Jul 10, 2026
•
4 min read
Also: two convicted fraudsters built a bug-buying startup dangling $7 million payouts, and an AI agent ran a full ransomware attack start to finish, on its own.
ai security
+4
Jul 8, 2026
Also: a ransomware gang apologized to its own victim, and Iran's hackers may have gotten an AI assist building their malware.
privacy policy
+6
Jul 6, 2026
5 min read
Also: a user swore a hacker named "General Failure" had invaded his PC, and an AI-built malware kit just learned to dodge nine different antivirus vendors.
+9
Jul 3, 2026
Also: hackers shoveled snow for network admin access, and the Supreme Court just said your location data needs a warrant.
Stay Ahead of Cyber Threats — In 5 Minutes or Less
Also: a Huntress insider allegedly fed a ransomware gang live IR case details while the firm fought the breach, and KDDI's shared email system leaked 14 million accounts across six ISPs.
kddi
+11
Also: the twice-convicted contractors who deleted 96 government FOIA databases when they got fired and then Googled how to erase the logs, and Cisco's SD-WAN had an undetected root-access zero-day for months.
hacktivist
+7
Also: The casino hacker who bragged to journalists mid-attack lasted one day at trial, and Apple's iPhone schematics are now leaking online.
Scattered Spider
Also: free smart TV apps quietly rent your home internet to AI companies, and North Korea backdoored 144 AI developer packages in under 90 minutes.
north-korea
Also: a ransomware gang stopped Australia's sugar harvest without leaving a ransom note, and ShinyHunters just hit Europe's human rights watchdog.
AI
Also: a Roblox cheater accidentally committed the largest education breach in US history, and your AI coding agent will execute whatever attackers tell it to.
Also: FBI + Google + Lumen dismantled a $1.9B Chinese phishing franchise, and a county commissioner told a roomful of residents they would not be speaking about Flock tonight.
Meta built an AI to help recover locked Instagram accounts. Attackers used it to hijack 20,000. Also: ServiceNow's unauthenticated API exposed customer records, and CISA is scrapping CVSS scores.