9:36 pm – June 18, 2026 INC Ransomware Identified as Significant RaaS Threat, Affecting Over 830 Victims Since 2023
By News RoomCybersecurity researchers have observed the rapid evolution of the INC ransomware group, transforming from a nascent ransomware-as-a-service (RaaS) operation into one of the most prolific cybercrime entities by 2026. Since August 2023, INC has claimed over 830 victims, with a significant majority targeting organizations in the United States across critical…
Microsoft has formally acknowledged a critical vulnerability within its Defender Antivirus engine, publicly known as RoguePlanet. This zero-day flaw, now designated CVE-2026-50656, represents a significant privilege escalation risk within the widely used Microsoft endpoint security solution. The company is actively developing a patch to address the issue, which was recently…
A recent cyber intrusion into a small French automotive business has highlighted a critical vulnerability in typical cybersecurity remediation strategies. French-speaking attacker known as “Poisson” employed a sophisticated tactic of establishing a secondary, covert access channel before his primary command-and-control (C2) server was taken offline. This ensured continued access to…
CISA issues alert on actively exploited Joomla JCE vulnerability enabling PHP code execution
By News RoomCISA Adds Critical Joomla Vulnerability to Known Exploited Vulnerabilities Catalog The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical security flaw affecting the Widget Factory Joomla Content Editor (JCE) to its Known Exploited Vulnerabilities (KEV) catalog. This move, announced on Tuesday, June 17, 2026, signifies that…
Threat actors are actively exploiting multiple security vulnerabilities within Fortinet FortiSandbox appliances, according to a recent advisory from cybersecurity firm Defused Cyber. The firm reported observing exploitation attempts for three specific vulnerabilities, CVE-2026-39813, CVE-2026-39808, and CVE-2026-25089, within a 24-hour period, highlighting an urgent need for organizations using these Fortinet products…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical security flaw affecting the LiteSpeed cPanel Plugin to its Known Exploited Vulnerabilities (KEV) catalog. This designation mandates that Federal Civilian Executive Branch (FCEB) agencies must implement the necessary patches by June 18, 2026, to mitigate the risk…
Research & Analysis
More Articles
Fortinet SSL VPNs Targeted in Significant Brute-Force Attack Spike Cybersecurity researchers are sounding the alarm over a notable surge in brute-force traffic specifically targeting Fortinet SSL VPN devices. The coordinated malicious activity, meticulously tracked by threat intelligence firm GreyNoise, commenced on August 3, 2025, and involved an extensive network of…
Google Sues China-Based Hackers Behind Massive Lighthouse Phishing Platform Google has initiated a significant legal battle, filing a civil lawsuit in the U.S. District Court for the Southern District of New York (SDNY) against a group of China-based hackers. These cybercriminals are allegedly operating a vast Phishing-as-a-Service (PhaaS) platform known…
Amazon’s threat intelligence team has identified an advanced persistent threat group exploiting zero-day vulnerabilities in Cisco Identity Service Engine and Citrix NetScaler products. These attacks were observed prior to vendors publicly disclosing and patching the critical defects, which occurred last summer. The findings highlight sophisticated threat actor capabilities and a…
Amazon announced Tuesday it is expanding its cybersecurity efforts by launching a dedicated bug bounty program for its generative artificial intelligence models, including its NOVA suite. This initiative invites select third-party security researchers and academic institutions to identify and report vulnerabilities within the company’s AI tools. The new program will…
Security researchers are expressing limited immediate concern over dozens of undisclosed vulnerabilities stolen from F5’s internal systems by a nation-state attacker. However, the theft of sensitive intelligence from the widely used technology vendor’s network echoes past espionage operations and could present downstream cybersecurity risks. F5 disclosed the breach on October…
OpenAI has introduced Aardvark, a new artificial intelligence model designed to automate the process of identifying, patching, and remediating software vulnerabilities. The model, powered by GPT-5, was released Thursday and is currently in an invite-only beta phase. Aardvark aims to streamline cybersecurity efforts by continuously scanning code repositories for known…
Researchers from Palo Alto Networks’ Unit 42 have detailed a vast and evolving phishing campaign known as Smishing Triad, which leverages text messages to defraud individuals. This operation is significantly larger and more complex than previously understood, involving thousands of malicious actors and dozens of high-level organizers operating in China.…
The future of the Common Vulnerability and Exposures (CVE) program, a critical global system for identifying and cataloging software flaws, remains uncertain following a near-shutdown and ongoing funding challenges. The program narrowly averted a complete halt on April 16 with an eleventh-hour contract extension, but concerns persist about its long-term…