Breaking News – Cyber Threats (last 6h)
Generated: 2026-06-19 17:00 PDT
- Klue OAuth breach victim list grows as Icarus hackers claim attack
BleepingComputer • 2026-06-19 15:31 • www.bleepingcomputer.com
Market intelligence platform Klue has publicly confirmed a recent security incident that allowed threat actors to steal OAuth tokens used to connect to customers’ Salesforce environments, as the new “Icarus” extortion group publicly claims the attack. […]
https://www.bleepingcomputer.com/news/security/klue-oauth-breach-victim-list-grows-as-icarus-hackers-claim-attack/ - Friday Squid Blogging: Victims of Unregulated Squid Fishing
Schneier on Security • 2026-06-19 14:03 • www.schneier.comDolphins, sharks, turtles, and human workers are all victims of unregulated squid fishing fleets.
Another news article.
As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered.
- Hackers exploit info disclosure bug in Gravity SMTP WordPress plugin
BleepingComputer • 2026-06-19 13:25 • www.bleepingcomputer.com
Threat actors are exploiting an unauthenticated information disclosure vulnerability in the WordPress plugin Gravity SMTP, active on 100,000 sites. […]
https://www.bleepingcomputer.com/news/security/hackers-exploit-info-disclosure-bug-in-gravity-smtp-wordpress-plugin/ - Unpatchable 'usbliter8' Exploit Breaks Apple A12 and A13 SecureROM Boot Chain
The Hacker News • 2026-06-19 11:37 • thehackernews.com
Security researchers at Paradigm Shift have published a working exploit, dubbed usbliter8, that achieves arbitrary code execution inside the SecureROM of Apple’s A12 and A13 chips.That code is burned into the silicon at manufacture. No software update can reach it. Affected devices will carry this flaw for as long as they stay in use.
This is not a remote attack. It requires
https://thehackernews.com/2026/06/unpatchable-usbliter8-exploit-breaks.html - The Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security Processes
The Hacker News • 2026-06-19 11:33 • thehackernews.com
The Gentlemen ransomware-as-a-service (RaaS) operation is actively developing and maintaining a suite of endpoint detection and response (EDR) killers that it hands out to affiliates for impairing system defenses before deploying the encryptor.This mature portfolio of EDR-terminating tools is centered around a framework that’s known as GentleKiller.
“They also incorporate third-party or
https://thehackernews.com/2026/06/the-gentlemen-raas-uses-gentlekiller.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
