Categories Breaking News

Breaking News – Cyber Threats – 2026-07-14 03:00 PDT

Breaking News – Cyber Threats (last 6h)

Generated: 2026-07-14 03:00 PDT

  • US sanctions VPN, malware providers for enabling ransomware attacks
    BleepingComputer • 2026-07-14 02:40 • www.bleepingcomputer.com
    The U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) sanctioned two individuals and one entity for enabling ransomware attacks against U.S. organizations. […]
    https://www.bleepingcomputer.com/news/security/us-sanctions-vpn-malware-providers-linked-to-ransomware-gangs/
  • Grok Build Uploads Entire Git Repositories to xAI Storage, Not Just Files It Reads
    The Hacker News • 2026-07-14 02:02 • thehackernews.com
    xAI’s Grok Build coding CLI was uploading entire Git repositories, full commit history and all, to a Google Cloud Storage bucket run by xAI, not just the files a coding task needed.

    A researcher publishing as cereblab, testing version 0.2.93, captured one of those uploads, cloned the git bundle out of the intercepted request, and pulled back a file the agent had been told in plain terms not
    https://thehackernews.com/2026/07/grok-build-uploads-entire-git.html

  • U.S. Sanctions First VPN Service and Malware Cryptor Seller Over Ransomware Support
    The Hacker News • 2026-07-14 01:02 • thehackernews.com
    The U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) has designated two individuals and a VPN service provider for enabling ransomware actors’ and other cybercriminals’ malicious activities, including ransomware attacks against Americans.

    The VPN, named First VPN Service (1VPNS), has been accused of offering its tools to ransomware groups, along with its 45-year-old Ukrainian
    https://thehackernews.com/2026/07/us-sanctions-first-vpn-service-and.html

  • The ransomware negotiator who was working for the other side
    Graham Cluley • 2026-07-14 00:54 • www.bitdefender.com
    When a company falls victim to a ransomware attack, it is not uncommon for it to turn to experts for help.

    Specialist ransomware negotiation firms handle communications with criminal gangs on a victim’s behalf.

    What victims don’t expect is that their trusted negotiator might be separately sharing details of the victim’s cyber-insurance policy and negotiation strategy directly with the attackers themselves.

    Read more in my article on the Hot for Security blog.
    https://www.bitdefender.com/en-us/blog/hotforsecurity/ransomware-negotiator-working-other-side

  • 148 npm Packages Disguised as Student Proxies Turned Browsers Into a DDoS Botnet
    The Hacker News • 2026-07-14 00:08 • thehackernews.com
    A campaign of 148 npm packages disguised as student web proxies turned visitors’ browsers into a distributed denial-of-service botnet for roughly two weeks in May, according to new research from JFrog.

    The packages did not go after the developers who might install them. The operators used the registry as free hosting for a booby-trapped proxy site and let the students who came to dodge
    https://thehackernews.com/2026/07/148-npm-packages-disguised-as-student.html

  • Microsoft Maps Three Salesforce Attack Paths Tied to a Year of ShinyHunters Activity
    The Hacker News • 2026-07-13 23:19 • thehackernews.com
    Attackers whose methods line up with the data-extortion group ShinyHunters have spent the past year walking into corporate Salesforce environments without exploiting a single flaw in the platform.

    The way in has been the trust the organization had already extended, usually through the OAuth connections that tie Salesforce to the apps and third-party vendors around it.

    In 
    https://thehackernews.com/2026/07/microsoft-maps-year-long-shinyhunters.html

Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.

Written By

More From Author

You May Also Like