
Security News
The latest security stories, summarized by AI
Featured Security Stories


Defender Patch Sparks Disk-Destroying Attack Scenario
Microsoft patched a Windows Defender zero-day (CVE-2026-50656), but researchers warn that new defense-in-depth changes connected to the Microsoft Malware Protection Engine and SpyNet could let an attacker exhaust disk space by writing massive data via a crafted SMB interaction. Exploitation would require a specialized SMB setup and a malicious file sequence; the fix is auto-installed, and the risk is currently described as a theoretical scenario amid tension between the researcher and Microsoft.

More Top Stories
Ubiquiti patches seven UniFi OS flaws, including a critical UniFi Connect command-injection risk
BleepingComputer•2 days ago
Six-figure bounty awarded for Linux KVM guest-to-host escape flaws
Ars Technica•2 days ago
More Security Stories

Early Probes Emerge Against Patched Gitea Docker Flaw CVE-2026-20896
Threat actors are probing a critical Gitea Docker vulnerability (CVE-2026-20896) that allowed unauthenticated users to impersonate others via the X-WEBAUTH-USER header when reverse-proxy trust was misconfigured; the weakness affected Gitea 1.26.2 and was fixed in 1.26.3 by removing the wildcard and requiring opt-in reverse-proxy authentication. Sysdig detected the first in-the-wild activity 13 days after disclosure across roughly 6,200 internet-facing instances; admins should patch promptly and review proxy settings.

ARToken: A New PhaaS Armoring EvilTokens’ Microsoft 365 Toolkit
Cisco Talos flags ARToken as a new phishing-as-a-service platform allied with EvilTokens, offering a wide toolkit to steal Microsoft 365 tokens, maintain persistence with Primary Refresh Tokens, and access Outlook, SharePoint, and OneDrive. It uses Cloudflare Workers for deployment, supports multi-tenant campaigns, and includes inbox rules, keyword monitoring, and data exfiltration tools. The kit mirrors EvilTokens’ device-code phishing flow to bypass MFA, with research suggesting a shared ecosystem and AI-enabled workflows that automate BEC-style fraud. Security teams should prioritize behavioral AI defenses and robust email security controls.

BioShocking reveals game-like prompts can override safety in AI-powered browsers
Security researchers from LayerX disclose BioShocking, a BioShock-inspired vulnerability that can coax AI-powered browsers into treating tasks as a game, bypassing real-world safety guardrails. Their PoC uses a layered puzzle and a deliberate math error (2+2=5) to steer the agent to a /code URL where it could exfiltrate credentials, with demonstrations against Claude Chrome and patch gaps in OpenAI’s Atlas; experts say effective mitigation requires multi-layer defenses and explicit user confirmations for sensitive actions.

AI-Assisted Discovery Reveals Flaw in US Festival Ticketing Network
Security researcher Ian Carroll used Anthropic’s Claude Opus 4.7 to uncover a vulnerability in Front Gate Tickets’ system that could grant a super-admin the ability to issue any festival tickets and access millions of customer and staff records. The flaw was patched within 24 hours, and there’s no evidence of exploitation, illustrating both AI’s potential to uncover web vulnerabilities and the risks of centralized festival-ticketing platforms.

Massive Azure CLI credential spray uses legacy flow to bypass MFA, hits 78 accounts
Security researchers warn of a large-scale, automated password-spray against Microsoft Azure CLI that logged over 81 million login attempts and compromised at least 78 Microsoft accounts across 64 organizations. The attackers used the deprecated OAuth 2.0 Resource Owner Password Credentials (ROPC) flow to bypass Conditional Access policies, targeting credentials from breached lists and exploiting MFA configurations that didn’t cover Azure CLI logins. The activity originated largely from an IPv6 range linked to LSHIY LLC (AS32167). Recommendations include enforcing MFA for all users and apps, restricting the Azure CLI app to non-admins, and ensuring CAPs are fully configured to close gaps exposed by ROPC.

CitrixBleed Deepens: NetScaler Memory-Overread CVE-2026-8451 Exposed
Security researchers reveal CVE-2026-8451, a memory overread in Citrix NetScaler appliances (ADC/Gateway) triggered when configured as a SAML IdP. A lax XML attribute parser can overread input, leaking data such as IDs and assertion URLs via the NSC_TASS cookie and potentially exposing memory contents. Citrix has issued patches after extensive analysis and demonstrations by watchTowr, highlighting ongoing memory-management weaknesses in NetScaler devices.

Public PoC Reveals Critical libssh2 Pre-Auth Bug (CVE-2026-55200)
A public proof-of-concept exposes a critical pre-auth memory-corruption flaw in libssh2 (CVE-2026-55200) that can trigger code execution when a client connects to a malicious SSH server; affects all releases up to 1.11.1 with a CVSS of 9.2. No fixed release exists yet; the patch is in mainline and backports are underway (e.g., Debian testing). Inventory every usage of libssh2, including static or bundled copies, and apply a build containing commit 97acf3d. Until patched, restrict outbound SSH, verify host keys, and monitor for oversized-packet anomalies. Related issues CVE-2026-55199 and CVE-2025-15661 are also noted; exploitation in the wild has not been observed.

Vanguard Expands: New Anti-Cheat Update Across Riot Games
A Riot Games news hub highlights Vanguard's latest anti-cheat security update, which fixes a pre-boot code-injection flaw tied to some motherboards and prompts affected users to update, while also cataloging a broad range of 2025–2026 Riot updates—from new game modes and developer updates to Pride content and esports events—demonstrating Riot's ongoing focus on security and continuous software and game updates.

BootROM-style exploit hits iPhone A12/A13, researchers reveal
Security researchers disclosed a bootROM-style exploit for iPhone models with A12 and A13 chips, a checkm8-like vulnerability that operates at boot level. Like other bootrom flaws, it cannot be patched on existing devices and would only be addressed with new hardware, highlighting ongoing hardware-level risk for affected iPhones.

Unpatchable USB flaw targets Apple SecureROM on A12/A13 chips
Paradigm Shift disclosed usbliter8, a hardware-level exploit that can execute code inside Apple’s SecureROM on A12/A13 by abusing a USB controller DMA bug; it requires physical access, DFU mode, and a dedicated RP2350-based board, and cannot be fixed by firmware, making it effectively unpatchable on affected devices (A12/A13/S4/S5). The public PoC covers iPhone XS/XS Max/XR, iPhone 11 line, iPad Air 3, iPad mini 5, iPad 8th gen, Apple Watch Series 4/5, and HomePod mini; A14+ appear safe. No Secure Enclave compromise reported and no CVE yet; for most users risk is low, but in high-security environments it creates a hardware boundary problem requiring device retirement or strict custody controls.