Categories Breaking News

Breaking News – Cyber Threats – 2026-07-14 13:00 PDT

Breaking News – Cyber Threats (last 6h)

Generated: 2026-07-14 13:00 PDT

  • Microsoft Patches a Record 570 Security Flaws
    KrebsOnSecurity • 2026-07-14 12:22 • krebsonsecurity.com
    Microsoft Corp. today released software updates to plug at least 570 security holes in its Windows operating systems and other software, almost triple the number of vulnerabilities the software giant fixed in its record-smashing Patch Tuesday release last month. Microsoft attributed the burgeoning patch counts to vulnerability discoveries aided by artificial intelligence.
    https://krebsonsecurity.com/2026/07/microsoft-patches-a-record-570-security-flaws/
  • Nearly 300 GitHub repos pose as legit software to push malware
    BleepingComputer • 2026-07-14 12:15 • www.bleepingcomputer.com
    A threat actor has published hundreds of fake GitHub repositories impersonating legitimate software and security projects to distribute infostealer malware. […]
    https://www.bleepingcomputer.com/news/security/nearly-300-github-repos-pose-as-legit-software-to-push-malware/
  • Microsoft Patch Tuesday July 2026 – The AI Acopolypse is Here , (Tue, Jul 14th)
    SANS ISC Diary (full) • 2026-07-14 12:14 • isc.sans.edu

    This patch Tuesday includes a staggering 622 vulnerabilities, not including another 427 vulnerabilities in Chromium, affecting Microsoft's Edge browser. 62 of the vulnerabilities are rated critical. One was disclosed before today, and two have already been exploited.


    https://isc.sans.edu/diary/rss/33154

  • Microsoft releases Windows 10 KB5099539 extended security update
    BleepingComputer • 2026-07-14 11:49 • www.bleepingcomputer.com
    Microsoft has released the Windows 10 KB5099539 extended security update, which includes the July 2026 Patch Tuesday security updates for 570 vulnerabilities, along with additional security fixes. […]
    https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-10-kb5099539-extended-security-update/
  • SAP Patches CVSS 9.9 NetWeaver ABAP Flaw That Could Expose or Modify Data
    The Hacker News • 2026-07-14 11:17 • thehackernews.com
    SAP has rolled out updates to address multiple vulnerabilities as part of its July 2026 security updates, including a critical flaw in SAP NetWeaver Application Server ABAP.

    The vulnerability in question is CVE-2026-44747 (CVSS score: 9.9), an out-of-bounds write flaw that allows an authenticated attacker to leverage logical errors in memory management to cause a memory corruption that could
    https://thehackernews.com/2026/07/sap-patches-cvss-99-netweaver-abap-flaw.html

  • Microsoft July 2026 Patch Tuesday fixes massive 570 flaws, 3 zero-days
    BleepingComputer • 2026-07-14 11:01 • www.bleepingcomputer.com
    Today is Microsoft’s July 2026 Patch Tuesday, and with it comes security updates for a record-breaking 570 flaws, including two zero-day vulnerabilities exploited in attacks and one publicly disclosed. […]
    https://www.bleepingcomputer.com/news/microsoft/microsoft-july-2026-patch-tuesday-fixes-massive-570-flaws-3-zero-days/
  • Windows 11 KB5101650 & KB5099414 cumulative updates released
    BleepingComputer • 2026-07-14 10:41 • www.bleepingcomputer.com
    Microsoft has released Windows 11 KB5101650 and KB5099414 cumulative updates for versions 25H2/24H2 and 23H2 to fix security vulnerabilities, bugs, and add new features. […]
    https://www.bleepingcomputer.com/news/microsoft/windows-11-kb5101650-and-kb5099414-cumulative-updates-released/
  • Researchers Say Claude for Chrome Flaw Lets Rogue Extensions Trigger Gmail Reads
    The Hacker News • 2026-07-14 10:27 • thehackernews.com
    Any other browser extension that can run a script on claude.ai can still trigger Claude for Chrome tasks aimed at your Gmail, your latest Google Doc and its comments, and your Calendar.

    Both this and ClaudeBleed need a rogue extension that can already run a script on claude.ai; the difference is scope. Anthropic restricted the arbitrary-prompt path in May as part of its response to the 
    https://thehackernews.com/2026/07/claude-for-chrome-flaw-lets-other.html

  • LabubaRAT Masquerades as NVIDIA Software to Control Windows Hosts
    The Hacker News • 2026-07-14 09:52 • thehackernews.com
    Cybersecurity researchers have flagged a previously undocumented Rust-based remote access trojan (RAT) codenamed LabubaRAT that masquerades as NVIDIA software to blend into target environments.

    “LabubaRAT creates a reusable foothold for hands-on activity,” Blackpoint Cyber researchers Sam Decker and Nevan Beal said in an analysis published today. “Once deployed, it can profile the host,
    https://thehackernews.com/2026/07/labubarat-masquerades-as-nvidia.html

  • Progress confirms ShareFile zero-day flaw behind Storage Zone shutdown
    BleepingComputer • 2026-07-14 09:08 • www.bleepingcomputer.com
    Progress Software has confirmed that a high-severity zero-day vulnerability is behind the emergency shutdown of ShareFile Storage Zone Controllers last week and has released security updates to patch the flaw. […]
    https://www.bleepingcomputer.com/news/security/progress-confirms-sharefile-zero-day-flaw-behind-storage-zone-shutdown/
  • Upcoming Speaking Engagements
    Schneier on Security • 2026-07-14 09:04 • www.schneier.com

    This is a current list of where and when I am scheduled to speak:

    Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.

Written By

More From Author

You May Also Like