Cyber Security News
Start. Stay. Grow.
Curated daily. The latest hacks, breaches, and cyber trends—humanized.
Daily cyber brief
Hacking Editorial Brief — July 1, 2026
North Korean-Linked Threat Actors Steal $75.87 Million in June Crypto Heists
Cryptocurrency platforms lost $75.87 million to hackers in June 2026, with forensic analysis pointing to tooling and techniques commonly associated with North Korean threat groups. Security firm Quantstamp identified patterns consistent with DPRK-affiliated actors, who have systematically targeted crypto exchanges and DeFi platforms to fund state operations. The June figure contributes to what industry analysts are calling a record-breaking second quarter for crypto-focused attacks. Separately, researchers documented the "Silent Swap" crypto clipper campaign, which uses a fraudulent Google Notes browser extension to silently replace cryptocurrency wallet addresses during transactions. The malware, delivered via an unsigned .NET installer named BaseZipInstaller, represents an evolution in clipboard hijacking tactics targeting crypto users.
Russian NoName057(16) Group Targeted Canadian Water Infrastructure
Canada's Communications Security Establishment disclosed that Russian hacktivist group NoName057(16) attempted to disrupt a Canadian water treatment facility in October, with the agency learning of the attack on October 7 through the group's own online claim of responsibility. While specific operational impacts were not detailed, the incident underscores the expanding target set for Russian hacktivist groups beyond traditional IT networks into operational technology environments controlling critical infrastructure. In other regional activity, Japanese hotels were targeted through a blockchain-hosted phishing campaign exploiting Booking.com partner communications, with May attacks delivering malware hosted on blockchain infrastructure to evade traditional takedown mechanisms.
Sources: Yahoo Finance · Hacker News · Gov Info Security · Infosecurity Magazine
Around the Web
Last Updated: N/A

Hacks + Heists
Cisco Catalyst SD-WAN Manager Zero-Day Privilege Escalation Being Exploited (CVE-2026-20245)
An unpatched zero-day privilege escalation vulnerability in Cisco Catalyst SD-WAN Manager is being actively exploited by attackers in the wild.
Read more →Former U.S. National Security Advisor John R. Bolton, II Pleads Guilty to Violating the Espionage Act
... hacked by a cyber actor allegedly linked to the Islamic Republic of Iran. ... Bolton reported that hack to law enforcement but did not tell the .....
Read more →Secret Service didn't secure mobile devices, putting leaders at risk, report says - The Hill
Secret Service agents' reliance on personal devices for official business exposes them to hacking risks, says government watchdog report.
Read more →A Hack Too Far? Report Ties Russia to Jaguar Land Rover Hit - BankInfoSecurity
Suggestions that the Kremlin orchestrated the disruptive hack attack against British automotive giant Jaguar Land Rover raise the question of how ...
Read more →A $2.5 Billion Whodunit: The Hack That Dented the U.K. Economy - The New York Times
Last year, hackers burrowed into the computer systems of Jaguar Land Rover, a crown jewel of British manufacturing. It was a devastating attack ...
Read more →
Big Cyber
282 iOS AI Apps Leak API Keys and Open AI Proxy Access in Network Traffic Study
Embed it in the app, and it is exposed with every request the app makes. Cybersecurity. All 282 fell into one of three groups: Plaintext keys (54 apps...
Read more →Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw
It never enforced an upper bound. Cybersecurity. The size calculation adds packet_length to a couple of small values using 32-bit arithmetic, so a ...
Read more →Miasma Malware Targets npm Packages and GitHub Actions in Supply Chain Attack
Cybersecurity researchers have flagged yet another evolution of the supply chain attack linked to the Mini Shai-Hulud, Miasma, and Hades malware ...
Read more →White House State Infrastructure Cybersecurity Initiative Faces Implementation Delays
The Trump administration's effort to help states implement innovative cybersecurity defenses remains stalled with most states still waiting to partici...
Read more →
Hard Tech
React2Shell (CVE-2025-55182)
A 10.0 critical severity vulnerablility affecting server-side use of React.js, tracked as CVE-2025-55182 in React.js and CVE-2025-66478 specifically f...
Read more →Breaking Into a Brother (MFC-J1010DW): Three Security Flaws in a Seemingly Innocent Printer
We discovered three vulnerabilities that when chained together, allow for complete remote compromise:
Read more →Check Point - Wrong Check Point (CVE-2024-24919)
Gather round, gather round - it’s time for another blogpost tearing open an SSLVPN appliance and laying bare a recent in-the-wild exploited bug. This ...
Read more →Backdoor in XZ Utils allows RCE: everything you need to know - CVE-2024-3094
Detect and mitigate CVE-2024-3094, a critical supply chain compromise, affecting XZ Utils Data compression library. Organizations should patch urgentl...
Read more →Loading...
The Cybersecurity Chronicles
‘The Cybersecurity Chronicles: 2024‘ pulls back the curtain on the digital threats that shaped our world last year, revealing the human stories behind the headlines. From art galleries frozen by ransomware to prison tablets hacked with a minus sign, from British Library archivists racing to protect centuries of knowledge to Spotify users meticulously curating their digital identities – these stories illuminate how cybersecurity touches every aspect of modern life.
Author Mark Nole weaves together intimate portraits of the people on all sides of the digital battlefield: the defenders working through sleepless nights to protect critical infrastructure, the victims grappling with stolen identities and lost savings, and even the attackers themselves, operating from nondescript offices with project management software and performance metrics.
Through detailed reporting and narrative storytelling, Nole reveals how 2024 became the year when cybersecurity stopped being just a technical problem and emerged as a fundamentally human challenge. Whether you’re a security professional or simply someone trying to understand our increasingly digital world, these chronicles offer an unprecedented look at how technology shapes – and sometimes betrays – our trust, our privacy, and our lives.

Stay Updated with Cyber Security News
Get the latest cybersecurity headlines, breaking news, and expert insights delivered directly to your inbox. Stay ahead of threats and informed about the digital landscape.
Join thousands of cybersecurity professionals and enthusiasts. No spam, just valuable insights.