Categories Breaking News

Breaking News – Cyber Threats – 2026-07-16 13:00 PDT

Breaking News – Cyber Threats (last 6h)

Generated: 2026-07-16 13:00 PDT

  • Claude Chrome extension flaw lets malicious extensions trigger AI actions
    BleepingComputer • 2026-07-16 12:26 • www.bleepingcomputer.com
    A flaw in Anthropic’s Claude for Chrome browser extension could allow a malicious extension to trigger predefined AI actions by simulating user clicks, potentially allowing it to abuse Claude’s access to connected services such as Gmail, Google Docs, Google Calendar, and Salesforce. […]
    https://www.bleepingcomputer.com/news/security/claude-chrome-extension-flaw-lets-malicious-extensions-trigger-ai-actions/
  • New OkoBot framework deploys 20 payloads to steal data, crypto
    BleepingComputer • 2026-07-16 12:09 • www.bleepingcomputer.com
    A new malicious framework called OkoBot is delivering more than 20 payloads in attacks focused on stealing cryptocurrency wallet seed phrases, credentials, and other sensitive data. […]
    https://www.bleepingcomputer.com/news/security/new-okobot-framework-deploys-20-payloads-to-steal-data-crypto/
  • Two Scattered Spider Hackers Get 5.5 Years Each for £29 Million TfL Hack
    The Hacker News • 2026-07-16 10:09 • thehackernews.com
    Owen Flowers, 18, and Thalha Jubair, 20, were each sentenced to five and a half years at Woolwich Crown Court on Thursday, 16 July 2026, for the 2024 hack of Transport for London.

    The attack left 148 TfL systems inoperable and forced all 27,000 of the transport authority’s employees into an office to get their passwords reset in person. Both the NCA and the CPS put TfL’s losses and recovery
    https://thehackernews.com/2026/07/two-scattered-spider-hackers-get-55.html

  • ThreatsDay: Game Cheat Spyware, 24-Hour Ransomware, Chrome Sync Stalking + 12 More Stories
    The Hacker News • 2026-07-16 08:41 • thehackernews.com
    A lot of this week’s trouble starts with something that looks close enough.

    A familiar repo. A useful installer. A harmless sync setting. Then the handoff goes bad, the box starts talking to someone else, and the damage moves faster than the explanation.

    Old bugs are back, weak defaults are earning their keep, and some attack paths are so plain they barely feel like research. Here’s the mess.
    https://thehackernews.com/2026/07/threatsday-game-cheat-spyware-24-hour.html

  • Protecting Privacy in an AI Era
    Schneier on Security • 2026-07-16 07:34 • www.schneier.com

    Daniel Solove argues in the Wall Street Journal (alternate link) that giving people control of their personal data is not an effective way to regulate privacy in this era. Instead, we need to hold companies accountable for their actions, similar to what we do with food and drug companies. Measures such as rigorous data minimization, fiduciary duties, liability for negligent or reckless technological design, liability for algorithms that cause harm, and multi-st…
    https://www.schneier.com/blog/archives/2026/07/protecting-privacy-in-an-ai-era.html

  • AI Agents Broke the Security Playbook. Here's What Replaces It.
    BleepingComputer • 2026-07-16 07:00 • www.bleepingcomputer.com
    Traditional security workflows were built for environments that changed at human speed. Token Security explains why AI agents require a new approach: building on a live identity foundation while giving security teams the flexibility to create workflows tailored to their own environments. […]
    https://www.bleepingcomputer.com/news/security/ai-agents-broke-the-security-playbook-heres-what-replaces-it/

Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.

Written By

More From Author

You May Also Like