IT Security News Daily Summary 2026-06-17

173 posts were published in the last hour

• 21:6 : How Akamai Defended an Indian Bank Against Record-Breaking DDoS Attacks
• 21:6 : Roblox developers are losing entire games to malware attacks
• 20:34 : Beyond the benchmark: Advancing security at AI speed
• 20:5 : OpenAPI, ORM, SVG, and Lottie
• 20:4 : Google Adds New Android Controls for WhatsApp Backups, Password Transfers
• 20:4 : Ozempic Maker Novo Nordisk Confirms Security Incident After $25M Hacker Demand
• 20:4 : 105K Chrome Installs Linked to Adware and Fake Google Traffic
• 20:4 : Sophos XG vs Fortinet Fortigate: Firewall Comparison for 2026
• 19:9 : The Real-Time Revolution: Why Blockchain Needs Data Stream Processing
• 19:9 : Ransomware Gangs Splinter as Cyber Threat Becomes More Volatile
• 19:9 : Why Privacy-Conscious Users Should Think Twice Before Storing Sensitive Files on Google Drive
• 19:9 : ​​Forrester names Microsoft a Leader in the 2026 Extended Detection and Response Platforms Wave™ report
• 19:9 : Microsoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in Development
• 19:9 : Crypto Clipper Campaign Abuses Fake Reviews, AI Narrators, and VirusTotal Comments
• 19:5 : IT Security News Hourly Summary 2026-06-17 21h : 2 posts
• 18:34 : Cybercriminals allegedly hacked tens of thousands of Fortinet firewalls used by major companies all over the world
• 18:34 : AI is accelerating cyberattacks—here’s how to stay ahead
• 18:4 : Microsegmentation: Your Digital First Responder to LLM Threats
• 18:4 : Hackers Abuse Cloud Logging Services to Evade Detection and Defender’s Visibility
• 18:4 : GitBait Phishing Campaign Abuses GitHub Pages to Attack Financial Institutions
• 18:4 : Google Cloud Vertex AI Allows Attacker to Hijack Victim’s Model and Poison it
• 17:32 : Attackers Actively Exploiting Sensitive Information Exposure Vulnerability in Gravity SMTP Plugin
• 17:32 : Zscaler lays out its vision to secure the AI era at Zenith Live
• 17:32 : Massive password-stealing attack hits 75k Fortinet firewalls
• 17:5 : Intel Brings Next-Gen 18A-P Process Online
• 17:5 : FortiBleed Attack Exposes Fortinet Firewall Credentials in 194 Countries
• 17:4 : Microsoft Defender vs. McAfee: Features, Pricing, Pros & Cons in 2026
• 17:4 : Fortinet vs Palo Alto NGFWs: Comparison Guide for 2026
• 17:4 : Junior Hacker Used Tailscale and OpenSSH to Keep Access After His C2 Went Offline
• 17:4 : Major critical infrastructure disruptions are inevitable, acting CISA chief says
• 16:34 : DragonForce Hid Inside Microsoft Teams and Nobody Noticed for Two Months
• 16:34 : Hackers Use Fake Software Update Prompts to Steal Passwords and Crypto Wallet Data From macOS Users
• 16:9 : The browser blind spot: Why your security tool may not be blocking what you think it is [Guest Diary], (Wed, Jun 17th)
• 16:9 : Rokarolla Android malware can take over your phone and steal banking logins
• 16:9 : Low-skilled attacker used Claude, Codex to breach 14 companies
• 16:9 : Introducing AWS Continuum: Security at machine speed
• 16:9 : California water utility probes breach claim by Iran-linked actor
• 16:5 : IT Security News Hourly Summary 2026-06-17 18h : 13 posts
• 15:34 : Continuous innovation keeps tape relevant
• 15:34 : The OpenClaw security risks every CISO needs to know
• 15:34 : U.S. CISA adds Widget Factory Joomla Content Editor flaw to its Known Exploited Vulnerabilities catalog
• 15:34 : Security Bug in Google Vertex AI Could Allow Model Upload Hijacking
• 15:34 : META Threat Landscape Report Q1 2026: Ransomware, Data Breaches and Hacktivism Rise Across Middle East, Turkey and Africa
• 15:34 : Iranian Crypto Giant Nobitex Added to US Sanctions List Amid Terror Financing Probe
• 15:34 : AI isn’t solving cybersecurity workforce woes
• 15:7 : Keep Your Tech FLAME Alive: Trailblazer Katrina Cole
• 15:7 : Deepfakes Are Lowering the Barrier to Identity Fraud
• 15:7 : Zenith Live 2026: Secure AI Adoption Starts with Understanding How People Work
• 15:6 : Digital sovereignty needs an operating model
• 15:6 : Another healthcare firm attacked days after Novo Nordisk breach
• 15:6 : North Korean Hiring Fraud Runs on AI and US Laptop Farms
• 14:31 : Webinar Today: How Modern Breaches Bypass MFA and Evade Detection
• 14:31 : WitnessAI Agentic Control secures AI agents, tools, and MCP server access
• 14:7 : Cisco adds another SD-WAN box to max-severity bug advisory
• 14:7 : Tigera introduces unified control plane for Kubernetes-based AI agent security
• 14:7 : Serverless Phishing Kit on GitHub Targets Mexican Banks
• 13:34 : From Stars to Upvotes: The Fake Reputation Economy Behind a Crypto Clipboard Hijackers
• 13:34 : Homebrew 6.0 released with new security mechanism, Linux sandbox and more
• 13:34 : Cyber Security Market Insights & Trends Driving The Next Wave Of Protection
• 13:34 : Rokarolla Android trojan targets banking and crypto users, enables device takeover
• 13:33 : Sensitive Enterprise Data Uploads to AI Models Double in a Year
• 13:7 : SpyCloud Report Finds Phishing Attacks Surge as Employee Data Is Exposed at 86% of Fortune 100 Companies
• 13:7 : Modular Phishing Kit Uses GitHub Pages to Steal Payment Card Details and Passwords
• 13:7 : Fortra Access Manager Vulnerability Enables Remote Command Injection Attacks
• 13:7 : CISA Warns of Oracle PeopleSoft 0-Day Vulnerability Exploited in Ransomware Attacks
• 13:7 : Multiple JetBrains IDE Plugins 70,000+ Installs Caught Stealing AI keys
• 13:7 : ErrTraffic MaaS Uses Fake reCAPTCHA and Cloudflare Turnstile Lures to Execute PowerShell Commands
• 13:7 : 24 billion stolen records exposed online. Here’s what to do
• 13:7 : 1Password Acquires Apono in Reported $250M-$300M Deal
• 13:6 : Corelight enhances Open NDR to detect AI-driven threats and unknown assets
• 13:6 : Flip expands platform with digital identity, no-code apps, and AI automation
• 13:5 : IT Security News Hourly Summary 2026-06-17 15h : 18 posts
• 12:35 : Heimdal Survey: Executives Four Times More Confident About AI Risk Than the Teams Managing It
• 12:35 : 152 Chrome Live Wallpaper Extensions Hid Ad Tracking and Fake Search Clicks
• 12:34 : Tenet Security Emerges From Stealth With $6 Million Seed Funding
• 12:34 : Tenable One adds continuous security control validation to improve exposure prioritization
• 12:34 : Legit Security brings agentic AI to AppSec remediation and risk reduction
• 12:34 : ArmorCode helps product manufacturers prepare for EU Cyber Resilience Act requirements
• 12:34 : Adversarial Exposure Validation Turns Security Visibility into Confident Prioritization
• 12:34 : AI Threats and Alert Fatigue Challenge Cybersecurity Teams
• 12:34 : FBI warns of crypto scam couriers collecting cash
• 12:34 : iRhythm discloses patient data breach
• 12:34 : Zero Trust Implementation Challenges and Best Practices
• 12:34 : GAO urges FDIC coordination on crypto oversight
• 12:34 : Warner warns of CISA cuts and staffing gaps
• 12:7 : ClickFix Attack Deploys Potemkin Loader, RMMProject RAT, and EtherRAT Across 11 Hosts
• 12:7 : Superconductivity breakthrough could unlock ultra-efficient electronics
• 12:7 : Kodak Confirms Data Breach Following ShinyHunters’ Claim of Stolen Customer Records
• 12:7 : Rockwell Automation Patches Vulnerabilities in ICS Controllers and Software
• 12:7 : VelocityEHS uses QR codes to speed up incident reporting and risk response
• 11:34 : Sapphire Sleet macOS Malware Abuses curl-to-osascript Execution for Multi-Stage Payload Delivery
• 11:34 : Hackers Target npm Ecosystem by Compromising 140+ Mastra Packages
• 11:34 : Google Cloud Vertex AI Vulnerability Lets Attackers Take Over and Poison AI Models
• 11:34 : AI Red Teaming Makes the Unknowns Known
• 11:34 : New Rokarolla Android Trojan Targets 217 Banking and Crypto Apps
• 11:34 : AI Use by the US Government
• 11:34 : 24 billion stolen records found in giant data dump. Check if you’re affected
• 11:34 : Microsoft working on patch for RoguePlanet Defender zero-day (CVE-2026-50656)
• 11:34 : Anthropic Pushes Back Against US Order Restricting Claude Fable 5, Backed by Cybersecurity Experts
• 11:5 : ESET MDR vs Sophos MDR: Compared Time to discover and respond to a threat
• 11:5 : Attackers Exploit Cloud Logging Platforms to Hide Malicious Activity
• 11:5 : Hackers Compromised 140+ Mastra npm Packages to Deploy Password-Stealing Malware
• 11:5 : U.S. Commerce Dept Imposes Export Controls on Anthropic’s Claude Mythos 5 and Fable 5
• 11:5 : Helpdesk scammers are making house calls to make their lies feel more real
• 11:5 : Microsoft Teams Relay Servers Abused in DragonForce Ransomware Attack
• 11:4 : What’s new in Android 17? Anti-theft tools, scam detection, and parental controls
• 11:4 : The Top 10 Attack Surface Exposures in 2026
• 10:34 : Malwarebytes earns AV-TEST Top Product award, aces other third-party tests
• 10:7 : How CVE-2026-20253 Turns Splunk’s PostgreSQL Sidecar Into an Open Door
• 10:6 : Nmap for Beginners: Understanding Scans Before You Run Them
• 10:6 : Microsoft Working on Patch for ‘RoguePlanet’ Zero-Day
• 10:6 : The Chainguard Athena coalition already shipped 2,000 patches across 500 open source projects
• 10:6 : Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chats
• 10:6 : EU Security Experts to Support Ukrainian Organizations in Case of Cyber-Attacks
• 10:5 : IT Security News Hourly Summary 2026-06-17 12h : 6 posts
• 9:32 : Intel Brings New 18A-P Process Online
• 9:32 : SprySOCKS Windows Backdoor Uses Kernel Driver to Hide Processes, Files, and Network Traffic
• 9:32 : FulcrumSec Targets Novo Nordisk, Leaks Clinical and Research Data
• 9:31 : EdTech Faces a Cybersecurity Crisis: Data Breaches Surge
• 9:31 : Oracle’s Second Monthly Security Updates Deliver 245 Patches
• 9:31 : Fifteen JetBrains Marketplace Plugins Found Stealing API Keys
• 9:4 : Security awareness training that works: How companies truly motivate employees
• 9:4 : Apple is bringing Hide My Email and Sign in with Apple under one domain
• 9:4 : Ukraine can now tap EU cyber support during major attacks
• 9:4 : Staffing Is Top SOC Challenge Even as AI Proliferates, Says SANS
• 8:34 : SpaceX To Buy Cursor In $60bn Deal
• 8:34 : 15 Malicious JetBrains Plugins Caught Stealing DeepSeek, OpenAI API Keys
• 8:34 : China-Linked FishMonger Ports SprySOCKS to Windows With Kernel-Level Stealth and UEFI Bootkit Hints
• 8:34 : Chrome and Firefox Updated to Patch Critical, High-Severity Vulnerabilities
• 8:7 : Ofcom Warns Over Enforcement Of Youth Social Media Ban
• 8:7 : Hacking Group Claims Credit For Novo Nordisk Breach
• 8:7 : Steam Workshop Malware Campaign Uses Wallpaper Engine to Steal Accounts and Infect Gamers
• 8:6 : 7-Year-Old OpenBSD Security Flaw Exposes Systems to Full PAP Authentication Bypass
• 8:6 : AIRecon: AI-Powered Penetration Testing Tool with Kali Linux Sandbox
• 8:6 : Fortinet FortiSOC unifies SIEM, SOAR, threat intelligence, and AI in one platform
• 8:6 : 144 Mastra npm Packages Compromised via Hijacked Contributor Account
• 7:32 : Snap Debuts $2,195 Augmented Reality Glasses
• 7:32 : CISA Issues Alert on Oracle PeopleSoft Vulnerability Exploited by Ransomware Groups
• 7:32 : Joomla, LiteSpeed Vulnerabilities Exploited in Attacks
• 7:32 : Athena coalition, Estonia’s quarantine, Arch hit with malware
• 7:5 : IT Security News Hourly Summary 2026-06-17 09h : 12 posts
• 7:2 : China AI Tops US In Survey, But Fails On Trust
• 7:2 : Hackers Inject Malicious JavaScript Into WordPress Sites to Deploy ErrTraffic ClickFix Lures
• 7:2 : Using Real-Time Network Monitoring to Spot Suspicious Application Behavior on macOS
• 7:2 : Hackers Using Claude and OpenAI’s Codex for Exploitation, and Data Exfiltration Activities
• 7:2 : 3 Recently Patched Fortinet FortiSandbox Vulnerabilities in Hacker Crosshairs
• 7:2 : The SOC’s visibility gap comes down to staffing
• 6:34 : CISA Warns of Actively Exploited Joomla JCE Flaw Allowing PHP Code Execution
• 6:6 : China-Linked Hackers Stole Data For More Than A Year
• 6:6 : Mobile Firms Refused Permission For 20m Keighley Phone Mast
• 6:6 : JetBrains Plugin Security Alert: 70,000+ Installs Linked to AI Key Theft
• 6:6 : Rokarolla Malware Abuses Android Accessibility Services to Steal Banking Credentials
• 6:6 : Microsoft AntiSSRF open-source library helps block server-side request forgery
• 5:34 : Critical Chrome Flaws Let Attackers Execute Arbitrary Code – Update Immediately
• 5:34 : Malware Uses Deno Permission Flags to Run Commands and Proxy Internal Network Traffic
• 5:34 : Fortra Access Manager Security Flaw Exposes Systems to Command Injection
• 5:34 : NVIDIA NeMo Security Flaw Exposes Systems to Command Injection Attacks
• 5:34 : FishMonger’s arsenal upgraded: SprySOCKS for Windows
• 5:33 : Product showcase: From phishing texts to risky Wi-Fi, Norton 360 Deluxe watches the gaps
• 5:6 : Critical LiteLLM Flaw Allows Authentication Bypass via Host Header Injection
• 5:6 : Navigating SEC, NIS2, and DORA incident disclosure timelines under pressure
• 4:31 : UNC3753 Uses Screen-Sharing Sessions and RMM Tools to Exfiltrate Sensitive Legal Data
• 4:31 : The checklist problem behind critical infrastructure cyber safety
• 4:31 : Scam Losses Surge – Cybersecurity Today
• 2:31 : Cyberattack sees crops kept in the ground
• 2:9 : ISC Stormcast For Wednesday, June 17th, 2026 https://isc.sans.edu/podcastdetail/9976, (Wed, Jun 17th)
• 2:9 : Ghostwriter Hackers Abuse Gmail Admin-Themed Emails to Steal Credentials and 2FA Codes
• 2:9 : ClickFix Campaign Uses EtherHiding and GULoader to Infect Windows Users via Fake CAPTCHA
• 2:8 : New OnionDrop Loader Campaign Uses gainmsg C2 to Deliver LegionLoader Payloads
• 22:34 : Infinite Campus: Salesforce Breach Exposed 137,000 Staff Records
• 22:34 : Apple plans to change its Hide My Email privacy feature that could make it less effective
• 22:5 : IT Security News Hourly Summary 2026-06-17 00h : 1 posts
• 21:55 : IT Security News Daily Summary 2026-06-16