Article: Shai-Hulud malware worms Red Hat npm package versions downloaded 80K times a week - published 9 days ago.
Content: Security researchers on Monday found dozens of Red Hat npm package releases infected with the Mini Shai-Hulud worm that TeamPCP cybercriminals recently open-sourced. The new supply chain attack hit at least 32 npm package releases published under the Red Hat Cloud Services namespace, according to security researchers from Google-owned Wiz, who traced the ma...
Copy Link: https://www.theregister.com/security/2026/06/01/shai-hulud-malware-infects-red-hat-npm-packages-downloaded-80k-times-weekly/5249803   
Published: 2026 06 01 21:54:07
Received: 2026 06 09 15:27:18
Feed: The Register - Security
Source: The Register - Security
Category: Cyber Security
Topic: Cyber Security

Article: Blind POST SSRF in phpBB 4.0.0-alhpa1 Web Push (CVD with phpBB) - published 9 days ago.
Content: Came across an article, product like phpBB still has some potential flaws. submitted by /u/Sandwich_1337 [link] [comments]...
Copy Link: https://www.reddit.com/r/netsec/comments/1tu56p7/blind_post_ssrf_in_phpbb_400alhpa1_web_push_cvd/   
Published: 2026 06 01 20:44:07
Received: 2026 06 09 15:25:37
Feed: /r/netsec - Information Security News and Discussion
Source: /r/netsec - Information Security News and Discussion
Category: Cyber Security
Topic: Cyber Security

Cyber Tzar Free Score Certificate

Article: Election interlopers register 5K+ domains, hope to catch some voting phish - published 9 days ago.
Content: The biggest threat to America’s midterm elections in November likely isn’t foreign attackers hacking US voting machines. Phishing and election-official impersonation are the bigger risks, according to Check Point, which documented more than 5,000 election-themed domains registered between April and May. These domains can be used by attackers for phishing, i...
Copy Link: https://www.theregister.com/security/2026/06/01/5k-election-domains-registered-ahead-of-us-midterms/5249764   
Published: 2026 06 01 19:46:47
Received: 2026 06 09 15:27:19
Feed: The Register - Security
Source: The Register - Security
Category: Cyber Security
Topic: Cyber Security

Article: Hackers Used Meta’s AI Support Bot to Seize Instagram Accounts - published 9 days ago.
Content: The Instagram accounts for the Obama White House and the Chief Master Sergeant of the U.S. Space Force were briefly defaced with pro-Iranian images and messages over the weekend, after instructions began circulating on Telegram showing how to trick Meta’s “AI support assistant” bot into resetting account passwords. A screenshot from a video released on Teleg...
Copy Link: https://krebsonsecurity.com/2026/06/hackers-used-metas-ai-support-bot-to-seize-instagram-accounts/   
Published: 2026 06 01 17:32:50
Received: 2026 06 10 14:25:03
Feed: Krebs on Security
Source: Krebs on Security
Category: Cyber Security
Topic: Cyber Security

Cyber Tzar Score Summary

Article: The First World Cup in the Agentic Era - published 9 days ago.
Content:
Copy Link: https://www.securitymagazine.com/articles/102333-the-first-world-cup-in-the-agentic-era   
Published: 2026 06 01 17:00:00
Received: 2026 06 09 15:04:13
Feed: Security Magazine – All Feeds
Source: Security Magazine
Category: News
Topic: Security

Cyber Tzar Your Score Explained

Article: Vulnerability Disclosure in the Age of AI - published 9 days ago.
Content: New article: “Responsible Disclosure in the Age of AI: A Call for Urgent Action,” by Melissa Hathaway. Abstract: Artificial intelligence is fundamentally reshaping the balance between vulnerability discovery and remediation. Frontier AI models are now capable of autonomously identifying exploitable software vulnerabilities at unprecedented speed and scale. T...
Copy Link: https://www.schneier.com/blog/archives/2026/06/vulnerability-disclosure-in-the-age-of-ai.html   
Published: 2026 06 01 16:49:39
Received: 2026 06 09 15:25:42
Feed: Schneier on Security
Source: Schneier on Security
Category: Cyber Security
Topic: Cyber Security

Article: US Troops in Active War Zones Tracked with Commercial Location Data - published 9 days ago.
Content:
Copy Link: https://www.securitymagazine.com/articles/102332-us-troops-in-active-war-zones-tracked-with-commercial-location-data   
Published: 2026 06 01 16:00:00
Received: 2026 06 09 15:04:13
Feed: Security Magazine – All Feeds
Source: Security Magazine
Category: News
Topic: Security

Cyber Tzar Gold Score Certificate

Article: Welcome New EFF Executive Director Nicole Ozer - published 9 days ago.
Content:
Copy Link: https://www.eff.org/deeplinks/2026/05/welcome-new-eff-executive-director-nicole-ozer   
Published: 2026 06 01 14:25:05
Received: 2026 06 09 15:27:39
Feed: Deeplinks
Source: Deeplinks
Category: Cyber Security
Topic: Cyber Security

Article: GTA cheat service Atlas Menu hacked as attacker alleges screenshot spying - published 9 days ago.
Content: Grand Theft Auto cheat users have discovered that even the people selling ways around the rules struggle to follow some basic security ones. According to breach notification site Have I Been Pwned, the operators of Atlas Menu, a cheat service for Grand Theft Auto V and Counter-Strike 2, suffered a data breach in May that exposed information belonging to ten...
Copy Link: https://www.theregister.com/security/2026/06/01/gta-cheat-service-atlas-menu-hacked-as-attacker-alleges-screenshot-spying/5249192   
Published: 2026 06 01 14:15:00
Received: 2026 06 09 15:27:19
Feed: The Register - Security
Source: The Register - Security
Category: Cyber Security
Topic: Cyber Security

Cyber Tzar Score Analysis

Article: r/netsec monthly discussion & tool thread - published 9 days ago.
Content: Questions regarding netsec and discussion related directly to netsec are welcome here, as is sharing tool links. Rules & Guidelines Always maintain civil discourse. Be awesome to one another - moderator intervention will occur if necessary. Avoid NSFW content unless absolutely necessary. If used, mark it as being NSFW. If left unmarked, the comment will...
Copy Link: https://www.reddit.com/r/netsec/comments/1tts9ly/rnetsec_monthly_discussion_tool_thread/   
Published: 2026 06 01 13:29:06
Received: 2026 06 09 15:25:32
Feed: /r/netsec - Information Security News and Discussion
Source: /r/netsec - Information Security News and Discussion
Category: Cyber Security
Topic: Cyber Security

Article: Breaking Down UK Surveillance Levels: Who Is Most Watched? - published 9 days ago.
Content:
Copy Link: https://www.securitymagazine.com/articles/102331-breaking-down-uk-surveillance-levels-who-is-most-watched   
Published: 2026 06 01 13:15:00
Received: 2026 06 09 15:04:14
Feed: Security Magazine – All Feeds
Source: Security Magazine
Category: News
Topic: Security

Article: Stealing Passwords via HTML Injection Under a Strict CSP - published 9 days ago.
Content: submitted by /u/bajk [link] [comments]
Copy Link: https://www.reddit.com/r/netsec/comments/1ttqwyw/stealing_passwords_via_html_injection_under_a/   
Published: 2026 06 01 12:37:43
Received: 2026 06 09 15:25:37
Feed: /r/netsec - Information Security News and Discussion
Source: /r/netsec - Information Security News and Discussion
Category: Cyber Security
Topic: Cyber Security

Cyber Tzar Risk Impact Distribution

Article: Palo Alto VPN bug graduates from advisory to active exploitation - published 9 days ago.
Content: Palo Alto customers are being been told to patch yet another internet-facing security flaw after researchers caught attackers bypassing GlobalProtect authentication and gaining unauthorized VPN access. The flaw, tracked as CVE-2026-0257, affects PAN-OS deployments using GlobalProtect authentication override cookies under specific configurations. Palo Alto d...
Copy Link: https://www.theregister.com/cyber-crime/2026/06/01/palo-alto-vpn-bug-graduates-from-advisory-to-active-exploitation/5249114   
Published: 2026 06 01 12:15:00
Received: 2026 06 09 15:27:19
Feed: The Register - Security
Source: The Register - Security
Category: Cyber Security
Topic: Cyber Security

Article: CISA Adds One Known Exploited Vulnerability to Catalog - published 9 days ago.
Content:
Copy Link: https://www.cisa.gov/news-events/alerts/2026/06/01/cisa-adds-one-known-exploited-vulnerability-catalog   
Published: 2026 06 01 12:00:00
Received: 2026 06 09 15:04:48
Feed: CISA Current Activity
Source: Cybersecurity and Infrastructure Security Agency (CISA)
Category: News
Topic: Cyber Security

Cyber Tzar Risk Impact Assesment

Article: Vulnerability Summary for the Week of May 25, 2026 - published 9 days ago.
Content:
Copy Link: https://www.cisa.gov/news-events/bulletins/sb26-152   
Published: 2026 06 01 11:18:23
Received: 2026 06 09 15:04:40
Feed: CISA Bulletins
Source: Cybersecurity and Infrastructure Security Agency (CISA)
Category: Bulletins
Topic: Cyber Security

Article: Password manager Dashlane suspends customer accounts amid brute-force attacks - published 9 days ago.
Content: Password manager Dashlane has disabled a number of user accounts as a precaution amid a spate of brute force attacks. It didn't specify the scale of the attack, although scores of users have queried the reason for receiving emails informing them of account suspensions. “Your account has been temporarily suspended for security reasons as someone has attempte...
Copy Link: https://www.theregister.com/security/2026/06/01/password-manager-dashlane-suspends-customer-accounts-amid-brute-force-attacks/5248991   
Published: 2026 06 01 11:15:00
Received: 2026 06 09 15:27:20
Feed: The Register - Security
Source: The Register - Security
Category: Cyber Security
Topic: Cyber Security

Cyber Tzar Your Score Explained

Article: Putin sends submarines to survey Britain's subsea cables. UK deploys Royal Navy, mobilizes parliamentary draftsmen - published 9 days ago.
Content: The British government wants stronger protection for subsea internet cables following a surge in Russian activity near UK waters, but its latest proposals lean heavily on fines and prison sentences rather than direct defensive action. Plans - outlined in a speech by Baroness Liz Lloyd, Minister for Digital Economy ahead of a consultation - include tougher p...
Copy Link: https://www.theregister.com/networks/2026/06/01/putin-sends-submarines-to-survey-britains-subsea-cables-uk-deploys-royal-navy-mobilizes-parliamentary-draftsmen/5248978   
Published: 2026 06 01 10:48:11
Received: 2026 06 09 15:27:20
Feed: The Register - Security
Source: The Register - Security
Category: Cyber Security
Topic: Cyber Security

Article: The Romance Scammer Who Made a Small Fortune Posing as a WWE Superstar - published 9 days ago.
Content:
Copy Link: https://www.wired.com/story/wired-book-club-excerpt-the-yahoo-boys-carlos-barragan/   
Published: 2026 06 01 10:30:00
Received: 2026 06 09 15:00:56
Feed: Wired.com – Security Feed
Source: Wired
Category: News
Topic: Cyber Security

Cyber Tzar Risk Groups Explained

Article: Websites Can Now Spy on You Through Your Hard Drive - published 9 days ago.
Content:
Copy Link: https://www.wired.com/story/websites-can-now-spy-on-you-through-your-hard-drive/   
Published: 2026 06 01 09:30:00
Received: 2026 06 09 15:00:57
Feed: Wired.com – Security Feed
Source: Wired
Category: News
Topic: Cyber Security

Article: 1,000 Data Breaches Later, the Disclosure Lag is Worse Than Ever - published 9 days ago.
Content: Presently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSiteToday, I loaded the 1,000th data breach into Have I Been Pwned. Reflecting on that milestone number, I pondered how to mark the occasion in writing, and what immediately came to mind was a very simple question: w...
Copy Link: https://www.troyhunt.com/1000-data-breaches-later-the-disclosure-lag-is-worse-than-ever/   
Published: 2026 06 01 08:22:52
Received: 2026 06 09 15:22:07
Feed: Troy Hunt's Blog
Source: Troy Hunt's Blog
Category: Cyber Security
Topic: Cyber Security

Article: Edmunds - 177,860 breached accounts - published 10 days ago.
Content:
Copy Link: https://haveibeenpwned.com/Breach/Edmunds   
Published: 2026 06 01 07:39:02
Received: 2026 06 09 15:31:09
Feed: Have I Been Pwned latest breaches
Source: Have I Been Pwned
Category: Data Breaches
Topic: Data Breaches

Cyber Tzar Change Over Time (Extended)

Article: Overview of Content Published in May - published 10 days ago.
Content: Here is an overview of content I published in May: Blog posts: Update: search-for-compression.py Version 0.0.7 SANS ISC Diary entries: Wireshark 4.6.5 Released YARA-X 1.16.0 Release Wireshark 4.6.6 Released Microsoft Access VBA YARA-X 1.17.0 Release ...
Copy Link: https://blog.didierstevens.com/2026/06/01/overview-of-content-published-in-may-11/   
Published: 2026 06 01 07:33:01
Received: 2026 06 09 15:19:48
Feed: Didier Stevens
Source: Didier Stevens
Category: Cyber Security
Topic: Cyber Security

Article: Subnet discovery through multi-protocol TTL tracing - published 10 days ago.
Content: submitted by /u/ifritnoises [link] [comments]
Copy Link: https://www.reddit.com/r/netsec/comments/1ttkfhb/subnet_discovery_through_multiprotocol_ttl_tracing/   
Published: 2026 06 01 07:05:07
Received: 2026 06 09 15:25:37
Feed: /r/netsec - Information Security News and Discussion
Source: /r/netsec - Information Security News and Discussion
Category: Cyber Security
Topic: Cyber Security

Article: CyberDanube Security Research 20260528-0 | Multiple Vulnerabilities in Multiple Vulnerabilities in Mennekes Amtron Series - published 10 days ago.
Content:
Copy Link: https://seclists.org/fulldisclosure/2026/May/25   
Published: 2026 06 01 06:24:59
Received: 2026 06 09 15:15:58
Feed: Full Disclosure
Source: Full Disclosure
Category: Alerts
Topic: Vulnerabilities

Cyber Tzar Change Over Time (Extended)

Article: bmcweb (OpenBMC web server): four vulnerabilities — two unfixed, GHSA without a CVE - published 10 days ago.
Content:
Copy Link: https://seclists.org/fulldisclosure/2026/May/24   
Published: 2026 06 01 06:23:52
Received: 2026 06 09 15:15:59
Feed: Full Disclosure
Source: Full Disclosure
Category: Alerts
Topic: Vulnerabilities

Article: Weekly Update 506 - published 10 days ago.
Content: Presently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSiteI'm finding it quite fascinating to watch the current spate of ShinyHunters breaches and dumps. There's the obvious criminality of it all, but then there's also the response from organisations (or lack thereof, a...
Copy Link: https://www.troyhunt.com/weekly-update-506/   
Published: 2026 06 01 03:32:33
Received: 2026 06 09 15:22:08
Feed: Troy Hunt's Blog
Source: Troy Hunt's Blog
Category: Cyber Security
Topic: Cyber Security

Article: [webapps] WordPress OrderConvo 14 - Path Traversal - published 10 days ago.
Content:
Copy Link: https://www.exploit-db.com/exploits/52607   
Published: 2026 06 01 00:00:00
Received: 2026 06 09 15:30:26
Feed: Exploit-DB updates
Source: Exploit-DB updates
Category: News
Topic: Hacking

Cyber Tzar Change Over Time (Extended)

Article: [webapps] Drupal Core 10.5.5 - Error-Based SQL Injection - published 10 days ago.
Content:
Copy Link: https://www.exploit-db.com/exploits/52608   
Published: 2026 06 01 00:00:00
Received: 2026 06 09 15:30:25
Feed: Exploit-DB updates
Source: Exploit-DB updates
Category: News
Topic: Hacking