Breaking News – Cyber Threats (last 6h)
Generated: 2026-06-29 03:00 PDT
- Microsoft Removes 119 Edge Extensions That Hid Malware in Images and Fonts
The Hacker News • 2026-06-29 01:32 • thehackernews.com
Microsoft has shut down a long-running malicious extension operation on the Edge Add-ons store that hid its payloads inside ordinary image and font files, then woke up days after install to steal credentials and run ad fraud.The company calls it StegoAd, a mash-up of steganography and adware, and ties 119 extensions to a single threat actor it says has been active since at least 2021.
https://thehackernews.com/2026/06/microsoft-removes-119-edge-extensions.html - Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw
The Hacker News • 2026-06-29 00:06 • thehackernews.com
A public proof-of-concept is now out for CVE-2026-55200, a critical flaw in libssh2 that lets a malicious or compromised SSH server trigger memory corruption on a connecting client, with possible code execution. No credentials, no user interaction. The bug affects every release up to and including 1.11.1 and carries a CVSS 4.0 score of 9.2.libssh2 is a client-side SSH library, not a server.
https://thehackernews.com/2026/06/public-poc-released-for-critical.html - Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer
The Hacker News • 2026-06-28 22:36 • thehackernews.com
Cybersecurity researchers have uncovered two hijacked npm packages and a cluster of Go packages that are designed to deploy a Python-based information stealer on compromised Windows, Linux, and macOS hosts.“This attack avoids the most common npm execution paths through lifecycle scripts, perhaps in an attempt to remain ‘compatible’ with npm v12’s security hardenings,” JFrog said in a
https://thehackernews.com/2026/06/hijacked-npm-and-go-packages-use-vs.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
