SimpleHelp RMM Vulnerability Exploited to Install Djinn Stealer and Steal Sensitive Information

357/69 Wednesday, July 1, 2026 Security researchers have disclosed that attackers are actively exploiting a critical vulnerability, tracked as CVE-2026-48558, in the SimpleHelp remote monitoring and management software to target unpatched systems. After successfully compromising a system, the attackers install Djinn Stealer, an information-stealing malware that supports Windows, macOS, and Linux, as well as Taskweaver […]

chanapon

July 1, 2026

Nissan Americas Discloses Employee Data Breach Linked to Oracle PeopleSoft Zero-Day Exploitation

356/69 Wednesday, July 1, 2026 Nissan Americas has disclosed a data breach affecting current and former employees after being notified that attackers had exploited a vulnerability in Oracle PeopleSoft to steal data from multiple organizations. Nissan Americas uses Oracle PeopleSoft to manage employee information, including payroll, tax, and other personnel data. Oracle stated that the […]

chanapon

July 1, 2026

Fake Chrome Extension Impersonating Perplexity AI Found Capturing Users’ Search Data and Keystrokes

355/69 Wednesday, July 1, 2026 Security researchers from Microsoft have detected a malicious Google Chrome browser extension impersonating the AI search tool Perplexity. The extension secretly records search data and every character users type into the address bar. Although Google has already removed the extension from its application store after receiving the investigation report, the […]

chanapon

July 1, 2026

U.S. Seizes Nearly 400 Illegal World Cup Streaming Domains, Warns Users of Malware and Data Exposure Risks

354/69 Tuesday, June 30, 2026 The U.S. Department of Justice announced the seizure of nearly 400 website domains that were used to illegally livestream 2026 FIFA World Cup matches in violation of copyright laws. These websites provided real-time match streaming services without authorization and were identified as part of Operation Offsides, a coordinated effort involving […]

chanapon

June 30, 2026

KDDI Discloses Data Breach Potentially Affecting Up to 14.2 Million Email Accounts Across Six ISPs in Japan

353/69 Tuesday, June 30, 2026 KDDI Corporation, a major telecommunications company in Japan, has disclosed a data breach that may affect up to 14.2 million email accounts from email services operated by six internet service providers in Japan. KDDI stated that it detected the intrusion on June 17, 2026, blocked the attackers, and immediately began […]

chanapon

June 30, 2026

OpenAI Launches GPT-5.6 Sol as an Advanced AI for Cybersecurity, Focusing on Vulnerability Detection and Defensive Tasks

352/69 Tuesday, June 30, 2026 OpenAI has announced the launch of its latest AI models in the GPT-5.6 family as part of a limited testing release. The lineup consists of three model tiers based on use cases: Sol, Terra, and Luna. GPT-5.6 Sol is the flagship model with the highest capability and has been specifically […]

chanapon

June 30, 2026

Phishing Campaign Impersonates Customer Complaint Emails to Target Hotels and Hospitality Businesses

351/69 Monday, June 29, 2026 Security researchers have disclosed a phishing campaign targeting organizations in the hotel and hospitality sector. The attackers send fake emails disguised as customer complaints, room issue reports, or stay-related warnings to trick front desk staff, reservation teams, or other relevant personnel into clicking links and downloading ZIP files claimed to […]

chanapon

June 29, 2026

Polymarket to Fully Reimburse Users After Supply Chain Attack

350/69 Monday, June 29, 2026 Polymarket disclosed that it will fully compensate affected users after a supply chain attack caused customers to lose a total of approximately USD 3 million. The incident occurred after attackers injected malicious JavaScript into the website’s frontend through a third-party provider associated with the website’s dependency. However, Polymarket stated that […]

chanapon

June 29, 2026

Miasma Malware Campaign Found Hiding Malicious Code in More Than 20 npm Packages to Steal Developer Secrets

349/69 Monday, June 29, 2026 Microsoft has detected a malware campaign named Miasma, a supply chain worm capable of self-propagation. The latest activity involved malicious code embedded in more than 20 versions of npm packages used in the Leo Platform and RStreams ecosystems. According to Microsoft Threat Intelligence, the attack began on the evening of […]

chanapon

June 29, 2026

Google Releases Chrome 149 Update to Fix 18 Severe Vulnerabilities

348/69 Friday, June 26, 2026 Google has released a security update for Chrome 149 to address a total of 18 vulnerabilities, including 4 Critical and 14 High-severity flaws. This update is separate from the earlier emergency update that fixed the zero-day vulnerability CVE-2026-11645, which had reportedly been exploited in attacks. Google has not stated that […]

chanapon

June 26, 2026
1 2 3 4 6