2026-07-02
watchTowr Labs
It’s 37oC, And All We Can Think About Is ColdFusion (Adobe ColdFusion Security Bulletin APSB26-68 CVE Bonanza)
Github Security Blog
How GitHub used secret scanning to reach inbox zero
MIT Technology Review
Achieving operational excellence with AI
Step Security
10 Layers Deep: How StepSecurity Stops TeamPCP's Trivy Supply Chain Attack on GitHub Actions
Aikido
AI Pentesting for Compliance
MIT Technology Review
Teaching AI to run with the turbines
MIT Technology Review
The Download: a startup has a solution for AI’s groupthink problem
CISA Alerts & Advisories
CubeSpace CW0057 Reaction Wheel
CISA Alerts & Advisories
ST Engineering iDirect iQ-Series Terminals
CISA Alerts & Advisories
Gardyn IoT Hub
Schneier on Security
Cybersecurity Mission Creep in the US
Trail of Bits
GPT-5.5-Cyber built a zlib fuzzing lab in a day
MIT Technology Review
Why California’s carbon manure math doesn’t add up
ISC SANS
ISC Stormcast For Thursday, July 2nd, 2026 https://isc.sans.edu/podcastdetail/9992, (Thu, Jul 2nd)
Elastic Security Labs
Inside Elastic InfoSec's agentic SOC: cutting alert triage from 30 minutes to under 3
2026-07-01
Leviathan Security
“UEFI is the New BIOS”: Lab Setup
RME-DisCo Research Group
The Simpler, the Stealthier: Benchmarking Adversarial DGA Models in a Unified Framework
Amazon Security
Secure Amazon container workloads using container attribute-based rules in AWS Network Firewall
Google Safety & Security
The latest AI news we announced in June 2026
Step Security
simonecorsi/mawesome GitHub Action has been compromised
Ars Technica Security
NASA inspector general suggests Boeing's Starliner will now be a decade late
Meta Security
Meta’s AI Storage Blueprint at Scale
Microsoft Security
Microsoft named a leader in the Frost Radar for cloud and application runtime security
Github Security Blog
6 security settings every GitHub maintainer should enable this week
Amazon Security
How to use the AWS Workload Credentials Provider for cross-account secret retrieval and prefetching secrets
Dark Reading
When Too Much Security Data Became the Risk
Zero Day Initiative
The June 2026 Apple Security Update Review
MIT Technology Review
LLMs are stuck in a groupthink groove. This startup is trying to get them out.
Black Hills Info Sec
Finding and Addressing Vulnerable and Outdated Web Application Components
Cloudflare
Content Independence Day, one year on: building the business model for the agentic Internet
Cloudflare
Making AI search smarter
MIT Technology Review
The Download: Anthropic launches Claude Science, and California’s carbon manure math
CISA Alerts & Advisories
CISA Adds One Known Exploited Vulnerability to Catalog
CISA News
CISA Announces New Advisory Council to Strengthen Partnerships and Secure Critical Infrastructure
Hunt and Hackett
Investigating AI-assisted credential access
Schneier on Security
Papa Johns Surveillance-Based Advertising
Talos Intelligence
Martin Lee: Running through the Arctic (and the threat landscape)
Talos Intelligence
ARToken: Inside an EvilTokens affiliate panel targeting Microsoft 365
Searchlight Cyber
June 30th – This Week’s Top Cybersecurity and Dark Web Stories
ISC SANS
ISC Stormcast For Wednesday, July 1st, 2026 https://isc.sans.edu/podcastdetail/9990, (Wed, Jul 1st)
Teleport Blog
How to Meet EU Cyber Resilience Act (CRA) Requirements
2026-06-30
MIT Technology Review
Claude Science is Anthropic’s newest flagship product
Ars Technica Security
New attack provides one more reason why AI browsers are a bad idea
watchTowr Labs
CitrixBleed To Infinity And Beyond (Citrix NetScaler Pre-Auth Memory Overread CVE-2026-8451)
Microsoft Security
Accelerating the quantum-safe timeline
MIT Technology Review
Roundtables: Longevity’s Next Frontier: “Reprogramming” Your Body
Palo Alto Networks
A Defining Moment in Identity Security
Meta Security
10 Years of Meta’s Commitment to Python
Microsoft Security
What’s new in Microsoft Security: June 2026
Microsoft Security
Securing AI agents: When AI tools move from reading to acting
MIT Technology Review
The Download: AI “coworkers” and stratospheric internet
Schneier on Security
The Realities of AI Video Surveillance
CISA Alerts & Advisories
Delta Electronics DVP12SE PLC
CISA Alerts & Advisories
Mitsubishi Electric MELSOFT Update Manager SW1DND-UDM-M
CISA Alerts & Advisories
Schneider Electric EasyLogic T150 and Saitel DP RTU
CISA Alerts & Advisories
Frangoteam FUXA SCADA/HMI
CISA Alerts & Advisories
StoneFly Storage Concentrator
CISA Alerts & Advisories
Schneider Electric EcoStruxure IT Data Center Expert
MIT Technology Review
Agriculture is ready for AI, but its data isn’t
CISA Alerts & Advisories
XZ Utils vulnerability impacting B&R Products
CISA Alerts & Advisories
OFFIS DCMTK Toolkit
Trail of Bits
Shipping post-quantum cryptography to Python
Shielder Blog
Symfony YAML Security Audit
ISC SANS
ISC Stormcast For Tuesday, June 30th, 2026 https://isc.sans.edu/podcastdetail/9988, (Tue, Jun 30th)
Fastly
No Code Request Routing
Rosecurify
Seclog - #184
2026-06-29
Ars Technica Security
US offers $10 million for info on group behind Signal and WhatsApp hacking spree
Socket
Chrome and Firefox Extensions Posing as Free VPNs Add Clipboard Stealers via Malicious Updates
watchTowr Labs
Enterprise Tech In, Shell Out (Progress Kemp LoadMaster Uninitialized Heap to Pre-Auth RCE CVE-2026-8037)
Microsoft Security
Chromium extension uses AI‑related branding to redirect browser search
Github Security Blog
Inside the Advisory Database and what happens when vulnerability volume breaks records
Schneier on Security
Factoring RSA Keys with Many Zeros
Jericho
The Loquacious Introvert
Malwarebytes
This pay gap is programmed (Lock and Code S07E13)
CISA Alerts & Advisories
CISA Adds One Known Exploited Vulnerability to Catalog
Mozilla Security
Improving Transparency and Assurance in the Web PKI: Mozilla Root Store Policy v3.1
Schneier on Security
Robot Police Officers
Malwarebytes
A week in security (June 22 – June 28)
ISC SANS
ISC Stormcast For Monday, June 29th, 2026 https://isc.sans.edu/podcastdetail/9986, (Mon, Jun 29th)
2026-06-28
MaskRay's Blog
Optimizing LLVM's bump allocator
Project Black
Local AI for Penetration Testing & Research
2026-06-26
Schneier on Security
The Chinese Control the Majority of Argentina’s Squid Fleet
Aikido
Top Koi alternatives in 2026
Schneier on Security
Meta Is Testing Facial Recognition for Police and Military
Dark Reading
AI Won't Wipe Out Entry-Level Cybersecurity Jobs
Jericho
Captain Obvious Audits the NVD
CISA Alerts & Advisories
Russian Intelligence Services Continue to Target Commercial Messaging Applications
Schneier on Security
One Million Passports Leaked Online
Compass Security Blog
Cyber Resilience Act – Part I
2026-06-25
Microsoft Security
Photo ZIP campaign targeting hospitality industry delivers Node.js implant for persistent access
Talos Intelligence
Beyond IOCs: AI-enabled threat intelligence
Socket
Miasma Mini Shai-Hulud Hits LeoPlatform npm Packages and GitHub Actions, Expands to the Go Ecosystem
The Citizen Lab
Emile Dirks Elected to PEN Canada’s Board of Directors
Schneier on Security
AI and Liability