Cyber Security News ®

🚨 Free Apps on Samsung and LG Smart TVs Secretly Turning Your Devices Into AI Proxies | Source: https://lnkd.in/g3yiAe-W Free apps available on Samsung, LG, Roku, and other major smart TV platforms have been quietly enrolling millions of living room devices into a commercial residential proxy network used to scrape web data for AI training all through a consent dialog buried in a TV remote's arrow-key navigation, according to new research from Include Security. The culprit is an SDK developed by Bright Data, a Tel Aviv-based data-collection company that markets what it calls the world's largest residential proxy network, claiming 150M+ IP addresses sourced via embedded software in partner apps. #cybersecuritynews

⚠️ CISA Warns of SolarWinds Serv-U Vulnerability Exploited in Attacks | Source: https://lnkd.in/gYYdRiS7 CISA has added a critical SolarWinds Serv-U vulnerability to its Known Exploited Vulnerabilities (KEV) catalog, warning that threat actors are actively exploiting the flaw in the wild. Tracked as CVE-2026-28318, the vulnerability affects SolarWinds Serv-U file transfer software and enables unauthenticated attackers to crash the service through specially crafted HTTP requests. CVE-2026-28318 is classified as an Uncontrolled Resource Consumption flaw (CWE-400), a vulnerability class where an application fails to properly limit the resources it allocates in response to incoming input. #cybersecuirtynews

🔻Anthropic's Claude Services Down — claude[.]ai, Claude Code, and Cowork Affected | Source: https://lnkd.in/gy9v_MKG Anthropic's Claude platform suffered a significant service disruption on June 5, 2026, with elevated error rates impacting multiple frontier AI models and key services, including claude[.]ai, Claude API, Claude Code, and Claude Cowork, raising concerns not just about infrastructure resilience but also about potential customer data exposure. The outage began at 8:08 PT / 15:08 UTC on June 5, 2026, when Anthropic's status page flagged elevated errors across several Claude models. An investigation was immediately launched, with Anthropic confirming disruptions across claude[.]ai, the Claude API (api.anthropic[.]com), Claude Code, and Claude Cowork services.

Windows Directories!

Microsoft 365 Service Degradation Bypassed Windows Driver Auto-Update Controls | Source: https://lnkd.in/ekdwJJsh Microsoft has resolved a Microsoft 365 service degradation issue that temporarily bypassed Windows driver auto-update controls, leading to unintended driver installations on managed devices. The issue affected Windows devices configured with policies designed to prevent automatic updates, particularly in enterprise environments where strict update governance is enforced. Despite these controls, some users observed that drivers were being installed without administrative approval, raising concerns about policy enforcement and endpoint integrity. This service temporarily dropped device enrollment information, which is critical for identifying systems managed under enterprise policies such as Microsoft Intune or other MDM solutions. #cybersecuritynews #Windows

🛡️ Let’s Encrypt Unveils Merkle Tree Certificates to Secure the Web Against Quantum Threats | Source: https://lnkd.in/gjFDnECA Let's Encrypt has announced its roadmap for post-quantum Web PKI, centering on a novel approach called Merkle Tree Certificates (MTCs), a design that delivers quantum-resistant authentication without increasing the size of TLS handshakes or breaking the web's performance expectations. MTCs reframe how certificates are issued and verified. Instead of signing each certificate individually, a CA issues certificates in batches, with a single post-quantum signature covering the entire batch. Clients (browsers) maintain these batch signatures, called landmarks, independently of the TLS handshake. #cybersecuritynews

🚨 Cisco SD-WAN Flaw Exploited in the Wild to Execute Arbitrary Commands as Root User | Source: https://lnkd.in/gv6bHWqs Cisco has disclosed a high-severity vulnerability in its Catalyst SD-WAN Manager that is actively being exploited in the wild, allowing attackers to execute arbitrary commands with root privileges. The flaw stems from insufficient sanitization of user-supplied input during the processing of uploaded files. An authenticated attacker can exploit this weakness by uploading a specially crafted file, which triggers command injection and enables privilege escalation to the root user. Once root access is obtained, attackers can fully compromise the SD-WAN management plane, manipulate configurations, and potentially impact connected edge devices. #cybersecuritynews #vulnerabilitynews

🚨 Microsoft Edge Vulnerability Allows Remote Attackers to Execute Arbitrary Code | Source: https://lnkd.in/gRy3g_b7 Microsoft has released a security update addressing a critical vulnerability in Microsoft Edge that could allow remote attackers to execute arbitrary code on vulnerable systems. An attacker who can trick a user into opening a malicious file or visiting a crafted page could exploit this flaw alongside other bugs to run code in the logged-in user's context. 📌 CVE-2026-45495 (CVSS 7.5): This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Edge 📌 CVE-2026-45494 (CVSS 5.0): A navigation-handling weakness that can enable cross-origin script injection; user interaction required. 📌 CVE-2026-45492 (CVSS 4.3): Insufficient origin validation in cross-device managed sign-in, which can expose restricted functionality and be chained with other issues. #cybersecuritynews #MicrosoftEdge

🪱 Miasma Worm Hits 57 npm Packages Across Multiple Maintainer Accounts | Source: https://lnkd.in/g9RuEPj7 The attack compromised 57 npm packages across more than 286 malicious versions on June 3, 2026. The largest target was vapi-ai/server-sdk, the official Vapi.]ai voice AI server SDK with over 408,000 monthly downloads, struck first at 23:30 UTC on that day. The campaign hit dozens of packages across multiple maintainer accounts in a rolling wave that lasted less than two hours, making it a fast and highly efficient supply chain strike. #cybersecuritynews

🚨 Weaponized ChatGPT Download Site Delivers Malware Via Sponsored Search Results | Source: https://lnkd.in/ePDK-JHp A new malvertising campaign is exploiting ChatGPT’s popularity by promoting a weaponized fake download site via sponsored search results, delivering malware to both Windows and macOS users. The operation which leverages convincing OpenAI branding and search engine ads to lure users actively seeking legitimate AI tools. The campaign centers around a malicious domain, openew[.]An app designed to mimic an official ChatGPT download page closely. Victims are presented with multiple download options, including Windows, macOS, and a Chrome extension. #cybersecuritynews