techtimes

Cloudflare OAuth Opens to All Developers After Zero-Downtime Hydra Upgrade

Cloudflare ended years of partner-only restrictions on Wednesday, opening self-managed OAuth 2.0 to every developer on its platform. The move eliminates the manual onboarding process that previously ...
Microsoft

StealC and Amadey: Breaking down infostealers and the cybercrime services that deliver them

On June 24, 2026, Microsoft’s Digital Crimes Unit (DCU) facilitated the takedown, suspension, and blocking of domains that ...
Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...
SecurityWeek

Insurance Regulators Group NAIC Hit in Oracle PeopleSoft Hack

NAIC has confirmed it was targeted in the recent hacking campaign that exploited an Oracle PeopleSoft zero-day vulnerability.

The Pentagon Is Looking Into the Dialog Data Exposure for Unmasking National Security Officials

Exposed records from the private group included the personal information of a senior White House intelligence official and an ...

Okta expands Cross App Access ecosystem to secure AI agent connections

Okta introduced Cross App Access, or XAA, in June 2025 as a way to govern agent-to-app and app-to-app connections. Today’s ...

Stealthy Mistic backdoor linked to ransomware access broker KongTuke

A new backdoor dubbed Mistic has been observed in financially motivated attacks targeting organizations in the insurance, ...
CSO Online

Unpatched SharePoint servers opened the door to multiple attackers, Microsoft finds

Separate actors exploited the same exposure, creating overlapping intrusions that obscured detection and response.