SecurityWeek

15,000 WordPress Websites Cleaned Up in SocGholish Botnet Takedown

Authorities announced taking down 106 SocGholish botnet C&C servers and domains, and cleaning up 15,000 WordPress websites.
The Caledonian-Record

NUBURU Files Golden Power Notification for Majority Acquisition of Tekne, Launching Formal Review by the Italian Government

A subsidiary of NUBURU, Nuburu Subsidiary, Inc. fully owns Lyocon S.r.l. (“Lyocon”), an Italian laser-technology company specializing in the design, manufacturing, and integration of high-power ...

I let Claude audit my messy Home Assistant setup, and it was a massive wake-up call

I gave Claude access to my Home Assistant. It helped me audit, debug, and improve my smart home better than I ever could have ...

Microsoft June 2026 Patch Tuesday fixes 6 zero-days, 200 flaws

Today is Microsoft's June 2026 Patch Tuesday, with security updates for 200 flaws, including five publicly disclosed zero-day ...
The Hacker News

ClickFix Campaigns Expand Malware Delivery With New Loaders and Fake Update Lures

ClickFix attacks are delivering BabaDeda, Lorem Ipsum, and Potemkin loaders to deploy stealers, RATs, and ransomware-linked ...

NASA tells astronauts to return to space station after air leaks prompted evacuation alert

Kud-Sverchkov and Mikayev, who did not execute evacuation procedures, were planning to use a saw to break into an area where ...
Tech Times

Home Assistant Android 2026.6.2 Beta Patches URI Hijack Risk, Adds Native Barcode Scanner

Home Assistant Android update 2026.6.2 beta patches a URI intent-hijacking vulnerability that could let attackers reach ...

St. John’s-based Nasdaq Verafin launches AI agents to help combat financial crime

Company is harnessing AI to support financial institutions and allow human investigators to tackle more complex tasks ...
Bleeping Computer

Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign

A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious JavaScript code that triggers ClickFix attack flows. The campaign was ...
techtimes

Ghost CMS SQL Injection Hits 700 Sites: Harvard, DuckDuckGo Serve Fake Cloudflare Malware

An unpatched SQL injection vulnerability in the Ghost content management system has been weaponized in an active, large-scale cyberattack that has compromised more than 700 websites worldwide — ...
The Indiana Lawyer

A city’s push for facial recognition on public buses ignites debate over security and privacy

The effort is creating fierce debate over whether the safety benefits of artificial intelligence are worth the privacy costs.