Top Security Breaches 2026-06-30

Auto-generated 2026-06-30T09:00:34.917594+00:00 (UTC)

1. Nissan discloses employee data breach linked to Oracle zero-day attacks

   Source: BleepingComputer | Published: 2026-06-29T20:40:44+00:00 | Score: 14.563
   

   Nissan is warning that it suffered a data breach affecting current and former employees after threat actors exploited an Oracle PeopleSoft vulnerability in data theft attacks previously linked to the ShinyHunters extortion group. […]

   Original: https://www.bleepingcomputer.com/news/security/nissan-discloses-employee-data-breach-linked-to-oracle-zero-day-attacks/

2. NAIC says public data stolen in ShinyHunters’ PeopleSoft breach

   Source: BleepingComputer | Published: 2026-06-29T20:30:28+00:00 | Score: 14.561
   

   The National Association of Insurance Commissioners (NAIC) says the ShinyHunters extortion group stole only publicly available data, outdated logs, and configuration files after breaching its systems by exploiting a zero-day vulnerability in an Oracle PeopleSoft server. […]

   Original: https://www.bleepingcomputer.com/news/security/naic-says-public-data-stolen-in-shinyhunters-peoplesoft-breach/

3. Data breach exposes up to 14.2 million email logins at six ISPs

   Source: BleepingComputer | Published: 2026-06-28T14:13:46+00:00 | Score: 14.225
   

   Japanese telecommunications operator KDDI Corporation disclosed a data breach where threat actors gained access to one of its email systems used by five other internet service providers (ISPs) in the country. […]

   Original: https://www.bleepingcomputer.com/news/security/data-breach-exposes-up-to-142-million-email-logins-at-six-isps/

4. EY sacks graduate employee after he allegedly accessed Australian PM’s bank account

   Source: World news | The Guardian | Published: 2026-06-30T07:39:57+00:00 | Score: 13.786
   

   Two men – including one who worked for EY – appear in court after being charged over accessing restricted data Get our breaking news email , free app or daily news podcast An employee at one of Australia’s big four accounting firms has been sacked after he and another man allegedly accessed the prime minister Anthony Albanese’s personal banking account. The men, aged 21 and 25, faced court on Tuesday over the breach, which Australian federal police alleged occurred when the EY graduate was on secondment at the Commonwealth Bank. Continue reading…

   Original: https://www.theguardian.com/australia-news/2026/jun/30/ernst-and-young-ey-graduate-employee-allegedly-accessed-australian-prime-minister-albanese-bank-account-sacked-ntwnfb

5. Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government Attacks

   Source: The Hacker News | Published: 2026-06-29T15:03:40+00:00 | Score: 12.316
   

   The China-aligned espionage group Mustang Panda is running two campaigns against the Indian government and hydropower targets, deploying new malware and turning a legitimate cloud service into its command channel.

   Acronis Threat Research Unit found active compromises inside Indian government networks, including machines used by senior administrative staff, and worked with

   Original: https://thehackernews.com/2026/06/mustang-panda-uses-zoho-workdrive-as.html

6. Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw

   Source: The Hacker News | Published: 2026-06-29T07:06:34+00:00 | Score: 12.216
   

   A public proof-of-concept is now out for CVE-2026-55200, a critical flaw in libssh2 that lets a malicious or compromised SSH server trigger memory corruption on a connecting client, with possible code execution. No credentials, no user interaction. The bug affects every release up to and including 1.11.1 and carries a CVSS 4.0 score of 9.2.

   libssh2 is a client-side SSH library, not a server.

   Original: https://thehackernews.com/2026/06/public-poc-released-for-critical.html

7. Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer

   Source: The Hacker News | Published: 2026-06-29T05:36:06+00:00 | Score: 12.197
   

   Cybersecurity researchers have uncovered two hijacked npm packages and a cluster of Go packages that are designed to deploy a Python-based information stealer on compromised Windows, Linux, and macOS hosts.

   “This attack avoids the most common npm execution paths through lifecycle scripts, perhaps in an attempt to remain ‘compatible’ with npm v12’s security hardenings,” JFrog said in a

   Original: https://thehackernews.com/2026/06/hijacked-npm-and-go-packages-use-vs.html

8. Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered

   Source: The Hacker News | Published: 2026-06-24T15:59:50+00:00 | Score: 12.087
   

   A coordinated law enforcement operation, in partnership with private sector companies, including Bitdefender, Bitsight, ESET, and Microsoft, has resulted in the takedown of criminal infrastructure powering Amadey and StealC.

   “The main common goal was to disrupt the ‘assembly lines’ cybercriminals use to launch ransomware, financial fraud, and attacks on critical infrastructure,” Europol said in

   Original: https://thehackernews.com/2026/06/amadey-and-stealc-malware-network.html

End of report.