Breaking News – Cyber Threats (last 6h)
Generated: 2026-06-30 08:00 PDT
- GuardFall Exposes Open-Source AI Coding Agents to Decades-Old Shell Injection Risks
The Hacker News • 2026-06-30 07:26 • thehackernews.com
The safety check that is supposed to stop an AI coding agent from running a dangerous command can be walked straight past using a shell trick that has been public for decades.New research from Adversa AI, which is named the bypass GuardFall, found it works against ten of the eleven popular open-source coding and computer-use agents the firm tested. Only one, “Continue,” was built to
https://thehackernews.com/2026/06/guardfall-exposes-open-source-ai-coding.html - Lessons from the Underground: How to Combat Business Email Compromise
BleepingComputer • 2026-06-30 07:00 • www.bleepingcomputer.com
Business Email Compromise is more than an email scam. It’s a coordinated operation involving compromised accounts, financial research, and cash-out networks. Flare explores how underground forums reveal how BEC attacks are planned and executed. […]
https://www.bleepingcomputer.com/news/security/lessons-from-the-underground-how-to-combat-business-email-compromise/ - 282 iOS AI Apps Leak API Keys and Open AI Proxy Access in Network Traffic Study
The Hacker News • 2026-06-30 06:49 • thehackernews.com
Researchers tested 444 AI chatbot apps for iPhone and found that 282 of them, nearly two-thirds, exposed paid AI access through their network traffic.In many cases, the path in was visible just by watching what the app sent: a plaintext API key, a reusable token, or a backend server that accepted requests with no key at all.
Whoever grabs it can send model requests on the developer’s account,
https://thehackernews.com/2026/06/282-ios-apps-found-leaking-llm-api-keys.html - The Realities of AI Video Surveillance
Schneier on Security • 2026-06-30 05:05 • www.schneier.comThe Financial Times has a good article on how AI is changing the capabilities of video surveillance, with information from both Israel/Iran and Russia.
I wrote about this sort of thing a few years ago, how AI enables mass spying in the way that computers and networks enabled mass surveillance. The interesting development in the article is that AI allows people to ask natural language questions about video footage to AIs—and AIs can answer them.https://www.schneier.com/blog/archives/2026/06/the-realities-of-ai-video-surveillance.html
- What the Numbers Say About FIFA 2026 Cyber Risk
The Hacker News • 2026-06-30 04:30 • thehackernews.com
The FIFA World Cup 2026 opened on June 11. By that date, according to Check Point Research, the fraud infrastructure targeting it had already been built, staged, and partially deployed. Threat actor activity was pre-planned, months out, across three sectors and at least ten languages.Check Point Exposure Management published the FIFA World Cup 2026 Cyber Threat Report this month, covering
https://thehackernews.com/2026/06/what-numbers-say-about-fifa-2026-cyber.html - Attackers Exploit SimpleHelp CVE-2026-48558 to Deploy TaskWeaver and Djinn Stealer
The Hacker News • 2026-06-30 04:18 • thehackernews.com
An unknown threat actor has been observed exploiting a recently disclosed maximum-severity security flaw in SimpleHelp to deliver two previously unreported malware families, TaskWeaver and Djinn Stealer.The intrusion involves the exploitation of CVE-2026-48558 (CVSS score: 10.0), a critical authentication bypass vulnerability impacting the OpenID Connect (OIDC) flow that an unauthenticated
https://thehackernews.com/2026/06/attackers-exploit-simplehelp-cve-2026.html - Insurance giant Aflac discloses data breach after subsidiary hack
BleepingComputer • 2026-06-30 04:12 • www.bleepingcomputer.com
American insurance giant Aflac has disclosed a new data breach after attackers breached its Japan subsidiary’s systems and stole personal and bank account information. […]
https://www.bleepingcomputer.com/news/security/insurance-giant-aflac-discloses-data-breach-after-subsidiary-hack/ - Microsoft adds smarter bot protection to Teams meetings
BleepingComputer • 2026-06-30 03:52 • www.bleepingcomputer.com
Microsoft has introduced a new Teams admin policy that allows organizers to prevent third-party bots from joining meetings without approval. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-adds-smarter-bot-protection-to-teams-meetings/ - USB drives carrying China-linked malware infected Japanese military networks for nearly a year
Graham Cluley • 2026-06-30 03:25 • www.bitdefender.com
Read more in my article on the Hot for Security blog.
https://www.bitdefender.com/en-us/blog/hotforsecurity/usb-drives-carrying-china-linked-malware-infected-japanese-military-networks-for-nearly-a-year - ToddyCat: your hidden email assistant. Part 2
Securelist • 2026-06-30 03:00 • securelist.com
An in-depth analysis of Umbrij, a new tool used by the ToddyCat APT group to compromise corporate email communications in Gmail. The attack targeted OAuth authorization tokens, allowing threat actors to gain access to Google services.
https://securelist.com/toddycat-apt-umbrij-tool-and-oauth/120251/ - Kali Linux 2026.2 released with 9 new tools, NetHunter updates
BleepingComputer • 2026-06-30 02:46 • www.bleepingcomputer.com
Kali Linux 2026.2, the second release of the year, is now available for download, featuring 9 new tools and numerous Kali NetHunter improvements. […]
https://www.bleepingcomputer.com/news/linux/kali-linux-20262-released-with-9-new-tools-nethunter-updates/ - Blackfield ransomware asks Nidec Corporation for $2 million ransom
BleepingComputer • 2026-06-30 02:41 • www.bleepingcomputer.com
The Blackfield ransomware gang is asking for a $2 million ransom from Nidec Corporation, a large Japanese manufacturer of electronic components for automotive and computing applications. […]
https://www.bleepingcomputer.com/news/security/blackfield-ransomware-asks-nidec-corporation-for-2-million-ransom/ - June 2026 Apple Updates, (Tue, Jun 30th)
SANS ISC Diary (full) • 2026-06-30 02:31 • isc.sans.eduApple released updates for iOS/iPadOS, macOS, and Safari on Monday. There have been no updates for other Apple operating systems (visionOS, watchOS, tvOS). Usually, Apple updates all products at the same time.
- AirDrop and Quick Share Flaws Let Nearby Attackers Trigger Crashes and Bypass Checks
The Hacker News • 2026-06-30 02:27 • thehackernews.com
Two researchers have found six security flaws in AirDrop and Quick Share, the wireless features that beam files between nearby devices with no cables or shared network.An attacker within wireless range, with just a laptop and no prior connection, can crash the sharing service on a Mac or iPhone set to receive from anyone, with no tap or prompt.
The same research found Quick Share flaws that
https://thehackernews.com/2026/06/airdrop-and-quick-share-flaws-let.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
