193 Security Blogs

Last Updated: 24 Jun 26 16:45 UTC

Blog List | Github | OPML

2026-06-24

Step Security
Supply Chain Compromise: codfish/semantic-release-action Tags Hijacked to Steal OIDC Tokens and Propagate Backdoors

MIT Technology Review
Europe’s extreme heat is shutting down power plants

Jericho
2026 East Coast Drive (Part 5: WV / KY)

Malwarebytes
Watch out for renewal scams pretending to be Malwarebytes

GitGuardian
Identiverse 2026: The Challenges Of Solving Identity For AI Agents At Scale

Black Hills Info Sec
Insufficient Egress Filtering: How Weak Outbound Controls Enable Attacks

Snyk
A Note to Our Customers and Partners

Microsoft Security
StealC and Amadey: Breaking down infostealers and the cybercrime services that deliver them

Wiz
How AI Is Rewriting the SecOps Playbook

MIT Technology Review
The Download: introducing the Engineering issue

GitGuardian
Hunting Leaked PyPI Tokens: 62 Live, 125 Packages Exposed

MIT Technology Review
Stripe, Anthropic, and OpenAI are backing an effort to stop respiratory infections

Dark Reading
Apple's MacOS Gap Lets Users Disable Security Tools

MIT Technology Review
The emergence of the web data infrastructure layer for AI

Schneier on Security
Embedding Forbidden Text in Spyware to Discourage AI Analysis

Malwarebytes
“Total access to all your devices.” Sextortion scammers strike again

Searchlight Cyber
June 24th – This Week’s Top Cybersecurity and Dark Web Stories

MIT Technology Review
All challenges big and small

MIT Technology Review
This flying solar-powered platform could deliver better internet from the air

Buchodi
Phishing's New Growth Team: Meta Ads and Lovable

ISC SANS
Linux Process Name Masquerading, (Wed, Jun 24th)

Troy Hunt
Weekly Update 509

ISC SANS
ISC Stormcast For Wednesday, June 24th, 2026 https://isc.sans.edu/podcastdetail/9984, (Wed, Jun 24th)

Auth0
Embedded Login Advancements: Put Your Apps in Control of Identity to Accelerate Conversions

Fastly
Using the Gini Coefficient to Plan Edge Capacity

Star Labs
Old Bug, Harder Rules : Exploiting CVE-2023-36802 Without the Usual Shortcuts


2026-06-23

Palo Alto Networks
New Executive Order Accelerates Post-Quantum Readiness Amid the Cryptographic Reset

Ars Technica Security
White House drastically shortens deadline for dropping quantum-vulnerable crypto

MIT Technology Review
Heads in the game

MIT Technology Review
Sharing a love for calculus

MIT Technology Review
A man of many words

MIT Technology Review
Super Mario is mathier than you think

Dark Reading
Scope of Salesforce Attacks Expands as Icarus Leaks Data

Dark Reading
'Cordyceps': Mushrooming Malicious Pull Requests Threaten Developer Workflows

Cloudflare
The post-quantum EO is an important milestone. Now it’s time to get to work

Rapid7
Why SIEM is Moving Toward Unified Security Operations: Rapid7 Named a Major Player in IDC MarketScape

Offensive Security
Intro to STIG Tools

Krebs on Security
Scattered Spider Hackers Plead Guilty on Day 1 of Trial

Meta Security
How Meta Engineered Ultra-Narrow Batteries for AI Glasses

Mozilla Security
Keeping the Web Open and Private in the Bot Era

Palo Alto Networks
Built to Last: What Stonehenge Teaches us About IT Architecture & Cyber Resilience

Malwarebytes
Inside the dark web: Stolen identities for 95¢, malware, and scams-for-hire

Socket
The Code You Didn't Write Is Still Yours to Defend

Jericho
2026 East Coast Drive (Part 4: Food)

Xint
Xint Achieves Dual ISO Certifications, Accelerating Global Security Compliance Roadmap

Auth0
Does Your Agent Want to See Other People? Identity-Chained Authorization with Auth0 Token Vault.

Dark Reading
SocGholish Takedown Highlights Malicious TDS Threats

Offensive Security
Cybersecurity Training in the Age of AI

Sicuranext Blog
Ghost Stories: investigating an undocumented ClickFix C2 in Ghost CMS

Sicuranext Blog
Ghost Stories: investigating an undocumented ClickFix C2 in Ghost CMS

Malwarebytes
Meta pauses controversial employee-tracking program after security review

Filippo Valsorda
Vulnerability Reports Are Not Special Anymore

Eclypsium
CISA BOD 26-04: What it Means and How Eclypsium Can Help

Aikido
Aikido x Drydock | A way for maintainers to catch malware before it ships

Dark Reading
FortiBleed Attackers Turn Firewalls Into Credential Stealers as Heists Persist

Wiz
AI Threat Readiness Pillar 4: Detect and contain threats in real-time

Schneier on Security
Anthropic’s Fable 5 Model Jailbroken Within Days

Malwarebytes
Hackers steal passport and driver’s license data of 3 million Texans

Malwarebytes
GTA 6 early access is nothing but a scam

Google Safety & Security
Expanding financial advertiser verification across Europe

Snyk
The New Security Control Point: Governing AI Agents Inside the Execution Loop

Snyk
Announcing Agentic Development Security (ADS)

Snyk
What nearly 10,000 developer environments reveal about agentic development risk

ISC SANS
CVE-2024-40766: The Patch Fixed the Bug. Nobody Fixed the Configuration., (Tue, Jun 23rd)

Snyk
When a vendor's breach becomes yours: lessons from the Klue incident

ISC SANS
ISC Stormcast For Tuesday, June 23rd, 2026 https://isc.sans.edu/podcastdetail/9982, (Tue, Jun 23rd)

Fastly
The Fastly C++ SDK is Now Generally Available

Datadog HQ
How to migrate feature flags without breaking production

Rosecurify
Seclog - #183

Elastic Security Labs
From vulnerability report to CVE draft in minutes: how Elastic automated security advisories with AI

Datadog HQ
How we migrated a live routing system using AI-assisted refactoring


2026-06-22

Dark Reading
DifyTap Bugs Let Attackers 'Wiretap' AI Chat Histories

Ars Technica Security
Following user outcry, AMD reinstates memory encryption in consumer CPUs

Microsoft Security
Guarding AI memory

Mend
AI changed what you ship. It also changed what you have to secure.

Cloudflare
How we found a bug in the hyper HTTP library

Trail of Bits
Introducing Patch the Planet

Dark Reading
Crypto Heist Fueled by Elaborate Fake Reputation-Boosting Campaign

Meta Security
Adopting AV1 for Real-Time Communication (RTC) at Scale

Microsoft Security
One intrusion, two cyberattackers: Uncovering parallel threat activity

Exodus Blog
Out of Shift: How a Shared State Bug in V8’s AsmJS Parser Broke the Ubercage

Amazon Security
Prevent data exfiltration: AWS egress controls for cloud workloads

Auth0
Passkey Adoption Is Rising, but Is It Worth It Yet?

Searchlight Cyber
How to Measure Continuous Attack Surface Management Success: Essential Metrics That Matter

Malwarebytes
Thousands of D-Link routers under control of AryStinger botnet

Jericho
2026 East Coast Drive (Part 3: VA / DC)

Dark Reading
He Thought He Was Secure; His Phone Number Was Stolen Anyway

ISC SANS
Webshells Remain Popular, (Mon, Jun 22nd)

Wiz
Cloud-native Security for your Windows environment: Announcing the Wiz Runtime Sensor for Windows

Malwarebytes
Document delivery scams: What are they and what’s their goal?

JFrog
PixelSmash – Critical FFmpeg Vulnerability Turns Media Files into Weapons

Schneier on Security
Professional Athletes and Wearables

Escape DAST
Race against the Machine: Can you match AI's pentesting time?

Malwarebytes
A week in security (June 15 – June 21)

Moonlock
eBay scams: How to spot eBay fraud before you lose money

Moonlock
Facebook scams: How to recognize them before it’s too late

ISC SANS
ISC Stormcast For Monday, June 22nd, 2026 https://isc.sans.edu/podcastdetail/9980, (Mon, Jun 22nd)

GitGuardian
BSides San Antonio 2026: Following Trust Across Applications, Cloud, and Compliance

Datadog HQ
Using Evaluation Frameworks with Agent Observability


2026-06-21

Jericho
2026 East Coast Drive (Part 2: North Carolina / Virginia)

ToxSec
AI Tar Pits Are Drowning LLM Scrapers in Infinite Garbage


2026-06-20

Step Security
15 Malicious JetBrains Plugins Stole AI API Keys from 70,000 Developers

Jericho
2026 East Coast Drive (Part 1: NaClCON)

Project Black
Liquidfiles Privilege Escalation

Socket
GitHub Actions Checkout Now Blocks Risky pull_request_target Checkouts

Joshua Rogers
Hacking fun with zip-slips, tar-slips, symlinks, hardlinks, collisions, and more


2026-06-19

Schneier on Security
Friday Squid Blogging: Victims of Unregulated Squid Fishing

Kevin Beaumont
An update on FortiBleed — what’s happening with victim orgs

Socket
Introducing Repository Access Permissions and Custom Roles

Rapid7
Weekly Metasploit Update: NTLM Relay Priv Esc, MCP Server Integration, Paperclip AI RCE Chain, and more

Malwarebytes
Nearly 15,000 infected websites cleaned in SocGholish crackdown

The Citizen Lab
WhatsApp Accuses NSO of Fresh Pegasus Targeting

Jericho
My Quest for the White Squirrel!

Escape DAST
How Escape helped Bridgetech Group replace pentests with automated evidence

SentinelOne
The Good, the Bad and the Ugly in Cybersecurity – Week 25

Dark Reading
Stressors, AI Forcing Changes to Cybersecurity Teams

Cloudflare
Temporary Cloudflare Accounts for AI agents

Malwarebytes
Apple patches Beats Studio Buds flaw that could turn earbuds into a wiretap

Schneier on Security
Anthropic’s Fable and the State of AI

ISC SANS
eBanking Phishing Delivered Through IPv4-Mapped IPv6 Address, (Fri, Jun 19th)

Palo Alto Networks
Expanding Our Footprint: Local Cloud Availability for Prisma AIRS in Japan

Moonlock
Apple adds more privacy controls to Find My and Maps

Moonlock
Downloaded a Mac app? It could be an infostealer in disguise

Moonlock
Meta disrupts a WhatsApp phishing campaign spreading spyware

Moonlock
Apple explains why macOS 26 blocks pasted Terminal commands

Moonlock
Apple Pay scams: how to spot them and what to do if you’re scammed

Praetorian
GhostPack Necromancy: Reforging C# Tools with WasmForge

Microsoft Security
AutoJack: How a single page can RCE the host running your AI agent

Elastic Security Labs
Lost in relocation: analysis of a new loader distributing CASTLESTEALER

Elastic Security Labs
Azure AD Graph Activity Logs: Ingestion and threat detection to close the visibility gap


2026-06-18

Ars Technica Security
Microsoft discovers new lightweight backdoor that steals cryptocurrency

Socket
Socket MCP Adds Org Alerts, Threat Feed Review, and Package Inspection

Palo Alto Networks
The Invisible CEO of Crisis: Breaking the Cycle of CISO Burnout

Eclypsium
FortiBleed: You Can't Patch Your Way Out of This

Dark Reading
Novo Nordisk Breach Highlights Software Development Pipeline Risk

Ars Technica Security
Apple patches high-severity eavesdropping vulnerability in Beats Studio Buds

Microsoft Security
New Forrester Total Economic Impact™ study projects a 124% ROI from unifying with Microsoft Security

Amazon Security
Accelerate security investigations with Kiro CLI

Dark Reading
Operation Escaneo Signals Shift in LatAm Threat Landscape

Dark Reading
FIFA Bug Exposes World Cup Streams to Remote Takeover

Talos Intelligence
Close Encounters of the Human Kind

Cloudflare
Build your own vulnerability harness

Krebs on Security
‘Popa’ Botnet Linked to Publicly-Traded Israeli Firm

Amazon Security
Spring 2026 SOC 1 and 2 reports are now available in OSCAL format

Dark Reading
Salesforce Data Thefts Continue via Klue App Compromise

NVISO Labs
The Road to Post-Quantum Readiness Part 1 of 2: Understanding the Risk

Jericho
Colorado Voting System Irregularities & Continued Rigging

Rapid7
Why Security Teams Need To Start Earlier

GitGuardian
How Five PostgreSQL Optimizations Sped Up Our Dashboard

ToxSec
Meta's Rule of Two: The Fix for Agent Prompt Injection

JFrog
npm v12’s Biggest Security Change: From Implicit to Explicit Trust

Dark Reading
Get Out of Security Debt by Tackling the Exposure Problem

Cloudflare
Celebrating 12 years of Project Galileo

Eclypsium
Securing the Foundation: What the New White House AI Executive Order Means for Federal Cybersecurity

Bishop Fox Security
Shynet | VERSION 0.13.1

Aikido
Aikido x OWASP: 200 free credits for individual members

Malwarebytes
Microsoft working on a fix for RoguePlanet, a flaw that grants full PC control

Wiz
The President’s Executive Actions on AI Have a Lot to Say on Cybersecurity

Malwarebytes
Retro gaming fans are the new target for fake GitHub malware

Mend
Frontier Model Is the Wrong Meter for Continuous Security

Schneier on Security
Embedding Forbidden Text in Spyware to Discourage AI Analysis

Step Security
Mastra npm Supply Chain Attack: 140+ Packages Backdoored via easy-day-js Typosquat

Step Security
Miasma and Hades Are Spreading Now: Detect Them on Developer Machines with Suspicious Files

Step Security
400+ AUR Packages Hijacked: What the “Atomic Arch” Campaign Means for Supply-Chain Security

Step Security
Prevent npm and Python Supply Chain Attacks on Developer Machines with Package Configs

Talos Intelligence
Scripting the disassembler: Local agentic reverse engineering through vbdec’s live COM object model

Malwarebytes
Kodak confirms breach as ShinyHunters’ leak threat reaches deadline

Searchlight Cyber
Three Days to Patch: What CISA’s New Directive Says About the Pace of Modern Exploitation

Hunt and Hackett
How to move from ClickOps to fully automated Microsoft Entra ID infrastructure

OWASP
Aikido and OWASP bring agentic Code Audit to the global AppSec community

Dark Reading
EU Gets a Head Start in Developing 6G Network Security

Snyk
The full Snyk AI Security Platform, free for open source maintainers

TrustedSec
Modern Web Application Content Discovery

Microsoft Security
From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet

dgl
SSH port knocking with OpenBSD 7.9

Moonlock
Docusign scams: What they look like, how they work, and what to do

ISC SANS
ISC Stormcast For Thursday, June 18th, 2026 https://isc.sans.edu/podcastdetail/9978, (Thu, Jun 18th)

ISC SANS
The Behavior of Coordinated SSH Brute Force Attacks over the last three months [Guest Diary], (Wed, Jun 17th)

Bishop Fox Security
The Smash-and-Grab Era

Fastly
Deploying Fastly's Next-Gen WAF with Google Cloud Service Extensions to Help Secure Traffic at Scale

Auth0
The Part of Software Engineering AI Cannot Replace

Auth0
LLMjacking and the Hidden Cost of a Stolen API Key


2026-06-17

Microsoft Security
Crypto Clipper uses Tor and worm-like propagation for persistence and control

Malwarebytes
Roblox developers are losing entire games to malware attacks

Socket
Socket Firewall Now Blocks Malicious VS Code and Open VSX Extensions

Ars Technica Security
Massive breach spills credentials for thousands of sensitive networks

Dark Reading
INC Ransomware Thrives by Mastering the Basics

Cloudflare
Bringing more agent harnesses and frameworks to Cloudflare, starting with Flue

Microsoft Security
Beyond the benchmark: Advancing security at AI speed

Praetorian
FreeBSoD: Leveraging Language Models to Find and Exploit Kernel Bugs (Part 1 of 2)

The Citizen Lab
How Freedom Tech Is Pushing Back Against Digital Authoritarianism

Microsoft Security
​​Forrester names Microsoft a Leader in the 2026 Extended Detection and Response Platforms Wave™ report

Ars Technica Security
"Dangerous" AI models are coming no matter what

Microsoft Security
AI is accelerating cyberattacks—here’s how to stay ahead