<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 7/6/2026

SHARE

Top News

FBI Seizes NetNut Proxy Platform, Popa Botnet

The Federal Bureau of Investigation (FBI) said today it worked with industry partners to seize hundreds of domains associated with NetNut, a sprawling residential proxy service operated by the publicly-traded Israeli company Alarum Technologies [NASDAQ: ALAR]. The action comes roughly two weeks after KrebsOnSecurity published findings from multiple security firms connecting NetNut to the Popa botnet, a collection of at least two million compromised devices. READ MORE...

Breaches

Medtronic Data Breach Impacts 3.8 Million People

Medical technology giant Medtronic is notifying more than 3.8 million individuals that their personal and medical information was compromised in a recent data breach. The incident occurred in April 2026, when the infamous extortion group ShinyHunters accessed the company's corporate IT systems. Medtronic confirmed the attack in late April, noting that its products and manufacturing and distribution operations were not affected. READ MORE...

Hacking

North Korean Hackers Target Open Source Developers in Supply Chain Attacks

North Korean hackers are targeting open source software developers with a backdoor and an information stealer as part of a broad supply chain campaign, Socket reports. Referred to as PolinRider, the campaign has been ongoing since December 2025, using compromised GitHub repositories injected with JavaScript loaders leading to the DEV#POPPER remote access trojan (RAT) and the OmniStealer information stealer. READ MORE...


Ransomware Thugs Masquerade as Interpol to Entice Small Biz

An emerging ransomware campaign is targeting small businesses across multiple regions with fake Interpol notices designed to trick victims into downloading malware disguised as evidence of alleged criminal activity. The campaign has so far has targeted businesses in multiple sectors, including pharmaceuticals, food, agriculture, technology, media, and legal services in the US, Europe, Asia, and the Middle East. READ MORE...

Trends

Why schools are easy prey for hackers - and why they struggle to fight back

When a ransomware gang picks its next target, it looks for a poorly secured organization holding valuable data, providing a vital service or doing both. Few organizations fit that description as perfectly as a K-12 school system. With that in mind, it's no surprise that schools and their technology vendors have been falling prey to cyberattacks in massive numbers over the past few years. Supply chain vulnerabilities represent the biggest threat to schools. READ MORE...

Software Updates

Apple Reverses Age-Old Patch Policy to Keep Up With AI

Apple is changing its approach to security patching, in response to the growing threat of accelerated artificial intelligence (AI) attacks. The company has historically saved big, bundled sets of bug fixes for new versions of its operating system (OS). That's set to change. The company released a variety of security updates June 29 for iPhones, iPads, Macbooks, and the Safari browser, untethered to any major version releases. READ MORE...

Malware

Fake Google and Cloudflare verification pages spread multiple malware families

ClickFix attacks, which trick people into running malicious commands themselves, continue to evolve. This latest campaign uses fake Google and Cloudflare verification pages to convince victims to infect their own devices. A single mistake can install malware that steals passwords and other sensitive data, gives attackers remote access to your computer, or downloads additional malware that can take full control of your system. READ MORE...


Smooth AI criminal drives 'first' end-to-end agentic ransomware attack

They're not bad, they're just prompted that way. Sysdig threat hunters documented what they say is the first-ever documented agentic ransomware infection with an LLM driving the entire extortion operation, from gaining initial access to compromising a production database server and destroying data. The security shop's research team named the agentic intruder JadePuffer and said it gained initial access to an internet-facing Langflow instance. and then ran a fully automated attack. READ MORE...


Newly discovered PamStealer isn't your typical macOS malware

Researchers have found a never-before-seen piece of macOS malware that combines a series of clever tradecraft to infect Macs with stealthy, custom-developed credential-stealing code. The malware is delivered in two stages. The first is distributed in a disk image that masquerades as Maccy, a clipboard manager for Macs. It's compiled as AppleScript that is notable for the way it delivers the second stage. READ MORE...

Exploits/Vulnerabilities

Finding vulnerabilities was never the hard part

Ikeep hearing the same frustration when I talk with security leaders. The real problem sitting on their desk isn't finding vulnerabilities. It's deciding which ones actually matter. The industry has spent billions on better visibility. We've convinced ourselves that if we could just discover more vulnerabilities, collect more data, and ingest more threat intelligence, we'd become more secure. But look around. Organizations still aren't more secure. They're just overwhelmed. READ MORE...

On This Date

  • ...in 1946, actor/director/screenwriter Sylvester Stallone ("Rocky", "First Blood") is born in New York City.
  • ...in 1946, the 43rd President of the United States, George W. Bush, is born in New Haven, CT.
  • ...in 1957, John Lennon and Paul McCartney meet for the first time. Three years later, they would form the Beatles.
  • ...in 1980, actress/model Eva Green ("Casino Royale", "Penny Dreadful") is born in Paris.