2026-07-01
Ars Technica Security
NASA inspector general suggests Boeing's Starliner will now be a decade late
Meta Security
Meta’s AI Storage Blueprint at Scale
Microsoft Security
Microsoft named a leader in the Frost Radar for cloud and application runtime security
Github Security Blog
6 security settings every GitHub maintainer should enable this week
Amazon Security
How to use the AWS Workload Credentials Provider for cross-account secret retrieval and prefetching secrets
Zero Day Initiative
The June 2026 Apple Security Update Review
MIT Technology Review
LLMs are stuck in a groupthink groove. This startup is trying to get them out.
Black Hills Info Sec
Finding and Addressing Vulnerable and Outdated Web Application Components
Cloudflare
Content Independence Day, one year on: building the business model for the agentic Internet
Cloudflare
Making AI search smarter
MIT Technology Review
The Download: Anthropic launches Claude Science, and California’s carbon manure math
CISA News
CISA Announces New Advisory Council to Strengthen Partnerships and Secure Critical Infrastructure
Hunt and Hackett
Investigating AI-assisted credential access
Schneier on Security
Papa Johns Surveillance-Based Advertising
Talos Intelligence
Martin Lee: Running through the Arctic (and the threat landscape)
Talos Intelligence
ARToken: Inside an EvilTokens affiliate panel targeting Microsoft 365
Searchlight Cyber
June 30th – This Week’s Top Cybersecurity and Dark Web Stories
ISC SANS
ISC Stormcast For Wednesday, July 1st, 2026 https://isc.sans.edu/podcastdetail/9990, (Wed, Jul 1st)
Teleport Blog
How to Meet EU Cyber Resilience Act (CRA) Requirements
2026-06-30
MIT Technology Review
Claude Science is Anthropic’s newest flagship product
Dark Reading
Fake Bug Report Hijacks AI Coding Agents at Scale
Ars Technica Security
New attack provides one more reason why AI browsers are a bad idea
watchTowr Labs
CitrixBleed To Infinity And Beyond (Citrix NetScaler Pre-Auth Memory Overread CVE-2026-8451)
Microsoft Security
Accelerating the quantum-safe timeline
MIT Technology Review
Roundtables: Longevity’s Next Frontier: “Reprogramming” Your Body
Palo Alto Networks
A Defining Moment in Identity Security
Meta Security
10 Years of Meta’s Commitment to Python
Microsoft Security
What’s new in Microsoft Security: June 2026
Microsoft Security
Securing AI agents: When AI tools move from reading to acting
MIT Technology Review
The Download: AI “coworkers” and stratospheric internet
Schneier on Security
The Realities of AI Video Surveillance
CISA Alerts & Advisories
OFFIS DCMTK Toolkit
CISA Alerts & Advisories
Frangoteam FUXA SCADA/HMI
CISA Alerts & Advisories
Mitsubishi Electric MELSOFT Update Manager SW1DND-UDM-M
CISA Alerts & Advisories
Schneider Electric EasyLogic T150 and Saitel DP RTU
CISA Alerts & Advisories
Schneider Electric EcoStruxure IT Data Center Expert
CISA Alerts & Advisories
XZ Utils vulnerability impacting B&R Products
CISA Alerts & Advisories
Delta Electronics DVP12SE PLC
MIT Technology Review
Agriculture is ready for AI, but its data isn’t
CISA Alerts & Advisories
StoneFly Storage Concentrator
Trail of Bits
Shipping post-quantum cryptography to Python
MIT Technology Review
Building tech in the world’s secret R&D hub
Shielder Blog
Symfony YAML Security Audit
ISC SANS
ISC Stormcast For Tuesday, June 30th, 2026 https://isc.sans.edu/podcastdetail/9988, (Tue, Jun 30th)
Rosecurify
Seclog - #184
Datadog HQ
Datadog acquires Adaptive ML
Fastly
No Code Request Routing
2026-06-29
Ars Technica Security
US offers $10 million for info on group behind Signal and WhatsApp hacking spree
Dark Reading
'Djinn' Stealer Targets Cloud, AI Credentials
Socket
Chrome and Firefox Extensions Posing as Free VPNs Add Clipboard Stealers via Malicious Updates
watchTowr Labs
Enterprise Tech In, Shell Out (Progress Kemp LoadMaster Uninitialized Heap to Pre-Auth RCE CVE-2026-8037)
MIT Technology Review
AI agents are not your “coworkers”
Microsoft Security
Chromium extension uses AI‑related branding to redirect browser search
Github Security Blog
Inside the Advisory Database and what happens when vulnerability volume breaks records
Schneier on Security
Factoring RSA Keys with Many Zeros
Jericho
The Loquacious Introvert
Malwarebytes
This pay gap is programmed (Lock and Code S07E13)
MIT Technology Review
Agent confidence on the technical frontier
MIT Technology Review
The Download: metric weaknesses and AI elephant warnings
CISA Alerts & Advisories
CISA Adds One Known Exploited Vulnerability to Catalog
Mozilla Security
Improving Transparency and Assurance in the Web PKI: Mozilla Root Store Policy v3.1
Schneier on Security
Robot Police Officers
Malwarebytes
A week in security (June 22 – June 28)
ISC SANS
ISC Stormcast For Monday, June 29th, 2026 https://isc.sans.edu/podcastdetail/9986, (Mon, Jun 29th)
Datadog HQ
Datadog achieves GovRAMP High authorization
2026-06-28
MaskRay's Blog
Optimizing LLVM's bump allocator
Project Black
Local AI for Penetration Testing & Research
2026-06-26
Schneier on Security
The Chinese Control the Majority of Argentina’s Squid Fleet
Aikido
Top Koi alternatives in 2026
Schneier on Security
Meta Is Testing Facial Recognition for Police and Military
Dark Reading
AI Won't Wipe Out Entry-Level Cybersecurity Jobs
Jericho
Captain Obvious Audits the NVD
CISA Alerts & Advisories
Russian Intelligence Services Continue to Target Commercial Messaging Applications
Schneier on Security
One Million Passports Leaked Online
Compass Security Blog
Cyber Resilience Act – Part I
2026-06-25
Microsoft Security
Photo ZIP campaign targeting hospitality industry delivers Node.js implant for persistent access
Talos Intelligence
Beyond IOCs: AI-enabled threat intelligence
Socket
Miasma Mini Shai-Hulud Hits LeoPlatform npm Packages and GitHub Actions, Expands to the Go Ecosystem
The Citizen Lab
Emile Dirks Elected to PEN Canada’s Board of Directors
Schneier on Security
AI and Liability
Microsoft Security
Microsoft a Leader in The Forrester Wave™ for Endpoint Management Platforms
Artem Golubin
Hexora v0.3: New features and improvements
Embrace The Red
Computer-Use and TOCTOU: What You Click Is Not What You Get!
CISA Alerts & Advisories
Yokogawa FAST/TOOLS and CI Server
CISA Alerts & Advisories
EVoke Systems Charging Station Management System
CISA Alerts & Advisories
Delta Electronics DTM Soft
CISA Alerts & Advisories
Daktronics Controller Firmware
CISA Alerts & Advisories
OHIF Viewers DICOM
CISA Alerts & Advisories
pydicom pynetdicom Library
CISA Alerts & Advisories
Schneider Electric PowerLogic P7
CISA Alerts & Advisories
H.VIEW HV-500S6 IP Camera
CISA Alerts & Advisories
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA Alerts & Advisories
Horner Automation Cscape
Schneier on Security
Interesting Paper Exploring Prompt Injection
Talos Intelligence
Introduction to COM usage by Windows threats
Dark Reading
Europe Evolves Into Ransomware's Favorite Region
Step Security
simonecorsi/mawesome GitHub Action has been compromised
TrustedSec
Large Workflows with Local LLMs
2026-06-24
Ars Technica Security
One-two punch delivered in global operation disrupts cybercrime "assembly line"
Dark Reading
2026 FIFA World Cup Faces Surge in Cyber Threats
Amazon Security
Restrict AWS Management Console access to expected networks with sign-in resource-based policies and RCPs
Dark Reading
Do CISOs Need a Code of Ethics?
Microsoft Security
CNAPP evolution: How Microsoft aligns with leading cloud risk management platforms
Malwarebytes
PixelSmash flaw turns video files into attack tools