Latest NEWS

SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active Exploitation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a high-severity flaw impacting Microsoft SharePoint Server to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.
The vulnerability, tracked as CVE-2026-45659 (CVSS score: 8.8), is a case of remote code execution arising from the deserialization of untrusted data. The issue
2 July 2026
From:
info@thehackernews.com (The Hacker News) [The Hacker News]

India gives WhatsApp three days to defend username rollout amid security fears
Government of the messenger's largest market demands a pause while Meta explains how it plans to stop impersonators
2 July 2026
From:
[www.theregister.com - Articles]

ToddyCat: your hidden email assistant. Part 2
An in-depth analysis of Umbrij, a new tool used by the ToddyCat APT group to compromise corporate email communications in Gmail. The attack targeted OAuth authorization tokens, allowing threat actors to gain access to Google services.
2 July 2026
From:
Andrey Gunkin [Securelist]

UN warns of need for global governance to avoid an AI-pocalypse
Capabilities are racing ahead of rules to ensure tech is used safely and responsibly, Scientific Panel argues
2 July 2026
From:
[www.theregister.com - Articles]

VEIL#DROP Malware Chain Uses Blogger Platform to Deliver PureLogs Stealer
Cybersecurity researchers have flagged a new multi-stage malware delivery attack chain that uses social engineering and Blogger pages to deliver an information stealer called PureLogs.
The activity has been codenamed VEIL#DROP by Securonix. It's suspected that the initial payloads are distributed either via spear-phishing or a drive-by compromise, which occurs when an unsuspecting user lands on
2 July 2026
From:
info@thehackernews.com (The Hacker News) [The Hacker News]


.jpg)


