For you Ai Security Dev Cloud Hardware Startups Releases General

From BleepingComputer · 15 stories

5 sources 5 reports 4h ago Updated 3h ago

EU Court Upholds €4.1 Billion Fine on Google for Android Antitrust Violations

Europe's top court, the European Court of Justice, upheld a €4.1 billion fine against Google for anti-competitive practices using its Android operating system. This decision concludes Google's long legal battle and reinforces the EU's regulatory scrutiny over tech giants. The ruling demonstrates the EU's determination to address market dominance misuse, affecting tech regulations moving forward.

general google antitrust eu regulation
4 sources 4 reports 4h ago

Opera Browser Introduces Paste Protect to Counter ClickFix Attacks

Opera has launched Paste Protect, a new feature that blocks potentially malicious clipboard commands to counter ClickFix attacks. ClickFix is a cyber threat that tricks users into executing harmful code via social engineering. This update marks Opera's initiative to enhance security against such attacks by detecting suspicious clipboard activity and preventing execution of malicious commands.

security browser malware opera cybersecurity
3 sources 3 reports 4h ago Updated 3h ago

ClickFix Malware Exploits Rise in 2025, Leveraging API and Social Media Ads

ClickFix has become a major method of malware delivery in 2025, utilizing deceptive techniques like fake prompts and API-driven servers. Researchers found these attacks often evade detection by exploiting user habits and leveraging social media ads to spread malware disguised as legitimate applications. This growing method underscores the importance of enhancing security awareness and defenses against social engineering tactics.

security malware clickfix api microsoft
3 sources 3 reports 4h ago Updated 3h ago

FortiBleed Campaign Compromises Fortinet Devices, Linked to Ransomware Groups

The FortiBleed campaign has been connected to the INC and Lynx ransomware groups, compromising credentials from Fortinet devices. Researchers found the operation entailed scanning 11,250 FortiGate portals and compromised 354 targets, leading to 12 ransomware deployments. The breach highlights significant cybersecurity risks, affecting organizations globally.

security ransomware credential-theft fortinet fortibleed
3 sources 3 reports 4h ago Updated 3h ago

CISA Adds Actively Exploited Microsoft SharePoint RCE Vulnerability to KEV Catalog

CISA added CVE-2026-45659, a remote code execution vulnerability in Microsoft SharePoint, to its Known Exploited Vulnerabilities catalog due to active exploitation. The flaw, affecting SharePoint Server Subscription Edition, Server 2019, and Enterprise Server 2016, allows authenticated attackers to execute code without elevated privileges. Federal agencies are required to patch the issue by July 4, 2026.

security microsoft sharepoint vulnerability cisa
3 sources 3 reports 4h ago Updated 3h ago

19-Year-Old Extradited to U.S. for Scattered Spider Hacking Charges

Peter Stokes, a 19-year-old with dual U.S. and Estonian citizenship, has been extradited from Finland to face U.S. charges related to the Scattered Spider hacking group. He faces accusations of conspiracy, computer intrusion, and fraud, including a significant breach of a luxury jewelry retailer. This case highlights ongoing efforts to combat organized cybercrime.

security cybercrime hacking law enforcement scattered spider
2 sources 2 reports 4h ago

DHS Investigates Cyber Breach on Homeland Security Information Network

The Department of Homeland Security is investigating a recent cyberattack on the Homeland Security Information Network (HSIN). The breach, suspected to occur between late May and early June, affected both HSIN servers and a SharePoint system, key for information sharing among government entities. The attack raises concerns over national security and vulnerabilities in government cybersecurity infrastructure.

security cybersecurity dhs hsin breach
2 sources 2 reports 4h ago

Cisco Acknowledges Exploitation of Unified CM Vulnerability CVE-2026-20230

Cisco has confirmed active exploitation of a critical vulnerability (CVE-2026-20230) in its Unified Communications Manager (Unified CM). This flaw, found in systems with the WebDialer service enabled, allows attackers to execute server-side request forgery attacks and potentially gain root access. Cisco urges users to upgrade to patched versions immediately.

security cisco exploits vulnerability unified_cm
2 sources 2 reports 4h ago Updated 3h ago

ChocoPoC Malware Targets Cybersecurity Researchers via Trojanized PoC Exploits

ChocoPoC, a Python-based remote access trojan, is being distributed through trojanized proof-of-concept (PoC) exploit repositories on GitHub. The malware targets cybersecurity researchers by installing malicious dependencies from PyPI, enabling attackers to execute commands and steal sensitive data. This highlights security risks associated with using unofficial PoCs in vulnerability research.

security malware research cybersecurity trojan
2 sources 2 reports 4h ago Updated 3h ago

Password Spray Attack Targets Microsoft Azure CLI, Compromising 78 Accounts

An automated password spray attack on Microsoft's Azure CLI attempted over 81 million logins, affecting 78 accounts across 64 organizations. The attackers exploited a deprecated OAuth flow, bypassing security measures like Conditional Access policies and multi-factor authentication (MFA). This incident underscores vulnerabilities in prevalent security configurations within cloud environments.

security azure oauth passwords microsoft
1 source 1 report 4h ago

Microsoft resolves bug causing Copilot buttons to disappear in Outlook

Microsoft has fixed a bug that caused Copilot buttons to be missing in Classic Outlook for Windows users. The issue affected users with a Copilot Chat (Basic) license, leading to various UI problems, which the Outlook Team addressed with a service update.

general microsoft outlook copilot bugfix
1 source 1 report 4h ago

Medtronic informs customers of ShinyHunters data breach exposure

Medtronic has notified customers about a data breach involving unauthorized access to personal data. The ShinyHunters group claimed to have accessed 9 million records containing sensitive information, prompting Medtronic to reassure customers of their devices' safety and offer credit monitoring services.

security data breach healthcare cybersecurity shinyhunters
1 source 1 report 4h ago

Kubota reveals month-long hacker access to employee data

Kubota North America announced that hackers accessed employee data for over a month this year. The breach exposed sensitive information such as Social Security numbers and bank details, prompting the company to enhance its security measures.

security kubota data breach cyberattack
1 source 1 report 4h ago

BleepingComputer to host webinar on new email security challenges

BleepingComputer will host a webinar on July 8, 2026, highlighting how traditional email defenses are inadequate against modern threats. It will focus on using behavioral AI for automated detection and response to evolving phishing and business email compromise attacks.

security email webinar ai
1 source 1 report 4h ago

Criminal IP Enhances OpenCTI with Contextual Cyber Threat Intelligence

Criminal IP integrates with OpenCTI to enrich IP addresses, domains, and URLs with intelligence data. This enhancement allows security teams to better investigate, correlate, and prioritize potential cyber threats.

security opencti cybersecurity threat intelligence criminal ip