ClickFix Campaigns Expand Malware Delivery With New Loaders and Fake Update Lures  - Cybersecurity researchers have flagged multiple ClickFix campaigns that deliver three malware loaders called BabaDeda Loader , Lorem Ipsum Loader , and Potemkin , per independent reports from Morphisec , BlueVoyant , and Huntress , respectively. Attacks involving BabaDeda Loader, observed in April 2026,...

 Dozens of malicious wallpapers found on Steam Workshop: gamers’ accounts at risk  - Since late 2025, malware has been spreading rapidly through the Steam Workshop, the gaming platform's built-in service for players to create and share custom content. The attackers are primarily targeting gamers in China and Russia.

 Over Two-Thirds of Security Pros Say Cyber Is Getting Harder  - ISSA study finds most security professionals feel challenged by colleagues’ involvement in cyber

+4 from  infosecurity-magazine

 Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week  - Bad actors are exploiting multiple security vulnerabilities in Fortinet FortiSandbox, according to threat intelligence firm Defused Cyber. In a post shared on X, the company said it has observed exploitation of CVE-2026-39813, CVE-2026-39808 , and CVE-2026-25089 over the past 24 hours. CVE-2026-39813...

+6 from  thehackernews

 CISA Adds Two Known Exploited Vulnerabilities to Catalog

 Tensordyne Claims Massive Speed and Power Improvement Over Nvidia  - The startup uses logarithmic math to speed up inference

 Maine forced to take down data breach portal after fake notices filed with authorities  - The US state of Maine has taken its public data breach notification portal offline after someone submitted fraudulent breach disclosures impersonating two well-known technology companies. Read more in my article on the Hot for Security blog.

 Eric Trump claims rigged UFC event texts were actually AI deepfakes  - The president's son, Eric Trump, has claimed that X messages containing conversations seeking insider information from UFC event commentator Daniel Cormier are actually AI deepfakes

 UK Government Finds 400+ Vulnerabilities in AI Hackathons  - Government departments find hundreds of vulnerabilities after testing frontier models

+2 from  infosecurity-magazine

 SprySOCKS Backdoor Expands From Linux to Windows  - China-linked SprySOCKS backdoor gains stealthy Windows variants and 30-plus C2 commands

 UK to require ID or face scan before you can make social media accounts  - Opening a new social media account in the UK will soon mean proving you're over 16 with an ID upload or a facial age scan, under a government ban on under-16s taking effect in spring 2027. Security experts warn the age checks are easy to circumvent and create new data-breach risks.

 Guernsey Returns £8m To OneCoin Victims  - Funds seized from crypto fugitive Ruja Ignatova to be handed over to German officials for return to victims of $4.5bn fraud

 Now you can emojify your friends' Spotify playlists  - Spotify has introduced a new feature called “Track reactions,” whereby you can add one of six emojis in response to your friends’ choice of tracks.

+1 from  cybernews

 Sysco hit by second extortion claim over 61M records, weeks after Qilin ransomware threat  - Weeks after being named by the Qilin ransomware gang, Sysco, the world’s largest food distributor, is facing yet another extortion threat – this time from the notorious ShinyHunters, which claims to have stolen 61 million Salesforce records.

 CrowdStrike Announces Continuous Identity for AI Agents  - Identity security has long been built around a simple premise: Authenticate a user, grant access, and trust that decision until their next login. While for many this model worked well enough when iden[…]

 Attackers Hijack Popular WordPress Plugins to Deploy Backdoors  - Tampered OptinMonster and sister plugins plant hidden backdoors on 1.2 million WordPress sites

+1 from  infosecurity-magazine

 152 Chrome Wallpaper Extensions with 105K Installs Linked to Adware and Fake Traffic  - Cybersecurity researchers have discovered a network of 152 Google Chrome extensions that act as new tab live wallpaper add-ons to distribute a potentially unwanted program (PUP) family. The cluster spans 38 separate Chrome Web Store publisher accounts and three brand backends: tabplugins[.]com, yowgames[.]com,...

+4 from  thehackernews

 Cyberattack hits four major Iranian banks, officials say  - A cyberattack disrupted operations at four major Iranian banks, but protective measures were immediately implemented to protect customer data, Iran's Bank Coordination Council announced on Sunday.

 FBI disrupts massive AI-powered phishing service using a million URLs  - In a coordinated effort, the FBI, working with Google and Black Lotus Labs, has dismantled a massive Chinese phishing-as-a-service operation called Outsider Enterprise with thousands of phishing websites used to steal credit card data and passwords.

 News alert: Varist announces AI-scale malware detection for healthcare and medical imaging  - REYKJAVIK, Iceland, June 16, 2026 — Varist today introduced its DICOM Detection Engine™, a specialized system designed to safeguard electronic health records (EHR) and picture archiving and communication systems (PACS) from all known malware, including the emerging threat of AI-powered malware.

 KnowBe4 Appoints Alex Callihan as Chief Technology Officer

 GhostTree Attack Abused Recursive Windows Junctions to Hide Malware  - GhostTree uses recursive NTFS junctions to generate vast numbers of valid Windows file paths. Varonis explains how the technique could cause Microsoft Defender folder scans to never complete, leaving malware undetected.

+6 from  bleepingcomputer

 Hidden in Teams: DragonForce Attackers Weaponize Microsoft Teams Relays to Stay Hidden

 DOJ seizes CFAKE, SOCFAKE deepfake nude sites under TAKE IT DOWN Act  - The U.S. Department of Justice announced Friday that it has seized the CFAKE.com and SOCFAKE.com websites, which allegedly hosted nonconsensual AI-generated nude images and videos of women, in what appears to be the first publicly announced domain seizure under the TAKE IT DOWN Act.

+3 from  bleepingcomputer

 Infinite Campus data breach affects 137,000 school staff accounts  - The ShinyHunters extortion gang stole personal information from more than 137,000 school staff accounts in a Salesforce data theft attack that targeted the widely used Infinite Campus K-12 student information system in March.

+6 from  bleepingcomputer

 ⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More  - Stuff broke again. Not in a movie way. An old tool was left exposed. An abandoned package was abused. A deprecated feature was still running in prod. This week is the same lesson in a new form: phishing kits are easier to rent, AI names are useful bait, old login paths still fail, and forgotten software...

+3 from  thehackernews

 France Says Israeli Firm Interfered In Scottish Elections  - Israel's BlackCore carried out digital interference operations in Scotland, New York City, France, says disinformation detection agency

+1 from  silicon.co.uk