Cyber Security News
Start. Stay. Grow.
Curated daily. The latest hacks, breaches, and cyber trends—humanized.
Daily cyber brief
Hacking Editorial Brief — July 7, 2026
Iran-Linked Cavern Manticore Targets Israeli Critical Sectors
Iranian threat actor Cavern Manticore launched a new campaign targeting Israeli IT and government organizations, according to reports from Israeli sources. The operation marks continued Iranian cyber activity against Israeli critical infrastructure and government networks. Details on specific tactics, techniques, or scope of compromise remain limited, but the targeting pattern aligns with established Iranian intelligence collection priorities against Israeli entities. The campaign represents ongoing state-directed cyber operations between the two adversaries amid regional tensions.
Hong Kong Reports 66% Surge in Data Breaches; KDDI Confirms Scale of Japanese ISP Breach
Hong Kong's Digital Policy Office reported a 66 percent increase in hacking-related data breaches during the first half of 2026 compared to the same period in 2025, attributing the rise partially to AI-powered cyber threats. The spike indicates both increased attacker capabilities and potentially improved detection and reporting. Separately, Japanese telecommunications provider KDDI disclosed full details of last month's breach, confirming exposure of 12 million email addresses and 7 million passwords belonging to KDDI ISP customers and five partner providers. KDDI stated it has not confirmed secondary damage from the compromised credentials, though the volume of exposed authentication data presents significant credential-stuffing and account takeover risks across affected users' online accounts.
Sources: JPost · MLex · Japan Times
Around the Web
Last Updated: N/A

Hacks + Heists
A Hacker's Arrest Reveals Microsoft Can Track Users Via a Windows Device ID | PCMag
The FBI used a Microsoft device identifier, dubbed GDID, to link a teenager to a hack attributed to Scattered Spider, raising privacy red flags ...
Read more →Major medical device manufacturer notifies nearly 4 million of breach
The Medtronic breach is just the latest example of a hacking gang targeting a company in the med tech sector. In March, the medical device firm ...
Read more →How ethical hackers with just a $3000 server found a flaw that could've put $70 billion in crypto at risk
Hacker facing screens with lines of code (Boitumelo/Unsplash) (Boitumelo/Unsplash). Summary. Show. Ethical hackers from security firm Hexens ...
Read more →Greek Politician Investigating Spyware Had Mobile Phone Hacked - Yahoo Finance
(Bloomberg) -- The mobile phone of a Greek politician was repeatedly hacked by spyware while he was working on a European Parliament investigation ...
Read more →Nightmare-Eclipse: Individual Threat Actor Releasing Windows Zero-Day Exploits in Retaliatory Campaign Against Microsoft
A malicious actor has released six Windows zero-day exploits since early April 2026 in an escalating retaliatory campaign against Microsoft, with the ...
Read more →
Big Cyber
Federal government organizations must double down efforts to combat 'living off the land' attacks
LotL attacks represent a new frontier in cybersecurity, where adversaries use trusted system tools to carry out malicious activities.
Read more →Breach Transparency Remains Cybersecurity's Toughest Governance Problem
Cybersecurity is entering a new phase. It's one where the gap between awareness and operational execution is becoming the industry's biggest ...
Read more →Mohamed Telab - CISA
Mohamed Telab serves as the acting Regional Director (a/RD) for CISA Region 2. In this capacity he oversees the management of all CISA regional ...
Read more →Bad Epoll Linux Kernel Vulnerability Allows Unprivileged Users to Gain Root Access
A new critical Linux kernel flaw called Bad Epoll (CVE-2026-46242) enables unprivileged users to escalate privileges to root on Linux and Android syst...
Read more →
Hard Tech
React2Shell (CVE-2025-55182)
A 10.0 critical severity vulnerablility affecting server-side use of React.js, tracked as CVE-2025-55182 in React.js and CVE-2025-66478 specifically f...
Read more →Breaking Into a Brother (MFC-J1010DW): Three Security Flaws in a Seemingly Innocent Printer
We discovered three vulnerabilities that when chained together, allow for complete remote compromise:
Read more →Check Point - Wrong Check Point (CVE-2024-24919)
Gather round, gather round - it’s time for another blogpost tearing open an SSLVPN appliance and laying bare a recent in-the-wild exploited bug. This ...
Read more →Backdoor in XZ Utils allows RCE: everything you need to know - CVE-2024-3094
Detect and mitigate CVE-2024-3094, a critical supply chain compromise, affecting XZ Utils Data compression library. Organizations should patch urgentl...
Read more →Loading...
The Cybersecurity Chronicles
‘The Cybersecurity Chronicles: 2024‘ pulls back the curtain on the digital threats that shaped our world last year, revealing the human stories behind the headlines. From art galleries frozen by ransomware to prison tablets hacked with a minus sign, from British Library archivists racing to protect centuries of knowledge to Spotify users meticulously curating their digital identities – these stories illuminate how cybersecurity touches every aspect of modern life.
Author Mark Nole weaves together intimate portraits of the people on all sides of the digital battlefield: the defenders working through sleepless nights to protect critical infrastructure, the victims grappling with stolen identities and lost savings, and even the attackers themselves, operating from nondescript offices with project management software and performance metrics.
Through detailed reporting and narrative storytelling, Nole reveals how 2024 became the year when cybersecurity stopped being just a technical problem and emerged as a fundamentally human challenge. Whether you’re a security professional or simply someone trying to understand our increasingly digital world, these chronicles offer an unprecedented look at how technology shapes – and sometimes betrays – our trust, our privacy, and our lives.

Stay Updated with Cyber Security News
Get the latest cybersecurity headlines, breaking news, and expert insights delivered directly to your inbox. Stay ahead of threats and informed about the digital landscape.
Join thousands of cybersecurity professionals and enthusiasts. No spam, just valuable insights.