New Linux Root Exploit, Photo ZIP Attacks, Activist's iPhone Cracked, Ad Blocker Backdoor

THN Daily Updates Webinar ➞ Source Code, Contracts, PII--Oh My: How to Stop Leaks to ChatGPT Learn how to identify, monitor, and stop data leaks to AI tools like ChatGPT. Discover practical methods to gain real-time visibility, enforce controls, and prevent sensitive data exposure at the source. Download Now Sponsored LATEST NEWS Jun 26, 2026 New DirtyClone Linux Kernel Flaw Lets Local Users Gain Root via Cloned Packets DirtyClone is a new Linux kernel privilege escalation in the DirtyFrag family. JFrog Security Research published a working exploit walkthrough for the flaw on June 25, the first public demonstration for this v... Read More Guardian Agents: The Next Layer of Identity Governance AI agents are moving through enterprise environments, inheriting permissions, traversing systems, and executing decisions at machine speed with minimal oversight. The identity infrastructure built to govern human access... Read More Webinar: Five Tools That Won't Deliver Ransomware Resilience Hear from experts at Halcyon as they break down how ransomware groups get past traditional defenses like backups, SIEM, MFA, and DLP. Watch the full discussion. Read More Miasma Malware Targets npm Packages and GitHub Actions in Supply Chain Attack Cybersecurity researchers have flagged yet another evolution of the supply chain attack linked to the Mini Shai-Hulud, Miasma, and Hades malware family that has compromised a new set of npm packages, even as it has prop... Read More Microsoft Warns of Photo ZIP Phishing Campaign Targeting Hotels with Node.js Implant An active phishing campaign has been targeting hotel and other hospitality organizations across Europe and Asia since April 2026, using photo-themed ZIP files to drop a Node.js implant and dig into front-desk machines,... Read More Russia Used Cellebrite on Jailed Activist's iPhone Months After Sales Cutoff Russian authorities used Cellebrite's UFED forensic tools to break into the iPhone of detained opposition activist Andrey Pivovarov in June 2021, three months after Cellebrite said it would stop selling its tools and se... Read More Google Details Turla's New STOCKSTAY Backdoor Used in Ukraine Espionage Attacks The Russian state-sponsored threat actor known as Turla has been attributed to a previously undocumented .NET backdoor called STOCKSTAY that has been deployed against government and military organizations in Ukraine, ... Read More Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability An analysis of a popular Google Chrome ad block extension for YouTube has uncovered the ability to execute arbitrary JavaScript code. According to Island, the extension, named Adblock for YouTube (ID: cmedhionkhpnakcn... Read More Webinar ➞ Source Code, Contracts, PII--Oh My: How to Stop Leaks to ChatGPT Learn how to identify, monitor, and stop data leaks to AI tools like ChatGPT. Discover practical methods to gain real-time visibility, enforce controls, and prevent sensitive data exposure at the source. Download Now Sponsored This email was sent to sikubaycom.s3cr3tz@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from THN. To manage your email newsletter preferences, please click here. Contact THN: info@thehackernews.com Unsubscribe THN | K.P BLock, Pitampura, Delhi