193 Security Blogs

Last Updated: 18 Jun 26 16:46 UTC

Blog List | Github | OPML

2026-06-18

NVISO Labs
The Road to Post-Quantum Readiness Part 1 of 2: Understanding the Risk

Jericho
Colorado Voting System Irregularities & Continued Rigging

Rapid7
Why Security Teams Need To Start Earlier

GitGuardian
How Five PostgreSQL Optimizations Sped Up Our Dashboard

ToxSec
Meta’s Rule of Two: Breaking the Prompt Injection Chain

JFrog
npm v12’s Biggest Security Change: From Implicit to Explicit Trust

Bishop Fox Security
Shynet | VERSION 0.13.1

Dark Reading
Get Out of Security Debt by Tackling the Exposure Problem

Eclypsium
Securing the Foundation: What the New White House AI Executive Order Means for Federal Cybersecurity

Malwarebytes
Microsoft working on a fix for RoguePlanet, a flaw that grants full PC control

Wiz
The President’s Executive Actions on AI Have a Lot to Say on Cybersecurity

MIT Technology Review
The Download: a new hunt for dark matter and Kenya’s case for going solar

Malwarebytes
Retro gaming fans are the new target for fake GitHub malware

Mend
Frontier Model Is the Wrong Meter for Continuous Security

Schneier on Security
Embedding Forbidden Text in Spyware to Discourage AI Analysis

Step Security
400+ AUR Packages Hijacked: What the “Atomic Arch” Campaign Means for Supply-Chain Security

Step Security
Miasma and Hades Are Spreading Now: Detect Them on Developer Machines with Suspicious Files

Step Security
Prevent npm and Python Supply Chain Attacks on Developer Machines with Package Configs

Step Security
Mastra npm Supply Chain Attack: 140+ Packages Backdoored via easy-day-js Typosquat

Talos Intelligence
Scripting the disassembler: Local agentic reverse engineering through vbdec’s live COM object model

MIT Technology Review
Geoengineering still faces major practical challenges

Malwarebytes
Kodak confirms breach as ShinyHunters’ leak threat reaches deadline

MIT Technology Review
The search for dark matter has been blown wide open

Searchlight Cyber
Three Days to Patch: What CISA’s New Directive Says About the Pace of Modern Exploitation

Hunt and Hackett
How to move from ClickOps to fully automated Microsoft Entra ID infrastructure

OWASP
Aikido and OWASP bring agentic Code Audit to the global AppSec community

Dark Reading
EU Gets a Head Start in Developing 6G Network Security

TrustedSec
Modern Web Application Content Discovery

Snyk
The full Snyk AI Security Platform, free for open source maintainers

Microsoft Security
From package to postinstall payload: Inside the Mastra npm supply chain compromise

dgl
SSH port knocking with OpenBSD 7.9

ISC SANS
ISC Stormcast For Thursday, June 18th, 2026 https://isc.sans.edu/podcastdetail/9978, (Thu, Jun 18th)

ISC SANS
The Behavior of Coordinated SSH Brute Force Attacks over the last three months [Guest Diary], (Wed, Jun 17th)

Bishop Fox Security
The Smash-and-Grab Era

Auth0
The Part of Software Engineering AI Cannot Replace


2026-06-17

Microsoft Security
Crypto Clipper uses Tor and worm-like propagation for persistence and control

Malwarebytes
Roblox developers are losing entire games to malware attacks

Socket
Socket Firewall Now Blocks Malicious VS Code and Open VSX Extensions

Ars Technica Security
Massive breach spills credentials for thousands of sensitive networks

Dark Reading
INC Ransomware Thrives by Mastering the Basics

Cloudflare
Bringing more agent harnesses and frameworks to Cloudflare, starting with Flue

Microsoft Security
Beyond the benchmark: Advancing security at AI speed

Praetorian
FreeBSoD: Leveraging Language Models to Find and Exploit Kernel Bugs (Part 1 of 2)

The Citizen Lab
How Freedom Tech Is Pushing Back Against Digital Authoritarianism

Microsoft Security
​​Forrester names Microsoft a Leader in the 2026 Extended Detection and Response Platforms Wave™ report

Ars Technica Security
"Dangerous" AI models are coming no matter what

Microsoft Security
AI is accelerating cyberattacks—here’s how to stay ahead

ISC SANS
The browser blind spot: Why your security tool may not be blocking what you think it is [Guest Diary], (Wed, Jun 17th)

Malwarebytes
Rokarolla Android malware can take over your phone and steal banking logins

Amazon Security
Introducing AWS Continuum: Security at machine speed

Wiz
The Red Agent POV: How it Reasoned its Way to SSRF

Wiz
Introducing the Red Agent POV Series

Kevin Beaumont
FortiBleed — 75k Fortinet firewalls have admin passwords cracked

Dark Reading
Sweeping Credential-Harvesting Heist Compromises 30K+ Fortinet Devices

SentinelOne
The Agentic SOC: Solving Security’s Investigation Capacity Crisis in the Frontier AI Era

Black Hills Info Sec
Everyone’s Selling AI That Kills Pentesting. We Built One That Doesn’t.

Cloudflare
Introducing the Cloudflare One stack: agent-powered deployment

MIT Technology Review
The Download: a reality check for geoengineering and the science of interoception

Rapid7
Malware à la Mode: Tracking Dropping Elephant Tradecraft Through a China-Themed Loader Chain

Ars Technica Security
Windows and Linux users: The deadline to update Secure Boot keys is near

Schneier on Security
AI Use by the US Government

Malwarebytes
24 billion stolen records exposed online. Here’s what to do

Mend
Mastra npm Scope Takeover: 140+ Packages Compromised via easy-day-js Dropper

Malwarebytes
Malwarebytes earns AV-TEST Top Product award, aces other third-party tests

MIT Technology Review
Entrepreneurs in Nairobi make the case for going solar

MIT Technology Review
Hacking the atmosphere: Geoengineering gets a reality check

NVISO Labs
Reducing Microsoft Sentinel Costs Without Compromising Detection – Part 1: The Summary Rules Quest

Searchlight Cyber
June 17th – This Week’s Top Cybersecurity and Dark Web Stories

Aikido
Over 140 popular Mastra npm Packages Hit by Supply Chain Attack

Dark Reading
UK Social Media Ban for Minors Has Privacy Experts Worried

Socket
140+ Mastra npm Packages Compromised in Coordinated Supply Chain Attack

ISC SANS
ISC Stormcast For Wednesday, June 17th, 2026 https://isc.sans.edu/podcastdetail/9976, (Wed, Jun 17th)

Sansec Threat Research
Unauthenticated remote code execution in JTL Shop

Fastly
UA Spoofing 101: Detection and Defense with Fastly’s Next-Gen WAF

Greynoise
5 Things I Show Every SOC Team When We Wire GreyNoise Into Their SOAR

Teleport Blog
Automating Identity and Access for FedRAMP 20x KSIs with Teleport

Auth0
AI Agents Are Not Users: Building an Identity Model That Reflects That


2026-06-16

Socket
npm Package Uses Prompt Injection and Token Flooding to Disrupt AI Malware Scanners

Snyk
A Day in the Life of an AI Engineer in Snyk's Lisbon Office

Dark Reading
Fileless Phantom Stealer Targets Browser Credentials

Dark Reading
Security Community Slams US Ban on Exporting Mythos, Fable

Doyensec
Introducing Session Switcher. Swap Burp Sessions with One Click!

Snyk
A Forgotten Contributor Account Compromised the Entire Mastra npm Package Scope

MIT Technology Review
Exclusive eBook: How AI is becoming the next military advisor

Dark Reading
SprySOCKS Windows Variant Abuses Kernel Drivers to Evade Detection

Eclypsium
BTS #76 - Binwalk, Brickstorm, AI Model Madness

Aikido
Multiple JetBrains IDE plugins caught stealing AI keys

Eclypsium
No Patch Coming: The Arista EOS Tunnel Bug Your Scanner Will Miss

Amazon Security
Threat tactic spotlight: Subdomain takeover

Dark Reading
Rokarolla Android Trojan Levels Up to Full Device Control, Persistence

Mend
Why AI Can’t Verify Its Own Code and What That Means for Enterprise AppSec

Praetorian
Sharing is Caring: SMB Secret Scanning with Sulla

Dark Reading
'Lorem Ipsum' Malware Pivots to ClickFix Delivery

Offensive Security
AI vs Traditional Penetration Testing: Tooling and Outcomes

Socket
Introducing Manifest Alerts

Xint
FAQ: Are the Incremental Improvements in New Models Worth the Higher Cost?

Cloudflare
Cloudflare DMARC Management is now generally available

Bishop Fox Security
A Crash, Not a Shell: SolarWinds Serv-U CVE-2026-28318

Malwarebytes
“Free World Cup stream” sites are serving scams, not football

Malwarebytes
Cardiac patients’ medical data stolen and held to ransom

MIT Technology Review
The Download: the first brain implant power user and South Korea’s AI obsession

GitGuardian
Extending Our Mission With Developer Endpoint Protection

Ars Technica Security
Critical Copilot vulnerability allowed hackers to steal 2FA code from users

Schneier on Security
Flock Cameras Are Being Used for Stalking

Wiz
Wiz Exposure Management Dashboard: Your CTEM Command Center

Malwarebytes
Deepfake posting sites depicting famous women taken down by feds

MIT Technology Review
Want to get a data center online quickly? Give it some flex.

Searchlight Cyber
14 Months of Warning: What Preemptive Threat Intelligence Reveals about the ShinyHunters Supply Chain Breaches

ISC SANS
From a VHDX File to a Remcos RAT, (Tue, Jun 16th)

Resecurity
Cybercriminals Are Targeting EdTech: Data Breaches and Ransomware Attacks on the Rise

Resecurity
CVE-2026-20253: Splunk Enterprise Pre-Authentication Remote Code Execution

TrustedSec
JQ for Hackers

ISC SANS
ISC Stormcast For Tuesday, June 16th, 2026 https://isc.sans.edu/podcastdetail/9974, (Tue, Jun 16th)

Moonlock
The 15 common Telegram scams you should watch out for

Fastly
Credential Stuffing is the Real Boss Fight for Gaming Platforms

Himanshu Anand
Fine-tune an LLM on Vertex AI, own the whole GCP project


2026-06-15

Eclypsium
Stay Ahead of Your Next CJIS Audit

Socket
GlassWASM: WebAssembly Malware Found in Trojanized Open VSX Extensions

Malwarebytes
Inside a malicious infrastructure delivering EtherRAT, phishing pages, and malicious software 

Dark Reading
HTTP/2 Bomb Attacks Put Telcos, Healthcare Orgs at Risk

Dark Reading
Copilot 'SearchLeak' Attack Allows 1-Click Data Theft

MIT Technology Review
Why do South Koreans love AI so much?

Ars Technica Security
Users cry foul after AMD stripped memory crypto from its consumer CPUs

Rapid7
NIS2 is raising the bar. Here’s how to turn readiness into resilience.

Rapid7
Does Your Security Programme Align With NIS2 Requirements?

Dark Reading
China-Nexus Actor Spies on US Researchers Undetected for a Year

Dark Reading
Most CISOs Report Pressure to Bury Bad Security News

The Citizen Lab
Spying Via Your Mobile Phone: Companies Can Locate Any Device at Any Time

Microsoft Security
Microsoft Defender email security benchmarking: Key insights from one year of data

Exodus Blog
Zombie COTables: Resurrecting Freed Memory to Escape VirtualBox

Dark Reading
The Beginning of the End of Social Engineering

Rapid7
Beyond the Score: Using AI to Translate CVEs into Real-World Business Risk

Malwarebytes
Claude Fable 5 and Mythos 5 “abruptly disabled” after US gov. ban

Malwarebytes
Deepfake porn sites are going offline (re-air) (Lock and Code S07E12)

GitGuardian
Gitguardian Agent Skills: Secret Detection and Remediation For AI-Assisted Development

White Knight Labs
Harnessing the Power of Cobalt Strike Profiles for EDR Evasion – Part 3

Socket
Socket for Linear Is Now Available

Moonlock
Is Roblox safe for kids? Here’s what you need to know as a parent

Cloudflare
Growing the Cloudflare AI team with talent from Ensemble AI

Dark Reading
US Cracks Down on Anthropic AI Models Amid Abuse Concerns

Schneier on Security
The FCC Wants to Eliminate Burner Phones

Sicuranext Blog
One Paste to Rule Them All: Inside a ClickFix → EtherHiding → GULoader Intrusion

Sicuranext Blog
One Paste to Rule Them All: Inside a ClickFix → EtherHiding → GULoader Intrusion

ISC SANS
Evil MSI Background: BASE64 Statistical Analysis, (Mon, Jun 15th)

Malwarebytes
A week in security (June 8 – June 14)

Bad Privacy
Canada’s Digital Rulebook Is Being Rewritten. Parents, Educators and Citizens Should Pay Attention.

Troy Hunt
Weekly Update 508

ISC SANS
ISC Stormcast For Monday, June 15th, 2026 https://isc.sans.edu/podcastdetail/9972, (Mon, Jun 15th)

Rosecurify
Seclog - #182

Auth0
Accelerating Developer Velocity: Announcing Auth0's Native Integration with Vercel

Snyk
The Government Just Banned an AI Model. An Engineer's Perspective.

Fastly
We Built the Proxy Behind Firefox's New Built-In VPN — Here's How It Works


2026-06-14

Schneier on Security
Upcoming Speaking Engagements

ToxSec
Fable 5 Export Control Takedown: One Jailbreak, Whole Planet Dark

Snyk
When a Government Pulls an AI Model: What the Fable 5 and Mythos 5 Suspension Means for Security Teams

Project Black
Pi.Alert - Unauthenticated SQL Injection

Project Black
Guide to Penetration Testing Services in Australia


2026-06-13

Socket
US Government Forces Anthropic to Pull Claude Fable Days After Launch

Aikido
Full Fathom Five: The context of Anthropic’s Mythos-class public release

Project Black
LibreNMS Authenticated RCE (< 26.5.0)

Rapid7
Weekly Metasploit Update: New Kerberos/Certificate tracing options, and multiple new modules

Sansec Threat Research
OptinMonster supply chain attack hits 1.2 million sites


2026-06-12

Socket
152 Chrome Live Wallpaper Extensions Hid Ad Tracking and Faked Google Search Traffic

Schneier on Security
Friday Squid Blogging: Squid-Inspired Fluid Pump

watchTowr Labs
Why Use App-Level Auth When Every Database Has Auth? (Splunk Enterprise CVE-2026-20253 Pre-Auth RCE)

Dark Reading
ShinyHunters Uses Oracle Zero-Day to Rampage Higher Ed

Ars Technica Security
PeopleSoft 0-day affecting hundreds of organizations steals gigabytes of data

The Citizen Lab
Canada Finally Has a National AI Strategy. Experts Hate It.

The Citizen Lab
Who Watches the Watchers?

Palo Alto Networks
Securing Canada’s Digital Future: Why PBMM Matters Beyond Government

The Citizen Lab
Luis Fernando García On State Surveillance in Latin America

Malwarebytes
Stolen iPhones could soon be worth a lot less to thieves

GitGuardian
KCD New York 2026: Trust, Agents, and the Work Behind the Work

Rapid7
Active Exploitation of Oracle PeopleSoft Zero-Day (CVE-2026-35273)

Dark Reading
Claude Fable 5 Doesn't Change the Mythos Security Story

SentinelOne
The Good, the Bad and the Ugly in Cybersecurity – Week 24

Cloudflare
Scaling Security Insights: how we achieved a 10x increase in global scanning capacity

ISC SANS
ISC Stormcast For Friday, June 12th, 2026 https://isc.sans.edu/podcastdetail/9970, (Fri, Jun 12th)

Wiz
Navigating the New Federal Logging Mandate | OMB Memorandum M-26-14

Schneier on Security
Bernie Sanders’ AI Sovereign Wealth Fund Plan

Trail of Bits
Factoring "short-sleeve" RSA keys with polynomials

Hunt and Hackett
The no-bullshit guide to NIS2

Malwarebytes
Fake verification pages are stealing Steam accounts from players

Google Safety & Security
How we're combatting AI scams with security, legislation and more

SentinelOne
SentinelOne + Claude: Integrations for AI Visibility, Governance, and Defense

Auth0
Implementing the Device Authorization Flow in a C# Console App

watchTowr Labs
Marking Your Own Homework (Check Point Remote Access VPN IKEv1 Authentication Bypass CVE-2026-50751)

TrustedSec
JS-Tap v3: Endpoint Post-Exploitation With JavaScript Implants

Moonlock
A fake BlueWallet app is draining crypto wallets

Moonlock
Malicious apps are infecting Macs with an adware-backdoor hybrid

Moonlock
Apple is on track to break a record for security patches in 2026

Dark Reading
Phishing Attack Volume Down 20%, But Risk Still Rising

Sansec Threat Research
Unauthenticated file upload in Amasty Order Attributes for Magento


2026-06-11

Wiz
AI Threat Readiness Pillar 3: Perform AI Code Analysis Natively in Wiz

Dark Reading
Max-Severity Ivanti Flaw Exploited 24 Hours After Disclosure

Talos Intelligence
A tale of two eras

Searchlight Cyber
Targeting Illicit Crypto Flows: Searchlight Cyber Supports Law Enforcement Takedown of AudiA6 Crypto-Mixer