Today's News Highlights
CISA: Splunk Enterprise flaw actively exploited, patch by Sunday
Today · 10:39 UTC
CISA has urged U.S. federal agencies to secure their systems by Sunday against a critical Splunk Enterprise vulnerability that is being exploited in attacks. [...]
Read full article →Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone
Today · 06:36 UTC
Apple has updated its Beats Studio Buds wireless earbuds to patch a high-severity vulnerability that could be exploited by nearby hackers to eavesdrop on users. The vulnerability,…
Read full article →AutoJack: How a single page can RCE the host running your AI agent
Today · 00:17 UTC
AutoJack is a novel exploit chain showing how a single malicious webpage can turn an AI browsing agent into a remote code execution vector on the host machine. By abusing trust in…
Read full article →Operation Endgame Disrupts Malware Network Linked to Major Ransomware Gang
Today · 10:15 UTC
SocGholish malware has been removed from 15,000 sites associated with Evil Corp hackers
Read full article →Microsoft: June 2026 Windows updates break Recycle Bin prompts
Today · 11:32 UTC
Microsoft has confirmed a confusing Windows bug that causes different filenames to appear in the confirmation dialog when deleting a file from the Recycle Bin. [...]
Read full article →Forget Data Leakage: Shadow AI's Real Threat Is Access Control
Today · 10:30 UTC
The first wave of enterprise AI concern was straightforward. It was simply employees pasting sensitive data into public AI tools. Security teams responded with usage policies, doma…
Read full article →Top Stories by Impact
CISA: Splunk Enterprise flaw actively exploited, patch by Sunday
Today · 10:39 UTC
CISA has urged U.S. federal agencies to secure their systems by Sunday against a critical Splunk Enterprise vulnerability that is being exploited in attacks. [...]
Read full article →AzeoTech DAQFactory
Yesterday · 12:00 UTC
View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to upload malicious .ctl files that may lead to arbitrary code execution. The following vers…
Read full article →Apollo Pharmacy Blood Glucose Monitoring System APG-01 BT
Yesterday · 12:00 UTC
View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to obtain sensitive health-related information and prevent legitimate users from establis…
Read full article →Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone
Today · 06:36 UTC
Apple has updated its Beats Studio Buds wireless earbuds to patch a high-severity vulnerability that could be exploited by nearby hackers to eavesdrop on users. The vulnerability,…
Read full article →Malware à la Mode: Tracking Dropping Elephant Tradecraft Through a China-Themed Loader Chain
17 Jun 2026 · 11:20 UTC
Executive summaryRapid7 researchers have identified a sophisticated malware campaign attributed to the threat actor "Dropping Elephant," characterized by the use of a China-themed…
Read full article →Why Security Teams Need To Start Earlier
Yesterday · 14:45 UTC
Security leaders are facing an unusual set of circumstances. The drumbeat for better security prioritization has been rising for years in boardrooms around the world. The desire is…
Read full article →AutoJack: How a single page can RCE the host running your AI agent
Today · 00:17 UTC
AutoJack is a novel exploit chain showing how a single malicious webpage can turn an AI browsing agent into a remote code execution vector on the host machine. By abusing trust in…
Read full article →Mastra npm Supply Chain Attack: 140+ Packages Backdoored via easy-day-js Typosquat
Yesterday · 10:03 UTC
On June 17, 2026, an attacker compromised the @mastra npm organization and quietly added easy-day-js as a dependency across 140+ packages in the Mastra AI framework ecosystem. easy…
Read full article →Cybersecurity
BleepingComputer
CISA: Splunk Enterprise flaw actively exploited, patch by Sunday
CriticalToday · 10:39 UTC
CISA has urged U.S. federal agencies to secure their systems by Sunday against a critical Splunk Enterprise vulnerability that is being exploited in attacks. [...]
Read full article →Microsoft: June 2026 Windows updates break Recycle Bin prompts
MediumToday · 11:32 UTC
Microsoft has confirmed a confusing Windows bug that causes different filenames to appear in the confirmation dialog when deleting a file from the Recycle Bin. [...]
Read full article →Webinar: How attackers bypass MFA and how defenders can respond
MediumToday · 12:12 UTC
Modern phishing attacks, including Device Code phishing, can undermine MFA protections and grant attackers access to corporate accounts without stealing passwords. This webinar explores how behavioral AI can help securit…
Read full article →CISA Alerts
AzeoTech DAQFactory
CriticalYesterday · 12:00 UTC
View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to upload malicious .ctl files that may lead to arbitrary code execution. The following versions of AzeoTech DAQFactory are affected…
Read full article →Apollo Pharmacy Blood Glucose Monitoring System APG-01 BT
CriticalYesterday · 12:00 UTC
View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to obtain sensitive health-related information and prevent legitimate users from establishing a connection with the device. The f…
Read full article →CISA Urges Hardening Fortinet Devices After Reports of Credential Exposure
CriticalYesterday · 12:00 UTC
CISA is aware of global reports that malicious cyber actors have targeted internet-accessible Fortinet devices across government and private sector organizations using compromised credentials. This activity, referred to…
Read full article →The Hacker News
Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone
CriticalToday · 06:36 UTC
Apple has updated its Beats Studio Buds wireless earbuds to patch a high-severity vulnerability that could be exploited by nearby hackers to eavesdrop on users. The vulnerability, tracked as CVE-2025-20701 (CVSS score: 8…
Read full article →Forget Data Leakage: Shadow AI's Real Threat Is Access Control
MediumToday · 10:30 UTC
The first wave of enterprise AI concern was straightforward. It was simply employees pasting sensitive data into public AI tools. Security teams responded with usage policies, domain blocks, and data loss prevention rule…
Read full article →Salesforce Disables Klue App Integration After OAuth Token Abuse Exposes Customer Data
MediumToday · 09:03 UTC
Salesforce has revealed that it disabled the Klue Battlecards app integration within its platform in response to a security incident impacting the competitive intelligence company on June 11, 2026. To that end, organizat…
Read full article →Infosecurity Magazine
Operation Endgame Disrupts Malware Network Linked to Major Ransomware Gang
CriticalToday · 10:15 UTC
SocGholish malware has been removed from 15,000 sites associated with Evil Corp hackers
Read full article →AWS Unveils 'Continuum,' an AI-Powered Vulnerability Management Platform
MediumToday · 11:00 UTC
Working with frontier AI models, this new platform aims to help discovering, prioritizing, validating and remediating code vulnerabilities
Read full article →Confidence Lacks in Threat Detection Across Non-Email Channels like Slack and Teams
MediumToday · 09:00 UTC
Half of cybersecurity leaders lack confidence in detecting threats on Slack, Teams and other non-email platforms, despite growing attacker focus
Read full article →Cloudflare Blog
Project Glasswing: what Mythos showed us
High18 May 2026
Cloudflare shares findings from testing Mythos and other security-focused LLMs against live code across critical infrastructure, including model strengths, weaknesses, and what is needed before this work can scale.
Read full article →Dark Reading
FIFA Bug Exposes World Cup Streams to Remote Takeover
MediumYesterday · 18:20 UTC
A hacker could have "Rickrolled" the World Cup — or worse — thanks to FIFA's unenforced Entra access controls.
Read full article →Novo Nordisk Breach Exposes Software Development Pipeline Risk
MediumYesterday · 20:05 UTC
A leaked GitHub token underscores what most organizations get wrong: Treating secrets management as a tooling problem rather than an identity problem.
Read full article →Operation Escaneo Signals Shift in LatAm Threat Landscape
Yesterday · 19:09 UTC
The threat group's curious business model may combine opportunistic monetization alongside intel collection, without much coordination between the two.
Read full article →Schneier on Security
AI Use by the US Government
Medium17 Jun 2026 · 11:04 UTC
On 14 April, the Trump administration quietly acknowledged the widespread use of AI to automate government processes. The office of management and budget (OMB) disclosed a staggering 3,611 active or planned use cases for…
Read full article →Embedding Forbidden Text in Spyware to Discourage AI Analysis
Yesterday · 11:04 UTC
At least one malware developer is adding text about nuclear and biological weapons to their spyware, in an effort to stop automatic AI analysis. Details: The _index.js payload begins with a large JavaScript block comment…
Read full article →Anthropic’s Fable and the State of AI
Today · 11:03 UTC
On June 9th, Anthropic released its Fable generative AI model. Three days later, the US government classified it as a dangerous munition, and used its export-control authority to prohibit any foreign nationals from acces…
Read full article →CyberScoop
Authorities disrupt Evil Corp’s SocGholish botnet
MediumYesterday · 22:03 UTC
Cybersecurity firms, researchers and officials took down 106 servers and remediated nearly 15,000 sites that were infected with the malware. The post Authorities disrupt Evil Corp’s SocGholish botnet appeared first on Cy…
Read full article →How software development’s speed obsession enabled TeamPCP’s chaos crusade
Yesterday · 15:25 UTC
The threat group’s remarkable success targeting open-source software was inevitable and fueled by the industry’s decision to prioritize code shipping over security. The post How software development’s speed obsession ena…
Read full article →Congress tees up No FAKES Act, aiming at AI-generated deepfakes
Yesterday · 20:20 UTC
While preventing third parties from profiting off unauthorized deepfakes of artists and performers is a bipartisan concern, some business and digital rights groups are opposed. The post Congress tees up No FAKES Act, aim…
Read full article →Ars Technica
Microsoft discovers new lightweight backdoor that steals cryptocurrency
MediumYesterday · 23:28 UTC
Crypto Clipper spreads over USB and communicates over Tor.
Read full article →As global warming threatens corals, scientists search for reefs that can take the heat
Today · 11:15 UTC
Researchers say these coral strongholds may help repopulate more degraded reefs.
Read full article →A bold satellite rescue mission came together in record time, but will it work?
Today · 00:39 UTC
"I consider this a success already, just from the fact that we're even going to try this."
Read full article →SANS Internet Storm Center
The Behavior of Coordinated SSH Brute Force Attacks over the last three months [Guest Diary], (Wed, Jun 17th)
Yesterday · 01:49 UTC
[This is a Guest Diary by Adam Nason, an ISC intern as part of the SANS.edu BACS program]
Read full article →eBanking Phishing Delivered Through IPv4-Mapped IPv6 Address, (Fri, Jun 19th)
Today · 08:37 UTC
I detected an interesting phishing email this morning. It targets a major Belgian bank:
Read full article →ISC Stormcast For Thursday, June 18th, 2026 https://isc.sans.edu/podcastdetail/9978, (Thu, Jun 18th)
Yesterday · 02:00 UTC
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Read full article →Krebs on Security
‘Popa’ Botnet Linked to Publicly-Traded Israeli Firm
Yesterday · 17:37 UTC
For the past four years, a sprawling Android-based botnet called Popa has forced millions of consumer TV boxes to relay Internet traffic linked to advertising fraud, account takeovers, and mass data-scraping efforts. Thi…
Read full article →Cybercrime Magazine
Virtual Or Full-Time CISO: ROI Calculator On Security Leadership
16 Jun 2026 · 12:19 UTC
This week in cybersecurity from the editors at Cybercrime Magazine Sausalito, Calif. – Jun. 16, 2026 – Read the full story from LinkedIn The 2026 CISO Report by Cybersecurity Ventures, published in partnership with Sopho…
Read full article →Nir Zuk: Backstory of a Cybersecurity Legend
17 Jun 2026 · 13:20 UTC
This week in cybersecurity from the editors at Cybercrime Magazine Sausalito, Calif. – Jun. 17, 2026 – Watch the YouTube video “I started my cybersecurity ‘career’ as one of the earlier virus developers in the world,” Ni…
Read full article →AI & Technology
TechCrunch AI
AI inference startup Baseten reportedly raising $1.5B months after its last mega-round
MediumYesterday · 21:20 UTC
Startup Baseten is reportedly close to finalizing a $1.5 billion round at a $13 billion as the “inference gold rush" marches on.
Read full article →Source: Elastic agrees to buy CRV-backed DeductiveAI for up to $85M
Today · 00:51 UTC
DeductiveAI, a startup that uses AI to catch and resolve bugs in software, was founded just three years ago.
Read full article →The US says ASML’s top chip tool may be in China. ASML says it isn’t
Today · 07:59 UTC
There's a commercial logic that cuts against the idea that ASML would risk its export license to arm a Chinese customer.
Read full article →ITNews Australia
ASD draws a hard line on developers lacking security skills
MediumYesterday · 01:36 UTC
Updated ASD ISM drops with new and revised controls.
Read full article →CBA appoints new group CIO
Yesterday · 23:35 UTC
Elevates CTO to executive leadership team.
Read full article →LMG bets on Slack as an enterprise platform
Yesterday · 04:02 UTC
Unifies company messaging in move away from email.
Read full article →The Guardian Technology
Telegram questioned by Ofcom after arsonist who targeted Starmer-linked properties recruited on app
Today · 06:00 UTC
Exclusive: Telegram urged to clarify how it detects illegal incitement after attacks were coordinated using appTelegram is facing questions from Ofcom over how it detects and prevents illegal incitement after a Ukrainian…
Read full article →On the trail of the dotcom queen: how Julie Meyer left a pattern of unpaid bills, missing funds and broken dreams in her wake
Today · 07:00 UTC
Investigation: The entrepreneur was once the toast of London’s tech scene, a ‘global leader of tomorrow’ who starred on Dragons’ Den and promised untold riches for the startups she championed. But people she worked with…
Read full article →Attorney general tells department to stop using X amid UK disinformation concerns
Yesterday · 18:00 UTC
Exclusive: Richard Hermer’s office understood to be first in government to restrict use after recent riotsThe attorney general for England and Wales has told his office to no longer post on X, making it the first UK gove…
Read full article →The Guardian Technology
Anthropic releases 'safe' version of Claude Mythos AI model to public
9 Jun 2026 · 22:28 UTC
Anthropic released Fable 5, a public version of its advanced Mythos AI model class, while keeping tighter controls around cybersecurity and other sensitive uses.
Read full article →MIT Technology Review AI
A startup claims it broke through a bottleneck that’s holding back LLMs
Today · 10:40 UTC
Miami-based AI startup Subquadratic came out of stealth mode last month with a huge claim. It announced that it had solved a mathematical bottleneck that had been holding back large language models for almost a decade. T…
Read full article →Want to get a data center online quickly? Give it some flex.
16 Jun 2026 · 09:00 UTC
At the end of a tense and scoreless first half of a soccer match between the English men’s team and rival Germany, millions of Brits let out a collective sigh and did what they so often do in moments of stress: They made…
Read full article →The Verge
In season 2 of Sugar, Colin Farrell’s quirky detective becomes much more human
Today · 12:00 UTC
When Colin Farrell was doing press for the first season of the detective series Sugar, he had to be very careful with how he spoke. Sugar is a story about a quirky private detective, but it's also secretly a work of scie…
Read full article →Kaleidescape’s movie player blows streaming, and your wallet, away
Today · 12:00 UTC
We've lost something in the past 15 years. Netflix, Amazon, Disney, Apple; they've all convinced us that streaming is the best way to watch movies and shows at home. With everything at our fingertips, there's no need to…
Read full article →Barret Zoph is out at OpenAI again after just five months
Today · 04:49 UTC
Five months after returning to OpenAI, Barret Zoph - the company's head of enterprise AI sales - has departed, The Verge has learned. Zoph returned to OpenAI in mid-January after a stint as co-founder and CTO of Thinking…
Read full article →Wired AI
How the Peter Thiel-Linked Dialog Club Secretly Ranks Its Members
Yesterday · 22:12 UTC
Leaked files show the invite-only network grades members by their money and fame, shaping who’s in, who’s out, and who pays.
Read full article →The White House Is Making Up Its Rules for AI in Real Time
Yesterday · 21:03 UTC
Anthropic still can’t distribute Claude Mythos or Fable 5 after running afoul of the Trump administration. But no one can say exactly what the company did wrong.
Read full article →Meta’s AI Workers Are Revolting, Peter Thiel’s Secret Society, and SBF’s Plea to Trump
Yesterday · 19:29 UTC
On today’s Uncanny Valley, we dive into the dysfunction in Meta’s newly formed AI unit and why it’s been driving already-low employee morale even further into the ground.
Read full article →Ars Technica AI
As China looms, Taiwan makes more drones for defense and the US military
Yesterday · 21:21 UTC
Taiwan's drone spending plans for defense could also boost business overseas.
Read full article →Bernie Sanders unveils $7 trillion plan to give Americans control of AI industry
Yesterday · 17:02 UTC
Biggest AI firms will likely recoil at Bernie Sanders' AI wealth fund.
Read full article →AI coding agents taught robots how to install GPUs and cut zip ties
17 Jun 2026 · 19:25 UTC
Nvidia's self-improvement program for robots enlists teams of AI coding agents.
Read full article →Google DeepMind
Unlocking UK house-building with AI-accelerated planning
16 Jun 2026 · 21:29 UTC
UK government partners with Google DeepMind to build a new AI-powered prototype aimed at faster housing decisions.
Read full article →Securing the future of AI agents
16 Jun 2026 · 15:46 UTC
Securing internal systems with an AI Control Roadmap, combining traditional safeguards and real-time monitoring.
Read full article →NVIDIA AI Blog
How FERC’s Large-Load Interconnection Actions Help Address Grid Stress, Improve Affordability
Yesterday · 20:00 UTC
In a consequential grid infrastructure decision, the Federal Energy Regulatory Commission (FERC) today issued a major milestone on large-load interconnection impacting how those building AI factories, semiconductor fabri…
Read full article →At Cannes Lions, NVIDIA Partners Reshape Advertising and Marketing With AI
Yesterday · 13:00 UTC
The digital era gave the advertising and marketing industry speed; the AI era is giving it autonomous operations. For companies building next-generation technologies for advertising and marketing, the question is no long…
Read full article →Sync and Stream: GeForce NOW Connects to Members’ Game Libraries Across Devices
Yesterday · 13:00 UTC
Play favorite titles from popular game libraries, keep progress synced and jump back into gaming sessions on virtually any device. That’s the power of GeForce NOW cloud gaming. From providing access to members’ favorite…
Read full article →ABC Technology (AU)
Caution urged after Qld's largest gold mine's lifesaving $1.4bn deal
Today · 07:18 UTC
An expert has warned governments to keep an eye on gold mines experiencing financial troubles, given the surge in prices.
Read full article →KMPG 'not full of bad apples', former CEO says during parliamentary grilling
Today · 06:35 UTC
Federal senators have accused senior leaders in Australia's accounting and auditing industry of behaving disgracefully as more revelations emerge about KPMG's whistleblower scandal.
Read full article →WA government wants federal help with Collie's coal transition
Today · 05:39 UTC
The state government has already tipped $700 million into the transition of the WA town of Collie away from coal. Now, the Cook government wants tens of millions of federal dollars to finish the job.
Read full article →Vendor Security
Rapid7 Blog
Malware à la Mode: Tracking Dropping Elephant Tradecraft Through a China-Themed Loader Chain
Critical17 Jun 2026 · 11:20 UTC
Executive summaryRapid7 researchers have identified a sophisticated malware campaign attributed to the threat actor "Dropping Elephant," characterized by the use of a China-themed decoy document to deliver a heavily rewo…
Read full article →Why Security Teams Need To Start Earlier
CriticalYesterday · 14:45 UTC
Security leaders are facing an unusual set of circumstances. The drumbeat for better security prioritization has been rising for years in boardrooms around the world. The desire is there, but the processes of the past ar…
Read full article →Microsoft Security
AutoJack: How a single page can RCE the host running your AI agent
CriticalToday · 00:17 UTC
AutoJack is a novel exploit chain showing how a single malicious webpage can turn an AI browsing agent into a remote code execution vector on the host machine. By abusing trust in localhost, missing authentication, and u…
Read full article →From package to postinstall payload: Inside the Mastra npm supply chain compromise
HighYesterday · 03:43 UTC
A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend against supply chain attacks using Microsoft Defender and actionable threat intelligence. The po…
Read full article →New Forrester study shows customers who unified with Microsoft Security benefited from 124% ROI
Yesterday · 19:36 UTC
New Forrester Total Economic Impact™ study shows Microsoft Security consolidation delivers ROI, lowers risk, and prepares organizations to secure AI. The post New Forrester study shows customers who unified with Microsof…
Read full article →StepSecurity
Mastra npm Supply Chain Attack: 140+ Packages Backdoored via easy-day-js Typosquat
CriticalYesterday · 10:03 UTC
On June 17, 2026, an attacker compromised the @mastra npm organization and quietly added easy-day-js as a dependency across 140+ packages in the Mastra AI framework ecosystem. easy-day-js is a typosquat of the popular da…
Read full article →Prevent npm and Python Supply Chain Attacks on Developer Machines with Package Configs
HighYesterday · 10:03 UTC
npm and Python supply chain attacks run on developer machines and steal secrets. See how Package Configs audits registry, cooldown, and auth across your fleet
Read full article →400+ AUR Packages Hijacked: What the “Atomic Arch” Campaign Means for Supply-Chain Security
HighYesterday · 10:03 UTC
On June 11th 2026, security researchers and the Arch Linux community disclosed a large-scale supply-chain attack against the Arch User Repository (AUR). Attackers hijacked more than 400 community packages and turned them…
Read full article →Palo Alto Unit 42
Pickle in the Middle – Hijacking Vertex AI Model Uploads for Cross-Tenant RCE
Critical16 Jun 2026 · 10:00 UTC
Unit 42 discovered a Vertex AI Python SDK vulnerability that allows remote code execution via bucket squatting. Read the article for more. The post Pickle in the Middle – Hijacking Vertex AI Model Uploads for Cross-Tenan…
Read full article →AWS Security
Accelerate security investigations with Kiro CLI
HighYesterday · 19:24 UTC
When a security event occurs in your Amazon Web Services (AWS) environment, rapid response is critical. However security teams often struggle with time-consuming, manual processes that slow down investigations. Analysts…
Read full article →Spring 2026 SOC 1 and 2 reports are now available in OSCAL format
Yesterday · 16:50 UTC
Amazon Web Services (AWS) is excited to release the Spring 2026 System and Organization Controls (SOC) 1 and 2 reports in machine-readable OSCAL format alongside the PDF version of the reports. The reports cover 188 serv…
Read full article →Introducing AWS Continuum: Security at machine speed
17 Jun 2026 · 15:34 UTC
What we believe We’ve been thinking deeply about enterprise security. The operating model that served us for the past decade (collect telemetry, store it, query it, build dashboards to watch it) is no longer keeping pace…
Read full article →Kaspersky Securelist
Dozens of malicious wallpapers found on Steam Workshop: gamers’ accounts at risk
Medium16 Jun 2026 · 09:00 UTC
Since late 2025, malware has been spreading rapidly through the Steam Workshop, the gaming platform's built-in service for players to create and share custom content. The attackers are primarily targeting gamers in China…
Read full article →CrowdStrike Blog
New Abuse of the ClickOnce Technology, Part 2: Stop Threat Actors from Clicking Once and Staying Forever
Yesterday · 05:00 UTC
Read full article →New Abuse of the ClickOnce Technology, Part 1: The Inner Workings of ClickOnce Application Deployment
Yesterday · 05:00 UTC
Read full article →OpenAI News
New usage analytics and updated spend controls for enterprises
Yesterday · 17:00 UTC
OpenAI introduces new spend controls and usage analytics for ChatGPT Enterprise, helping organizations manage costs and scale AI with confidence.
Read full article →Using AI to help physicians diagnose rare genetic diseases affecting children
Yesterday · 08:00 UTC
Researchers used an OpenAI reasoning model to help diagnose rare diseases, identifying 18 new diagnoses in previously unsolved cases.
Read full article →Improving health intelligence in ChatGPT
Yesterday · 11:00 UTC
Learn how GPT-5.5 Instant improves ChatGPT’s health and wellness responses with stronger reasoning, better context, clearer communication, and physician-informed evaluations.
Read full article →Cisco Talos
Close Encounters of the Human Kind
Yesterday · 18:00 UTC
In the latest Threat Source, Hazel channels her inner Spielberg to explore why humans are delightfully irrational, reminding us that while security best practices are simple in theory, they’re a lot harder to pull off wh…
Read full article →Scripting the disassembler: Local agentic reverse engineering through vbdec’s live COM object model
Yesterday · 10:00 UTC
Cisco Talos detailed a new approach to reverse engineering that pairs local AI agents with traditional analysis tools like the VB6 disassembler vbdec. Instead of awkwardly bolting AI onto the software, vbdec exposes its…
Read full article →Check Point Research
From Stars to Upvotes: Fake Reputation Fueling a Crypto Clipboard Hijacker
17 Jun 2026 · 13:38 UTC
Key Points Introduction In this research, we analyze a clipboard hijacker campaign that is hidden inside a collection of “solutions” and “tools” that claim to give users an unfair advantage. These offers include Solana a…
Read full article →