📰 DAILY THREAT BRIEFING
Tuesday, June 30, 2026
12 News Items
HN · BleepingComputer · Krebs · Dark Reading · SANS · THN Intel · Unit 42 · Security.com

📰 Cybersecurity News Headlines

Top stories from leading cybersecurity publications as of June 30, 2026.

  1. 'Djinn' Stealer Targets Cloud, AI Credentials
    — Dark Reading

    The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp, targeting credentials linkin…
  2. Vulnerabilities Expose Private Data in Indian Government Systems
    — Dark Reading

    One critical vulnerability, among many discovered by a researcher, could have allowed anyone to walk in and take over a national government …
  3. Nissan discloses employee data breach linked to Oracle zero-day attacks
    — Bleeping Computer

    Nissan is warning that it suffered a data breach affecting current and former employees after threat actors exploited an Oracle PeopleSoft v…
  4. NAIC says public data stolen in ShinyHunters' PeopleSoft breach
    — Bleeping Computer

    The National Association of Insurance Commissioners (NAIC) says the ShinyHunters extortion group stole only publicly available data, outdate…
  5. Can Clothes Make You Invisible to Facial Recognition?
    — Dark Reading

    Does life feel Orwellian sometimes? One researcher has a solution for you: graphic tees that confuse the neural networks in surveillance cam…
  6. Malicious Perplexity Chrome Extension Intercepted Searches and Address Bar Input
    — The Hacker News

    Microsoft has found a malicious Chrome extension that posed as the AI search engine Perplexity and quietly logged what people searched for. …
  7. WhatsApp rolls out usernames to help users hide their phone number
    — Bleeping Computer

    WhatsApp is finally allowing users to reserve usernames, a privacy feature that lets them hide their phone numbers from people not in their …
  8. WhatsApp is Finally Getting Usernames to Help Keep Phone Numbers Private
    — The Hacker News

    WhatsApp on Monday officially announced the start of global reservations of usernames with an aim to protect the privacy of more than three …
  9. Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government Attacks
    — The Hacker News

    The China-aligned espionage group Mustang Panda is running two campaigns against the Indian government and hydropower targets, deploying n…
  10. Adding some Automation to the favicon.ico method of Host Recon, (Mon, Jun 29th)
    — SANS ISC

    I'm in the throes of target host recon for another pentest, and thought I'd share some workflow / auto…
  11. ISC Stormcast For Monday, June 29th, 2026 https://isc.sans.edu/podcastdetail/9986, (Mon, Jun 29th)
    — SANS ISC

    (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
  12. YARA-X 1.18.0 and 1.19.0 Release, (Sun, Jun 28th)
    — SANS ISC

    YARA-X's 1.18.0 release brings 3 improvements and 2 bugfixes.

🪲 NVD — Last 20 Scored Vulnerabilities

Latest scored CVEs from the National Vulnerability Database (7414 in last 30 days).
Critical: 1 · High: 9 · Medium: 10 · Low: 0. View full dashboard →

  1. CVE-2026-8023
    — CVSS 7.5 (HIGH)

    Zephyr's HTTP server (subsys/net/lib/http) provides a static-filesystem resource type (HTTP_RESOURCE_TYPE_STATIC_FS, available when CONFIG_FILE_SYSTEM is enabled) that serves files from a configured root directory. Befor…
  2. CVE-2026-7656
    — CVSS 8.1 (HIGH)

    The IPv6 Neighbor Discovery handlers in subsys/net/ip/ipv6_nbr.c (handle_ra_input, handle_ns_input, handle_na_input) used an incorrect boolean expression that combined the RFC 4861 validity checks with the ICMPv6 code ch…
  3. CVE-2026-10648
    — CVSS 6.2 (MEDIUM)

    mcumgr_serial_process_frag() in subsys/mgmt/mcumgr/transport/src/serial_util.c calls net_buf_reset() on the result of smp_packet_alloc() before checking it for NULL. smp_packet_alloc() uses net_buf_alloc(K_NO_WAIT) again…
  4. CVE-2026-57997
    — CVSS 4.8 (MEDIUM)

    Strapi users-permissions plugin fails to restrict JWT algorithms when plugin::users-permissions.jwt.algorithm is not explicitly configured, allowing acceptance of HS384 and HS512 tokens alongside HS256. Attackers possess…
  5. CVE-2026-34592
    — CVSS 7.7 (HIGH)

    Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.471, Coolify server and project lookups are not scoped to the current team, allowing any authenticat…
  6. CVE-2026-10647
    — CVSS 5.3 (MEDIUM)

    The USB CDC-NCM device class (subsys/usb/device_next/class/usbd_cdc_ncm.c) ignores the return value of usbd_ep_enqueue() in its ethernet transmit callback cdc_ncm_send(). When the enqueue fails, the function still calls …
  7. CVE-2026-41896
    — CVSS 7.5 (HIGH)

    Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.474, the HMAC key is the application's manual_webhook_secret_github field, which is used by Coolify'…
  8. CVE-2026-34597
    — CVSS 8.8 (HIGH)

    Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.470, a critical Authenticated Host Remote Code Execution (RCE) vulnerability was discovered in Cooli…
  9. CVE-2026-34594
    — CVSS 8.8 (HIGH)

    Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.471, an authenticated command injection vulnerability in the Destination Network Management function…
  10. CVE-2026-57919
    — CVSS 7.8 (HIGH)

    PBackupVSS.exe in Matrix42 Empirum before 25.5 and 26.x before 26.2 creates a named pipe (\.pipePBackupVSS) with a DACL that grants GENERIC_READ and GENERIC_WRITE permissions to all authenticated users. A low-privileg…
  11. CVE-2026-57498
    — CVSS 9.6 (CRITICAL)

    Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.474, Coolify's API controllers consistently validate server ownership with Server::whereTeamId($team…
  12. CVE-2026-56018
    — CVSS 7.5 (HIGH)

    JavaScript::Minifier::XS versions before 0.16 for Perl leak memory on every call to minify(), allowing unbounded memory growth.

    In JsMinify (XS.xs) the cleanup frees only the NodeSet structures and never the per-token c…

  13. CVE-2026-56017
    — CVSS 7.5 (HIGH)

    JavaScript::Minifier::XS versions before 0.16 for Perl crash with a NULL pointer dereference when the first meaningful token of the input is a slash.

    The regexp versus division disambiguator in JsTokenizeString (XS.xs) …

  14. CVE-2026-43746
    — CVSS 6.5 (MEDIUM)

    A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unex…
  15. CVE-2026-43745
    — CVSS 6.5 (MEDIUM)

    An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an…
  16. CVE-2026-43743
    — CVSS 4.7 (MEDIUM)

    A race condition was addressed with improved state handling. This issue is fixed in iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. An app may be able to cause unexpected system termination.
  17. CVE-2026-43742
    — CVSS 6.5 (MEDIUM)

    A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unex…
  18. CVE-2026-43740
    — CVSS 6.5 (MEDIUM)

    The issue was addressed with improved memory handling. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may result in the disclosure of pr…
  19. CVE-2026-43734
    — CVSS 6.5 (MEDIUM)

    A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may lead to an unex…
  20. CVE-2026-43732
    — CVSS 6.5 (MEDIUM)

    A path handling issue was addressed with improved validation. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS Tahoe 26.5.2. Processing maliciously crafted web content may disclose sensitive user…

Source: NVD CVE API 2.0


Generated by CryptXNet.ai Threat Intelligence Platform · June 30, 2026 · Sources: The Hacker News, Bleeping Computer, Krebs on Security, Dark Reading, SANS ISC, THN Threat Intel, Unit 42, Security.com