Breaking News – Cyber Threats (last 6h)
Generated: 2026-06-08 17:00 PDT
- NFCShare Android malware spreads via fake banking app updates on GitHub
BleepingComputer • 2026-06-08 15:11 • www.bleepingcomputer.com
New variants of the NFCShare Android malware are being distributed as fake updates for legitimate banking apps hosted on GitHub. […]
https://www.bleepingcomputer.com/news/security/nfcshare-android-malware-spreads-via-fake-banking-app-updates-on-github/ - SoFi confirms third-party data breach at Hong Kong subsidiary
BleepingComputer • 2026-06-08 14:55 • www.bleepingcomputer.com
SoFi Hong Kong is warning that it suffered a data breach after hackers gained access to a database at a third-party vendor containing customer information. […]
https://www.bleepingcomputer.com/news/security/sofi-confirms-third-party-data-breach-at-hong-kong-subsidiary/ - New Apple feature automatically changes your compromised passwords
BleepingComputer • 2026-06-08 14:03 • www.bleepingcomputer.com
At WWDC 26, Apple announced an Apple Intelligence-powered feature that can automatically fix weak and compromised passwords. This works in Safari, and it’s rolling out with iOS 27. […]
https://www.bleepingcomputer.com/news/apple/new-apple-feature-automatically-changes-your-compromised-passwords/ - New Shai-Hulud attack trojanizes 19 science-focused PyPI packages
BleepingComputer • 2026-06-08 13:41 • www.bleepingcomputer.com
Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud supply-chain attack that delivered malware designed to steal developer secrets. […]
https://www.bleepingcomputer.com/news/security/new-shai-hulud-attack-trojanizes-19-science-focused-pypi-packages/ - One-Character Linux Kernel Flaw Enables Local Root Access, Exploits Now Public
The Hacker News • 2026-06-08 13:17 • thehackernews.com
Security researchers have published a detailed, working exploit for a Linux kernel use-after-free that lets an unprivileged local user escalate to root and break out of a container.The flaw, CVE-2026-23111, sits in the kernel’s nf_tables packet-filtering code and was patched upstream on February 5, 2026. Exodus Intelligence released its full technical walkthrough on June 8, and it is not even
https://thehackernews.com/2026/06/one-character-linux-kernel-flaw-enables.html - WhatsApp says it disrupted new NSO spyware phishing attacks
BleepingComputer • 2026-06-08 11:40 • www.bleepingcomputer.com
WhatsApp has detected and stopped spear-phishing campaigns allegedly conducted by the NSO Group after investigating user reports of social engineering attacks. […]
https://www.bleepingcomputer.com/news/security/whatsapp-says-it-disrupted-new-nso-spyware-phishing-attacks/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
