Cybersecurity Daily: News & Threats
(00:00:00) 208 CVEs, Qilin Hits Telecom & GentleKiller EDR Bypass (00:00:56) Qilin Claims Q Link Wireless (00:01:37) GentleKiller EDR Bypass Toolkit (00:02:24) Microsoft Teams Abused for C2 (00:02:53) DORA and CIRCIA Tighten Rules (00:03:37) Key Watchpoints This Cycle This episode covers six critical cybersecurity developments from the past 24 hours — from a Windows regression shipping inside Microsoft's own security patches, to ransomware hitting U.S. telecom infrastructure. Microsoft's latest Patch Tuesday addressed 208 vulnerabilities, but the same update introduced a Recycle Bin display bug exposing internal filenames across every supported Windows version — from Windows 10 through Server 2012. No rollback timeline has been issued, leaving enterprise administrators without clear remediation guidance. The Qilin ransomware group publicly claimed responsibility for breaching Q Link Wireless, a major U.S. telecom provider, in a move that signals a deliberate shift toward high-visibility critical infrastructure targets. Details on data exfiltrated and ransom demands remain undisclosed. A May 2026 internal leak exposed GentleKiller, a professionally maintained toolkit that disables over 400 EDR processes by exploiting signed but vulnerable drivers — bypassing kernel-level protections without triggering standard detection logic. The leak has made its operational details publicly available, raising urgent questions about active affiliate campaigns. A ransomware group also abused Microsoft Teams relay infrastructure between June 14–20 to hide command-and-control traffic inside legitimate enterprise application activity — a technique that defeats standard perimeter controls. On the regulatory front, EU financial regulators published their first DORA ICT incident overview, marking a shift from expectation to active enforcement. In the U.S., CISA continued public consultations to finalise the federal cyber incident reporting rule under CIRCIA. This podcast was built using AI technology. A YesWee production. This episode includes AI-generated content.
61 episodes
Comments
0Be the first to comment
Sign up now and become a member of the Cybersecurity Daily: News & Threats community!