AI is making Patch Tuesday (kinda) fun again - 惯性聚合

推荐订阅源

The Register - Security

SegmentFault 最新的问题

The Blog of Author Tim Ferriss

WordPress大学

Y Combinator Blog

Threat Research - Cisco Blogs

CTFtime.org: upcoming CTF events

cs.CV updates on arXiv.org

Google DeepMind News

Cybersecurity and Infrastructure Security Agency CISA

Proofpoint News Feed

Microsoft Security Blog

博客园 - 司徒正美

The Exploit Database - CXSecurity.com

Hacker News - Newest: "LLM"

Security Archives - TechRepublic

DataBreaches.Net

阮一峰的网络日志

Google DeepMind News

Hacker News: Front Page

LINUX DO - 最新话题

奇客Solidot–传递最新科技情报

博客园 - 三生石上(FineUI控件)

Recent Commits to openclaw:main

Cyber Security Advisories - MS-ISAC

Comments on: Blog

博客园 - 叶小钗

Darknet – Hacking Tools, Hacker News & Cyber Security

Help Net Security

人人都是产品经理

cs.AI updates on arXiv.org

Cyber Attacks, Cyber Crime and Cyber Security

The Register - Security

GitHub pulls pin on npm's auto-run scripts Ivanti tells Sentry customers to patch now as critical bugs hit 10.0 and 9.9 Miasma worms its way onto GitHub as attack kit goes open source Apple’s iOS 27 goes all agentic on compromised passwords, promises to change them with one tap Signal says UK plan to scan devices for nude images 'endangers us all' Chrome's zero-day Whac-A-Mole continues with fifth exploited bug of the year France probes compromise of gov messaging platform after account hijack Qilin NHS breach tally grows as Essex trust confirms stolen records Norks blast 250+ fake job offers to developers over 6 weeks to try and snarf creds and crypto Ransomware crims got a month-long head start on Check Point VPN 0-day that now has a fix Ransomware sends Illinois high school on an early summer vacation GitHub nukes 70+ Microsoft repos, breaks CI/CD pipelines, following suspected worm infections NSO Group back in Meta's crosshairs after alleged WhatsApp targeting Oxford Uni student data pwned yet again - this time via career platform breach If you don't fall for these extortionists' calls, they'll show up with USB sticks Yet another Cisco SD-WAN 0-day under attack, and no patch in sight World Food Programme breach exposes data of 600k vulnerable Gazan families Council in UK's City of York outs hundreds of disabled residents with a single email blunder Pink is the latest goon squad to use fake helpdesk calls to steal creds OpenAI's agent chained decade-old DoS attacks to crash web servers in seconds Five Eyes: Watch out for odd LinkedIn connection requests, China's back on the hunt for state secrets Duo who sold car crash victims' data must repay £118k Nobody needs Mythos or 0-days to build a chaos-causing computer worm – free open source models work just fine All the passwords were stored in Active Directory description fields Commvault says it's time to rethink resiliency as AI crooks leave victims in a 'dark, dead' state Bend the beam like Beckham to defeat anti-jamming tech Another bug hunter leaks Microsoft exploits in defiance of company’s handling of vulnerability disclosures Anthropic ups Glasswing partner count 4x, UK banks snubbed 'Dumbass' criminal breaks the 'first rule of ransomware club' Cisco praises AI bug hunt, won't reveal flaw tally Russian spy agency says foreign spies turned officials' smartphones into surveillance devices Microsoft reaches for olive branch after public dustup with 0-day researcher Claude celebrates Anthropic's stock market float with blockbuster ... outage Northern Ireland cops issue PSA after official phone number spoofed by scammers Shai-Hulud malware infects Red Hat npm packages downloaded 80K times weekly Election interlopers register 5K+ domains, hope to catch some voting phish GTA cheat service Atlas Menu hacked as attacker alleges screenshot spying Palo Alto VPN bug graduates from advisory to active exploitation Password manager Dashlane suspends customer accounts amid brute-force attacks Putin sends submarines to survey Britain's subsea cables. UK deploys Royal Navy, mobilizes parliamentary draftsmen Lone attacker published 14 malicious npm packages mimicking popular OpenSearch, Elasticsearch libraries ICE to keep an eye on your eyes under $25M biometric scanner deal No fix yet for critical RCE bug in open-source Git service Gogs - exploit module is out 23andMe inherits lawsuit over 'disturbing' DNA data breach Dutch cops wrest 17M devices from mystery botnet's clutches ChatGPT blindly trusts browser content, turning the page into a payload Russia-linked threat group put ChatGPT to work from lure to payload ShinyHunters adds Charter to trophy shelf after 4.9M customer records leak Troops’ phones gave away location data to foreign adversaries Disgruntled 0-day hunter 'humiliated' by Microsoft pledges 'bone shattering drop' as Redmond calls cops Snowflake buys Natoma to help freeze out rogue agents Snowflake buys Natoma to help freeze out rogue agents Microsoft tests the 15-character limit of Windows Server admins' patience Carnival: ShinyHunters cruised off with 6M customer records Company CEO flooded file share with smut, called for help after he deleted it CrowdStrike, Google shatter Glassworm botnet Bosses blinded by confidence about shadow AI use by workers Extortion crews are visiting law firms pretending to be tech support, FBI warns India's cyber agency sets clock at 12 hours to tackle exploited bugs as AI turns up the heat Are we human? MyPillow must decide whether to be firm or soft as ransomware crims demand pay Experts pour cold borscht on Farage's Russian hack claim Anthropic to release Mythos-class models to the public AI eyes scanning for bugs create a worrisome Linux security trend Jailbroken Gemini helped Russian-speaking fraudster target MAGA crypto users Megalodon chums the waters in 5.5K+ GitHub repo poisonings Techie claims Trump Mobile website was leaking thousands of people's data Cisco used AI to write security incident reports, with mixed results Dems slam Trump for making cybersecurity hold out the tin cup while splurging on ballroom and Jan. 6 'slush fund' Threat hunters find Google API keys still usable 23 minutes after deletion HackerOne takes an axe to its bug bounty rewards Attackers spill plaintext passwords of 46k Myspace93 users after 2021 breach Cisco serves up yet another perfect 10 bug with Secure Workload admin flaw Microsoft open-sources agentic AI safety tools Zombie user account let hackers control the city’s water Even Claude agrees: hole in its sandbox was real and dangerous GitHub says internal repos exfiltrated after poisoned VS Code extension attack London's police asked Big Tech for comms data over 700,000 times last year Are we human? America's top cyber-defense agency left a GitHub repo open with with passwords, keys, tokens – and incredibly obvious filenames America's top cyber-defense agency left a GitHub repo open with passwords, keys, tokens – and incredibly obvious filenames Clear your calendar, Drupal user: You have a critically urgent patch to install Do fear the Reaper - stealer swipes macOS users' passwords, wallets, then backdoors them Shai-Hulud copycat worm infects yet another npm package Linux kernel flaw opens root-only files to unprivileged users TanStack weighs invitation-only pull requests after supply chain attack NGINX Rift attackers waste no time targeting exposed servers Poland directs officials to ditch Signal in favor of 'secure' state-developed alternative MPs want social media treated more like unsafe toys than harmless apps Security pros doubt Canvas attackers really deleted stolen student data To gain root access, intruder just had to ask AWS patched Quick auth bypass, says customers weren't using control Disgruntled researcher releases two more Microsoft zero-days Malware crew TeamPCP open-sources its Shai-Hulud worm on GitHub Foxconn confirms cyberattack after Nitrogen claims Apple, Nvidia data theft US bank reports itself after slinging customer data at 'unauthorized AI app' Anthropic’s bug-hunting Mythos was greatest marketing stunt ever, says cURL creator Best Western Hotels confirms web app data breach Arctic Wolf cuts 250 jobs in AI push 1 in 8 workers say selling company logins is justifiable

AI is making Patch Tuesday (kinda) fun again

Jessica Lyons Jessica Lyons · 2026-06-10 · via The Register - Security

此内容由惯性聚合(RSS阅读器)自动聚合整理，仅供阅读参考。原文来自 — 版权归原作者所有。