Cyber Security Week in Review: June 26, 2026
In brief: Cisco flaws are being actively exploited by hackers, police dismantle SocGholish, StealC and Amedey malware, and more.
Cybersecurity News - Page 1
Hackers used Cisco SD-WAN flaw to create secret root accounts
The high-severity flaw allowed attackers with access to affected devices to run commands as root by uploading a specially crafted file.
Storm-2603 uses outdated SharePoint servers as the entry point to deploy ransomware
The attackers exploited known SharePoint vulnerabilities and conducted reconnaissance for additional access paths.
New Edgecution malware uses Microsoft Edge extension to bypass browser security
The Edgecution extension consists of a Microsoft Edge extension and a Python-based backdoor, which allows system information collection, filesystem access, process creation, and arbitrary code execution.
Operator of Market0Day marketplace arrested and extradited to the US
In a separate case, US authorities have seized a cloud computing account used by subsidiaries of the Cambodia-based Huione Group.
LastPass customer data exposed in Klue supply-chain attack
LastPass said its products, services, infrastructure, and customer password vaults were not affected.
FortiBleed campaign uses custom sniffers to steal credentials from FortiGate devices
The tool abuses FortiOS's built-in packet-sniffing feature to capture network traffic and collect authentication data.
Thailand healthcare sector hit by targeted malware campaign
The campaign uses healthcare-themed spear-phishing emails that contain malicious RAR archives disguised as legitimate documents.
Two men plead guilty over TfL cyberattack that cost £39M
The 2024 cyberattack disrupted TfL services for around three months and affected an estimated 10 million customers.
Showboat malware targeted Middle East telecom firms since 2022
Showboat acts like cyber espionage tool, giving attackers long-term access to infected systems and allowing them to gather information.
Showing elements 1 - 10