CISA Warns of Actively Exploited Joomla JCE Flaw Allowing PHP Code Execution  - The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a maximum-severity security flaw impacting Widget Factory Joomla Content Editor (JCE) to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-2026-48907...

 SprySOCKS Backdoor Expands From Linux to Windows  - China-linked SprySOCKS backdoor gains stealthy Windows variants and 30-plus C2 commands

 News alert: Varist announces AI-scale malware detection for healthcare and medical imaging  - REYKJAVIK, Iceland, June 16, 2026 — Varist today introduced its DICOM Detection Engine™, a specialized system designed to safeguard electronic health records (EHR) and picture archiving and communication systems (PACS) from all known malware, including the emerging threat of AI-powered malware.

 KnowBe4 Appoints Alex Callihan as Chief Technology Officer

 Over Two-Thirds of Security Pros Say Cyber Is Getting Harder  - ISSA study finds most security professionals feel challenged by colleagues’ involvement in cyber

+4 from  infosecurity-magazine

 Sysco hit by second extortion claim over 61M records, weeks after Qilin ransomware threat  - Weeks after being named by the Qilin ransomware gang, Sysco, the world’s largest food distributor, is facing yet another extortion threat – this time from the notorious ShinyHunters, which claims to have stolen 61 million Salesforce records.

 CrowdStrike Announces Continuous Identity for AI Agents  - Identity security has long been built around a simple premise: Authenticate a user, grant access, and trust that decision until their next login. While for many this model worked well enough when iden[…]

 Webinar: How behavioral AI stops phishing and account takeovers  - Modern phishing, BEC, and account takeover attacks increasingly bypass traditional email defenses and create operational strain for security teams. This webinar explores how behavioral AI can help automate detection, investigation, and remediation to reduce alert fatigue and accelerate response times....

+6 from  bleepingcomputer

 Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails  - A China-linked espionage group hid inside North American medical, academic, and military research networks for more than a year, quietly stealing sensitive research and defense email. The way in was a backdoor on their REDCap research servers that stole login credentials. The exfiltration was the unusual...

+3 from  thehackernews

 Novo Nordisk hackers turn to private sale after GLP-1 maker refuses $25M ransom demand  - FulcrumSec, the hackers behind Novo Nordisk's recent cyberattack, claim the GLP-1 drugmaker refused a $25 million ransom demand and say they are now “exploring private sales” of 1.3TB of allegedly stolen data.

 CISA Adds One Known Exploited Vulnerability to Catalog

 Google Vertex AI SDK Flaw Let Attackers Hijack Model Uploads via Bucket Squatting  - A flaw in the Google Cloud Vertex AI SDK for Python let an attacker with no access to a victim's project hijack the victim's machine learning model upload and run code inside Google's serving infrastructure. Palo Alto Networks Unit 42, which found and reported the bug through Google's bug bounty program,...

+1 from  thehackernews

 Dozens of malicious wallpapers found on Steam Workshop: gamers’ accounts at risk  - Since late 2025, malware has been spreading rapidly through the Steam Workshop, the gaming platform's built-in service for players to create and share custom content. The attackers are primarily targeting gamers in China and Russia.

 GhostTree Attack Abused Recursive Windows Junctions to Hide Malware  - GhostTree uses recursive NTFS junctions to generate vast numbers of valid Windows file paths. Varonis explains how the technique could cause Microsoft Defender folder scans to never complete, leaving malware undetected.

+6 from  bleepingcomputer

 Hidden in Teams: DragonForce Attackers Weaponize Microsoft Teams Relays to Stay Hidden

 SimpleHelp bug lets hackers create rogue remote support accounts  - A vulnerability in the SimpleHelp remote management software allows unauthenticated attackers to create privileged technician accounts on servers using the OpenID Connect (OIDC) authentication protocol.

+3 from  bleepingcomputer

 Attackers Hijack Popular WordPress Plugins to Deploy Backdoors  - Tampered OptinMonster and sister plugins plant hidden backdoors on 1.2 million WordPress sites

+1 from  infosecurity-magazine

 Sniper Dz Scams Target MENA Users via Fake Facebook Offers and Browser Alerts  - Cybersecurity researchers have disclosed details of fraudulent activity targeting users across the Middle East and North Africa by employing various fraudulent Facebook accounts impersonating politicians, public figures, and trusted organizations. "These accounts promoted fake offers, including free mobile...

+4 from  thehackernews

 News alert: GitGuardian adds endpoint protection as developer laptops become credential troves  - NEW YORK, June 16, 2026, CyberNewswire– GitGuardian announced today that it is introducing Developer Endpoint Protection, extending its secrets and non-human identity (NHI) security platform coverage to developer workstations.

+1 from  lastwatchdog

 Malicious JetBrains Marketplace plugins steal AI API keys from developers  - At least 15 malicious plugins found on the JetBrains Marketplace were designed to steal AI API keys from developers.

+2 from  bleepingcomputer

 UK to require ID or face scan before you can make social media accounts  - Opening a new social media account in the UK will soon mean proving you're over 16 with an ID upload or a facial age scan, under a government ban on under-16s taking effect in spring 2027. Security experts warn the age checks are easy to circumvent and create new data-breach risks.

 Guernsey Returns £8m To OneCoin Victims  - Funds seized from crypto fugitive Ruja Ignatova to be handed over to German officials for return to victims of $4.5bn fraud

 Now you can emojify your friends' Spotify playlists  - Spotify has introduced a new feature called “Track reactions,” whereby you can add one of six emojis in response to your friends’ choice of tracks.

+1 from  cybernews

 Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week  - Bad actors are exploiting multiple security vulnerabilities in Fortinet FortiSandbox, according to threat intelligence firm Defused Cyber. In a post shared on X, the company said it has observed exploitation of CVE-2026-39813, CVE-2026-39808 , and CVE-2026-25089 over the past 24 hours. CVE-2026-39813...

+6 from  thehackernews

 CISA Adds Two Known Exploited Vulnerabilities to Catalog

 Tensordyne Claims Massive Speed and Power Improvement Over Nvidia  - The startup uses logarithmic math to speed up inference

 Maine forced to take down data breach portal after fake notices filed with authorities  - The US state of Maine has taken its public data breach notification portal offline after someone submitted fraudulent breach disclosures impersonating two well-known technology companies. Read more in my article on the Hot for Security blog.

 Eric Trump claims rigged UFC event texts were actually AI deepfakes  - The president's son, Eric Trump, has claimed that X messages containing conversations seeking insider information from UFC event commentator Daniel Cormier are actually AI deepfakes