Secure Bulletin - Navigating the cyber sea with knowledge

Latest news

Shai-Hulud Malware Expands to npm Ecosystem, Stealing Cloud and CI/CD Credentials From Developers

Malware

Shai-Hulud Malware Expands to npm Ecosystem, Stealing Cloud and CI/CD Credentials From Developers

26 June 2026 dark6

A credential-stealing malware campaign known as Shai-Hulud has expanded to target developers using the Leo/RStreams npm package ecosystem, harvesting GitHub...

Read more 0

FortiBleed: Over 73,000 Fortinet Firewalls Compromised in Industrial-Scale Cyber Espionage Campaign

Cybercrime

FortiBleed: Over 73,000 Fortinet Firewalls Compromised in Industrial-Scale Cyber Espionage Campaign

26 June 2026 dark6

An industrial-scale cyber espionage campaign dubbed "FortiBleed" has silently compromised over 73,932 unique Fortinet firewall URLs across 194 countries, targeting...

Read more 0

25-Year-Old cURL Vulnerability Patched in Record-Breaking Security Release Fixing 18 CVEs

Vulnerability

25-Year-Old cURL Vulnerability Patched in Record-Breaking Security Release Fixing 18 CVEs

26 June 2026 dark6

A critical authentication bypass flaw in cURL that had existed undetected for over 25 years has been patched in curl...

Read more 0

Microsoft Secure Boot Certificates Expire — Over a Billion PCs and Linux Systems at Risk

Vulnerability

Microsoft Secure Boot Certificates Expire — Over a Billion PCs and Linux Systems at Risk

26 June 2026 dark6

Microsoft's original Secure Boot certificates have begun expiring as of June 24, 2026, affecting over a billion UEFI-capable PCs worldwide....

Read more 0

Operation Endgame Strikes Again: Europol Seizes StealC, Amadey and SocGholish Infrastructure — 326 Servers Down, $47M Frozen

Malware

Operation Endgame Strikes Again: Europol Seizes StealC, Amadey and SocGholish Infrastructure — 326 Servers Down, $47M Frozen

25 June 2026 dark6

Europol's Operation Endgame has dismantled the infrastructure behind StealC, Amadey, and SocGholish malware, seizing 326 servers, freezing USD 47 million...

Read more 0

World Leaks Ransomware Dumps 630 GB of Tata Electronics Data — Confidential Apple and Tesla Files Exposed

Databreach

World Leaks Ransomware Dumps 630 GB of Tata Electronics Data — Confidential Apple and Tesla Files Exposed

25 June 2026 dark6

Ransomware group World Leaks has published 630+ GB of stolen Tata Electronics data including confidential Apple iPhone manufacturing specs and...

Read more 0

State-Sponsored Hackers Exploit Cisco Catalyst SD-WAN Manager Zero-Day to Gain Root Access

Vulnerability

State-Sponsored Hackers Exploit Cisco Catalyst SD-WAN Manager Zero-Day to Gain Root Access

25 June 2026 dark6

A state-sponsored threat actor exploited zero-day CVE-2026-20245 in Cisco Catalyst SD-WAN Manager to gain root access via a malicious CSV...

Read more 0

CISA Flags Actively Exploited Ubiquiti UniFi OS Vulnerabilities — Patch Deadline June 26

Vulnerability

CISA Flags Actively Exploited Ubiquiti UniFi OS Vulnerabilities — Patch Deadline June 26

25 June 2026 dark6

CISA has added three Ubiquiti UniFi OS vulnerabilities to its KEV catalog following confirmed active exploitation. Federal agencies must patch...

Read more 0

LastPass Customer Data Exposed Through Klue Supply Chain Attack — OAuth Tokens Abused to Access Salesforce CRM

Databreach

LastPass Customer Data Exposed Through Klue Supply Chain Attack — OAuth Tokens Abused to Access Salesforce CRM

24 June 2026 dark6

LastPass disclosed a supply chain breach via vendor Klue, where stolen OAuth tokens gave attackers access to customer CRM data...

Read more 0

Eight-Year-Old Samsung KNOX Flaw Exposed Hundreds of Millions of Galaxy Devices to Kernel Attacks

Vulnerability

Eight-Year-Old Samsung KNOX Flaw Exposed Hundreds of Millions of Galaxy Devices to Kernel Attacks

24 June 2026 dark6

A critical use-after-free vulnerability in Samsung's KNOX PROCA subsystem — undetected for 8 years — could allow kernel-level compromise on...

Read more 0

Bajaj Auto Confirms Ransomware Attack — Both Parent Company and Tech Subsidiary Affected

Ransomware

Bajaj Auto Confirms Ransomware Attack — Both Parent Company and Tech Subsidiary Affected

24 June 2026 dark6

Bajaj Auto disclosed a ransomware attack on June 23, 2026, affecting systems at the company and its subsidiary BATL. The...

Read more 0

DifyTap: Critical Flaws in AI Platform Dify Allow Silent Wiretapping of AI Conversations Across 1M+ Apps

Vulnerability

DifyTap: Critical Flaws in AI Platform Dify Allow Silent Wiretapping of AI Conversations Across 1M+ Apps

24 June 2026 dark6

Researchers at Zafran disclosed four vulnerabilities in Dify — including two critical CVSS 9+ flaws — that let attackers silently...

Read more 0