Actualizado: 2026-06-20 18:22:05 · Fuente: cyber.netsecops.io
A large-scale, automated credential harvesting campaign dubbed 'FortiBleed' has compromised administrative and VPN credentials for at least 73,932 Fortinet FortiGate firewalls across 194 countries. A Russian-speaking threat group is believed to have
A software supply chain attack on the JetBrains Marketplace has been uncovered, involving at least 15 malicious plugins that masqueraded as legitimate AI coding assistants to steal API keys. Active since October 2025, the plugins exfiltrated credenti
Cybercriminals are exploiting the Steam Workshop by hiding malware within animated desktop backgrounds for the popular 'Wallpaper Engine' application. A report from Kaspersky details how attackers are using the app's ability to run executables to dep
Security researchers at CYFIRMA have identified a new ransomware variant named 'GodDamn' that targets Windows operating systems. The malware, discovered on underground forums, encrypts files and appends a '.God8Damn' extension. It then drops a ransom
The U.S. Federal Communications Commission (FCC) is reviewing its information collection requirements for supply chain security programs aimed at enhancing oversight of telecommunications infrastructure. A notice published in the Federal Register on
The Texas Parks and Wildlife Department has announced a data breach that may have exposed the personal information of more than 3 million Texas hunting and fishing license holders. The breach originated from an unnamed third-party vendor that manages
LOGZONE, an Alabama-based defense contractor, has agreed to pay $507,144 to settle allegations that it violated the False Claims Act by knowingly misrepresenting its compliance with Pentagon cybersecurity requirements. The Department of Justice alleg
Accenture is making a monumental $4.175 billion investment to secure a leading position in the operational technology (OT) security market. The consulting giant is acquiring a majority stake in OT threat intelligence leader Dragos, while fully acquir
The INC ransomware-as-a-service (RaaS) group has rapidly become one of 2026's most prolific threats, claiming over 830 victims since August 2023. Capitalizing on the downfall of rivals like LockBit and BlackCat, INC has scaled its operations by attra
The head of the UK's National Cyber Security Centre (NCSC) has issued a stark warning, revealing that hostile state actors are believed to be responsible for 75% of the 200+ cyber incidents targeting the nation's critical infrastructure in the past y
Cisco has released urgent security updates for its Identity Services Engine (ISE) to fix a critical vulnerability, CVE-2026-20181, with a CVSS score of 9.1. The flaw could allow a remote, authenticated administrator to execute arbitrary commands with
A new report from cybersecurity firm Bridewell reveals a troubling trend in the UK's critical infrastructure sector: 77% of utility companies have experienced cyber attacks targeting their legacy equipment and outdated operational technology (OT) in
Eastman Kodak Company has confirmed it suffered a data breach after the notorious ShinyHunters extortion group listed the company on its dark web leak site. ShinyHunters claims to have stolen 2.2 million records, including customer PII and internal d
Splunk and Atlassian have issued a series of security updates to address multiple vulnerabilities, some critical. Splunk patched a 9.1 CVSS command injection flaw (CVE-2026-20266) in its AI Toolkit that could lead to remote code execution. Simultaneo
French cybersecurity firm WALLIX and Inria, France's national research institute for digital science, have formed a strategic partnership to accelerate the development of trusted, sovereign artificial intelligence for cybersecurity. Announced at Viva
iRhythm Technologies, the maker of the Zio wearable cardiac monitor, has disclosed a data breach that resulted from a social engineering attack on its third-party business applications. An unidentified threat actor exfiltrated proprietary company dat
SoftBank Group, in collaboration with OpenAI, has launched a new cybersecurity offering in Japan called "Patching as a Service." The service, offered through their joint venture SB OAI Japan GK, uses OpenAI's advanced AI models to perform vulnerabili
A new report from INTERPOL reveals a dramatic increase in cybercrime across the Asia and South Pacific regions, with online scams and other illicit activities now making up 30% of all recorded crime in some member nations. The '2025/2026 Asia and Sou
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory for CVE-2026-11317, a denial-of-service (DoS) vulnerability affecting several models of Rockwell Automation's industrial controllers. These controllers are common
The Aur0ra ransomware group has claimed responsibility for cyberattacks against two new North American companies. On its data leak site, the group listed Allan Brothers, Inc., a U.S.-based agricultural company, and Diamond Truck Centres, a Canadian c
A critical zero-day vulnerability dubbed 'RoguePlanet' has been discovered in Microsoft Defender, affecting fully patched Windows 10 and 11 systems. The flaw, a time-of-check-to-time-of-use (TOCTOU) race condition, allows a local attacker with standa
Cisco has confirmed that a critical path traversal vulnerability, CVE-2026-20262, in its Catalyst SD-WAN Manager is being actively exploited. The flaw allows an authenticated attacker to overwrite arbitrary files and escalate privileges to root. Affe
Mackay Sugar, Australia's second-largest producer of raw sugar, has been forced to halt mill operations following a ransomware attack. The threat group 'The Gentlemen' (tracked as Storm-2697) has claimed responsibility, listing the company on its dar
The China-linked espionage group 'FishMonger' (part of the Winnti umbrella) has upgraded its SprySOCKS backdoor, previously thought to be Linux-only, with two new Windows variants. The new versions, WIN_DRV and WIN_PLUS, feature significant stealth e
The DragonForce ransomware group demonstrated a novel stealth technique by compromising a major US services firm and hiding its command-and-control (C2) traffic within legitimate Microsoft Teams infrastructure. The attackers used a custom Go-based RA
The US Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2026-54420, a privilege escalation vulnerability in the LiteSpeed cPanel plugin, to its Known Exploited Vulnerabilities (KEV) catalog. The flaw (CVSS 8.5) allows a user with
The Council of the European Union has officially approved Ukraine's inclusion in the EU Cybersecurity Reserve. This strategic partnership allows Ukraine to request and receive emergency, on-the-ground support from a pool of trusted private cybersecur
Security researchers have discovered a large, active malicious infrastructure responsible for distributing the EtherRAT malware, phishing pages, and other malicious software. The operation utilizes a network of websites with open directories. EtherRA
The data breach notification service Have I Been Pwned (HIBP) has absorbed a massive new dataset compiled from numerous information-stealing malware logs. This 'June 2026 Stealer Logs' collection contains 56.3 million unique email addresses and 124 m
Microsoft has released an urgent security update for its Edge browser to address multiple vulnerabilities, one of which, CVE-2026-11645, is being actively exploited. This critical flaw allows a remote attacker to execute arbitrary code within the bro