Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit

June 13, 2026 at 01:03AM Attackers took over more than 400 packages in the Arch User Repository (AUR) this week and rewrote their…

China-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decade

June 12, 2026 at 11:47PM Instead of hiding on the laptops and servers defenders watch most closely, a China-nexus group spent clo…

Europol Disrupts AudiA6 Crypto Laundering Service Used by Ransomware Gangs

June 12, 2026 at 12:08PM Authorities in Europe have disrupted AudiA6, a cryptocurrency laundering service used by ransomware gang…

ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach Universities

June 12, 2026 at 01:59AM The ShinyHunters extortion crew exploited an unpatched flaw in Oracle PeopleSoft to break into enterpris…

New Attacks Trick OpenClaw AI Agent Into Running Code and Leaking Secrets

June 11, 2026 at 11:16PM Two security teams have shown, in separate research published this week, that OpenClaw, the popular self…

New GreatXML Exploit Bypasses Windows BitLocker via Recovery Partition XML Files

June 11, 2026 at 11:13PM Security researcher Chaotic Eclipse (aka Nightmare-Eclipse and MSNightmare) has released a new Windows B…

ThreatsDay Bulletin: Worm Code Leaked, AI Agent Phished, Claude Action Patch + 28 New Stories

June 11, 2026 at 06:50PM It's been one of those weeks. You expect the usual noise: recycled malware, sloppy attacks, another …

AI Broke Vulnerability Management. That's Why CISOs Are Moving Budget to BAS.

June 11, 2026 at 05:00PM For thirty years, vulnerability management ran on a buffer: the months between when a vulnerability was …

OceanLotus Hits Vietnam Investors With SPECTRALVIPER in FireAnt Attack

June 11, 2026 at 03:15PM The Vietnam-aligned threat actor known as OceanLotus has been attributed to two distinct campaigns that …

GitHub to Disable npm Install Scripts by Default to Stop Supply Chain Attacks

June 11, 2026 at 11:53AM GitHub has announced what it said are "breaking changes" coming to npm version 12, one of whic…

Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows

June 10, 2026 at 10:52AM The anonymous security researcher going by the name Chaotic Eclipse (aka Nightmare-Eclipse) has released…

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS

June 10, 2026 at 10:38AM Cybersecurity researchers have flagged half a dozen vulnerabilities in protobuf.js, a JavaScript and Typ…