CSO Online

Meet Hades: The malware that lies to AI security agents

Researchers have uncovered a supply-chain attack that hides in Python packages, propagates like a worm, and tricks LLM-based ...
The Hacker News

ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach Universities

Oracle PeopleSoft zero-day CVE-2026-35273 was exploited before Oracle's June 10 advisory, exposing data and triggering ...
The Next Web

A Chinese state-linked botnet has grown to 1,500 hacked routers and is mapping vulnerable targets within hours of disclosure

The JDY botnet, linked to China's Volt Typhoon, has doubled in size and now scans for newly disclosed vulnerabilities within hours. Most nodes are in the US.
International Business Times

Chinese Threat Group Hid Inside Microsoft 365 Networks for 18 Months Using Secret Malware Arsenal

Chinese hacking group UNC5221 secretly accessed Microsoft 365 environments for 18 months using Brickstorm, Plenet and AgentPSD malware, researchers found. Freepik A sophisticated Chinese ...

3 signs someone is stealing your Wi-Fi - and how to kick them off

3 signs someone is stealing your Wi-Fi - and how to kick them off ...
The Hacker News

ThreatsDay Bulletin: Worm Code Leaked, AI Agent Phished, Claude Code Patch + 28 New Stories

Cybersecurity roundup: supply chain threats, AI agent risks, browser-cloning malware, mule networks, endpoint bypasses, and ...

In A.I. Blunder, More Than 34,000 Instagram Accounts Were Attacked

The flaw, which Meta said it had fixed, allowed anyone to take over accounts using a bug in the company’s new artificial ...

New Shai-Hulud attack trojanizes 19 science-focused PyPI packages

Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...
PCMag on MSN

Can a VPN Actually Protect You From Hackers? The Answer Is Complicated

From DDoS attacks to public Wi-Fi risks, here's what a VPN is effective against—and the threats that require other tools and ...

High-severity vulnerability in Linux caused by a single faulty character

Researchers have analyzed a high-severity vulnerability in Linux that’s able to escalate untrusted users to root by ...

China-linked JDY botnet expands targeting of U.S. military networks

The JDY botnet, a malware network previously associated with Chinese threat actors like Volt Typhoon, has significantly expanded its targeting scope and reconnaissance efforts.

Patch AM: Plant a seed - A seed swap to kick off summer reading and 13 more events

Be sure to catch Community Singing Celebration With Heather Houston and the Joyful Voices Chorus! on the San Anselmo Patch calendar ...