EPISODE · Jun 12, 2026 · 4 MIN
Jun 12, 2026 · #81
from Security Brief Daily · host Security Brief Daily
Episode 81 — 12 Jun 2026 1. CISA orders feds to patch actively exploited Ivanti flaw by Sunday Source: Bleeping Computer The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered government agencies to patch an actively exploited Ivanti Sentry flaw within three days, as mandated by the newly issued Binding Operational Directive (BOD) 26-04. Tracked as CVE-2026-10520 , this... 2. Oracle mitigates PeopleSoft zero-day exploited in data theft attacks Source: Bleeping Computer Oracle is warning about a critical PeopleSoft Suite zero-day vulnerability tracked as CVE-2026-35273 that allows unauthenticated remote code execution, with the flaw actively exploited in ShinyHunter data theft attacks. The flaw is within Oracle PeopleSoft PeopleTools and has... 3. Authorities dismantle 'AudiA6' ransomware crypto-laundering service Source: Bleeping Computer Law enforcement has dismantled the “AudiA6” cryptocurrency service allegedly used by ransomware actors and other cybercriminals to launder more than $380 million. Europol says that the service has been linked to more than 15 distinct international investigations of ransomware... 4. The ‘Miasma’ worm source code briefly leaked on GitHub Source: Bleeping Computer The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain attacks, was briefly open-sourced on GitHub. Miasma appears to be an evolution of the earlier Shai-Hulud worm, which was previously leaked on GitHub and... 5. The Gentlemen Ransomware Claims 478 Victims, Can Spread Like a Worm Source: The Hacker News A new analysis of The Gentlemen operation has revealed that the financially motivated threat group initially operated as an affiliate responsible for conducting double extortion attacks, while leveraging resources from various ransomware-as-a-service (RaaS) schemes like... 6. New GreatXML Exploit Bypasses Windows BitLocker via Recovery Partition XML Files Source: The Hacker News Security researcher Chaotic Eclipse (aka Nightmare-Eclipse and MSNightmare) has released a new Windows BitLocker bypass dubbed GreatXML, a day after they published an exploit for Microsoft Defender. "This was an accidental discovery, it took a total of 4 hours to find this,"... 7. Who Runs the Ransomware Group ‘The Gentlemen?’ Source: Krebs on Security A cybercrime group known as The Gentlemen has emerged as the second most active ransomware gang by victim count, rapidly attracting a talented pool of hackers through an aggressive recruitment strategy that promises affiliates 90 percent of any ransom paid by victims. This... 8. China-Linked JDY Botnet Expands to 1,500+ Devices for Cyber Reconnaissance Source: The Hacker News Cybersecurity researchers have warned of a "resurgence and expansion" of JDY, a covert network associated with China-nexus state-sponsored threat actors. "The JDY botnet comprises over 1,500 SOHO [small office and home office] and IoT devices and operates as a centrally...
What this episode covers
Episode 81 — 12 Jun 2026 1. CISA orders feds to patch actively exploited Ivanti flaw by Sunday Source: Bleeping Computer The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered government agencies to patch an actively exploited Ivanti Sentry flaw within three days, as mandated by the newly issued Binding Operational Directive (BOD) 26-04. Tracked as CVE-2026-10520 , this... 2. Oracle mitigates PeopleSoft zero-day exploited in data theft attacks Source: Bleeping Computer Oracle is warning about a critical PeopleSoft Suite zero-day vulnerability tracked as CVE-2026-35273 that allows unauthenticated remote code execution, with the flaw actively exploited in ShinyHunter data theft attacks. The flaw is within Oracle PeopleSoft PeopleTools and has... 3. Authorities dismantle 'AudiA6' ransomware crypto-laundering service Source: Bleeping Computer Law enforcement has dismantled the “AudiA6” cryptocurrency service allegedly used by ransomware actors and other cybercriminals to launder more than $380 million. Europol says that the service has been linked to more than 15 distinct international investigations of ransomware... 4. The ‘Miasma’ worm source code briefly leaked on GitHub Source: Bleeping Computer The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain attacks, was briefly open-sourced on GitHub. Miasma appears to be an evolution of the earlier Shai-Hulud worm, which was previously leaked on GitHub and... 5. The Gentlemen Ransomware Claims 478 Victims, Can Spread Like a Worm Source: The Hacker News A new analysis of The Gentlemen operation has revealed that the financially motivated threat group initially operated as an affiliate responsible for conducting double extortion attacks, while leveraging resources from various ransomware-as-a-service (RaaS) schemes like... 6. New GreatXML Exploit Bypasses Windows BitLocker via Recovery Partition XML Files Source: The Hacker News Security researcher Chaotic Eclipse (aka Nightmare-Eclipse and MSNightmare) has released a new Windows BitLocker bypass dubbed GreatXML, a day after they published an exploit for Microsoft Defender. "This was an accidental discovery, it took a total of 4 hours to find this,"... 7. Who Runs the Ransomware Group ‘The Gentlemen?’ Source: Krebs on Security A cybercrime group known as The Gentlemen has emerged as the second most active ransomware gang by victim count, rapidly attracting a talented pool of hackers through an aggressive recruitment strategy that promises affiliates 90 percent of any ransom paid by victims. This... 8. China-Linked JDY Botnet Expands to 1,500+ Devices for Cyber Reconnaissance Source: The Hacker News Cybersecurity researchers have warned of a "resurgence and expansion" of JDY, a covert network associated with China-nexus state-sponsored threat actors. "The JDY botnet comprises over 1,500 SOHO [small office and home office] and IoT devices and operates as a centrally...
NOW PLAYING
Jun 12, 2026 · #81
No transcript for this episode yet
Similar Episodes
No similar episodes found.
Similar Podcasts
No similar podcasts found.