Breaking News – Cyber Threats (last 6h)
Generated: 2026-06-09 13:00 PDT
- SAP fixes critical flaws in NetWeaver and Commerce Cloud
BleepingComputer • 2026-06-09 12:36 • www.bleepingcomputer.com
SAP has released fixes for 15 vulnerabilities as part of its June 2026 Security Patch package, including four critical-severity flaws affecting SAP NetWeaver and SAP Commerce Cloud. […]
https://www.bleepingcomputer.com/news/security/sap-fixes-critical-flaws-in-netweaver-and-commerce-cloud/ - Microsoft releases Windows 10 KB5094127 extended security update
BleepingComputer • 2026-06-09 11:35 • www.bleepingcomputer.com
Microsoft has released the Windows 10 KB5094127 extended security update, which fixes the June 2026 Patch Tuesday vulnerabilities and adds new functionality to monitor the rollout of updated Secure Boot certificates that replace those expiring this month. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-releases-windows-10-kb5094127-extended-security-update/ - Microsoft June 2026 Patch Tuesday fixes 3 zero-day, 200 flaws
BleepingComputer • 2026-06-09 10:57 • www.bleepingcomputer.com
Today is Microsoft’s June 2026 Patch Tuesday, with security updates for 200 flaws and three publicly disclosed zero-day vulnerabilities. […]
https://www.bleepingcomputer.com/news/microsoft/microsoft-june-2026-patch-tuesday-fixes-3-zero-day-200-flaws/ - Microsoft June 2026 Patch Tuesday, (Tue, Jun 9th)
SANS ISC Diary (full) • 2026-06-09 10:34 • isc.sans.eduMicrosoft today released patches for 204 vulnerabilities. 38 of these vulnerabilities are considered critical, and three have been disclosed before today. Six of the vulnerabilities affect Microsoft cloud solutions and do not require any user action. In addition, Microsoft incorporated 360 different vulnerabilities affecting Chromium into its Edge browser.
- Windows 11 KB5094126 & KB5093998 cumulative updates released
BleepingComputer • 2026-06-09 10:32 • www.bleepingcomputer.com
Microsoft has released Windows 11 KB5094126 and KB5093998 cumulative updates for versions 25H2/24H2 and 23H2 to fix security vulnerabilities, bugs, and add new features. […]
https://www.bleepingcomputer.com/news/microsoft/windows-11-kb5094126-and-kb5093998-cumulative-updates-released/ - Meta to Use Off-Site Business Data for Feed and AI Personalization
The Hacker News • 2026-06-09 10:03 • thehackernews.com
Meta on Tuesday announced that it will use information shared by other businesses to personalize users’ feed and responses from its artificial intelligence (AI) chatbot, expanding its scope beyond targeted ads.“Businesses often share information about people’s activity on their sites with us to make ads more relevant,” Meta said in a statement.
“We already use this data – like games you play
https://thehackernews.com/2026/06/meta-to-use-off-site-business-data-for.html - Veeam Backup & Replication RCE Flaw Lets Domain Users Run Remote Code
The Hacker News • 2026-06-09 09:39 • thehackernews.com
Veeam has released security patches to address a critical flaw in its Backup & Replication software that could result in remote code execution.Tracked as CVE-2026-44963, the vulnerability carries a CVSS score of 9.4 out of a maximum of 10.0.
“A vulnerability allowing remote code execution (RCE) on the Backup Server by an authenticated domain user,” Veeam said in a Tuesday advisory.
It
https://thehackernews.com/2026/06/veeam-backup-replication-rce-flaw-lets.html - Microsoft Restores Some GitHub Repos, Keeps Others Offline as Miasma Probe Continues
The Hacker News • 2026-06-09 09:34 • thehackernews.com
Microsoft on Monday confirmed that it temporarily removed some GitHub repositories in response to a recent security incident that led to 73 of its open-source projects being compromised to inject an information stealer into the code.“Our priority is to protect customers and the broader ecosystem,” a Microsoft spokesperson told The Hacker News via email. “We temporarily removed some
https://thehackernews.com/2026/06/microsoft-restores-some-github-repos.html - XBOW tests Anthropic's Mythos Preview for offensive security
BleepingComputer • 2026-06-09 09:16 • www.bleepingcomputer.com
Anthropic’s Mythos Preview was highly effective at finding vulnerability candidates, especially when analyzing source code. XBOW explores how the model performed across exploit discovery, reverse engineering, and live-site validation. […]
https://www.bleepingcomputer.com/news/security/xbow-tests-anthropics-mythos-preview-for-offensive-security/ - GitHub disables Microsoft repos pushing password-stealing malware
BleepingComputer • 2026-06-09 08:42 • www.bleepingcomputer.com
Microsoft removed 73 repositories across its Azure, microsoft, Azure-Samples, and MicrosoftDocs organizations on GitHub, disrupting continuous integration pipelines. […]
https://www.bleepingcomputer.com/news/security/github-disables-microsoft-repos-pushing-password-stealing-malware/ - GPS As a Key Distribution Platform
Schneier on Security • 2026-06-09 08:06 • www.schneier.comThis is interesting:
The U.S. military has likely been quietly broadcasting codes for its global encryption network using public GPS for nearly 20 years, turning each satellite into a hidden “numbers station,” according to Steven Murdoch…
That means every device that uses GPS has been receiving hidden government information for years, and nobody outside the military knew it until now.
[…]
Murdoch discove…
https://www.schneier.com/blog/archives/2026/06/gps-as-a-key-distribution-platform.html - New Veeam vulnerability exposes backup servers to RCE attacks
BleepingComputer • 2026-06-09 07:27 • www.bleepingcomputer.com
Veeam has released security updates to patch a critical Backup & Replication security flaw that can be exploited to gain remote code execution (RCE) on domain-joined backup servers. […]
https://www.bleepingcomputer.com/news/security/new-veeam-vulnerability-exposes-backup-servers-to-rce-attacks/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
