Archive snapshot

Wed, Jul 08 · 12:00 PM CDT

Archived briefing content rendered inside the ACSP site experience.

Archived briefing

Snapshot overview

Generated Wed, Jul 08 · 12:00 PM CDTWindow last 6 hours

Top line

Coverage now updates on a rolling 6-hour window, while NVD entries come from the live API using a last-24-hours modified window and are sorted by severity.

Fast take

News stays on the current 6-hour slice, videos now use the last 24 hours, and NVD uses the API instead of the traditional feed to better match the live site behavior.

Top stories
5
Worth skimming
5
Tracked videos
2
NVD vulnerabilities
25

Top stories

Wed, Jul 08 · 12:00 PM CDT

China-Linked APT Expands Proxy Network With New Malware

9.8/10 · Must read/watch
Infosecurity Magazinemalware

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Wed, 08 Jul 2026 18:30:00 +0530

New Ghost Phishing Wave Is Breaking Traditional Email Security

9.8/10 · Must read/watch
The Hacker Newsai

Summary
A recent EvilTokens campaign targeting businesses across the US and Europe is exposing a new email security blind spot. This “ghost phishing” technique keeps the malicious page hidden until it decrypts and comes to life inside the victim’s browser. For securit

Wed, 08 Jul 2026 20:37:24 +0530

New HalluSquatting Attack Could Trick AI Coding Assistants Into Installing Botnet Malware

9.7/10 · Must read/watch
The Hacker Newsmalwareaiidentity

Summary
AI coding assistants have a habit of making things up. Ask one to fetch a popular tool, and it will sometimes hand back a real-sounding name for a project that does not exist. New research, which its authors call HalluSquatting, turns that habit into an a

Wed, Jul 08 · 12:00 PM CDT

New Malicious Campaign Delivers Vidar Infostealer and Monero Crypto Miner

9.4/10 · Must read/watch
Infosecurity Magazinemalwareai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Wed, 08 Jul 2026 18:22:15 +0530

SCMBANKER Malware Uses ClickFix Lures to Target Mexican Banking Users

9.2/10 · Must read/watch
The Hacker Newsmalware

Summary
A new banking fraudulent operation is targeting customers of Mexican banks, fintech, payment processors, and cryptocurrency exchanges using ClickFix lures. The activity cluster, tracked by Elastic Security Labs under the moniker REF6045, involves infecting vic

Worth skimming

Wed, Jul 08 · 12:00 PM CDT

Threat Actors Uses Agentic AI to Rapidly Compromise Cloud Target

9.1/10 · Must read/watch
Infosecurity Magazineai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Wed, 08 Jul 2026 17:21:24 +0530

GitHub 'Verified' Commits Can Be Rewritten Into New Hashes Without Breaking Signatures

8.9/10 · Worth your time
The Hacker Newssupply-chainidentity

Summary
New research shows that a signed Git commit's hash is not the one-of-a-kind name that much of the software world assumes it to be. Given any signed commit, someone without the signing key can mint a second commit with the same files, author, and date, and a va

Wed, 08 Jul 2026 16:51:07 +0530

GitHub Copilot Refuses Harmful Requests in Chat, Then Writes Them in Code

8.9/10 · Worth your time
The Hacker Newssupply-chainai

Summary
An AI coding assistant that refuses to answer a dangerous request in its chat box can answer it anyway if the same request is broken into small, ordinary-looking steps inside a code editor. That is the finding of a new study of GitHub Copilot by rese

Wed, Jul 08 · 12:00 PM CDT

RedWing Android Spyware Sold as a Service on Telegram

8.7/10 · Worth your time
Infosecurity Magazinegeneral

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Wed, 08 Jul 2026 20:08:05 +0530

Ubiquiti Patches Critical UniFi Flaws Across Connect, Talk, Access, Protect, and OS

8.7/10 · Worth your time
The Hacker Newsvuln

Summary
Ubiquiti has shipped updates to address multiple critical security flaws impacting UniFi Connect, UniFi Talk, UniFi Access, UniFi Protect, and UniFi OS that could result in privilege escalation and arbitrary command execution. The list of vulnerabilities is as