Breaking News – Cyber Threats (last 6h)
Generated: 2026-06-12 08:00 PDT
- Early Warning Signs of Supply-Chain Attacks Live in the Dark Web
BleepingComputer • 2026-06-12 07:01 • www.bleepingcomputer.com
GitHub access sales, leaked repositories, and stolen API keys can all become supply-chain attack footholds. Flare explores how underground forums expose early signals tied to software supply-chain risk. […]
https://www.bleepingcomputer.com/news/security/early-warning-signs-of-supply-chain-attacks-live-in-the-dark-web/ - ISC Stormcast For Friday, June 12th, 2026 https://isc.sans.edu/podcastdetail/9970, (Fri, Jun 12th)
SANS ISC Diary (full) • 2026-06-12 05:30 • isc.sans.edu
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
https://isc.sans.edu/diary/rss/33074 - Agentjacking Attack Tricks AI Coding Agents Into Running Malicious Code
The Hacker News • 2026-06-12 05:04 • thehackernews.com
Cybersecurity researchers have described what they say is a new class of attack that can trick artificial intelligence (AI) coding agents into running arbitrary code on developer machines.Called Agentjacking by Tenet Security, the attack can be triggered by means of a fake error report crafted using Sentry, an open-source error-tracking and performance-monitoring platform.
“The attack
https://thehackernews.com/2026/06/agentjacking-attack-tricks-ai-coding.html - Microsoft fixes Windows update failures linked to WUSA installer
BleepingComputer • 2026-06-12 04:44 • www.bleepingcomputer.com
Microsoft has fixed a known issue that caused Windows updates released since May 2025 to fail when installed via the Windows Update Standalone Installer (WUSA) from a network share. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-windows-update-failures-linked-to-wusa-installer/ - Bernie Sanders’ AI Sovereign Wealth Fund Plan
Schneier on Security • 2026-06-12 04:03 • www.schneier.comLet no one accuse Bernie Sanders of ducking the big questions. Writing in the New York Times last week, the senator asked: “Will the future of humanity be determined by a handful of billionaires who have promoted and developed AI, with virtually no democratic input, who stand to become even richer and more powerful than they are today?”
We agree entirely that this is one of the most potent questions facing global democracy today. Our book, https://www.schneier.com/blog/archives/2026/06/bernie-sanders-ai-sovereign-wealth-fund-plan.html
- Rethinking MDR as Attackers and Defenders Embrace AI
The Hacker News • 2026-06-12 04:00 • thehackernews.com
For most of the past decade, managed detection and response was the answer to a real problem. Security teams couldn’t staff around the clock, couldn’t hire enough analysts, and needed someone else to handle the alert queue. MDR stepped in. It worked well enough. Until now.The threat landscape has changed faster than the MDR model can adapt. Attackers are using AI to move faster, generate more
https://thehackernews.com/2026/06/rethinking-mdr-as-attackers-and.html - Pharma giant Novo Nordisk discloses breach of clinical trials data
BleepingComputer • 2026-06-12 03:13 • www.bleepingcomputer.com
Danish pharmaceutical giant Novo Nordisk, the world’s largest producer of insulin, disclosed a data breach affecting patient information from some clinical trials. […]
https://www.bleepingcomputer.com/news/security/pharmaceutical-giant-novo-nordisk-discloses-security-breach/ - LangGraph Flaw Chain Exposes Self-Hosted AI Agents to Remote Code Execution
The Hacker News • 2026-06-12 02:50 • thehackernews.com
Cybersecurity researchers have disclosed details of three now-patched security flaws impacting LangGraph, including a critical vulnerability chain that could result in remote code execution.LangGraph is an open-source framework created by LangChain to build complex, stateful, and multi-agent artificial intelligence (AI) agentic applications.
“An SQL injection in LangGraph’s function could
https://thehackernews.com/2026/06/langgraph-flaw-chain-exposes-self.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
