HomeWeekly DigestsThis Week
LiveThreat Threat Intelligence

Weekly Threat Intelligence Digest — Jun 15 to Jun 22, 2026

Weekly threat intelligence digest from 427 items (42 critical, 176 high).

June 22, 2026 427 articles analyzed
LIVETHREAT WEEKLY THREAT DIGEST June 15 – June 22, 2026 This week the data reinforced a growing reality: attackers are bypassing traditional “software‑only” exploits and striking where trust resides. Credential‑dump leaks (24 billion records), the FortiBleed exposure of 75 k+ firewall admin passwords, and multiple supply‑chain compromises (Klue OAuth abuse, WordPress plugin hijacks) all point to privileged access as the primary weapon. The ripple effect is evident across SaaS, cloud, and OT environments, turning a single mis‑configuration into a systemic breach. 👉 Access – not a vulnerability – is now the dominant risk driver. 🚨 EXECUTIVE RISK SNAPSHOT * Supply‑chain entry → MSP platforms, CI/CD pipelines, and SaaS admin consoles were the most common breach origins. * Privilege amplification → A hijacked admin credential opened pathways to 194 countries, exposing 75 k firewalls and enabling credential‑spraying against thousands of downstream assets. * Visibility gaps → OT/industrial controllers and third‑party APIs remain outside most asset inventories, leaving auditors blind to downstream exposure. 🔍 WHAT CHANGED THIS WEEK * Credential‑as‑commodity attacks surged: multiple “credential‑as‑a‑service” leaks (FortiBleed, 24 B record dump) fed automated password‑spraying campaigns. * Misconfiguration exploitation outpaced vulnerability exploits: 46 incidents stemmed from exposed cloud storage, Elasticsearch, or Joomla plugins, underscoring the need for continuous configuration hygiene. * Supply‑chain attacks moved from “one‑off” to “platform‑wide”: OAuth token abuse in Klue and malicious WordPress CDN updates demonstrated how a single third‑party breach can compromise dozens of customers. 🎯 WHERE YOU ARE MOST LIKELY EXPOSED * Cloud admin accounts on AWS, Azure, or GCP that lack MFA or just‑in‑time provisioning. * SaaS integrations that rely on long‑lived OAuth tokens (Salesforce, Klue, API providers). * Managed security or endpoint products (Fortinet, FortiGate, FortiSandbox) where default or weak admin passwords are still in use. * Industrial control systems (Rockwell Automation, AVer cameras) exposed through public‑facing misconfigurations. * Third‑party plugins for widely used platforms (WordPress, Joomla, CRM/ERP add‑ons). ⚡ WHAT COMPLIANCE & SECURITY LEADERS SHOULD DO THIS WEEK 1. **Re‑audit privileged‑access controls** – Verify that every admin account has MFA, least‑privilege scopes, and just‑in‑time access. 👉 Ask: “If an auditor demanded logs of privileged‑access usage this week, can we produce them?” 2. **Map third‑party dependencies to SOC 2 Trust Services Criteria** – Identify where vendor‑managed APIs touch CC6.1 (Logical Access) and CC7.2 (System Operations). Document contracts and monitoring requirements. #Compliance #SOC2 #AuditReadiness #Cybersecurity #ThreatIntel #ContinuousCompliance #LiveThreat #VerisqAI

Articles Referenced in This Digest 427 items

Advisory (61)

HighMeteor 3.0 Migration Helped Rocket.Chat Move Off End-of-Life Node.js Runtime
HighAI Crackdowns, Mega Mergers, and Security Chaos Define This Week in Tech
HighThe Ultimate Prompt For Businesses Being Pushed Into Using AI
HighCISA Urges Hardening Fortinet Devices After Reports of Credential Exposure
HighAlert: NCSC issues advice following global targeting of Fortinet firewalls and VPN gateways
HighNew 42Crunch plugin helps developers find and fix API vulnerabilities in GitHub Copilot
High5 reasons Microsoft 365 backup isn’t enough for business data protection
HighI'm excited about ChatGPT's memory upgrade - but I'm quickly seeing a downside
HighThe Scripts on Your Checkout Page Are Now a PCI DSS Problem
HighWarner warns of CISA cuts, staffing gaps in letter to acting chief
HighAI Use by the US Government
HighAnthropic says US government forced it to disable cybersecurity AI models
MediumWho pays when you gate cyber-capable AI models?
MediumAndroid 17 Is Live on Pixel, but Samsung and Other Android Users Still Have to Wait
MediumFriday Squid Blogging: Victims of Unregulated Squid Fishing
MediumApple’s Hide My Email tweak leaves privacy fans fuming
MediumGoogle sets timeline for Android developer verification enforcement
MediumMicrosoft: June 2026 Windows updates break Recycle Bin prompts
Medium5 reasons I'm using Android Auto instead of my car's own infotainment system - and can't go back
MediumGet Out of Security Debt by Tackling the Exposure Problem
Medium10 signs that someone is monitoring or accessing your accounts - how to stop them
MediumRolling out AI agents? 4 ways to move fast and furious - but with extreme caution
MediumeSentire links AI-led penetration testing with MDR through Atlas Preempt
MediumMicrosoft fixes Windows Server 2016 security update failures
MediumThe 'vibe coding spectrum' approach to AI-assisted software development
MediumCompanies are profiling you from your smartphone use - how to stop them
MediumIndia's Telegram ban draws criticism from Durov as company challenges order in court
MediumAdversarial Exposure Validation Turns Security Visibility into Confident Prioritization
InformationalThe systemd 261 release brings a software TPM, new OS installer
LowAgent Beacon: Open-source telemetry layer for AI agents
LowI tested the new modular ThinkPad, and it's the repairable future I'm hoping for
Informational10 Prompts to Run When Fable Comes Back
InformationalMDR Provider Comparison: Time to Discover and Respond to Threats
Informational8 XDR Questions From the Show Floor
InformationalAccenture to buy Dragos, runZero, and NetRise in $4.2 billion cybersecurity deal
LowMastodon 4.6 adds profile Collections and two-factor controls
LowForget traffic lights, Google’s reCAPTCHA may ask for hand gestures
LowUK's information commissioner resigns over ‘inappropriate humour’
InformationalNew infosec products of the week: June 19, 2026
InformationalNew Forrester study shows customers who unified with Microsoft Security benefited from 124% ROI
InformationalScripting the disassembler: Local agentic reverse engineering through vbdec’s live COM object model
InformationalClose Encounters of the Human Kind
LowWhat Businesses Should Know Before Migrating Their CMS
LowMacBook Neo vs Windows Laptops for Cybersecurity Tasks
LowThis $17 solar panel effectively gave my doorbell camera infinite battery life - how I set it up
InformationalGoogle Home Speaker vs. Amazon Echo Dot Max: I compared the $99 smart hubs by the specs
InformationalAlibaba Cloud Bets on France as Europe Seeks More Control Over AI
InformationalBlue Planet helps service providers reduce risk with unified network change governance
InformationalBarracuda introduces AI-powered email security with automated threat response
InformationalEU Gets a Head Start in Developing 6G Network Security
LowSennheiser just gave me a compelling reason to put away my Bose and Sony headphones for good
LowAnother Year, Another Win: SE Labs® Recognizes Symantec® Endpoint Security
InformationalTenable One adds continuous security control validation to improve exposure prioritization
InformationalLegit Security brings agentic AI to AppSec remediation and risk reduction
InformationalArmorCode helps product manufacturers prepare for EU Cyber Resilience Act requirements
InformationalTigera introduces unified control plane for Kubernetes-based AI agent security
InformationalWitnessAI Agentic Control secures AI agents, tools, and MCP server access
Informational Malwarebytes earns AV-TEST Top Product award, aces other third-party tests
LowAndroid 17 is out now, with a fresh Pixel Drop for June - here's what's new
Informational Claude Fable 5 and Mythos 5 “abruptly disabled” after US gov. ban
InformationalWhat Changed in OWASP Top 10 2025 and Recommendations for Each Category

Breach (45)

Critical24B Records Exposed in Massive Leak of Emails, Passwords, and Login Data
CriticalFortiBleed Exposes Admin Passwords for 75,000 Fortinet Firewalls
Critical 24 billion stolen records exposed online. Here’s what to do
HighSECURITY AFFAIRS MALWARE NEWSLETTER ROUND 102
HighSecurity Affairs newsletter Round 582 by Pierluigi Paganini – INTERNATIONAL EDITION
HighWeek in review: 74k Fortinet firewall credentials stolen, Splunk Enterprise RCE under active attack
HighCISA Warns of Active Exploitation Following FortiBleed Leak
HighJCPenney - 368,418 breached accounts
HighKlue OAuth breach victim list grows as Icarus hackers claim attack
HighNintendo America Employee Data Exposed After Shadowbyt3$ Targets TinyPulse
High124M Passwords Exposed as Infostealer Malware Hits Millions of Devices
HighPeter Thiel ‘s Secret Society Leak Creates a Perfect Target List for Espionage, Influence Operations, and Blackmail
HighFortiBleed Campaign Exposing Credentials for 73,932 FortiGate Systems
HighKlue breach lead to Salesforce data theft, Huntress affected
HighSalesforce Disables Klue App Integration After OAuth Token Abuse Exposes Customer Data
HighCISA warns Fortinet users to secure devices after FortiBleed leak
HighTexas govt data breach exposes over 3 million driver’s licenses
HighRalph Lauren - 139,903 breached accounts
High24 Billion Stolen Credentials Exposed in Massive Data Leak
HighThe Klue Security Incident and Its Impact on Recorded Future
HighNintendo confirms data stolen in WebMD subsidiary cyberattack
HighSalesforce Data Thefts Continue via Klue App Compromise
HighNovo Nordisk Breach Exposes Software Development Pipeline Risk
HighOperation Endgame 4.0 - 153,527 breached accounts
High74,000 Fortinet firewall credentials exposed in FortiBleed data leak
HighMalware attacks strip Roblox developers of entire games
HighShapedPlugin update flow hacked to infect WordPress sites
High Kodak confirms breach as ShinyHunters’ leak threat reaches deadline
HighCFGI - 248,235 breached accounts
HighFulcrumSec Targets Novo Nordisk, Leaks Clinical and Research Data
HighEdTech Faces a Cybersecurity Crisis: Data Breaches Surge
HighDragonForce Hid Inside Microsoft Teams and Nobody Noticed for Two Months
HighAnother healthcare firm attacked days after Novo Nordisk breach
HighLow-skilled attacker used Claude, Codex to breach 14 companies
HighKodak confirms data breach claimed by ShinyHunters extortion gang
HighMalicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chats
HighInfinite Campus: Salesforce Breach Exposed 137,000 Staff Records
HighiRhythm Hit by Cyberattack, Patient Data Stolen and Ransom Demanded
HighChina-linked actor spent two years inside medical research networks
HighJune 2026 Stealer Logs - 56,278,397 breached accounts
HighNovo Nordisk Confirms Data Theft: What Attackers Took and What They Didn’t
HighInfinite Campus data breach affects 137,000 school staff accounts
HighChinese hackers breach REDCap servers, steal medical research
HighCouncil of Europe investigates ShinyHunters data breach claims
HighBerkadia - 305,216 breached accounts

Ransomware (6)

Critical Cardiac patients’ medical data stolen and held to ransom
HighNew Prinz Eugen ransomware prioritizes recent files for encryption
HighINC Ransomware Emerges as Major RaaS Threat in 2026 with 830+ Victims Since 2023
HighAustralian sugar producer works to restore operations as ransomware group claims attack
HighDragonForce Ransomware Abused Microsoft Teams to Hide Malware Activity
HighInfostealers, AI, and a 90% Affiliate Cut Fuel The Gentlemen group’s Rise

ThreatIntel (278)

CriticalSmashing Security podcast #472: AI gets hacked, and BitLocker gets bypassed
CriticalNCSC CEO: Hostile states linked to three-quarters of cyber attacks affecting UK's critical systems
CriticalMicrosoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in Development
CriticalCISA orders feds to patch max severity Joomla plugin flaw by Friday
CriticalThe checklist problem behind critical infrastructure cyber safety
CriticalCVE-2026-20262: CISCO Catalyst SD-WAN Flaw Under Active Targeted Exploitation
CriticalFortinet Warned as Three Critical FortiSandbox Bugs Come Under Attack
CriticalTeleport adds LLM Proxy and Delegated Identity to secure AI agent actions and access
CriticalSimpleHelp RMM flaw could give attackers full access to managed endpoints (CVE-2026-48558)
CriticalCritical Fortinet FortiSandbox flaws now exploited in attacks
CriticalCISA warns of another cPanel plugin flaw exploited in attacks
CriticalRockwell Automation CompactLogix
CriticalRockwell Automation FactoryTalk Analytics PavilionX
CriticalRockwell Automation FLEX I/O EtherNet/IP Adapters
CriticalRockwell Automation RSLinx
CriticalRockwell Automation Logix 5370 & 5570 Controllers Vulnerable To Denial of Service Via CIP
CriticalCisco Releases Security Updates for Actively Exploited SD-WAN Manager Flaw
CriticalCopilot 'SearchLeak' Attack Allows 1-Click Data Theft
CriticalEU Cybersecurity Act 2.0: When good regulation goes bad
Critical1Password Credential Broker reduces secret sprawl through identity-based credential delivery
CriticalDelinea and Cyera integrate for data-aware identity security
CriticalCisco fixes SD-WAN vManage flaw exploited in zero-day attacks
HighHundreds of AI-powered iOS apps found exposing credentials
HighEncrypted DNS still tells an eavesdropper where to look
HighAryStinger botnet infected thousands of D-Link routers worldwide
HighFortiBleed Exposes Global Credential-Spraying Operation
HighInside GentleKiller: The EDR-Killer Powering The Gentlemen
HighMicrosoft links Mastra AI supply chain attack to North Korean hackers
HighThreat Brief: Mitigating Large-Scale Credential Attacks
HighThe Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security Processes
High Nearly 15,000 infected websites cleaned in SocGholish crackdown
HigheFAQ Publishes Investigation Into Alleged Scam Activity and Coordinated Reputation Attacks
HighImposter scams cost Americans $3.5 billion in 2025 – and it’s getting worse
High14,971 WordPress Sites Cleaned in Global SocGholish Takedown
HighCybercriminals abused GitHub, YouTube and VirusTotal to push crypto-stealing malware
HighForget Data Leakage: Shadow AI's Real Threat Is Access Control
HighFrom Assistive to Agentic: The AI Shift That's Redefining Threat Management
HighOperation Endgame Disrupts SocGholish Servers, Cleans 14,971 WordPress Sites
HighAutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution
HighNY man charged after harassing college student with AI-generated nudes
HighWebinar: How attackers bypass MFA and how defenders can respond
HighEvery AI Agent Is an Identity. Most Organizations Don't Treat Them That Way
HighPolice raid malware network tied to Russia's Evil Corp hacker group
HighAnthropic’s Fable and the State of AI
HighTor-Based Clipper Malware Targets Wallet Seed Phrases
HighAsia-Pacific scam networks generate nearly $40 billion a year
HighCompanies are discarding the logs they need to catch a breach
HighGentlemen ransomware uses multiple EDR killers to disable defenses
HighBulgaria allowed surveillance tech firm to sell products to repressive regimes, report says
HighOperation Endgame Disrupts SocGholish Malware Infrastructure
HighFIFA Bug Exposes World Cup Streams to Remote Takeover
HighOperation Escaneo Signals Shift in LatAm Threat Landscape
HighGet a Walmart Plus membership for 50% off right now
HighI'm a smart home reviewer, and these are the only deals I'm shopping this Prime Day
HighSayonara, SocGholish: Operation Endgame Disrupts Major Cybercrime Operation
HighWorld Cup-Themed Phishing Campaign Delivers Voidrift Malware with Highly Personalized Lures
High5 Key Takeaways from Inside the Shape-Shifting Inbox: A Modern Playbook for Security Leaders
HighGentleKiller targets more than 400 security processes across 48 products
HighLaw enforcement hits SocGholish: 106 servers down, 15,000 sites cleaned
HighDragonForce Hackers Abuse Microsoft Teams Relays to Hide Backdoor.Turn C2 Traffic
HighMicrosoft Details Windows Clipper Malware Campaign Using USB LNK Worm and Tor-Based C2
HighThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories
HighOrphaned AI Agents: How to Find Hidden Access Risks Inside Your Network
HighTelegram admits it couldn't police exam-leak channels, India tells court
HighPolice cleans nearly 15,000 SocGholish-infected sites tied to Evil Corp
HighKlue OAuth breach linked to 'Icarus' Salesforce data theft attacks
HighUSB worm spreads crypto-stealing malware via Windows shortcut files
High Roblox developers are losing entire games to malware attacks
High Retro gaming fans are the new target for fake GitHub malware
HighAgentjacking: Researchers Show How One Fake Bug Report Can Hijack AI Coding Agents
HighEmbedding Forbidden Text in Spyware to Discourage AI Analysis
HighThe Behavior of Coordinated SSH Brute Force Attacks over the last three months [Guest Diary], (Wed, Jun 17th)
HighMost agentic AI projects in production have stalled over data problems
HighGoogle’s open standard for AI agents to discover and verify tools
HighCrypto Clipper uses Tor and worm-like propagation for persistence and control
HighFrom package to postinstall payload: Inside the Mastra npm supply chain compromise
HighINC Ransomware Thrives by Mastering the Basics
HighCrypto Clipper Campaign Abuses Fake Reviews, AI Narrators, and VirusTotal Comments
HighChina-Linked FishMonger Ports SprySOCKS to Windows With Kernel-Level Stealth and UEFI Bootkit Hints
HighNew Rokarolla Android Trojan Targets 217 Banking and Crypto Apps
HighState Digital Surveillance Risk Landscape
HighRokarolla Android trojan targets banking and crypto users, enables device takeover
HighMicrosoft working on Defender patch for RoguePlanet zero-day
HighIndia's Telegram ban hit the UAE too. Here's how to get around it
HighGitHub dismissed security reports on flaws now exploited by supply-chain worm, researchers say
HighHostile states behind three-quarters of attacks on Britain's critical infrastructure, cyber chief warns
High Rokarolla Android malware can take over your phone and steal banking logins
High144 Mastra npm Packages Compromised via Hijacked Contributor Account
HighMultiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution
HighFileless Phantom Stealer Targets Browser Credentials
HighMicrosoft AntiSSRF open-source library helps block server-side request forgery
HighCISA Adds One Known Exploited Vulnerability to Catalog
HighHidden in Teams: DragonForce Attackers Weaponize Microsoft Teams Relays to Stay Hidden
High'Lorem Ipsum' Malware Pivots to ClickFix Delivery
HighThe Intelligence No One Else Has: Inside Recorded Future’s Proprietary Collection Engine
HighSoftware supply chains are heading for a transparency test
HighCrypto scammers are sending couriers to victims’ homes to collect cash
HighCybercriminals mask malicious communications through Microsoft Teams relays
HighAttackers are exploiting FortiSandbox vulnerabilities
HighiRhythm discloses data breach, says hackers stole patient info
HighRansomware gang abuses Microsoft Teams relays to hide malicious traffic
HighChainguard's new Athena coalition uses AI to fix open-source flaws - before attackers exploit them
HighPickle in the Middle – Hijacking Vertex AI Model Uploads for Cross-Tenant RCE
HighNintendo Alleged Data Breach: Threat Actor Demands $2M Ransom
HighMost CISOs Report Pressure to Bury Bad Security News
HighThe rise of machine identities and agentic AI: Securing trust in the next era of digital autonomy
HighReachability makes AI threat modeling worth the trust
HighMaine closes data breach portal to the public after fake reports
HighCISA Adds Two Known Exploited Vulnerabilities to Catalog
HighMaine forced to take down data breach portal after fake notices filed with authorities
HighLiteLLM Vulnerability Chain Lets Low-Privilege Users Take Over AI Gateway Servers
HighSupply Chain Attack Hits Popular WordPress Plugins Through Awesome Motive CDN
HighPhishLumos: Exposing phishing campaigns that evade detection by hiding content
HighUkrainian national pleads guilty in connection with Conti ransomware
HighVibe coders are gonna vibe code: How CISOs are tackling code sprawl
HighFBI: Fraudsters use couriers to steal money in crypto scams
HighBelarus-linked hackers target Gmail accounts of Polish public figures and their families
HighFinland brings charges against cargo ship officers for cutting submarine cables
HighCyberattack on Russian tech firm Astral disrupts business, government services for week
HighOver 50 Android Apps Found Spreading MagicAd Trojan via Official Stores
MediumGcore Helps Ucom Safeguard Public Live Broadcast Infrastructure During Armenia’s Parliamentary Elections
MediumBlackFog brings shadow AI visibility to macOS endpoints with ADX Vision
MediumYour browser tab could become encrypted storage for someone else’s files
MediumApple confirms price increases are coming - how much will it cost you?
MediumAWS Continuum brings AI models to code vulnerability management
MediumHow security teams are getting credential visibility into developer endpoints
MediumThe Top 10 Attack Surface Exposures in 2026
MediumA Vulnerability in SimpleHelp Could Allow for Authentication Bypass
MediumHTTP/2 Bomb Attacks Put Telcos, Healthcare Orgs at Risk
MediumSteam Workshop abused to spread malware via Wallpaper Engine app
MediumNew Rokarolla Android malware targets 217 banking, crypto apps
MediumNew Rokarolla Android Malware Steals PINs, SMS Codes, and Crypto Wallet Funds
MediumClickFix Campaigns Expand Malware Delivery With New Loaders and Fake Update Lures
MediumU.S. CISA adds Cisco Catalyst and LiteSpeed cPanel plugin flaws to its Known Exploited Vulnerabilities catalog
MediumRokarolla Android Trojan Levels Up to Full Device Control, Persistence
MediumDozens of malicious wallpapers found on Steam Workshop: gamers’ accounts at risk
MediumCisco discloses second exploited SD-WAN vulnerability in two weeks (CVE-2026-20262)
MediumRadware AI Xploit Shield delivers virtual patching for newly identified application and API flaws
MediumWindows version of SprySOCKS Linux malware used to attack govt orgs
MediumGhostTree Attack Abused Recursive Windows Junctions to Hide Malware
MediumIndia temporarily blocks Telegram over medical exam cheating fears
MediumCISA Flags LiteSpeed cPanel Plugin Flaw Exploited for Root Privilege Escalation
MediumFake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware
MediumAttackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week
Medium Inside a malicious infrastructure delivering EtherRAT, phishing pages, and malicious software 
MediumChinese hackers breached North American research institutions via REDCap servers
MediumCybersecurity jobs available right now: June 16, 2026
MediumSimpleHelp bug lets hackers create rogue remote support accounts
Medium⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More
MediumNorth Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels
MediumPalo Alto Warns of Active Exploitation of PAN-OS GlobalProtect VPN Flaw
InformationalStressors, AI Forcing Changes to Cybersecurity Teams
InformationalFIFA World Cup 2026: Hackers Target Football Fans With Fake Tickets Sites
InformationaleBanking Phishing Delivered Through IPv4-Mapped IPv6 Address, (Fri, Jun 19th)
InformationalGoogle Adds New Android Controls for WhatsApp Backups, Password Transfers
InformationalOzempic Maker Novo Nordisk Confirms Security Incident After $25M Hacker Demand
Informational105K Chrome Installs Linked to Adware and Fake Google Traffic
InformationalISC Stormcast For Thursday, June 18th, 2026 https://isc.sans.edu/podcastdetail/9978, (Thu, Jun 18th)
InformationalHomebrew tightens tap security, begins work on its interface
InformationalWhat happens to oversight when AI agents write a lab’s own code
InformationalSecuring digital keys when your phone unlocks the car
InformationalGoogle to use UK and EU user IP addresses for ad personalization
InformationalLeak confirms OpenAI is testing a ChatGPT for Science subscription
InformationalSpyCloud Report Finds Phishing Attacks Surge as Employee Data Is Exposed at 86% of Fortune 100 Companies
InformationalFortiBleed Attack Exposes Fortinet Firewall Credentials in 194 Countries
InformationalA Unified Theory of AI and Jobs
InformationalUK Social Media Ban for Minors Has Privacy Experts Worried
InformationalSweeping Credential-Harvesting Heist Compromises 30K+ Fortinet Devices
InformationalI put the new Siri AI through a 10-round test on my Mac - here's how it did
InformationalGoogle's big Android sideloading crackdown has a 24-hour catch - how the new limits work
InformationalHow I block ads with a $7 Raspberry Pi alternative - it's easy
InformationalThis HP Omen deal knocks $700 off a serious gaming laptop before Prime Day
InformationalReMarkable Paper Pure vs. Amazon Kindle Scribe (2026): I tested the budget models - here's my pick
Informational5 best Prime Day Anker deals: Chargers, power stations, and more we recommend to avoid low battery
InformationalEvery way your phone tracks your location - and how to stop it
InformationalThe best Lenovo laptops on sale for Prime Day: 8 models we've tested personally
InformationalDoes your phone charge as fast as advertised? I measured the latest iPhone, Samsung, OnePlus
InformationalThe Firefox browser for Android just got 3 useful features - including an ad block tracker
InformationalJunior Hacker Used Tailscale and OpenSSH to Keep Access After His C2 Went Offline
InformationalThe browser blind spot: Why your security tool may not be blocking what you think it is [Guest Diary], (Wed, Jun 17th)
InformationalCorelight enhances Open NDR to detect AI-driven threats and unknown assets
InformationalFlip expands platform with digital identity, no-code apps, and AI automation
InformationalMicrosoft confirms Office apps launch issues after June updates
InformationalWhy Account Takeovers Are Rising and How to Stop Them
InformationalFortiBleed leak exposes Fortinet VPN credentials for 73,000 devices.
InformationalEU grants Ukraine access to cybersecurity reserve for major attacks
InformationalElon Musk, the IRS, and Your Bank Account: Anatomy of a Multi-Stage Financial Scam
InformationalMaking Workflow Runs Explain Themselves: AI-Powered Run Summaries in Cisco XDR Automate
Informational15 Malicious JetBrains Plugins Caught Stealing DeepSeek, OpenAI API Keys
InformationalESET MDR vs Sophos MDR: Compared Time to discover and respond to a threat
InformationalHeimdal Survey: Executives Four Times More Confident About AI Risk Than the Teams Managing It
Informational152 Chrome Live Wallpaper Extensions Hid Ad Tracking and Fake Search Clicks
InformationalMalicious apps got into the Arch User Repository - how to protect yourself
InformationalThese useful Amazon gadgets are up to 68% off - here's why I recommend them
InformationalWe tested 10 power banks in our lab - and this one had the fastest charge
InformationalHere's a portable power bank that's actually worth its high price - especially if you travel
InformationalThe best power banks of 2026: Expert and lab tested
InformationalISC Stormcast For Wednesday, June 17th, 2026 https://isc.sans.edu/podcastdetail/9976, (Wed, Jun 17th)
InformationalSecurity Community Slams US Ban on Exporting Mythos, Fable
InformationalNavigating SEC, NIS2, and DORA incident disclosure timelines under pressure
InformationalProduct showcase: From phishing texts to risky Wi-Fi, Norton 360 Deluxe watches the gaps
InformationalThe SOC’s visibility gap comes down to staffing
InformationalMalicious JetBrains Marketplace plugins steal AI API keys from developers
InformationalPhishing No Longer Looks Wrong: What Security Leaders Should Do Next
InformationalNew Rokarolla Android Trojan Found Targeting 217 Crypto and Banking Apps
InformationalAppViewX Launches Agent Identity Security to Govern Agents for the AI and Quantum Era
InformationalAembit Extends IAM for Agentic AI to Microsoft Copilot Studio
InformationalAmos Stealer Targets macOS Keychain Files and Browser Passwords
InformationalLinux 7.1 is here to end the Intel 486 CPU era - and do some serious legacy clean up
InformationalYour wall outlets are seriously underutilized: 7 plug-in gadgets that elevate any home
InformationalI've been testing iOS 27, and these 5 overlooked features make even older iPhones better
InformationalKDE Plasma 6.7 might be a point release - but it's packed with new features
InformationalI tried AnduinOS 2.0, and it may be the easiest way to ditch Windows for Linux
InformationalThe DIY era of smartwatches has begun - Google and Apple already have me hooked
InformationalHow I'm using this $13 smart plug to automate my house with voice commands
InformationalYour Android phone keyboard may be tracking your inputs - how to check (and 2 ways to stop it)
InformationalThis 55-inch Fire TV on Amazon costs just $280 - and I can actually recommend it
InformationalIndependent Testing Confirms Secure Email Threat Defense’s Email Security Strength
InformationalShinyHunters Claims Council of Europe HR Data, Threatens Leak
InformationalBest Prime Day Tech Deals: Apple, Bose, Garmin, and More
InformationalFrom a VHDX File to a Remcos RAT, (Tue, Jun 16th)
InformationalSprySOCKS Windows Variant Abuses Kernel Drivers to Evade Detection
InformationalAppViewX extends machine identity security to AI agents and post-quantum environments
InformationalTekStream launches Proactive Cyber Defense to counter AI-driven threats
InformationalFTC warns of record $3.5 billion losses to imposter scams in 2025
InformationalUK to require ID or face scan before you can make social media accounts
InformationalEstonia to quarantine emails sent from Russian .ru domain before they reach government officials
InformationalBest of Android Fax Apps: Top 5 Secure Picks for 2026
InformationalDeveloper laptops are the credential store attackers are picking through in 2026, GitGuardian announces Endpoint Protection
InformationalI modified my PC setup with a 15-in-1 docking station, and the benefits go beyond more ports
InformationalInside the Modern SOC: The 72-Minute Race
InformationalFlock Cameras Are Being Used for Stalking
InformationalChina-Linked SprySOCKS Backdoor Expands to Windows with Driver-Based Stealth
InformationalSurvey: 94% of Incidents Involve Anonymized Infrastructure. Teams Are Still Reactive
InformationalAustralian Sugar Producer Mackay Sugar Reports Cyber Incident
InformationalISC Stormcast For Tuesday, June 16th, 2026 https://isc.sans.edu/podcastdetail/9974, (Tue, Jun 16th)
InformationalA $2 trillion revenue shift hinges on AI data governance
InformationalDOJ seizes CFAKE, SOCFAKE deepfake nude sites under TAKE IT DOWN Act
InformationalUK to ban social media access for children under 16
InformationalFeds Seize CFAKE and SOCFAKE Over Explicit Deepfakes of Famous Women
Informational7 ways AI can help with your Linux system management
InformationalContainer made it easy to run Linux on my MacBook - here's how I set it up
InformationalThis curved Samsung monitor is perfect for a WFH setup - and it's on sale
InformationalRefreshOS is a top contender for new Linux users - here's why
Informational5 best Prime Day Anker deals: Chargers, power stations, and more we recommend
InformationaliOS 27 envy? 4 features you can already use on an Android phone (including Samsung models)
InformationalOne-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes
InformationalChinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails
InformationalUS Cracks Down on Anthropic AI Models Amid Abuse Concerns
InformationalThe Beginning of the End of Social Engineering
InformationalChina-Nexus Actor Spy on US Researchers Undetected for a Year
InformationalModat enhances Magnify with Passive DNS for faster threat hunting and infrastructure analysis
InformationalRed Sift, GMO GlobalSign partnership simplifies email authentication and BIMI adoption
InformationalOmada Agent Governance helps organizations manage AI agent access, risk, and compliance
InformationalTrust3 AI’s AgentDOS monitors AI agent activity, data access, and token consumption
InformationalChina-linked spies backdoored authentication stack to stay hidden for years
InformationalWebinar: How behavioral AI stops phishing and account takeovers
InformationalOptinMonster WordPress plugin hacked in CDN supply-chain attack
InformationalMicrosoft Defender email security benchmarking: Key insights from one year of data
InformationalUnveiling the Power of Integration: XDR, Splunk, Corelight, Arista and Palo Alto Networks in Action at Black Hat Asia
InformationalBlack Hat Asia 2026: Threat Hunters’ Corner
InformationalBlack Hat Asia 2026: A Decade in Singapore
InformationalThe Essence of Black Hat – Collaboration with Partners
InformationalCisco Secure Access with MCP Infrastructure at Black Hat Asia 2026
InformationalDefenseclaw for On-Prem AI SOC Workflow at Black Hat Asia
InformationalHandala Hacking Group Claims Breach of California Water Service
InformationalISC Stormcast For Monday, June 15th, 2026 https://isc.sans.edu/podcastdetail/9972, (Mon, Jun 15th)
InformationalEvil MSI Background: BASE64 Statistical Analysis, (Mon, Jun 15th)
InformationalI found popular student discounts that can save you up to $25 per month
InformationalHow I used Airtable to audit and fix my food habits for $12/month - and it paid off big time
InformationalI've reviewed every PDF editor out there - then I had ChatGPT build me a better one
InformationalWeekly Update 508
InformationalUpcoming Speaking Engagements
InformationalThe FCC Wants to Eliminate Burner Phones
InformationalSniper Dz Scams Target MENA Users via Fake Facebook Offers and Browser Alerts
InformationalPopular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites
Informational152 Chrome Wallpaper Extensions with 105K Installs Linked to Adware and Fake Traffic
InformationalThe Onboarding Password Mistake That Creates Unnecessary Risk

Vulnerability (37)

CriticalCisco fixed a critical ISE vulnerability that lets attackers to gain root access
CriticalUnpatchable 'usbliter8' Exploit Breaks Apple A12 and A13 SecureROM Boot Chain
CriticalU.S. CISA adds Splunk Enterprise flaw to its Known Exploited Vulnerabilities catalog and urges agencies to fix it by Sunday
CriticalUnauthenticated RCE in Splunk Enterprise under active attack (CVE-2026-20253)
CriticalCISA: Splunk Enterprise flaw actively exploited, patch by Sunday
CriticalF5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code Execution
CriticalF5 Patches Critical NGINX Vulnerabilities Enabling Unauthenticated Code Execution
CriticalCisco fixed a critical ISE vulnerability that lets attackers to gain root access
CriticalF5 issues out-of-band patches for critical NGINX vulnerabilities
CriticalApple fixes Beats Studio Buds flaw that let hackers spy on conversations
CriticalAVer PTC cameras
Critical Microsoft working on a fix for RoguePlanet, a flaw that grants full PC control
CriticalU.S. CISA adds Widget Factory Joomla Content Editor flaw to its Known Exploited Vulnerabilities catalog
CriticalCISA Warns of Actively Exploited Joomla JCE Flaw Allowing PHP Code Execution
CriticalOracle Warns PeopleSoft Customers After Critical Zero-Day Exploited
CriticalNew attack turned Microsoft 365 Copilot into 1-click data theft tool
HighApple Patches Beats Studio Buds Flaw That Could Enable Wiretapping
High Apple patches Beats Studio Buds flaw that could turn earbuds into a wiretap
HighApple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone
HighCISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices
HighAutoJack: How a single page can RCE the host running your AI agent 
HighMicrosoft Confirms RoguePlanet Zero-Day in Defender, Patch Under Development
HighBlack Box Probing: a Security Analysis of Xiaomi's MJA1 Secure Chip
HighMitsubishi Electric Co.'s MELSEC iQ-F Series FX5-ENET/IP Ethernet Module
HighMitsubishi Electric MELSEC iQ-F Series
HighSchneider Electric Easergy, EcoStruxture, PowerLogic, and Saitel Products
HighAzeoTech DAQFactory
HighRockwell Automation FactoryTalk Historian Site Edition
HighSchneider Electric EasyLogic T150 and Saitel DP
HighCISA Adds One Known Exploited Vulnerability to Catalog
HighApollo Pharmacy Blood Glucose Monitoring System APG-01 BT
HighOracle Critical Patch Update, June 2026 Security Update Review
HighGoogle Vertex AI SDK Flaw Let Attackers Hijack Model Uploads via Bucket Squatting
HighPalo Alto Warns of Exploitation of VPN Bypass Exploits (CVE-2026-0257) in PAN-OS Flaw
HighAI vulnerability discovery is pushing 2026 CVEs toward 66,000
MediumHackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys
MediumHackers exploit info disclosure bug in Gravity SMTP WordPress plugin

Daily breach, advisory, and vulnerability briefs publish every weekday.

View Live Breach Feed ← All Weekly Digests