12 News Items
HN · BleepingComputer · Krebs · Dark Reading · SANS · THN Intel · Unit 42 · Security.com
HN · BleepingComputer · Krebs · Dark Reading · SANS · THN Intel · Unit 42 · Security.com
📰 Cybersecurity News Headlines
Top stories from leading cybersecurity publications as of June 4, 2026.
-
Chinese hackers use new Atlas RAT malware in European cyberattacks
— Bleeping Computer
A Chinese-speaking cybercrime group has expanded its targeting to the European space, deploying previously undocumented malware and the Atla… -
Attackers Use AI to Automate EDR Evasion Testing
— Dark Reading
Python scripts were used to test malware against endpoint detection and response agents from Sophos, CrowdStrike, and Windows Defender. -
The U.S. sanctions Nobitex crypto exchange used by ransomware
— Bleeping Computer
The U.S. Treasury's Office of Foreign Assets Control (OFAC) has announced sanctions against Nobitex, Iran's largest cryptocurrency exchange,… -
CISA warns of cyberattacks targeting fuel tank monitoring systems
— Bleeping Computer
CISA, the FBI, the NSA, the Department of Energy, and other US government partners are warning that hackers are targeting internet-exposed a… -
Tropical Blend: Cyber & Politics Ramp Up Across Latin America
— Dark Reading
China-linked espionage groups have attacked at least a dozen nations in the region, gathering information on maritime shipping, oil producti… -
WhatsApp, Slack Notifications Could Hijack Google Gemini on Android
— The Hacker News
A single poisoned notification from WhatsApp, Slack, SMS, Signal, Instagram, or Messenger could have hijacked Google Gemini's voice assistan… -
Cyber Insurance Rates Are Dropping, but Exclusions Widen
— Dark Reading
Cyber insurance coverage is slowly changing, and some policies may not provide coverage for social engineering attacks like ClickFix. -
Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT
— The Hacker News
Cybersecurity researchers have flagged a new malspam campaign that makes use of Google's DoubleClick domain as a way to evade detection and … -
Beyond the Zero-Day: See Your Network Like an Attacker | Webinar with HD Moore
— The Hacker News
Assume the breach. Zero-days keep shipping, AI is writing exploits faster than anyone patches, and "patch everything in time" stopped workin… -
Continuing Scans for swagger.json, (Wed, Jun 3rd)
— SANS ISC
Enterprise applications often still use complex standards like SOAP for web services. The big advantage of SOAP is its tight and extensive s… -
ISC Stormcast For Wednesday, June 3rd, 2026 https://isc.sans.edu/podcastdetail/9956, (Wed, Jun 3rd)
— SANS ISC
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. -
The npm Threat Landscape: Attack Surface and Mitigations (Updated June 2)
— Unit 42
Unit 42 analyzes npm supply chain evolution post-Shai Hulud. Discover wormable malware, CI/CD persistence, multi-stage attacks and more. The…
🪲 NVD — Last 20 Scored Vulnerabilities
Latest scored CVEs from the National Vulnerability Database (7168 in last 30 days).
Critical: 0 · High: 6 · Medium: 2 · Low: 3. View full dashboard →
-
CVE-2026-10783
— CVSS 2.5 (LOW)
A security flaw has been discovered in gradio-app gradio 6.14.0. This affects the function save_audio_to_cache of the component Audio Cache Key Handler. Performing a manipulation results in use of weak hash. The attack m⦠-
CVE-2026-10777
— CVSS 7.3 (HIGH)
A vulnerability was identified in ealpha072 Student-Management-System up to 01451bd7a2f58cdda07bd0b86e3967582e3ecd08. Affected by this issue is some unknown functionality of the file admin/config.php of the component Adm⦠-
CVE-2026-10775
— CVSS 3.6 (LOW)
A vulnerability was determined in sgl-project SGLang up to 0.5.11. Affected by this vulnerability is the function data_hash of the component Cache Handler. This manipulation causes denial of service. The attack is restri⦠-
CVE-2026-10771
— CVSS 7.3 (HIGH)
A vulnerability was found in crmeb crmeb_java 1.4. Affected is the function RestTemplate.getForEntity of the file crmeb-common/src/main/java/com/zbkj/common/utils/RestTemplateUtil.java of the component base64 Qrcode Endp⦠-
CVE-2026-50033
— CVSS 7.3 (HIGH)
Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis DeviceLock DLP (Windows) before build 9.0.15051.93227. -
CVE-2026-44682
— CVSS 7.3 (HIGH)
Local privilege escalation due to DLL hijacking vulnerability. The following products are affected: Acronis DeviceLock DLP (Windows) before build 9.0.15051.93227. -
CVE-2026-44609
— CVSS 7.3 (HIGH)
Local privilege escalation due to EXE hijacking vulnerability. The following products are affected: Acronis DeviceLock DLP (Windows) before build 9.0.15051.93227. -
CVE-2026-42061
— CVSS 7.3 (HIGH)
Local privilege escalation due to excessive permissions assigned to child processes. The following products are affected: Acronis DeviceLock DLP (Windows) before build 9.0.15051.93227. -
CVE-2026-10766
— CVSS 3.6 (LOW)
A vulnerability has been found in mlrun up to 1.12.0-rc3. This impacts the function mlrun.utils.helpers.calculate_dataframe_hash of the file mlrun/utils/helpers.py of the component DataFrame Hash Handler. The manipulatio⦠-
CVE-2026-45702
— CVSS 4.4 (MEDIUM)
OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 4.3.0 and prior to version 4.11.0, a t⦠-
CVE-2026-45614
— CVSS 4.7 (MEDIUM)
OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Prior to version 4.11.0, on many of the ECDH shared secretâ¦
Source: NVD CVE API 2.0
Generated by CryptXNet.ai Threat Intelligence Platform · June 4, 2026 · Sources: The Hacker News, Bleeping Computer, Krebs on Security, Dark Reading, SANS ISC, THN Threat Intel, Unit 42, Security.com
Leave a Comment