Operation Endgame Disrupts SocGholish Servers, Cleans 14,971 WordPress Sites (Fri, 19 Jun 2026)
Dutch law enforcement authorities, along with counterparts from Canada , Germany, and the U.S., have disrupted malicious infrastructure associated with SocGholish and cleaned up nearly 15,000
infected WordPress websites. "With these actions we deprive cybercriminals of access to infected computer systems," Maikel Rollman of the Netherlands National High Tech Crime Unit said. "This
prevents
>> Read more
CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices (Fri, 19 Jun 2026)
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday urged Fortinet customers with FortiGate appliances to take steps to secure against ongoing malicious activity aimed at
thousands of internet-accessible devices. The sweeping campaign, believed to be the work of Russian-speaking threat actors, has been codenamed FortiBleed. The number of compromised devices stands at
>> Read more
From Assistive to Agentic: The AI Shift That's Redefining Threat Management (Fri, 19 Jun 2026)
Introduction The average enterprise security team has 40 or more security tools, giving a lot of visibility into internal telemetry and asset data. But often, these tools are working in siloes,
generating (overlapping) alerts and data. And yet, breach dwell times remain stubbornly long (~43 days), response windows keep closing before teams can act, and analysts burn out triaging noise
instead
>> Read more
Forget Data Leakage: Shadow AI's Real Threat Is Access Control (Fri, 19 Jun 2026)
The first wave of enterprise AI concern was straightforward. It was simply employees pasting sensitive data into public AI tools. Security teams responded with usage policies, domain blocks, and data
loss prevention rules. That response made sense at the time. It doesn't fit the problem anymore. Shadow AI has shifted from a data leakage concern to an access control problem. The threat isn't
>> Read more
Salesforce Disables Klue App Integration After OAuth Token Abuse Exposes Customer Data (Fri, 19 Jun 2026)
Salesforce has revealed that it disabled the Klue Battlecards app integration within its platform in response to a security incident impacting the competitive intelligence company on June 11, 2026.
To that end, organizations will be unable to connect to Salesforce via the app until further notice, the American cloud-based software company noted in an alert published this week. "Salesforce took
>> Read more