Breaking News – Cyber Threats (last 6h)
Generated: 2026-06-19 13:00 PDT
- Unpatchable 'usbliter8' Exploit Breaks Apple A12 and A13 SecureROM Boot Chain
The Hacker News • 2026-06-19 11:37 • thehackernews.com
Security researchers at Paradigm Shift have published a working exploit, dubbed usbliter8, that achieves arbitrary code execution inside the SecureROM of Apple’s A12 and A13 chips.That code is burned into the silicon at manufacture. No software update can reach it. Affected devices will carry this flaw for as long as they stay in use.
This is not a remote attack. It requires
https://thehackernews.com/2026/06/unpatchable-usbliter8-exploit-breaks.html - The Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security Processes
The Hacker News • 2026-06-19 11:33 • thehackernews.com
The Gentlemen ransomware-as-a-service (RaaS) operation is actively developing and maintaining a suite of endpoint detection and response (EDR) killers that it hands out to affiliates for impairing system defenses before deploying the encryptor.This mature portfolio of EDR-terminating tools is centered around a framework that’s known as GentleKiller.
“They also incorporate third-party or
https://thehackernews.com/2026/06/the-gentlemen-raas-uses-gentlekiller.html - Texas govt data breach exposes over 3 million driver’s licenses
BleepingComputer • 2026-06-19 09:12 • www.bleepingcomputer.com
The Texas Parks and Wildlife Department (TPWD) disclosed a data breach at its license system vendor that exposed personal information for more than three million individuals. […]
https://www.bleepingcomputer.com/news/security/texas-govt-data-breach-exposes-over-3-million-drivers-licenses/ - Apple’s Hide My Email tweak leaves privacy fans fuming
Graham Cluley • 2026-06-19 08:47 • www.bitdefender.com
Apple has long marketed itself as the privacy-first tech giant. So why is it making a change to Hide My Email that will make it easier for websites to block anonymous sign-ups – and harder for you to stay private online?Read more in my article on the Hot for Security blog.
https://www.bitdefender.com/en-us/blog/hotforsecurity/apples-hide-my-email-tweak-leaves-privacy-fans-fuming - AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution
The Hacker News • 2026-06-19 08:30 • thehackernews.com
Microsoft researchers have detailed an exploit chain, named AutoJack, that turns an AI browsing agent into a delivery vehicle for remote code execution.Steer the agent to load an attacker’s web page, and that page’s JavaScript can reach a privileged local service on the same machine and spawn a process on the host.
No credentials, no sign-in screen, and no further user interaction once
https://thehackernews.com/2026/06/autojack-attack-lets-one-web-page.html - Operation Endgame Disrupts SocGholish Servers, Cleans 14,971 WordPress Sites
The Hacker News • 2026-06-19 08:07 • thehackernews.com
Dutch law enforcement authorities, along with counterparts from Canada , Germany, and the U.S., have disrupted malicious infrastructure associated with SocGholish and cleaned up nearly 15,000 infected WordPress websites.“With these actions we deprive cybercriminals of access to infected computer systems,” Maikel Rollman of the Netherlands National High Tech Crime Unit said.
“This prevents
https://thehackernews.com/2026/06/operation-endgame-disrupts-socgholish.html - CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices
The Hacker News • 2026-06-19 07:00 • thehackernews.com
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday urged Fortinet customers with FortiGate appliances to take steps to secure against ongoing malicious activity aimed at thousands of internet-accessible devices.The sweeping campaign, believed to be the work of Russian-speaking threat actors, has been codenamed FortiBleed. The number of compromised devices stands at
https://thehackernews.com/2026/06/cisa-warns-fortinet-customers-as.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
