Black Arrow Cyber Threat Intelligence Briefing 19 June 2026
Welcome to this week’s Black Arrow Cyber Threat Intelligence Briefing – a weekly digest, collated and curated by our cyber experts to provide senior and middle management with an easy to digest round up of the most notable threats, vulnerabilities, and cyber related news from the last week.
Executive Summary
In our review of cyber security in the specialist and general media this week, we start with several high-profile alerts for business leaders. Organisations using Fortinet should assess their response to the discovery of tens of thousands of firewall credentials, and all organisations should assess the impact of a wider data leak of 24 billion records. We also provide more information on the Kali365 phishing-as-a-service platform targeting Microsoft accounts, which we included last week, and information on research regarding the number of malicious emails that bypass current security.
Over recent weeks, we have highlighted the need for organisations to manage the risks associated with using AI, and we provide further examples below. These include a Copilot risk recently remediated by Microsoft, and how AI is being used by attackers.
Distilling these insights into key actions, a message for business leaders is to prepare for organisational resilience in the event of a cyber incident. We work on this with clients across the world to achieve proportionality, which requires an objective understanding of the high-impact business activities in the organisation that must be prioritised in an incident, and a leadership team that has rehearsed together by considering the challenging and realistic ‘what if?’ scenarios to dispel assumptions. Contact us to discuss how to achieve this.
Top Cyber Stories of the Last Week
FortiBleed Exposes Admin Passwords for 75,000 Fortinet Firewalls
Security researchers have identified a major exposure of Fortinet firewall credentials affecting around 75,000 devices, with the dataset believed to cover roughly half of all internet-facing Fortinet firewalls. The exposed information reportedly includes usernames, email addresses and plain text passwords across 194 countries and more than 21,000 domains, including major companies, government bodies and critical infrastructure operators. Evidence suggests the data may have been prepared for sale in criminal markets or for coordinated deployment by threat actors, increasing the risk of attackers gaining remote access to affected networks, changing security settings or creating hidden administrator accounts.
24 Billion Records, Including Usernames and Passwords, Exposed in Colossal Data Leak: What Does That Mean for You?
Cybernews researchers identified an exposed database containing 24 billion records and more than 8.3TB of data, including usernames, email addresses, passwords and login URLs. Much of the data appears to come from infostealer malware, although researchers also identified records sourced from Telegram channels, breach compilations and other collections. The database was exposed between 12 and 15 June 2026, although researchers cannot confirm how many records were duplicates or how many people were affected. Reused passwords remain a key risk, particularly for accounts without multi-factor authentication.
https://cybernews.com/security/24-billion-credentials-data-leak/
Meet Kali365 — The ‘Amazon of Cybercrime’ Where Hackers Use AI to Completely Circumvent Multi-Factor Authentication
Kali365 is a phishing-as-a-service platform targeting Microsoft accounts, offering criminals ready-made tools to run phishing campaigns at scale. First identified by Huntress in May 2026, it includes more than 33 Microsoft themed templates and over 100 API endpoints. The platform gains access to accounts after users complete multi-factor authentication, using stolen session cookies and OAuth tokens rather than passwords alone. The FBI has warned that it can also use AI to read stolen email threads, assess fraud opportunities and draft replies based on the content of compromised conversations.
HP Warns 11% of Email Threats Bypass Security Gateways
HP research has found that 11% of email threats reaching users had already bypassed one or more security gateway scanners in Q1 2026. Email remained the leading route for malicious activity, accounting for 57% of threats, followed by web browser downloads at 24%. Attackers are increasingly abusing legitimate software, trusted platforms and familiar business processes to avoid detection, including remote access tools, fake software updates and shared design platforms. The findings suggest organisations should not rely solely on email security gateways, as a proportion of threats are reaching users after passing through existing scanning controls.
https://therecycler.com/posts/that-hp-warns-11-of-email-threats-bypass-security-gateways/
Cybercriminals Are Moving Away from Mass Phishing Campaigns
Zscaler reports that overall phishing activity fell by around 20% in both 2024 and 2025, but phishing campaigns are becoming more targeted. Criminals are moving away from mass email campaigns towards convincing business-themed messages, such as billing notices, onboarding documents and support requests. The services sector saw a 65.5% rise in phishing activity, while Microsoft and Google remained the most impersonated brands. Zscaler also found more than 95% of phishing activity used encrypted web traffic, with attackers increasingly using artificial intelligence tools to create fake websites and steal active login sessions. The research suggests organisations should look beyond blocked-email statistics when assessing phishing threats, as attackers are increasingly focusing on identities, active sessions and other techniques that are not reflected in email volumes.
https://www.helpnetsecurity.com/2026/06/12/zscaler-report-phishing-activity-trends/
One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes
A flaw in Microsoft 365 Copilot Enterprise Search could have allowed attackers to steal emails, calendar details, files and multi-factor authentication codes after a user clicked a genuine Microsoft link. Researchers found the issue could bypass traditional phishing checks because the link used a trusted Microsoft domain. Microsoft has fixed the issue through its managed service, and there is no evidence it was exploited. The research notes that Copilot Enterprise can access the same emails, files and business information available to the signed-in user, and recommends monitoring unusual Copilot activity and limiting the volume of data available for indexing.
https://thehackernews.com/2026/06/one-click-microsoft-365-copilot-flaw.html
“Dangerous” AI Models Are Coming No Matter What
Advanced AI models with hacking capabilities are expected to become more widely available within months, raising concerns for governments and business leaders alike. Anthropic recently took two models offline after US export controls, amid fears their safeguards could be bypassed. Experts argue that organisations and governments should prepare for a future in which advanced AI cyber capabilities are widely available, rather than assuming restrictions on individual models will prevent their emergence. While these models can help defenders find and fix weaknesses, they could also help criminals identify ways to exploit them.
https://arstechnica.com/ai/2026/06/dangerous-ai-models-are-coming-no-matter-what/
https://www.wired.com/story/dangerous-ai-models-are-coming-no-matter-what/
Low-Skilled Attacker Used Claude, Codex to Breach 14 Companies
OALABS researchers found that a low-skilled attacker used AI coding agents to breach at least 14 companies, showing how these tools can reduce the expertise needed for cyber attacks. More than 1,000 recovered sessions showed the attacker used vague prompts, often framed as authorised security testing, while the AI helped find exposed systems, write exploit code and extract data. The tools raised few policy violations, and most were bypassed. The findings suggest AI coding agents can reduce the technical expertise required to conduct cyber attacks.
https://www.helpnetsecurity.com/2026/06/17/ai-agents-offensive-cyber-operations-claude-codex/
It’s Time to Update Incident Response for the AI Era
Gartner has warned that incident response must adapt as AI becomes embedded in business operations. It predicts that at least 80% of unauthorised AI transactions will stem from internal policy breaches, oversharing of information, unacceptable use or misguided AI behaviour, rather than malicious attacks. The challenge is that AI systems may create business risk while acting within their approved permissions. Gartner recommends that organisations review how they define AI-related incidents, improve oversight of AI activity, and ensure legal, compliance, HR and business teams are included in response planning.
NCSC CEO: Hostile States Linked to Three-Quarters of Cyber Attacks Affecting UK’s Critical Systems
The UK’s NCSC has warned that hostile states are behind around three quarters of cyber attacks affecting the UK’s critical national infrastructure. More than 200 incidents involving essential services and their supporting systems were handled in the year to May 2026, with Russia, China and Iran identified as examples of hostile states of concern. The warning highlights the importance of understanding exposure to threats, strengthening security fundamentals and ensuring organisations can continue operating and recover quickly after an attack. The NCSC also expects artificial intelligence to increase the scale at which attackers can identify and exploit vulnerable legacy technology by 2028.
https://www.ncsc.gov.uk/news/ncsc-ceo-hostile-states-linked-to-three-quarters-of-cyber-attacks
Over Two-Thirds of Security Pros Say Cyber Is Getting Harder
A new ISSA and Omdia study of 380 cyber security professionals found that 68% believe their role has become harder over the past two years. Many report being excluded from key technology decisions, with 72% saying this creates barriers to stronger security. Stress is also rising, with 47% considering leaving their role or the profession in the past 12 to 18 months. Only 29% rated their organisation’s cyber security culture as advanced, with respondents identifying increased training, investments in the right resources, stronger cyber hygiene and closer collaboration between security and IT teams as key areas for improvement.
https://www.infosecurity-magazine.com/news/security-pros-cyber-cyber-harder/
Governance, Risk and Compliance
It's time to update incident response for the AI era | TechTarget
Most CISOs Report Pressure to Bury Bad Security News
Over Two-Thirds of Security Pros Say Cyber Is Getting Harder - Infosecurity Magazine
How CISOs can balance business continuity with other responsibilities | CSO Online
Threats
Ransomware, Extortion and Destructive Attacks
DragonForce Hid Inside Microsoft Teams and Nobody Noticed for Two Months
Ransomware group The Gentlemen linked to Russian national | SC Media UK
Infostealers, AI, and a 90% Affiliate Cut Fuel The Gentlemen group’s Rise - Security Affairs
Crooks found a new way to collaborate using Teams – by hiding command-and-control traffic
Silent Ransom Group: What You Need to Know
Morpheus Unmasked: Big Game Hunting and Private Data Sales | Ankura - JDSupra
Ransomware Insider Betrayal: Guilty Plea In BlackCat Cybercrime Scheme
ShinyHunters Uses Oracle Zero-Day to Rampage Higher Ed
Conti ransomware group member pleads guilty, faces up to 20 years in prison | CyberScoop
Ukrainian national pleads guilty to role in Conti ransomware operation
INC Ransomware Thrives by Mastering the Basics
Ransomware and Destructive Attack Victims
Council of Europe hacked in ShinyHunters' PeopleSoft heist
Hacking Group Claims Major Hack of Novo Nordisk and Attempted $25M Extortion
Cyberattack Gives Biglaw Firm A New Return-To-Office Excuse - Above the Law
JLR ordered in-person password resets after cyberattack | Manufacturer News
Infinite Campus data breach affects 137,000 school staff accounts
Kodak confirms data breach claimed by ShinyHunters extortion gang
Phishing & Email Based Attacks
Cybercriminals are moving away from mass phishing campaigns - Help Net Security
HP warns 11% of email threats bypass security gateways - The Recycler
FBI disrupts massive AI-powered phishing service using a million URLs
New Phishing Scam Targets Microsoft Teams, Outlook, OneDrive
Google Sues Chinese Cybercrime Group Behind 'Phishing-for-Dummies' Software | PCMag
Google Sues Chinese Phishing Service Over Gemini Abuse
FBI warns Microsoft Teams, Outlook, OneDrive users of phishing scam - Fast Company
9 million email addresses loaded into UK retail, tax and crypto scams | Cybernews
Other Social Engineering
ClickFix Campaigns Expand Malware Delivery With New Loaders and Fake Update Lures
'Lorem Ipsum' Malware Pivots to ClickFix Delivery
9 million email addresses loaded into UK retail, tax and crypto scams | Cybernews
Why SIM Swapping Remains a Blind Spot for Enterprise Security Teams
FTC warns of record $3.5 billion losses to imposter scams in 2025
Planning a trip? Fake travel sites are multiplying this summer - Help Net Security
Helpdesk scammers are making house calls to make their lies feel more real
Threat Actors Abuse claude.ai Shared Chat for ClickFix Malvertising Campaign | Trend Micro (US)
North Korean Hiring Fraud Runs on AI and US Laptop Farms - Infosecurity Magazine
Sniper Dz Scams Target MENA Users via Fake Facebook Offers and Browser Alerts
Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware
2FA/MFA
Artificial Intelligence
Anthropic Halts Access to Top AI Models After U.S. Ban on Foreign Use - WSJ
Low-skilled attacker used Claude, Codex to breach 14 companies - Help Net Security
FBI disrupts massive AI-powered phishing service using a million URLs
It's time to update incident response for the AI era | TechTarget
AI sovereignty hawks see red as U.S. moves to block Anthropic’s Mythos and Fable models - The Hindu
New attack turned Microsoft 365 Copilot into 1-click data theft tool
One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes
Copilot 'SearchLeak' Attack Allows 1-Click Data Theft
Agentjacking Attack Tricks AI Coding Agents Into Running Malicious Code
US decision to block Mythos access fuels European calls for sovereignty | Euractiv
Cyber Experts Urge US to Lift Ban on Anthropic’s Frontier AI Models - Infosecurity Magazine
AI’s constant patching treadmill can be a security problem | CyberScoop
"Dangerous" AI models are coming no matter what
The OpenClaw security risks every CISO needs to know | TechTarget
AI is accelerating cyberattacks—here’s how to stay ahead | Microsoft Community Hub
Threat Actors Abuse claude.ai Shared Chat for ClickFix Malvertising Campaign | Trend Micro (US)
US, France, and Italian authorities shut down massive deepfake porn site | CyberScoop
LiteLLM Vulnerability Chain Lets Low-Privilege Users Take Over AI Gateway Servers
Vibe coders are gonna vibe code: How CISOs are tackling code sprawl
AI Threats and Alert Fatigue Challenge Cybersecurity Teams - Infosecurity Magazine
North Korean Hiring Fraud Runs on AI and US Laptop Farms - Infosecurity Magazine
Google Sues Chinese Phishing Service Over Gemini Abuse
Technical Warnings: AI Assistants Could Become Gateways for Cyberattacks
EU regulation drives new cybersecurity focus on AI systems - The Recycler
NanoClaw integrates JFrog registries to secure AI agent downloads
Chinese Hackers Target Medical, Military, and AI Research in North America - SecurityWeek
Careers, Roles, Skills, Working in Cyber and Information Security
AI Threats and Alert Fatigue Challenge Cybersecurity Teams - Infosecurity Magazine
Accenture cyber leads: why hiring more people won’t solve the cybersecurity talent gap | Fortune
Staffing Is Top SOC Challenge Even as AI Proliferates, Says SANS - Infosecurity Magazine
Cybersecurity Skills Gap in 2026: Why Developers Should Add Security
How AI is changing the breadth of cybersecurity roles
Cloud/SaaS
New Phishing Scam Targets Microsoft Teams, Outlook, OneDrive
DragonForce Hid Inside Microsoft Teams and Nobody Noticed for Two Months
FBI warns Microsoft Teams, Outlook, OneDrive users of phishing scam - Fast Company
Cyber Crime, Organised Crime & Criminal Actors
FBI takes down massive China-based cybercrime network that caused $1.9B in losses | CyberScoop
Cyber offenses now account for around a third of all crime across Asia and South Pacific
Data Breaches/Leaks
24 billion records, including usernames and passwords, exposed in colossal data leak | Cybernews
Hackers Crack Corporate, Government VPNs In Major Incident
Council of Europe investigates ShinyHunters data breach claims
Novo Nordisk says hackers stole clinical trial data
Plymouth council exposes hundreds in latest local government email gaffe
French Government Messaging Platform Breached by Mysterious ‘Misere’ Hacker - SecurityWeek
Heart Monitoring Firm Tells SEC Hackers Stole Sensitive Data
University of Nottingham shares more details on major cyber-attack - BBC News
Infinite Campus data breach affects 137,000 school staff accounts
Fired IT worker jailed for 21 months after sabotaging old school district
Hackers Publish Knicks and Madison Square Garden Data Online
Data/Digital Sovereignty
US decision to block Mythos access fuels European calls for sovereignty | Euractiv
MPs call for UK government to back sovereign IT | Computer Weekly
France's digital sovereignty push is struggling to escape the Microsoft gravity well
French Government Messaging Platform Breached by Mysterious ‘Misere’ Hacker - SecurityWeek
Digital sovereignty needs an operating model
Denial of Service/DoS/DDoS
IT, Telcos, Healthcare at Risk of HTTP/2 DDoS Attacks
Encryption
France to stop certifying products without quantum-safe encryption | Reuters
CEOs Must Act Before Quantum Computers Break Existing Cybersecurity
Fraud, Scams and Financial Crime
FTC warns of record $3.5 billion losses to imposter scams in 2025
Planning a trip? Fake travel sites are multiplying this summer - Help Net Security
Helpdesk scammers are making house calls to make their lies feel more real
Sniper Dz Scams Target MENA Users via Fake Facebook Offers and Browser Alerts
Hackers Are Hijacking Entire Roblox Games Now
Identity and Access Management
Chinese hackers hijack auth flow, spy on isolated network for a decade
Insider Risk and Insider Threats
North Korean Hiring Fraud Runs on AI and US Laptop Farms - Infosecurity Magazine
Ex-school district employee jailed for hacks on former employer
Fired IT worker jailed for 21 months after sabotaging old school district
Internet of Things – IoT
21,786 Home Cameras, No Password, No Warning
Securing digital keys when your phone unlocks the car - Help Net Security
Law Enforcement Action and Take Downs
FBI disrupts massive AI-powered phishing service using a million URLs
Ransomware Insider Betrayal: Guilty Plea In BlackCat Cybercrime Scheme
Conti ransomware group member pleads guilty, faces up to 20 years in prison | CyberScoop
Ukrainian national pleads guilty to role in Conti ransomware operation
Fired IT worker jailed for 21 months after sabotaging old school district
Linux and Open Source
Atomic Arch Supply Chain Attack Hits 1,500 AUR Packages - SecurityWeek
Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit
Malware
Atomic Arch Supply Chain Attack Hits 1,500 AUR Packages - SecurityWeek
144 Mastra npm Packages Compromised via Hijacked Contributor Account
Fileless Phantom Stealer Targets Browser Credentials
China-Linked SprySOCKS Backdoor Expands to Windows with Driver-Based Stealth
SprySOCKS Windows Variant Uses Kernel Drivers to Evade Detection
GhostTree Attack Abused Recursive Windows Junctions to Hide Malware
Threat Actors Abuse claude.ai Shared Chat for ClickFix Malvertising Campaign | Trend Micro (US)
ClickFix Campaigns Expand Malware Delivery With New Loaders and Fake Update Lures
'Lorem Ipsum' Malware Pivots to ClickFix Delivery
WinRAR Vulnerability Exploited by Russian Hackers to Deploy GIFTEDCROOK Stealer
Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware
Steam Workshop abused to spread malware via Wallpaper Engine app
152 Chrome Wallpaper Extensions with 105K Installs Linked to Adware and Fake Traffic
Malware à la Mode: Tracking Dropping Elephant Tradecraft Through a China-Themed Loader Chain
Mobile
New Rokarolla Android Malware Steals PINs, SMS Codes, and Crypto Wallet Funds
Your strong passwords mean nothing if your phone PIN is four digits
Every way your phone tracks your location - and how to stop it | ZDNET
Verizon sent man a refurbished phone with MDM, then deleted his data remotely - Ars Technica
Models, Frameworks and Standards
EU Cybersecurity Act 2.0: When good regulation goes bad - Help Net Security
Software supply chains are heading for a transparency test - Help Net Security
Passwords, Credential Stuffing & Brute Force Attacks
Hackers Crack Corporate, Government VPNs In Major Incident
Massive breach spills credentials for thousands of sensitive networks - Ars Technica
FortiBleed Exposes Admin Passwords for 75,000 Fortinet Firewalls
Why Account Takeovers Are Rising and How to Stop Them
We need to do something about passwords | IT Pro
Your strong passwords mean nothing if your phone PIN is four digits
JLR ordered in-person password resets after cyberattack | Manufacturer News
Regulations, Fines and Legislation
Anthropic Halts Access to Top AI Models After U.S. Ban on Foreign Use - WSJ
AI sovereignty hawks see red as U.S. moves to block Anthropic’s Mythos and Fable models - The Hindu
Lawmakers leery about Trump administration’s Anthropic order | CyberScoop
Security Community Slams US Ban on Exporting Mythos, Fable
Anthropic sends top security experts to Washington to rescue flagship models - Cryptopolitan
Restore Fable and Mythos Access, Cybersecurity Leaders Urge
"Dangerous" AI models are coming no matter what
UK to require ID or face scan before you can make social media accounts
UK Social Media Ban for Minors Has Privacy Experts Worried
Software supply chains are heading for a transparency test - Help Net Security
EU regulation drives new cybersecurity focus on AI systems - The Recycler
Banks fight to scrap an SEC cyberattack rule | American Banker
Trump Memo Overhauls Cyber Rules for Classified Networks
Social Media
Security risks overshadow the debut of Europe’s X rival, W | Cybernews
UK to require ID or face scan before you can make social media accounts
UK Social Media Ban for Minors Has Privacy Experts Worried
Software Supply Chain
Atomic Arch Supply Chain Attack Hits 1,500 AUR Packages - SecurityWeek
144 Mastra npm Packages Compromised via Hijacked Contributor Account
Software supply chains are heading for a transparency test - Help Net Security
Supply Chain and Third Parties
Early Warning Signs of Supply-Chain Attacks Live in the Dark Web
Another healthcare firm attacked days after Novo Nordisk breach - Help Net Security
University of Nottingham shares more details on major cyber-attack - BBC News
Nation State Actors, Advanced Persistent Threats (APTs), Cyber Warfare, Cyber Espionage and Geopolitical Threats/Activity
Cyber Warfare and Cyber Espionage
Cyberspace Locked in a Nation-State Contest, Says NCSC CEO
UK infrastructure being targeted by hostile states, GCHQ cyber chief warns | The Standard
Chinese Hackers Target Medical, Military, and AI Research in North America - SecurityWeek
The unit preparing for Israel's invisible war | Ctech
EU extends emergency cyber security support to Ukraine - CNA
Nation State Actors
Cyberspace Locked in a Nation-State Contest, Says NCSC CEO
What is the UK's Defending Democracy Taskforce? - The Constitution Society
China
Chinese Hackers Target Medical, Military, and AI Research in North America - SecurityWeek
China-linked actor UNC6508 spent two years inside medical research networks
Chinese hackers hijack auth flow, spy on isolated network for a decade
Malware à la Mode: Tracking Dropping Elephant Tradecraft Through a China-Themed Loader Chain
Google Sues Chinese Phishing Service Over Gemini Abuse
FBI takes down massive China-based cybercrime network that caused $1.9B in losses | CyberScoop
Google Sues Chinese Cybercrime Group Behind 'Phishing-for-Dummies' Software | PCMag
Russia
WinRAR Vulnerability Exploited by Russian Hackers to Deploy GIFTEDCROOK Stealer
EU provides cyber support to Ukraine against major attacks | EEAS
North Korea
North Korean Hiring Fraud Runs on AI and US Laptop Farms - Infosecurity Magazine
CISA Launches Major Hiring Push and Remote Worker Fraud Emerges as Growing Threat - ClearanceJobs
Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware
Iran
Strengthening cybersecurity cooperation between Iran and BRICS members - Pars Today
Cyberattack disrupts services at four Iranian banks, state media says | The Jerusalem Post
Other Nation State Actors, Hacktivism, Extremism, Terrorism and Other Geopolitical Threat Intelligence
Strengthening cybersecurity cooperation between Iran and BRICS members - Pars Today
Tools and Controls
Anthropic Halts Access to Top AI Models After U.S. Ban on Foreign Use - WSJ
HP warns 11% of email threats bypass security gateways - The Recycler
It's time to update incident response for the AI era | TechTarget
US decision to block Mythos access fuels European calls for sovereignty | Euractiv
Cyber Experts Urge US to Lift Ban on Anthropic’s Frontier AI Models - Infosecurity Magazine
"Dangerous" AI models are coming no matter what
AI Threats and Alert Fatigue Challenge Cybersecurity Teams - Infosecurity Magazine
How AI is changing the breadth of cybersecurity roles
Rethinking MDR as Attackers and Defenders Embrace AI
Vibe coders are gonna vibe code: How CISOs are tackling code sprawl
The Top 10 Attack Surface Exposures in 2026
Survey: 94% of Incidents Involve Anonymized Infrastructure. Teams Are Still Reactive
Cybersecurity Skills Gap in 2026: Why Developers Should Add Security
The FBI secretly built an entire fake town just to practice cyberattacks - Digital Trends
Staffing Is Top SOC Challenge Even as AI Proliferates, Says SANS - Infosecurity Magazine
Reports Published in the Last Week
Other News
The FBI secretly built an entire fake town just to practice cyberattacks - Digital Trends
What is the UK's Defending Democracy Taskforce? - The Constitution Society
Survey: 94% of Incidents Involve Anonymized Infrastructure. Teams Are Still Reactive
Ireland faces security test as it takes over EU presidency – POLITICO
Hacker: 'I Could Have Rickrolled the World Cup'
Cyberattack sees crops kept in the ground
Windows and Linux users: The deadline to update Secure Boot keys is near - Ars Technica
Hackers Are Hijacking Entire Roblox Games Now
Over 80% of Sports Organizations Targeted by Hackers in the Last Year - Infosecurity Magazine
Vulnerability Management
AI’s constant patching treadmill can be a security problem | CyberScoop
Microsoft is making Windows 11 updates require just one reboot instead of several | TechSpot
Trump Memo Overhauls Cyber Rules for Classified Networks
Vulnerabilities
Microsoft Outlook and Word Vulnerability Allow Attackers to Execute Malicious Code
One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes
Copilot 'SearchLeak' Attack Allows 1-Click Data Theft
Critical Copilot vulnerability allowed hackers to steal 2FA code from users - Ars Technica
Windows 11 Update KB5094126 Freezes Systems, Forces BitLocker Recovery, and More
Microsoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in Development
Three critical Fortinet sandbox bugs splattered by unknown attackers
3 Recently Patched Fortinet FortiSandbox Vulnerabilities in Hacker Crosshairs - SecurityWeek
FortiBleed - 70,000+ Fortinet Firewalls Compromised in Massive Exploitation Attack
ShinyHunters Uses Oracle Zero-Day to Rampage Higher Ed
Oracle's Second Monthly Security Updates Deliver 245 Patches - SecurityWeek
Palo Alto PAN-OS Vulnerability Allow Attackers to Arbitrary Commands as a Root User
Palo Alto Warns of Active Exploitation of PAN-OS GlobalProtect VPN Flaw
Chrome and Firefox Updated to Patch Critical, High-Severity Vulnerabilities - SecurityWeek
Ivanti Sentry Exploitation Attempts Hitting Honeypots - SecurityWeek
CISA warns of another cPanel plugin flaw exploited in attacks
Joomla, LiteSpeed Vulnerabilities Exploited in Attacks - SecurityWeek
Google Vertex AI SDK Flaw Let Attackers Hijack Model Uploads via Bucket Squatting
WinRAR Vulnerability Exploited by Russian Hackers to Deploy GIFTEDCROOK Stealer
Sector Specific
Industry specific threat intelligence reports are available.
Contact us to receive tailored reports specific to the industry/sector and geographies you operate in.
Automotive
Construction
Critical National Infrastructure (CNI)
Defence & Space
Education & Academia
Energy & Utilities
Estate Agencies
Financial Services
FinTech
Food & Agriculture
Gaming & Gambling
Government & Public Sector (including Law Enforcement)
Health/Medical/Pharma
Hotels & Hospitality
Insurance
Legal
Manufacturing
Maritime & Shipping
Oil, Gas & Mining
OT, ICS, IIoT, SCADA & Cyber-Physical Systems
Retail & eCommerce
Small and Medium Sized Businesses (SMBs)
Startups
Telecoms
Third Sector & Charities
Transport & Aviation
Web3
Contact us to help assess where your risks lie and to ensure you are doing all you can do to keep you and your business secure.
Look out for our ‘Cyber Tip Tuesday’ video blog and on our YouTube channel.
You can also follow us on Facebook, Twitter and LinkedIn.
Links to external articles are provided for general interest and awareness only. Linking to or reposting external content does not constitute endorsement of or by any organisation, service, or product. We do not control and are not responsible for the content, security, or availability of external websites or links. Full credit is given to the original authors and sources. E&OE.