ASD draws a hard line on developers lacking security skills
Organisations should not hand software projects to developers who don’t have the security skills to handle them safely: that’s the blunt official message from the…
Month: June 2026
F5 Patches Critical, High-Severity NGINX Vulnerabilities
F5 on Wednesday released out-of-band security updates to resolve multiple NGINX vulnerabilities, including critical flaws that could lead to code execution. The most severe are…
Microsoft Confirms RoguePlanet Zero-Day in Defender, Patch Under Development
Microsoft Confirms RoguePlanet Zero-Day in Defender, Patch Under Development Pierluigi Paganini June 18, 2026 Microsoft confirmed the RoguePlanet Defender zero-day (CVE-2026-50656), a privilege escalation flaw,…
‘Digital duty of care’ push puts AI accountability in focus
Following the release of a new Federal Government discussion paper, calls are growing for stronger safeguards to ensure artificial intelligence is used responsibly across workplaces…
Healthcare sector faces escalating ransomware, supply chain and APT risks as cyber threats intensify, CYFIRMA warns
CYFIRMA reported that healthcare organizations are facing an increasingly hostile cyber threat environment, with ransomware emerging as the sector’s most significant risk. Over the past…
CISC unveils Enhanced CIRMP Rules to address AI, legacy systems, supply chain, and insider risks across critical infrastructure
Australia’s Cyber and Infrastructure Security Centre (CISC) announced enhanced security requirements to strengthen protections for the nation’s critical infrastructure. These Security of Critical Infrastructure Legislation…
Copy Fail: Universal Linux Local Privilege Escalation Vulnerability
CVE-2026-31431 (dubbed “Copy Fail”) is an easily exploitable vulnerability in the Linux kernel that allows escalation from an unprivileged local user account to root access.…
Why Account Takeovers Are Rising and How to Stop Them
Organizations now manage thousands of human and non-human identities across cloud services, software-as-a-service applications, endpoints and remote environments. As hybrid working, Bring-Your-Own-Device (BYOD) and third-party…
Microsoft Confirms Defender RoguePlanet 0-Day Exploit and Working to Release Patch
Microsoft has officially acknowledged a critical zero-day vulnerability in Microsoft Defender, publicly dubbed “RoguePlanet,” and confirmed it is actively developing a security patch to address…
The UK Will Scan Asylum-Seekers’ Faces for Age Checks—Despite Knowing the Tech Is Flawed
While the Home Office says face scanning is designed to be an “additional” tool for border officers and won’t “replace or overrule human judgment,” it…
Malicious LNK Files Disguised as Job Resumes Target Corporate Employees
Malicious LNK files masquerading as job resumes are being used in targeted campaigns against corporate employees, combining social engineering with multi-stage malware delivery to achieve…
Heimdal Survey: Executives Four Times More Confident About AI Risk Than the Teams Managing It
London, United Kingdom, June 17th, 2026, CyberNewswire New research from cybersecurity company Heimdal finds 29% of US executives say AI risk is under control, against…