Categories Breaking News

Breaking News – Cyber Threats – 2026-07-08 08:00 PDT

Breaking News – Cyber Threats (last 6h)

Generated: 2026-07-08 08:00 PDT

  • Ubiquiti Patches Critical UniFi Flaws Across Connect, Talk, Access, Protect, and OS
    The Hacker News • 2026-07-08 07:38 • thehackernews.com
    Ubiquiti has shipped updates to address multiple critical security flaws impacting UniFi Connect, UniFi Talk, UniFi Access, UniFi Protect, and UniFi OS that could result in privilege escalation and arbitrary command execution.

    The list of vulnerabilities is as follows –

    CVE-2026-50746 (CVSS score: 10.0) – An improper access control vulnerability in UniFi Connect Application that an attacker
    https://thehackernews.com/2026/07/ubiquiti-patches-critical-unifi-flaws.html

  • 3 Ways AI Powers Service Desk Attacks and How to Prevent Them
    BleepingComputer • 2026-07-08 07:01 • www.bleepingcomputer.com
    Specops Software explains how AI is making service desk impersonation attacks more convincing, personalized, and scalable, along with practical steps organizations can take to strengthen onboarding and identity verification. […]
    https://www.bleepingcomputer.com/news/security/3-ways-ai-powers-service-desk-attacks-and-how-to-prevent-them/
  • Weekly Update 511: Live from my Riad in Marrakech
    Troy Hunt • 2026-07-08 06:54 • www.troyhunt.com

    How's this for a location?! I mean, last week was nice with Scott in Mallorca, but Marrakech is, well, wow 😮 Anyway, about those data breaches… This week I'm talking about the futility of attempting to remove piss from a pool, yet here we are, with

    https://www.troyhunt.com/weekly-update-511/

  • New Ghost Phishing Wave Is Breaking Traditional Email Security
    The Hacker News • 2026-07-08 06:00 • thehackernews.com
    A recent EvilTokens campaign targeting businesses across the US and Europe is exposing a new email security blind spot. This “ghost phishing” technique keeps the malicious page hidden until it decrypts and comes to life inside the victim’s browser.

    For security leaders, the risk is clear: traditional URL checks may miss the attack while Microsoft 365 access, sensitive data, and response time
    https://thehackernews.com/2026/07/new-ghost-phishing-wave-is-breaking.html

  • SCMBANKER Malware Uses ClickFix Lures to Target Mexican Banking Users
    The Hacker News • 2026-07-08 05:52 • thehackernews.com
    A new banking fraudulent operation is targeting customers of Mexican banks, fintech, payment processors, and cryptocurrency exchanges using ClickFix lures.

    The activity cluster, tracked by Elastic Security Labs under the moniker REF6045, involves infecting victims through fake CAPTCHA verification pages that deceive them into running a malicious command that installs a PowerShell toolkit dubbed
    https://thehackernews.com/2026/07/scmbanker-malware-uses-clickfix-lures.html

  • Felons, Fraudsters Flog Offensive Cybersecurity Startup
    KrebsOnSecurity • 2026-07-08 05:31 • krebsonsecurity.com
    A cybersecurity startup dangling millions of dollars to acquire zero-day security vulnerabilities in popular software is run by a pair of far-right conspiracy theorists and convicted felons whose most recent ventures included fake intelligence companies and a now-defunct AI-based lobbying platform they operated under assumed names.
    https://krebsonsecurity.com/2026/07/felons-fraudsters-flog-offensive-cybersecurity-startup/
  • DuckDuckGo browser now blocks YouTube video ads
    BleepingComputer • 2026-07-08 05:00 • www.bleepingcomputer.com
    DuckDuckGo announced that its browser can now block most video ads on YouTube, including those shown before the video starts playing and during playback. […]
    https://www.bleepingcomputer.com/news/software/duckduckgo-browser-now-blocks-youtube-video-ads/
  • GitHub 'Verified' Commits Can Be Rewritten Into New Hashes Without Breaking Signatures
    The Hacker News • 2026-07-08 04:51 • thehackernews.com
    New research shows that a signed Git commit’s hash is not the one-of-a-kind name that much of the software world assumes it to be. Given any signed commit, someone without the signing key can mint a second commit with the same files, author, and date, and a valid signature, GitHub still stamps “Verified.”

    Everything a reviewer would check matches. The commit’s hash does not. That matters
    https://thehackernews.com/2026/07/github-verified-commits-can-be.html

  • The Verification Step Is the New ATO Battleground in 2026
    The Hacker News • 2026-07-08 04:30 • thehackernews.com
    For years, account takeover (ATO) followed a predictable script. Attackers bought stolen credentials in bulk, ran them through automated tools, and waited for matches. Credential stuffing was cheap, scalable, and for defenders, relatively well understood.

    That era is ending. Not because attackers gave up, but because the front door finally got harder to kick in.

    Passkeys are now mainstream.
    https://thehackernews.com/2026/07/the-verification-step-is-new-ato.html

  • Telco giant KDDI says data breach affects over 12 million people
    BleepingComputer • 2026-07-08 04:24 • www.bleepingcomputer.com
    Japanese telecommunications giant KDDI says that millions of people had their email addresses and passwords exposed after attackers breached an email platform used by five internet service providers (ISPs) in the country. […]
    https://www.bleepingcomputer.com/news/security/japanese-telecom-giant-kddi-says-data-breach-affects-12-million-people/
  • GitHub Copilot Refuses Harmful Requests in Chat, Then Writes Them in Code
    The Hacker News • 2026-07-08 04:21 • thehackernews.com
    An AI coding assistant that refuses to answer a dangerous request in its chat box can answer it anyway if the same request is broken into small, ordinary-looking steps inside a code editor. That is the finding of a new study of GitHub Copilot by researchers Abhishek Kumar and Carsten Maple.

    The models they tested through Copilot, Claude from Anthropic, and Gemini from Google, refused
    https://thehackernews.com/2026/07/github-copilot-refuses-harmful-requests.html

  • Cybersecurity and the Gap Between Skill and Ability
    Schneier on Security • 2026-07-08 04:03 • www.schneier.com

    Last week, national security agencies from the Five Eyes—that’s the rich, English-language-speaking countries club—jointly released a statement warning of the increasing cyber risks of AI models: in particular, their ability to autonomously hack into systems and networks. The statement was more measured than some of the https://www.schneier.com/blog/archives/2026/07/cybersecurity-and-the-gap-between-skill-and-ability.html

  • CISA orders feds to prioritize patching Langflow auth bypass flaw
    BleepingComputer • 2026-07-08 02:58 • www.bleepingcomputer.com
    The U.S. Cybersecurity and Infrastructure Security Agency (CISA) gave federal agencies until Friday to patch an actively exploited vulnerability in the Langflow visual framework for building AI agents. […]
    https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-prioritize-patching-langflow-auth-bypass-flaw/
  • China-Linked UAT-7810 Expands ORB Network With New LONGLEASH Malware
    The Hacker News • 2026-07-08 02:04 • thehackernews.com
    A Chinese threat actor tracked as UAT-7810 is actively refining its bespoke malware to expand its Operational Relay Box (ORB) network by breaking into internet-facing networking devices.

    According to findings from Cisco Talos, UAT-7810 is an advanced persistent threat (APT) actor that’s responsible for maintaining and proliferating LapDogs, an ORB network that first came to light in June 2025.
    https://thehackernews.com/2026/07/china-linked-uat-7810-expands-orb.html

Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.

Written By

More From Author

You May Also Like