Hackers Leverage Blockchain to Hit Japan's Hotels Through Booking.com Phishing
9.8/10 · Must read/watchSummary
Collected from the Infosecurity Magazine news page during the latest run.
Archive snapshot
Archived briefing content rendered inside the ACSP site experience.
Archived briefing
Coverage now updates on a rolling 6-hour window, while NVD entries come from the live API using a last-24-hours modified window and are sorted by severity.
News stays on the current 6-hour slice, videos now use the last 24 hours, and NVD uses the API instead of the traditional feed to better match the live site behavior.
Summary
Collected from the Infosecurity Magazine news page during the latest run.
Summary
Convince an AI browser that it is playing a game, and it can hand over your login details. That is the finding behind BioShocking, a technique from security firm LayerX that tricked six AI browsers and assistants into copying a user's credentials and send
Summary
A critical security flaw impacting Oracle E-Business Suite has come under active exploitation in the wild, according to Defused Cyber. The vulnerability, tracked as CVE-2026-46817 (CVSS score: 9.8), refers to an improper privilege management and authentication
Summary
Apple on Monday released security updates for iOS, macOS, and the Safari web browser to address over three dozen flaws, including four vulnerabilities in WebKit that were discovered using artificial intelligence (AI) tools like Anthropic Claude and OpenAI Code
Summary
Collected from the Infosecurity Magazine news page during the latest run.
Summary
Two researchers have found six security flaws in AirDrop and Quick Share, the wireless features that beam files between nearby devices with no cables or shared network. An attacker within wireless range, with just a laptop and no prior connection, can crash th
Summary
Collected from the Infosecurity Magazine news page during the latest run.
Summary
Collected from the Infosecurity Magazine news page during the latest run.
Summary
A critical vulnerability in Progress Kemp LoadMaster can let an unauthenticated attacker execute arbitrary commands as root on the appliance by sending a crafted request to its API. The flaw, tracked as CVE-2026-8037, carries a CVSS score of 9.8 acco
Summary
Collected from the Infosecurity Magazine news page during the latest run.