ISC Stormcast For Monday, June 29th, 2026 https://isc.sans.edu/podcastdetail/9986, (Mon, Jun 29th)

A Major DNS Spoofing Campaign is Underway, Affecting Millions of Users Worldwide A massive and sophisticated DNS spoofing campaign has been detected by security researchers at SANS ISC, targeting millions of internet users worldwide. The attackers are exploiting a well-known vulnerability in the Domain Name System (DNS) protocol to redirect victims to malicious websites, spreading … Read more

Data breach exposes up to 14.2 million email logins at six ISPs

A massive data breach has exposed up to 14.2 million email logins at six Japanese internet service providers (ISPs), leaving customers vulnerable to account hijacks and other forms of cyber attacks. The incident, which was disclosed by KDDI Corporation on June 17, involves a vulnerability in an unnamed third-party software used by the company’s email … Read more

YARA-X 1.18.0 and 1.19.0 Release, (Sun, Jun 28th)

A New Version of YARA-X Brings Performance Boosts and Bug Fixes to Security Researchers Security researchers have been waiting for an update to the popular malware detection tool YARA-X, and it’s finally here. The latest versions, 1.18.0 and 1.19.0, bring significant improvements and bug fixes that will make a big difference in their daily work. … Read more

Data breach exposes up to 14.2 million email logins at six ISPs

A massive data breach has compromised up to 14.2 million email logins at six internet service providers (ISPs) in Japan, highlighting the ongoing threat of cyber attacks against critical infrastructure and underscoring the importance of robust security measures. The incident, disclosed by Japanese telecommunications operator KDDI Corporation on June 28, involves a breach of one … Read more

Chinese Framework Powers 200,000 Scam Sites

A massive network of over 200,000 scam websites has been uncovered by cybersecurity firm Infoblox, all powered by a Chinese open-source framework called Uni-App. This framework is widely used in China for building legitimate applications and websites, but threat actors have exploited its popularity to create a sprawling ecosystem of investment scams that have already … Read more

Clean GitHub repo tricks AI coding agents into running malware

A sophisticated new attack vector has been uncovered by Mozilla’s Zero Day Investigative Network (0DIN) AI security platform, which exploits vulnerabilities in popular agentic coding tools. The technique allows attackers to plant malware on a developer’s device without raising any red flags with security scanners or human reviewers. The attack relies on three seemingly innocuous … Read more

OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber Safeguards

OpenAI’s latest iteration of its GPT language model, GPT-5.6 Sol, has been made available with restricted access and enhanced cyber safeguards. This breakthrough marks a significant step forward for AI-driven cybersecurity, but also raises concerns about the potential risks associated with advanced AI systems. The development of GPT-5.6 Sol is a testament to the rapid … Read more

Ukraine Says Russian Intelligence Used Fake Support Texts to Steal Messaging Credentials

Ukraine’s intelligence agency has revealed that Russian hackers used a sophisticated tactic to steal messaging credentials from Ukrainian officials, highlighting the growing threat of AI-powered attacks on individuals and organizations worldwide. According to the Ukrainian National Security and Defense Council (NSDC), Russian intelligence operatives sent fake text messages to high-ranking officials in Ukraine, purporting to … Read more

YARA-X 1.18.0 and 1.19.0 Release, (Sun, Jun 28th)

A New Era of Yara Rules Management: Releases 1.18.0 and 1.19.0 Bring Significant Improvements to YARA-X The latest updates to YARA-X, a powerful tool for creating and managing custom malware detection rules, have been released by the development team. YARA-X versions 1.18.0 and 1.19.0 bring a range of enhancements and bug fixes that are set … Read more