ICYMI: 2026-06-09
Latest Headlines
Meta to Use Off-Site Business Data for Feed and AI Personalization
Veeam Backup & Replication RCE Flaw Lets Domain Users Run Remote Code
Microsoft Restores Some GitHub Repos, Keeps Others Offline as Miasma Probe Continues
WinRAR Flaw Exploited by Russia-Aligned Groups to Deploy Stealers in Ukraine
Researchers Build Self-Replicating AI Worm That Operates Entirely on Local, Open-Weight Models
Chrome V8 Zero-Day CVE-2026-11645 Exploited in the Wild - Patch Now
The Hidden Security Risk in Modern Networks: The Work Between Tools
New FROST Attack Lets Websites Track What Sites and Apps You Open via SSD Timing
Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer
LiteLLM Flaw CVE-2026-42271 Exploited in the Wild, Chains to Unauthenticated RCE
Anthropic Offers Mythos Upgrade for Cyber Partners and a ‘Safe’ Version for the Rest of You
Anthropic Launches Claude Fable 5: Mythos-Class AI With Cybersecurity Guardrails
Claude Mythos Turns N-Days Into N-Hours With Rapid Exploit Creation
New Platform Uses Cryptographic Invisibility to Protect AI-Built Applications
Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks
Check Point VPN Zero-Day Exploited in Qilin Ransomware Attacks
Microsoft Defender ‘RoguePlanet’ zero-day grants SYSTEM privileges
ServiceNow discloses security incident exposing customer data
OpenClaw AI agent found falling for phishing attacks, spills user data
Microsoft releases Windows 10 KB5094127 extended security update
Microsoft June 2026 Patch Tuesday fixes 3 zero-day, 200 flaws
Windows 11 KB5094126 & KB5093998 cumulative updates released
XBOW tests Anthropic’s Mythos Preview for offensive security
GitHub disables Microsoft repos pushing password-stealing malware
New Veeam vulnerability exposes backup servers to RCE attacks
French govt messaging service breached in account hijacking attack
CISA gives feds 3 days to patch Check Point VPN bug exploited as zero-day
Google patches new Chrome zero-day flaw exploited in the wild
– MTZ