2026-07-03
Jericho
F5 Contributes to KEV Confusion
Searchlight Cyber
Why Preemptive Cybersecurity Matters
MIT Technology Review
The Download: a smoking “endgame” and a new Elizabeth Bear story
Schneier on Security
Flock Cameras Can Surveil Cars Without License Plates
MIT Technology Review
The UK’s generational tobacco ban might not work. I’m supporting it anyway.
2026-07-02
Ars Technica Security
Newly discovered PamStealer isn't your typical macOS malware
Krebs on Security
FBI Seizes NetNut Proxy Platform, Popa Botnet
Talos Intelligence
Catan and Mouse
watchTowr Labs
It’s 37oC, And All We Can Think About Is ColdFusion (Adobe ColdFusion Security Bulletin APSB26-68 CVE Bonanza)
Microsoft Security
Improving security posture across the Microsoft partner ecosystem
Github Security Blog
How GitHub used secret scanning to reach inbox zero
MIT Technology Review
Achieving operational excellence with AI
Step Security
10 Layers Deep: How StepSecurity Stops TeamPCP's Trivy Supply Chain Attack on GitHub Actions
Aikido
AI Pentesting for Compliance
Bishop Fox Security
On Favicons: From Browser Icons to Attack Surface Intelligence
MIT Technology Review
Teaching AI to run with the turbines
MIT Technology Review
The Download: a startup has a solution for AI’s groupthink problem
CISA Alerts & Advisories
ST Engineering iDirect iQ-Series Terminals
CISA Alerts & Advisories
CubeSpace CW0057 Reaction Wheel
CISA Alerts & Advisories
Gardyn IoT Hub
Schneier on Security
Cybersecurity Mission Creep in the US
Trail of Bits
GPT-5.5-Cyber built a zlib fuzzing lab in a day
MIT Technology Review
Why California’s carbon manure math doesn’t add up
ISC SANS
ISC Stormcast For Thursday, July 2nd, 2026 https://isc.sans.edu/podcastdetail/9992, (Thu, Jul 2nd)
Elastic Security Labs
Inside Elastic InfoSec's agentic SOC: cutting alert triage from 30 minutes to under 3
Sansec Threat Research
Amasty patches 25 Magento extensions, 1 critical
2026-07-01
Leviathan Security
“UEFI is the New BIOS”: Lab Setup
RME-DisCo Research Group
The Simpler, the Stealthier: Benchmarking Adversarial DGA Models in a Unified Framework
Amazon Security
Secure Amazon container workloads using container attribute-based rules in AWS Network Firewall
Google Safety & Security
The latest AI news we announced in June 2026
Step Security
simonecorsi/mawesome GitHub Action has been compromised
Ars Technica Security
NASA inspector general suggests Boeing's Starliner will now be a decade late
Meta Security
Meta’s AI Storage Blueprint at Scale
Microsoft Security
Microsoft named a leader in the Frost Radar for cloud and application runtime security
Github Security Blog
6 security settings every GitHub maintainer should enable this week
Amazon Security
How to use the AWS Workload Credentials Provider for cross-account secret retrieval and prefetching secrets
Dark Reading
When Too Much Security Data Became the Risk
Zero Day Initiative
The June 2026 Apple Security Update Review
MIT Technology Review
LLMs are stuck in a groupthink groove. This startup is trying to get them out.
Black Hills Info Sec
Finding and Addressing Vulnerable and Outdated Web Application Components
Cloudflare
Content Independence Day, one year on: building the business model for the agentic Internet
Cloudflare
Making AI search smarter
MIT Technology Review
The Download: Anthropic launches Claude Science, and California’s carbon manure math
CISA Alerts & Advisories
CISA Adds One Known Exploited Vulnerability to Catalog
CISA News
CISA Announces New Advisory Council to Strengthen Partnerships and Secure Critical Infrastructure
Hunt and Hackett
Investigating AI-assisted credential access
Schneier on Security
Papa Johns Surveillance-Based Advertising
Talos Intelligence
Martin Lee: Running through the Arctic (and the threat landscape)
Talos Intelligence
ARToken: Inside an EvilTokens affiliate panel targeting Microsoft 365
Searchlight Cyber
June 30th – This Week’s Top Cybersecurity and Dark Web Stories
ISC SANS
ISC Stormcast For Wednesday, July 1st, 2026 https://isc.sans.edu/podcastdetail/9990, (Wed, Jul 1st)
Teleport Blog
How to Meet EU Cyber Resilience Act (CRA) Requirements
2026-06-30
MIT Technology Review
Claude Science is Anthropic’s newest flagship product
Dark Reading
Fake Bug Report Hijacks AI Coding Agents at Scale
Ars Technica Security
New attack provides one more reason why AI browsers are a bad idea
watchTowr Labs
CitrixBleed To Infinity And Beyond (Citrix NetScaler Pre-Auth Memory Overread CVE-2026-8451)
Microsoft Security
Accelerating the quantum-safe timeline
MIT Technology Review
Roundtables: Longevity’s Next Frontier: “Reprogramming” Your Body
Palo Alto Networks
A Defining Moment in Identity Security
Meta Security
10 Years of Meta’s Commitment to Python
Microsoft Security
What’s new in Microsoft Security: June 2026
Microsoft Security
Securing AI agents: When AI tools move from reading to acting
Schneier on Security
The Realities of AI Video Surveillance
CISA Alerts & Advisories
Schneider Electric EcoStruxure IT Data Center Expert
CISA Alerts & Advisories
Schneider Electric EasyLogic T150 and Saitel DP RTU
CISA Alerts & Advisories
StoneFly Storage Concentrator
CISA Alerts & Advisories
XZ Utils vulnerability impacting B&R Products
CISA Alerts & Advisories
OFFIS DCMTK Toolkit
CISA Alerts & Advisories
Frangoteam FUXA SCADA/HMI
CISA Alerts & Advisories
Delta Electronics DVP12SE PLC
CISA Alerts & Advisories
Mitsubishi Electric MELSOFT Update Manager SW1DND-UDM-M
Trail of Bits
Shipping post-quantum cryptography to Python
Shielder Blog
Symfony YAML Security Audit
ISC SANS
ISC Stormcast For Tuesday, June 30th, 2026 https://isc.sans.edu/podcastdetail/9988, (Tue, Jun 30th)
Fastly
No Code Request Routing
Rosecurify
Seclog - #184
2026-06-29
Ars Technica Security
US offers $10 million for info on group behind Signal and WhatsApp hacking spree
Dark Reading
'Djinn' Stealer Targets Cloud, AI Credentials
Socket
Chrome and Firefox Extensions Posing as Free VPNs Add Clipboard Stealers via Malicious Updates
watchTowr Labs
Enterprise Tech In, Shell Out (Progress Kemp LoadMaster Uninitialized Heap to Pre-Auth RCE CVE-2026-8037)
Microsoft Security
Chromium extension uses AI‑related branding to redirect browser search
Github Security Blog
Inside the Advisory Database and what happens when vulnerability volume breaks records
Schneier on Security
Factoring RSA Keys with Many Zeros
Jericho
The Loquacious Introvert
Malwarebytes
This pay gap is programmed (Lock and Code S07E13)
CISA Alerts & Advisories
CISA Adds One Known Exploited Vulnerability to Catalog
Mozilla Security
Improving Transparency and Assurance in the Web PKI: Mozilla Root Store Policy v3.1
Schneier on Security
Robot Police Officers
Malwarebytes
A week in security (June 22 – June 28)
ISC SANS
ISC Stormcast For Monday, June 29th, 2026 https://isc.sans.edu/podcastdetail/9986, (Mon, Jun 29th)
2026-06-28
MaskRay's Blog
Optimizing LLVM's bump allocator
Project Black
Local AI for Penetration Testing & Research
2026-06-26
Schneier on Security
The Chinese Control the Majority of Argentina’s Squid Fleet
Aikido
Top Koi alternatives in 2026