ISC Stormcast For Monday, June 22nd, 2026 https://isc.sans.edu/podcastdetail/9980, (Mon, Jun 22nd)
22/06/2026 02:00(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
HTB: NanoCorp
20/06/2026 13:45NanoCorp is a Windows Active Directory machine built around a careers portal that accepts uploaded application archives. Iâll craft a malicious archive that leaks a service accountâs authentication to my host when an automated job extracts it,...
Friday Squid Blogging: Victims of Unregulated Squid Fishing
19/06/2026 21:03Dolphins, sharks, turtles, and human workers are all victims of unregulated squid fishing fleets. Another news article. As usual, you can also use this squid post to talk about the security stories in the news that I havenât covered. Blog...
Stressors, AI Forcing Changes to Cybersecurity Teams
19/06/2026 13:00As threats proliferate and AI complicates cybersecurity, CISOs say the job is getting harder, but more companies still want cybersecurity expertise, if even on a part-time basis.
Anthropicâs Fable and the State of AI
19/06/2026 11:03On June 9th, Anthropic released its Fable generative AI model. Three days later, the US government classified it as a dangerous munition, and used its export-control authority to prohibit any foreign nationals from accessing it. Unable to...
I detected an interesting phishing email this morning. It targets a major Belgian bank: The phishing in itself is a classic one, not relevant but the malicious link is interesting: hxxp://[::ffff:5511:74be]/kWC5PHA1 The technique used by the...
Novo Nordisk Breach Exposes Software Development Pipeline Risk
18/06/2026 20:05A leaked GitHub token underscores what most organizations get wrong: Treating secrets management as a tooling problem rather than an identity problem.
Operation Escaneo Signals Shift in LatAm Threat Landscape
18/06/2026 19:09The threat group's curious business model may combine opportunistic monetization alongside intel collection, without much coordination between the two.
FIFA Bug Exposed World Cup Streams to Remote Takeover
18/06/2026 18:20A hacker could have "Rickrolled" the World Cup â or worse â thanks to FIFA's unenforced Entra access controls.
âPopaâ Botnet Linked to Publicly-Traded Israeli Firm
18/06/2026 17:37For the past four years, a sprawling Android-based botnet called Popa has forced millions of consumer TV boxes to relay Internet traffic linked to advertising fraud, account takeovers, and mass data-scraping efforts. This week, researchers from...
Salesforce Data Thefts Continue via Klue App Compromise
18/06/2026 16:49Klue's Battlecards is now the third integrated application that has been compromised to steal customers' Salesforce data, and victims include Huntress, the cybersecurity vendor.
Get Out of Security Debt by Tackling the Exposure Problem
18/06/2026 13:00Teams digging out of security debt need to answer only two simple questions: Which vulnerabilities in our systems are exposed, and how long should they stay that way?
Embedding Forbidden Text in Spyware to Discourage AI Analysis
18/06/2026 11:04At least one malware developer is adding text about nuclear and biological weapons to their spyware, in an effort to stop automatic AI analysis. Details: The _index.js payload begins with a large JavaScript block comment containing fake system...
EU Gets a Head Start in Developing 6G Network Security
18/06/2026 07:00"Shield-6G" will combine AI threat detection, digital twins, honeypots, and more, to help carriers protect 6G networks against the threats of tomorrow.
ISC Stormcast For Thursday, June 18th, 2026 https://isc.sans.edu/podcastdetail/9978, (Thu, Jun 18th)
18/06/2026 02:00(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
The Behavior of Coordinated SSH Brute Force Attacks over the last three months [Guest Diary], (Wed, Jun 17th)
18/06/2026 01:49[This is a Guest Diary by Adam Nason, an ISC intern as part of the SANS.edu BACS program] Brute force SSH attacks are an ever-present threat on the internet today. We examine probing behavior over the last three months to identify coordinated and...
Black Box Probing: a Security Analysis of Xiaomi's MJA1 Secure Chip
17/06/2026 22:00Discovery of MJA1 secure chip When navigating on Xiaomi's online store to find a new R&D target, we ended up on a description of the MJA1 secure chip, available on their recent cameras. This chip claims to provide hardware-level protection for...
INC Ransomware Thrives by Mastering the Basics
17/06/2026 19:46And one of those basics is focusing on sectors where a ransomware disruption creates immediate pressure to pay up, like with healthcare.
The browser blind spot: Why your security tool may not be blocking what you think it is [Guest Diary], (Wed, Jun 17th)
17/06/2026 16:01[This is a guest diary submitted by Varun Murdula] SUMMARY CASB block policies rely on inspecting TCP traffic. QUIC, the protocol powering HTTP/3, runs over UDP, a protocol most CASBs cannot inspect. The result: Chrome can reach a destination...
From the Trenches - A Video and Screenshots Compilation
17/06/2026 11:54An image is worth a thousand words.Sample videos:Sample screenshots:
Aucun article de sécurité disponible