Email privacy articles, Gmail security guides, and tracking protection insights from Gblock. https://www.gblock.app/articles en Thu, 18 Jun 2026 00:00:00 +0000 https://www.gblock.app/articles/cisa-staffing-cuts-warner-2026 https://www.gblock.app/articles/cisa-staffing-cuts-warner-2026 Thu, 18 Jun 2026 00:00:00 +0000 CISA Lost a Third of Its Workforce. America's Cyber Gap Grows. https://www.gblock.app/articles/github-shai-hulud-design-flaws-2026 https://www.gblock.app/articles/github-shai-hulud-design-flaws-2026 Thu, 18 Jun 2026 00:00:00 +0000 GitHub Won't Fix Flaws Fueling the Shai-Hulud Worm https://www.gblock.app/articles/gentlemen-ransomware-yapaev-krebs-2026 https://www.gblock.app/articles/gentlemen-ransomware-yapaev-krebs-2026 Thu, 18 Jun 2026 00:00:00 +0000 Who Runs 'The Gentlemen' Ransomware? Krebs Names Him https://www.gblock.app/articles/estonia-ru-email-quarantine-2026 https://www.gblock.app/articles/estonia-ru-email-quarantine-2026 Thu, 18 Jun 2026 00:00:00 +0000 Estonia Quarantines All Government Emails From Russia https://www.gblock.app/articles/is-drip-tracking-your-email-block-2026 https://www.gblock.app/articles/is-drip-tracking-your-email-block-2026 Thu, 18 Jun 2026 00:00:00 +0000 Is Drip Tracking Your Email? How to Block It https://www.gblock.app/articles/is-sendgrid-tracking-your-email-block-2026 https://www.gblock.app/articles/is-sendgrid-tracking-your-email-block-2026 Thu, 18 Jun 2026 00:00:00 +0000 Is SendGrid Tracking Your Email? How to Block It https://www.gblock.app/articles/state-privacy-laws-july-2026-ct-ar-ut https://www.gblock.app/articles/state-privacy-laws-july-2026-ct-ar-ut Wed, 17 Jun 2026 00:00:00 +0000 3 State Privacy Laws Take Effect July 1, 2026 https://www.gblock.app/articles/fbi-assessment-authority-journalists-surveillance-2026 https://www.gblock.app/articles/fbi-assessment-authority-journalists-surveillance-2026 Wed, 17 Jun 2026 00:00:00 +0000 FBI Probed 100 Journalists Without Cause, Watchdog Finds https://www.gblock.app/articles/temu-200-million-dsa-fine-may-2026 https://www.gblock.app/articles/temu-200-million-dsa-fine-may-2026 Wed, 17 Jun 2026 00:00:00 +0000 Temu Fined €200M: EU's Biggest Platform Penalty Yet https://www.gblock.app/articles/is-reply-io-tracking-your-email-block-2026 https://www.gblock.app/articles/is-reply-io-tracking-your-email-block-2026 Wed, 17 Jun 2026 00:00:00 +0000 Is Reply.io Tracking Your Email? How to Block It https://www.gblock.app/articles/is-lemlist-tracking-your-email-block-2026 https://www.gblock.app/articles/is-lemlist-tracking-your-email-block-2026 Wed, 17 Jun 2026 00:00:00 +0000 Is Lemlist Tracking Your Email? How to Block It https://www.gblock.app/articles/adguard-email-tracker-blocker-vs-gblock-2026 https://www.gblock.app/articles/adguard-email-tracker-blocker-vs-gblock-2026 Wed, 17 Jun 2026 00:00:00 +0000 AdGuard Now Blocks Email Trackers—But Not in Gmail https://www.gblock.app/articles/california-ab-2564-surveillance-pricing-ban-2026 https://www.gblock.app/articles/california-ab-2564-surveillance-pricing-ban-2026 Tue, 16 Jun 2026 00:00:00 +0000 California's AB 2564 Would Be the Strictest Surveillance Pricing Ban in the Country https://www.gblock.app/articles/servicenow-kb3067321-zero-auth-api-breach-june-2026 https://www.gblock.app/articles/servicenow-kb3067321-zero-auth-api-breach-june-2026 Tue, 16 Jun 2026 00:00:00 +0000 ServiceNow's Secret Advisory Left Enterprises Unaware Their IT Data Was Exposed https://www.gblock.app/articles/fisa-702-expired-email-surveillance-continues-2026 https://www.gblock.app/articles/fisa-702-expired-email-surveillance-continues-2026 Tue, 16 Jun 2026 00:00:00 +0000 FISA 702 Expired: Your Emails Are Still Under Surveillance https://www.gblock.app/articles/is-mailerlite-tracking-your-email-block-2026 https://www.gblock.app/articles/is-mailerlite-tracking-your-email-block-2026 Tue, 16 Jun 2026 00:00:00 +0000 Is MailerLite Tracking Your Email? How to Block It https://www.gblock.app/articles/is-yesware-tracking-your-email-block-2026 https://www.gblock.app/articles/is-yesware-tracking-your-email-block-2026 Tue, 16 Jun 2026 00:00:00 +0000 Is Yesware Tracking Your Email? How to Block It https://www.gblock.app/articles/is-hubspot-tracking-your-email-block-2026 https://www.gblock.app/articles/is-hubspot-tracking-your-email-block-2026 Tue, 16 Jun 2026 00:00:00 +0000 Is HubSpot Tracking Your Email? How to Block It https://www.gblock.app/articles/california-sues-23andme-genetic-data-breach-2026 https://www.gblock.app/articles/california-sues-23andme-genetic-data-breach-2026 Mon, 15 Jun 2026 00:00:00 +0000 California Sues 23andMe Over 7 Million Genetic Profiles https://www.gblock.app/articles/cpj-mexico-journalist-email-hacked-malware-2026 https://www.gblock.app/articles/cpj-mexico-journalist-email-hacked-malware-2026 Mon, 15 Jun 2026 00:00:00 +0000 CPJ: Mexican Journalist's Email Hacked, Malware Found https://www.gblock.app/articles/ibm-apt10-breach-cover-up-whistleblower-2026 https://www.gblock.app/articles/ibm-apt10-breach-cover-up-whistleblower-2026 Mon, 15 Jun 2026 00:00:00 +0000 IBM Covered Up APT10 Hacks for a Decade, Whistleblower Says https://www.gblock.app/articles/is-kit-convertkit-tracking-your-email-block-2026 https://www.gblock.app/articles/is-kit-convertkit-tracking-your-email-block-2026 Mon, 15 Jun 2026 00:00:00 +0000 Is Kit (ConvertKit) Tracking Your Email? How to Block It https://www.gblock.app/articles/is-brevo-tracking-your-email-block-2026 https://www.gblock.app/articles/is-brevo-tracking-your-email-block-2026 Mon, 15 Jun 2026 00:00:00 +0000 Is Brevo Tracking Your Email? How to Block It https://www.gblock.app/articles/is-activecampaign-tracking-your-email-block-2026 https://www.gblock.app/articles/is-activecampaign-tracking-your-email-block-2026 Mon, 15 Jun 2026 00:00:00 +0000 Is ActiveCampaign Tracking Your Email? How to Block It https://www.gblock.app/articles/email-tracker-for-gmail-block-2026 https://www.gblock.app/articles/email-tracker-for-gmail-block-2026 Sun, 14 Jun 2026 00:00:00 +0000 Email Tracker for Gmail: Find and Block Them (2026) https://www.gblock.app/articles/is-constant-contact-tracking-your-email-block-2026 https://www.gblock.app/articles/is-constant-contact-tracking-your-email-block-2026 Sun, 14 Jun 2026 00:00:00 +0000 Is Constant Contact Tracking Your Email? How to Block It https://www.gblock.app/articles/tchap-france-government-breach-june-2026 https://www.gblock.app/articles/tchap-france-government-breach-june-2026 Sun, 14 Jun 2026 00:00:00 +0000 France's Tchap Breach Exposed 73,000 Civil Servants https://www.gblock.app/articles/rsf-world-press-freedom-index-2026 https://www.gblock.app/articles/rsf-world-press-freedom-index-2026 Sun, 14 Jun 2026 00:00:00 +0000 Press Freedom Hits 25-Year Low: RSF Index 2026 https://www.gblock.app/articles/is-outreach-tracking-your-email-block-2026 https://www.gblock.app/articles/is-outreach-tracking-your-email-block-2026 Sun, 14 Jun 2026 00:00:00 +0000 Is Outreach Tracking Your Email? How to Block It https://www.gblock.app/articles/gm-onstar-ccpa-fine-driving-data-insurers-2026 https://www.gblock.app/articles/gm-onstar-ccpa-fine-driving-data-insurers-2026 Sun, 14 Jun 2026 00:00:00 +0000 GM's $12.75M Fine: OnStar Sold Your Driving Data to Insurers https://www.gblock.app/articles/maine-breach-portal-fake-disclosures-june-2026 https://www.gblock.app/articles/maine-breach-portal-fake-disclosures-june-2026 Fri, 12 Jun 2026 00:00:00 +0000 Fake Breach Notices Planted on Maine's Official Portal https://www.gblock.app/articles/oracle-peoplesoft-zero-day-cve-2026-35273 https://www.gblock.app/articles/oracle-peoplesoft-zero-day-cve-2026-35273 Fri, 12 Jun 2026 00:00:00 +0000 Oracle PeopleSoft Zero Day Exploited by ShinyHunters https://www.gblock.app/articles/coupang-record-409-million-fine-june-2026 https://www.gblock.app/articles/coupang-record-409-million-fine-june-2026 Fri, 12 Jun 2026 00:00:00 +0000 Coupang Hit With Record $409M Fine Over Mega Breach https://www.gblock.app/articles/does-klaviyo-track-email-opens-block-2026 https://www.gblock.app/articles/does-klaviyo-track-email-opens-block-2026 Fri, 12 Jun 2026 00:00:00 +0000 Does Klaviyo Track Email Opens? How to Block It https://www.gblock.app/articles/does-google-read-your-email-2026 https://www.gblock.app/articles/does-google-read-your-email-2026 Fri, 12 Jun 2026 00:00:00 +0000 Does Google Read Your Email? What Gmail Scans in 2026 https://www.gblock.app/articles/is-right-inbox-tracking-your-email-block-2026 https://www.gblock.app/articles/is-right-inbox-tracking-your-email-block-2026 Fri, 12 Jun 2026 00:00:00 +0000 Is Right Inbox Tracking Your Email? How to Block It https://www.gblock.app/articles/microsoft-june-2026-patch-tuesday-zero-days https://www.gblock.app/articles/microsoft-june-2026-patch-tuesday-zero-days Thu, 11 Jun 2026 00:00:00 +0000 Microsoft Patches 200 Flaws and 6 Zero Days in June 2026 https://www.gblock.app/articles/stock-exchange-executive-inbox-theft-june-2026 https://www.gblock.app/articles/stock-exchange-executive-inbox-theft-june-2026 Thu, 11 Jun 2026 00:00:00 +0000 Hackers Stole a Stock Exchange Exec's Inbox for 5 Months https://www.gblock.app/articles/kaiser-microsoft-qualtrics-tracking-class-action-june-2026 https://www.gblock.app/articles/kaiser-microsoft-qualtrics-tracking-class-action-june-2026 Thu, 11 Jun 2026 00:00:00 +0000 Kaiser Member Seeks National Class Over Microsoft Tracking https://www.gblock.app/articles/is-boomerang-tracking-your-email-block-2026 https://www.gblock.app/articles/is-boomerang-tracking-your-email-block-2026 Thu, 11 Jun 2026 00:00:00 +0000 Is Boomerang Tracking Your Email? How to Block It https://www.gblock.app/articles/does-mailchimp-track-email-opens-block-2026 https://www.gblock.app/articles/does-mailchimp-track-email-opens-block-2026 Thu, 11 Jun 2026 00:00:00 +0000 Does Mailchimp Track Email Opens? How to Block It https://www.gblock.app/articles/does-vpn-stop-email-tracking-2026 https://www.gblock.app/articles/does-vpn-stop-email-tracking-2026 Thu, 11 Jun 2026 00:00:00 +0000 Does a VPN Stop Email Tracking? Only Partly (2026) https://www.gblock.app/articles/pixelblock-vs-gblock-2026 https://www.gblock.app/articles/pixelblock-vs-gblock-2026 Wed, 10 Jun 2026 00:00:00 +0000 PixelBlock vs Gblock: Which Blocks More Tracking? https://www.gblock.app/articles/best-email-tracker-blocker-extensions-2026 https://www.gblock.app/articles/best-email-tracker-blocker-extensions-2026 Wed, 10 Jun 2026 00:00:00 +0000 Best Email Tracker Blocker Extensions (2026) https://www.gblock.app/articles/is-mixmax-tracking-your-email-block-2026 https://www.gblock.app/articles/is-mixmax-tracking-your-email-block-2026 Wed, 10 Jun 2026 00:00:00 +0000 Is Mixmax Tracking Your Email? How to Block It https://www.gblock.app/articles/is-apollo-tracking-your-email-block-2026 https://www.gblock.app/articles/is-apollo-tracking-your-email-block-2026 Wed, 10 Jun 2026 00:00:00 +0000 Is Apollo.io Tracking Your Email? How to Block It https://www.gblock.app/articles/is-salesloft-tracking-your-email-block-2026 https://www.gblock.app/articles/is-salesloft-tracking-your-email-block-2026 Wed, 10 Jun 2026 00:00:00 +0000 Is Salesloft Tracking Your Email? How to Block It https://www.gblock.app/articles/arizona-spy-pixel-tucsra-class-actions-2026 https://www.gblock.app/articles/arizona-spy-pixel-tucsra-class-actions-2026 Wed, 10 Jun 2026 00:00:00 +0000 Arizona Spy Pixel Lawsuits Keep Failing in Court https://www.gblock.app/articles/is-gmass-tracking-your-email-block-2026 https://www.gblock.app/articles/is-gmass-tracking-your-email-block-2026 Tue, 09 Jun 2026 00:00:00 +0000 Is GMass Tracking Your Email? How to Block It https://www.gblock.app/articles/how-to-tell-if-email-is-being-tracked-2026 https://www.gblock.app/articles/how-to-tell-if-email-is-being-tracked-2026 Tue, 09 Jun 2026 00:00:00 +0000 How to Tell If Your Email Is Being Tracked (2026) https://www.gblock.app/articles/gmail-confidential-mode-privacy-2026 https://www.gblock.app/articles/gmail-confidential-mode-privacy-2026 Tue, 09 Jun 2026 00:00:00 +0000 Gmail Confidential Mode: Does It Protect You? https://www.gblock.app/articles/zero-click-email-tracking-beyond-pixels-2026 https://www.gblock.app/articles/zero-click-email-tracking-beyond-pixels-2026 Tue, 09 Jun 2026 00:00:00 +0000 Email Tracking Has Outgrown the Pixel (2026) https://www.gblock.app/articles/russian-hackers-gmail-app-password-mfa-bypass-2026 https://www.gblock.app/articles/russian-hackers-gmail-app-password-mfa-bypass-2026 Tue, 09 Jun 2026 00:00:00 +0000 Russian Hackers Bypass Gmail MFA With App Passwords https://www.gblock.app/articles/google-june-2026-scam-advisory-gmail-threats https://www.gblock.app/articles/google-june-2026-scam-advisory-gmail-threats Tue, 09 Jun 2026 00:00:00 +0000 Google's June 2026 Scam Advisory: 3 Gmail Threats https://www.gblock.app/articles/how-to-stop-spam-emails-gmail-2026 https://www.gblock.app/articles/how-to-stop-spam-emails-gmail-2026 Tue, 09 Jun 2026 00:00:00 +0000 How to Stop Spam Emails in Gmail (2026 Guide) https://www.gblock.app/articles/best-private-email-providers-2026 https://www.gblock.app/articles/best-private-email-providers-2026 Tue, 09 Jun 2026 00:00:00 +0000 Best Private Email Providers (2026 Comparison) https://www.gblock.app/articles/how-to-send-anonymous-email-2026 https://www.gblock.app/articles/how-to-send-anonymous-email-2026 Tue, 09 Jun 2026 00:00:00 +0000 How to Send an Anonymous Email (2026 Methods) https://www.gblock.app/articles/what-is-email-tracking-software-block-2026 https://www.gblock.app/articles/what-is-email-tracking-software-block-2026 Tue, 09 Jun 2026 00:00:00 +0000 What Is Email Tracking Software? How to Block It https://www.gblock.app/articles/email-metadata-what-it-reveals-2026 https://www.gblock.app/articles/email-metadata-what-it-reveals-2026 Tue, 09 Jun 2026 00:00:00 +0000 What Your Email Metadata Reveals About You https://www.gblock.app/articles/how-to-encrypt-email-gmail-2026 https://www.gblock.app/articles/how-to-encrypt-email-gmail-2026 Tue, 09 Jun 2026 00:00:00 +0000 How to Encrypt Email in Gmail (2026 Guide) https://www.gblock.app/articles/is-superhuman-tracking-your-email-block-2026 https://www.gblock.app/articles/is-superhuman-tracking-your-email-block-2026 Mon, 08 Jun 2026 00:00:00 +0000 Is Superhuman Tracking Your Email? How to Block It https://www.gblock.app/articles/stop-email-tracking-apple-mail-outlook-2026 https://www.gblock.app/articles/stop-email-tracking-apple-mail-outlook-2026 Mon, 08 Jun 2026 00:00:00 +0000 How to Stop Email Tracking in Apple Mail and Outlook https://www.gblock.app/articles/can-someone-tell-if-you-read-their-email-2026 https://www.gblock.app/articles/can-someone-tell-if-you-read-their-email-2026 Mon, 08 Jun 2026 00:00:00 +0000 Can Someone Tell If You Read Their Email? https://www.gblock.app/articles/email-open-tracking-vs-click-tracking-2026 https://www.gblock.app/articles/email-open-tracking-vs-click-tracking-2026 Mon, 08 Jun 2026 00:00:00 +0000 Email Open Tracking vs Click Tracking Explained https://www.gblock.app/articles/tracking-pixels-phishing-recon-live-inbox-2026 https://www.gblock.app/articles/tracking-pixels-phishing-recon-live-inbox-2026 Mon, 08 Jun 2026 00:00:00 +0000 Hackers Use Tracking Pixels to Find Live Inboxes https://www.gblock.app/articles/is-it-safe-to-click-unsubscribe-email-tracking-2026 https://www.gblock.app/articles/is-it-safe-to-click-unsubscribe-email-tracking-2026 Mon, 08 Jun 2026 00:00:00 +0000 Is It Safe to Click "Unsubscribe" in Email? https://www.gblock.app/articles/email-tracking-pixel-lawsuits-cipa-wiretapping-2026 https://www.gblock.app/articles/email-tracking-pixel-lawsuits-cipa-wiretapping-2026 Sun, 07 Jun 2026 00:00:00 +0000 Email Pixel Lawsuits Surge: Inside the 2026 CIPA Wave https://www.gblock.app/articles/ai-phishing-82-percent-email-attacks-2026 https://www.gblock.app/articles/ai-phishing-82-percent-email-attacks-2026 Sun, 07 Jun 2026 00:00:00 +0000 AI Now Writes 82% of Phishing Emails Hitting Inboxes https://www.gblock.app/articles/gmail-48-million-logins-infostealer-database-2026 https://www.gblock.app/articles/gmail-48-million-logins-infostealer-database-2026 Sun, 07 Jun 2026 00:00:00 +0000 Gmail: 48 Million Logins Found in Infostealer Dump https://www.gblock.app/articles/gmail-read-receipts-how-they-work-block https://www.gblock.app/articles/gmail-read-receipts-how-they-work-block Sun, 07 Jun 2026 00:00:00 +0000 Gmail Read Receipts: How They Work and How to Block https://www.gblock.app/articles/is-your-gmail-tracked-streak-yesware-hubspot https://www.gblock.app/articles/is-your-gmail-tracked-streak-yesware-hubspot Sun, 07 Jun 2026 00:00:00 +0000 Is Your Gmail Tracked? Streak, Yesware & HubSpot https://www.gblock.app/articles/ugly-email-pixelblock-trocker-alternatives-2026 https://www.gblock.app/articles/ugly-email-pixelblock-trocker-alternatives-2026 Sun, 07 Jun 2026 00:00:00 +0000 Ugly Email vs PixelBlock vs Trocker (2026 Compared) https://www.gblock.app/articles/is-mailtrack-safe-block-gmail-2026 https://www.gblock.app/articles/is-mailtrack-safe-block-gmail-2026 Fri, 05 Jun 2026 00:00:00 +0000 Is Mailtrack Safe? How to Block It in Gmail (2026) https://www.gblock.app/articles/circia-cisa-town-halls-reporting-rule-june-2026 https://www.gblock.app/articles/circia-cisa-town-halls-reporting-rule-june-2026 Fri, 05 Jun 2026 00:00:00 +0000 CIRCIA Town Halls Set: Cyber Reporting Rule Lands Soon https://www.gblock.app/articles/whoop-oura-bipa-biometric-class-actions-2026 https://www.gblock.app/articles/whoop-oura-bipa-biometric-class-actions-2026 Fri, 05 Jun 2026 00:00:00 +0000 Whoop and Oura Sued: Fitness Bands Leak Biometrics https://www.gblock.app/articles/erie-family-health-570k-chicago-breach-june-2026 https://www.gblock.app/articles/erie-family-health-570k-chicago-breach-june-2026 Fri, 05 Jun 2026 00:00:00 +0000 Erie Family Health Breach Hits 570K Chicago Patients https://www.gblock.app/articles/mirasvit-magento-cve-2026-45247-kev-june-2026 https://www.gblock.app/articles/mirasvit-magento-cve-2026-45247-kev-june-2026 Fri, 05 Jun 2026 00:00:00 +0000 Magento Cache Warmer RCE: CVE-2026-45247 Hits Stores https://www.gblock.app/articles/oracle-weblogic-cve-2024-21182-kev-june-2026 https://www.gblock.app/articles/oracle-weblogic-cve-2024-21182-kev-june-2026 Fri, 05 Jun 2026 00:00:00 +0000 CISA KEV: 2-Year-Old Oracle WebLogic Bug Now Exploited https://www.gblock.app/articles/email-tracker-chrome-extensions https://www.gblock.app/articles/email-tracker-chrome-extensions Thu, 04 Jun 2026 00:00:00 +0000 Email Tracker Chrome Extensions (and How to Block Them) https://www.gblock.app/articles/how-to-block-email-tracking-in-gmail https://www.gblock.app/articles/how-to-block-email-tracking-in-gmail Thu, 04 Jun 2026 00:00:00 +0000 How to Block Email Tracking in Gmail (2026 Comparison) https://www.gblock.app/articles/nist-nvd-inspector-general-27k-backlog-june-2026 https://www.gblock.app/articles/nist-nvd-inspector-general-27k-backlog-june-2026 Thu, 04 Jun 2026 00:00:00 +0000 Inspector General: NIST's NVD Is Failing Security Teams https://www.gblock.app/articles/atlas-rat-ta4922-china-europe-phishing-june-2026 https://www.gblock.app/articles/atlas-rat-ta4922-china-europe-phishing-june-2026 Thu, 04 Jun 2026 00:00:00 +0000 Atlas RAT: Chinese Group TA4922 Phishes Europe via WhatsApp https://www.gblock.app/articles/cisa-ai-binding-operational-directive-june-2026 https://www.gblock.app/articles/cisa-ai-binding-operational-directive-june-2026 Thu, 04 Jun 2026 00:00:00 +0000 CISA AI Directive Targets Federal Vulnerability Gaps https://www.gblock.app/articles/microsoft-exchange-online-mail-outage-june-2026 https://www.gblock.app/articles/microsoft-exchange-online-mail-outage-june-2026 Thu, 04 Jun 2026 00:00:00 +0000 Exchange Online Down: Mail Stalls Across 3 Continents https://www.gblock.app/articles/android-cve-2025-48595-active-zero-day-june-2026 https://www.gblock.app/articles/android-cve-2025-48595-active-zero-day-june-2026 Thu, 04 Jun 2026 00:00:00 +0000 Android Zero Day CVE-2025-48595 Under Active Attack https://www.gblock.app/articles/dashlane-2fa-brute-force-vault-theft-june-2026 https://www.gblock.app/articles/dashlane-2fa-brute-force-vault-theft-june-2026 Thu, 04 Jun 2026 00:00:00 +0000 Dashlane: Hackers Brute Forced 2FA, Stole 12 Vaults https://www.gblock.app/articles/europrivacy-gdpr-certification-global-edpb-june-2026 https://www.gblock.app/articles/europrivacy-gdpr-certification-global-edpb-june-2026 Wed, 03 Jun 2026 00:00:00 +0000 Europrivacy GDPR Seal Now Open to Non-EU Companies https://www.gblock.app/articles/atlas-menu-cheat-service-gta-v-64k-breach-june-2026 https://www.gblock.app/articles/atlas-menu-cheat-service-gta-v-64k-breach-june-2026 Wed, 03 Jun 2026 00:00:00 +0000 Atlas Menu Cheat Service Leaked 64K GTA V Users https://www.gblock.app/articles/sophos-ai-malware-lab-edr-evasion-claude-opus-june-2026 https://www.gblock.app/articles/sophos-ai-malware-lab-edr-evasion-claude-opus-june-2026 Wed, 03 Jun 2026 00:00:00 +0000 Sophos Found a Live AI Malware Lab Hunting EDR Bypasses https://www.gblock.app/articles/spain-granada-doxxer-government-officials-arrest-june-2026 https://www.gblock.app/articles/spain-granada-doxxer-government-officials-arrest-june-2026 Wed, 03 Jun 2026 00:00:00 +0000 Granada Hacker Doxxed Spain's Police and Prosecutors https://www.gblock.app/articles/il-ct-ny-ai-privacy-bills-finish-line-june-2026 https://www.gblock.app/articles/il-ct-ny-ai-privacy-bills-finish-line-june-2026 Wed, 03 Jun 2026 00:00:00 +0000 Illinois, Connecticut, NY Pass 4 AI Privacy Laws https://www.gblock.app/articles/meta-ai-bot-instagram-account-takeover-june-2026 https://www.gblock.app/articles/meta-ai-bot-instagram-account-takeover-june-2026 Wed, 03 Jun 2026 00:00:00 +0000 Meta's AI Bot Handed Hackers Instagram Accounts https://www.gblock.app/articles/ofcom-youngtek-600k-online-safety-act-fine-may-2026 https://www.gblock.app/articles/ofcom-youngtek-600k-online-safety-act-fine-may-2026 Tue, 02 Jun 2026 00:00:00 +0000 Ofcom Fines Youngtek £600K Under UK Online Safety Act https://www.gblock.app/articles/sysdig-marimo-llm-agent-first-in-wild-intrusion-may-2026 https://www.gblock.app/articles/sysdig-marimo-llm-agent-first-in-wild-intrusion-may-2026 Tue, 02 Jun 2026 00:00:00 +0000 Sysdig: First In-Wild LLM Agent Attack via Marimo CVE https://www.gblock.app/articles/mansoura-university-egypt-1m-student-breach-may-2026 https://www.gblock.app/articles/mansoura-university-egypt-1m-student-breach-may-2026 Tue, 02 Jun 2026 00:00:00 +0000 Mansoura University: 1M Egyptian Student Records for Sale https://www.gblock.app/articles/hard-to-see-harder-to-block-ieee-tracking-pixel-study-2026 https://www.gblock.app/articles/hard-to-see-harder-to-block-ieee-tracking-pixel-study-2026 Tue, 02 Jun 2026 00:00:00 +0000 IEEE Study: 44K Emails Show Pixel Blockers Easily Evaded https://www.gblock.app/articles/miasma-redhat-npm-supply-chain-worm-june-2026 https://www.gblock.app/articles/miasma-redhat-npm-supply-chain-worm-june-2026 Tue, 02 Jun 2026 00:00:00 +0000 Miasma Worm Hits 32 Red Hat npm Packages on June 1 https://www.gblock.app/articles/windows-netlogon-cve-2026-41089-rce-active-exploitation-june-2026 https://www.gblock.app/articles/windows-netlogon-cve-2026-41089-rce-active-exploitation-june-2026 Tue, 02 Jun 2026 00:00:00 +0000 Netlogon CVE-2026-41089: 0-Click Domain Controller RCE https://www.gblock.app/articles/reservation-hijack-350-hotels-clickfix-booking-partners-may-2026 https://www.gblock.app/articles/reservation-hijack-350-hotels-clickfix-booking-partners-may-2026 Mon, 01 Jun 2026 00:00:00 +0000 350 Hotels Compromised, 6M Guest Stays Get Phishing Emails https://www.gblock.app/articles/chatgpt-share-links-llmshare-malware-push-security-may-2026 https://www.gblock.app/articles/chatgpt-share-links-llmshare-malware-push-security-may-2026 Mon, 01 Jun 2026 00:00:00 +0000 Hackers Hide Malware Inside Real ChatGPT.com Share Links https://www.gblock.app/articles/california-ag-sues-23andme-2023-breach-7m-users https://www.gblock.app/articles/california-ag-sues-23andme-2023-breach-7m-users Mon, 01 Jun 2026 00:00:00 +0000 California AG Sues 23andMe Over 2023 Genetic Data Breach https://www.gblock.app/articles/pay-tel-prison-phone-300k-drivers-license-azure-leak https://www.gblock.app/articles/pay-tel-prison-phone-300k-drivers-license-azure-leak Mon, 01 Jun 2026 00:00:00 +0000 Pay Tel Left 300K Inmate Driver's Licenses in an Open Azure Bucket https://www.gblock.app/articles/uk-visa-portal-100k-passport-selfie-leak-may-2026 https://www.gblock.app/articles/uk-visa-portal-100k-passport-selfie-leak-may-2026 Mon, 01 Jun 2026 00:00:00 +0000 UK Visa Portal Leaked 100,000 Passports and Selfies Online https://www.gblock.app/articles/lithuania-600k-state-registry-credentials-breach-may-2026 https://www.gblock.app/articles/lithuania-600k-state-registry-credentials-breach-may-2026 Mon, 01 Jun 2026 00:00:00 +0000 Lithuania Lost 600K Land Registry Records to Stolen Logins https://www.gblock.app/articles/vpmdhaj-14-npm-opensearch-typosquat-microsoft-may-2026 https://www.gblock.app/articles/vpmdhaj-14-npm-opensearch-typosquat-microsoft-may-2026 Sun, 31 May 2026 00:00:00 +0000 Microsoft Caught 14 OpenSearch Typosquats Stealing CI/CD Secrets https://www.gblock.app/articles/palo-alto-globalprotect-cve-2026-0257-kev-may-2026 https://www.gblock.app/articles/palo-alto-globalprotect-cve-2026-0257-kev-may-2026 Sun, 31 May 2026 00:00:00 +0000 Palo Alto CVE-2026-0257: One Reused Certificate Bypasses VPN Auth https://www.gblock.app/articles/signal-backup-recovery-key-phishing-anti-ccp-may-2026 https://www.gblock.app/articles/signal-backup-recovery-key-phishing-anti-ccp-may-2026 Sun, 31 May 2026 00:00:00 +0000 Fake Signal Support Is Asking Activists for Their Backup Key https://www.gblock.app/articles/greyvibe-russian-ai-phishing-ukraine-withsecure-may-2026 https://www.gblock.app/articles/greyvibe-russian-ai-phishing-ukraine-withsecure-may-2026 Sun, 31 May 2026 00:00:00 +0000 GreyVibe Used ChatGPT to Phish Ukraine for 9 Months https://www.gblock.app/articles/chatgphish-permiso-chatgpt-markdown-rendering-phishing-may-2026 https://www.gblock.app/articles/chatgphish-permiso-chatgpt-markdown-rendering-phishing-may-2026 Sun, 31 May 2026 00:00:00 +0000 ChatGPhish Lets a Web Page Phish You Through ChatGPT https://www.gblock.app/articles/carnival-6m-shinyhunters-mariner-society-phishing-may-2026 https://www.gblock.app/articles/carnival-6m-shinyhunters-mariner-society-phishing-may-2026 Sun, 31 May 2026 00:00:00 +0000 Carnival Confirms 6M Breach From a Phished Employee Login https://www.gblock.app/articles/mexican-journalist-maria-teresa-montano-spyware-may-2026 https://www.gblock.app/articles/mexican-journalist-maria-teresa-montano-spyware-may-2026 Fri, 29 May 2026 00:00:00 +0000 Maria Teresa Montaño Delgado Found an Unknown Device Logged Into Her Email on April 29 and Files She Did Not Recognize on Her Laptop—CPJ Raised the Alarm on May 19 and Asked Mexico to Investigate the Possible Surveillance of a 2023 International Press Freedom Award Recipient Who Has Already Been Kidnapped Once https://www.gblock.app/articles/mouse5212-super-formatter-npm-claude-ai-stealer-may-2026 https://www.gblock.app/articles/mouse5212-super-formatter-npm-claude-ai-stealer-may-2026 Fri, 29 May 2026 00:00:00 +0000 An AI Generated npm Package Called mouse5212-super-formatter Walked Out With Every File in Claude's /mnt/user-data Directory From 676 Developers Before OX Security Caught It on May 27—And Because the Attacker Hardcoded Their Own GitHub Private Token Into the Malware, Researchers Could Read the Stolen Files Right Back https://www.gblock.app/articles/onlyfans-340m-compiled-leak-euphoric-reply-may-2026 https://www.gblock.app/articles/onlyfans-340m-compiled-leak-euphoric-reply-may-2026 Fri, 29 May 2026 00:00:00 +0000 A Threat Actor Named Euphoric_Reply_5727 Just Posted a 340 Million Record OnlyFans Database for 0.313 BTC (~$76,000) on a Cybercrime Forum—But the Seller Admitted in Private Messages It Was Built by Matching Public OnlyFans Profiles to Records From Old Twitter, Instagram, and Spotify Breaches, Not From a New Hack https://www.gblock.app/articles/connecticut-sb4-data-broker-deletion-surveillance-pricing-may-2026 https://www.gblock.app/articles/connecticut-sb4-data-broker-deletion-surveillance-pricing-may-2026 Fri, 29 May 2026 00:00:00 +0000 Connecticut Just Passed SB4 By 141-6 in the House and 31-4 in the Senate—Forcing Every Data Broker to Register With the State, Letting You Wipe Your Records From the Whole Industry Through One Free Deletion Request, Banning Surveillance Pricing, and Sending the Bill to Governor Ned Lamont's Desk On May 4 https://www.gblock.app/articles/cpj-amicus-brief-pegasus-whatsapp-ninth-circuit-may-2026 https://www.gblock.app/articles/cpj-amicus-brief-pegasus-whatsapp-ninth-circuit-may-2026 Fri, 29 May 2026 00:00:00 +0000 Eleven Civil Society Groups Led By Access Now Just Asked the Ninth Circuit to Keep NSO Group Off WhatsApp Forever—Because the 2025 Permanent Injunction Is the Last Line Between End to End Encryption and the Pegasus Spyware That Already Reached 1,400 Journalists, Activists, and Lawyers Across 20 Countries https://www.gblock.app/articles/purelogs-pawsrunner-cat-photo-steganography-may-2026 https://www.gblock.app/articles/purelogs-pawsrunner-cat-photo-steganography-may-2026 Fri, 29 May 2026 00:00:00 +0000 Hackers Are Hiding Credential Stealers Inside Cat Photo Emails—Fortinet Caught PawsRunner Pulling PureLogs Out of PNG Files Using iTXt and IEND Steganography Markers, And the C2 at 5.101.84.202 Has Been Hitting Inboxes Since May 15 https://www.gblock.app/articles/operation-hookedwing-four-year-phishing-500-orgs-may-2026 https://www.gblock.app/articles/operation-hookedwing-four-year-phishing-500-orgs-may-2026 Thu, 28 May 2026 00:00:00 +0000 SOCRadar Just Exposed Operation HookedWing—a Quiet Four Year Phishing Campaign That Pulled More Than 2,000 Credentials From 500 Organizations in Aviation, Energy, Government, and Finance Across Eight Sectors and Two Languages, Routed Through Two Dozen C2 Servers, Over 100 GitHub Domains, and a Custom Outlook Clone Nobody Has Attributed to a Known Threat Actor https://www.gblock.app/articles/gitea-cve-2026-27771-private-container-images-four-years https://www.gblock.app/articles/gitea-cve-2026-27771-private-container-images-four-years Thu, 28 May 2026 00:00:00 +0000 Gitea Quietly Published a Container Registry That Ignored the 'Private' Flag for Nearly Four Years—Any Anonymous Visitor Could Pull Private Container Images From 31,750 Deployments in Healthcare, Aerospace, Retail, and ISPs Worldwide Before Noscope's Autonomous Pentester Found CVE-2026-27771 https://www.gblock.app/articles/glassworm-botnet-takedown-crowdstrike-google-solana-may-2026 https://www.gblock.app/articles/glassworm-botnet-takedown-crowdstrike-google-solana-may-2026 Thu, 28 May 2026 00:00:00 +0000 CrowdStrike, Google, and Shadowserver Pulled the Plug on Glassworm at 14:00 UTC on May 26—a Russia Linked Developer Targeting Botnet That Hid Its Command and Control Channels Inside Solana Transaction Memo Fields, Google Calendar Event Titles, BitTorrent DHT Records, and VPS Backups, Poisoned More Than 300 GitHub Repositories, and Trojanized VSCode Extensions on OpenVSX for Over Two Years https://www.gblock.app/articles/microsoft-defender-redsun-undefend-zero-days-may-2026 https://www.gblock.app/articles/microsoft-defender-redsun-undefend-zero-days-may-2026 Thu, 28 May 2026 00:00:00 +0000 Microsoft Just Patched Two Defender Zero Days a Researcher Dropped Without Coordination—RedSun (CVE-2026-41091) Escalates a Normal User to SYSTEM, UnDefend (CVE-2026-45498) Quietly Stops Virus Definition Updates So the Antivirus Rots in Place, and CISA Gave Federal Agencies Until June 3 to Fix Both https://www.gblock.app/articles/silent-ransom-group-law-firms-in-person-fbi-may-2026 https://www.gblock.app/articles/silent-ransom-group-law-firms-in-person-fbi-may-2026 Thu, 28 May 2026 00:00:00 +0000 The FBI Just Warned That a Russia Linked Extortion Crew Is Sending Operatives Into US Law Firm Lobbies When Phishing Fails—Silent Ransom Group Walks In Posing as IT, Plugs a USB Drive Into the First Workstation a Receptionist Will Show Them, and Walks Out With Attorney Client Files Antivirus Never Saw https://www.gblock.app/articles/charter-shinyhunters-40m-salesforce-vishing-breach-may-2026 https://www.gblock.app/articles/charter-shinyhunters-40m-salesforce-vishing-breach-may-2026 Thu, 28 May 2026 00:00:00 +0000 A Single Phone Call Cost Charter Communications 40 Million Customer Records—ShinyHunters Walked Into the Spectrum Salesforce Through One Vished Microsoft Entra Account on April 1 and Spent Eight Weeks Inside Before Charter Said a Word https://www.gblock.app/articles/italy-garante-email-tracking-pixel-rules-may-2026 https://www.gblock.app/articles/italy-garante-email-tracking-pixel-rules-may-2026 Wed, 27 May 2026 00:00:00 +0000 Italy's Garante Published Provision No. 284 on April 17, 2026 Requiring Prior Consent for Email Tracking Pixels That Measure Open Rates—Senders Get Six Months From the April 29 Official Gazette Date to Comply, the Same Month Italy Issued a €12.5M GDPR Fine Against Poste Italiane https://www.gblock.app/articles/gmail-gemini-summarize-prompt-injection-phishing-may-2026 https://www.gblock.app/articles/gmail-gemini-summarize-prompt-injection-phishing-may-2026 Wed, 27 May 2026 00:00:00 +0000 A Prompt Injection Flaw in Google Gemini for Workspace Lets Attackers Hide Invisible Instructions Inside an Email So That Clicking Summarize This Email Makes Gemini Append a Fake Password Compromised Phishing Warning—With No Visible Text, No Link, and No Attachment for a Spam Filter to Catch, Across Roughly 2 Billion Gmail Users https://www.gblock.app/articles/gmail-google-notification-system-crypto-phishing-may-2026 https://www.gblock.app/articles/gmail-google-notification-system-crypto-phishing-may-2026 Wed, 27 May 2026 00:00:00 +0000 A New Crypto Phishing Campaign Abuses Google's Own Account Recovery Flow to Send Real System Emails That Pass SPF, DKIM, and DMARC—The Malicious Link Is Buried Below Pages of Blank Space, and Binance Says It Blocked 22.9 Million Scam Attempts in Q1 2026 Alone https://www.gblock.app/articles/nyc-health-hospitals-biometric-breach-1-8m-may-2026 https://www.gblock.app/articles/nyc-health-hospitals-biometric-breach-1-8m-may-2026 Wed, 27 May 2026 00:00:00 +0000 NYC Health + Hospitals, the Largest US Public Health System, Says an Unauthorized Actor Sat Inside Its Network From Late November 2025 to February 2, 2026 and Copied the Personal, Medical, Financial, and Biometric Data—Including Fingerprints and Palm Prints—of at Least 1.8 Million People https://www.gblock.app/articles/wifi-signal-person-identification-surveillance-study-may-2026 https://www.gblock.app/articles/wifi-signal-person-identification-surveillance-study-may-2026 Wed, 27 May 2026 00:00:00 +0000 German Researchers at KIT Identified People With Nearly 100% Accuracy Using Ordinary WiFi—No Phone, No Device, No Password—By Reading How an Unencrypted Stream of Router Feedback Data Bends Around the Human Body, and They Warn Every Router Could Become Invisible Surveillance Infrastructure https://www.gblock.app/articles/russia-signal-account-hijack-spyware-investigator-may-2026 https://www.gblock.app/articles/russia-signal-account-hijack-spyware-investigator-may-2026 Wed, 27 May 2026 00:00:00 +0000 A Spyware Investigator at Amnesty International Exposed Russian Government Hackers Trying to Hijack Signal Accounts—The Campaign Abuses Signal's Legitimate Linked Device QR Code Feature to Silently Mirror Messages, Targeted More Than 13,500 People Including Journalists and Politicians, and Bypasses End to End Encryption Without Breaking the Cryptography https://www.gblock.app/articles/google-425-million-verdict-app-tracking-opt-out-may-2026 https://www.gblock.app/articles/google-425-million-verdict-app-tracking-opt-out-may-2026 Wed, 27 May 2026 00:00:00 +0000 A California Federal Jury Ordered Google to Pay More Than $425 Million to 98 Million Users Who Turned Off the Web & App Activity Setting and Were Tracked Anyway—The Verdict Lands in the Same Year as a $135 Million Android Settlement, a New RTB Control, and a $1.375 Billion Texas Payout https://www.gblock.app/articles/google-topics-api-reidentification-cmu-study-may-2026 https://www.gblock.app/articles/google-topics-api-reidentification-cmu-study-may-2026 Wed, 27 May 2026 00:00:00 +0000 A Carnegie Mellon CyLab Study Showed That Google's Topics API and Other Privacy-Preserving Interest Buckets Still Re-Identify Individuals—34% Accuracy on Web Browsing and Over 95% on Music Listening—Because a Transformer Reading the Sequence of Your Topics Over Time Is All It Takes to Pick You Out https://www.gblock.app/articles/signal-canada-bill-c-22-lawful-access-metadata-may-2026 https://www.gblock.app/articles/signal-canada-bill-c-22-lawful-access-metadata-may-2026 Tue, 26 May 2026 00:00:00 +0000 Signal Said It Will Leave Canada Before Complying With Bill C-22's 12 Month Metadata Retention Rule—And the US House GOP Just Sent Ottawa a Letter Warning the Bill Threatens American National Security Too https://www.gblock.app/articles/dhs-ice-paragon-spyware-denial-may-2026 https://www.gblock.app/articles/dhs-ice-paragon-spyware-denial-may-2026 Tue, 26 May 2026 00:00:00 +0000 DHS Said on May 22 That ICE Has 'No Relationship' With Paragon Solutions—But the Agency Refused to Say Whether It Switched to a Different Spyware Vendor, and ICE's Outgoing Director Already Confirmed Homeland Security Investigations Is Using Commercial Spyware https://www.gblock.app/articles/cox-media-active-listening-ftc-settlement-may-2026 https://www.gblock.app/articles/cox-media-active-listening-ftc-settlement-may-2026 Tue, 26 May 2026 00:00:00 +0000 The FTC Just Settled With Cox Media Group, MindSift, and 1010 Digital Works for $930,000 on May 21—They Sold an 'Active Listening' AI Service That Was Supposed to Target Ads Based on Conversations Captured From Smart Device Microphones, and the FTC Says the Conversations Never Happened https://www.gblock.app/articles/whatsapp-zero-click-account-takeover-ios-16-may-2026 https://www.gblock.app/articles/whatsapp-zero-click-account-takeover-ios-16-may-2026 Tue, 26 May 2026 00:00:00 +0000 A New Zero Click WhatsApp Takeover Hijacks iPhone Accounts Running iOS 16 With No Warning, No Linked Device Prompt, and No User Interaction—Victims Only Find Out When They Are Suddenly Logged Out, and the Attacker Keeps the Account on the Original Device https://www.gblock.app/articles/ghost-cms-cve-2026-26980-clickfix-700-sites-may-2026 https://www.gblock.app/articles/ghost-cms-cve-2026-26980-clickfix-700-sites-may-2026 Tue, 26 May 2026 00:00:00 +0000 Attackers Chained a 9.4 Severity Ghost CMS SQL Injection Bug to Seed ClickFix Malware on More Than 700 Unpatched Sites—Including Harvard University, Oxford University, Auburn University, and DuckDuckGo, Each Briefly Serving a Fake Cloudflare Prompt That Ran a Shell Command on Visiting Windows Machines https://www.gblock.app/articles/covenant-health-qilin-ransomware-480k-may-2026 https://www.gblock.app/articles/covenant-health-qilin-ransomware-480k-may-2026 Tue, 26 May 2026 00:00:00 +0000 Qilin Sat Inside Covenant Health's Hospital Network From May 18 to May 26 and Walked Out With the Records of 480,000 Patients Across Two Hospitals in Maine and One in New Hampshire—St. Mary's Labs Processed Paper Orders, and St. Joseph in New Hampshire Shut Its Satellite Services to Keep the Main Hospital Running https://www.gblock.app/articles/meta-breathitt-county-kentucky-school-mental-health-may-2026 https://www.gblock.app/articles/meta-breathitt-county-kentucky-school-mental-health-may-2026 Tue, 26 May 2026 00:00:00 +0000 Meta Just Settled With a 2,800 Student Kentucky School District Three Weeks Before a June 15 Federal Trial That Asked Mark Zuckerberg's Company to Pay $60 Million Toward a 15 Year Mental Health Program—And 1,200 Other School Districts Are Still in Line Behind Breathitt County https://www.gblock.app/articles/cisa-kev-nomination-form-researchers-may-2026 https://www.gblock.app/articles/cisa-kev-nomination-form-researchers-may-2026 Tue, 26 May 2026 00:00:00 +0000 CISA Opened Its Known Exploited Vulnerabilities Catalog to Outside Researchers on May 21 With a Structured Nomination Form—The Agency That Previously Took Submissions by Email at vulnerability@cisa.dhs.gov Now Wants the Data Fields Filled In Before It Triages the Report https://www.gblock.app/articles/ai-bug-hunter-slop-linux-dirty-frag-copy-fail-fragesia-may-2026 https://www.gblock.app/articles/ai-bug-hunter-slop-linux-dirty-frag-copy-fail-fragesia-may-2026 Mon, 25 May 2026 00:00:00 +0000 Linux Just Got Two Local Privilege Escalation Bugs in One Week—Both AI Discovered, and the OpenSSF's Christopher Robinson Says 30% of the Security Reports He Triages Are Duplicates From People Running the Same Scanners https://www.gblock.app/articles/eu-commission-high-risk-ai-guidelines-may-2026 https://www.gblock.app/articles/eu-commission-high-risk-ai-guidelines-may-2026 Mon, 25 May 2026 00:00:00 +0000 The EU Commission Just Missed Its February Deadline for the High Risk AI Guidelines—Released the Draft on May 19, Three Months Late, With Compliance Now Bumped to December 2027 and August 2028 After 110 European Businesses Lobbied for the Extension https://www.gblock.app/articles/bandcampro-jailbroken-gemini-maga-crypto-fraud-may-2026 https://www.gblock.app/articles/bandcampro-jailbroken-gemini-maga-crypto-fraud-may-2026 Mon, 25 May 2026 00:00:00 +0000 A Russian Speaking Fraudster Just Spent Eight Months Running a MAGA Themed Crypto Scam With 73 Stolen Google Gemini Keys—And Drained Victim Wallets With AI Generated Q Drop Style Phishing Across 40 Plus Blockchain Addresses https://www.gblock.app/articles/chromium-service-worker-botnet-bug-leaked-may-2026 https://www.gblock.app/articles/chromium-service-worker-botnet-bug-leaked-may-2026 Mon, 25 May 2026 00:00:00 +0000 Google Marked a Chromium Botnet Bug 'Fixed' Three Months Ago Without Patching It—Then Accidentally Opened the Whole Disclosure to the Public on May 20, And the Exploit Still Works on Chrome and Edge Today https://www.gblock.app/articles/underminr-dns-domain-fronting-88m-cdn-may-2026 https://www.gblock.app/articles/underminr-dns-domain-fronting-88m-cdn-may-2026 Mon, 25 May 2026 00:00:00 +0000 Underminr Just Made Domain Fronting Work Again on 88 Million Domains—Researchers Showed Attackers Can Route Command and Control Traffic Through Trusted CDN Tenants Without Setting Off Any Protective DNS Filter https://www.gblock.app/articles/kimwolf-jacob-butler-dort-30-tbps-ddos-arrest-may-2026 https://www.gblock.app/articles/kimwolf-jacob-butler-dort-30-tbps-ddos-arrest-may-2026 Mon, 25 May 2026 00:00:00 +0000 The 23 Year Old From Ottawa Behind the Largest DDoS Attack in History—30 Terabits a Second From a Botnet of Digital Photo Frames and Webcams—Just Got Arrested After Krebs Named Him in February https://www.gblock.app/articles/microsoft-msonlineservicesteam-phishing-spam-may-2026 https://www.gblock.app/articles/microsoft-msonlineservicesteam-phishing-spam-may-2026 Mon, 25 May 2026 00:00:00 +0000 Scammers Have Been Sending Phishing From msonlineservicesteam@microsoftonline.com for Months—The Exact Microsoft Address That Sends Your Real Account Alerts, And Spamhaus Says Microsoft's Own Verification Systems Are Letting It Pass https://www.gblock.app/articles/verizon-dbir-2026-31-percent-exploits-breaches https://www.gblock.app/articles/verizon-dbir-2026-31-percent-exploits-breaches Mon, 25 May 2026 00:00:00 +0000 Verizon Just Said 31% of Breaches Started With an Exploited Bug Last Year—Up From 20%—And the Companies It Studied Are Patching Only 26% of the Critical Ones, in a Median of 43 Days https://www.gblock.app/articles/italy-cinemagoal-piracy-300m-streaming-credential-harvest-may-2026 https://www.gblock.app/articles/italy-cinemagoal-piracy-300m-streaming-credential-harvest-may-2026 Sun, 24 May 2026 00:00:00 +0000 Italy's Guardia di Finanza Just Dismantled the CINEMAGOAL Piracy App That Was Scraping Fresh Netflix, Disney+, Spotify, Sky, and DAZN Decryption Keys From Real Subscriptions Every Three Minutes—And Sent Penalty Letters to 1,000 of Its Subscribers for Up to €5,000 Each https://www.gblock.app/articles/kali365-phaas-fbi-microsoft-365-device-code-phishing-may-2026 https://www.gblock.app/articles/kali365-phaas-fbi-microsoft-365-device-code-phishing-may-2026 Sun, 24 May 2026 00:00:00 +0000 The FBI Just Warned That Kali365 Is the First Microsoft 365 Phishing Service That Bypasses MFA Without Ever Asking for a Password—Victims Complete the Real Microsoft Login Flow Themselves and Hand Over OAuth Tokens That Survive Every Additional Check https://www.gblock.app/articles/ubiquiti-unifi-os-three-max-severity-cves-may-2026 https://www.gblock.app/articles/ubiquiti-unifi-os-three-max-severity-cves-may-2026 Sun, 24 May 2026 00:00:00 +0000 Ubiquiti Just Patched Three Maximum Severity Bugs in UniFi OS That Let an Unauthenticated Remote Attacker Take Over the Console Sitting at the Front of Roughly 100,000 Internet Exposed Networks—Half of Them in the United States https://www.gblock.app/articles/netherlands-stark-industries-800-servers-seized-may-2026 https://www.gblock.app/articles/netherlands-stark-industries-800-servers-seized-may-2026 Sun, 24 May 2026 00:00:00 +0000 The Netherlands Just Seized 800 Servers From Stark Industries—the Bulletproof Hoster That Already Got EU Sanctioned a Year Ago for Renting Infrastructure to Russian Hacktivists, Disinformation Operations, and a DDoS Campaign Against a Danish Water Utility https://www.gblock.app/articles/remus-infostealer-password-manager-session-theft-may-2026 https://www.gblock.app/articles/remus-infostealer-password-manager-session-theft-may-2026 Sun, 24 May 2026 00:00:00 +0000 REMUS Is the First Commercial Infostealer That Pulls 1Password, LastPass, and Bitwarden Extension Data Out of IndexedDB—and Resolves Its C2 Through an Ethereum Smart Contract Nobody Can Take Down https://www.gblock.app/articles/trend-micro-apex-one-cve-2026-34926-kev-may-2026 https://www.gblock.app/articles/trend-micro-apex-one-cve-2026-34926-kev-may-2026 Sun, 24 May 2026 00:00:00 +0000 Trend Micro Just Patched a Zero Day That Lets an Attacker Use Apex One's Own Update Pipeline as a Malware Delivery System—CISA Gave Federal Agencies Two Weeks https://www.gblock.app/articles/trump-mobile-27k-customer-data-leak-may-2026 https://www.gblock.app/articles/trump-mobile-27k-customer-data-leak-may-2026 Sun, 24 May 2026 00:00:00 +0000 A Self Taught Tinkerer Walked Out With 5,000 Trump Mobile Customer Records in One Hour—and the Whole 27,000 Customer Database Was One More Loop Away From Being Public https://www.gblock.app/articles/laravel-lang-supply-chain-700-versions-credential-theft-may-2026 https://www.gblock.app/articles/laravel-lang-supply-chain-700-versions-credential-theft-may-2026 Sun, 24 May 2026 00:00:00 +0000 An Attacker Spent Friday Night Rewriting 700 Git Tags Inside Laravel Lang—Every composer install Since Has Been Quietly Shipping Your AWS Keys, GitHub Tokens, and Crypto Recovery Phrases to flipboxstudio.info https://www.gblock.app/articles/cve-2026-46333-linux-kernel-ptrace-9-year-root-may-2026 https://www.gblock.app/articles/cve-2026-46333-linux-kernel-ptrace-9-year-root-may-2026 Fri, 22 May 2026 00:00:00 +0000 A 9 Year Old Logic Flaw in the Linux Kernel's ptrace Path Just Got Disclosed as CVE-2026-46333—Qualys Has Four Working Exploits That Read /etc/shadow, Steal SSH Host Keys, and Run Commands as Root on Default Debian, Ubuntu, and Fedora https://www.gblock.app/articles/showboat-calypso-linux-malware-middle-east-telecom-may-2026 https://www.gblock.app/articles/showboat-calypso-linux-malware-middle-east-telecom-may-2026 Fri, 22 May 2026 00:00:00 +0000 A Chinese APT Named Calypso Has Been Hiding Inside a Middle East Telecom Since Mid 2022 With a Linux Backdoor That Just Got Discovered—and Its First Job Was to Be a Proxy for Other Attacks https://www.gblock.app/articles/texas-florida-crypto-atm-scams-388m-2025-fbi https://www.gblock.app/articles/texas-florida-crypto-atm-scams-388m-2025-fbi Fri, 22 May 2026 00:00:00 +0000 Texas and Florida Lost $90 Million to Crypto ATM Scams Last Year—78% of the Money Came From People Over 50, Lured to the Kiosk by an Email or Phone Call https://www.gblock.app/articles/europol-operation-saffron-first-vpn-seizure-may-2026 https://www.gblock.app/articles/europol-operation-saffron-first-vpn-seizure-may-2026 Fri, 22 May 2026 00:00:00 +0000 Europol Just Seized 33 Servers and Quietly Read the Traffic of 'First VPN' Users for Months Before Pulling the Plug—506 Criminals Got a Pop Up Telling Them They Had Been Identified https://www.gblock.app/articles/ofcom-tech-giants-child-safety-online-safety-act-may-2026 https://www.gblock.app/articles/ofcom-tech-giants-child-safety-online-safety-act-may-2026 Fri, 22 May 2026 00:00:00 +0000 Snapchat, Roblox, and Meta Just Promised Ofcom They Will Change Their Apps to Protect UK Children—YouTube and TikTok Said Their Existing Features Were Already Enough https://www.gblock.app/articles/sonicwall-mfa-bypass-cve-2024-12802-incomplete-patch-may-2026 https://www.gblock.app/articles/sonicwall-mfa-bypass-cve-2024-12802-incomplete-patch-may-2026 Fri, 22 May 2026 00:00:00 +0000 SonicWall Patched This VPN Bug—But If You Did Not Run Six Extra Manual Steps, Attackers Can Still Bypass Your MFA With 13 Brute Force Attempts and Reach a File Server in Under 30 Minutes https://www.gblock.app/articles/apple-app-store-2-2-billion-fraud-2025-report https://www.gblock.app/articles/apple-app-store-2-2-billion-fraud-2025-report Fri, 22 May 2026 00:00:00 +0000 Apple Just Said It Blocked $2.2 Billion in App Store Fraud Last Year—1.1 Billion Fake Accounts, 193,000 Banned Developers, and 11.2 Billion Stopped Since 2020 https://www.gblock.app/articles/rutgers-hospital-tracking-pixel-46-percent-breach-study https://www.gblock.app/articles/rutgers-hospital-tracking-pixel-46-percent-breach-study Fri, 22 May 2026 00:00:00 +0000 A Rutgers Study of 1,201 Hospitals Found That Putting a Facebook or Google Tracking Pixel on Your Site Makes a Breach 46% More Likely—And 66% of US Hospitals Still Do It https://www.gblock.app/articles/huawei-vrp-zero-day-luxembourg-telecom-crash-july-2025 https://www.gblock.app/articles/huawei-vrp-zero-day-luxembourg-telecom-crash-july-2025 Thu, 21 May 2026 00:00:00 +0000 An Undocumented Huawei Zero Day Knocked Out Every Phone in Luxembourg for Three Hours Last July—And Ten Months Later There Is Still No CVE, No Patch, and No Statement From the Vendor https://www.gblock.app/articles/ftc-take-it-down-act-12-firms-warning-may-2026 https://www.gblock.app/articles/ftc-take-it-down-act-12-firms-warning-may-2026 Thu, 21 May 2026 00:00:00 +0000 The FTC Just Sent Warning Letters to Meta, Apple, Google, TikTok, and Eight Others—You Now Have 48 Hours to Remove Intimate Images or Pay $53,088 Per Violation https://www.gblock.app/articles/webworm-echocreep-graphworm-discord-microsoft-graph-c2-may-2026 https://www.gblock.app/articles/webworm-echocreep-graphworm-discord-microsoft-graph-c2-may-2026 Thu, 21 May 2026 00:00:00 +0000 A China Linked Group Just Spent Two Years Running Its Malware Through Discord and Microsoft OneDrive—Because There Is No Suspicious Domain to Block When the C2 Is Microsoft's Own API https://www.gblock.app/articles/yellowkey-bitlocker-bypass-cve-2026-45585-usb-may-2026 https://www.gblock.app/articles/yellowkey-bitlocker-bypass-cve-2026-45585-usb-may-2026 Thu, 21 May 2026 00:00:00 +0000 Researchers Showed That a USB Drive, a Reboot, and Holding CTRL Bypass BitLocker on a Locked Windows 11 Laptop—Microsoft Has No Patch, Only Mitigations https://www.gblock.app/articles/cisa-nightwing-aws-govcloud-keys-github-leak-may-2026 https://www.gblock.app/articles/cisa-nightwing-aws-govcloud-keys-github-leak-may-2026 Thu, 21 May 2026 00:00:00 +0000 A CISA Contractor Turned Off GitHub's Secret Detection On Purpose, Then Pushed AWS GovCloud Admin Keys and Plaintext Passwords to a Public Repo for Six Months https://www.gblock.app/articles/drupal-cve-2026-9082-postgresql-sql-injection-rce-may-2026 https://www.gblock.app/articles/drupal-cve-2026-9082-postgresql-sql-injection-rce-may-2026 Thu, 21 May 2026 00:00:00 +0000 Drupal Just Patched a Bug That Lets Any Anonymous Visitor Run Arbitrary SQL Against the Million Sites Running on PostgreSQL—No Authentication, No Login, No Plug In Required https://www.gblock.app/articles/fox-tempest-opfauxsign-artifact-signing-takedown-may-2026 https://www.gblock.app/articles/fox-tempest-opfauxsign-artifact-signing-takedown-may-2026 Thu, 21 May 2026 00:00:00 +0000 Microsoft Just Killed the Service That Turned Its Own Azure Code Signing Platform Into a Malware Laundry for Five Ransomware Gangs—at $9,000 a Subscription https://www.gblock.app/articles/github-teampcp-3800-repos-vscode-breach-may-2026 https://www.gblock.app/articles/github-teampcp-3800-repos-vscode-breach-may-2026 Thu, 21 May 2026 00:00:00 +0000 One GitHub Employee Installed a VS Code Extension—Now TeamPCP Is Selling 3,800 of GitHub's Internal Repositories for $50,000 https://www.gblock.app/articles/chromadb-cve-2026-45829-ai-vector-db-rce https://www.gblock.app/articles/chromadb-cve-2026-45829-ai-vector-db-rce Wed, 20 May 2026 00:00:00 +0000 ChromaDB Runs Your Code Before It Checks If You're Authenticated—And 73% of the AI Vector Databases on the Internet Still Have the Bug https://www.gblock.app/articles/eviltokens-oauth-device-code-microsoft-365-phishing https://www.gblock.app/articles/eviltokens-oauth-device-code-microsoft-365-phishing Wed, 20 May 2026 00:00:00 +0000 EvilTokens Just Compromised 340 Microsoft 365 Tenants in Five Weeks Without Asking for a Single Password—The Victims Finished MFA on the Real Microsoft Site https://www.gblock.app/articles/brazil-digital-eca-children-data-protection-may-2026 https://www.gblock.app/articles/brazil-digital-eca-children-data-protection-may-2026 Wed, 20 May 2026 00:00:00 +0000 Brazil Just Turned Its Child Protection Statute Into a Privacy by Default Rulebook for the Whole Internet—And Parental Consent Is No Longer Enough https://www.gblock.app/articles/trapdoor-android-ad-fraud-455-apps-may-2026 https://www.gblock.app/articles/trapdoor-android-ad-fraud-455-apps-may-2026 Wed, 20 May 2026 00:00:00 +0000 455 Android Apps in the Play Store Generated 659 Million Fake Ad Bid Requests a Day—Three Quarters of the Traffic Came From American Phones https://www.gblock.app/articles/nx-console-18-95-0-vscode-credential-stealer-may-2026 https://www.gblock.app/articles/nx-console-18-95-0-vscode-credential-stealer-may-2026 Wed, 20 May 2026 00:00:00 +0000 An Nx Console Version With 2.2 Million Installs Was on the VS Code Marketplace for Exactly 11 Minutes—Long Enough to Reach 1Password Vaults, Claude Code Configs, and SSH Keys https://www.gblock.app/articles/discord-dave-e2ee-voice-video-default-may-2026 https://www.gblock.app/articles/discord-dave-e2ee-voice-video-default-may-2026 Wed, 20 May 2026 00:00:00 +0000 Discord Just Did What Meta Just Undid—End to End Encryption Is Now Default on Every Voice and Video Call, With One Big Exception https://www.gblock.app/articles/seven-eleven-shinyhunters-salesforce-franchisee-breach https://www.gblock.app/articles/seven-eleven-shinyhunters-salesforce-franchisee-breach Wed, 20 May 2026 00:00:00 +0000 7-Eleven Just Confirmed ShinyHunters Walked Out With 600,000 Records Through Salesforce—And the People Affected Were Trying to Own a Store, Not Buy a Slurpee https://www.gblock.app/articles/seppmail-cve-2026-2743-email-gateway-rce https://www.gblock.app/articles/seppmail-cve-2026-2743-email-gateway-rce Wed, 20 May 2026 00:00:00 +0000 Researchers Just Dropped Seven Critical Bugs in the Encrypted Email Gateway Used Across Germany, Austria, and Switzerland—One of Them Is a Perfect 10.0 https://www.gblock.app/articles/grafana-coinbasecartel-github-token-canary-may-2026 https://www.gblock.app/articles/grafana-coinbasecartel-github-token-canary-may-2026 Tue, 19 May 2026 00:00:00 +0000 CoinbaseCartel Stole Grafana's Source Code With a Token Hidden in a Forked Repo—And the Canary the Defenders Planted Caught the Whole Operation https://www.gblock.app/articles/miniplasma-windows-zero-day-cldflt-cloud-filter-may-2026 https://www.gblock.app/articles/miniplasma-windows-zero-day-cldflt-cloud-filter-may-2026 Tue, 19 May 2026 00:00:00 +0000 Microsoft Patched This Windows Bug in 2020—a Researcher Just Proved the Same Code Path Still Hands Out SYSTEM on a Fully Patched Windows 11 in May 2026 https://www.gblock.app/articles/interpol-operation-ramz-mena-phishing-arrests-may-2026 https://www.gblock.app/articles/interpol-operation-ramz-mena-phishing-arrests-may-2026 Tue, 19 May 2026 00:00:00 +0000 INTERPOL Just Arrested 201 Cybercriminals Across 13 MENA Countries—And the People Running One Scam Center Were Trafficking Victims Being Forced https://www.gblock.app/articles/russia-fsb-kazuar-p2p-botnet-secret-blizzard-may-2026 https://www.gblock.app/articles/russia-fsb-kazuar-p2p-botnet-secret-blizzard-may-2026 Tue, 19 May 2026 00:00:00 +0000 Russia's FSB Just Turned Its 21 Year Old Spy Tool Into a Peer to Peer Botnet—And Email Harvesting Is One of 150 Built In Modules