AI Security Roundup

ISC Stormcast For Friday, June 12th, 2026 <https://isc.sans.edu/podcastdetail/9970>

What happens when the bits of an RSA private key are heavily biased toward 0 instead of being randomly generated? The public key’s bits could be biased enough for us to detect these incorrectly …

Bernie Sanders’ AI Sovereign Wealth Fund Plan Let no one accuse Bernie Sanders of ducking the big questions. Writing in the New York Times last week, the senator asked “Will the future of humanity be …

** Ravie Lakshmanan ** Jun 12, 2026 Cybercrime / Phishing An INTERPOL-led operation last month resulted in the disruption of Sniper Dz , a decade-long phishing-as-a-service (PhaaS) platform, Group-IB …

Friday Squid Blogging: Squid-Inspired Fluid Pump This fluid pump was inspired by the way squids propel themselves through the water. As usual, you can also use this squid post to talk about the …

Authorities in Europe have disrupted AudiA6 , a cryptocurrency laundering service used by ransomware gangs and cybercriminal networks. Europol, in a statement issued Thursday, said the dismantling of …

** Ravie Lakshmanan ** Jun 12, 2026 Vulnerability / AI Security Cybersecurity researchers have disclosed details of three now-patched security flaws impacting LangGraph , including a critical …

For most of the past decade, managed detection and response was the answer to a real problem. Security teams couldn’t staff around the clock, couldn’t hire enough analysts, and needed …

** Swati Khandelwal ** Jun 12, 2026 Linux / Network Security Instead of hiding on the laptops and servers defenders watch most closely, a China-nexus group spent close to a decade hidden inside the …

** Ravie Lakshmanan ** Jun 12, 2026 Artificial Intelligence / Vulnerability Cybersecurity researchers have described what they say is a new class of attack that can trick artificial intelligence (AI) …

Google on Friday said it’s pursuing legal action against a Chinese cybercrime network, accusing it of using its Gemini artificial intelligence (AI) agent to send phishing text messages targeting …

Attackers took over more than 400 packages in the Arch User Repository (AUR) this week and rewrote their build scripts to install a credential stealer on any machine that built them. The malware is a …

Enhanced License Plate Tracking The surveillance company Leonardo wants more data : > A surveillance company plans to add sensors to automatic license plate readers (ALPRs) that would mean the …

The Vietnam-aligned threat actor known as OceanLotus has been attributed to two distinct campaigns that targeted domestic entities and stock investors with a backdoor known as SPECTRALVIPER. The …

** Ravie Lakshmanan ** Jun 11, 2026 Developer Security / Software Supply Chain GitHub has announced what it said are “breaking changes” coming to npm version 12, one of which turns off …

For thirty years, vulnerability management ran on a buffer: the months between when a vulnerability was found and when someone could figure out how to weaponize it. The solution was straightforward …

** Ravie Lakshmanan ** Jun 11, 2026 Hacking News / Cybersecurity News It’s been one of those weeks. You expect the usual noise: recycled malware, sloppy attacks, another easy target getting hit. …

** The Hacker News ** Jun 11, 2026 Cybersecurity Innovations and Excellence Most good security work is invisible by design. Today is the exception. The 2026 Cybersecurity Stars Awards winners are …

A new analysis of The Gentlemen operation has revealed that the financially motivated threat group initially operated as an affiliate responsible for conducting double extortion attacks, while …

** Ravie Lakshmanan ** Jun 11, 2026 Endpoint Security / Vulnerability Security researcher Chaotic Eclipse (aka Nightmare-Eclipse and MSNightmare) has released a new Windows BitLocker bypass dubbed …

Two security teams have shown, in separate research published this week, that OpenClaw , the popular self-hosted AI agent, can be driven to run attacker-controlled code or hand over sensitive data …

ISC Stormcast For Thursday, June 11th, 2026 <https://isc.sans.edu/podcastdetail/9968>

Back in 2023, I wrote a diary[ 1 ] discussing how commonly X-Frame-Options and CSP headers containing the frame-ancestors directive were used on 1 million most popular domains on the internet (based …

A cybercrime group known as The Gentlemen has emerged as the second most active ransomware gang by victim count, rapidly attracting a talented pool of hackers through an aggressive recruitment …

** Ravie Lakshmanan ** Jun 10, 2026 Cyber Attack / Vulnerability ServiceNow has warned about a security incident in which unknown threat actors exploited a flaw to obtain deeper unauthorized access to …