IT Security Weekend Catch Up – July 18, 2026

Comments

18.07.2026 | 01:00

IT Security Weekend Catch Up – July 18, 2026
avatar

badcyber

comments

IT Security Weekend Catch Up – July 18, 2026

Afraid of missing important security news during the week? We're here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. UK and EU strike Russian cyber networks with new sanctions
  2. Secret Claude tracker shocks users after Anthropic’s anti-surveillance stance
  3. Police ‘hackathon’ identifies sexual exploitation networks on content subscription sites
  4. Florida ransomware negotiator who extorted and attacked multiple U.S. victims sentenced to prison
  5. Felons, fraudsters flog offensive cybersecurity startup

For the more technical

  1. July 2026 Patch Tuesday: Microsoft patches 622 vulnerabilities including two exploited zero-days
  2. LegacyHive: Windows user profile service arbitrary hive load elevation of privileges vulnerability
  3. Progress urges ShareFile admins to shut down servers over “credible” threat
  4. CVE-2026-53359 Januscape KVM bug enables guest-to-host escape
  5. GhostLock, a stack-UAF that has existed in ALL Linux distributions for 15 years
  6. Forgotten UEFI shims undermining Secure Boot
  7. Bypassing Tangem card security with a laser attack
  8. Attackers actively exploiting critical vulnerability in Everest Forms Pro plugin
  9. GigaWiper: Anatomy of a destructive backdoor assembled from multiple malware
  10. ClickFix on macOS: Blockchain-powered infostealer hidden inside compromised websites
  11. ACR Stealer: Two observed intrusion chains amid increased threat activity
  12. Telepuz: a modular MaaS malware spreading via ClickFix-Vidar chains
  13. Kratos PhaaS targets US and EU: How to reduce Microsoft 365 account takeover risk
  14. Compromised npm packages in the AsyncAPI namespace deliver Miasma botnet loader
  15. Scalable untargeted promptware attacks via universal and transferable adversarial HalluSquatting
  16. ClaudeBleed reopened: Browser extensions can still push Claude for Chrome to read your Gmail
  17. TuxBot v3: Inside an IoT botnet framework with LLM-assisted development
  18. One target, two flags: Rival espionage actors converge on Pakistani law enforcement
  19. Operation ShadowRecruit: A recruitment-themed malware campaign leveraging ControlR and Google Sheets to target Indian job seekers
  20. Inside Russia’s camera-hacking espionage campaign

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy! 2026-07-18T01:00:00+02:00

Comments