 UTC
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Read full article →AI & Technology
ITNews Australia
AI agents are reshaping identity governance, and attackers are already exploiting the gap
HighYesterday · 18:00 UTC
The rise of autonomous AI agents has fundamentally changed the enterprise security landscape, and most organisations are not keeping pace.
Read full article →Bunnings to sell through Google AI Mode
Yesterday · 20:03 UTC
New shopping option to become available within a fortnight.
Read full article →LVP taps OpenClaw, Claude in hybrid cloud AI play
Yesterday · 19:00 UTC
Investment fund "moving aggressively on AI".
Read full article →The Verge
Fox is buying Roku
Today · 11:44 UTC
Fox has announced that it's acquiring Roku outright, in a deal that values the streaming company at $22 billion. The deal will see Fox's TV networks and Tubi streamer combine with Roku's network of streaming devices, sma…
Read full article →All the gear a 20-year gadget blogging veteran packs when traveling
Today · 11:30 UTC
Through more than two decades of travel for both work and leisure, my packing list has evolved from a random assortment of gadgets and accessories thrown together at the last minute into a refined checklist of gear honed…
Read full article →Honor’s Magic V6 sets three foldable firsts
Today · 11:00 UTC
On paper, the Honor Magic V6 sounds like a tremendous leap forward for foldable phones: It's the thinnest one yet, with the biggest battery, and the best water-resistance ever. In practice, only the bigger battery feels…
Read full article →The Guardian Technology
Social media firms hit back as Starmer announces ban for under-16s in UK
Today · 11:02 UTC
Meta, YouTube and Snapchat say ban, which would stop children using their platforms, will drive them to ‘less safe services’UK politics live – latest updatesHow will the ban work?UK parents: how do you feel about the ban…
Read full article →X accused of giving racists ‘impunity’ after refusing to bar N- and P-word posts
Yesterday · 07:00 UTC
Site takes no action over hate posts against UK politicians including Kemi Badenoch, Shabana Mahmood and Zia YusufX has refused to take down dozens of social media posts reported as “hate, abuse or harassment” in which p…
Read full article →Anthropic to disable its most advanced AI models after US order limiting foreign access
13 Jun 2026 · 12:37 UTC
Company said US government believes safeguards can be bypassed and product used to identify software vulnerabilitiesAnthropic said it will “abruptly disable” its most advanced AI models for all users after the US governm…
Read full article →ABC Technology (AU)
Labor's CGT plan flawed but better than what we have, economists tell inquiry
Today · 06:55 UTC
Economists have offered qualified support for the government's plans on day one of a Senate inquiry.
Read full article →Air quality monitoring to be upgraded in the NT after Inpex under-reporting
Today · 06:03 UTC
The Northern Territory government has announced a plan to introduce new air quality monitoring of toxic pollutants, including any carcinogenic emissions. It follows a review that found gas giant Inpex had underestimated…
Read full article →'Potentially still a future': Liberty Bell Bay smelter given another reprieve
Today · 03:04 UTC
The administrator for the mothballed manganese smelter is continuing to engage with the consortium designated as its preferred buyer, the ABC understands.
Read full article →The Guardian Technology
Anthropic releases 'safe' version of Claude Mythos AI model to public
9 Jun 2026 · 22:28 UTC
Anthropic released Fable 5, a public version of its advanced Mythos AI model class, while keeping tighter controls around cybersecurity and other sensitive uses.
Read full article →Ars Technica AI
Anthropic shuts down Fable, Mythos models following Trump admin directive
13 Jun 2026 · 03:00 UTC
Commerce dept. worries that a Fable 5 "jailbreak" could be a national security threat.
Read full article →SpaceX is now a public company valued for its AI potential, so what comes next?
12 Jun 2026 · 22:20 UTC
As of today, SpaceX is owned by investors who will want to see it make money.
Read full article →Here's what Jeff Bezos' new startup Prometheus will do
12 Jun 2026 · 18:45 UTC
It isn't the only startup tackling physical AI, but it's one of the best-funded.
Read full article →Import AI
Import AI 461: "Alignment is not on track"; FrontierCode; and synthetic research interns
Today · 11:30 UTC
Where are your agents right now?
Read full article →Wired AI
Meta Tapped a Pentagon Supplier to Prototype Face Recognition for Its Glasses
Today · 09:00 UTC
Rank One, whose board includes a former CIA deputy director and a former FBI science chief, supplied face recognition to Meta for internal development of its smart glasses app.
Read full article →A Court Has Ruled That Google Is Liable for False Statements Generated by AI Overviews
13 Jun 2026 · 09:00 UTC
The ruling holds that a company that designs, trains, operates, and manages an AI system must assume legal liability for any damages caused by the responses it generates.
Read full article →Anthropic Says It’s Taking Claude Fable 5 Offline to Comply With US Government Order
13 Jun 2026 · 02:26 UTC
“The government believes it has become aware of a method of bypassing, or ‘jailbreaking’ Fable 5,” the company said in a blog post.
Read full article →TechCrunch AI
The AI layoff wave is becoming a powder keg
Today · 07:25 UTC
What makes this combustible: at the very moment that tens of thousands of workers are being shown the door, a small cohort of AI insiders is becoming wealthy on a scale that's hard to comprehend.
Read full article →As AI companies race to go public, who else is along for the ride?
Yesterday · 16:38 UTC
Startups are trying to "ride that SpaceX IPO wave."
Read full article →As Anthropic suspends access to new models, India debates its AI future
Yesterday · 03:00 UTC
Tech leaders debate whether the Anthropic episode is a wake-up call for India’s AI ambitions.
Read full article →NVIDIA AI Blog
NVIDIA Blackwell Leads on First Agentic AI Infrastructure Benchmark
12 Jun 2026 · 21:00 UTC
AgentPerf from Artificial Analysis, the industry’s first agentic AI benchmark, gives developers, enterprises and infrastructure providers a clear way to compare systems for agentic AI. In the first round of published res…
Read full article →Vendor Security
Rapid7 Blog
Active Exploitation of Oracle PeopleSoft Zero-Day (CVE-2026-35273)
Critical12 Jun 2026 · 13:43 UTC
OverviewOn June 10, 2026, Oracle published a security alert for CVE-2026-35273, a critical vulnerability in the Updates Environment Management component of PeopleSoft Enterprise PeopleTools. Oracle released an out-of-ban…
Read full article →Weekly Metasploit Update: New Kerberos/Certificate tracing options, and multiple new modules
Critical13 Jun 2026 · 00:22 UTC
New Tracing OptionsAs hard as we try to ensure that Metasploit is bug free, issues inevitably come up. Whether you’re running a module on an op or writing a new one, what we can do is make the debugging experience easier…
Read full article →StepSecurity
400+ AUR Packages Hijacked: What the “Atomic Arch” Campaign Means for Supply-Chain Security
High13 Jun 2026 · 02:47 UTC
On June 11th 2026, security researchers and the Arch Linux community disclosed a large-scale supply-chain attack against the Arch User Repository (AUR). Attackers hijacked more than 400 community packages and turned them…
Read full article →OpenAI News
Introducing the OpenAI Partner Network
Yesterday · 17:00 UTC
OpenAI launches the Partner Network, investing $150M to help global partners accelerate enterprise AI adoption, deployment, and transformation.
Read full article →New OpenAI Academy courses for the next era of work
12 Jun 2026 · 10:00 UTC
OpenAI introduces three Academy courses that help people build practical AI skills, create repeatable workflows, and apply agents in everyday work.
Read full article →How Preply combines AI and human tutors to personalize learning
12 Jun 2026 · 00:00 UTC
Preply uses OpenAI to launch AI-generated lesson summaries, providing personalised feedback and language learning exercises.
Read full article →Palo Alto Unit 42
Tracing Digital Intent: New MacOS Tahoe 26 Artifact Discovered
12 Jun 2026 · 22:00 UTC
Unit 42 has discovered a new macOS Tahoe 26 forensic artifact that tracks user menu selections across the operating system. Learn more here. The post Tracing Digital Intent: New MacOS Tahoe 26 Artifact Discovered appeare…
Read full article →