The CyberSec Guru

ServiceNow API Breach What Customers Need to Know Now

ServiceNow Customers Hit by Unauthorized API Access – And the Company Knew for Months

June 10, 2026

The CyberSec Guru

A misconfigured ServiceNow REST endpoint exposed customer tenants in. Here's what happened, what attackers accessed, and what you need know

News

Miasma Just Went Open Source. Here’s What’s Actually Inside It

June 9, 2026

The CyberSec Guru

The Miasma supply chain worm just went open source. We analyzed the full source code - 5-layer obfuscation, GitHub-as-C2, AI tool hijacking etc

CVE-2026-23111: One Bad Character Gives Attackers Linux Root

News

CVE-2026-23111: One Inverted Character in Linux’s nftables Hands Attackers Root

June 9, 2026

The CyberSec Guru

CVE-2026-23111 is a use-after-free in Linux's nftables that lets an unprivileged user escalate to root. Working exploits are public. Here's exactly how it works

Yoti Reported GrapheneOS User to Authorities

News

Yoti Flagged A Playstation User to Authorities for Running GrapheneOS on their Phone

June 7, 2026

The CyberSec Guru

Sony's age-verification partner Yoti reportedly flagged a GrapheneOS user to authorities. Here's what actually happened and why it matters for everyone

Chinese APT VerdantBamboo Evades M365 Security for 18 Months

News

Silent Persistence: How Chinese APT ‘VerdantBamboo’ Spent 18 Months Inside Microsoft 365 Using Custom Malware

June 7, 2026

The CyberSec Guru

Discover how Chinese espionage group UNC5221 (VerdantBamboo) used Brickstorm & Plenet to hide inside Microsoft 365 and MSP networks for over 18 months

News

Hades Descends to PyPI: Miasma Supply Chain Campaign Spreads via Malicious .pth Startup Hooks

June 7, 2026

The CyberSec Guru

Security researchers detect "Hades," a PyPI branch of the Mini Shai-Hulud / Miasma malware lineage. Over 37 packages compromised via .pth startup hooks.