AI Security Roundup

** Swati Khandelwal ** Jun 03, 2026 Vulnerability / Mobile Security A development flag left switched on in production builds of several Microsoft 365 Android apps disabled the check that limits …

Redis has patched a use-after-free in its blocking-client code that lets an authenticated user run arbitrary OS commands on the machine hosting the database. The flaw was found by an autonomous AI …

** Swati Khandelwal ** Jun 03, 2026 Vulnerability / Artificial Intelligence A single poisoned notification from WhatsApp, Slack, SMS, Signal, Instagram, or Messenger could have hijacked Google …

** Ravie Lakshmanan ** Jun 03, 2026 Malware / Microsoft Defender Cybersecurity researchers have flagged a new malspam campaign that makes use of Google’s DoubleClick domain as a way to evade …

** The Hacker News ** Jun 03, 2026 Exposure Management Assume the breach. Zero-days keep shipping, AI is writing exploits faster than anyone patches, and “patch everything in time” stopped …

ISC Stormcast For Monday, June 1st, 2026 <https://isc.sans.edu/podcastdetail/9952>

The Instagram accounts for the Obama White House and the Chief Master Sergeant of the U.S. Space Force were briefly defaced with pro-Iranian images and messages over the weekend, after instructions …

Vulnerability Disclosure in the Age of AI New article: “ Responsible Disclosure in the Age of AI: A Call for Urgent Action ,” by Melissa Hathaway. > Abstract: > Artificial intelligence is …

Three years ago, the practical question for an MSP building a cybersecurity practice was which “vCISO platform” to buy. The term was good shorthand for the work at the time: assessments, …

Cybersecurity researchers have disclosed details of a new malicious supply chain campaign that’s targeting developers using OpenAI Codex through a legitimate-looking remote web UI. The tool, …

** Ravie Lakshmanan ** Jun 01, 2026 Vulnerability / Website Security, Threat actors are attempting to actively exploit a critical security flaw impacting WP Maps Pro , a WordPress plugin that has had …

A new cyber espionage campaign codenamed Operation Dragon Weave has been observed targeting officials and citizens in the Czech Republic and Taiwan to deliver an AdaptixC2 agent. According to Seqrite …

A new Mini Shai-Hulud supply chain attack campaign, codenamed Miasma , has compromised @redhat-cloud-services packages to steal credentials and secrets from developer machines and deliver a …

ISC Stormcast For Tuesday, May 26th, 2026 <https://isc.sans.edu/podcastdetail/9944>

** Ravie Lakshmanan ** Jun 01, 2026 Cybersecurity / Hacking Monday hit like a cron job with anger issues. A busted auth path here, a repo-side faceplant there, some “patched-ish” thing …

ISC Stormcast For Wednesday, May 27th, 2026 <https://isc.sans.edu/podcastdetail/9946>

Most Akira write-ups focus on the ransom note or the encryption routine. By the time those show up the interesting forensic work is over. The questions that matter to defenders sit earlier. How did …

ISC Stormcast For Thursday, May 28th, 2026 <https://isc.sans.edu/podcastdetail/9948>

Using the data collected over the past year and using Kibana these two ES|QL query to summarize the data, this shows the list of the most uploaded threat to two DShield sensors (local and cloud) over …

ISC Stormcast For Friday, May 29th, 2026 <https://isc.sans.edu/podcastdetail/9950>

YARA-X 1.17.0 Release Published 2026-05-31. Last Updated 2026-05-31 16:01:29 UTC by Didier Stevens (Version: 1) 0 comment(s) YARA-X’s 1.17.0 release brings 5 improvements (several performance …

Introduction This diary provides indicators from an unidentified RAT infection on Wednesday 2026-05-27 that was followed by a malicious NetSupport Manager RAT package. This originated from the …

Authorities in the Netherlands have arrested the co-owners of two related Internet hosting companies for operating IT infrastructure used by Russia to carry out cyberattacks, influence operations and …

Identifying People Using Wi-Fi Routers Not identifying people based on their use of Wi-Fi routers, but identifying people using Wi-Fi signals . > This is accomplished through what is known as > …

Friday Squid Blogging: Another Squid Someone named “Squid” seems to be a “ West Country legend .” As usual, you can also use this squid post to talk about the security stories in the news that I …