Cyber Daily News

Cyber Daily News for June 25, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - macOS Flaw Lets Standard Users Disable EDR and MDM https://www.infosecurity-magazine.com/news/macos-xpc-flaw-disable-edr-mdm/ - Cisco Catalyst SD-WAN Zero-Day Exploited Months Before Disclosure https://securityaffairs.com/194200/hacking/cisco-catalyst-sd-wan-zero-day-cve-2026-20245-exploited-months-before-disclosure.html - Europol-Led Operation Endgame Takes Down StealC and Amadey Infostealers https://www.infosecurity-magazine.com/news/operation-endgame-stealc-amadey/ - macOS Backdoor Uses Prompt Injection to Evade AI Triage https://www.infosecurity-magazine.com/news/macos-gaslight-rust-backdoor/ - Researchers Trick AI Browsers Into Leaking Credentials https://www.infosecurity-magazine.com/news/bioshocking-ai-browser-prompt/ - Cisco Unified CM Flaw Actively Exploited in the Wild https://securityaffairs.com/194153/uncategorized/cisco-unified-cm-flaw-cve-2026-20230-actively-exploited-in-the-wild.html - Chrome 149 Update Resolves 18 Severe Vulnerabilities https://www.securityweek.com/chrome-149-update-resolves-18-severe-vulnerabilities/ - Major Increase in Ransomware Attacks Targeting Europe https://www.infosecurity-magazine.com/news/increase-ransomware-europe/

Cyber Daily News for June 23, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Anthropic's Mythos AI reportedly breached nearly all NSA classified systems https://securityaffairs.com/194016/ai/anthropics-mythos-ai-broke-into-almost-all-nsa-classified-systems-in-hours.html - Squidbleed: 29-Year-Old Squid Proxy Bug Leaks User Credentials https://securityaffairs.com/194041/hacking/squidbleed-29-year-old-squid-bug-leaks-user-credentials.html - Russian Initial Access Broker Behind FortiBleed Campaign https://www.securityweek.com/russian-initial-access-broker-behind-fortibleed-campaign/ - Scattered Spider Teens Convicted of TfL Cyber-Attack https://www.infosecurity-magazine.com/news/scattered-spider-teens-convicted/ - Five Eyes Group Issues Urgent Call to Tackle Frontier AI Threats https://www.infosecurity-magazine.com/news/five-eyes-issues-urgent-call/ - ShapedPlugin Supply Chain Attack Backdoors Pro Plugin Updates https://securityaffairs.com/194059/hacking/shapedplugin-supply-chain-attack-backdoors-pro-plugin-updates.html - WhatsApp Malware Campaign Hijacks Trust, Installs Legitimate Admin Tools https://securityaffairs.com/194031/malware/whatsapp-malware-campaign-hijacks-trust-installs-legitimate-admin-tools.html - Trump Signs Executive Order Accelerating Post-Quantum Cryptography Migration https://www.securityweek.com/trump-signs-executive-order-accelerating-post-quantum-cryptography-migration/

Cyber Daily News for June 21, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Inside GentleKiller: The Gentlemen Hand Affiliates a Ready-Made EDR-Killer Suite https://securityaffairs.com/193941/uncategorized/inside-gentlekiller-the-edr-killer-powering-the-gentlemen.html - CryptoBandits Malware Doubles as a Tor-Abusing Backdoor https://www.securityweek.com/cryptobandits-malware-doubles-as-a-backdoor-abuses-tor/ - New Details on the FortiBleed Credential-Spraying Operation https://securityaffairs.com/193931/hacking/fortibleed-exposes-global-credential-spraying-operation.html - Joomla Content Editor and LiteSpeed cPanel Plugin Flaws Under Active Attack https://thecyberexpress.com/cve-2026-48907-joomla-jce-litespeed-cpanel/ - Operation EndGame Cleans 14,971 WordPress Sites in SocGholish Takedown https://securityaffairs.com/193893/malware/14971-wordpress-sites-cleaned-in-global-socgholish-takedown.html - Novo Nordisk Breach Exposes Clinical Trial and Healthcare Professional Data https://thecyberexpress.com/tce-weekly-roundup-global-threats/ - US DOT Closes Delta Probe Tied to CrowdStrike Outage https://www.securityweek.com/in-other-news-apple-patches-beats-eavesdropping-flaw-dot-closes-delta-crowdstrike-probe-aws-continuum/ - Macron Urges Democracies to Cooperate on AI Regulation, Calls on US to Share Advanced AI https://www.securityweek.com/french-president-urges-us-to-share-cutting-edge-ai-and-democracies-to-cooperate-on-regulation/

Cyber Daily News for June 19, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - 24 Billion Stolen Credentials Exposed in Massive Data Leak https://securityaffairs.com/193864/security/24-billion-stolen-credentials-exposed-in-massive-data-leak.html - Operation Endgame Hits SocGholish Malware Network, 15,000 Websites Cleaned https://www.securityweek.com/15000-wordpress-websites-cleaned-up-in-socgholish-botnet-takedown/ - CISA Adds Actively-Exploited Splunk Enterprise Flaw to KEV, Patch Deadline Sunday https://securityaffairs.com/193888/security/u-s-cisa-adds-splunk-enterprise-flaw-to-its-known-exploited-vulnerabilities-catalog-and-urges-agencies-to-fix-it-by-sunday.html - New iPhone BootROM Flaw Enables Hardware-Level Compromise https://thecyberexpress.com/iphone-bootrom-vulnerability/ - Peter Thiel's Secret Society Leak Creates a Perfect Target List for Espionage and Blackmail https://securityaffairs.com/193880/intelligence/peter-thiel-secret-society-leak-creates-a-perfect-target-list-for-espionage-influence-operations-and-blackmail.html - Tor-Based Clipper Malware Targets Wallet Seed Phrases https://securityaffairs.com/193860/uncategorized/tor-based-clipper-malware-targets-wallet-seed-phrases.html - Cybersecurity Firms Impacted by Klue Supply Chain Attack https://www.securityweek.com/cybersecurity-firms-impacted-by-klue-supply-chain-attack/ - ICO Cautions Healthcare Worker After Princess of Wales Incident https://www.infosecurity-magazine.com/news/ico-cautions-healthcare-worker/

Cyber Daily News for June 17, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Fortinet Warned as Three Critical FortiSandbox Bugs Come Under Attack https://securityaffairs.com/193709/ai/fortinet-warned-as-three-critical-fortisandbox-bugs-come-under-attack.html - FulcrumSec Targets Novo Nordisk, Leaks Clinical and Research Data https://securityaffairs.com/193763/security/fulcrumsec-targets-novo-nordisk-leaks-clinical-and-research-data.html - Microsoft Working on Patch for 'RoguePlanet' Zero-Day https://www.securityweek.com/microsoft-working-on-patch-for-rogueplanet-zero-day/ - EdTech Faces a Cybersecurity Crisis: Data Breaches Surge https://securityaffairs.com/193777/data-breach/edtech-faces-a-cybersecurity-crisis-data-breaches-surge.html - Fifteen JetBrains Marketplace Plugins Found Stealing API Keys https://www.infosecurity-magazine.com/news/fifteen-jetbrains-marketplace/ - Microsoft Teams Relay Servers Abused in DragonForce Ransomware Attack https://www.securityweek.com/microsoft-teams-relay-servers-abused-in-dragonforce-ransomware-attack/ - China-Linked FishMonger Ports SprySOCKS to Windows With Kernel-Level Stealth https://securityaffairs.com/193728/apt/china-linked-fishmonger-ports-sprysocks-to-windows-with-kernel-level-stealth-and-uefi-bootkit-hints.html - Rokarolla Trojan Combines Banking Fraud With Device Surveillance https://www.infosecurity-magazine.com/news/rokarolla-android-banking-trojan/

Cyber Daily News for June 15, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - FBI, Google Dismantle 'Outsider Enterprise' Phishing Service https://www.securityweek.com/fbi-google-dismantle-outsider-enterprise-phishing-service/ - Supply Chain Attack Hits Popular WordPress Plugins Through Awesome Motive CDN https://securityaffairs.com/193616/malware/supply-chain-attack-hits-popular-wordpress-plugins-through-awesome-motive-cdn.html - Infostealers, AI, and a 90% Affiliate Cut Fuel The Gentlemen Group's Rise https://securityaffairs.com/193622/uncategorized/infostealers-ai-and-a-90-affiliate-cut-fuel-the-gentlemen-groups-rise.html - ShinyHunters Claims Council of Europe Hack https://www.securityweek.com/shinyhunters-claims-council-of-europe-hack/ - Splunk Urges Immediate Patching of Critical Flaw Enabling Arbitrary File Operations https://thecyberexpress.com/cve-2026-20253-critical-splunk-enterprise/ - Cybersecurity Experts Urge US to Lift Ban on Anthropic's Frontier AI Models https://www.infosecurity-magazine.com/news/cyber-experts-urge-us-lift-ban/ - UK Government Finds 400+ Vulnerabilities in AI Hackathons https://www.infosecurity-magazine.com/news/uk-government-400-vulnerabilities/ - Maine Takes Breach Reporting Portal Offline After Fake Entries https://www.securityweek.com/maine-disables-data-breach-portal-due-to-fake-submissions/

Cyber Daily News for June 3, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Google Patches Actively Exploited Android Flaw Affecting Millions of Devices https://securityaffairs.com/193057/breaking-news/google-patches-actively-exploited-android-flaw-affecting-millions-of-devices.html - Instagram Account Hijacks Expose the Security Risks of AI-Powered Support https://securityaffairs.com/193034/hacking/instagram-account-hijacks-expose-the-security-risks-of-ai-powered-support.html - 'HTTP/2 Bomb' Exploit Knocks Web Servers Offline in Seconds https://www.securityweek.com/http-2-bomb-exploit-knocks-web-servers-offline-in-seconds/ - Exclusive: How One Line of Code Put Billions of Microsoft Android App Downloads at Risk https://www.securityweek.com/exclusive-how-one-line-of-code-put-billions-of-microsoft-android-app-downloads-at-risk/ - Ransomware Attacks Surge 30% in 2026 as Qilin and INC Ransom Intensify Operations https://thecyberexpress.com/qilin-inc-ransom-drive-2026-ransomware-surge/ - Why an HP Poly VoIP Phones Bug Could Become an Enterprise Foothold https://securityaffairs.com/193045/security/why-an-hp-poly-voip-phones-bug-could-become-an-enterprise-foothold.html - Microsoft Tries to Calm Legal Threat Fears After Zero-Day Disclosure Backlash https://www.securityweek.com/microsoft-tries-to-calm-legal-threat-fears-after-zero-day-disclosure-backlash/ - U.S. CISA adds Oracle WebLogic flaw to its Known Exploited Vulnerabilities catalog https://securityaffairs.com/193027/security/u-s-cisa-adds-oracle-weblogic-flaw-to-its-known-exploited-vulnerabilities-catalog.html

Cyber Daily News for June 1, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - CIFSwitch, a Linux Root Bug Hidden in Plain Sight for 19 Years https://securityaffairs.com/192959/security/a-spacex-security-engineer-used-ai-to-find-a-19-year-old-linux-bug-that-gives-attackers-root.html - Palo Alto Networks PAN-OS Auth Bypass Actively Exploited, Added to CISA KEV https://securityaffairs.com/192951/security/u-s-cisa-adds-palo-alto-networks-pan-os-flaw-to-its-known-exploited-vulnerabilities-catalog.html - The Pentagon Finally Admits That Location Data Is a Battlefield Problem https://securityaffairs.com/192942/cyber-warfare-2/the-pentagon-finally-admits-that-location-data-is-a-battlefield-problem.html - Attackers Abuse Shared Content for ChatGPT Phishing Campaign https://www.infosecurity-magazine.com/news/attackers-shared-content-chatgpt/ - TrapDoor Crypto Stealer Supply Chain Attack Hits 34 Packages Across npm, PyPI, and Crates.io https://socket.dev/blog/trapdoor-crypto-stealer-npm-pypi-crates - New ChatGPhish Technique Uses Prompt Injection to Manipulate ChatGPT Responses https://thecyberexpress.com/chatgphish-prompt-injection-vulnerability/ - Infosecurity Europe: OWASP Forms New Agentic Research Council https://www.infosecurity-magazine.com/news/owasp-new-agentic-research-council/ - CBSE Engages IIT Experts After Admitting OSM Security Vulnerabilities https://thecyberexpress.com/cbse-osm-vulnerability/