InfoSecRadar InfoSecRadar
  • Home
    • Vulnerabilities & Exploits
    • Malware & Ransomware
    • Data Breaches & Leaks
    • Threat Actors & Campaigns
    • Policy & Regulation
    • Industry & Career
    • Tools & Techniques
    • Cloud & Infrastructure
    • AI & Cybersecurity
    • Privacy & Surveillance
    • Signal School
  • Friend
  • Foe
  • Archive
  • About

Archive: July 2026

138 stories.

All months June 2026 →
FOE Jul 03 The Hacker News
Unpatched Flaws Disclosed in Filesystem Bundled Into Millions of Embedded Devices
FOE Jul 03 The Hacker News
New "Bad Epoll" Linux Kernel Flaw Lets Unprivileged Users Gain Root, Hits Android
FOE Jul 03 The Hacker News
New Avalon Malware Framework Packs CrownX Ransomware Capabilities
FOE Jul 03 Bleeping Computer
NetNut proxy network disrupted, 2 million infected devices cut off
FOE Jul 03 The Hacker News
North Korea-Linked npm Packages Mimic Rollup Polyfills to Steal Developer Secrets
FOE Jul 03 CSO Online
Microsoft 365 users fall victim to one-in-a-million password spray attack
FOE Jul 03 SecurityWeek
In Other News: Canadian Hacker Jailed, Open Source Zero-Days, Two Sentenced for ATM Jackpotting
FOE Jul 03 The Register (Security)
AdaptHealth says attackers sweet-talked their way into cloud systems and stole patient data
FOE Jul 03 Bleeping Computer
ARToken PhaaS exposes EvilTokens' Microsoft 365 phishing toolkit
FRIEND Jul 03 CSO Online
Adobe premieres a second Patch Tuesday each month to deliver fixes faster
FOE Jul 03 The Hacker News
Armored Likho Targets Government Agencies, Power Sector with BusySnake Stealer
FOE Jul 03 Dark Reading
Chinese LLMs Broaden the Gap Between Attackers & Defenders
FOE Jul 03 The Register (Security)
NetNut cracked as Google and FBI target 2 million-device botnet
FRIEND Jul 03 Professor Messer
Today’s 220-1201 CompTIA A+ Pop Quiz: It’s air tight
FOE Jul 03 CSO Online
New CitrixBleed-like NetScaler flaw sees exploit attempts in the wild
FOE Jul 03 Schneier on Security
Flock Cameras Can Surveil Cars Without License Plates
FOE Jul 03 The Hacker News
European Parliament Member Investigating Spyware Was Hacked With Pegasus
FOE Jul 03 SecurityWeek
Agentic AI Used to Conduct Ransomware Attack via Langflow
FOE Jul 03 SecurityWeek
Medtronic Data Breach Impacts 3.8 Million People
FOE Jul 03 SecurityWeek
Alleged Scattered Spider Hacker Extradited to US
FOE Jul 03 SecurityWeek
Google, FBI Disrupt NetNut Residential Proxy Network Powered by Millions of Devices
FOE Jul 03 The Hacker News
PamStealer Uses Fake Maccy Sites and PAM Checks to Steal Mac Login Passwords
FOE Jul 03 SecurityWeek
Critical Cursor AI IDE Flaws Could Lead to OS-Level Remote Code Execution
FOE Jul 03 The Register (Security)
User swore hacker called General Failure had invaded his PC
FOE Jul 03 Risky Business News
Risky Bulletin: FatFs bugs enable physical access attacks on a load of devices
FOE Jul 03 Bleeping Computer
Claude Fable 5 isn’t permanently leaving subscriptions, Anthropic says
FOE Jul 03 Bleeping Computer
Claude Fable relaunch disappoints users with nerfed performance
FOE Jul 02 The Register (Security)
Dev says Google warned him about account hijack – then charged him $11,000 anyway
FOE Jul 02 Dark Reading
Aussies Face Reduced Cybercrime Risk, as Pressure Shifts to SMBs
FOE Jul 02 The Register (Security)
Startup sues Palo Alto Networks' Koi Security, saying an AI-hallucinated report falsely linked it to Chinese espionage
FRIEND Jul 02 BrightTALK InfoSec
Translate Security Operations Metrics into Business Risk Intelligence
FOE Jul 02 Ars Technica (Security)
Newly discovered PamStealer isn't your typical macOS malware
FOE Jul 02 Dark Reading
Apple Reverses Age-Old Patch Policy to Keep Up With AI
FOE Jul 02 Krebs on Security
FBI Seizes NetNut Proxy Platform, Popa Botnet
FOE Jul 02 Dark Reading
FortiBleed Actors Collaborating With Inc, Lynx Ransomware Gangs
FOE Jul 02 The Hacker News
Google Disrupts NetNut Residential Proxy Network Spanning 2 Million Home Devices
FOE Jul 02 The Hacker News
Ransomware Groups Turn to Citrix Bleed 2, BYOVD, and Supply Chain Credentials
FOE Jul 02 Dark Reading
Ransomware Thugs Masquerade as Interpol to Entice Small Biz
FOE Jul 02 The Register (Security)
Smooth AI criminal drives 'first' end-to-end agentic ransomware attack
FOE Jul 02 EFF Deeplinks
LGBT Q&A: How Can I Wipe Online Data That Points To My Queer Identity?
FOE Jul 02 The Register (Security)
Ctrl+Alt+Oops: FortiBleed criminal's logins stitch two gangs together
FOE Jul 02 The Hacker News
ThreatsDay: AI Compute Hijacking, Apple Email Flaw, BlueHammer Ransomware + 14 Stories
FOE Jul 02 Bleeping Computer
Google loses final appeal to overturn €4.1 billion EU fine
FOE Jul 02 EFF Deeplinks
EFF and Allies: X’s FTC Petition to Waive Privacy Violation Order Should be Rejected
FOE Jul 02 SecurityWeek
New CitrixBleed Vulnerability Exploited Immediately After Public Disclosure
FRIEND Jul 02 Professor Messer
Today’s SY0-701 CompTIA Security+ Pop Quiz: Sound it out
FOE Jul 02 The Register (Security)
Microsoft said exploitation was 'less likely' ... but CISA just added SharePoint RCE to KEV list
FOE Jul 02 Bleeping Computer
ConsentFix and ClickFix: How Microsoft 365 Accounts are Hijacked in 3 Seconds
FRIEND Jul 02 SecurityWeek
How to Conduct a Successful Audit of AI-Driven Software Development
FOE Jul 02 The Hacker News
ToddyCat-Linked Umbrij Malware Abuses OAuth to Access Gmail via Google API
FOE Jul 02 The Register (Security)
Pacemaker manufacturer Medtronic warns patients cybercrooks may have swiped health data
FOE Jul 02 SecurityWeek
FortiBleed Campaign Linked to INC, Lynx Ransomware Attacks
FRIEND Jul 02 Dark Reading
Anthropic's AI Finds Bugs. IBM Bets $5B It Can Fix Them.
FRIEND Jul 02 Bleeping Computer
Microsoft fixes bug that removed Copilot buttons in Outlook
FRIEND Jul 02 Professor Messer
Today’s 220-1202 CompTIA A+ Pop Quiz: I can do that
FOE Jul 02 CISA Alerts
CubeSpace CW0057 Reaction Wheel
FOE Jul 02 CISA Alerts
ST Engineering iDirect iQ-Series Terminals
FOE Jul 02 CISA Alerts
Gardyn IoT Hub
FOE Jul 02 The Register (Security)
India gives WhatsApp three days to defend username rollout amid security fears
FOE Jul 02 Bleeping Computer
Cisco finally confirms attackers exploiting Unified CM flaw
FOE Jul 02 The Hacker News
Identity Lifecycle Management Wasn't Built for AI Agents
FOE Jul 02 Schneier on Security
Cybersecurity Mission Creep in the US
FOE Jul 02 SecurityWeek
Trump Administration Lifts Restrictions on Anthropic’s Claude Models After Cybersecurity Alarm
FOE Jul 02 CSO Online
Argo CD flaw shows why GitOps infrastructure should be treated as tier zero
FOE Jul 02 Bleeping Computer
CISA: Microsoft SharePoint RCE flaw now actively exploited
FOE Jul 02 SecurityWeek
Cisco Confirms In-the-Wild Exploitation of Unified CM Vulnerability
FRIEND Jul 02 Bleeping Computer
Opera rolls out Paste Protect feature to fight ClickFix attacks
FOE Jul 02 SecurityWeek
‘BioShocking’ Attack Tricks AI Browsers Into Stealing Credentials
FOE Jul 02 The Register (Security)
Oracle E-Business Suite was under attack via critical flaw before the public exploit code was even released
FOE Jul 02 SecurityWeek
CISA Warns of Actively Exploited Microsoft SharePoint Vulnerability
FOE Jul 02 The Hacker News
AI Agent Exploits Langflow RCE to Automate Database Ransomware Attack
FOE Jul 02 Bleeping Computer
Alleged Scattered Spider hacker extradited to the United States
FOE Jul 02 The Hacker News
FortiBleed Credential Theft Linked to INC and Lynx Ransomware Operations
FOE Jul 02 The Hacker News
New ChocoPoC RAT Targets Vulnerability Researchers via Fake PoC Exploit Repos
FOE Jul 02 The Register (Security)
Hackers shoveled snow for company, were rewarded with network admin access
FOE Jul 02 The Hacker News
SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active Exploitation
FOE Jul 02 Risky Business News
Srsly Risky Biz: America Won't Beat the Distillation Ecosystem
FOE Jul 02 Bleeping Computer
Medtronic notifies customers impacted by ShinyHunters data breach
FOE Jul 02 CSO Online
Sandbox bypass flaws in Cursor IDE highlight prompt injection as an RCE vector
FOE Jul 02 Sophos News
Vect and TeamPCP partner for ransomware campaigns
FOE Jul 01 The Register (Security)
EvilTokens device-code phishing kit totally more evil than we all thought
FOE Jul 01 Bleeping Computer
FortiBleed credential-theft campaign linked to Lynx ransomware
FRIEND Jul 01 The Register (Security)
Claude Sonnet 5.0 heads straight down the middle of the road to dodge controversy
FRIEND Jul 01 EPIC
EPIC Commends California For Protecting User Privacy and Speech in Proposed Age Assurance Rules
FOE Jul 01 Bleeping Computer
Kubota says hackers had month-long access to network systems
FOE Jul 01 Dark Reading
Crafty Phishing Campaigns Auto-Adapt to Victim's Device, OS
FOE Jul 01 Bleeping Computer
New ChocoPoC malware targets researchers via trojanized PoC exploits
FOE Jul 01 The Register (Security)
Somebody told DeepSeek to build in-browser ransomware and it gleefully complied
FOE Jul 01 Dark Reading
And the Winner in Dominant Malware Delivery? ClickFix
FOE Jul 01 The Hacker News
Unpatched Argo CD Repo-Server Flaw Could Let Attackers Take Over Kubernetes Clusters
FOE Jul 01 The Hacker News
19-Year-Old Scattered Spider Suspect Extradited to Face U.S. Hacking Charges
FRIEND Jul 01 SecurityWeek
Microsoft Adds New Teams Controls to Block Unauthorized AI Bots From Meetings
FOE Jul 01 The Hacker News
SEO-Poisoned Software Sites Abuse ScreenConnect to Deploy AsyncRAT
FOE Jul 01 Bleeping Computer
DHS confirms hackers breached HSIN info-sharing platform
FOE Jul 01 The Hacker News
VEIL#DROP Malware Chain Uses Blogger Platform to Deliver PureLogs Stealer
FOE Jul 01 The Register (Security)
Red teamers turned Claude Desktop into a double agent to do their evil bidding
FRIEND Jul 01 Bleeping Computer
Webinar: Why traditional email security is no longer enough
FOE Jul 01 Bleeping Computer
Hackers target Microsoft 365 accounts with 81 million login attempts
FRIEND Jul 01 EPIC
New Jersey Legislature Passes Grocery Surveillance Pricing Ban
FRIEND Jul 01 Dark Reading
When Too Much Security Data Became the Risk
FOE Jul 01 The Hacker News
Ousaban Banking Trojan Targets Iberian Bank Users with Fake PDF Lures
FRIEND Jul 01 The Hacker News
Adobe Patches 7 CVSS 10.0 Flaws in ColdFusion and Campaign Classic
FOE Jul 01 Dark Reading
'Phantom Squatting': An Emerging AI-Driven Supply Chain Threat
FOE Jul 01 The Hacker News
Critical Cursor Flaws Could Let Prompt Injection Escape Sandbox and Run Commands
FRIEND Jul 01 Bleeping Computer
Turning Indicators into Intelligence in OpenCTI with Criminal IP
FRIEND Jul 01 BrightTALK InfoSec
Strengthening Supply Chain Resilience in a High-Risk Geopolitical Environment
FOE Jul 01 Black Hills Information Security
Finding and Addressing Vulnerable and Outdated Web Application Components
FOE Jul 01 The Hacker News
Progress Kemp LoadMaster Pre-Auth RCE Flaw Faces Active Exploitation Attempts
FRIEND Jul 01 Dark Reading
Safe Events Start With Threat Intel and Digital Security
FOE Jul 01 The Hacker News
AI-Generated Browser Ransomware Abuses Chromium API on Windows and Android
FOE Jul 01 Bleeping Computer
Over 900 Oracle E-Business instances exposed to ongoing attacks
FRIEND Jul 01 Professor Messer
Today’s 220-1201 CompTIA A+ Pop Quiz: Get the wood glue ready
FOE Jul 01 CISA Alerts
CISA Adds One Known Exploited Vulnerability to Catalog
FOE Jul 01 The Hacker News
2026 Cybersecurity Assessment: The Gap Between Awareness and Resilience
FOE Jul 01 SecurityWeek
Adobe Patches Critical ColdFusion, Campaign Classic Vulnerabilities
FRIEND Jul 01 SecurityWeek
Citrix Patches NetScaler Vulnerabilities, Including New ‘HTTP/2 Bomb’ Attack
FOE Jul 01 Schneier on Security
Papa Johns Surveillance-Based Advertising
FRIEND Jul 01 The Hacker News
Microsoft Accelerates Post-Quantum Cryptography Shift to 2029
FRIEND Jul 01 SecurityWeek
Frontier AI: Six Questions Every Enterprise Should Ask Security Vendors
FOE Jul 01 Bleeping Computer
Amazon fined $2.25M for withholding evidence from fraud victims
FRIEND Jul 01 SecurityWeek
Apple Patches Dozens of Vulnerabilities Across iOS, macOS, and Safari
FRIEND Jul 01 SecurityWeek
Dawnguard Raises $6.3 Million for Security Architecture Automation Platform
FOE Jul 01 SecurityWeek
Massive Password Spray Campaign Targeting Azure CLI
FRIEND Jul 01 Bleeping Computer
Adobe patches seven max severity ColdFusion, Campaign flaws
FOE Jul 01 The Hacker News
Phantom Squatting Uses AI-Hallucinated Domains for Phishing and Malware
FOE Jul 01 Risky Business News
Risky Bulletin: Researcher drops giant cache of zero-day exploits
FRIEND Jul 01 CSO Online
Detection engineering: A programmatic approach to identifying cyber threats
FOE Jul 01 The Hacker News
Anthropic Restores Claude Fable 5 After U.S. Lifts Jailbreak-Linked Export Controls
FOE Jul 01 SecurityWeek
Google Patches 382 Chrome Vulnerabilities
FOE Jul 01 The Hacker News
Azure CLI Password Spray Hits at Least 78 Microsoft Accounts in 81M+ Attempts
FOE Jul 01 The Hacker News
Researcher Analyzes 3,000 Live ClickFix Payloads, Exposing API-Driven Malware Delivery
FOE Jul 01 SANS Internet Storm Center
Why Ask Credentials If There Are Secret Codes?, (Wed, Jul 1st)
FOE Jul 01 The Hacker News
Citrix Patches Six NetScaler Flaws Allowing File Read and Denial-of-Service
FRIEND Jul 01 EPIC
PRESS RELEASE: EPIC Applauds Passage of the New Jersey Kids Code Act
FOE Jul 01 Dark Reading
China-Linked Group Targets Southeast Asia Critical Systems
FRIEND Jul 01 EPIC
PRESS RELEASE: EPIC Applauds Passage of the New Jersey Kids Code Act
FRIEND Jul 01 Bleeping Computer
Anthropic to restore Claude Fable access on Wednesday
FOE Jul 01 CISA KEV
CVE-2026-45659: Microsoft SharePoint Server Deserialization of Untrusted Data Vulnerability
About Methodology Fair Use Privacy Contact RSS

Scanning the threat landscape.