Critical Infrastructure SecurityIran-linked group Handala claims to steal Cal Water customer infoSteve ZurierJune 12, 2026Experts say that Handala has a history of overstating its capabilities and in this case the water system was not disrupted.
Cloud SecurityServiceNow says security researchers, not hackers, accessed dataSteve ZurierJune 10, 2026ServiceNow investigates access issue, says no attacker activity found.
Vulnerability ManagementCISA adds Check Point VPN bug to list of exploited vulnerabilitiesSteve ZurierJune 9, 2026CISA warns of an exploited Check Point VPN flaw that lets attackers bypass authentication.
IdentitySilent Ransom Group moves to in-person method if vishing attempt failsSteve ZurierJune 8, 2026Mandiant warns Silent Ransom Group uses vishing and even in-person visits to steal data.
Network SecurityAnother Cisco Catalyst SD-WAN Manager bug actively exploitedSteve ZurierJune 5, 2026Cisco warns of an exploited SD-WAN flaw that can enable remote code execution and network compromise.
Vulnerability Management9.8 Mirasvit bug actively exploited on Magento serversSteve ZurierJune 4, 2026CISA warns of an actively exploited Magento extension flaw that enables remote code execution.
AI/MLTrump executive order on AI calls for voluntary 30-day review periodSteve ZurierJune 3, 2026Trump AI order proposes a 30-day voluntary review of frontier models before public release.
Vulnerability ManagementMost organizations that miss 24-hour patch window report breachesSteve ZurierJune 2, 2026Study points out that AI has shattered the model of patching on a two- to four-week schedule.
Vulnerability ManagementPAN-OS authentication bypass bug added to list of exploited vulnerabilitiesSteve ZurierJune 1, 2026While NIST upgraded the bug to 9.1, experts say teams must focus more on how attackers can exploit this flaw to gain VPN access.
AI/MLAI helps Russian-speaking GreyVibe run five parallel attack chains on Ukrainian targetsSteve ZurierMay 29, 2026Researchers say Russian-speaking group GreyVibe uses AI tools to scale cyberattacks on Ukraine.
