ThreatsDay Bulletin: Worm Code Leaked, AI Agent Phished, Claude Action Patch + 28 New Stories

June 11, 2026 at 06:50PM It's been one of those weeks. You expect the usual noise: recycled malware, sloppy attacks, another …

AI Broke Vulnerability Management. That's Why CISOs Are Moving Budget to BAS.

June 11, 2026 at 05:00PM For thirty years, vulnerability management ran on a buffer: the months between when a vulnerability was …

OceanLotus Hits Vietnam Investors With SPECTRALVIPER in FireAnt Attack

June 11, 2026 at 03:15PM The Vietnam-aligned threat actor known as OceanLotus has been attributed to two distinct campaigns that …

GitHub to Disable npm Install Scripts by Default to Stop Supply Chain Attacks

June 11, 2026 at 11:53AM GitHub has announced what it said are "breaking changes" coming to npm version 12, one of whic…

Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows

June 10, 2026 at 10:52AM The anonymous security researcher going by the name Chaotic Eclipse (aka Nightmare-Eclipse) has released…

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS

June 10, 2026 at 10:38AM Cybersecurity researchers have flagged half a dozen vulnerabilities in protobuf.js, a JavaScript and Typ…

Meta to Use Off-Site Business Data for Feed and AI Personalization

June 9, 2026 at 10:33PM Meta on Tuesday announced that it will use information shared by other businesses to personalize users…

Veeam Backup & Replication RCE Flaw Lets Domain Users Run Remote Code

June 9, 2026 at 10:09PM Veeam has released security patches to address a critical flaw in its Backup & Replication software t…

Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer

June 9, 2026 at 02:43PM The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 mal…

One-Character Linux Kernel Flaw Enables Local Root Access, Exploits Now Public

June 9, 2026 at 01:47AM Security researchers have published a detailed, working exploit for a Linux kernel use-after-free that le…

Meta Blocks NSO Group's New WhatsApp Phishing Attack, Files Contempt Order

June 8, 2026 at 10:38PM Meta on Monday said it detected and blocked spear-phishing attempts linked to Israeli spyware vendor NSO …

The Hardest Fork

June 8, 2026 at 05:23PM Mythos is real. I know a big chunk of the industry thinks it's a marketing stunt, and I get why. I ge…