Show Notes - 2026-06-02
Stories Covered
- CVE-2026-21182: Oracle WebLogic Server Added to CISA KEV [Critical Alerts]
- CVE-2026-41089: Windows Netlogon RCE Under Active Exploitation [Critical Alerts]
- CVE-2026-0257: Palo Alto Networks GlobalProtect Authentication Bypass Exploited [Critical Alerts]
- Gogs Remote Code Execution Zero-Day (No CVE Yet) [Critical Alerts]
- Red Hat npm Packages Compromised in Supply Chain Attack [Business & Infrastructure Threats]
- DriveSurge Campaign Hijacks Thousands of Sites for Malware Distribution [Business & Infrastructure Threats]
- codexui-android npm Package Steals OpenAI Codex Tokens [Business & Infrastructure Threats]
- Meta AI Support Bot Exploited for Instagram Account Takeover [Business & Infrastructure Threats]
- WordPress Malware Hides C2 Data in Steam Profile Comments [Business & Infrastructure Threats]
- CVE-2026-45498, CVE-2026-33825, CVE-2026-41091: Additional Windows Zero-Days Under Exploitation [Windows / AD Security]
- Microsoft Outages Affecting MFA Setup and Office Apps [Windows / AD Security]
- KB5089549 Windows 11 Security Update Installation Issues Resolved [Windows / AD Security]
- CVE-2026-26980: Ghost CMS SQL Injection Under Active Exploitation [General Security News]
- CVE-2026-8732: WP Maps Pro WordPress Plugin Exploited for Site Takeover [General Security News]
- Dashlane Brute-Force Attack Results in Limited Vault Downloads [General Security News]
- SVG Files Used in Phishing Campaigns [General Security News]
- GlassWorm C2 Infrastructure Taken Down [General Security News]
- Carnival Corporation, Charter Communications, Lithuania Data Breaches [General Security News]
- Spain Arrests Doxer Targeting Government Employees [General Security News]
- Check Point Security Gateways: CVE-2026-48131, CVE-2026-48132 [Vulnerability Disclosures]
- China-Aligned Threat Activity Targeting Czech Republic, Taiwan, India [Vulnerability Disclosures]
- Pakistan-Linked SideCopy Targets Afghanistan with Xeno RAT [Vulnerability Disclosures]
CVEs Referenced
CVE-2026-0257, CVE-2026-21182, CVE-2026-26980, CVE-2026-33825, CVE-2026-41089, CVE-2026-41091, CVE-2026-45498, CVE-2026-45585, CVE-2026-48131, CVE-2026-48132, CVE-2026-8732
Indicators of Compromise
IP Addresses:
164.92.88.210
Fler avsnitt av Cyber Threat Brief
Visa alla avsnitt av Cyber Threat BriefCyber Threat Brief med Carolina Clear Tech, LLC finns tillgänglig på flera plattformar. Informationen på denna sida kommer från offentliga podd-flöden.
