Tech & Science
CISA Issues Critical Alert for Ubiquiti and Lantronix Vulnerabilities Under Active Exploitation
WASHINGTON — The U.S. Cybersecurity and Infrastructure Security Agency issued a maximum severity alert Tuesday warning that hackers are actively exploiting critical vulnerabilities in widely used netw...
Tata Electronics Confirms Cyberattack by World Leaks Group
NEW DELHI — Tata Electronics confirmed on Monday that it was targeted in a cyberattack impacting parts of its IT infrastructure, following claims by the World Leaks threat group regarding data theft. ...
Healthcare Tech Firm Xsolis Reports Data Breach Affecting 1.4 Million After Phishing Attack
NASHVILLE, Tenn. (AP) — Healthcare technology company Xsolis disclosed a data breach affecting approximately 1.4 million individuals following an unauthorized access event that began with a phishing a...
INTERPOL Warns of Surge in Cybercrime Across Asia-Pacific Region
LYON — INTERPOL released a comprehensive report on June 22, 2026, detailing a dramatic escalation in cybercriminal activity across the Asia-Pacific region. The international police organization identi...
New AryStinger Malware Campaign Targets Legacy Routers and NAS Devices Globally
SEOUL — Researchers from QiAnXin's XLab have identified a new malware family dubbed "AryStinger" that has infected at least 4,300 legacy routers and QNAP network-attached storage (NAS) devices worldwi...
U.S. Orders Anthropic to Suspend Foreign Access to Advanced AI Models Over Security Concerns
WASHINGTON — The U.S. government has ordered artificial intelligence developer Anthropic to suspend access for foreign nationals to its advanced models, Claude Fable 5 and Mythos 5, citing national se...
CISA Orders Federal Agencies to Patch Actively Exploited Ivanti Vulnerability
WASHINGTON — The U.S. Cybersecurity and Infrastructure Security Agency has issued a binding operational directive ordering federal agencies to patch an actively exploited vulnerability in Ivanti Sentr...
Kyushu Electric Power Co. Reports Missing External Drive Containing Data for Over 10 Million Customers in Japan
FUKUOKA, June 12 — Kyushu Electric Power Co., Inc. confirmed Friday that an external storage drive containing private data belonging to more than 10 million customers is missing from a server room cab...
Fraudulent Data Breach Disclosures Flood Maine Attorney General's Portal
PORTLAND — Fraudulent actors have submitted false data breach notifications to the official disclosure database maintained by the Maine Attorney General’s office, authorities confirmed Wednesday. The ...
China-nexus APT actors expand JDY botnet targeting U.S. military networks
BEIJING — Advanced persistent threat (APT) actors with ties to China have significantly expanded the scope of their operations using the JDY botnet, shifting focus toward United States military and as...
Miasma Worm Compromises 73 GitHub Repositories, Impacts Azure Infrastructure
SAN FRANCISCO — A sophisticated self-replicating worm identified as Miasma has compromised 73 Microsoft GitHub repositories, prompting the platform to disable the affected accounts and disrupting core...
SAP Releases Critical Security Patches for NetWeaver, Commerce and Data Hub Products
SAP SE released 15 new security notes on Tuesday, addressing four critical-severity vulnerabilities across its NetWeaver, Commerce, and Data Hub product lines. The software giant issued the updates to...
Microsoft Releases Patches for 204 Vulnerabilities in June 2026 Update
REDMOND, Wash. (AP) — Microsoft released security patches Tuesday for 204 vulnerabilities across its software portfolio, including 38 rated as critical, as part of its scheduled June 2026 Patch Tuesda...
Microsoft Deploys Major Windows 11 Security and Feature Updates
Microsoft released cumulative updates KB5094126 and KB5093998 for Windows 11 on Tuesday, addressing critical security vulnerabilities, resolving system bugs, and introducing new functionality to the o...
Veeam Patches Critical Backup Server Vulnerability Exploited by Ransomware Gangs
Veeam has released emergency security updates to address a critical vulnerability in its Backup & Replication software, a flaw that allows attackers to execute remote code on domain-joined backup serv...
Anthropic Launches Claude Fable 5 with Restricted Cybersecurity Capabilities
SAN FRANCISCO — Anthropic announced Monday the general availability of Claude Fable 5, a new Mythos-class artificial intelligence model featuring built-in cybersecurity guardrails designed to restrict...
Security Firm Tests Anthropic AI Model for Vulnerability Discovery
SAN FRANCISCO (AP) — Cybersecurity firm XBOW has successfully tested Anthropic's Mythos Preview model for offensive security applications, finding the artificial intelligence tool highly effective at ...
Microsoft Removes 73 GitHub Repositories Linked to Malware Campaign
REDMOND, Wash. (AP) — Microsoft removed 73 repositories from its official GitHub accounts on Monday after discovering they had been compromised by a supply-chain attack distributing password-stealing ...
Hackers Breach French Government Messaging Platform Tchap
PARIS — Hackers breached the French government's encrypted messaging platform Tchap on Tuesday, gaining access to over 73,000 user accounts and exfiltrating 13.5 gigabytes of documents and media files...
Fragmented Workflows Hamper Security Response in Hybrid Networks
SAN FRANCISCO (June 9, 2026) — Network security teams are facing escalating challenges as fragmented operational workflows in hybrid environments slow incident response times and increase remediation ...
CISA Flags TeamPCP Campaign as Leaked Code Fuels Credential Theft in npm Ecosystem
WASHINGTON (June 8, 2026) — The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added vulnerabilities linked to the TeamPCP threat campaign to its Known Exploited Vulnerabilities catalog ...
New FROST Attack Exploits SSD Timing to Track User Activity Across macOS and Linux
VIENNA — A new cybersecurity vulnerability dubbed FROST enables malicious websites to monitor which applications and other sites a user accesses by measuring solid-state drive timing through JavaScrip...
Critical Linux Kernel Flaw Allows Local Root Escalation, Container Escape
LONDON (AP) — A critical vulnerability in the Linux kernel has been disclosed that allows unprivileged users to escalate privileges to root and escape container isolation, affecting major distribution...
CISA Orders Federal Agencies to Patch Critical VPN Vulnerability Amid Ransomware Threat
WASHINGTON — The Cybersecurity and Infrastructure Security Agency issued an emergency directive Monday ordering U.S. federal agencies to patch a critical vulnerability in Check Point VPN software with...
Google Patches Zero-Day Exploit in Chrome 149 Update
MOUNTAIN VIEW, Calif. — Google released a critical security update for its Chrome browser on Tuesday, patching 74 vulnerabilities, including a zero-day exploit that has already been used in active att...
Apple Unveils AI-Driven Password Security Feature for Safari and Passwords App
CUPERTINO, Calif. (AP) — Apple Inc. announced a new artificial intelligence-powered security feature designed to automatically update weak or compromised passwords within Safari and the built-in Passw...
WhatsApp Disrupts NSO Group Spyware Attempt in Violation of Court Order
SAN FRANCISCO — WhatsApp detected and blocked a targeted hacking attempt by Israeli surveillance firm NSO Group on Monday, an action the messaging service said violated a permanent court injunction ba...
Gogs patches critical zero-day vulnerability enabling remote code execution
LONDON (AP) — The maintainers of Gogs, a self-hosted Git service, have patched a critical zero-day vulnerability that allowed attackers to execute remote code on Internet-facing instances. The securit...
Wazuh Unveils Cloud-Based SIEM/XDR Platform to Streamline Security Operations
Wazuh has introduced Wazuh Cloud, a managed Security Information and Event Management (SIEM) and Extended Detection and Response (XDR) solution designed to simplify security operations through automat...
Check Point patches critical VPN flaw exploited by Qilin ransomware gang
JERUSALEM — Check Point Software Technologies released emergency security updates Monday to address a critical authentication bypass vulnerability in its VPN products that was actively exploited in ze...