SC Staff

Google releases June Android security patches addressing 124 vulnerabilities, including 1 zero-day

• vulnerability-management

Google releases June Android security patches addressing 124 vulnerabilities, including 1 zero-day

SC Staff June 2, 2026

The actively exploited vulnerability, identified as CVE-2025-48595, is a high-severity flaw in the Android Framework that allows...

Read More Read more about Google releases June Android security patches addressing 124 vulnerabilities, including 1 zero-day

SideCopy group targets Afghanistan’s Ministry of Finance with Xeno RAT

• threat-intelligence

SideCopy group targets Afghanistan’s Ministry of Finance with Xeno RAT

SC Staff June 2, 2026

The campaign commences with a spear-phishing email containing a ZIP archive with a malicious LNK file written...

Read More Read more about SideCopy group targets Afghanistan’s Ministry of Finance with Xeno RAT

CISA orders agencies to patch critical Oracle WebLogic Server vulnerability

• patchconfiguration-management

CISA orders agencies to patch critical Oracle WebLogic Server vulnerability

SC Staff June 2, 2026

The vulnerability, CVE-2024-21182, affects Oracle WebLogic Server versions 12.2.1.4.0 and 14.1.1.0.0.

Read More Read more about CISA orders agencies to patch critical Oracle WebLogic Server vulnerability

Sectigo launches AI-powered server for certificate lifecycle management

Sectigo launches AI-powered server for certificate lifecycle management

SC Staff June 2, 2026

The MCP Server for Sectigo Certificate Manager acts as a secure intermediary between AI agents, such as...

Read More Read more about Sectigo launches AI-powered server for certificate lifecycle management

DriveSurge actor uses ClickFix and FakeUpdates to distribute malware via compromised websites

• malware

DriveSurge actor uses ClickFix and FakeUpdates to distribute malware via compromised websites

SC Staff June 2, 2026

The DriveSurge threat actor operates as an initial access broker, utilizing a pay-per-install model to facilitate subsequent...

Read More Read more about DriveSurge actor uses ClickFix and FakeUpdates to distribute malware via compromised websites

JupiterOne launches continuous controls monitoring for security and compliance

JupiterOne launches continuous controls monitoring for security and compliance

SC Staff June 2, 2026

JupiterOne Inc. has launched JupiterOne Continuous Controls Monitoring (CCM), a new product designed to test the effectiveness...

Read More Read more about JupiterOne launches continuous controls monitoring for security and compliance

Spanish police arrest individual in connection with data leak from state organizations

Spanish police arrest individual in connection with data leak from state organizations

SC Staff June 2, 2026

The arrested individual is accused of disseminating data from entities such as the State Attorney General's Office,...

Read More Read more about Spanish police arrest individual in connection with data leak from state organizations

Malware hides in Steam comments to infect WordPress sites

• malware

Malware hides in Steam comments to infect WordPress sites

SC Staff June 1, 2026

The malware campaign, discovered in July 2025, has affected approximately 1,980 WordPress sites.

Read More Read more about Malware hides in Steam comments to infect WordPress sites

AI-powered threats target 2026 election communications

AI-powered threats target 2026 election communications

SC Staff June 1, 2026

The report highlights a significant trend where threat actors are leveraging artificial intelligence (AI) to amplify the...

Read More Read more about AI-powered threats target 2026 election communications

Fingerprint launches AI assistant detection tools

• aiml

Fingerprint launches AI assistant detection tools

SC Staff June 1, 2026

The new AI Assistant Detection product provides real-time visibility into traffic from major AI assistants like ChatGPT,...

Read More Read more about Fingerprint launches AI assistant detection tools