Smashing Security podcast #470: This AI security flaw might be impossible to fix
A website called “UK visa portal” has been quietly collecting passport scans, selfies, and personal data from thousands of travellers...
Blog
WhatsApp, Slack Notifications Could Hijack Google Gemini on Android
Swati KhandelwalJun 03, 2026Vulnerability / Artificial Intelligence A single poisoned notification from WhatsApp, Slack, SMS, Signal, Instagram, or Messenger could...
Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT
Ravie LakshmananJun 03, 2026Malware / Microsoft Defender Cybersecurity researchers have flagged a new malspam campaign that makes use of Google's...
Apple’s 2026 Security Events: iPhone Exploits, Zero-Days Put Millions at Risk
Apple’s security year so far has been anything but quiet. The company’s 2026 security cycle has been dominated by a...
Microsoft Tests Wearable AI Badge for Office Workers
Microsoft is experimenting with AI hardware that office workers could wear like an access badge. At Microsoft Build 2026, the...
CISA Flags 2-Year-Old Oracle WebLogic Vulnerability as Actively Exploited
A patch that should have retired an Oracle WebLogic vulnerability two years ago is now the reason CISA is sounding...
Cyber espionage campaign targeted stock exchange executive’s Outlook account
Cyber espionage campaign targeted stock exchange executive’s Outlook account Pierluigi Paganini June 03, 2026 Attackers spent five months silently stealing...
Russia’s FSB Says Foreign Spies Infected Officials’ Phones With Malware
Russia’s FSB Says Foreign Spies Infected Officials’ Phones With Malware Pierluigi Paganini June 03, 2026 Russia’s FSB claims foreign intelligence...
Request for Comments: PCI Data Security Standard (PCI DSS) v4.0.1
From 3 June to 20 July, eligible PCI SSC stakeholders are invited to review and provide feedback on the currently...
U.S. CISA adds Android and Linux Kernel flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Android and Linux Kernel flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini June 03, 2026 U.S. Cybersecurity...
Google Patches Actively Exploited Android Flaw Affecting Millions of Devices
Google Patches Actively Exploited Android Flaw Affecting Millions of Devices Pierluigi Paganini June 03, 2026 Google fixed 124 Android flaws,...
After a quick 1.1M sales, MacBook Neo set to reshape the PC industry
Apple’s great game IDC’s figures confirm Apple’s strategy is working, with strong demand for the Neo, and, indeed, all Apple’s...
One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens
Ravie LakshmananJun 03, 2026Vulnerability / Software Development Cybersecurity researchers have disclosed a one-click attack via Microsoft Visual Studio Code (VS...
Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP)
The Fragmented State of Modern Enterprise Identity Enterprise IAM is approaching a breaking point. As organizations scale, identity becomes increasingly...
Beyond the Zero-Day: See Your Network Like an Attacker | Webinar with HD Moore
The Hacker NewsJun 03, 2026Exposure Management Assume the breach. Zero-days keep shipping, AI is writing exploits faster than anyone patches,...