Residential AI Data Centers: Security, Privacy, and Governance Concerns
Another major concern is the blurring of ownership, accountability, and liability.
Many of these emerging models fail to clearly define who owns processed data, who controls logs and telemetry, and who assumes responsibility following a breach or criminal misuse.
Cyber_Security_Channel
Another major concern is the blurring of ownership, accountability, and liability.
Many of these emerging models fail to clearly define who owns processed data, who controls logs and telemetry, and who assumes responsibility following a breach or criminal misuse.
Cyber_Security_Channel
Securitymagazine
Residential AI Data Centers: Security, Privacy, and Governance Concerns
The concept of placing mini data centers and distributed AI computer nodes inside residential homes may appear innovative from an energy efficiency perspective, but it introduces significant security concerns.
👍3❤1
🤝 Cyber Security News is looking for ADVERTISERS
Our community is continuously growing and we are searching for exciting companies & products to share with our audience.
Requirements to Qualify
• Relevant to channels niche / industry
• Long-term approach and collaboration mindset
• $2,000+ monthly ad spend budget to invest in campaigns
What We Offer
• Exposure to 60,000+ community members
• Personal success manager to scale your campaigns
• Brand awareness, leads, sign-ups, customers, followers, etc.
📩 Contact for Partnership
If you are serious about promoting your business, send us an introduction Email → cybersecnewsinfo@gmail.com
Important Note
Spots to become a sponsor are limited.
Reach out before they fill up.
(we only have 7 left)
- - - - -
@Cyber_Security_Channel
Our community is continuously growing and we are searching for exciting companies & products to share with our audience.
Requirements to Qualify
• Relevant to channels niche / industry
• Long-term approach and collaboration mindset
• $2,000+ monthly ad spend budget to invest in campaigns
What We Offer
• Exposure to 60,000+ community members
• Personal success manager to scale your campaigns
• Brand awareness, leads, sign-ups, customers, followers, etc.
📩 Contact for Partnership
If you are serious about promoting your business, send us an introduction Email → cybersecnewsinfo@gmail.com
Important Note
Spots to become a sponsor are limited.
Reach out before they fill up.
(we only have 7 left)
- - - - -
@Cyber_Security_Channel
❤9👏1
Microsoft: Attackers Impersonate ChatGPT, Claude, Copilot, and DeepSeek in New Phishing Wave
Microsoft Threat Intelligence documented credential-harvesting emails, AI-themed malvertising, and SEO poisoning that lean on the trust users place in big AI brands.
One ChatGPT-themed wave hit 100,000 inboxes a day across Switzerland, Austria, and South Africa, while a Claude lure framed as a policy violation reached 2,000+ orgs in the US, UK, and India.
A fake DeepSeek V4 repo on GitHub also dropped Vidar Stealer; defenders should turn on phishing-resistant MFA, Safe Links, and train staff on AI-pretexted lures.
@Cyber_Security_Channel
Microsoft Threat Intelligence documented credential-harvesting emails, AI-themed malvertising, and SEO poisoning that lean on the trust users place in big AI brands.
One ChatGPT-themed wave hit 100,000 inboxes a day across Switzerland, Austria, and South Africa, while a Claude lure framed as a policy violation reached 2,000+ orgs in the US, UK, and India.
A fake DeepSeek V4 repo on GitHub also dropped Vidar Stealer; defenders should turn on phishing-resistant MFA, Safe Links, and train staff on AI-pretexted lures.
@Cyber_Security_Channel
IT Pro
Hackers are capitalizing on AI hype to ramp up social engineering attacks – and they're using big brands like Anthropic, OpenAI…
Microsoft says cyber criminals are impersonating popular AI platforms to deliver malware
👍7❤2
Meta AI Support Bug Let Attackers Hijack 20,225 Instagram Accounts
Meta disclosed that its AI-powered High Touch Support tool failed to verify whether the email submitted for a password reset actually matched the target account, letting anyone request a reset link for accounts without 2FA.
The abuse started on April 17 and ran undetected until May 31, when Meta yanked the tool and invalidated all generated links.
Exposed data may include DMs, posts, contact info, birthdays, and linked services; affected users have been force-reset and pushed through security checkpoints.
@Cyber_Security_Channel
Meta disclosed that its AI-powered High Touch Support tool failed to verify whether the email submitted for a password reset actually matched the target account, letting anyone request a reset link for accounts without 2FA.
The abuse started on April 17 and ran undetected until May 31, when Meta yanked the tool and invalidated all generated links.
Exposed data may include DMs, posts, contact info, birthdays, and linked services; affected users have been force-reset and pushed through security checkpoints.
@Cyber_Security_Channel
BleepingComputer
Over 20,000 Instagram accounts stolen in Meta AI support hack
Meta has revealed that 20,225 Instagram users had their accounts hijacked in a recent incident where attackers used Meta's AI-powered support system to reset passwords.
👍5❤3
North Korea’s BlueNoroff Uses AI-Generated Zoom Meetings to Rob Web3 Execs
Arctic Wolf detailed a Lazarus subgroup campaign that hit 100+ crypto and Web3 leaders across 20 countries via typo-squatted links and ClickFix-style lures.
Victims joined deepfaked Zoom calls where AI-generated participants kept them talking while fileless PowerShell stole credentials, webcam footage, and Telegram sessions.
The stolen webcam and chat material is then recycled to build even more convincing fake meetings for the next round of targets.
@Cyber_Security_Channel
Arctic Wolf detailed a Lazarus subgroup campaign that hit 100+ crypto and Web3 leaders across 20 countries via typo-squatted links and ClickFix-style lures.
Victims joined deepfaked Zoom calls where AI-generated participants kept them talking while fileless PowerShell stole credentials, webcam footage, and Telegram sessions.
The stolen webcam and chat material is then recycled to build even more convincing fake meetings for the next round of targets.
@Cyber_Security_Channel
N2K CyberWire
You've been muted...permanently.
Ismael Valenzuela, Arctic Wolf’s VP of Labs, Threat Research and Intelligence, discusses their work on "BlueNoroff Uses ClickFix, Fileless PowerShell, and AI-Generated Fake Zoom Meetings to Target Web3 Sector." Arctic Wolf researchers uncovered a sophisticated…
❤3🔥1
Researcher Earns $500K From Google in 90 Days Using Claude as an Automated Pentester
A hunter known as “brutecat” collected half a million dollars in Google bug bounties by wiring Claude into a custom fuzzer that hit roughly 1,500 internal APIs — Google Voice/Fiber, YouTube TV, Widevine, Cloud Console GraphQL, Vertex AI Search, Maps, Nest, and Translation Hub.
A month of iterative prompt engineering pushed reporting accuracy past 50%, with IDORs and broken access controls dominating the findings.
The top bug — an unauthenticated gfibervoice API that exposed PII and let attackers assign phone numbers to victims — rated P0/S0 and paid $20,000 on its own.
@Cyber_Security_Channel
A hunter known as “brutecat” collected half a million dollars in Google bug bounties by wiring Claude into a custom fuzzer that hit roughly 1,500 internal APIs — Google Voice/Fiber, YouTube TV, Widevine, Cloud Console GraphQL, Vertex AI Search, Maps, Nest, and Translation Hub.
A month of iterative prompt engineering pushed reporting accuracy past 50%, with IDORs and broken access controls dominating the findings.
The top bug — an unauthenticated gfibervoice API that exposed PII and let attackers assign phone numbers to victims — rated P0/S0 and paid $20,000 on its own.
@Cyber_Security_Channel
Cyber Security News
Researcher Hacked Google Using AI and Earned $500,000 Bug Bounty
A security researcher known as brutecat has disclosed how an AI-driven fuzzing pipeline uncovered more than $500,000 in vulnerabilities across Google's infrastructure in under three months, exposing systemic access-control failures hidden inside roughly 1…
👍12❤5
Join the Webinar: ImmuniWeb AI Platform, new products and features to discover the latest innovations of the award-winning ImmuniWeb® AI Platform, earn CPE credits, and learn how to strengthen your cybersecurity program while reducing operational costs.
⚡Key Insights:
✔ Live demo of ImmuniWeb AI Platform
✔ AI governance & compliance
✔ Cybersecurity cost optimization strategies
✔ Application Security in the era of agentic AI
✔ Product roadmap & innovations
✔ Third-Party Risk Management (TPRM) automation
✔ New features & functionalities of ImmuniWeb AI Platform
✔ Takedown of malicious web content & phishing resources
✔ Continuous Threat Exposure Management (CTEM) best practices
📅 Date & Time: June 25, 2026
• Session 1 – Geneva 10am | Dubai 12pm | Singapore 4pm
• Session 2 – Geneva 5pm | New York 11am | California 8am`
🎤 Host: Dr. Ilia Kolochenko, Founder, Chief Architect & CEO at ImmuniWeb.`
✅ Register: click here to proceed.
-----
#ad #paidpromotion #sponsored
@Cyber_Security_Channel
⚡Key Insights:
✔ Live demo of ImmuniWeb AI Platform
✔ AI governance & compliance
✔ Cybersecurity cost optimization strategies
✔ Application Security in the era of agentic AI
✔ Product roadmap & innovations
✔ Third-Party Risk Management (TPRM) automation
✔ New features & functionalities of ImmuniWeb AI Platform
✔ Takedown of malicious web content & phishing resources
✔ Continuous Threat Exposure Management (CTEM) best practices
📅 Date & Time: June 25, 2026
• Session 1 – Geneva 10am | Dubai 12pm | Singapore 4pm
• Session 2 – Geneva 5pm | New York 11am | California 8am`
🎤 Host: Dr. Ilia Kolochenko, Founder, Chief Architect & CEO at ImmuniWeb.`
✅ Register: click here to proceed.
-----
#ad #paidpromotion #sponsored
@Cyber_Security_Channel
❤5🔥1
Splunk Enterprise Zero-Day Exploited Days After Disclosure
Attackers weaponized CVE-2026-20253, an unauthenticated remote code execution flaw in Splunk Enterprise, within days of public disclosure.
CISA ordered federal agencies to patch within three days.
The flaw enables full takeover without authentication, putting any internet-exposed Splunk deployment at immediate risk.
@Cyber_Security_Channel
Attackers weaponized CVE-2026-20253, an unauthenticated remote code execution flaw in Splunk Enterprise, within days of public disclosure.
CISA ordered federal agencies to patch within three days.
The flaw enables full takeover without authentication, putting any internet-exposed Splunk deployment at immediate risk.
@Cyber_Security_Channel
SecurityWeek
Splunk Enterprise Vulnerability Exploited in Attacks Days After Disclosure
CISA has given federal agencies only three days to patch CVE-2026-20253, which can be exploited for unauthenticated remote code execution.
👍5
❗Your SOC May See the URL, but Still Miss the Attack Unfolding Inside the Browser
Hidden browser activity can slow triage and weaken response decisions.
Behavior-based analysis closes the gap by executing the URL in an isolated browser environment and bringing the full attack chain into one view:
• Forms
• Redirects
• DOM changes
• Hidden scripts
• Browser artifacts
• Network requests
The result = faster validation, better threat visibility, and more confident phishing response.
Give your SOC the browser-level visibility to uncover phishing threats in seconds with ANY.RUN → click here for the power up.
-----
#ad #paidpromotion #sponsored
@Cyber_Security_Channel
Hidden browser activity can slow triage and weaken response decisions.
Behavior-based analysis closes the gap by executing the URL in an isolated browser environment and bringing the full attack chain into one view:
• Forms
• Redirects
• DOM changes
• Hidden scripts
• Browser artifacts
• Network requests
The result = faster validation, better threat visibility, and more confident phishing response.
Give your SOC the browser-level visibility to uncover phishing threats in seconds with ANY.RUN → click here for the power up.
-----
#ad #paidpromotion #sponsored
@Cyber_Security_Channel
❤5👍3🔥1
California Water Utility Investigates Iran-Linked Breach Claim
A California water utility is investigating claims that an Iran-linked hacking group breached its systems.
The incident renews concerns about state-sponsored intrusions into US critical infrastructure.
Authorities are assessing the scope and whether operational technology was affected.
@Cyber_Security_Channel
A California water utility is investigating claims that an Iran-linked hacking group breached its systems.
The incident renews concerns about state-sponsored intrusions into US critical infrastructure.
Authorities are assessing the scope and whether operational technology was affected.
@Cyber_Security_Channel
Cybersecurity Dive
California water utility probes breach claim by Iran-linked actor
The group Handala said it attacked one of the nation’s largest water companies.
👍3❤1👎1
Tata Electronics Confirms Cybersecurity Incident Exposing Confidential Data
As a subsidiary of the Tata Group, Tata Electronics has acknowledged a breach affecting its systems.
The group known as World Leaks has claimed responsibility for the incident, alleging it has exfiltrated over 200,000 files, amounting to approximately 630 gigabytes of sensitive information.
Cyber_Security_Channel
As a subsidiary of the Tata Group, Tata Electronics has acknowledged a breach affecting its systems.
The group known as World Leaks has claimed responsibility for the incident, alleging it has exfiltrated over 200,000 files, amounting to approximately 630 gigabytes of sensitive information.
Cyber_Security_Channel
RS Web Solutions (RSWEBSOLS)
Data Breach at Tata Electronics Impacts Apple and Tesla
Massive data breach at Tata Electronics linked to Apple and Tesla raises security concerns. Discover how this cyberattack could impact global tech giants.
🤩4👍3
FBI Dismantles China-Based Cybercrime Network Tied to $1.9B in Losses
Federal authorities, working with Google and Lumen, took down a sprawling cybercrime operation based in China.
The group is linked to roughly $1.9 billion in documented victim losses worldwide.
The takedown disrupted infrastructure used for fraud, account compromise, and money laundering across multiple campaigns.
@Cyber_Security_Channel
Federal authorities, working with Google and Lumen, took down a sprawling cybercrime operation based in China.
The group is linked to roughly $1.9 billion in documented victim losses worldwide.
The takedown disrupted infrastructure used for fraud, account compromise, and money laundering across multiple campaigns.
@Cyber_Security_Channel
CyberScoop
FBI takes down massive China-based cybercrime network that caused $1.9B in losses
Outsider provided phishing kits and infrastructure for cybercriminals to scam victims with lures claiming they missed packages, had unpaid tolls or parking violations.
❤4🔥3👍1👎1
Microsoft Ties Mastra AI npm Supply Chain Attack to North Korea
Microsoft attributed a supply chain attack on the Mastra AI ecosystem to Sapphire Sleet, a North Korean group also known as BlueNoroff.
Attackers compromised more than 140 npm packages to plant malicious dependencies in downstream developer projects.
The campaign extends a pattern of DPRK targeting of Web3 and AI developer pipelines.
@Cyber_Security_Channel
Microsoft attributed a supply chain attack on the Mastra AI ecosystem to Sapphire Sleet, a North Korean group also known as BlueNoroff.
Attackers compromised more than 140 npm packages to plant malicious dependencies in downstream developer projects.
The campaign extends a pattern of DPRK targeting of Web3 and AI developer pipelines.
@Cyber_Security_Channel
BleepingComputer
Microsoft links Mastra AI supply chain attack to North Korean hackers
Microsoft has attributed a recent Mastra AI supply chain attack that compromised more than 140 npm packages to the North Korean hacking group Sapphire Sleet, also known as BlueNoroff.
❤6👍3🔥1
From Last Week: Klue Breach Cascades Into Multiple Cybersecurity Firms
Attackers breached market-intelligence platform Klue and pivoted into the Salesforce environments of several of its cybersecurity-firm customers.
Disclosed downstream victims include HackerOne, Huntress, Recorded Future, Snyk, and Tanium.
The incident underscores how SaaS supply-chain access can turn one vendor compromise into a sector-wide breach.
@Cyber_Security_Channel
Attackers breached market-intelligence platform Klue and pivoted into the Salesforce environments of several of its cybersecurity-firm customers.
Disclosed downstream victims include HackerOne, Huntress, Recorded Future, Snyk, and Tanium.
The incident underscores how SaaS supply-chain access can turn one vendor compromise into a sector-wide breach.
@Cyber_Security_Channel
TechCrunch
Klue hack results in data breach at several cybersecurity firms | TechCrunch
Huntress, HackerOne, Jamf, Recorded Future, and Tanium are among the cybersecurity companies that had data stolen following an earlier breach at market research firm Klue.
‘DirtyClone’ Linux Kernel Vulnerability Leads to Root Access
At a high level, the vulnerabilities exist because the kernel does not separate the page cache used for executables and files from packet data processed via zero-copy paths, and in-place transformations such as encryption/decryption that write back to the same buffer.
Cyber_Security_Channel
At a high level, the vulnerabilities exist because the kernel does not separate the page cache used for executables and files from packet data processed via zero-copy paths, and in-place transformations such as encryption/decryption that write back to the same buffer.
Cyber_Security_Channel
SecurityWeek
‘DirtyClone’ Linux Kernel Vulnerability Leads to Root Access
A variant of DirtyFrag, the flaw allows unprivileged local users to manipulate the Linux page cache and gain root privileges.
👍8❤3
US Offers $10M for Info on Russia-Linked Hackers Behind Signal and WhatsApp Attacks
The State Department announced a $10 million reward for information on UNC5792 and UNC4221, two Russia-linked groups accused of hijacking the Signal and WhatsApp accounts of government officials.
The operations abused legitimate «linked device» features via phishing pages.
Officials working on Ukraine-related policy were among the primary targets.
@Cyber_Security_Channel
The State Department announced a $10 million reward for information on UNC5792 and UNC4221, two Russia-linked groups accused of hijacking the Signal and WhatsApp accounts of government officials.
The operations abused legitimate «linked device» features via phishing pages.
Officials working on Ukraine-related policy were among the primary targets.
@Cyber_Security_Channel
IT Pro
US offers $10m bounty for info on Russia-linked hackers behind Signal and WhatsApp attacks
UNC5792 and UNC4221 have been targeting government officials through their Signal and WhatsApp accounts
❤3👍2🔥2😁1
«Bad Epoll» 0-Day in Linux Kernel Grants Root on Linux Servers and Android Devices
Researchers disclosed CVE-2026-46242, a use-after-free race condition in the Linux kernel's epoll subsystem that lets a local unprivileged user escalate to root.
The exploit reportedly achieves ~99% reliability and is reachable from the Chrome renderer sandbox, opening a browser-to-kernel escalation chain.
Epoll cannot be disabled, so patching is the only mitigation — a fix landed roughly two months after initial disclosure.
@Cyber_Security_Channel
Researchers disclosed CVE-2026-46242, a use-after-free race condition in the Linux kernel's epoll subsystem that lets a local unprivileged user escalate to root.
The exploit reportedly achieves ~99% reliability and is reachable from the Chrome renderer sandbox, opening a browser-to-kernel escalation chain.
Epoll cannot be disabled, so patching is the only mitigation — a fix landed roughly two months after initial disclosure.
@Cyber_Security_Channel
Cyber Security News
New “Bad Epoll” 0-Day Vulnerability Allows Root Access on Linux Servers and Android Devices
A newly disclosed Linux kernel flaw dubbed "Bad Epoll" (CVE-2026-46242) allows an unprivileged local user to escalate to root on Linux servers, desktops, and Android devices by exploiting a race condition and a use-after-free (UAF) in the kernel's epoll subsystem.
👍3❤1👀1
🔍 What if the Most Dangerous part of a Phishing Page Never Appears in Your URL Scanner?
That's exactly how EvilTokens works.
Its AES-GCM encrypted "ghost" code stays invisible until the browser decrypts and renders it, leaving static URL analysis with only part of the story.
Meanwhile, attackers abuse Microsoft's legitimate Device Code flow to take over Microsoft 365 accounts without stealing passwords.
ANY.RUN's latest research shows how browser-level inspection uncovers:
👻 Hidden decrypted HTML and DOM changes
🌐 The requests powering the phishing flow
🎯 IOCs and detection opportunities for threat hunting
⚡ Evidence that speeds up SOC triage and response
If your investigation stops at the initial HTTP response, you may be missing the attack.
Read the full analysis: tap here to access the article.
-----
#ad #paidpromotion #sponsored
@Cyber_Security_Channel
That's exactly how EvilTokens works.
Its AES-GCM encrypted "ghost" code stays invisible until the browser decrypts and renders it, leaving static URL analysis with only part of the story.
Meanwhile, attackers abuse Microsoft's legitimate Device Code flow to take over Microsoft 365 accounts without stealing passwords.
ANY.RUN's latest research shows how browser-level inspection uncovers:
👻 Hidden decrypted HTML and DOM changes
🌐 The requests powering the phishing flow
🎯 IOCs and detection opportunities for threat hunting
⚡ Evidence that speeds up SOC triage and response
If your investigation stops at the initial HTTP response, you may be missing the attack.
Read the full analysis: tap here to access the article.
-----
#ad #paidpromotion #sponsored
@Cyber_Security_Channel
👍6❤3
Medtronic Data Breach Hits 3.8 Million People — ShinyHunters Suspected of Ransom Payment
Medtronic confirmed that ShinyHunters accessed its corporate IT systems in April 2026 and stole personal and medical data on 3,834,294 people — including names, dates of birth, Social Security numbers and health details.
The group listed Medtronic on its leak site on April 17 claiming 9 million records, then removed it, suggesting a possible ransom payment.
Affected individuals are being offered 24 months of credit and dark-web monitoring plus identity theft restoration.
@Cyber_Security_Channel
Medtronic confirmed that ShinyHunters accessed its corporate IT systems in April 2026 and stole personal and medical data on 3,834,294 people — including names, dates of birth, Social Security numbers and health details.
The group listed Medtronic on its leak site on April 17 claiming 9 million records, then removed it, suggesting a possible ransom payment.
Affected individuals are being offered 24 months of credit and dark-web monitoring plus identity theft restoration.
@Cyber_Security_Channel
SecurityWeek
Medtronic Data Breach Impacts 3.8 Million People
In April, ShinyHunters accessed the company’s corporate IT systems and stole patients’ personal and medical information.
❤3
FortiBleed Credential-Harvesting Op Tied to INC and Lynx Ransomware Groups
Researchers linked FortiBleed, a Golang-based tool that intercepts authentication traffic on Fortinet devices, to INC and Lynx ransomware operations — an operator was found logged into negotiation panels for both.
Traffic-sniffing was observed on ~19,000 Fortinet devices; attackers gained admin access on 409 targets, fully compromised 354, and deployed ransomware on 12 — encrypting hundreds of endpoints.
Some intrusions also leveraged a suspected zero-day in Nextcloud; no CVE has been assigned yet.
@Cyber_Security_Channel
Researchers linked FortiBleed, a Golang-based tool that intercepts authentication traffic on Fortinet devices, to INC and Lynx ransomware operations — an operator was found logged into negotiation panels for both.
Traffic-sniffing was observed on ~19,000 Fortinet devices; attackers gained admin access on 409 targets, fully compromised 354, and deployed ransomware on 12 — encrypting hundreds of endpoints.
Some intrusions also leveraged a suspected zero-day in Nextcloud; no CVE has been assigned yet.
@Cyber_Security_Channel
Cybersecurity Dive
FortiBleed campaign traced to INC and Lynx ransomware operations
Researchers are also investigating the role of a suspected zero-day vulnerability.
❤3👀3