15 Malicious JetBrains Plugins Caught Stealing DeepSeek, OpenAI API Keys

/in

Hackers are using 15 malicious JetBrains plugins posing as AI coding assistants to steal DeepSeek, OpenAI, and other developer API keys.

Hackread – Cybersecurity News, Data Breaches, AI and More – ​Read More

Chrome and Firefox Updated to Patch Critical, High-Severity Vulnerabilities

/in

The browser updates address multiple memory safety bugs that could potentially lead to remote code execution.

The post Chrome and Firefox Updated to Patch Critical, High-Severity Vulnerabilities appeared first on SecurityWeek.

SecurityWeek – ​Read More

Malicious apps got into the Arch User Repository – how to protect yourself

/in

For the second time in a week, the AUR was found to contain malicious applications. What can Arch Linux users do about this?

Latest news – ​Read More

Oracle’s Second Monthly Security Updates Deliver 245 Patches 

/in

Oracle has released its June 2026 Critical Security Patch Update to fix vulnerabilities in Communications, EBS, Enterprise Manager and other products.

The post Oracle’s Second Monthly Security Updates Deliver 245 Patches  appeared first on SecurityWeek.

SecurityWeek – ​Read More

CISA Warns of Actively Exploited Joomla JCE Flaw Allowing PHP Code Execution

/in

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a maximum-severity security flaw impacting Widget Factory Joomla Content Editor (JCE) to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.

The vulnerability, tracked as CVE-2026-48907 (CVSS score: 10.0), is a case of improper access control that could facilitate arbitrary

The Hacker News – ​Read More

3 Recently Patched Fortinet FortiSandbox Vulnerabilities in Hacker Crosshairs

/in

SOCRadar has detected 30,000 compromised Fortinet firewalls that expose networks to hacking. 

The post 3 Recently Patched Fortinet FortiSandbox Vulnerabilities in Hacker Crosshairs appeared first on SecurityWeek.

SecurityWeek – ​Read More

FishMonger’s arsenal upgraded: SprySOCKS for Windows

/in

ESET researchers have discovered SprySOCKS for Windows, FishMonger’s backdoor weaponizing a kernel driver for advanced stealthiness

WeLiveSecurity – ​Read More

Your Android phone keyboard may be tracking your inputs – how to check (and 2 ways to stop it)

/in

Your Android keyboard may be collecting more than you realize. Here are two ways to take back your privacy, but I only trust one.

Latest news – ​Read More

I’ve spent years with immutable Linux – RakuOS fixed my biggest annoyance

/in

Immutable Linux is the future of OS security, but the current distributions do have one particular limitation that RakuOS has overcome.

Latest news – ​Read More

KDE Plasma 6.7 has way more useful features than I expected – and you’ll likely get it soon

/in

The latest release of one of the finest desktop environments on the market is here, and there’s plenty to be excited about.

Latest news – ​Read More