Breaking News – Cyber Threats (last 6h)
Generated: 2026-06-04 08:00 PDT
- Hackers Are After the Gaps in Your Vulnerability Program: Here's Their Playbook
BleepingComputer • 2026-06-04 07:01 • www.bleepingcomputer.com
Threat actors are actively teaching newcomers how to find, exploit, and profit from vulnerable systems. Flare explores what a popular underground hacking tutorial reveals about modern attacker workflows. […]
https://www.bleepingcomputer.com/news/security/hackers-are-after-the-gaps-in-your-vulnerability-program-heres-their-playbook/ - ThreatsDay Bulletin: AI Agents Gone Wrong, Sketchy C2 Tools, ClickFix Tricks, JS Backdoors & 20+ New Stories
The Hacker News • 2026-06-04 07:00 • thehackernews.com
It got stupid again.The internet still feels held together with tape. Bad plugins, old bugs, fake tools, trusted apps doing shady things. Same mess, new wrapper. And now the weird stuff is normal. Forums go down and come back worse. Cheap hackers get better toys. AI starts breaking real systems. Great.
Read the whole thing before it ruins your week anyway.
Unauthenticated
https://thehackernews.com/2026/06/threatsday-bulletin-ai-agents-gone.html - Microsoft blames unexpected Windows driver updates on caching issue
BleepingComputer • 2026-06-04 06:41 • www.bleepingcomputer.com
On Wednesday, Microsoft fixed an issue that caused some Windows devices to install driver updates without notice despite policies configured to prevent auto-updates. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-blames-unexpected-windows-driver-updates-on-caching-issue/ - Police dismantles fake ID marketplace used by migrant smugglers
BleepingComputer • 2026-06-04 05:29 • www.bleepingcomputer.com
French and Spanish authorities took down an online marketplace selling fake identity documents to migrant smuggling rings operating within the European Union. […]
https://www.bleepingcomputer.com/news/security/police-dismantles-fake-id-marketplace-used-by-migrant-smugglers/ - China-Linked TA4922 Expands Phishing Attacks to UK, Germany, Italy, and South Africa
The Hacker News • 2026-06-04 05:22 • thehackernews.com
A new China-linked cybercrime group known as TA4922 has expanded its targeting focus to target European organizations in the U.K., Germany, Italy, and South Africa.These efforts have been complemented by a “rapid operational tempo” and a continually evolving malware arsenal comprising known families like ValleyRAT (aka Winos 4.0) and Atlas RAT (aka AtlasCross RAT), as well as previously
https://thehackernews.com/2026/06/china-linked-ta4922-expands-phishing.html - FlutterShell Backdoor Spreads to macOS via Malicious Google and YouTube Ads
The Hacker News • 2026-06-04 04:19 • thehackernews.com
Cybersecurity researchers have shed light on a macOS malvertising campaign codenamed Operation FlutterBridge that spreads a new backdoor called FlutterShell.According to Palo Alto Networks Unit 42, the campaign is said to be the next stage of a previously reported activity cluster dubbed JSCoreRunner (aka FileRipple) in late August 2025. The cybercrime group behind the two attack chains is
https://thehackernews.com/2026/06/fluttershell-backdoor-spreads-to-macos.html - Cisco warns of critical Unified CM flaw with PoC exploit code
BleepingComputer • 2026-06-04 04:09 • www.bleepingcomputer.com
Cisco has released security updates to patch a critical-severity Unified Communications Manager (Unified CM) flaw that allows attackers to gain root privileges. […]
https://www.bleepingcomputer.com/news/security/cisco-warns-of-critical-unified-cm-flaw-with-poc-exploit-code/ - Hacking Meta’s AI Chatbot
Schneier on Security • 2026-06-04 04:04 • www.schneier.comHackers are convincing Meta’s AI support chatbot to let them take over other peoples’ accounts:
A video posted on X showed the step-by-step process to hack someone’s Instagram account. The hacker allegedly used a VPN to spoof the targets’ presumed location to avoid triggering Instagram’s automated account protections. Then, the ha…
https://www.schneier.com/blog/archives/2026/06/hacking-metas-ai-chatbot.html - Fake Sites Mimicking Open-Source Tools Rank High on Google to Deliver Malware via TDS
The Hacker News • 2026-06-04 02:51 • thehackernews.com
Cybersecurity researchers have flagged a large-scale operation that impersonates open-source and freeware projects to funnel unsuspecting users through a Traffic Distribution System (TDS) and deliver malware families like Remus Stealer, AnimateClipper, and the SessionGate framework.“The sites are well-designed and often look like legitimate project portals at a glance, sometimes referencing
https://thehackernews.com/2026/06/fake-sites-mimicking-open-source-tools.html - Hackers Spied on a Stock Exchange Executive's Outlook Mailbox for Five Months
The Hacker News • 2026-06-04 02:33 • thehackernews.com
Unknown attackers spent at least five months inside the Outlook mailbox of a senior executive at a major global stock exchange, copying the inbox out in small, repeated batches and routing it through Dropbox and OneDrive so the traffic blended into normal cloud activity.Symantec and Carbon Black’s Threat Hunter Team reported the campaign this week. This points to espionage, not a money grab:
https://thehackernews.com/2026/06/hackers-spied-on-stock-exchange.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
