cyberintel.kalymoon.com · 8068 articles · updated every 4 hours · grows forever
CISOs Discussed Governance, Security Operations and Cyber Risk From boardroom persuasion to AI-powered SOCs, ISMG's Cyber Resilience Summit Dallas gave senior security and risk leaders a playbook for …
Investigators Found Months of Unchecked Database Scraping Activity South Korea's privacy regulator fined Coupang a record 624.7 billion won after concluding that weak authentication controls, insider …
World Cup 2026 Bug Exposed World Cup Camera Feeds, Stream Keys A white-hat hacker discovered a now-fixed authorization flaw in a FIFA World Cup 2026 platform that allowed users to access a World Cup c…
Las Vegas, USA / Nevada, June 16th, 2026, CyberNewswire Aembit on Tuesday announced support for Copilot Studio, extending its identity and access management capabilities to Microsoft’s enterprise AI a…
Threat actors are actively exploiting multiple critical vulnerabilities in Fortinet’s FortiSandbox platform, with live attack telemetry confirming exploitation attempts over the past 24 hours. Defused…
The concept of the IOC — the Indicator of Compromise — sits at the operational heart of modern threat detection. Block the IP. Flag the domain. Quarantine the hash. The logic is clean and satisfying. …
The denial-of-service (DoS) exploit takes advantage of two features in HTTP/2 that were designed to save Internet bandwith, not power massive amplification attacks.
The emerging malware, spread via fake TikTok and Chrome downloads, demonstrates an evolution by combining banking fraud with extensive device surveillance and remote control.
FishMonger, a China-nexus threat group, has deployed an undocumented version of the Linux backdoor against government targets in Honduras, Taiwan, Thailand, and Pakistan.
Cybersecurity researchers have flagged multiple ClickFix campaigns that deliver three malware loaders called BabaDeda Loader, Lorem Ipsum Loader, and Potemkin, per independent reports from Morphisec, …
A flaw in the Google Cloud Vertex AI SDK for Python let an attacker with no access to a victim's project hijack the victim's machine learning model upload and run code inside Google's serving infrastr…
Threat actors are abusing Steam Workshop, Valve's community hub for downloading game-related content, to push various malware hidden in wallpaper packages. [...]
Data Center Market Surges as AI, Autonomous Systems, and Cybersecurity Reshape Modern Warfare The Globe and Mail
Two of the more active ransomware groups operating today, Interlock and Rhysida, have more in common than previously thought. New research shows both groups share a backdoor called Supper, and that se…
New York, New York, June 16th, 2026, CyberNewswire GitGuardian is introducing Developer Endpoint Protection, extending its secrets and non-human identity (NHI) security platform coverage to developer …
Hackers are increasingly abusing trusted cloud services to evade detection, and a newly uncovered campaign demonstrates how Microsoft Teams infrastructure can be weaponized to hide malicious traffic. …
New York, United States of America, June 16th, 2026, CyberNewswire Agent Identity Security combines AI agent governance with a native PKI foundation, directly targeting ungoverned AI agents, enterpris…
A new phishing campaign targeting Microsoft 365 users has been uncovered, and it takes a different approach than most attacks seen in the wild. Instead of trying to steal a victim’s password directly,…
India’s Ministry of Electronics and Information Technology (MeitY) has imposed a temporary ban on the Telegram messaging platform, restricting access nationwide until June 22, 2026. This decision is p…
Rokarolla Android trojan steals banking logins and spies on victims while blocking fraud alerts
China-linked SprySOCKS backdoor gains stealthy Windows variants and 30-plus C2 commands
Radware has announced AI Xploit Shield, a new service that provides organizations with protection for their applications and APIs from exploitation of newly discovered vulnerabilities. As emerging fro…
Teleport has announced the debut of two foundational capabilities of its Agentic Identity Framework in the public beta of Beams: LLM Proxy and Delegated Identity. These capabilities address a critical…