Show Notes - 2026-06-04
Stories Covered
- June 4, 2026
- CISA Adds Three Actively Exploited Vulnerabilities to KEV Catalog [Critical Alerts]
- Acer Wave 7 Routers Have Max-Severity Zero-Days Exposing Credentials [Critical Alerts]
- Microsoft 365 Android Apps Leaked OAuth Tokens via Debug Flag [Business & Infrastructure Threats]
- Attackers Build Automated EDR Evasion Labs Using AI [Business & Infrastructure Threats]
- CISA Warns of Cyberattacks Targeting Fuel Tank Monitoring Systems [Business & Infrastructure Threats]
- HTTP/2 Bomb DoS Attack Crashes Web Servers in Seconds [Business & Infrastructure Threats]
- Fake Sites Mimicking Open-Source Tools Deliver Malware via Traffic Distribution System [Business & Infrastructure Threats]
- Stock Exchange Executive's Outlook Mailbox Compromised for Five Months [Business & Infrastructure Threats]
- TA4922 Chinese Cybercrime Group Expands to Europe with Atlas RAT [Business & Infrastructure Threats]
- DesckVB RAT Campaign Abuses Google DoubleClick for Evasion [Business & Infrastructure Threats]
- U.S. Sanctions Nobitex Crypto Exchange Used by Iranian Ransomware Actors [Business & Infrastructure Threats]
- Active Directory Description Fields Stored Passwords in Plaintext [Windows / AD Security]
- Unpatched Windows Search URI Vulnerability Leaks NTLMv2 Hashes [Windows / AD Security]
- One-Click GitHub.dev Attack Steals Full OAuth Tokens [Vulnerability Disclosures]
- Autonomous AI Tool Finds 2-Year-Old Redis RCE (CVE-2026-23479) [Vulnerability Disclosures]
- Google Gemini Prompt Injection via Android Notifications [Vulnerability Disclosures]
- Open-Source AI Models Used to Build Self-Spreading Worms [General Security News]
- Cyber Insurance Rates Drop but Exclusions Widen [General Security News]
- Police Dismantle 9 Crime Groups in Illegal Streaming Crackdown [General Security News]
CVEs Referenced
CVE-2022-0492, CVE-2023-35636, CVE-2025-48595, CVE-2026-23479, CVE-2026-33829, CVE-2026-41100, CVE-2026-41101, CVE-2026-41102, CVE-2026-42832, CVE-2026-45247, CVE-2026-49200, CVE-2026-49201, CVE-2026-49975
Indicators of Compromise
IP Addresses:
10.0.1.100
Fler avsnitt av Cyber Threat Brief
Visa alla avsnitt av Cyber Threat BriefCyber Threat Brief med Carolina Clear Tech, LLC finns tillgänglig på flera plattformar. Informationen på denna sida kommer från offentliga podd-flöden.
