🛡️ AI News Hunt

📋 Weekly Digest

Top Stories — Week of June 21, 2026

Hand-picked highlights across AI, cybersecurity, compliance, and IT — updated every week.

🤖 AI & ML

AI News

Google just redesigned the search box for the first time in 25 years — here’s why it matters more than you think.

Google has redesigned the search box for the first time in 25 years. The redesign was announced at the company's annual I/O developer conference.

VentureBeat →
AI News

Railway secures $100 million to challenge AWS with AI-native cloud infrastructure

Railway, a San Francisco-based cloud platform, has raised $100 million in a Series B funding round led by TQ Ventures with participation from FPV Ventures. This funding will be used to challenge legacy cloud infrastructure, particularly in the context of artificial intelligence applications.

VentureBeat →
AI Security

Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys

Hackers are exploiting a recently patched security flaw, CVE-2026-4020, in the Gravity SMTP WordPress plugin, which is installed on approximately 100,000 sites. The vulnerability is a medium-severity information disclosure flaw that can expose sensitive data, including configuration data, API keys, secrets, and OAuth tokens.

The Hacker News →
AI Security

Unpatchable 'usbliter8' Exploit Breaks Apple A12 and A13 SecureROM Boot Chain

Security researchers at Paradigm Shift have published a working exploit, dubbed usbliter8, that achieves arbitrary code execution inside the SecureROM of Apple's A12 and A13 chips. The exploit targets the SecureROM, which is burned into the silicon at manufacture and cannot be patched with a software update.

The Hacker News →

⚔️ Threats

🔓 Breaches

Latest Breaches

‘Popa’ Botnet Linked to Publicly-Traded Israeli Firm

A botnet called Popa, which has been active for four years, is linked to Android-based devices and has been used for various malicious activities. The Popa botnet is connected to NetNut, a "residential proxy" provider operated by Alarum Technologies Ltd, a publicly-traded Israeli firm listed on NASDAQ.

Krebs on Security →
Latest Breaches

Who Runs the Ransomware Group ‘The Gentlemen?’

The Gentlemen is a ransomware group that has become the second most active by victim count, offering affiliates 90% of any ransom paid by victims. The group has attracted a talented pool of hackers through an aggressive recruitment strategy.

Krebs on Security →
Vulnerabilities & CVEs

F5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code Execution

F5 has released security updates to address two critical security flaws in NGINX Open Source, specifically CVE-2026-42530 and another unspecified flaw, which could be exploited for remote code execution. The vulnerabilities affect NGINX Open Source systems.

The Hacker News →
Vulnerabilities & CVEs

Orphaned AI Agents: How to Find Hidden Access Risks Inside Your Network

A significant number of enterprises have orphaned AI agents, which are AI tools left running after their creator leaves the company, without proper authorization or oversight. These orphaned agents can interact with core intellectual property, posing potential security risks.

The Hacker News →

📋 Compliance

🏭 Industry

🛠️ Tech & Tools