ICYMI: 2026-06-08
Latest Headlines
One-Character Linux Kernel Flaw Enables Local Root Access, Exploits Now Public
Meta Blocks NSO Group’s New WhatsApp Phishing Attack, Files Contempt Order
Critical Check Point VPN Flaw Exploited to Bypass Passwords in IKEv1 Setups
AI Phishing Is Crushing SOCs with Alert Volume: How to Reduce Tier 1 Overload
⚡ Weekly Recap: Instagram Account Hacks, Android Zero-Day, GitHub Worm and More
VerdantBamboo Deploys BSD Variant of BRICKSTORM on Linux Appliances
UNC3753 Used Vishing and Physical Intrusions in U.S. Data Theft Extortion Campaign
VS Code Adds 2-Hour Extension Auto-Update Delay to Limit Supply Chain Attacks
Meta Deletes Face-Recognition System From Its Smart Glasses App After WIRED Report
A Security Raises $37 Million for Autonomous Offensive Security Platform
WhatsApp Catches Spyware Firm NSO Defying No-Hacking Court Order
Everest Forms Vulnerability Exploited to Hack WordPress Sites
Anthropic Urges Industry Coordination to Allow for a ‘Pause’ in AI Development if Risks Grow
Check Point VPN 0-day Vulnerability Exploited in the Wild to Deploy Ransomware
New Linux Kernel Vulnerability Lets Attackers Escalate Privileges to Root
New Pink Hacking Group Attacking Enterprise Users to Steal Cloud Storage Passwords
Malspam Attack Uses Google DoubleClick Redirects to Deliver Fileless .NET Loader
UNC3753 Attacking US Law Firms Using Vishing and RMM Tools to Exfiltrate Data
New Lucid Stealer Targets 18 Browsers, Crypto Wallets, and Discord Tokens With Hidden Remote Access
WhatsApp Disrupts NSO-Linked Cyberattack Targeting Users with Pegasus Spyware
Chrome Patches 429 Vulnerabilities Including 22 Critical Ones – Update Now!
OWASP Releases AI Security Report to Empower Security Professionals with New Tools
NFCShare Android malware spreads via fake banking app updates on GitHub
SoFi confirms third-party data breach at Hong Kong subsidiary
New Apple feature automatically changes your compromised passwords
New Shai-Hulud attack trojanizes 19 science-focused PyPI packages
Gogs patches critical zero-day enabling remote code execution
Critical UniFi OS bug lets hackers gain root without authentication
Check Point links VPN zero-day attacks to Qilin ransomware gang
Oxford University discloses data breach after careers platform hack
Over 20,000 Instagram accounts stolen in Meta AI support hack
– MTZ