Show Notes - 2026-06-20
Stories Covered
- Today:
- CISA: Splunk Enterprise flaw actively exploited, patch by Sunday (CVE-2026-20253) [Critical Alerts]
- FortiBleed: 86,000 Fortinet Device Credentials Compromised [Critical Alerts]
- The Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security Processes [Ransomware & Extortion]
- DragonForce Abuses Microsoft Teams Relays to Conceal Backdoor Traffic [Ransomware & Extortion]
- Klue OAuth breach victim list grows as Icarus hackers claim attack [Ransomware & Extortion]
- Threat Brief: Mitigating Large-Scale Credential Attacks (FortiBleed) [Business & Infrastructure Threats]
- CryptoBandits Malware Doubles as a Backdoor, Abuses Tor [Business & Infrastructure Threats]
- Operation Endgame Disrupts SocGholish Servers, Cleans 14,971 WordPress Sites [Business & Infrastructure Threats]
- Hackers exploit info disclosure bug in Gravity SMTP WordPress plugin (CVE-2026-4020) [Business & Infrastructure Threats]
- 1.2 million WordPress sites compromised in OptinMonster supply chain attack [Business & Infrastructure Threats]
- Texas govt data breach exposes over 3 million driver's licenses [Business & Infrastructure Threats]
- Authorities Dismantle PhaaS Network & Clean Sites Infected with SocGholish [General Security News]
- MaXSS and Spyder flaws expose 10 million Chrome users to hacking [General Security News]
- 10-year-old phpBB flaw enables session hijacking [General Security News]
- JetBrains Marketplace plugins steal developer AI keys [General Security News]
- AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution (CVE-2026-25592, CVE-2026-26030) [General Security News]
- Unpatchable 'usbliter8' Exploit Breaks Apple A12 and A13 SecureROM Boot Chain [General Security News]
- Avada Builder WordPress plugin (CVE-2026-8713) [Vulnerability Disclosures]
- Microsoft: June 2026 Windows updates break Recycle Bin prompts [Vulnerability Disclosures]
- Chromium CVEs (CVE-2026-12446, CVE-2026-12458, CVE-2026-12439, CVE-2026-12447, CVE-2026-12453, CVE-2026-12459, CVE-2026-12460, CVE-2026-12454) [Vulnerability Disclosures]
CVEs Referenced
CVE-2026-12439, CVE-2026-12446, CVE-2026-12447, CVE-2026-12453, CVE-2026-12454, CVE-2026-12458, CVE-2026-12459, CVE-2026-12460, CVE-2026-20253, CVE-2026-25592, CVE-2026-26030, CVE-2026-4020, CVE-2026-8713
Indicators of Compromise
IP Addresses:
0.4.2.2
Fler avsnitt av Cyber Threat Brief
Visa alla avsnitt av Cyber Threat BriefCyber Threat Brief med Carolina Clear Tech, LLC finns tillgänglig på flera plattformar. Informationen på denna sida kommer från offentliga podd-flöden.
