Google warnt: Angreifer geben sich als IT-Techniker aus und betreten Büros (2026-06-06 11:44 UTC)
Kurz: Die Google Threat Intelligence Group warnt vor der Gruppe UNC3753. Die Angreifer geben sich vor Ort als IT-Techniker aus, um Daten per USB-Stick zu stehlen.
Critical Everest Forms Pro flaw exploited to take over WordPress sites (2026-06-06 14:09 UTC)
Kurz: Hackers are actively exploiting a critical vulnerability (CVE-2026-3300) in the Everest Forms Pro plugin, which lets them take complete control of a WordPress website. […]
New ChatGPT Lockdown Mode Limits Tools That Could Enable Data Exfiltration (2026-06-06 13:36 UTC)
Kurz: OpenAI has begun rolling out a new Lockdown Mode to ChatGPT for eligible personal accounts to reduce the risk of data exfiltration arising from prompt injection attacks. The feature is primarily designed for people and organizations that ha…
Free Apps Are Quietly Turning Smart TVs Into Web-Scraping Proxies for AI (2026-06-06 08:29 UTC)
Kurz: A researcher has reverse-engineered the iOS SDK that Bright Data embeds in consumer apps and documented how it turns devices, including always-on smart TVs, into exit nodes that relay web-scraping traffic for a data business Bright Data mar…
CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog (2026-06-06 08:14 UTC)
Kurz: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity security flaw impacting SolarWinds Serv-U multi-protocol file server software to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence o…