Cybersecurity Daily: News & Threats
(00:00:00) INC Ransomware Hits 830 Victims, FortiBleed & Oracle 245-Patch CPU (00:01:11) Veeam Backup Credential Dumper (00:01:38) RoguePlanet Defender Zero-Day (00:02:20) FortiBleed — 30K Firewalls Compromised (00:03:00) FortiSandbox Active Exploitation (00:03:22) Oracle Patches and Closing Watch Points INC ransomware has rewritten its encryptors in Rust — and the operational implications are significant. With over 830 victims since August 2023 and more than 120 incidents in Q1 2026 alone, INC now ranks fourth among the most prolific ransomware operations globally. The Rust rewrite delivers cross-platform capability and binary hardening that makes reverse engineering substantially harder. Critically, INC's updated credential dumper now bypasses salted DPAPI encryption in newer Veeam backup deployments — eliminating what many defenders considered a last line of recovery. Microsoft has confirmed a fourth zero-day in the Malware Protection Engine attributed to the same researcher, Chaotic Eclipse. CVE-2026-50656 carries a CVSS of 7.8 and enables privilege escalation. A public proof-of-concept is already live, with no patch timeline disclosed — a window of real exposure for every unpatched Windows environment. Fortinet is facing pressure on two fronts simultaneously. The FortiBleed campaign has compromised 30,791 firewalls across 194 countries using credential reuse and SSL-VPN interception, backed by over 1.16 billion password-spray attempts attributed to a Russian-speaking threat actor. Separately, three FortiSandbox vulnerabilities — all CVSS 9.1 — are under active exploitation, with one showing signs of AI-assisted exploit development. Oracle's June Critical Patch Update covers 245 vulnerabilities, with 106 patches for Fusion Middleware alone — 53 of them remotely exploitable without credentials. For security teams, prioritisation is not optional this cycle. All stories are sourced from public disclosures, vendor advisories, and threat intelligence reporting from the past 24 hours. This episode includes AI-generated content.
55 jaksot
Kommentit
0Ole ensimmäinen kommentoija
Rekisteröidy nyt ja liity Cybersecurity Daily: News & Threats-yhteisöön!