Vulnerability

3 minute read

Instagram Recovery Tool Bug Exposed 20,225 Accounts to Password Reset Abuse

Meta says an Instagram recovery tool bug allowed attackers to abuse password resets, affecting 20,225 accounts and exposing users without 2FA to account takeover risk.

byWaqas

June 8, 2026

Instagram Glitch Exposes Zuckerberg’s Contact Info and Other Top Users’ Details

2 minute read

Instagram Glitch Reportedly Exposed Contact Info of Zuckerberg and Other Users

Instagram glitch exposed Mark Zuckerberg’s email addresses and phone number, plus contact details of other top users, through a password reset flaw.

byDeeba Ahmed

June 8, 2026

2 minute read

Miasma Malware Hits 32 Red Hat Packages via Compromised GitHub Account

32 Red Hat npm packages compromised by Miasma malware expose cloud tokens, CI/CD secrets and developer credentials in supply chain attack.

byDeeba Ahmed

June 5, 2026

3 minute read

Fake ChatGPT Desktop App Ads Used to Push Password-Stealing Malware

Fake ChatGPT desktop app ads pushed password-stealing malware by abusing trusted AI links, hiding from scanners, and tricking users into downloads.

byDeeba Ahmed

June 2, 2026

2 minute read

Hackers Abused Meta’s AI Support Bot to Hijack Major Instagram Accounts

Hackers abused Meta’s AI support bot to hijack major Instagram accounts, bypassing security checks as videos showed the flaw before Meta fixed the issue.

byDeeba Ahmed

June 2, 2026

Zero-Click pretalx XSS Flaw Lets Hackers Hijack Conference Organizer Accounts

3 minute read

Security

Zero-Click pretalx XSS Flaw Lets Hackers Hijack Conference Organizer Accounts

pretalx XSS flaw lets attackers hijack conference organizer accounts, steal sessions, auto-accept talks, and demote admins. Patched in v2026.1.0.

byDeeba Ahmed

June 1, 2026

2 minute read

Claude Mythos AI Identified 10,000+ Software Vulnerabilities in One Month

Anthropic says its Claude Mythos AI identified more than 10,000 software vulnerabilities in one month, including critical flaws in open-source code.

byDeeba Ahmed

May 26, 2026

Deleted Google API Keys Remain Active up to 23 Minutes, Study Finds

2 minute read

Security

Deleted Google API Keys Remain Active up to 23 Minutes, Study Finds

Deleted Google API Keys remain active for up to 23 minutes after deletion, exposing GCP, Gemini, BigQuery, and Maps data to attackers.

byDeeba Ahmed

May 21, 2026

2 minute read

Microsoft’s Retired IE Tool MSHTA Now Being Used in Fileless Malware Attacks

Despite Internet Explorer’s retirement, hackers are abusing the legacy MSHTA utility in stealthy fileless malware attacks targeting Windows users.

byDeeba Ahmed

May 21, 2026

5 minute read

You can’t patch your way out of prompt injection: AI agents need a different defense

Prompt injection has gone from a lab curiosity to a zero-click data breach in production. The fix isn't a better filter; it's a different architecture.

byRilton Franzone

May 20, 2026

The Latest

Hackers Clone Ghidra, dnSpy and Other Tool Sites to Spread Malware

Silent Ransom Group Uses Fast Flux Botnet to Hide Law Firm Leak Sites

Vulnerability

Miasma Malware Hits 32 Red Hat Packages via Compromised GitHub Account

Fake ChatGPT Desktop App Ads Used to Push Password-Stealing Malware

Hackers Abused Meta’s AI Support Bot to Hijack Major Instagram Accounts

Zero-Click pretalx XSS Flaw Lets Hackers Hijack Conference Organizer Accounts

Claude Mythos AI Identified 10,000+ Software Vulnerabilities in One Month

Microsoft’s Retired IE Tool MSHTA Now Being Used in Fileless Malware Attacks

You can’t patch your way out of prompt injection: AI agents need a different defense

Halo Security Honored with 2026 MSP Today Product of the Year Award

RaccoonLine Publishes 2026 dVPN Buyer’s Guide for Privacy-Focused Users

The CISO Whisperer’s Watch List For The Gartner Security & Risk Management Summit 2026

Link11 is fully committed to Europe and is opening a Customer Excellence Hub in Lisbon

Criminal IP Returns to Infosecurity Europe 2026 with Advanced AI-Driven TI & ASM