Google and Microsoft Pull ModHeader With 1.6 Million Installs After Dormant Collector Found

13/07/2026 0 Comments 0 tags

Google and Microsoft have pulled ModHeader, a popular header-editing extension with roughly 1.6 million installs across Chrome and Edge, after researchers found a hidden browsing-history collector built into its official

CrashStealer macOS Malware Uses Notarized Dropper to Pass Gatekeeper Checks

13/07/2026 0 Comments 0 tags

Cybersecurity researchers have flagged a new macOS information stealer called CrashStealer that’s capable of harvesting sensitive data from compromised systems. Unlike other information stealers that are built on AppleScript droppers

New MemGhost Attack Plants Persistent False Memories in AI Agents Through One Email

13/07/2026 0 Comments 0 tags

Give an AI assistant a memory and access to your inbox, and you hand an attacker a way to rewrite what it thinks it knows about you. A single email

⚡ Weekly Recap: ShareFile Threat, Citrix Bleed 2 Ransomware, AI Coding Attacks, and More

13/07/2026 0 Comments 0 tags

Somewhere right now, a security tool is quietly finding bugs faster than any human can fix them. That’s supposed to be the good news. The catch is that the attackers

Forg365 PhaaS Targets Microsoft 365 with Device Code and AitM Session Theft

13/07/2026 0 Comments 0 tags

A new phishing-as-a-service (PhaaS) operation called Forg365 is using a combination of device code phishing, adversary-in-the-middle (AitM) tactics, antibot evasion, artificial intelligence (AI)-assisted lure creation, and post-compromise mailbox operations targeting

Attacker Uses Suspected AI-Generated PowerShell Script to Map Active Directory

13/07/2026 0 Comments 0 tags

Cybersecurity researchers have flagged an intrusion in which an unknown threat actor leveraged a vibe-coded PowerShell script for Active Directory (AD) enumeration. “The script looked for the Domain Controller (DC)

Thinking Fast and Slow in the SOC: The Case for Combining Autonomous AI with Analyst Copilots

13/07/2026 0 Comments 0 tags

A few days ago, I was sitting with the CISO of a Fortune 50 company, walking through how his security team was thinking about AI agents in the SOC. Smart

Meta Files Patent for AI That Can Listen All Day and Track How You’re Feeling

13/07/2026 0 Comments 0 tags

Meta has filed a patent application for an AI that listens to your voice throughout the day, works out how it thinks you are feeling from the way you sound,

Misconfigured Server Reveals Three Evilginx Phishing Operations Targeting Microsoft 365

13/07/2026 0 Comments 0 tags

An attacker running a live Microsoft 365 phishing operation left a Python web server listening on a public port with directory listing switched on. The command that did it: python3 -m

iCagenda and Balbooa Forms Joomla Flaws Reportedly Exploited as Zero-Days

13/07/2026 0 Comments 0 tags

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two maximum-severity security flaws impacting iCagenda and Balbooa extensions for Joomla to its Known Exploited Vulnerabilities (KEV) catalog, following reports