Aggregator
Adaptive Malware Could Evade Signature Detection by Regenerating Its Attack Capabilities
Adaptive, AI-driven malware could challenge a foundational assumption in enterprise defense: that a malicious program’s exploitation logic remains fixed after deployment. New research on adaptive computer worms argues that a self-replicating agent paired with an onboard reasoning loop could assess different environments, select target-specific attack paths, and regenerate capabilities as older methods become less effective. […]
The post Adaptive Malware Could Evade Signature Detection by Regenerating Its Attack Capabilities appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
13th July – Threat Intelligence Report
For the latest discoveries in cyber research for the week of 13th July, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES U.S. auto insurer AssuranceAmerica has disclosed a data breach affecting approximately 7 million people. Attackers targeted an employee and used compromised credentials to access company systems, stealing names, contact information, driver’s license […]
The post 13th July – Threat Intelligence Report appeared first on Check Point Research.
Forg365 PhaaS Targets Microsoft 365 with Device Code and AitM Session Theft
Introducing Precursor: detecting agentic behavior with continuous client-side signals
Novel OAuth Client ID Spoofing Technique Targets Cloud Environments
Turning the Tables on Email Scammers With 'ScamBuster'
Red Hat security advisory (AV26-688)
[Control systems] CISA ICS security advisories (AV26–687)
Ubuntu security advisory (AV26-686)
Dell security advisory (AV26-685)
IBM security advisory (AV26-684)
Debian 13 Released With Security Updates, Bug Fixes and Driver Updates
The Debian Project has released Debian 13.6, the latest maintenance update for Debian 13 “trixie.” The point release focuses on security corrections and fixes for serious software issues across the operating system’s package collection. Debian 13.6 is not a new major version of the distribution. Users do not need to reinstall the operating system or […]
The post Debian 13 Released With Security Updates, Bug Fixes and Driver Updates appeared first on Cyber Security News.
Hackers Using Vibe-Coded Generated PowerShell Script to Enumerate Active Directory Accounts
Threat actors have started weaponizing AI-generated PowerShell code to map Active Directory (AD) environments, marking a notable shift from off-the-shelf hacking tools to bespoke, “vibe-coded” malware. Security researchers at Huntress recovered and reconstructed one such script, dubbed Untitled1.ps1, from an incident on June 3, 2026. Vibe coding refers to writing software by iteratively prompting an […]
The post Hackers Using Vibe-Coded Generated PowerShell Script to Enumerate Active Directory Accounts appeared first on Cyber Security News.
WordPress, Joomla, Craft CMS. Хакеры массово взламывают сайты по всему миру через 15 уязвимостей
Attackers Combine MCP Recon With Cloud Metadata SSRF to Steal Service Account Tokens
Internet-wide reconnaissance is expanding beyond conventional application targets to include Model Context Protocol (MCP) services, AI assistant configuration files, and locally exposed LLM endpoints. A 14-day review of Apache and ModSecurity logs from a small, low-traffic shared host found roughly 200 requests tied to AI-agent reconnaissance, alongside routine WordPress, .env, Git, and Spring Boot Actuator […]
The post Attackers Combine MCP Recon With Cloud Metadata SSRF to Steal Service Account Tokens appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
EU Targets FSB-Linked Hackers in New Sanctions Over Cyber Sabotage
Ransomware negotiator who betrayed clients sentenced to 70 months in prison
A former ransomware negotiator at incident response firm DigitalMint has been sentenced to 70 months in prison after admitting he shared confidential client information with the BlackCat ransomware group and later helped carry out ransomware attacks. Prosecutors say Angelo Martino, 41, abused his role at DigitalMint beginning in April 2023 by providing BlackCat operators with sensitive information gathered during ransomware negotiations. The information included victims’ negotiating positions, insurance policy limits, and internal assessments, helping the … More →
The post Ransomware negotiator who betrayed clients sentenced to 70 months in prison appeared first on Help Net Security.
CISA Warns of Joomla Sites Running iCagenda or Balbooa Exploited in Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) has added two high-risk Joomla extension flaws to its Known Exploited Vulnerabilities (KEV) Catalog. Both vulnerabilities allow unrestricted file uploads, a weakness that attackers can abuse to upload malicious files and potentially take control of vulnerable websites. The affected products are iCagenda and Balbooa Forms, two extensions used […]
The post CISA Warns of Joomla Sites Running iCagenda or Balbooa Exploited in Attacks appeared first on Cyber Security News.
AI-Powered ‘Intelligent Worm’ Could Regenerate Exploits and Adapt to Defenses in Real Time
A new threat model is raising hard questions about how quickly self-spreading malware could change during an attack. The proposed Intelligent Worm is not a confirmed strain found in the wild, but a scenario in which a worm uses an onboard reasoning loop to revise its attack methods after defenses block its original route. Like […]
The post AI-Powered ‘Intelligent Worm’ Could Regenerate Exploits and Adapt to Defenses in Real Time appeared first on Cyber Security News.