ICYMI: 2026-06-24
Latest Headlines
CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited
Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered
Cordyceps CI/CD Flaws Expose 300+ GitHub Repositories to Supply-Chain Attacks
DoJ Seizes Huione Cloud Account Tied to Cyber Scam Money Laundering
Cisco Unified CM Flaw Exploited After PoC Reveals File-Write Path to Root
When Information Becomes the Attack Surface – Understanding AI Agent Traps
Microsoft and Allies Smash Shared Infrastructure of Amadey and StealC Malware
Exclusive: Meet AIVEX, a New Triage Model Built to Reduce Supply Chain Threat and Risk
macOS Weaknesses Chained to Silently Disable Endpoint Security Agents
Agentic AI Security: Wrong Context, Wrong Decisions at Machine Speed
Exploitable CI/CD Vulnerabilities Expose Millions of Repositories to Hijacking
Mistic Backdoor Blends With Microsoft Endpoint Security Tooling to Evade Detection
Microsoft Teams Impersonation Campaign Enables Unauthorized Access Through RMM Abuse
Fake Document Reader in The Google Play Store with 100K Downloads Deliver Android Malware
Malicious Edge Extension Uses Chrome Native Messaging to Execute Code on Victim Systems
EvilTokens Hides Its Attack Flow in the Browser, Exposing Static Analysis Gaps
Hackers Exploiting Cisco Catalyst SD-WAN Manager 0-Day Flaw to Gain Root-Level Access
Authorities Disrupt Stealer Malware StealC and Amadey Infrastructure in Global Operation
Fake Income Tax Assessment Notice Delivers RAT-Like Malware to Windows Users
PoC Exploit Released for Microsoft Exchange Server Elevation of Privilege Vulnerability
Google releases new privacy controls for activity history, personalization
Mandiant reveals how Cisco SD-WAN zero-day attacks gained root access
Malicious Edge extension abuses Native Messaging as bridge to malware
CISA warns of max severity Ubiquiti flaws exploited in attacks
Amadey, StealC malware operations disrupted in Operation Endgame action
Securing the service desk: Why social engineering attacks keep succeeding
Stealthy Mistic backdoor linked to ransomware access broker KongTuke
– MTZ