A new backdoor deployed as part of a recent DragonForce ransomware attack is using Microsoft Teams relay servers for command-and-control (C&C), according to Broadcom’s Symantec and Carbon Black threat hunter team. The DragonForce group has been active since 2023, operating as a cartel structure and adopting highly advanced techniques in recent months, suggesting organizational maturity...Read More
Ravie LakshmananJun 17, 2026Endpoint Security / Vulnerability Microsoft has formally disclosed that it’s working to release a patch to address a Defender zero-day codenamed RoguePlanet. The vulnerability has now been assigned the CVE identifier CVE-2026-50656 (CVSS score: 7.8), with the tech giant describing it as a privilege escalation flaw. “Microsoft is aware of an elevation...Read More
Anthropic Lacks Emotional Intelligence The stoush between Anthropic and the U.S. government has erupted once again, this time over concerns about how the release of new AI models is being managed. Early last week, Anthropic rolled out two new models, Mythos 5 and Fable 5. By Friday, they’d been pulled. The Wall Street Journal reported...Read More
KUALA LUMPUR, June 20 — The Second Meeting of the Fifth Session of the 15th Parliament will begin on Monday, with several key bills set to take centre stage, including the re-tabling of the Constitution (Amendment) Bill 2026, which seeks to limit the prime minister’s tenure to 10 years. The sitting, which runs until July...Read More
Settlement Marks OCR’s 20th Ransomware Enforcement Action and 14th Enforcement Action in OCR’s Risk Analysis Initiative The U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR) today announced a settlement with Spencer Gifts LLC Flexible Benefits and Welfare Benefit Plans (the Plan), the employer-sponsored group health plan of Spencer Gifts LLC,...Read More
CENTRAL VALLEY, Calif. (KFSN) — A possible major cyberattack is under investigation at Cal Water, one of California’s largest water utilities serving nearly 500,000 customer connections across the state, including many in the Central Valley. The company said it is working “around the clock” after an Iranian-linked group claimed it hacked its systems. Iranian state...Read More
Security researchers at Paradigm Shift have published a working exploit, dubbed usbliter8, that achieves arbitrary code execution inside the SecureROM of Apple’s A12 and A13 chips. That code is burned into the silicon at manufacture. No software update can reach it. Affected devices will carry this flaw for as long as they stay in use. This is not...Read More
INC Ransomware Exfiltrates Data The cybersecurity landscape faces a growing threat from INC ransomware, a highly active Ransomware-as-a-Service (RaaS) group that has claimed over 800 victims globally since its emergence in mid-2023. Known for its aggressive double-extortion tactics, INC primarily targets high-profile organizations in the United States, specifically focusing on the legal, manufacturing, technology, and...Read More
Market intelligence platform Klue has publicly confirmed a recent security incident that allowed threat actors to steal OAuth tokens used to connect to customers’ Salesforce environments, as the new “Icarus” extortion group publicly claims the attack. The disclosure comes after cybersecurity firms Huntress and ReliaQuest detailed how attackers abused compromised Klue Battlecards integrations to steal...Read More
International law enforcement agencies have dealt a significant blow to one of the world’s most persistent cybercrime ecosystems, disrupting nearly 15,000 compromised websites and dismantling critical infrastructure used to distribute the notorious SocGholish malware in a coordinated multinational operation. The action, conducted under the umbrella of Operation Endgame, marks one of the most ambitious efforts...Read More
