🚨 CISA KEV 1[−]
1 Jun KEVCISA adds critical Palo Alto Networks firewall flaw to KEV as company, researchers warn of exploitationThe vulnerability in a vital defensive technology creates serious risks for federal networks, CISA said.CYBERSECURITYDIVE.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 14[−]
1 Jun KEVMicrosoft Threatens Security Researcher | Palo Alto VPN Exploited | Google Insider Trading CaseMicrosoft's dispute with a former security researcher takes a dramatic turn as the company raises the possibility of criminal action over the publication of proof-of-concept code for unpatched zero-day vulnerabilities. David Shipley examines the escalating conflict between Micros…CYBERSECURITYTODAY.LIBSYN.COM
1 JunHackers are exploiting Palo Alto GlobalProtect VPN authentication bypass (CVE-2026-0257)Authentication bypass vulnerabilities (CVE-2026-0257) in Palo Alto Networks’ firewalls that the company disclosed on May 13 have been targeted in “limited exploit attempts”. “Across multiple customers, Rapid7 observed successful exploitation via authentica…HELPNETSECURITY.COM
1 JunRecent Palo Alto Networks Vulnerability Exploited for WeeksHackers began exploiting CVE-2026-0257, an authentication bypass in Palo Alto Networks PAN-OS, four days after public disclosure. The post Recent Palo Alto Networks Vulnerability Exploited for Weeks appeared first on SecurityWeek .SECURITYWEEK.COM
1 JunFlowise’s MCP implementation can run ghost commandsEnterprises using the lightweight, open-source Flowise platform to power self-hosted AI workloads have a new near-max severity issue to worry about. Researchers at Obsidian Security have detailed a one-click remote code execution (RCE) vulnerability affecting self-hosted Flowise …CSOONLINE.COM
1 JunHow NIST fumbled management of the National Vulnerability DatabaseA US federal watchdog has outlined how the National Institute of Standards and Technology (NIST) failed to effectively manage the growing backlog of unprocessed cybersecurity vulnerabilities in the National Vulnerability Database (NVD). How the NVD crisis unfolded The NVD was est…HELPNETSECURITY.COM
1 JunCVE-2026-0826: How an Old Bug Can Feed AI-Powered ImpersonationOne of the more persistent myths in security is that old bug classes become old problems. They don’t. They just show up in different places, under different conditions, and usually at the exact moment we’ve convinced ourselves not to pay attention to them. That’s part of what mak…RAPID7.COM
1 JunCVE-2026-0826: Critical unauthenticated stack buffer overflow in HP Poly VVX and Trio VoIP Phones (FIXED)Overview Rapid7 Labs conducted a zero-day research project against an HP Poly VVX 450 Voice over Internet Protocol (VoIP) phone. This research resulted in the discovery of a critical unauthenticated stack-based buffer overflow vulnerability, CVE-2026-0826. A remote attacker can l…RAPID7.COM
1 JunCritical Windows Netlogon Vulnerability in Attackers’ CrosshairsOrganizations are advised to patch CVE-2026-41089 as soon as possible, given its severity, the potential ongoing exploitation. The post Critical Windows Netlogon Vulnerability in Attackers’ Crosshairs appeared first on SecurityWeek .SECURITYWEEK.COM
1 Jun KEVWindows Netlogon RCE exploited, domain controllers at risk (CVE-2026-41089)CVE-2026-41089, a critical Windows Netlogon RCE flaw that allows remote code execution, is now actively exploited in the wild, the Centre for Cybersecurity Belgium (CCB) warned on Friday. About CVE-2026-41089 CVE-2026-41089 is a stack-based buffer overflow vulnerability in Window…HELPNETSECURITY.COM
1 JunVU#158530: PCTCore64.sys Windows kernel driver contains missing access control vulnerabilityOverview The PCTCore64.sys Windows kernel driver from PC Tools Internet Security exposes its \\.\PCTCoreDriver device interface with no access control, allowing any user-mode process to interact with the driver and invoke privileged IOCTL (I/O Control) commands. In a Bring Your O…KB.CERT.ORG
1 JunOracle’s first monthly patch release fixes 35 flaws, including 11 rated ‘critical’Oracle has released the first security fixes in its new monthly Critical Security Patch Update (CSPU) cycle, designed to address urgent vulnerabilities that can’t wait for the company’s quarterly patching. The initial batch addresses 35 flaws, including several for which exploit …CSOONLINE.COM
1 JunWP Maps Pro Vulnerability Exploited to Take Over WordPress SitesThe security defect (CVE-2026-8732) allows unauthenticated attackers to create administrative accounts on the affected installations. The post WP Maps Pro Vulnerability Exploited to Take Over WordPress Sites appeared first on SecurityWeek .SECURITYWEEK.COM
1 JunInspector general finds NIST mistakes have made vulnerability database ineffectiveNIST’s National Vulnerability Database (NVD) backlog mushroomed from 13,000 unprocessed security vulnerabilities in February 2024 to more than 27,000 by the end of 2025, “undermining the NVD’s utility and public trust," according to an inspector general report.THERECORD.MEDIA
1 JunAttackers are exploiting Palo Alto Networks defect that initially flew under the radarThe escalated threat posed by the defect showcases how quickly a seemingly mild vulnerability can turn into an urgent warning. The post Attackers are exploiting Palo Alto Networks defect that initially flew under the radar appeared first on CyberScoop .CYBERSCOOP.COM
⚠️ VULNERABILITY DISCLOSURE 35[−]
1 JunPress Release: CSO30 ASEAN & Hong Kong Awards 2026 open for nominations>The CSO30 ASEAN & Hong Kong Awards return in 2026, as an important moment to recognise the cybersecurity leaders and teams who are making resilience measurable across the region. In a landscape shaped by rapid threat evolution, board-level scrutiny and rising expectations of…CSOONLINE.COM
1 JunGoverning shadow AI without killing innovationIn this Help Net Security video, Alan Snyder, CEO at NowSecure, talks about governing shadow AI without stopping innovation. He frames the problem as two opposing forces. Companies need to adopt AI fast because attackers and competitors will outpace them otherwise, but they also …HELPNETSECURITY.COM
1 Jun145 AI laws passed in 2025 and privacy teams aren’t catching a break145 AI-related laws were enacted by state legislatures in 2025, and more than 1,000 additional bills were introduced or revised, according to DataGrail’s Privacy and AI Trends Report 2026. Average cost of manual data subject request management (Source: DataGrail) Shadow AI …HELPNETSECURITY.COM
1 JunOWASP Agent Memory Guard: Stop AI agents from being weaponized through their own memoryAI agents keep memory across sessions. Conversation history, vector stores, scratchpads, and RAG indexes persist between runs, and anything written into that store becomes a privileged input the agent reads back later. An attacker who plants text in the wrong field can override a…HELPNETSECURITY.COM
1 Jun6 critical security gaps every CISO must addressCISOs acknowledge that no organization is completely safe, but many also admit their security measures aren’t where they’d like them to be. One-third of CISOs surveyed for Proofpoint’s 2025 Voice of the CISO Report said the data within their organization is not adequately protect…CSOONLINE.COM
1 JunAsimily turns device risk into automated network policyAsimily has launched Segmentation Orchestration, enabling connected-device risk intelligence to flow directly into enforceable network policy without manual translation. No other platform combines full asset visibility, vulnerability prioritization, and segmentation orchestration…HELPNETSECURITY.COM
1 Jun KEVPalo Alto Warns High-Severity Bug Is Being Actively ExploitedA vulnerability in Palo Alto Networks’ PAN-OS software is being exploited in attacksINFOSECURITY-MAGAZINE.COM
1 JunNVIDIA goes open source with a big batch of physical AI agent toolsNVIDIA just dropped a big batch of open-source “physical AI” skills and tools, and they’re designed to make a roboticist’s life a whole lot easier. The idea? Take the messy, complicated work behind robots, self-driving cars, vision AI, and industrial digit…HELPNETSECURITY.COM
1 Jun KEVCritical WP Maps Pro Flaw Actively Exploited to Create Admin AccountsThreat actors are attempting to actively exploit a critical security flaw impacting WP Maps Pro, a WordPress plugin that has had over 15,000 sales on the Envato Market, to create malicious administrator accounts on susceptible sites. WP Maps Pro allows site owners to embed custom…THEHACKERNEWS.COM
1 JunHelping defense's use of AI catch up with offense, cost of the vulnpocalypse, news - ESW #461Interview with Evan Powell - Generative and agentic AI are improving cyberattacks faster than they're improving cyber defenses. Offensive folks have been having the most luck with AI so far, which is further eroding any advantage defenders might have had. Evan Powell joins us to …YOUTUBE.COM
1 JunTop 4 data security best practices for the AI-enabled enterpriseTo maximize AI’s value without increasing security risk, organizations must enforce best‑practice data protections across their environment.CYBERSECURITYDIVE.COM
1 JunDashlane hit by brute-force campaign triggering account suspensionsDashlane has confirmed that a brute-force attack over the weekend triggered a wave of account suspension emails, unusual login notifications, and authentication issues. The password manager says the incident was caused by attacks against individual accounts rather than a breach o…CYBERINSIDER.COM
1 JunOpenAI Codex Authentication Tokens Stolen in codexui-android npm Supply Chain AttackCybersecurity researchers have disclosed details of a new malicious supply chain campaign that's targeting developers using OpenAI Codex through a legitimate-looking remote web UI. The tool, named codexui-android, is advertised on GitHub and npm as a remote web UI for OpenAI Code…THEHACKERNEWS.COM
1 Jun19-Year-Old Linux Kernel Vulnerability Exposes Systems to Root Accessproof-of-concept (PoC) exploit code has been released for the CIFSwitch flaw, which allows low-privileged users to escalate to root on vulnerable Linux systems. The post 19-Year-Old Linux Kernel Vulnerability Exposes Systems to Root Access appeared first on SecurityWeek .SECURITYWEEK.COM
1 JunMicrosoft says it will not pursue security researchers after zero-day backlashMicrosoft said it is taking the feedback seriously, adding: “To be clear about our approach to legal matters, we have no intention to pursue action against individuals conducting or publishing their security research.”THERECORD.MEDIA
1 JunCritical Windows Netlogon RCE flaw now exploited in attacksThe Centre for Cybersecurity Belgium (CCB), the country's national authority for cybersecurity, warned on Friday that threat actors are now exploiting a recently patched critical Windows Netlogon vulnerability in attacks. [...]BLEEPINGCOMPUTER.COM
1 JunMicrosoft Defender Vulnerability Management gets a smarter exposure scoreMicrosoft Defender Vulnerability Management’s updated exposure score model adds vulnerability risk signals and asset context to help teams understand where risk is concentrated and which remediation actions are likely to have the greatest impact. The model is available in public …HELPNETSECURITY.COM
1 Jun KEVHorizon3.ai introduces Rapid Response to prioritize and verify vulnerability remediationHorizon3.ai has introduced Rapid Response, a capability that helps organizations assess exposure to newly disclosed threats, prioritize remediation, and verify that vulnerabilities have been addressed. Security teams are inundated with vulnerability disclosures, threat intelligen…HELPNETSECURITY.COM
1 JunMiasma: Supply Chain Attack Targeting RedHat npm PackagesDetect and mitigate malicious npm packages linked to the latest npm supply chain attack, based on the open sourced Mini Shai-Hulud malware.WIZ.IO
1 JunCritical Flowise Flaw Gives Attackers Full Server ControlObsidian publishes PoC for a 1-click Flowise RCE that can fully compromise self-hosted serversINFOSECURITY-MAGAZINE.COM
1 JunRace Against Time: Why Faster Vulnerability Alerts MatterAttackers are exploiting vulnerabilities faster than many organizations can identify and patch them. SecAlerts explains why faster vulnerability alerts can help reduce exposure and improve response times. [...]BLEEPINGCOMPUTER.COM
1 JunBrute-force attack triggers Dashlane account lockoutsPassword manager Dashlane has confirmed that a brute-force attack targeting user accounts triggered temporary account suspensions and authentication issues. The company first acknowledged the incident on May 31 after users reported receiving account suspension emails and experien…HELPNETSECURITY.COM
1 JunInsight bundles exposure management, patch operations, and XDR into one serviceInsight has launched Insight Managed Exposure Defense, a managed security service designed to help organizations identify and address vulnerabilities. The service aims to help organizations reduce exposure and implement protections without lengthy procurement processes or relianc…HELPNETSECURITY.COM
1 Jundepthfirst adds pre-install protection against malicious dependenciesdepthfirst has introduced Dependency Firewall, a product that reviews every open-source package being downloaded anywhere in a company and blocks the malicious ones before they reach the person or system that requested them. Developers, AI agents, and any employee using Claude, C…HELPNETSECURITY.COM
1 JunCato cuts vulnerability protection time to 45 minutes with agentic threat researchCato Networks announced a new capability that reduces time-to-protect for newly disclosed vulnerabilities to 45 minutes. The company attributes this reduction to the use of agentic threat research designed to accelerate protection against emerging exploits. Traditional appliance-…HELPNETSECURITY.COM
1 Jun⚡ Weekly Recap: New Linux Flaw, PAN-OS Exploit, AI-Powered Attacks, OAuth Phishing and MoreMonday hit like a cron job with anger issues. A busted auth path here, a repo-side faceplant there, some "patched-ish" thing already getting chewed on in the wild, and then the usual bonus round: poisoned dev tools, sketchy forum chatter, phishing kits pretending to be productivi…THEHACKERNEWS.COM
1 JunAI Is Reviving Anomaly DetectionSecurity teams are revisiting anomaly detection using architectures inspired by modern large language models. Instead of relying on static signatures or isolated events, these “log LLMs” analyze large behavioral sequences across high-volume telemetry sources such as DNS, WAF logs…YOUTUBE.COM
1 JunPatch Now: Another Palo Alto Auth Bypass Bug Under Active ExploitExploiting the PAN-OS GlobalProtect VPN vulnerability requires certain conditions, but adversaries have done so in two attack waves that started in mid-May.DARKREADING.COM
1 JunEliminate Critical API Attack Paths with Wiz API SPMWiz API SPM is now GA, enabling customers to discover APIs, assess APIs for exploitability, and prioritize remediation to mitigate the risk of an API-related breach.WIZ.IO
1 JunVulnerability Disclosure in the Age of AINew article: “ Responsible Disclosure in the Age of AI: A Call for Urgent Action ,” by Melissa Hathaway. Abstract: Artificial intelligence is fundamentally reshaping the balance between vulnerability discovery and remediation. Frontier AI models are now capable of aut…SCHNEIER.COM
1 JunCritical Netlogon flaw is under active exploitation.Military leaders debate battlefield AI. California sues 23andMe over 2023 data breach.THECYBERWIRE.COM
1 JunBrave’s new AgentStop system reduces wasted AI battery drain by 23%Brave has introduced AgentStop, a new open-source system designed to reduce the energy consumed by local AI agents running on consumer hardware. The technology monitors AI agent behavior in real time and can terminate tasks that are unlikely to succeed, helping conserve battery l…CYBERINSIDER.COM
1 JunHackers Used Meta’s AI Support Bot to Seize Instagram AccountsThe Instagram accounts for the Obama White House and the Chief Master Sergeant of the U.S. Space Force were briefly defaced with pro-Iranian images and messages over the weekend, after instructions began circulating on Telegram showing how to trick Meta's "AI support assistant" b…KREBSONSECURITY.COM
1 JunDashlane password manager users locked out by brute force attacksMultiple Dashlane users have been locked out of their accounts following brute-force attacks that attempted logins from distant locations and unknown devices. [...]BLEEPINGCOMPUTER.COM
1 JunMicrosoft's Zero-Day Legal Threats Spark BacklashAfter a disgruntled security researcher published several zero-day exploits in recent weeks, Microsoft seemingly indicated criminal charges were in order.DARKREADING.COM
📋 SECURITY BULLETINS 1[−]
1 JunMicrosoft fixes KB5089549 Windows security update install issuesMicrosoft has resolved a known issue causing installation failures and 0x800f0922 errors when deploying the May 2026 Windows 11 security update (KB5089549). [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 9[−]
1 JunEU organizations buckle under rising compliance pressureCybersecurity governance in the EU is shifting under expanding frameworks such as NIS2 and DORA, while AI raises new questions for security teams. What the future brings is hard to predict, and organizations must find a way to cope. Antonija Vojnović, Governance, Risk and Complia…HELPNETSECURITY.COM
1 JunData discovery gaps that catch enterprises off guardIn this interview with Help Net Security, Avani Desai, CEO at Schellman, talks about the gap between what organizations think they know about their data and what discovery scans turn up. She shares stories of shadow data in abandoned cloud storage, post-merger surprises where dup…HELPNETSECURITY.COM
1 Jun1,000 Data Breaches Later, the Disclosure Lag is Worse Than EverPresently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite Today, I loaded the 1,000th data breach into Have I Been Pwned . Reflecting on that milestone number, I pondered how to mark the occasi…TROYHUNT.COM
1 JunThe Security Growth Platform: Why MSPs Are Moving Beyond vCISO ToolsThree years ago, the practical question for an MSP building a cybersecurity practice was which "vCISO platform" to buy. The term was good shorthand for the work at the time: assessments, advisory, reporting, maybe a compliance module bolted on the side. The work has since outgrow…THEHACKERNEWS.COM
1 JunAs the Pentagon Pushes for Battlefield AI, Some Military Leaders Urge CautionAI’s use in the military is part of the administration’s larger push to grow the capability it sees as a unique American advantage. The post As the Pentagon Pushes for Battlefield AI, Some Military Leaders Urge Caution appeared first on SecurityWeek .SECURITYWEEK.COM
1 JunMullvad VPN on Android passes Google-backed MASA security auditMullvad has announced that its Android VPN application has successfully passed the Mobile Application Security Assessment (MASA) for a second consecutive year. The assessment identified several minor issues, all of which were addressed in a subsequent release, resulting in a succ…CYBERINSIDER.COM
1 JunUSPS moving forward with mail-in ballot changes as courts weigh Trump’s election orderA judge said Democrats and civil groups filed the lawsuit too early to demonstrate harm, but that could change after newly proposed postal regulations. The post USPS moving forward with mail-in ballot changes as courts weigh Trump’s election order appeared first on CyberScoop .CYBERSCOOP.COM
1 JunAI joins the chain of command.Battlefield AI sparks debate. Election cyber threats rise. A critical Windows flaw is under active attack. CISA weighs new reporting rules. Russian targets face a stealthy hacking campaign. A 19-year-old Linux bug gets its day in the sun. Today’s business update. Our guest is Hea…THECYBERWIRE.COM
1 JunAnthropic to Open Mythos AI to EU's ENISAThe European security agency's entry to Project Glasswing is the result of "strong bilateral cooperation" between the European Commission and Anthropic.DARKREADING.COM
🔥 INCIDENT REPORTING 14[−]
1 JunWeekly Update 506Presently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite I'm finding it quite fascinating to watch the current spate of ShinyHunters breaches and dumps. There's the obvious criminali…TROYHUNT.COM
1 JunEdmunds - 177,860 breached accountsIn January 2026, the automotive research and car-shopping platform Edmunds was listed by the ShinyHunters hacking group as having been breached . Data purportedly obtained in the incident was later published publicly and included 178k unique email addresses, usernames, passwords,…HAVEIBEENPWNED.COM
1 JunMicrosoft confirms outage affecting MFA, My Sign-Ins platformMicrosoft is working to address an ongoing incident preventing customers from setting up multi-factor authentication (MFA) or accessing the My Sign-Ins platform. [...]BLEEPINGCOMPUTER.COM
1 JunInfosecurity Europe: Tabletop Exercise to Test How CISOs Respond to Major Supermarket Cyber-AttackSemperis is set to bring ‘Enter the War Room: A Tabletop Experience’ to Infosecurity Europe to help cybersecurity leaders prepare to face real incidentsINFOSECURITY-MAGAZINE.COM
1 JunWebinar tomorrow: From alert to resolution in network incident responseNetwork incidents are often detected quickly, but investigations and coordination can delay resolution. Join our webinar tomorrow to learn how automation and AI-assisted workflows can help IT teams accelerate incident response. [...]BLEEPINGCOMPUTER.COM
1 JunMicrosoft fixes outage affecting MFA setup, MySignIn serviceMicrosoft is working to address an ongoing incident preventing customers from setting up multi-factor authentication (MFA) or accessing the My Sign-Ins platform. [...]BLEEPINGCOMPUTER.COM
1 Jun1st June – Threat Intelligence ReportFor the latest discoveries in cyber research for the week of 1st June, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES Carnival Corporation, a global cruise line operator, has confirmed a data breach affecting nearly 6 million people after attackers use…RESEARCH.CHECKPOINT.COM
1 JunMicrosoft investigates Office Apps, Teams file access issuesMicrosoft says an ongoing incident is preventing users of its Teams collaboration platform and Office for the web cloud-based productivity suite from opening files. [...]BLEEPINGCOMPUTER.COM
1 JunGrand Theft Auto V cheat service gets hacked, exposing thousands of gamersHackers stole usernames, hashed passwords, and other data from a service that allowed players to cheat in Grand Theft Auto V.TECHCRUNCH.COM
1 JunMiasma Supply Chain Attack Compromises Red Hat npm Packages with Credential-Stealing WormA new Mini Shai-Hulud supply chain attack campaign, codenamed Miasma, has compromised @redhat-cloud-services packages to steal credentials and secrets from developer machines and deliver a self-propagating worm. "This is effectively a Mini Shai-Hulud campaign: it uses the same co…THEHACKERNEWS.COM
1 JunHackers hijacked Instagram accounts by tricking Meta AI support chatbot into granting accessSeveral users on social media reported having their Instagram accounts hacked over the weekend. Meta's own support chatbot was blamed for allowing hackers to hijack accounts.TECHCRUNCH.COM
1 JunTina Peters, convicted in election-security breach, emerges defiant and vows legal fightThe former Colorado election clerk struck an unrepentant pose in her first interview after her prison sentence was commuted by Colorado Governor Jared Polis. The post Tina Peters, convicted in election-security breach, emerges defiant and vows legal fight appeared first on CyberS…CYBERSCOOP.COM
1 JunRed Hat npm packages compromised to steal developer credentialsMore than 30 npm packages under Red Hat's '@redhat-cloud-services' namespace were compromised in a supply-chain attack that distributed a new variant of the Shai-Hulud credential-stealing malware, dubbed "Miasma." [...]BLEEPINGCOMPUTER.COM
1 JunHackers hijack thousands of sites for ClickFix and FakeUpdate attacksA threat actor tracked as DriveSurge has been operating large-scale malware distribution campaigns using ClickFix and FakeUpdates techniques on compromised sites. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 16[−]
1 JunISC Stormcast For Monday, June 1st, 2026 https://isc.sans.edu/podcastdetail/9952, (Mon, Jun 1st)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
1 JunDNS-AID lets AI agents find and verify each other through DNSAI agents run across many platforms, and each one needs a way to locate and confirm the identity of the others it works with. The Linux Foundation’s DNS-AID project gives them that capability through the Domain Name System, the same address lookup system that has directed i…HELPNETSECURITY.COM
1 JunElection threats are focused on campaign systems, not voting machinesCheck Point said actors are shifting toward campaign systems and AI-generated content, outpacing the public's ability to understand and respond to the risks. The post Election threats are focused on campaign systems, not voting machines appeared first on CyberScoop .CYBERSCOOP.COM
1 JunAttackers Abuse Shared Content for ChatGPT Phishing CampaignPush Security says threat actors are delivering malware hosted on chatgpt.com/s/ domainINFOSECURITY-MAGAZINE.COM
1 JunDragos acquires Phosphorus to secure extended operational technologyDragos has acquired Phosphorus, extending the Dragos Platform to protect billions of connected devices embedded across critical infrastructure and other operational networks. Operational environments have outgrown traditional OT boundaries. Power grids, pipelines, manufacturing f…HELPNETSECURITY.COM
1 JunDragos Acquires xIoT Security Firm PhosphorusDragos said customers will soon gain expanded asset visibility and integrated device intelligence, with automated remediation workflows and a unified platform experience to follow. The post Dragos Acquires xIoT Security Firm Phosphorus appeared first on SecurityWeek .SECURITYWEEK.COM
1 JunSecure Code Warrior connects developer training to AI usage and code risksSecure Code Warrior has introduced Adaptive Learning, a capability designed to help organizations support AI software governance through targeted training based on identified risks. The feature delivers contextual microlearning and tracks outcomes at the code commit level. Softwa…HELPNETSECURITY.COM
1 JunPathSolutions brings on-premises AI troubleshooting to NetOps teamsPathSolutions has announced the launch of TotalView AI, a new capability within its TotalView platform that provides AI-driven troubleshooting for NetOps teams using network data analyzed on-premises. As enterprise networks become more distributed and complex, NetOps teams face i…HELPNETSECURITY.COM
1 JunHyland platform innovations focus on AI governance, context, and agent oversightHyland has unveiled platform innovations designed to move AI from experimentation to enterprise-wide adoption. Powered by the Content Innovation Cloud, these advancements transform governed enterprise content into trusted, actionable intelligence that accelerates business outcome…HELPNETSECURITY.COM
1 JunChina-Aligned Groups Ramp Up Attacks: Dragon Weave Hits Czech Republic & TaiwanA new cyber espionage campaign codenamed Operation Dragon Weave has been observed targeting officials and citizens in the Czech Republic and Taiwan to deliver an AdaptixC2 agent. According to Seqrite Labs, targets of the campaign include government, research, academic, technology…THEHACKERNEWS.COM
1 JunWithout strong governance, companies put credit ratings at risk in AI eraA new report from S&P Global provides a blueprint for how companies can adapt to the changing threat environment.CYBERSECURITYDIVE.COM
1 JunNetQuest expands NetworkLens to detect threats hidden in network management trafficNetQuest announced an expansion of its NetworkLens enriched dataset portfolio. The new network telemetry datasets deliver detailed traffic characteristics of network management transactions, giving security teams the granular, AI-ready intelligence needed to detect threats hidden…HELPNETSECURITY.COM
1 JunMeta tries to get ahead of scammers before the World Cup beginsFootball fans are counting down the days until the FIFA World Cup begins, and scammers are doing the same. Last week, the FBI warned that cybercriminals are spoofing FIFA websites to steal personal information, sell fake tickets, and promote fraudulent hospitality packages ahead …HELPNETSECURITY.COM
1 JunDutch Police Dismantle Massive 17-Million-Device BotnetDutch authorities seized command-and-control servers tied to a botnet of infected computers, smartphones, and tablets that was allegedly used to power a residential proxy network and facilitate cybercrime. The post Dutch Police Dismantle Massive 17-Million-Device Botnet appeared …SECURITYWEEK.COM
1 JunOpenAI requires stronger authentication for users of its most powerful AI modelsYubico announced its significant role in securing the AI frontier as OpenAI mandates the use of passkeys for individuals that are part of their Trusted Access for Cyber (TAC) program. As a leading global AI research and development company, OpenAI is setting a precedent for empow…HELPNETSECURITY.COM
1 JunHumans Could Become Cheaper Than AIAI infrastructure costs, including GPUs and token processing, continue to decrease as the technology matures. At the same time, organizations are dramatically increasing how much AI they consume, shifting many platforms toward usage-based pricing instead of flat monthly subscript…YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 5[−]
1 JunA week in security (May 25 – May 31)A list of topics we covered in the week of May 25 to May 31 of 2026MALWAREBYTES.COM
1 JunRapid7 and Exclusive Networks Expand Partnership Across the NordicsBuilding stronger cybersecurity outcomes together The cybersecurity landscape across the Nordics is evolving rapidly. Organizations are facing increasing pressure to modernize security operations, reduce complexity, and respond faster to threats, all while navigating growing regu…RAPID7.COM
1 JunContainers on fire: from container escapes to supply chain attacksWe break down the primary attack vectors in containerized environments: exposed secrets, privilege misconfigurations, API compromise, and supply chain attacks.SECURELIST.COM
1 JunFake BlueWallet steals passwords, accounts, and crypto from MacsA fake BlueWallet download tricks Mac users into running malware that steals passwords, crypto wallets, and clipboard data.MALWAREBYTES.COM
1 JunWordPress malware campaign hides payloads in Steam profilesNearly 2,000 WordPress websites were infected with malware that relies on Steam Community profile comments to hide command-and-control (C2) data. [...]BLEEPINGCOMPUTER.COM
📰 CYBERSECURITY BRIEFINGS 1[−]
1 JunRed Canary CFP tracker: May 2026Red Canary's monthly roundup of upcoming security conferences and call for papers (CFP) submission deadlines May 2026REDCANARY.COM
🎙️ PODCASTS 2[−]
1 JunPayment apps are watching what you say (Lock and Code S07E11)This week on the Lock and Code podcast, we speak with Rainey Reitman about financial censorship that boots customers off major payment apps.MALWAREBYTES.COM
1 JunThe Content Challenge Behind AI Adoption with Heather Ceylan from BoxHeather Ceylan, CISO at Box, joins Dave Bittner on the CyberWire Daily podcast for a sponsored Industry Voices to discuss why many organizations have a content problem, not just an AI problem. Heather explains how fragmented, unstructured, and poorly governed content undermines A…THECYBERWIRE.COMHTTPS:
📡 INFOSEC NEWS 14[−]
1 JunCrowdStrike Scales AI-Native Agents Across Falcon Exposure Management with NVIDIACROWDSTRIKE.COM
1 JunCrowdStrike Brings Enterprise-Grade Security to the AI Factory with NVIDIA Vera BlueField-4 STXCROWDSTRIKE.COM
1 JunInfosecurity Europe: OWASP Forms New Agentic Research CouncilOWASP’s new Agentic Research Council will aim to connect academic work to operational realities on agentic AI securityINFOSECURITY-MAGAZINE.COM
1 JunYour phone called. It needs a cleanup.Introducing Android Junk Cleaner. It scans your phone for leftover files, temporary data, and outdated caches that build up and slow down your device.MALWAREBYTES.COM
1 JunHow Canva scaled to 260+M users while elevating security and productivitySee how Canva uses 1Password to integrate new teams fast, empower developers and maintain high standards for customers.CYBERSECURITYDIVE.COM
1 JunWebsites Can Now Spy on You Through Your Hard DriveThanks to the newly detailed FROST technique, telltale SSD activity can be measured in the browser using simple JavaScript.WIRED.COM
1 JunThe Romance Scammer Who Made a Small Fortune Posing as a WWE SuperstarIn this excerpt from WIRED Book Club pick The Yahoo Boys, journalist Carlos Barragán traces one scammer’s journey from flop to fortune.WIRED.COM
1 JunFSB Group Gamaredon Hides Worm in Windows Data StreamsFSB-linked Gamaredon concealed a fileless worm in NTFS data streams to spy on Ukraine targetsINFOSECURITY-MAGAZINE.COM
1 JunInfosecurity Europe: AI SOCs Will Still Need SOC Analysts, Security Vendors SayTop cybersecurity vendors said AI won't replace entry-level – only routine ticket-taking and triageINFOSECURITY-MAGAZINE.COM
1 JunInvestigating suspicious AI workflows in Microsoft Entra Agent ID: Agent’s user accountEntra ID agent users can send malicious content to human users via Microsoft Teams. Here’s what to look out for.REDCANARY.COM
1 JunSpring 2026 SOC 1, 2, and 3 reports are now available with 188 services in scopeAmazon Web Services (AWS) is pleased to announce that the Spring 2026 System and Organization Controls (SOC) 1, 2, and 3 reports are now available. The reports cover 188 services over the 12-month period from April 1, 2025–March 31, 2026, giving customers a full year of assurance…AWS.AMAZON.COM
1 JunNSA selects new leads for key cybersecurity postsDavid Imbordino, an NSA senior executive who most recently led its cybersecurity directorate in an acting capacity, has been named as its new chief. Bruce Jones, a career NSA technical and operational leader, as the new head of its Cybersecurity Collaboration Center.THERECORD.MEDIA
1 JunSpain arrests doxer leaking sensitive data of govt employeesThe Spanish National Police has arrested an individual for leaking sensitive information related to members of various key state organizations, including the National Cybersecurity Institute (INCIBE). [...]BLEEPINGCOMPUTER.COM