A roundup of 126 items curated from across the security community.
News
- Mastra-AI npm Supply Chain Attack Hits 80+ Packages by Dave Kennedy.
An attacker hijacked npm accounts to inject a phantom dependency into 80+ Mastra-AI packages. The malicious payload arrived via a “dayjs” typosquat that ran a post-install script to download and execute a remote binary.
International law enforcement took down 100 servers and domains, remediating nearly 15,000 websites. SocGholish’s “FakeUpdates” web inject framework has been a persistent ransomware delivery vector since 2018.
CVE-2026-20253, a CVSS 9.8 unauthenticated file write flaw with a public exploit chain leading to RCE, is now confirmed actively exploited. Patch to Splunk 10.0.7 or 10.2.4 immediately.
More this week (7)
- Flock Cameras Are Being Used for Stalking by Bruce Schneier.
- Ethical hacker Could’ve Rickrolled the Entire FIFA World Cup. All he Needed Was his ID https://bobdahacker.com/blog/fifa-hack by Nicolas Krassas.
- RT Mandiant (part of Google Cloud): PRC-nexus actor UNC6508 targeted North American research, exploiting REDCap servers to deploy INFINITERED malware…. by SwitHak ().
- Texas govt data breach exposes over 3 million driver’s licenses https://www.bleepingcomputer.com/news/security/texas-govt-data-breach-exposes-over-3-… by BleepingComputer.
- Nintendo America Employee Data Exposed After Shadowbyt3$ Targets TinyPulse https://hackread.com/nintendo-america-employee-data-shadowbyt3-tinypulse/ by Nicolas Krassas.
- RT International Cyber Digest: ‼ BREAKING: A breach at competitive-intelligence platform Klue let attackers steal OAuth tokens and pull Salesfo… by Nicolas Krassas.
- RT Katie Knowles: What’s an Agent ID compromise look like? This post shows how compromise of a blueprint can lead to compromise of ALL its agents… by Nick Frichette.
Techniques and Write-ups
CVE-2026-40369 turns a minimal 12-byte controlled write into a full browser sandbox escape. The writeup walks through the exploit chain from renderer compromise to arbitrary code execution outside the sandbox.
CVE-2026-10520 and CVE-2026-10523 chain an unauthenticated OS command injection with an authentication bypass in Ivanti Sentry. Together they give remote attackers full system-level code execution without credentials.
CVE-2026-20452 is a heap overflow in MediaTek’s WPS kernel driver. The writeup covers the full journey from initial router recon through command injection to unauthenticated kernel-level code execution.
CVE-2026-45257 exploits in-place AES-GCM decryption in FreeBSD’s kTLS-RX path to write into the page cache and escalate to local root. The bug mirrors Linux’s Dirty Pipe, was introduced around 2020, and shipped in FreeBSD 13.0.
CVE-2026-46316 allows a guest VM to execute commands on the host with kernel privileges. Believed to be the first publicly documented guest-to-host escape exploit targeting KVM on ARM64. Full exploit attached to the oss-security post.
The NTLM leakage primitive in the Windows search: URI handler is identical in mechanism and severity to CVE-2026-33829 in the Snipping Tool. Microsoft closed the report without issuing a CVE or patch.
CVE-2026-47729 leaks internal memory from every version of Squid Proxy in its default configuration. The vulnerability is a Heartbleed analogue, letting remote attackers read arbitrary server memory without authentication.
Three Langflow vulnerabilities chained together: a path traversal (CVE-2026-7524), a lambda eval (CVE-2026-7700), and a CodeParser command injection (CVE-2026-7687). The exploit kit uses symlink-based archive extraction to drop webshells for persistent RCE.
- nginx-quicburst: RCE in Nginx QUIC (CVE-2026-42530) by Kuba Gretzky.
A use-after-free in the QPACK encoder of nginx’s HTTP/3 stack gives remote code execution. Only the third nginx vulnerability since 2014 to receive the project’s “major” severity rating. Upgrade if you run Nginx 1.31 with QUIC enabled.
A researcher used LLM-assisted analysis to discover eight credited local privilege escalation vulnerabilities across Windows kernel drivers, all now with assigned CVEs.
More this week (91)
- RT 7h3h4ckv157: Kernel-Exploit-Dojo Curated archive of 100+ Linux kernel exploitation CTF challenges, organized by bug class, exploitation primit… by X-C3LL.
- SearchLeak: How We Turned M365 Copilot Into a One-Click Data Exfiltration Weapon https://www.varonis.com/blog/searchleak by /r/netsec.
- RT Brian in Pittsburgh: So, we need to figure out what is going on with CVE-2026-41089, the Netlogon vulnerability that Microsoft patched in May and t… by Dave Aitel.
- https://maorsabag.github.io/posts/adaptix-stealthpalace/sleeping-beauty-ii/ by HackerRalf.
- RT Csaba Fitzl: Big changes to user TCC.db in macOS Golden Gate! It seems that it finally got the protection it deserves. It was moved to: /p… by Howard Oakley, Eclectic Light Co.
- HallWatch - User-mode detector that catches indirect syscalls. Traps Hell’s Hall, Tartarus’ Gate, RecycledGate, and VEH syscalls & Many more https://g… by Panos Gkatziroulis.
- RT kl_secservices: Recent TOCTOU vulnerability in PackageKit allows attackers to escalate privileges to root. The vulnerability, Pack2TheRoot (CVE-202… by kmkz.
- RT : https://labs.infoguard.ch/posts/ghost-sender/ “When an organisation uses Exchange Online (or on-premises exchange in hybrid mode) with a thir… by Max.
- RT Gergely Kalman: Here’s the exploit of a new Full TCC bypass @theevilbit and I just found. It’s also the demonstration of a new technique we can’t s… by Csaba Fitzl.
- RT Rishi: CVE-2026-53435, a high severity (CVSS 8.8) deserialization vulnerability in Jenkins is now seeing active exploitation as per @DefusedCy… by Vincent Yiu.
- RT Nightmare Eclipse: I’m back (maybe), new drip (blog), got some interesting stuff that might be worth reading, https://blog.projectnightcrawler.dev/… by sailay(valen).
- "[This] means these vulnerabilities remain present in both Windows 10 and 11 as a “forever-day” – an exploitable vulnerability that the software ve… by Black Hills Information Security.
- Last week Stephan Borosh gave us a live demo on a ClickOnce-based Command-and-Control (C2) framework. ClickOnce Commander is a powerful new tool for p… by Black Hills Information Security.
- RT hackyboiz: [1day-1line] CVE-2026-21241: Use-After-Free LPE Vulnerability Caused by I/O Mini-Completion Packet Lifetime Management Error in Windows … by Souhail Hammou.
- Getting a CVE Without Shipping Slop https://www.credrelay.com/p/getting-a-cve-without-shipping-slop by Nicolas Krassas.
- RT : So you might already have noticed kerberoast output changes since April, the enforcement phase with manual rollback. “The Windows updates rel… by Sean Metcalf.
- RT watchTowr: Noise, hysteria, confusion, and AI slop surround CVE-2026-35273 - we believe this is the first-stage SSRF in the Oracle PeopleSoft RCE c… by SinSinology.
- New entry added to the #LOLBAS Project: Proxy execution via system-native scp.exe. Takes any remote destination, doesn’t actually have to run an … by Wietze.
- RT James : Talk is over and reel is finally public. https://github.com/trustedsec/Reel by Rasta Mouse.
- PrizeBuzz phishing network analysis https://phisheye.com/blog/prizebuzz-phishing-network by /r/netsec.
- 27 Years in the Dark: OpenBSD Fixes Ancient Remote Kernel Auth Bypass https://blog.argus-systems.ai/blog/openbsd-pap-27-year-auth-bypass.html by /r/netsec.
- RT LCFR: a sloppy unreliable exploit for this nice cBPF uaf that doesn’t require bpf (ebpf) privs (cap_bpf/unpriv bpf) tested on centos10. 4.5 -> 7.1 … by Alex Plaskett.
- RT LukeGix: Excited to share this! Zombie COTables: Resurrecting Freed Memory to Escape VirtualBox. This blog post describes the exploitation process … by Alex Plaskett.
- Scripting the disassembler: Local agentic reverse engineering through vbdec’s live COM object model by David Zimmer.
- RT 1ce0ear: Slides for our OffensiveCon talk (by me and @jmartijnb) https://androidoffsec.withgoogle.com/slides/art_imagination_gpu_offensivecon_2026…. by chompie.
- Embedding Forbidden Text in Spyware to Discourage AI Analysis by Bruce Schneier.
- Big news! Accenture is investing $4B to build an industry-transforming cybersecurity platform, and runZero is thrilled to be part of this vision! Accenture intends to acquire a majority stake in Dra.
- So AMD apparently disabled TSME on consumer CPUs through a firmware update and refuses to explain why. WTF is happening here? by Florian Roth.
- RT Google VRP (Google Bug Hunters): Check out Tomas’ post and article on hacking Google using Git integrations. One of these reports even won him Most… by Dave Aitel.
- RT SpecterOps: Kubernetes assessments just got easier. @RonJonArod dropped two new Mythic extensions for helping with initial access on container-cent… by Arun.
- New, from me: ‘Popa’ Botnet Linked to Publicly Traded Israeli Firm “For the past four years, a sprawling Android-based botnet called Popa has forced millions of consumer TV boxes to relay Internet tra.
- RT RWXstoned: Smuggling C2 traffic within Slack’s links previews. A PoC using Mythic. https://rwxstoned.github.io/2026-06-18-Slack-links-preview-for-C… by Panos Gkatziroulis.
- Malicious YAML files that could be executed via WinGET can be detected using the Sysmon config below. The config covers: Process Creation Networ… by Panos Gkatziroulis.
- Since @TwoSevenOneT dropped the EDRChoker article, I’ve noticed some inaccurate detection guidance around the registry key monitoring. Spec… by Panos Gkatziroulis.
- RT theabysslabs: Lost in Truncation. Analysis of a NTOSKRNL Heap Overflow https://theabysslabs.github.io/patch-diffing/exploitation/windowskernel/2026… by kmkz.
- RT Densel: First public macOS kernel memory corruption exploit on Apple M5 Calif Team https://blog.calif.io/p/first-public-ke… by kmkz.
- RT Panos Gkatziroulis : Hopefully, more techniques will be added, but this project is very interesting for Purple Teamers and Defenders https://ii… by Max.
- RT Nathan McNulty: Did you know SSPR for admins is always enabled even if you have SSPR set to None? It also doesn’t honor your authentication methods… by Max.
- RT Mr.Un1k0d3r: We often talk about EDR evasion, but what about honeypot detection. Nothing new here, but a good reminder that detecting honeypots mak… by Max.
- RT Ananay: New checkm8 style BootROM exploit for iPhone XS and iPhone 11 just dropped! It’s hardware level and unpatchable by a software update, whic… by scriptjunkie (Matt).
- RT Dino A. Dai Zovi: This is very, very smart: by thaddeus e. grugq.
- RT Dustin Volz: Great story here by my former colleague @bobmcmillan on built-in backdoors in consumer devices that allow nation-state hackers to crea… by thaddeus e. grugq.
- RT mRr3b00t: Can confirm @Huntio is super cool! I combined this with @defused, @GreyNoiseIO , @shodanhq, @censysio and @ipinfo (i know there’s probabl… by thaddeus e. grugq.
- RT Dr. Dan Lomas: France shuts down clandestine Chinese ‘police stations’ operating on its territory https://www.lemonde.fr/en/france/article/2026/06/… by thaddeus e. grugq.
- Be sure to check out @b0n0b0__ ’s FFmpeg shenanigans in this Kdenlive calc pop :) by Thomas Rinsma.
- Gentlemen ransomware uses multiple EDR killers to disable defenses https://www.bleepingcomputer.com/news/security/gentlemen-ransomware-uses-multiple-e… by BleepingComputer.
- UnCanny - Another new coercion primitive with LPE 0day - machine-account NTLM coercion from a non-admin user via Windows Store InstallService plugin r… by Nicolas Krassas.
- The first unpatchable iPhone exploit in six years targets chips still running Apple’s latest iOS https://www.techspot.com/news/112820-first-unpatchabl… by Nicolas Krassas.
- A Practical Guide to Detection Engineering in CrowdStrike NG-SIEM https://medium.com/@joe88cornell/a-practical-guide-to-detection-engineering-in-crowd… by Nicolas Krassas.
- OpenBSD MPLS kernel stack leaks remotely (CVE-2026-56099) https://pop.argus-systems.ai/advisory/adv-040.html by Nicolas Krassas.
- CryptoBandits Malware Doubles as a Backdoor, Abuses Tor https://www.securityweek.com/cryptobandits-malware-doubles-as-a-backdoor-abuses-tor/ by Nicolas Krassas.
- RT DirectoryRanger: Hardening Intune, by @Carlos_Perez Part 1: The Privileged Roles Nobody Talks About https://trustedsec.com/blog/the-privileged-role… by DirectoryRanger.
- RT Binary Defense: The most effective malware doesn’t always hide. Sometimes it blends in so well that it looks like the technologies your business de… by Dave Kennedy.
- Don’t look now, but it seems Gizmodo’s homepage is now serving up a Clickfix attack. Basics of the Click-Fix exploit, which causes a pasted URL to fetch malware via Windows Powershell. https:// krebso.
- Microsoft’s move to remove trust for cross-signed kernel drivers is a huge step forward for Windows security. What many organizations may not realize… by The Haag™.
- RT Origin: We pointed Google Antigravity’s hidden updater at a server we ran. The signed binary pulled down an unsigned payload, replaced itself with … by Giuseppe
N3mes1s. - RT vx-underground: > be pakistan government > develop custom malware > used to target high profile targets > used against indian military and politica… by Suraj.
- I found an authenticated RCE in Netwrix Password Secure this year which got fixed this month. For everyone using it - update now! https://communi… by S3cur3Th1sSh1t.
- RT Mehmet Ergene: This is a big change for BYOVD https://techcommunity.microsoft.com/blog/windows-itpro-blog/advancing-windows-driver-security-removin… by SwiftOnSecurity.
- RT Police nationale: L’OFAC démantèle un groupe de hackers français Mardi 9 juin, l’office anti-cybercriminalité (OFAC) a interpellé 7 hac… by SwitHak ().
- Kernel LPEs dropping before patches are widely available? It’s been a wild month for Linux defenders. Our CIO @r3n1k breaks down how tried-and-true ha… by Synacktiv.
- Chaining Security Bugs in Discuz! X5.0: from Race Condition to Pre-Auth RCE https:// karmainsecurity.com/chaining-b ugs-in-discuz-from-race-condition-to-rce.
- Would you like some malware served at the very top of DuckDuckGo? https://timsh.org/drainer-at-the-top-of-duckduckgo/ by /r/netsec.
- BUMSRAKETE™ - The Most Beautiful, Most Tremendous FreeBSD Vulnerability In The History Of Computing. BELIEVE ME. https://bumsrake.de/ by /r/netsec.
- Use-after-free in the QPACK encoder of nginx HTTP/3 - CVE-2026-42530 https://cystack.net/vi/research/cve-2026-42530-nginx-en by /r/netsec.
- CVE-2026-5667: Unauthenticated Remote Control of Mitsubishi MAC-577IF-2E WiFi Adapters via Probe Request Reconnaissance https://innerfirez.github.io/p… by /r/netsec.
- Just published - “An Introduction to AI Coding Agent Security” going through security architecture and common mistakes found in the commonly used (C… by Alex Plaskett.
- RT Zy: Slides for my Zer0Con 2026 talk “Attacking Apple Display Co-processor” is out ~ : https://github.com/dgh05t/Zer0con_2026_Attacking_Apple_DCP/bl… by Alex Plaskett.
- RT Alexis Rapin: Is the idea of APT groups as unitary, monolithic entities (a PLA unit, an MSS bureau) still viable? When it comes to China, maybe not… by Dave Aitel.
- RT Swissky: We’ve Been Here Before: Decompilers, Fuzzers, and Now AI - @clearseclabs https://www.clearseclabs.com/blog/weve-been-here-before-ai-vulner… by Dave Aitel.
- RT RedTeam Recipes | RTR: We dropped our complete OSMR notes index on the blog. It’s a raw technical reference for macOS security researchers, coveri… by Dominic Chell.
- RT FBI Cyber Division: Today, as part of Operation Endgame, the FBI joins our international law enforcement partners in announcing the disruption of S… by Dominic Chell.
- saw grok can run commands directly in the chat now looked at the requests, got a clanker to build a terminal ui around it hades (xai’s internal sandbo… by freddy.
- RT Karsten Hahn: I published an API tracer for kernel mode drivers using speakeasy emulation AI notice: It’s vibe-coded. I manually analyzed ~20 drive… by hasherezade.
- RT Tim Blazytko: The slides from our @reconmtl talk with @nicolodev on agentic deobfuscation are now online. Topics: commercial VMs, anti-cheat, DRM s… by hasherezade.
- RT Elastic Security Labs: OXLOADER is staging shellcode in the PE .reloc section. Detection rates are low. New research from Elastic Security Labs. Le… by hasherezade.
- LACUNA Chain: Ghost Frames - defeats all EDR layers of call-stack-based detection https://0xmaz.me/posts/LACUNA-Chain-Ghost-Frames-defeats-All-EDR-lay… by Panos Gkatziroulis.
- NOW - a C tool that converts raw shellcode bytes into human-readable English text - either a plain list of codewords or fluent natural-looking prose w… by Panos Gkatziroulis.
- RT CloudBreach: We published our Offensive Azure Security Cheatsheet Built from commands, notes, and practical knowledge gathered while cre… by Panos Gkatziroulis.
- RT SpecterOps: The first version of BloodHound MCP proved an LLM could talk to BloodHound. The next version taught a more important lesson: MCP design… by Chihuahua in charge NotMe.
- doc=new DOMParser().parseFromString(`