Main Menu
Cyber Security
Kodak Confirms Data Breach After ShinyHunters Sets Leak Deadline
F5 Emergency Patch: Critical NGINX Unauthenticated RCE Hits 40 Percent of Web Servers
Atlassian and Splunk Patch Critical Flaws: Splunk AI Toolkit RCE, Atlassian Dependencies
Critical Command Execution Vulnerability Patched in Cisco ISE
Rokarolla Android Banking Trojan Targets 217 Banking and Crypto Apps
Phantom Stealer Fileless Malware Targets Browser Credentials in Memory
INC Ransomware Targets Healthcare, Education, and Local Government
ClickFix Campaign Linked to Vice Society Uses Compromised WordPress Sites
FortiBleed Compromises 74K Fortinet Firewall Credentials Worldwide
Gentlemen RaaS Group Maintains Purpose-Built EDR Killers
Nintendo Confirms Employee Survey Data Stolen via TinyPulse
Klue OAuth Breach Impacts Huntress, Recorded Future and Others
Operation Endgame Dismantles SocGholish Botnet, Cleans 15K Sites
ShapedPlugin Update System Compromised, Malicious WordPress Plugins Pushed to Customers
F5 Patches Critical NGINX RCE in QUIC Module, CVSS 9.2 Use-After-Free Fixed
Microsoft Details Windows Clipper USB LNK Worm with Tor Command-and-Control
Check Point Documents Crypto Clipper Using Fake Reviews and AI Narrators
Microsoft Confirms RoguePlanet Defender Zero-Day EoP, Patch in Development
What Is Data Security Posture Management? A Complete DSPM Guide
Mastra AI npm Supply Chain Attack Hits 1.1M Weekly Downloads
15 JetBrains Plugins Steal AI API Keys in Eight-Month Campaign
ShinyHunters Claims 2.2 Million Kodak Records, Sets Leak Deadline
CISA Adds Joomla JCE CVE-2026-48907 to KEV Amid Active Scans
DragonForce’s Backdoor.Turn Routes C2 via Microsoft Teams TURN
iRhythm Confirms PHI Exfiltration via Social Engineering
Rokarolla Android Trojan Hits 217 Banking and Crypto Apps
Steam Workshop Wallpaper Packages Drop DarkKomet and Lumma
GhostTree NTFS Junctions Paralyze Windows Defender Scans
CVE-2026-2473: Vertex AI SDK Pickle Attack Enables Cross-Tenant RCE
Endpoint Security Solutions: How to Protect Every Enterprise Device
Blog
Understanding Cloud Detection and Response (CDR) and Its Security Role
Mitchell Langley June 23, 2026
Learn what cloud detection and response (CDR) is, how it works, and practical steps to secure cloud workloads with real‑time threat visibility.
Application Security
TeamPCP Open-Source Supply Chain Investigation Reveals Years of Access
Gabby Lee June 23, 2026
Researchers investigated the TeamPCP threat group that exploited open-source speed culture for years of supply chain access across thousands of organizations.
Cybersecurity
Multiple Groups Exploit Critical FortiSandbox Flaws Across 200 Countries
Gabby Lee June 23, 2026
Multiple sources confirm active exploitation of CVE-2026-25089 and CVE-2026-39813 against FortiSandbox, with credentials compiled for tens of thousands of appliances.
Cybersecurity
Kodak Confirms Data Breach After ShinyHunters Sets Leak Deadline
Andrew Doyle June 23, 2026
Kodak confirms a data breach after the ShinyHunters hackgroup claimed 2.2 million records exfiltrated, with the company asserting no threat to current operations.
F5 Emergency Patch: Critical NGINX Unauthenticated RCE Hits 40 Percent of Web Servers
Cybersecurity
F5 Emergency Patch: Critical NGINX Unauthenticated RCE Hits 40 Percent of Web Servers
Andrew Doyle June 23, 2026
F5 released emergency patches for NGINX enabling unauthenticated RCE across 40 percent of web servers worldwide today in an accelerated disclosure window.
Atlassian and Splunk Patch Critical Flaws Splunk AI Toolkit RCE, Atlassian Dependencies
Cybersecurity
Atlassian and Splunk Patch Critical Flaws: Splunk AI Toolkit RCE, Atlassian Dependencies
Gabby Lee June 23, 2026
Atlassian and Splunk emergency patches include an OS command injection in Splunk AI Toolkit plus dozens of Atlassian Server dependency flaws
Cybersecurity
Critical Command Execution Vulnerability Patched in Cisco ISE
Mitchell Langley June 23, 2026
Cisco patched a critical command execution vulnerability in its Identity Services Engine where insufficient input validation enabled root-level system access.
Cybersecurity
Rokarolla Android Banking Trojan Targets 217 Banking and Crypto Apps
Gabby Lee June 23, 2026
The Rokarolla Android banking trojan evolved beyond credential theft with a 137-command C2 framework targeting 217 banking and cryptocurrency applications.
Cybersecurity
Phantom Stealer Fileless Malware Targets Browser Credentials in Memory
Gabby Lee June 23, 2026
Researchers identified Phantom Stealer as a new fileless credential stealer targeting all browsers via in-memory execution and anti-analysis techniques.
Cybersecurity
INC Ransomware Targets Healthcare, Education, and Local Government
Gabby Lee June 23, 2026
Investigation reveals INC ransomware achieves consistent revenue by targeting healthcare, education, and local government with rapid encryption and data exfiltration.
Cybersecurity
ClickFix Campaign Linked to Vice Society Uses Compromised WordPress Sites
Mitchell Langley June 23, 2026
A malware campaign using Lorem Ipsum lures pivots to ClickFix delivery through compromised WordPress sites, with research suggesting possible links to Vice Society.
Cybersecurity
FortiBleed Compromises 74K Fortinet Firewall Credentials Worldwide
Gabby Lee June 23, 2026
FortiBleed exposes verified Fortinet FortiGate VPN credentials for 74K devices across 194 countries, covering major corporations and a Turkish NATO contractor.
Cybersecurity
Gentlemen RaaS Group Maintains Purpose-Built EDR Killers
Andrew Doyle June 23, 2026
Gentlemen ransomware-as-a-service operation develops and maintains purpose-built endpoint detection kill tools to disable security protections before ransomware deployment.
Cybersecurity
Nintendo Confirms Employee Survey Data Stolen via TinyPulse
Mitchell Langley June 23, 2026
Nintendo confirms employee survey data stolen from TinyPulse, the WebMD subsidiary, through a third-party vendor breach affecting corporate HR integration.
Application Security
Klue OAuth Breach Impacts Huntress, Recorded Future and Others
Gabby Lee June 23, 2026
Klue's OAuth breach enabled the Icarus threat group to extract Salesforce CRM data from cybersecurity companies including Huntress and Recorded Future.
Cybersecurity
Operation Endgame Dismantles SocGholish Botnet, Cleans 15K Sites
Gabby Lee June 23, 2026
International law enforcement destroys 15K SocGholish-infected WordPress sites and 106 C2 servers in coordinated takedown of Evil Corp-linked cybercrime network.
ShapedPlugin Update System Compromised, Malicious WordPress Plugins Pushed to Customers
Cybersecurity
ShapedPlugin Update System Compromised, Malicious WordPress Plugins Pushed to Customers
Andrew Doyle June 23, 2026
Attackers hijacked ShapedPlugin update distribution system to inject malicious code into legitimate plugin releases delivered directly to paying WordPress customers through official update channels.
Cybersecurity
F5 Patches Critical NGINX RCE in QUIC Module, CVSS 9.2 Use-After-Free Fixed
Mitchell Langley June 23, 2026
F5 emergency patches address CVE-2026-42530, a critical CVSS 9.2 unauthenticated RCE in NGINX QUIC HTTP3 module that can be exploited remotely without credentials on NGINX ...
Cybersecurity
Microsoft Details Windows Clipper USB LNK Worm with Tor Command-and-Control
Gabby Lee June 23, 2026
Microsoft disclosed a Windows Clipper malware campaign active since February using clipboard interception, USB LNK self-spreading, and Tor command-and-control infrastructure to steal cryptocurrency addresses.
Cybersecurity
Check Point Documents Crypto Clipper Using Fake Reviews and AI Narrators
Gabby Lee June 23, 2026
Check Point Research uncovered a crypto clipper distribution campaign using fake reviews on GitHub and SourceForge, AI-narrated YouTube videos, and fabricated VirusTotal comments to build ...
Application Security
TeamPCP Open-Source Supply Chain Investigation Reveals Years of Access
Gabby Lee June 23, 2026
Cybersecurity
ShinyHunters Claims 2.2 Million Kodak Records, Sets Leak Deadline
Gabby Lee June 17, 2026
Cybersecurity
Rokarolla Android Banking Trojan Targets 217 Banking and Crypto Apps
Gabby Lee June 23, 2026
Cybersecurity
Phantom Stealer Fileless Malware Targets Browser Credentials in Memory
Gabby Lee June 23, 2026

TOP CYBERSECURITY HEADLINES

F5 Emergency Patch: Critical NGINX Unauthenticated RCE Hits 40 Percent of Web Servers
Cybersecurity
F5 Emergency Patch: Critical NGINX Unauthenticated RCE Hits 40 Percent of Web Servers
Atlassian and Splunk Patch Critical Flaws Splunk AI Toolkit RCE, Atlassian Dependencies
Cybersecurity
Atlassian and Splunk Patch Critical Flaws: Splunk AI Toolkit RCE, Atlassian Dependencies
Cybersecurity
Critical Command Execution Vulnerability Patched in Cisco ISE
Cybersecurity
Rokarolla Android Banking Trojan Targets 217 Banking and Crypto Apps

This Week’s Security Spotlight

Cybersecurity
Multiple Groups Exploit Critical FortiSandbox Flaws Across 200 Countries
Gabby Lee June 23, 2026
Atlassian and Splunk Patch Critical Flaws Splunk AI Toolkit RCE, Atlassian Dependencies
Cybersecurity
Atlassian and Splunk Patch Critical Flaws: Splunk AI Toolkit RCE, Atlassian Dependencies
Gabby Lee June 23, 2026
Cybersecurity
iRhythm Confirms PHI Exfiltration via Social Engineering
Mitchell Langley June 17, 2026
Application Security
Obsidian Finds CVSS 9.9 Attack Chain in LiteLLM AI Gateway
Mitchell Langley June 16, 2026
More In News
Trending
Storm-3075 Uses ChatGPT and Claude Brands to Harvest Credentials
Fake Claude Code Installers on Google Sites Steal AI API Keys
Fake Chrome Web Store DMCA Notices Target Extension Developers
SideCopy APT Targets Afghan Finance Ministry with Xeno RAT

Daily Briefing Newsletter

Subscribe to the Daily Security Review Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Featured Videos​

Podcasts

Podcasts
Palo Alto Networks Uncovers 194,000-Domain Smishing Campaign Linked to “Smishing Triad”
October 28, 2025
Podcasts
Coveware Reports Historic Drop in Ransomware Payments: Only 23% of Victims Paid in Q3 2025
October 28, 2025
Podcasts
Firefox Add-Ons Must Declare Data Collection—or Be Rejected
October 28, 2025

Cyber Security News

Blog
Understanding Cloud Detection and Response (CDR) and Its Security Role
June 23, 2026
Application Security
TeamPCP Open-Source Supply Chain Investigation Reveals Years of Access
June 23, 2026
Cybersecurity
Multiple Groups Exploit Critical FortiSandbox Flaws Across 200 Countries
June 23, 2026
Cybersecurity
Kodak Confirms Data Breach After ShinyHunters Sets Leak Deadline
June 23, 2026
F5 Emergency Patch: Critical NGINX Unauthenticated RCE Hits 40 Percent of Web Servers
Cybersecurity
F5 Emergency Patch: Critical NGINX Unauthenticated RCE Hits 40 Percent of Web Servers
June 23, 2026
Atlassian and Splunk Patch Critical Flaws Splunk AI Toolkit RCE, Atlassian Dependencies
Cybersecurity
Atlassian and Splunk Patch Critical Flaws: Splunk AI Toolkit RCE, Atlassian Dependencies
June 23, 2026
  • All
  • Application Security
  • Blog
  • CVE Vulnerability Alerts
  • Cybersecurity
  • Cybersecurity Newsletter
  • Data Security
  • Endpoint Security
  • Identity and Access Management
  • Information Security
  • Network Security
  • News
  • Phishing
  • Podcasts
  • Product Reviews
  • Ransomware
  • Ransomware Victims
  • Resources
  • Security Spotlight
  • Sponsored
  • Threat Actors
  • Threat Actors
  • Threat Detection Tools
Kodak Confirms Data Breach After ShinyHunters Sets Leak Deadline
June 23, 2026
Kodak confirms a data breach after the ShinyHunters hackgroup claimed 2.2 million records exfiltrated, with the company asserting no threat to current operations.
F5 Emergency Patch: Critical NGINX Unauthenticated RCE Hits 40 Percent of Web Servers
June 23, 2026
F5 released emergency patches for NGINX enabling unauthenticated RCE across 40 percent of web servers worldwide today in an accelerated disclosure window.
Atlassian and Splunk Patch Critical Flaws: Splunk AI Toolkit RCE, Atlassian Dependencies
June 23, 2026
Atlassian and Splunk emergency patches include an OS command injection in Splunk AI Toolkit plus dozens of Atlassian Server dependency flaws
Critical Command Execution Vulnerability Patched in Cisco ISE
June 23, 2026
Cisco patched a critical command execution vulnerability in its Identity Services Engine where insufficient input validation enabled root-level system access.
Rokarolla Android Banking Trojan Targets 217 Banking and Crypto Apps
June 23, 2026
The Rokarolla Android banking trojan evolved beyond credential theft with a 137-command C2 framework targeting 217 banking and cryptocurrency applications.
Phantom Stealer Fileless Malware Targets Browser Credentials in Memory
June 23, 2026
Researchers identified Phantom Stealer as a new fileless credential stealer targeting all browsers via in-memory execution and anti-analysis techniques.
INC Ransomware Targets Healthcare, Education, and Local Government
June 23, 2026
Investigation reveals INC ransomware achieves consistent revenue by targeting healthcare, education, and local government with rapid encryption and data exfiltration.
ClickFix Campaign Linked to Vice Society Uses Compromised WordPress Sites
June 23, 2026
A malware campaign using Lorem Ipsum lures pivots to ClickFix delivery through compromised WordPress sites, with research suggesting possible links to Vice Society.
FortiBleed Compromises 74K Fortinet Firewall Credentials Worldwide
June 23, 2026
FortiBleed exposes verified Fortinet FortiGate VPN credentials for 74K devices across 194 countries, covering major corporations and a Turkish NATO contractor.
Gentlemen RaaS Group Maintains Purpose-Built EDR Killers
June 23, 2026
Gentlemen ransomware-as-a-service operation develops and maintains purpose-built endpoint detection kill tools to disable security protections before ransomware deployment.
Nintendo Confirms Employee Survey Data Stolen via TinyPulse
June 23, 2026
Nintendo confirms employee survey data stolen from TinyPulse, the WebMD subsidiary, through a third-party vendor breach affecting corporate HR integration.
Klue OAuth Breach Impacts Huntress, Recorded Future and Others
June 23, 2026
Klue's OAuth breach enabled the Icarus threat group to extract Salesforce CRM data from cybersecurity companies including Huntress and Recorded Future.
Operation Endgame Dismantles SocGholish Botnet, Cleans 15K Sites
June 23, 2026
International law enforcement destroys 15K SocGholish-infected WordPress sites and 106 C2 servers in coordinated takedown of Evil Corp-linked cybercrime network.
ShapedPlugin Update System Compromised, Malicious WordPress Plugins Pushed to Customers
June 23, 2026
Attackers hijacked ShapedPlugin update distribution system to inject malicious code into legitimate plugin releases delivered directly to paying WordPress customers through official update channels.
F5 Patches Critical NGINX RCE in QUIC Module, CVSS 9.2 Use-After-Free Fixed
June 23, 2026
F5 emergency patches address CVE-2026-42530, a critical CVSS 9.2 unauthenticated RCE in NGINX QUIC HTTP3 module that can be exploited remotely without credentials on NGINX ...
Microsoft Details Windows Clipper USB LNK Worm with Tor Command-and-Control
June 23, 2026
Microsoft disclosed a Windows Clipper malware campaign active since February using clipboard interception, USB LNK self-spreading, and Tor command-and-control infrastructure to steal cryptocurrency addresses.
Check Point Documents Crypto Clipper Using Fake Reviews and AI Narrators
June 23, 2026
Check Point Research uncovered a crypto clipper distribution campaign using fake reviews on GitHub and SourceForge, AI-narrated YouTube videos, and fabricated VirusTotal comments to build ...
Microsoft Confirms RoguePlanet Defender Zero-Day EoP, Patch in Development
June 23, 2026
Microsoft confirmed CVE-2026-50656, a CVSS 7.8 elevation of privilege zero-day in Microsoft Defender Malware Protection Engine actively exploited by the Nightmare-Eclipse threat group.
What Is Data Security Posture Management? A Complete DSPM Guide
June 17, 2026
Data security posture management (DSPM) continuously discovers and classifies sensitive data to reduce breach risk in multi-cloud environments.
Mastra AI npm Supply Chain Attack Hits 1.1M Weekly Downloads
June 17, 2026
Attackers hijacked a dormant npm contributor account and backdoored 144 Mastra AI packages, exposing 1.1 million weekly downloads to a RAT dropper payload.
Kodak Confirms Data Breach After ShinyHunters Sets Leak Deadline
F5 Emergency Patch: Critical NGINX Unauthenticated RCE Hits 40 Percent of Web Servers
Atlassian and Splunk Patch Critical Flaws: Splunk AI Toolkit RCE, Atlassian Dependencies
Critical Command Execution Vulnerability Patched in Cisco ISE
Rokarolla Android Banking Trojan Targets 217 Banking and Crypto Apps
Phantom Stealer Fileless Malware Targets Browser Credentials in Memory
INC Ransomware Targets Healthcare, Education, and Local Government
ClickFix Campaign Linked to Vice Society Uses Compromised WordPress Sites
FortiBleed Compromises 74K Fortinet Firewall Credentials Worldwide
Gentlemen RaaS Group Maintains Purpose-Built EDR Killers
Nintendo Confirms Employee Survey Data Stolen via TinyPulse
Klue OAuth Breach Impacts Huntress, Recorded Future and Others
Operation Endgame Dismantles SocGholish Botnet, Cleans 15K Sites
ShapedPlugin Update System Compromised, Malicious WordPress Plugins Pushed to Customers
F5 Patches Critical NGINX RCE in QUIC Module, CVSS 9.2 Use-After-Free Fixed
Microsoft Details Windows Clipper USB LNK Worm with Tor Command-and-Control
Check Point Documents Crypto Clipper Using Fake Reviews and AI Narrators
Microsoft Confirms RoguePlanet Defender Zero-Day EoP, Patch in Development
What Is Data Security Posture Management? A Complete DSPM Guide
Mastra AI npm Supply Chain Attack Hits 1.1M Weekly Downloads