Breaking News – Cyber Threats (last 6h)
Generated: 2026-06-26 13:00 PDT
- CISA sets urgent deadline to fix Cisco flaw exploited in attacks
BleepingComputer • 2026-06-26 12:43 • www.bleepingcomputer.com
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is giving federal agencies until Sunday to patch a vulnerability in Cisco Unified Communications Manager Server that is being actively exploited. […]
https://www.bleepingcomputer.com/news/security/cisa-sets-urgent-deadline-to-fix-cisco-flaw-exploited-in-attacks/ - FBI Warns Russian Intelligence Hackers Target Signal Backup Recovery Keys
The Hacker News • 2026-06-26 12:38 • thehackernews.com
The FBI and CISA have updated their March warning about Russian intelligence phishing Signal accounts, and the operators have added a step: they now coax targets into handing over their Signal Backup Recovery Key.Hand it over once, and the attacker can restore the account’s backup, read the private and group message history, and take over the account. Worse, the key keeps working.
https://thehackernews.com/2026/06/fbi-warns-russian-intelligence-hackers.html - New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks
The Hacker News • 2026-06-26 11:17 • thehackernews.com
A newly discovered cyber attack campaign has been observed delivering a previously undocumented malware family called SharkLoader that acts as a loader for deploying Cobalt Strike Beacon on compromised hosts.Kaspersky, which is tracking the activity under the moniker StrikeShark, said the campaign has targeted a diplomatic organization in Indonesia, government organizations in Taiwan,
https://thehackernews.com/2026/06/new-sharkloader-malware-deploys-cobalt.html - Polymarket customers lose $3 million in supply-chain attack
BleepingComputer • 2026-06-26 11:04 • www.bleepingcomputer.com
Polymarket says it will fully reimburse customers who lost an estimated $3 million after hackers injected a malicious script into the platform’s frontend following a breach at a third-party vendor. […]
https://www.bleepingcomputer.com/news/security/polymarket-customers-lose-3-million-in-supply-chain-attack/ - Cybersecurity firms targeted by fraudulent OpenAI organization invites
BleepingComputer • 2026-06-26 10:49 • www.bleepingcomputer.com
Threat actors are creating OpenAI tenants that impersonate legitimate companies and inviting employees to join them, in what appears to be a ploy to trick targets into submitting sensitive company information in chats and projects. […]
https://www.bleepingcomputer.com/news/security/cybersecurity-firms-targeted-by-fraudulent-openai-organization-invites/ - Meta Is Testing Facial Recognition for Police and Military
Schneier on Security • 2026-06-26 09:40 • www.schneier.comWe know that ICE wants to deploy eyeglasses with facial recognition that can identify people in real time.
Turns out Meta is prototyping the feature with a Pentagon supplier. (Alternate news story.)
- Chinese-Speaking APT Deploys New TinyRCT Backdoor in Southeast Asia Campaign
The Hacker News • 2026-06-26 09:21 • thehackernews.com
A Chinese-speaking advanced persistent threat (APT) actor has been linked to a new custom backdoor called TinyRCT as part of cyber attacks aimed at government entities and critical infrastructure in Southeast Asia.The activity, particularly aimed at state-owned enterprises in the energy and government sectors, has been attributed to a threat actor called CL-STA-1062, which Palo Alto Networks
https://thehackernews.com/2026/06/chinese-speaking-apt-deploys-new.html - Your First GRC Agent: A Red Teamer's Walkthrough
BleepingComputer • 2026-06-26 07:01 • www.bleepingcomputer.com
AI won’t replace GRC analysts, but it can eliminate much of the repetitive work they do. Anecdotes walks through building an agent that continuously monitors controls, identifies evidence gaps, and opens remediation tasks. […]
https://www.bleepingcomputer.com/news/security/your-first-grc-agent-a-red-teamers-walkthrough/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
