Breaking News – Cyber Threats (last 6h)
Generated: 2026-06-25 08:00 PDT
- Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability
The Hacker News • 2026-06-25 07:12 • thehackernews.com
An analysis of a popular Google Chrome ad block extension for YouTube has uncovered the ability to execute arbitrary JavaScript code.According to Island, the extension, named Adblock for YouTube (ID: cmedhionkhpnakcndndgjdbohmhepckk), has more than 10 million installs and carries a Featured badge on the Chrome Web Store.
The extension description states that it allows users to prevent web
https://thehackernews.com/2026/06/chrome-ad-blocker-with-10m-installs.html - The Four Elevations of Effective Fraud Prevention
BleepingComputer • 2026-06-25 07:01 • www.bleepingcomputer.com
Fraudsters don’t attack just one transaction. They target accounts, platforms, and entire ecosystems. IPQS explains the four elevations of fraud prevention and why broader visibility improves fraud detection. […]
https://www.bleepingcomputer.com/news/security/the-four-elevations-of-effective-fraud-prevention/ - ThreatsDay Bulletin: Smart TV Proxyware, 24-Year curl Bug, AI Crime Forums + 13 More Stories
The Hacker News • 2026-06-25 05:24 • thehackernews.com
It’s dumb out there again.This week has the usual smell of prod on fire and nobody wanting to admit who left the door open — old creds still working, trusted apps doing sketchy crap, browser tricks jumping the fence, and “normal” workflows turning into phishing pipes because apparently email was not enough hell already.
The worst part is how cheap some of it feels. Not elite. Not cinematic.
https://thehackernews.com/2026/06/threatsday-bulletin-smart-tv-proxyware.html - Webinar: Why account takeovers remain one of the hardest threats to stop
BleepingComputer • 2026-06-25 05:12 • www.bleepingcomputer.com
Account takeover attacks continue to challenge security teams because attackers often operate through legitimate accounts and trusted services. This webinar explores how behavioral AI can help organizations identify compromised accounts faster and automate response workflows. […]
https://www.bleepingcomputer.com/news/security/webinar-why-account-takeovers-remain-one-of-the-hardest-threats-to-stop/ - Interesting Paper Exploring Prompt Injection
Schneier on Security • 2026-06-25 04:23 • www.schneier.comThis is a fascinating explotation of how LLMs fall for prompt injection attacks. It turns out that they learn to recognize the style of text in different role/instruction blocks, and not just the tags.
Their conclusion:
Role tags were a formatting trick that became the security architecture and the cognitive scaffolding of modern LLMs. We’ve shown that this architecture doesn’t survive into the model’s actual representations, and that such role confusion is linked to prompt injection.
Unles…
https://www.schneier.com/blog/archives/2026/06/interesting-paper-exploring-prompt-injection.html - Surviving the Mythos Era: Richard Bejtlich on the Case for NDR
The Hacker News • 2026-06-25 04:17 • thehackernews.com
Despite the abundance of telemetry at analysts’ disposal, many security operations teams struggle to answer a few basic questions during incident investigation: What happened? What evidence do we have? How do we know we’re seeing it all, in context?Answering these questions requires teams to go beyond alerts, the most common basis for initial triage. But investigations (and their outcomes)
https://thehackernews.com/2026/06/surviving-mythos-era-richard-bejtlich.html - What do Ports Hear When Nobody's Listening? An Assessment of Automated Cybercrime [Guest Diary], (Wed, Jun 24th)
SANS ISC Diary (full) • 2026-06-25 03:01 • isc.sans.edu[This is a Guest Diary by Nicole Phillips, an ISC intern as part of the SANS.edu BACS program]
- Inside the 2026 SMB threat landscape: From phishing and scams to fake AI tools
Securelist • 2026-06-25 03:00 • securelist.com
Kaspersky researchers analyze the threat landscape for SMBs in 2026: the rise of attacks involving fake AI tools, phishing schemes, and data sold on the dark web.
https://securelist.com/smb-threat-report-2026/120357/ - New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis
The Hacker News • 2026-06-25 02:23 • thehackernews.com
A previously undocumented Rust-based macOS implant and information stealer has been found to embed a prompt injection payload designed to trick a malware analyst’s artificial intelligence (AI) tools and trick it into aborting or refusing an analysis of the artifact.The malware has been codenamed Gaslight owing to this deceptive behavior. It’s been assessed with high confidence that the tool is
https://thehackernews.com/2026/06/new-gaslight-macos-malware-uses-prompt.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
