Daily Digest

Miasma Supply Chain Worm Spreads to Microsoft & PyPI; Record Patch Tuesday Fixes 206 Flaws; 'Gentlemen' Ransomware Hits 478 Victims

Miasma Supply Chain Worm Spreads to Microsoft & PyPI; Record Patch Tuesday Fixes 206 Flaws; 'Gentlemen' Ransomware Hits 478 Victims

June 12, 2026
10 articles (7 new, 3 updated)
30 min read

Summary

This week in cybersecurity, the sophisticated 'Miasma' supply chain attack framework was leaked, leading to a new 'Hades' worm variant compromising Microsoft GitHub repositories and the PyPI package index. Microsoft released its largest-ever Patch Tuesday, fixing 206 vulnerabilities, including three zero-days. A new worm-like ransomware strain called 'Gentlemen,' a splinter from the Qilin group, has rapidly compromised 478 organizations by exploiting Fortinet vulnerabilities. Other major incidents include a data breach at pharmaceutical giant Novo Nordisk affecting clinical trial participants and the takedown of a major crypto-laundering service by Europol.

Filter by Category

New Articles (7)

Novo Nordisk Confirms Data Breach, Urges Vigilance from Trial Participants

MEDIUM

Pharmaceutical Giant Novo Nordisk Acknowledges IT Security Breach; Personal Data of Clinical Trial Participants Accessed

Danish pharmaceutical company Novo Nordisk announced on June 11, 2026, that it suffered a cybersecurity incident where attackers gained unauthorized access to internal IT systems. The company confirmed that personal data related to some clinical trial participants was accessed. While Novo Nordisk stated the data was not directly linked to patient names, it did include sensitive information such as sex, year of birth, and biomarkers. The company has taken some systems offline as a precaution and is urging trial participants to be vigilant for any unusual activity.

June 12, 2026
5 min read
Novo NordiskData BreachHealthcarePharmaceuticalClinical Trial +1 more
Novo Nordisk Confirms Data Breach, Urges Vigilance from Trial Participants

Canadian Regulator Warns of Risks from Advanced AI in Cybersecurity

INFORMATIONAL

CIRO Issues Alert on Cybersecurity Risks Posed by Frontier Artificial Intelligence Models

The Canadian Investment Regulatory Organization (CIRO) has issued a cybersecurity alert to its members regarding the dual-use nature of frontier Artificial Intelligence (AI) models. The bulletin, published on June 11, 2026, warns that while advanced AI can enhance cyber defenses, it also significantly increases risk by enabling malicious actors to discover and exploit vulnerabilities at an accelerated pace. CIRO advises financial firms to reassess their cybersecurity frameworks, particularly their vulnerability management and incident response processes, to adapt to this new, faster-paced threat landscape.

June 12, 2026
4 min read
AIArtificial IntelligenceCIROCanadaRegulation +2 more
Canadian Regulator Warns of Risks from Advanced AI in Cybersecurity

DXC and Anthropic Form Alliance to Deploy AI in Enterprise Systems

INFORMATIONAL

DXC Technology and Anthropic Announce Global Partnership to Integrate Claude AI into Mission-Critical Enterprise Systems

IT services giant DXC Technology and AI safety company Anthropic have announced a major global partnership. The multi-year alliance will focus on integrating Anthropic's Claude AI models into the complex, mission-critical systems DXC manages for its enterprise clients in sectors like banking, insurance, and government. A key focus will be cybersecurity, where DXC plans to use Claude as a 'security engineer sub-agent' within its DXC OASIS security platform to enhance cyber resilience in its Security Operations Centers (SOCs). DXC reported that using Claude has already accelerated its own software development by a factor of ten.

June 12, 2026
4 min read
AIDXC TechnologyAnthropicClaudeSecurity Operations +2 more
DXC and Anthropic Form Alliance to Deploy AI in Enterprise Systems

DHS Cyber Modernization Efforts Face Hurdles, GAO Report Finds

INFORMATIONAL

GAO Report: DHS Cybersecurity Modernization Programs Face Cost, Staffing, and Threat Evolution Challenges

A new report from the U.S. Government Accountability Office (GAO) finds that while major cybersecurity programs at the Department of Homeland Security (DHS) are strengthening federal cyber defenses, they face significant hurdles. The June 12, 2026 report highlights challenges related to mounting costs, staffing shortages, and the difficulty of keeping pace with an evolving threat landscape. Key programs like Continuous Diagnostics and Mitigation (CDM) and CyberSentry are advancing, but require sustained investment and adaptation to remain effective against increasingly sophisticated cyber threats targeting federal networks and critical infrastructure.

June 12, 2026
4 min read
DHSGAOCISACybersecurityGovernment +2 more
DHS Cyber Modernization Efforts Face Hurdles, GAO Report Finds

Global Schools Foundation Suffers Major Data Breach, Exposing 33,000 Passports

HIGH

Global Schools Foundation Hit by FulcrumSec; Data Breach Exposes Sensitive Student and Employee Info, Including 33,088 Passport Numbers

The Global Schools Foundation (GSF), an international K-12 education organization, has been impacted by a significant data breach attributed to the threat actor 'FulcrumSec'. The incident, reported on June 11, 2026, resulted in the exposure of highly sensitive personal information of both students and employees. Most alarmingly, the compromised data includes 33,088 passport numbers, creating a severe risk of identity theft and fraud for the thousands of individuals affected across GSF's international network of schools.

June 12, 2026
5 min read
Data BreachGlobal Schools FoundationFulcrumSecEducationPII +1 more
Global Schools Foundation Suffers Major Data Breach, Exposing 33,000 Passports

Team Cymru Expands Asia-Pacific Operations to Meet Threat Intel Demand

INFORMATIONAL

Team Cymru Names Sydney as Regional Hub, Expanding APJ Operations to Meet Rising Demand for Cyber Threat Intelligence

Threat intelligence firm Team Cymru has announced a major expansion of its operations in the Asia-Pacific and Japan (APJ) region, naming Sydney, Australia, as its new regional hub. The move, announced on June 12, 2026, is driven by increasing demand from critical infrastructure, financial services, and government sectors for greater visibility into the external threat landscape. Team Cymru stated that the expansion will help regional organizations defend against well-resourced adversaries by providing proactive insights into attacker infrastructure via its 'Pure Signal' platform.

June 12, 2026
3 min read
Team CymruThreat IntelligenceAPJAustraliaCybersecurity +1 more
Team Cymru Expands Asia-Pacific Operations to Meet Threat Intel Demand

Ontinue Awarded 'Most Innovative XDR Platform' for AI-Driven Security

INFORMATIONAL

Ontinue's ION MXDR Platform Recognized as 'Most Innovative XDR' for its AI-Powered Agentic SOC Model

Ontinue, a provider of Managed Extended Detection and Response (MXDR), has won the 'Most Innovative XDR Platform' award in the 2026 Cybersecurity Stars Awards by The Hacker News. The award, announced on June 12, 2026, recognizes Ontinue's ION platform and its 'Agentic SOC' model. This model is designed for what the company calls the 'Autonomous Threat Era' and combines agentic AI for autonomous investigation with human oversight. The approach aims to counter the increasing speed and scale of AI-driven cyberattacks by automating security operations and accelerating response times.

June 12, 2026
3 min read
OntinueXDRMXDRAISecurity Operations +2 more
Ontinue Awarded 'Most Innovative XDR Platform' for AI-Driven Security

Updated Articles (3)

'The Gentlemen' Ransomware Deploys Self-Propagating Malware in Global RaaS Campaign

HIGH

Microsoft Details 'The Gentlemen' Ransomware, a Sophisticated RaaS with Automated Lateral Movement

Update:

New intelligence indicates 'The Gentlemen' ransomware, tracked as Storm-2697, is a splinter group from the Qilin RaaS operation. The group has now compromised at least 478 victims across 66 countries, primarily by actively exploiting vulnerabilities in Fortinet FortiGate appliances and VPNs, specifically CVE-2025-32433 and CVE-2025-33073. This exploitation serves as the main initial access vector for their worm-like attacks. Targeted sectors include IT services, manufacturing, and finance, with a notable focus on Southeast Asia and Latin America. Organizations are urged to immediately patch all internet-facing Fortinet FortiGate devices to mitigate this threat. Security teams should also monitor web and firewall logs for suspicious requests to `/remote/fgt_lang`.

June 1, 2026
Updated: June 12, 2026
6 min read
RansomwareThe GentlemenStorm-2697RaaSGo +3 more
'The Gentlemen' Ransomware Deploys Self-Propagating Malware in Global RaaS Campaign

Miasma Worm Breaches 73 Microsoft GitHub Repos in AI-Powered Supply Chain Attack

HIGH

Miasma Worm Compromises 73 Microsoft GitHub Repositories in Sophisticated Supply Chain Attack Leveraging AI Coding Tools

Update:

The Miasma supply chain attack framework was leaked on GitHub on June 10, 2026, leading to the rapid emergence of a new 'Hades' variant. This variant has significantly expanded the attack's scope beyond Microsoft GitHub repositories to include 19 packages on the Python Package Index (PyPI) as of June 7, 2026, and potentially hundreds across npm. A novel execution trigger has been identified where the credential-harvesting payload activates simply by opening a compromised project in an AI-assisted IDE. For PyPI, the Hades variant utilizes .pth startup hooks to achieve persistent execution, further increasing the attack's stealth and impact on developer environments.

June 8, 2026
Updated: June 12, 2026
6 min read
MiasmaSupply Chain AttackGitHubMicrosoftTeamPCP +3 more
Miasma Worm Breaches 73 Microsoft GitHub Repos in AI-Powered Supply Chain Attack

Microsoft's Record-Breaking June Patch Tuesday Fixes 206 Flaws, Including 3 Zero-Days

INFORMATIONAL

Microsoft's Record-Breaking June Patch Tuesday Fixes 206 Flaws, Including 3 Zero-Days

Update:

The critical vulnerability count for Microsoft's June 2026 Patch Tuesday has been updated from 32 to 33. New analysis highlights the operational challenges of 'Patching Overload' due to the record 206 fixes, and discusses the 'Industry Trend' of AI-assisted vulnerability discovery. The article also provides revised 'Cyber Observables — Hunting Hints,' including monitoring for high volumes of HTTP/2 SETTINGS frames for CVE-2026-49160 and using `manage-bde -status` to identify systems vulnerable to the BitLocker bypass (CVE-2026-50507). Additionally, a more structured 'Deployment Priority' guide is offered for effective patch management.

June 11, 2026
Updated: June 12, 2026
5 min read
Microsoft's Record-Breaking June Patch Tuesday Fixes 206 Flaws, Including 3 Zero-Days

📢 Share This Publication

Help others stay informed about cybersecurity threats

📅 Daily Edition

Curated and deduplicated every day from dozens of trusted sources — giving you one clean, consolidated view of what matters in cybersecurity.

🔢 Deduplication Applied

Related stories are merged into a single evolving article rather than repeated as separate entries — cutting through noise so you only read what's new.

🔗 Full Articles Linked

Every entry links to its full enriched article — complete with MITRE ATT&CK mappings, extracted IOCs, and actionable detection and mitigation guidance.