Categories Breaking News

Breaking News – Cyber Threats – 2026-07-10 13:00 PDT

Breaking News – Cyber Threats (last 6h)

Generated: 2026-07-10 13:00 PDT

  • Ryuk ransomware member pleads guilty in the US, faces 15 years in prison
    BleepingComputer • 2026-07-10 10:46 • www.bleepingcomputer.com
    A 34-year-old Armenian man has pleaded guilty to hacking U.S. companies and deploying the infamous Ryuk ransomware to encrypt their systems. […]
    https://www.bleepingcomputer.com/news/security/ryuk-ransomware-member-pleads-guilty-in-the-us-faces-15-years-in-prison/
  • Police suspects Dutch hackers were involved in Odido breach
    BleepingComputer • 2026-07-10 09:37 • www.bleepingcomputer.com
    The Dutch National Police (Politie) says it has found “strong indications” that Dutch hackers have been involved in a February breach at the telecommunications provider Odido. […]
    https://www.bleepingcomputer.com/news/security/police-suspects-dutch-hackers-were-involved-in-odido-breach/
  • URGENT – Progress Tells ShareFile Customers to Shut Down Storage Zone Controllers Over Security Threat
    The Hacker News • 2026-07-10 09:30 • thehackernews.com
    Progress Software has told ShareFile customers to shut down the Windows servers running their Storage Zone Controllers, confirming to The Hacker News that it is responding to a “credible external security threat.”

    The company has temporarily disabled access to the affected accounts, a step it says it took “out of an abundance of caution” while it works with internal and external security
    https://thehackernews.com/2026/07/urgent-progress-tells-sharefile.html

  • Injective Labs GitHub Compromise Pushes Wallet-Key-Stealing npm Packages
    The Hacker News • 2026-07-10 09:29 • thehackernews.com
    Unknown threat actors compromised the Injective Labs SDK project’s GitHub repository and leveraged it to publish a malicious package on the npm registry to steal cryptocurrency wallet private keys and mnemonic seed phrases.

    The compromised version, @injectivelabs/sdk-ts@1.20.21, came embedded with fake telemetry functionality that exfiltrated data from cryptocurrency wallets. The version was
    https://thehackernews.com/2026/07/injective-labs-github-compromise-pushes.html

  • Progress urges ShareFile admins to shut down servers over “credible” threat
    BleepingComputer • 2026-07-10 09:26 • www.bleepingcomputer.com
    Progress Software is emailing ShareFile customers who use Storage Zone Controllers to immediately shut down their servers after identifying what it describes as a “credible external security threat” targeting the on-premises secure file-sharing software. […]
    https://www.bleepingcomputer.com/news/security/progress-urges-sharefile-customers-to-shut-down-servers-over-credible-threat/
  • Six New U-Boot Flaws Could Let Malicious Images Crash Devices or Run Code at Boot
    The Hacker News • 2026-07-10 08:57 • thehackernews.com
    Researchers at firmware security firm Binarly have found six new flaws in U-Boot, the small program that starts up hardware as varied as home routers, smart cameras, and the management chips inside data-center servers.

    Four of the bugs can crash a device. The other two could let an attacker who slips a malicious image in front of the bootloader run their own code, before the device
    https://thehackernews.com/2026/07/six-new-u-boot-flaws-could-let.html

  • My Stack Simulator, (Wed, Jul 8th)
    SANS ISC Diary (full) • 2026-07-10 08:52 • isc.sans.edu

    The stack is a memory region where a program stores temporary data - like local variables and return addresses. Think of the stack as a pile of plates in your kitchen: you can only add a new plate to the top, and you can only take one away from the top too. Programs use this same “last in, first out” principle to keep track of what they're doing. Every time a function is called, the program pushes a new plate onto the stack containing things like local variables and the…
    https://isc.sans.edu/diary/rss/33138

  • Hackers exploit critical auth bypass in Gitea Docker image
    BleepingComputer • 2026-07-10 08:48 • www.bleepingcomputer.com
    Hackers are actively exploiting a critical vulnerability in the official Docker image for the Gitea self-hosted Git service that allows attackers to impersonate any user, including administrators. […]
    https://www.bleepingcomputer.com/news/security/hackers-exploit-critical-auth-bypass-in-gitea-docker-image/
  • Money launderer accused of stealing seized crypto while in prison
    BleepingComputer • 2026-07-10 08:30 • www.bleepingcomputer.com
    A Bulgarian national has been charged with stealing $290,000 in government-seized cryptocurrency while serving 121 months in prison for helping launder millions stolen from American fraud victims. […]
    https://www.bleepingcomputer.com/news/security/money-launderer-accused-of-stealing-seized-crypto-while-in-prison/
  • Laser Attack Resets Tangem Wallet Passwords on Cards That Can't Be Patched
    The Hacker News • 2026-07-10 07:51 • thehackernews.com
    Researchers at Ledger’s Donjon security team have shown that a precisely timed laser pulse, aimed at the chip inside a Tangem crypto wallet card, can reset the card’s password to anything the attacker picks.

    No old password. No backup card. Once it is reset, whoever did it controls the wallet and can move the coins out.

    This is not an emergency for most owners. The attack needs
    https://thehackernews.com/2026/07/laser-attack-resets-tangem-wallet.html

  • Researcher Details WhatsApp-to-Host Attack Chain Using Three OpenClaw Flaws
    The Hacker News • 2026-07-10 07:19 • thehackernews.com
    Details have emerged about three now-patched security flaws in the OpenClaw personal artificial intelligence (AI) assistant that, if successfully exploited, could enable credential theft, privilege escalation, and arbitrary code execution on the host.

    A brief description of the high-severity vulnerabilities is as follows –

    GHSA-hjr6-g723-hmfm (CVSS score: 8.8) – An operating system
    https://thehackernews.com/2026/07/researcher-details-whatsapp-to-host.html

  • The Replicant in Your Directory: AI Agents and the Identity Security Gap
    BleepingComputer • 2026-07-10 07:00 • www.bleepingcomputer.com
    AI agents are accelerating the growth of non-human identities, making it harder for organizations to understand what exists, who owns it, and what it can access. Netwrix explains why stronger visibility and identity governance are essential as AI expands the enterprise attack surface. […]
    https://www.bleepingcomputer.com/news/security/the-replicant-in-your-directory-ai-agents-and-the-identity-security-gap/

Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.

Written By

More From Author

You May Also Like