1. Adobe released an emergency patch for CVE-2026-34621, a critical vulnerability in Acrobat Reader currently under active exploitation in the wild (The Hacker News).
2. Threat actors compromised the CPUID website to distribute trojanized versions of CPU-Z and HWMonitor, which deployed the STX RAT to unsuspecting users (The Hacker News).
3. ShinyHunters claimed a data breach affecting Rockstar Games, allegedly facilitated through a Snowflake integration (Reddit).
4. An international law enforcement operation led by the UK National Crime Agency identified over 20,000 victims of cryptocurrency fraud (BleepingComputer).
5. Zephyr Energy, a UK oil and gas company, reported a loss of 700,000 pounds due to a contractor payment fraud incident (Reddit).
6. A major data breach in Turkey allegedly exposed 20 million records, coinciding with an antitrust investigation into the local health insurance market (Reddit).
7. Citizen Lab reported that law enforcement agencies in the US, Hungary, and El Salvador used the Webloc geolocation surveillance tool to track 500 million devices (The Hacker News).
8. Hungarian government officials were found using weak passwords that had been previously exposed in public breach dumps (Reddit).
9. Security researchers identified a remote code execution vulnerability in Claude Code caused by environment variable injection (Reddit).
10. A new malware delivery campaign is leveraging automated dependency update tools like Renovate and Dependabot to distribute malicious code (Reddit).
11. The FBI reported that the combination of AI and cryptocurrency scams is causing billions of dollars in losses for individuals and organizations (Fortra).
12. Microsoft Copilot Vision is being analyzed as an emerging attack surface due to its ability to read sensitive web form inputs in real time (Reddit).
Be First to Comment