Linux GhostLock Exploit, Copilot Jailbreak, GitHub Commit Bug, AI Chatbot Hack, and More

THN Daily Updates
Newsletter
cover

The True Cost of Building at Machine Speed

AI is speeding up software delivery faster than traditional security review can handle. Learn how to govern risk without slowing development.

Download Now Sponsored
LATEST NEWS Jul 8, 2026

GitHub 'Verified' Commits Can Be Rewritten Into New Hashes Without Breaking Signatures

New research shows that a signed Git commit's hash is not the one-of-a-kind name that much of the software world assumes it to be. Given any signed commit, someone without the signing key can mint a second commit with t...

Read More
Twitter Facebook LinkedIn

The Verification Step Is the New ATO Battleground in 2026

For years, account takeover (ATO) followed a predictable script. Attackers bought stolen credentials in bulk, ran them through automated tools, and waited for matches. Credential stuffing was cheap, scalable, and for de...

Read More
Twitter Facebook LinkedIn

MCP Prompt Playbook for SOC Teams

Download the playbook to learn how to safely scale AI-powered cloud security operations with MCP best practices.

Read More
Twitter Facebook LinkedIn

GitHub Copilot Refuses Harmful Requests in Chat, Then Writes Them in Code

An AI coding assistant that refuses to answer a dangerous request in its chat box can answer it anyway if the same request is broken into small, ordinary-looking steps inside a code editor. That is the finding of a ...

Read More
Twitter Facebook LinkedIn

China-Linked UAT-7810 Expands ORB Network With New LONGLEASH Malware

A Chinese threat actor tracked as UAT-7810 is actively refining its bespoke malware to expand its Operational Relay Box (ORB) network by breaking into internet-facing networking devices. According to findings from Cisc...

Read More
Twitter Facebook LinkedIn

15-Year-Old GhostLock Flaw Enables Root and Container Escape on Most Linux Distros

Researchers at Nebula Security have disclosed GhostLock (CVE-2026-43499), a 15-year-old Linux kernel flaw that lets any logged-in user take full root control of a machine that has not been patched. ...

Read More
Twitter Facebook LinkedIn

RedWing MaaS Packages Android Bank Fraud as a Telegram Rental Service

A new Android malware operation called RedWing is being rented out on Telegram as a ready-made bank-fraud service. It lets even low-skill criminals take over a victim's phone, steal their banking logins, and capture the...

Read More
Twitter Facebook LinkedIn

Rogue Agent Flaw Could Have Let Attackers Hijack Google Dialogflow CX Chatbots

A critical flaw in Google's Dialogflow CX could have let an attacker with edit rights on one Code Block-enabled agent compromise other Code Block-enabled agents in the same Google Cloud project. From there, they could ...

Read More
Twitter Facebook LinkedIn
cover

The True Cost of Building at Machine Speed

AI is speeding up software delivery faster than traditional security review can handle. Learn how to govern risk without slowing development.

Download Now Sponsored

This email was sent to sikubaycom.s3cr3tz@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from THN. To manage your email newsletter preferences, please click here.

Contact THN: info@thehackernews.com
Unsubscribe

THN | K.P BLock, Pitampura, Delhi