Home

CYBER SECURITY NEWS

• VerdantBamboo Deploys BSD Variant of BRICKSTORM on Linux Appliances
  June 8, 2026
  A China-nexus cyber espionage group has been observed deploying a BSD variant of a known backdoor called BRICKSTORM, as well as two other malware families codenamed PLENET (aka GRIMBOLT) and AGENTPSD to target Linux systems. The activity has been attributed by Volexity to a threat cluster it tracks as VerdantBamboo, which it said overlaps with […]
• UNC3753 Used Vishing and Physical Intrusions in U.S. Data Theft Extortion Campaign
  June 8, 2026
  Cybersecurity researchers have disclosed details of a financially motivated data theft extortion campaign that has targeted dozens of organizations across professional, legal, and financial services in the U.S. between January and May 2026. The activity has been attributed by Google Mandiant and Google Threat Intelligence Group (GTIG) to a threat actor dubbed UNC3753, which is […]
• VS Code Adds 2-Hour Extension Auto-Update Delay to Limit Supply Chain Attacks
  June 8, 2026
  Microsoft has announced that Visual Studio Code (VS Code) will apply a two-hour delay before extensions for the integrated development environment (IDE) are updated automatically to a newer version in an attempt to tackle software supply chain threats. "When automatic updates are enabled, new versions are auto-updated two hours after they are published, adding an […]
• New ChatGPT Lockdown Mode Limits Tools That Could Enable Data Exfiltration
  June 6, 2026
  OpenAI has begun rolling out a new Lockdown Mode to ChatGPT for eligible personal accounts to reduce the risk of data exfiltration arising from prompt injection attacks. The feature is primarily designed for people and organizations that handle sensitive data and require stricter protection guarantees. Lockdown Mode is available to logged-in users across Free, Go, […]
• Free Apps Are Quietly Turning Smart TVs Into Web-Scraping Proxies for AI
  June 6, 2026
  A researcher has reverse-engineered the iOS SDK that Bright Data embeds in consumer apps and documented how it turns devices, including always-on smart TVs, into exit nodes that relay web-scraping traffic for a data business Bright Data markets heavily to the AI industry. The company, the successor to Luminati, operates what it calls the largest […]
• CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog
  June 6, 2026
  The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity security flaw impacting SolarWinds Serv-U multi-protocol file server software to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-2026-28318 (CVSS score: 7.5), is a denial-of-service (DoS) bug that causes the service to crash
• AI Agent Uncovers 21 Zero-Days in FFmpeg; Chrome Patches Record 429 Bugs
  June 6, 2026
  Two things landed within days of each other this week. A security startup reported 21 previously unknown vulnerabilities in FFmpeg, the media library inside almost everything that touches video, all of them found by an autonomous AI agent. The same week, Google shipped Chrome 149 with patches for 429 security bugs, the most ever in […]

LATEST POSTS

• Data Protection and Backup
• Awakening Conference Byron Bay (19th – 21st September) 2025
• Online Conference 14th September (Sydney A.E.S.T)
• WebRoot Zero Day Malware Protection
• Cyber Security (MailGuard)