Breaking News – Cyber Threats (last 6h)
Generated: 2026-06-16 17:00 PDT
- Malicious JetBrains Marketplace plugins steal AI API keys from developers
BleepingComputer • 2026-06-16 14:54 • www.bleepingcomputer.com
At least 15 malicious plugins found on the JetBrains Marketplace were designed to steal AI API keys from developers. […]
https://www.bleepingcomputer.com/news/security/malicious-jetbrains-marketplace-plugins-steal-ai-api-keys-from-developers/ - New Rokarolla Android malware targets 217 banking, crypto apps
BleepingComputer • 2026-06-16 13:04 • www.bleepingcomputer.com
A new Android banking trojan named Rokarolla is targeting 217 banking and cryptocurrency applications using an extensive set of 137 commands. […]
https://www.bleepingcomputer.com/news/security/new-rokarolla-android-malware-targets-217-banking-crypto-apps/ - Google Vertex AI SDK Flaw Let Attackers Hijack Model Uploads via Bucket Squatting
The Hacker News • 2026-06-16 12:05 • thehackernews.com
A flaw in the Google Cloud Vertex AI SDK for Python let an attacker with no access to a victim’s project hijack the victim’s machine learning model upload and run code inside Google’s serving infrastructure.Palo Alto Networks Unit 42, which found and reported the bug through Google’s bug bounty program, calls the technique “Pickle in the Middle” and said it saw no exploitation in the wild.
https://thehackernews.com/2026/06/google-vertex-ai-sdk-flaw-let-attackers.html - Steam Workshop abused to spread malware via Wallpaper Engine app
BleepingComputer • 2026-06-16 11:27 • www.bleepingcomputer.com
Threat actors are abusing Steam Workshop, Valve’s community hub for downloading game-related content, to push various malware hidden in wallpaper packages. […]
https://www.bleepingcomputer.com/news/security/steam-workshop-abused-to-spread-malware-via-wallpaper-engine-app/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
