SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 102

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Malware Newsletter OptinMonster supply chain attack hits 1.2 million sites   Public and Private Medical Community Targeted by China-Nexus Threat Actor Pursuing Artificial Intelligence, Cyber, Medical, and National Defense Research    Rokarolla : Android Banker with Complete Device […]

June 21, 2026
Read More >>

How NOT to Train an Offensive Security AI Agent

Last week I spent more time and money than I’m willing to admit trying to make a small AI model very good at CTFs.

Specifically, training it based on the benchmark I created – TarantuBench. That benchmark measures the offensive capabilities of artificial intelligence models using interactive cyber puzzles. Each such puzzle has a unique solution, so you can gauge whether the model succeeded or not through a direct check.

My thesis is the following – if the benchmark measures cyber capabilities, then perhaps it is possible to train a model based on it to perform such puzzles better.

The answer?

Maybe

Of course, I started the hard way. I set up a server in Google’s cloud where the model would try to solve these puzzles over time, and learn from its mistakes and successes. GRPO, for those wondering.

It didn’t work for an engineering reason – I wasn’t convinced that my implementation of this algorithm for the benchmark I built was correct.

I switched to a simpler method. I let the model run on the entire benchmark, took all its solutions, and tried to train it to continue solving in that way and not in another way that leads to errors. SFT of course.

Two problems:

First of all, the data I built wasn’t good. It took me (too) long to figure it out. I took the solutions as they were, without thinking too much about how I would re-feed them to the model so that it would really understand something from this data.

Then, I realized that I didn’t have enough data. I didn’t run the model enough times on the benchmark. At this point, between payments to Google’s cloud, for the model, and for Cursor, I decided that I would end my investment in the experiment.

The result is that every time I trained the model, it failed to exceed its original performance, and sometimes even deteriorated.

What did I learn?

Don’t train on solvers alone. Oracle scripts ≠ agent policy.

Don’t count solves without counting labs. 450 solves on 2 labs is not abundance.

Don’t distill a strong teacher into a weak student without student rollouts. Cross-model SFT is few-shot transfer.

Don’t expect fork rows to replace episodes. Prefix→decision pairs don’t teach horizon control.

Don’t augment your way out of n≈10. Grounding filters and replay repair are hygiene, not data.

Don’t split by run when labs repeat. Lab-disjoint or don’t report generalization.

Don’t chase chains before val singles lift. Composition needs components.

Don’t trust train loss. Track val solve rate and per-lab regressions against base.

Don’t skip the base arm. Every SFT eval should log base=SOLVED|FAIL per lab.

What does this mean?

That the experiment was unsuccessful – not that my thesis is wrong. I don’t plan to end this saga here, but I will take a short break and am sharing with you what *not* to do when you approach training models.

Stay tuned, I’ll try again soon.

Full experiment at tarantulabs.com

submitted by /u/dvnci1452
[link] [comments]

June 21, 2026
Read More >>

Inside GentleKiller: The EDR-Killer Powering The Gentlemen

The Gentlemen equips affiliates with a centralized EDR-killer suite, rapidly weaponizing BYOVD exploits to disable security tools before ransomware attacks. ESET published a detailed breakdown of The Gentlemen‘s technical infrastructure on June 18, the result of months of incident-level investigation corroborated by the group’s own internal data leak from May 2026. Since emerging in late […]

June 20, 2026
Read More >>

FortiBleed Exposes Global Credential-Spraying Operation

FortiBleed exposed a massive campaign that made billions of login attempts against Fortinet VPNs, compromising organizations worldwide. FortiBleed wasn’t a targeted hack. It was a factory. A multi-operator crew ran an industrial-scale attack against Fortinet FortiGate SSL VPN devices worldwide, and security researcher Volodymyr “Bob” Diachenko of SecurityDiscovery.com caught them only because they left their […]

June 20, 2026
Read More >>

CISA Warns of Active Exploitation Following FortiBleed Leak

FortiBleed exposed credentials for 74,000 Fortinet devices, with attackers actively exploiting the leak to target systems worldwide. On June 18, CISA issued an emergency alert after reports surfaced that credentials for approximately 74,000 Fortinet firewalls and VPN gateways had been leaked in what researchers are calling FortiBleed. The agency confirmed that threat actors were actively […]

June 20, 2026
Read More >>

14,971 WordPress Sites Cleaned in Global SocGholish Takedown

Operation EndGame disrupted SocGholish, taking down 106 servers and cleaning 14,971 WordPress sites used to spread fake-update malware. On June 18, 2026, law enforcement agencies from the Netherlands, Canada, the United States, and Germany, coordinated through Europol, executed a joint action week against SocGholish, one of the most persistent and widely deployed malware distribution networks […]

June 19, 2026
Read More >>

Anthropic’s Fable and the State of AI

On June 9th, Anthropic released its Fable generative AI model. Three days later, the US government classified it as a dangerous munition, and used its export-control authority to prohibit any foreign nationals from accessing it. Unable to differentiate between Americans and foreigners, the company shut off access for everyone.

The government’s actions won’t help. The problem isn’t any one particular model; it’s the general trend of increasing AI capabilities. And any real solution requires the sort of collective action that just isn’t possible right now…

June 19, 2026
Read More >>

U.S. CISA adds Splunk Enterprise flaw to its Known Exploited Vulnerabilities catalog and urges agencies to fix it by Sunday

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Splunk Enterprise flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a Splunk Enterprise flaw, tracked as CVE-2026-20253 (CVSS score of 9.8), to its Known Exploited Vulnerabilities (KEV) catalog. The flaw CVE-2026-20253 is an improper authentication vulnerability in the PostgreSQL sidecar service of […]

June 19, 2026
Read More >>

Peter Thiel ‘s Secret Society Leak Creates a Perfect Target List for Espionage, Influence Operations, and Blackmail

A simple website flaw exposed members, political profiles, login tokens, and dating data from Peter Thiel ‘s secretive Dialog network. Dialog, a private invitation-only organization cofounded in 2006 by billionaire tech investor Peter Thiel, has spent two decades refusing to disclose its membership. That position became harder to maintain last week when Swiss hacktivist maia […]

June 19, 2026
Read More >>