🚨 CISA KEV 2[−]
17 Jun KEVWhat 22,000 breaches teach us about incident preparednessThe 2026 Verizon Data Breach Investigations Report analyzed more than 22,000 confirmed data breaches across 145 countries. Its findings point to a single uncomfortable truth: organizations cannot patch fast enough to prevent every incident. Exploitation of vulnerabilities surged …CSOONLINE.COM
17 Jun KEVOperationalize CISA BOD 26-04 with Tenable OneCISA’s new directive officially ends federal agencies’ reliance on static vulnerability scores. Learn how Tenable One helps federal agencies pivot to dynamic asset exposure, threat validation, and AI-powered automation to meet compressed compliance timelines. Key takeaways CISA’s…TENABLE.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 8[−]
17 JunScam Losses Surge - Cybersecurity TodayCybersecurity Today host David Shipley reports that the FTC says Americans lost $3.5 billion to imposter scams in 2025—nearly triple 2020—with social media tied to $2.1 billion in losses and total fraud reaching about $16 billion, while the FBI estimates cyber-enabled losses near…CYBERSECURITYTODAY.LIBSYN.COM
17 Jun KEVCISA Warns of Actively Exploited Joomla JCE Flaw Allowing PHP Code ExecutionThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a maximum-severity security flaw impacting Widget Factory Joomla Content Editor (JCE) to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability,…THEHACKERNEWS.COM
17 JunMicrosoft working on patch for RoguePlanet Defender zero-day (CVE-2026-50656)Microsoft has acknowledged the local elevation of privilege issue in Microsoft Defender that can be triggered via the “RoguePlanet” exploit, and is “working to provide a high quality security update that addresses this vulnerability.” The vulnerability, wh…HELPNETSECURITY.COM
17 JunCVE-2026-47636 Microsoft SharePoint Server Spoofing VulnerabilityAcknowledgement added. This is an informational change only.MSRC.MICROSOFT.COM
17 JunCVE-2026-45475 Microsoft Office Remote Code Execution VulnerabilityAcknowledgement added. This is an informational change only.MSRC.MICROSOFT.COM
17 JunCVE-2026-42828 Windows Projected File System Elevation of Privilege VulnerabilityAcknowledgement added. This is an informational change only.MSRC.MICROSOFT.COM
17 JunMicrosoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in DevelopmentMicrosoft has formally disclosed that it's working to release a patch to address a Defender zero-day codenamed RoguePlanet. The vulnerability has now been assigned the CVE identifier CVE-2026-50656 (CVSS score: 7.8), with the tech giant describing it as a privilege escalation fla…THEHACKERNEWS.COM
17 JunVU#380058: SignalRGB kernel driver contains improper access control and IOCTL vulnerabilitiesOverview The SignalRGB kernel driver, SignalIo.sys , contains two vulnerabilities involving improper access control and unsafe memory handling. The device object is created with an overly permissive Discretionary Access Control List (DACL) that allows user-mode processes to acces…KB.CERT.ORG
⚠️ VULNERABILITY DISCLOSURE 32[−]
17 JunGoogle Vertex AI SDK Flaw Let Attackers Hijack Model Uploads via Bucket SquattingA flaw in the Google Cloud Vertex AI SDK for Python let an attacker with no access to a victim's project hijack the victim's machine learning model upload and run code inside Google's serving infrastructure. Palo Alto Networks Unit 42, which found and reported the bug through Goo…THEHACKERNEWS.COM
17 JunMicrosoft says you don’t need another email security tool; experts say, not so fastDespite best efforts by defenders, malicious emails continue to slip through the cybersecurity cracks , leading some enterprises to implement a layered “defense in depth” strategy that incorporates multiple tools. Microsoft seems to be challenging this idea, revealing that there …CSOONLINE.COM
17 JunMicrosoft AntiSSRF open-source library helps block server-side request forgeryAntiSSRF is an open-source code library from Microsoft that validates URLs and network connections to reduce server-side request forgery (SSRF) risks in web applications. It supports .NET and Node.js applications and is distributed under the MIT license. The library works as a dr…HELPNETSECURITY.COM
17 Jun144 Mastra npm Packages Compromised via Hijacked Contributor AccountAs many as 144 npm packages associated with the Mastra namespace ("@mastra/*"), a popular open-source JavaScript and TypeScript framework for building artificial intelligence (AI) applications, have been compromised as part of a software supply chain attack codenamed easy-day-js,…THEHACKERNEWS.COM
17 JunHot Cybercrime Summer: Smishing, Supply Chains, and SleuthconIn this episode of the Microsoft Threat Intelligence Podcast, host Sherrod DeGrippo sits down with Aurora Johnson of SpyCloud and Amitai Cohen of Wiz ahead of SleuthCon to explore two rapidly changing corners of the cybercrime landscape. Aurora breaks down the highly organiz…THECYBERWIRE.COM
17 JunJoomla, LiteSpeed Vulnerabilities Exploited in AttacksThe flaws allow attackers to execute arbitrary PHP code and gain root privileges on shared hosting servers. The post Joomla, LiteSpeed Vulnerabilities Exploited in Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
17 JunMicrosoft working on Defender patch for RoguePlanet zero-dayMicrosoft confirmed that it's working on a security patch for a Defender zero-day vulnerability named "RoguePlanet," disclosed one week ago. [...]BLEEPINGCOMPUTER.COM
17 JunChrome and Firefox Updated to Patch Critical, High-Severity VulnerabilitiesThe browser updates address multiple memory safety bugs that could potentially lead to remote code execution. The post Chrome and Firefox Updated to Patch Critical, High-Severity Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
17 Jun5 AI risk management frameworks for shoring up key gapsOrganizations racing to embed AI into business operations are realizing that the risk management frameworks they’ve relied on for decades aren’t built for the behaviors, failure modes, and ethical complexities AI systems introduce. Fortunately, a new generation of AI-specific fra…CSOONLINE.COM
17 JunMicrosoft Working on Patch for ‘RoguePlanet’ Zero-DayThe public PoC code exploits a race condition in Microsoft Defender to spawn a command prompt with System privileges. The post Microsoft Working on Patch for ‘RoguePlanet’ Zero-Day appeared first on SecurityWeek .SECURITYWEEK.COM
17 JunThe Chainguard Athena coalition already shipped 2,000 patches across 500 open source projectsChainguard launched Athena, an industry coalition that pools open source vulnerability findings and remediates them under embargo before public disclosure. The group went live with more than two dozen member organizations. Founding members include BNY, Chainguard, Cisco, Cloudfla…HELPNETSECURITY.COM
17 JunThe Top 10 Attack Surface Exposures in 2026Breaches don't always start with a zero-day. An exposed admin panel can get brute-forced, or credentials reused from a previous attack. But when a vulnerability does drop — like MongoBleed earlier this year, which let attackers pull credentials and session tokens from server memo…THEHACKERNEWS.COM
17 Jun KEVCISA orders feds to patch max severity Joomla plugin flaw by FridayThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to patch a maximum-severity flaw in the Widget Factory Joomla Content Editor (JCE) plugin that is being actively exploited in the wild. [...]BLEEPINGCOMPUTER.COM
17 JunMicrosoft Teams Relay Servers Abused in DragonForce Ransomware AttackThe attackers deployed a new Go-based backdoor that uses Microsoft Teams servers for command-and-control. The post Microsoft Teams Relay Servers Abused in DragonForce Ransomware Attack appeared first on SecurityWeek .SECURITYWEEK.COM
17 JunAI Use by the US GovernmentOn 14 April, the Trump administration quietly acknowledged the widespread use of AI to automate government processes. The office of management and budget (OMB) disclosed a staggering 3,611 active or planned use cases for AI across the federal government. The list has ballooned by…SCHNEIER.COM
17 JunGoogle’s Vertex AI SDK could allow RCE through bucket squattingA design flaw in the Vertex AI software development kit (SDK) for Python, Google Cloud’s managed platform for building, training, and deploying AI agents, could allow hijacking and poisoning of models outside of a developer’s own Google Cloud project. According to Unit 42 researc…CSOONLINE.COM
17 JunMalware à la Mode: Tracking Dropping Elephant Tradecraft Through a China-Themed Loader ChainExecutive summary Rapid7 researchers have identified a sophisticated malware campaign attributed to the threat actor "Dropping Elephant," characterized by the use of a China-themed decoy document to deliver a heavily reworked, in-memory remote access trojan (RAT). This campaign d…RAPID7.COM
17 JunFirefox AI Chatbot feature exposed users to email theft riskA vulnerability in Firefox's AI chatbot integration could allow malicious websites to inject hidden instructions into AI prompts and extract data from connected services such as email accounts. Mozilla has implemented mitigations, though the researchers who discovered the problem…CYBERINSIDER.COM
17 JunArmorCode helps product manufacturers prepare for EU Cyber Resilience Act requirementsArmorCode has announced new Cyber Resilience Act (CRA) capabilities within the ArmorCode Agentic AI Platform. The capabilities help manufacturers of products with digital elements (PDEs) prepare for the European Union’s cybersecurity regulation that will impact all sellers …HELPNETSECURITY.COM
17 JunLegit Security brings agentic AI to AppSec remediation and risk reductionLegit Security has launched new remediation agents that independently prioritize issues, generate fixes, open pull requests, and confirm results using context learned from each organization’s distinct codebase. As AI allows attackers to exploit vulnerabilities faster than ever, r…HELPNETSECURITY.COM
17 JunTenable One adds continuous security control validation to improve exposure prioritizationTenable has announced extended continuous security control and validation capabilities within the Tenable One Exposure Management Platform. With security control visibility and evidence-based, contextualized insights, Tenable One confirms which cyber exposures are accessible and …HELPNETSECURITY.COM
17 JunTigera introduces unified control plane for Kubernetes-based AI agent securityTigera has announced the general availability of Tigera Lynx, a unified control plane for Kubernetes-native AI agents. Lynx gives enterprises a single place to find every agent in their Kubernetes estate, tighten security posture, assign sandboxes, provide each agent with a crypt…HELPNETSECURITY.COM
17 JunRokarolla Android trojan targets banking and crypto users, enables device takeoverA newly discovered Android banking trojan, dubbed Rokarolla, targets 217 banking and cryptocurrency applications and can execute 137 commands on infected devices, according to researchers at Zimperium. Named after its command-and-control (C2) infrastructure, Rokarolla is primaril…HELPNETSECURITY.COM
17 JunReactive Patching Is FailingOrganizations are increasingly reconsidering support for multiple browsers as threat environments become faster and more difficult to manage. Every additional browser increases the attack surface security teams must manage. Historically, user choice often outweighed standardizati…YOUTUBE.COM
17 JunApple’s Hide My Email service will soon be easier to identify and blockApple has announced plans to consolidate the email domains used by Sign in with Apple and iCloud+ Hide My Email under a new shared domain, private.icloud.com, later this summer. The change will affect newly generated anonymous email addresses, while existing addresses will contin…CYBERINSIDER.COM
17 JunAnother healthcare firm attacked days after Novo Nordisk breachMedical technology company iRhythm Holdings disclosed a cyberattack involving certain third-party-hosted business applications that resulted in the theft of patient protected health information, proprietary data, and other personal data. The company discovered unauthorized activi…HELPNETSECURITY.COM
17 JunAttackers hit pair of critical Fortinet vulnerabilities the vendor disclosed in AprilMultiple firms have observed active exploitation of the FortiSandbox defects, and warn that the attacks originate from multiple sources, not a single campaign. The post Attackers hit pair of critical Fortinet vulnerabilities the vendor disclosed in April appeared first on CyberSc…CYBERSCOOP.COM
17 JunAI isn’t solving cybersecurity workforce woesMore than half of cybersecurity professionals say they’re thinking about leaving the industry, according to a new report.CYBERSECURITYDIVE.COM
17 JunIntroducing the Red Agent POV SeriesAn inside look at how the Red Agent, our AI-Powered Attacker, uncovers complex, exploitable risks in the wildWIZ.IO
17 JunCrypto Clipper Campaign Abuses Fake Reviews, AI Narrators, and VirusTotal CommentsAn unknown threat actor has been observed leveraging paid or promoted posts on legitimate news websites to drum up buzz for their warez, according to new findings from Check Point Research. The threat actor also has at their disposal a dedicated WordPress phishing page that acts …THEHACKERNEWS.COM
17 JunBeyond the benchmark: Advancing security at AI speedRead how Microsoft Security has advanced its agentic vulnerability detection system, codename MDASH, integrating into real-world workflows across Windows, Azure, and identity systems. The post Beyond the benchmark: Advancing security at AI speed appeared first on Microsoft Securi…MICROSOFT.COM
17 JunSmashing Security podcast #472: AI gets hacked, and BitLocker gets bypassedWhat if your AI coding assistant could be tricked into stealing your own company's secrets - by reading a single booby-trapped bug report? No phishing email. No malware. No password ever stolen. Just an AI doing exactly what it was told. Meanwhile, someone themselves Nightmare Ec…GRAHAMCLULEY.COM
📋 SECURITY BULLETINS 1[−]
17 JunOracle’s Second Monthly Security Updates Deliver 245 PatchesOracle has released its June 2026 Critical Security Patch Update to fix vulnerabilities in Communications, EBS, Enterprise Manager and other products. The post Oracle’s Second Monthly Security Updates Deliver 245 Patches appeared first on SecurityWeek .SECURITYWEEK.COM
📢 SECURITY ADVISORIES 8[−]
17 JunThe checklist problem behind critical infrastructure cyber safetyAn asset owner can meet major federal cyber compliance standards and still run equipment that lacks the engineering to withstand an attack or a failure. New research from George Mason University examines how United States cyber policy defines reasonable care for systems that cont…HELPNETSECURITY.COM
17 JunUkraine can now tap EU cyber support during major attacksUkraine can now call on emergency cyber support from the European Union during large-scale cybersecurity incidents. The move follows a decision by the Council of the European Union to add the country to the EU Cybersecurity Reserve. The Reserve operates under ENISA, the European …HELPNETSECURITY.COM
17 JunWarner warns of CISA cuts, staffing gaps in letter to acting chiefWarner on Tuesday also wrote a letter to DHS Secretary Markwayne Mullin, underscoring that DHS must prioritize CISA and pay for the MS-ISAC.THERECORD.MEDIA
17 JunEstonia plans government IDs giving AI agents rights and responsibilitiesThere’s no shortage of agentic AI tools out there that offer to perform online tasks on your behalf, if only you’ll give them all your passwords and credit card details. The trouble starts when those agents don’t know when to stop — or when others don’t know to stop them. In Esto…CSOONLINE.COM
17 JunSupply-chain attack injects backdoor on ShapedPlugin WordPress softwareA supply-chain attack targeted ShapedPlugin, a WordPress plugin developer with more than 400,000 active installations across its free products. The backdoored premium plugin releases were distributed through the company's official update infrastructure. The malware provided attac…CYBERINSIDER.COM
17 JunMajor critical infrastructure disruptions are inevitable, acting CISA chief saysIn recent years, the U.S. government has reoriented its cybersecurity strategy away from prevention and toward resilience.CYBERSECURITYDIVE.COM
17 JunHostile states behind three-quarters of attacks on Britain's critical infrastructure, cyber chief warnsNCSC CEO Richard Horne warned that “kinetic targeting in any conflict tomorrow will be based on intelligence gathered today” and that nation-state adversaries were “prepositioning” throughout British critical infrastructure.THERECORD.MEDIA
17 JunThe nominee in limbo.President Trump halts a key intelligence nomination. The FBI warns of a new Microsoft 365 phishing threat. France cuts ties with Palantir. A new Android banking trojan emerges. Fortinet firewalls come under attack. CISA orders emergency Joomla patching. Plus, Madison Square Garde…THECYBERWIRE.COM
🔥 INCIDENT REPORTING 15[−]
17 JunNavigating SEC, NIS2, and DORA incident disclosure timelines under pressureIn this Help Net Security video, Rick Goud, Global Field CTO at Kiteworks, discusses how to handle SEC, NIS2, and DORA disclosure timelines during a security incident. He opens with a 3.47 a.m. call: the team cannot confirm whether customer data left the environment, yet three re…HELPNETSECURITY.COM
17 Jun3 Recently Patched Fortinet FortiSandbox Vulnerabilities in Hacker CrosshairsSOCRadar has detected 30,000 compromised Fortinet firewalls that expose networks to hacking. The post 3 Recently Patched Fortinet FortiSandbox Vulnerabilities in Hacker Crosshairs appeared first on SecurityWeek .SECURITYWEEK.COM
17 JunKodak confirms data breach claimed by ShinyHunters extortion gangKodak has confirmed that it's working with external cybersecurity experts to investigate a security breach after hackers gained access to some of the company's data. [...]BLEEPINGCOMPUTER.COM
17 JunMalicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot ChatsCybersecurity researchers have flagged a "coordinated malware campaign" on the JetBrains Marketplace that has published no less than 15 malicious plugins capable of exfiltrating artificial intelligence (AI) provider keys. "Every plugin poses as an AI coding assistant built on Dee…THEHACKERNEWS.COM
17 JunEU Security Experts to Support Ukrainian Organizations in Case of Cyber-AttacksUkraine has been added to the EU Cybersecurity Reserve, which provides incident response services against large-scale incidentsINFOSECURITY-MAGAZINE.COM
17 JunVelocityEHS uses QR codes to speed up incident reporting and risk responseVelocityEHS has announced the launch of QR Codes for Incident Management, a new feature designed to eliminate friction in safety reporting and help organizations surface incidents and near misses, identify risks, and take action. By enabling instant, mobile access to reporting to…HELPNETSECURITY.COM
17 JunSweeping Credential-Harvesting Heist Compromises +30K Fortinet DevicesAttackers actively are targeting various sectors across nearly 200 countries and have already compiled a list of working credentials for tens of thousands of compromised devicesDARKREADING.COM
17 JunWebinar Today: How Modern Breaches Bypass MFA and Evade DetectionAttendees will learn how attackers evade conventional detection methods, why legacy MFA alone is no longer sufficient, and how organizations can strengthen their defenses. The post Webinar Today: How Modern Breaches Bypass MFA and Evade Detection appeared first on SecurityWeek .SECURITYWEEK.COM
17 JunCalifornia water utility probes breach claim by Iran-linked actorThe group Handala said it attacked one of the nation’s largest water companies.CYBERSECURITYDIVE.COM
17 JunCanada introduces privacy law with GDPR-like penalties for data breachesThe Canadian government has introduced Bill C-36, a major privacy reform package that would recognize privacy as a fundamental right, expand consumer control over personal information, strengthen protections for children's data, and create a new regulator with the power to impose…CYBERINSIDER.COM
17 JunLow-skilled attacker used Claude, Codex to breach 14 companiesResearchers have long warned that AI agents could lower the skill floor for offensive cyber operations, and a recent report by OALABS (Open Analysis) researchers bears that out. After recovering and analyzing over 1,000 agent sessions from a compromised server on which an attacke…HELPNETSECURITY.COM
17 JunEU grants Ukraine access to cybersecurity reserve for major attacksAs Kyiv takes steps toward formal accession to the EU, the bloc is integrating Ukraine with its pool of pre-approved cybersecurity incident response companies.THERECORD.MEDIA
17 JunCybercriminals allegedly hacked tens of thousands of Fortinet firewalls used by major companies all over the worldAn alleged Russian-speaking group of cybercriminals is reportedly compromising and targeting several major companies that use Fortinet Firewalls and VPNs through previously known passwords.TECHCRUNCH.COM
17 JunAI is accelerating cyberattacks—here’s how to stay aheadSee how Microsoft unifies identity and security signals to help teams prevent, detect, and respond to AI-accelerated attacks faster. The post AI is accelerating cyberattacks—here’s how to stay ahead appeared first on Microsoft Security Blog .TECHCOMMUNITY.MICROSOFT.COM
17 JunINC Ransomware Thrives by Mastering the BasicsAnd one of those basics is focusing on sectors where a ransomware disruption creates immediate pressure to pay up, like with healthcare.DARKREADING.COM
🕵️ THREAT INTELLIGENCE 19[−]
17 JunISC Stormcast For Wednesday, June 17th, 2026 https://isc.sans.edu/podcastdetail/9976, (Wed, Jun 17th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
17 JunProduct showcase: From phishing texts to risky Wi-Fi, Norton 360 Deluxe watches the gapsNorton 360 Deluxe combines device security, scam detection, web protection, and VPN privacy in a single subscription that covers up to five devices. It is available for Windows, macOS, Android, and iOS. Setup and first impressions After downloading the app from the App Store, use…HELPNETSECURITY.COM
17 JunThe SOC’s visibility gap comes down to staffingAI has settled into security operations centers faster than any earlier wave of technology. Around four in five practitioners report reaching for AI or machine learning tools in their daily work. The catch shows up one layer down. Roughly a third of those same teams have built th…HELPNETSECURITY.COM
17 JunFortinet FortiSOC unifies SIEM, SOAR, threat intelligence, and AI in one platformFortinet has announced the availability of FortiSOC, a unified, cloud-delivered security operations center (SOC) platform. FortiSOC brings together six security operations functions into a single Software-as-a-Service (SaaS) experience and embeds agentic AI to autonomously invest…HELPNETSECURITY.COM
17 JunApple is bringing Hide My Email and Sign in with Apple under one domainApple will unify the email domains used by Sign in with Apple and iCloud+ Hide My Email under a shared domain, private.icloud.com, later this summer. Hide My Email is a service included with iCloud+, Apple’s subscription service. It allows users to generate one-time-use or …HELPNETSECURITY.COM
17 JunEnterprise Browers in the Age of AI as CISO Role Changes and Leaders Harness Stress - BSW #452The browser has become the primary gateway to work, data, and AI. In this episode, Arunesh Chandra, Head of Product, Microsoft Edge for Business at Microsoft Edges for Business, will discuss why security and IT teams are rethinking the role of the browser and what sets Edge for B…YOUTUBE.COM
17 JunWhat’s new in Android 17? Anti-theft tools, scam detection, and parental controlsThe Android 17 rollout has started for supported Pixel devices, delivering new security and privacy capabilities before expanding to other devices later this year. Security and privacy updates Google has improved location privacy features so users can choose to share their approx…HELPNETSECURITY.COM
17 JunRockwell Automation Patches Vulnerabilities in ICS Controllers and SoftwareThe industrial automation giant has fixed security holes in Logix, CompactLogix, Flex, RSLinx, and FactoryTalk products. The post Rockwell Automation Patches Vulnerabilities in ICS Controllers and Software appeared first on SecurityWeek .SECURITYWEEK.COM
17 Jun1Password Acquires Apono in Reported $250M-$300M DealApono specializes in just-in-time access governance technology for humans, machines, and AI agents. The post 1Password Acquires Apono in Reported $250M-$300M Deal appeared first on SecurityWeek .SECURITYWEEK.COM
17 JunTenet Security Emerges From Stealth With $6 Million Seed FundingTenet aims to detect and stop dangerous AI agentic behavior in real time. The post Tenet Security Emerges From Stealth With $6 Million Seed Funding appeared first on SecurityWeek .SECURITYWEEK.COM
17 JunFlip expands platform with digital identity, no-code apps, and AI automationFlip has announced Frontline Identity and Flip Fusion, two new offerings that help organizations securely connect frontline employees to enterprise systems, applications and AI-powered workflows. Flip’s new products expand the platform beyond employee communications, helpin…HELPNETSECURITY.COM
17 JunCorelight enhances Open NDR to detect AI-driven threats and unknown assetsCorelight has expanded its Open NDR platform to include native network performance monitoring and passive asset classification capabilities. The release adds asset visibility to its existing anomaly detection foundation, helping security teams defend against AI-powered threats th…HELPNETSECURITY.COM
17 JunFrom Stars to Upvotes: Fake Reputation Fueling a Crypto Clipboard HijackerKey Points Introduction In this research, we analyze a clipboard hijacker campaign that is hidden inside a collection of “solutions” and “tools” that claim to give users an unfair advantage. These offers include Solana and Pump.fun sniper bots (automated tools that try to buy new…RESEARCH.CHECKPOINT.COM
17 JunNorth Korean Hiring Fraud Runs on AI and US Laptop FarmsNisos infiltrated a North Korean IT-worker fraud cell running on AI interviews and a US laptop farmINFOSECURITY-MAGAZINE.COM
17 JunWitnessAI Agentic Control secures AI agents, tools, and MCP server accessWitnessAI has announced extended agentic security capabilities that govern how AI agents interact with enterprise systems, tools, and Model Context Protocol (MCP) servers. With the launch of Agentic Control, enterprises have greater visibility and control over their AI agents wit…HELPNETSECURITY.COM
17 JunMost Security Controls Just Slow AttackersAI agents can pursue goals, select tools, retain memory across sessions, communicate with other agents, and take actions inside systems without constant human oversight. Many existing security controls were designed around slowing down or interrupting human behavior. But autonomo…YOUTUBE.COM
17 JunForrester names Microsoft a Leader in the 2026 Extended Detection and Response Platforms Wave™ reportMicrosoft has been named a Leader in The Forrester Wave™: Extended Detection and Response Platforms, Q2 2026. The post Forrester names Microsoft a Leader in the 2026 Extended Detection and Response Platforms Wave™ report appeared first on Microsoft Security Blog .MICROSOFT.COM
17 JunTrain Your Team Or Fall BehindJason ABQ argues that organizations often prioritize nonstop productivity at the expense of professional development. His recommendation: teams should intentionally reserve time for training, certifications, leadership development, and learning new technologies. As AI tools and w…YOUTUBE.COM
17 JunCrypto Clipper uses Tor and worm-like propagation for persistence and controlMicrosoft Threat Intelligence analyzed a cryptocurrency clipper campaign that combines clipboard theft, wallet replacement, Tor-based communications, and worm-like propagation. Beyond stealing cryptocurrency transactions, the malware establishes persistent access and enables foll…MICROSOFT.COM
🌐 CYBER THREAT LANDSCAPE 7[−]
17 JunRisky Business #842 -- Anthropic needs an adult in the C suiteOn this week’s show Patrick Gray, Adam Boileau and James Wilson discuss the week’s cybersecurity news. They cover: Anthropic’s Fable 5 and Mythos 5 get nuked by the US government four days after launch “because security” Why “guardrails” won’t keep the world safe from your AI doo…RISKY.BIZ
17 JunMalwarebytes earns AV-TEST Top Product award, aces other third-party testsMalwarebytes got top marks in independent tests against malware, phishing, and other online threats.MALWAREBYTES.COM
17 JunAI Threats and Alert Fatigue Challenge Cybersecurity TeamsFiligran survey at Infosecurity Europe 2026 reveals AI-powered attacks as the top concern, with false positives, alert fatigue and manual processes draining security teamsINFOSECURITY-MAGAZINE.COM
17 JunRokarolla Android malware can take over your phone and steal banking loginsResearchers have uncovered an Android banking Trojan that targets more than 200 banking and cryptocurrency apps and can take over infected devices.MALWAREBYTES.COM
17 JunPresident Trump delays DNI confirmation hearings.ShinyHunters leaks data allegedly stolen from Madison Square Garden. New Android malware targets over 200 banking apps.THECYBERWIRE.COM
17 JunRoblox developers are losing entire games to malware attacksAttackers are using fake job offers and malware to steal accounts, Robux, and Roblox games from the developers who build them.MALWAREBYTES.COM
17 JunThe Economics of Downtime with Christy Wyatt, CEO from Absolute SecurityChristy Wyatt, CEO of Absolute Security, joins Dave Bittner on the CyberWire Daily podcast for a sponsored Industry Voices. Christy discusses why cybersecurity has evolved from a threat and prevention conversation into a business resilience discipline centered on downtime, contin…THECYBERWIRE.COMHTTPS:
📰 CYBERSECURITY BRIEFINGS 1[−]
🎙️ PODCASTS 1[−]
17 JunFrom First Talk to 89 Episodes a Year: The Cyber Creator Journey with Phillip WyliePhillip Wylie has been in cybersecurity for over 28 years and is now one of the most recognized names in offensive security as a speaker, podcaster, and evangelist. What most people don't know is that he started as a pro wrestler and powerlifter before finding his way into IT and…THECYBERWIRE.COM
📡 INFOSEC NEWS 19[−]
17 JunWeekly Threat Bulletin – June 17th, 2026These are the top threats you should know about this week.F5.COM
17 JunUK Social Media Ban for Minors Has Privacy Experts WorriedThe UK will ban adolescents under 16 years old from user-to-user social-media platforms, despite age-verification issues and privacy concerns.DARKREADING.COM
17 JunStaffing Is Top SOC Challenge Even as AI Proliferates, Says SANSSANS Institute study finds few SOCs have built AI into defined workflows, despite widespread adoptionINFOSECURITY-MAGAZINE.COM
17 JunFifteen JetBrains Marketplace Plugins Found Stealing API KeysAikido Security has discovered at least 15 IDE plugins on the JetBrains MarketplaceINFOSECURITY-MAGAZINE.COM
17 Jun24 billion stolen records found in giant data dump. Check if you’re affectedResearchers found an exposed collection of 24 billion stolen records, including usernames, passwords, and other sensitive account data.MALWAREBYTES.COM
17 JunMicrosoft confirms Office apps launch issues after June updatesMicrosoft is investigating a new issue preventing third-party applications from launching Microsoft Office applications or opening documents on up-to-date Windows systems. [...]BLEEPINGCOMPUTER.COM
17 JunAdversarial Exposure Validation Turns Security Visibility into Confident PrioritizationFor security teams, the findings never stop, but confidence in knowing which ones matter is becoming harder to maintain. The problem is no longer visibility. It's validation. Security teams must decide which findings warrant action while operating under constant pressure and inco…THEHACKERNEWS.COM
17 JunServerless Phishing Kit on GitHub Targets Mexican BanksGitBait phishing kit abuses GitHub Pages and the SheetBest API to steal Mexican banking credentialsINFOSECURITY-MAGAZINE.COM
17 JunSensitive Enterprise Data Uploads to AI Models Double in a YearThe rise of AI-assistants and applications in the enterprise has seen a 93% increase in employees attempting to upload sensitive data, bringing security challengesINFOSECURITY-MAGAZINE.COM
17 JunIndia's Telegram ban hit the UAE too. Here's how to get around itIndia has banned Telegram until June 22 after the app was used to circulate leaked exam papers. CEO Pavel Durov accuses telecom Reliance of BGP hijacking that disrupted the app as far away as the UAE. Here's what happened, and how to get around the block with an MTProto proxy. [.…BLEEPINGCOMPUTER.COM
17 JunWhy Account Takeovers Are Rising and How to Stop ThemAccount takeovers are rising as attackers bypass traditional defenses through phishing, session hijacking, and MFA fatigue. Specops Software explores how device trust and continuous verification help reduce account takeover risk. [...]BLEEPINGCOMPUTER.COM
17 JunThe browser blind spot: Why your security tool may not be blocking what you think it is, (Wed, Jun 17th)[This is a guest diary submitted by Varun Murdula]
ISC.SANS.EDU
17 JunIntroducing AWS Continuum: Security at machine speedWhat we believe We’ve been thinking deeply about enterprise security. The operating model that served us for the past decade (collect telemetry, store it, query it, build dashboards to watch it) is no longer keeping pace. We need to shift to the new world: telemetry, context, rea…AWS.AMAZON.COM
17 JunFortiBleed leak exposes Fortinet VPN credentials for 73,000 devices.A newly discovered data leak dubbed "FortiBleed" has exposed what appears to be a collection of Fortinet and FortiGate VPN credentials for 73,932 firewall URLs at organizations worldwide. [...]BLEEPINGCOMPUTER.COM
17 JunThe Red Agent POV: How it Reasoned its Way to SSRFPart 1: How the Red Agent uncovered a multi-step attack chain allowing SSRF-to-Local-File-Read on GCP Cloud RunWIZ.IO
17 JunJunior Hacker Used Tailscale and OpenSSH to Keep Access After His C2 Went OfflineA French-speaking attacker broke into a small French automotive business, planted a keylogger, and stole banking and email credentials. Ordinary stuff, until one move near the end. Before his command-and-control server went dark, he installed OpenSSH and Tailscale on a victim's m…THEHACKERNEWS.COM
17 JunThe dual-use dilemma: Rethinking detection for remote access tool abuseA comprehensive guide to the most commonly abused RMM tools, including technical guidance for detection and preventionREDCANARY.COM
17 JunGoogle to use UK and EU user IP addresses for ad personalizationFrom August 3, 2026, Google will use IP addresses from UK, EEA and Switzerland users for ad measurement and personalization. It lands as the ICO weighs new consent rules, and years after Google itself called using such signals to identify devices "wrong." [...]BLEEPINGCOMPUTER.COM
17 JunLeak confirms OpenAI is testing a ChatGPT for Science subscriptionOpenAI appears to be testing a new subscription and experience for science use cases, but it's unclear if it'll be available to everyone regardless of their background. [...]BLEEPINGCOMPUTER.COM