The cybersecurity landscape remains highly active with significant updates and new threats emerging. Microsoft's June Patch Tuesday addressed over 200 vulnerabilities, including three zero-days, with a critical RCE in the Windows DHCP Client (CVE-2026-44815) highlighted for its potential to be triggered by rogue DHCP servers. The Five Eyes intelligence alliance's warnings about AI-powered cyberattacks have been validated by a successful, albeit thwarted, AI-enhanced attack on the UAE's financial sector, demonstrating attackers' use of AI for advanced phishing and malware. Supply chain risks are amplified by the FBI's alert on "Industrialized Ransomware" from VECT and TeamPCP, impacting over 1,000 cloud environments and compromising developer tools like the Telnyx Python SDK. Medtronic's data breach, affecting 3.8 million individuals, has been further detailed with new detection observables and MITRE ATT&CK mappings.
New threats include two critical, zero-click RCE vulnerabilities in the Cursor AI code editor (CVE-2026-50548, CVE-2026-50549), dubbed "DuneSlide," allowing full control of developer machines. Millions of IoT and embedded devices are at risk from unpatched flaws in the FatFs library (CVE-2026-6682 to -6688), with the library's developer unresponsive. A new APT group, "Armored Likho," is targeting energy and government sectors with its "BusySnake Stealer" malware. The source code for the SCADA hacking tool 'TRK25' has been leaked, lowering the barrier for ICS attacks. Ransomware activity remains high, with INC, ANUBIS, Qilin, and Bashe groups claiming responsibility for numerous global breaches. North Korea-aligned hackers are escalating their 'PolinRider' supply chain attack, publishing numerous malicious packages and extensions to compromise developers and steal secrets. Finally, an EU lawmaker was reportedly hacked with Pegasus spyware while serving on a committee investigating its abuse.
Help others stay informed about cybersecurity threats
Curated and deduplicated every day from dozens of trusted sources — giving you one clean, consolidated view of what matters in cybersecurity.
Related stories are merged into a single evolving article rather than repeated as separate entries — cutting through noise so you only read what's new.
Every entry links to its full enriched article — complete with MITRE ATT&CK mappings, extracted IOCs, and actionable detection and mitigation guidance.