Chinese LLMs Broaden the Gap Between Attackers & Defenders

Two new models from Chinese firms compete with top US mainstream and frontier models. Should cyber-defenders be worried?

darkreading – ​Read More

New PamStealer Malware Targets macOS Users via Fake Maccy Clipboard App

The newly spotted PamStealer is spreading through a fake Maccy clipboard app and steal Mac passwords, browser data and clipboard content.

Hackread – Cybersecurity News, Data Breaches, AI and More – ​Read More

European Parliament Member Investigating Spyware Was Hacked With Pegasus

A new report from the Citizen Lab has revealed that former Member of the European Parliament Stelios Kouloglou had his mobile device repeatedly hacked with the notorious Pegasus spyware while serving on a committee that was tasked with investigating the abuse of such commercial surveillance tools in the bloc.

“Through forensic analysis of his device, we found that the attackers could have had

The Hacker News – ​Read More

Agentic AI Used to Conduct Ransomware Attack via Langflow

Attack demonstrates how LLM agents can combine known exploitation techniques with real-time reasoning to automate complex, multi-stage intrusions.

The post Agentic AI Used to Conduct Ransomware Attack via Langflow appeared first on SecurityWeek.

SecurityWeek – ​Read More

Google, FBI Disrupt NetNut Residential Proxy Network Powered by Millions of Devices

NetNut rented access to millions of compromised devices, allowing cybercriminals and nation-state actors to mask their identities during attacks.

The post Google, FBI Disrupt NetNut Residential Proxy Network Powered by Millions of Devices appeared first on SecurityWeek.

SecurityWeek – ​Read More

PamStealer Uses Fake Maccy Sites and PAM Checks to Steal Mac Login Passwords

Cybersecurity researchers have flagged a new macOS information stealer called PamStealer that employs a series of clever tricks to infect systems and siphon sensitive data.

The stealer, discovered by Jamf Threat Labs, is distributed as a compiled AppleScript (.scpt) file impersonating Maccy, a legitimate open-source clipboard manager. It has been codenamed PamStealer owing to its ability to

The Hacker News – ​Read More

Medtronic Data Breach Impacts 3.8 Million People

Medical technology giant Medtronic is notifying more than 3.8 million individuals that their personal and medical information was compromised in a recent data breach. The incident occurred in April 2026, when the infamous extortion group ShinyHunters accessed the company’s corporate IT systems. Medtronic confirmed the attack in late April, noting that its products and manufacturing […]

The post Medtronic Data Breach Impacts 3.8 Million People appeared first on SecurityWeek.

SecurityWeek – ​Read More

Alleged Scattered Spider Hacker Extradited to US

Prosecutors say 19-year-old Peter Stokes was a member of Scattered Spider, the hacking group linked to more than 100 network intrusions and over $100 million in ransom payments.

The post Alleged Scattered Spider Hacker Extradited to US appeared first on SecurityWeek.

SecurityWeek – ​Read More

Critical Cursor AI Code Editor Flaws Could Lead to OS-Level Remote Code Execution

The DuneSlide vulnerabilities enable zero-click prompt injection attacks that escape Cursor’s sandbox and execute arbitrary code on the underlying operating system.

The post Critical Cursor AI Code Editor Flaws Could Lead to OS-Level Remote Code Execution appeared first on SecurityWeek.

SecurityWeek – ​Read More

EU Politicians Investigated Pegasus Spyware. Then It Ended Up on One of Their Phones

“It is a direct attack on the rule of law,” says one European Parliament member of the new findings from Citizen Lab.

Security Latest – ​Read More