Cyber Security News

• 144 Mastra npm Packages Compromised via Hijacked Contributor Account
  June 17, 2026
  As many as 144 npm packages associated with the Mastra namespace ("@mastra/*"), a popular open-source JavaScript and TypeScript framework for […]
• CISA Warns of Actively Exploited Joomla JCE Flaw Allowing PHP Code Execution
  June 17, 2026
  The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a maximum-severity security flaw impacting Widget Factory Joomla Content […]
• Google Vertex AI SDK Flaw Let Attackers Hijack Model Uploads via Bucket Squatting
  June 16, 2026
  A flaw in the Google Cloud Vertex AI SDK for Python let an attacker with no access to a victim's […]

• Apple plans to change its Hide My Email privacy feature that could make it less effective
  June 16, 2026
  In the coming weeks, Apple will move anonymously generated emails addresses to a different domain.
• Bug in FIFA World Cup internal system gave anyone ability to modify TV stream
  June 16, 2026
  A security researcher said a flaw in FIFA’s online platforms allowed her to access several internal systems, including one that […]
• The US government’s Anthropic models ban was never about an AI jailbreak
  June 15, 2026
  The Trump administration's decision that forced Anthropic to pull its latest cybersecurity models could be reactionary, retaliatory, or both, but […]

• State Attorneys General Are Investigating OpenAI
  June 14, 2026
  OpenAI said that a coalition of states had opened an investigation over a wide range of its practices, including its […]
• U.S. Bars Foreigners From Using Anthropic’s Most Advanced A.I. Models
  June 13, 2026
  The company said on Friday night that the federal government had ordered limits on its Mythos and Fable 5 A.I. […]
• Meta A.I. Bug Allowed Hackers to Take Over Instagram Accounts
  June 10, 2026
  The flaw, which Meta said it had fixed, allowed anyone to take over accounts using a bug in the company’s […]