- Claude Fable 5 stays free for paid users until July 19 as Anthropic buys more timeby Mayank Parmar on July 12, 2026 at 7:39 pm
Anthropic has just extended access to Claude Fable 5 for paid subscribers until July 19, giving you another week to keep using the most powerful model. […]
- RedHook Android malware now uses Wireless ADB for shell accessby Bill Toulas on July 12, 2026 at 2:27 pm
A new version of the RedHook Android malware abuses the Android Wireless Debugging (Wireless ADB) mechanism in a novel way to gain shell-level privileges without requiring a computer connection. […]
- Australia warns of global campaign targeting vulnerable CMS platformsby Bill Toulas on July 11, 2026 at 2:18 pm
The Australian Cyber Security Centre (ACSC) issued an alert about a global exploitation campaign targeting vulnerable content management systems (CMS) and plugins. […]
- ‘Ghostcommit’ hides prompt injection in images to fool AI agents, steal secretsby Ax Sharma on July 11, 2026 at 9:03 am
A PNG hiding a prompt injection could steal your repo’s secrets, researchers demonstrate. The technique, dubbed ‘Ghostcommit,’ slipped past AI code reviewers CodeRabbit and Bugbot, which never open image files at all, then convinced a coding agent to read a repo’s .env and write every secret into the code as a list of numbers. […]
- New U-Boot flaws could enable stealthy firmware attacksby Lawrence Abrams on July 10, 2026 at 9:59 pm
Six vulnerabilities in the widely used U-Boot bootloader have been discovered that could allow attackers to execute malicious code during device boot, potentially enabling stealthy firmware attacks that compromise security protections and install persistent malware. […]
- Ryuk ransomware member pleads guilty in the US, faces 15 years in prisonby Bill Toulas on July 10, 2026 at 5:46 pm
A 34-year-old Armenian man has pleaded guilty to hacking U.S. companies and deploying the infamous Ryuk ransomware to encrypt their systems. […]
- Police suspects Dutch hackers were involved in Odido breachby Sergiu Gatlan on July 10, 2026 at 4:37 pm
The Dutch National Police (Politie) says it has found “strong indications” that Dutch hackers have been involved in a February breach at the telecommunications provider Odido. […]
- Progress urges ShareFile admins to shut down servers over “credible” threatby Lawrence Abrams on July 10, 2026 at 4:26 pm
Progress Software is emailing ShareFile customers who use Storage Zone Controllers to immediately shut down their servers after identifying what it describes as a “credible external security threat” targeting the on-premises secure file-sharing software. […]
- Hackers exploit critical auth bypass in Gitea Docker imageby Bill Toulas on July 10, 2026 at 3:48 pm
Hackers are actively exploiting a critical vulnerability in the official Docker image for the Gitea self-hosted Git service that allows attackers to impersonate any user, including administrators. […]
- Money launderer accused of stealing seized crypto while in prisonby Sergiu Gatlan on July 10, 2026 at 3:30 pm
A Bulgarian national has been charged with stealing $290,000 in government-seized cryptocurrency while serving 121 months in prison for helping launder millions stolen from American fraud victims. […]
- The Replicant in Your Directory: AI Agents and the Identity Security Gapby Sponsored by Netwrix on July 10, 2026 at 2:00 pm
AI agents are accelerating the growth of non-human identities, making it harder for organizations to understand what exists, who owns it, and what it can access. Netwrix explains why stronger visibility and identity governance are essential as AI expands the enterprise attack surface. […]
- Zimbra urges customers to patch critical web client XSS flawby Sergiu Gatlan on July 10, 2026 at 11:47 am
The Zimbra security team urged customers to patch a critical vulnerability affecting the Classic Web Client used to access the Zimbra Collaboration suite. […]
- Former ransomware negotiator gets 4 years for BlackCat attacksby Sergiu Gatlan on July 10, 2026 at 8:17 am
A former employee of cybersecurity incident response company DigitalMint was sentenced to 70 months in prison for targeting U.S. companies in BlackCat (ALPHV) ransomware attacks. […]
Bleeping Computer Cyber Security
We are an ethical website cyber security team and we perform security assessments to protect our clients.



