Attack & News

Latest cybersecurity news, threat reports, and attack campaigns

All Feeds Attack & News Gov Alerts / ISAC Vulnerability Alerts Privacy & Governance Fraud & Scams

506 articles

Amnesty International Warns That World Cup Fans Face Potential Human Rights Violations

The organization claims that the FIFA tournament could have impacts on the rights of local people and visiting soccer fans in all…

NEWScriticalBleeping Computerabout 9 hours ago

Microsoft patches YellowKey, GreenPlasma, MiniPlasma zero-days

On Tuesday, Microsoft patched two zero-day vulnerabilities that let attackers gain SYSTEM privileges on fully patched Windows syst…

NEWShighSecurityWeekabout 9 hours ago

ServiceNow Patches Vulnerability Exploited Against Some Customers

The company updated hosted customer instances to patch a security issue it reportedly had known about since April 7. The post Serv…

NEWScriticalThe Hacker Newsabout 9 hours ago

Microsoft Patches Record 206 Flaws, Including Three Zero-Days and Critical RCE Bugs

Microsoft on Tuesday released fixes for a record 206 security vulnerabilities impacting its software portfolio, including three fl…

NEWScriticalHackreadabout 10 hours ago

Microsoft June 2026 Patch Tuesday Fixes 206 Flaws and 3 Zero-Days

Microsoft’s June 2026 patch Tuesday resolves 206 vulnerabilities, including 3 critical zero-days and severe 9.8 CVSS kernel, netwo…

NEWScriticalSecurityWeekabout 10 hours ago

Critical Vulnerabilities Patched in Fortinet, Ivanti Products

Two OS command injection flaws can be exploited remotely, without authentication, for arbitrary code execution. The post Critical…

NEWShighInfosecurity Magazineabout 11 hours ago

Microsoft Fixes 200 CVEs in June Patch Tuesday

Microsoft has patched 200 vulnerabilities including three zero-days

NEWShighSecurityWeekabout 11 hours ago

ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Phoenix Contact

In addition, Rockwell Automation announced some enhancements to its SecureOT cybersecurity solution for OT. The post ICS Patch Tue…

NEWSThe Hacker Newsabout 11 hours ago

Anthropic Releases Claude Fable 5, Its Most Powerful AI Yet, With Cyber Safeguards

On June 9, Anthropic released Claude Fable 5, the most capable model it has ever made, generally available. It also did something…

NEWShighThe Hacker Newsabout 12 hours ago

ServiceNow Flaw Exploited to Gain Unauthorized Access to Customer Instances

ServiceNow has warned about a security incident in which unknown threat actors exploited a flaw to obtain deeper unauthorized acce…

NEWShighSecurityWeekabout 12 hours ago

No Patch Planned for Exploited Arista EOS Vulnerability

Organizations are advised to apply vendor-supplied mitigations or discontinue the vulnerable devices. The post No Patch Planned fo…

NEWSBleeping Computerabout 13 hours ago

Ivanti: Max severity Sentry flaw allows code execution as root

Ivanti has patched two critical vulnerabilities in its Sentry secure mobile gateway solution, including a maximum-severity flaw th…

NEWScriticalThe Hacker Newsabout 14 hours ago

Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows

The anonymous security researcher going by the name Chaotic Eclipse (aka Nightmare-Eclipse) has released a proof-of-concept (PoC)…

NEWShighThe Hacker Newsabout 14 hours ago

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS

Cybersecurity researchers have flagged half a dozen vulnerabilities in protobuf.js, a JavaScript and TypeScript implementation of…

NEWSBleeping Computerabout 17 hours ago

Anthropic rolls out Claude Fable 5, but it's available for a limited time

Anthropic has begun rolling out a new model called "Fable," which is based on the same underlying model as Mythos, its most powerf…

NEWScriticalBleeping Computerabout 20 hours ago

Microsoft Defender 'RoguePlanet' zero-day grants SYSTEM privileges

A security researcher has released a new Microsoft Defender zero-day exploit named "RoguePlanet" just hours after Microsoft fixed…

NEWShighThe Registerabout 20 hours ago

AI is making Patch Tuesday (kinda) fun again

Unless you're an admin or vulnerability manager – then you're totally screwed

NEWShighKrebs on Securityabout 21 hours ago

A Record-Breaking Patch Tuesday for June 2026

Microsoft today released software updates to plug nearly 200 security holes across its Windows operating systems and supported sof…

NEWSBleeping Computerabout 22 hours ago

ServiceNow discloses security incident exposing customer data

ServiceNow is warning about a security incident after attackers exploited an unauthenticated access flaw through a vulnerable API…

NEWShighBleeping Computerabout 22 hours ago

OpenClaw AI agent found falling for phishing attacks, spills user data

Phishing simulation on an OpenClaw email agent with various configuration profiles showed that it was susceptible to tactics commo…

NEWShighCyberScoopabout 23 hours ago

Microsoft breaks Patch Tuesday record with 206 vulnerabilities

Fears and warnings about a roaring flood of error-riddled software have materialized. And the disease is spreading. The post Micro…

NEWScriticalBleeping Computerabout 24 hours ago

SAP fixes critical flaws in NetWeaver and Commerce Cloud

SAP has released fixes for 15 vulnerabilities as part of its June 2026 Security Patch package, including four critical-severity fl…

NEWShighSecurityWeek1 day ago

Microsoft Patches 200 Vulnerabilities

Three of the vulnerabilities fixed with the latest Patch Tuesday updates were publicly disclosed before Microsoft addressed them.…

NEWSBleeping Computer1 day ago

Microsoft releases Windows 10 KB5094127 extended security update

Microsoft has released the Windows 10 KB5094127 extended security update, which fixes the June 2026 Patch Tuesday vulnerabilities…

NEWShighSecurityWeek1 day ago

Adobe Patches 123 Vulnerabilities

Nearly half of the security holes, most allowing arbitrary code execution, have been fixed in Adobe’s Experience Manager product.…

NEWSHackread1 day ago

Network Log Analysis: Why Collecting Logs is Not Enough

Network Log Analysis helps teams turn raw logs into useful alerts, timelines, audit records, and incident evidence instead of stor…

NEWSThe Register1 day ago

Miasma worms its way onto GitHub as attack kit goes open source

As if there weren't enough package poisonings to worry about

NEWSSecurity Magazine1 day ago

OT Cybersecurity Is Maturing, But Visibility Is Still a Challenge

23% of survey respondents have visibility into only half of their OT environment.

NEWScriticalBleeping Computer1 day ago

Microsoft June 2026 Patch Tuesday fixes 3 zero-day, 200 flaws

Today is Microsoft's June 2026 Patch Tuesday, with security updates for 200 flaws and three publicly disclosed zero-day vulnerabil…

NEWScriticalBleeping Computer1 day ago

Microsoft June 2026 Patch Tuesday fixes 6 zero-days, 200 flaws

Today is Microsoft's June 2026 Patch Tuesday, with security updates for 200 flaws, including five publicly disclosed zero-day vuln…