Cyber Security News
Start. Stay. Grow.
Curated daily. The latest hacks, breaches, and cyber trends—humanized.
Daily cyber brief
Hacking Editorial Brief — June 20, 2026
Ransomware Groups Intensify Operations with Multi-Target Campaign
Multiple ransomware operations launched coordinated attacks on June 19, with LockBit, TheGentlemen, Akira, and Qilin claiming responsibility for breaches across manufacturing, logistics, and software sectors. Victims include DaikyoNishikawa Corporation, Al Khaja Holding, and Apptricity, indicating continued targeting of enterprises with operational technology dependencies and supply chain positions. Separately, TheGentlemen ransomware-as-a-service group deployed a new EDR evasion framework called GentleKiller, capable of terminating 400 distinct security processes across endpoint protection platforms. The framework represents a significant evolution in pre-encryption tactics, allowing operators to systematically disable defensive controls before payload deployment. This operational tempo and tooling advancement demonstrates persistent ransomware group activity despite ongoing law enforcement pressure.
Law Enforcement Operation Cleans 14,971 Compromised WordPress Sites
Operation Endgame successfully disrupted SocGholish distribution infrastructure by cleaning nearly 15,000 compromised WordPress installations previously serving the malware framework. The majority of affected sites were located in the United States, followed by Germany and France. The cleanup effort directly impacts SocGholish's primary delivery mechanism, which relies on legitimate but compromised websites to serve fake browser update prompts that install malware. Concurrently, active exploitation is underway against an information disclosure vulnerability in the Gravity SMTP WordPress plugin, with Wordfence reporting blocked attack attempts in the wild. The vulnerability allows unauthorized access to sensitive configuration data. Additionally, the Texas Parks and Wildlife Department disclosed a breach at its license system vendor exposing personal data including driver's license and passport information for over three million individuals.
Sources: Bleeping Computer · The Hacker News · The Hacker News · Bleeping Computer
Around the Web
Last Updated: N/A
Hacks + Heists
Kodak Confirms Security Breach and Initiates Cybersecurity Investigation
Kodak confirmed that it is working with external cybersecurity experts to investigate a security breach after hackers gained access to some of the com...
Read more →Hack attack: 3 million Texas hunters, anglers caught up in cyber breach - KFDM
Hack attack: 3 million Texas hunters, anglers caught up in cyber breach. by Aaron Drawhorn. Fri, June 19, 2026 at 2:56 PM. UserWay icon for ...
Read more →Hackers exploit info disclosure bug in Gravity SMTP WordPress plugin - Bleeping Computer
WordPress security company Defiant is warning that hackers are actively exploiting the vulnerability. The company's Wordfence firewall has blocked ...
Read more →Should you change your phone number after a hack? - Fox News
SIM swap scams can give hackers control of your phone number and accounts. An Ohio woman shares her story of hacks and experts explain what to do ...
Read more →Can computer hackers get inside your mind? | NCPR News
On today's show: a whodunit about hackers, 'Cyber Paleontologists', spy-vs-spy protocols, cryptic intelligence leaks, nuclear physics, high-precision ...
Read more →
Big Cyber
The Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security Processes
Recent reports from cybersecurity journalist Brian Krebs and PRODAFT have revealed that a 36-year-old Russian national named Alexander Andreevich ...
Read more →How Hackers Found a Back Door Into the American Living Room
Nation-state cyberattackers are increasingly using residential proxy networks to mask their traffic, turning everyday electronics into a global threat
Read more →Trump's Anthropic crackdown rattles cyber defenders - Axios
AI researchers and cybersecurity leaders fear the U.S. government is setting a precedent that may discourage American AI companies from building ...
Read more →CISA Warns of Actively Exploited Joomla JCE Flaw Allowing PHP Code Execution
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a maximum-severity security flaw impacting Widget Factory Joomla ...
Read more →
Hard Tech
React2Shell (CVE-2025-55182)
A 10.0 critical severity vulnerablility affecting server-side use of React.js, tracked as CVE-2025-55182 in React.js and CVE-2025-66478 specifically f...
Read more →Breaking Into a Brother (MFC-J1010DW): Three Security Flaws in a Seemingly Innocent Printer
We discovered three vulnerabilities that when chained together, allow for complete remote compromise:
Read more →Check Point - Wrong Check Point (CVE-2024-24919)
Gather round, gather round - it’s time for another blogpost tearing open an SSLVPN appliance and laying bare a recent in-the-wild exploited bug. This ...
Read more →Backdoor in XZ Utils allows RCE: everything you need to know - CVE-2024-3094
Detect and mitigate CVE-2024-3094, a critical supply chain compromise, affecting XZ Utils Data compression library. Organizations should patch urgentl...
Read more →Loading...
The Cybersecurity Chronicles
‘The Cybersecurity Chronicles: 2024‘ pulls back the curtain on the digital threats that shaped our world last year, revealing the human stories behind the headlines. From art galleries frozen by ransomware to prison tablets hacked with a minus sign, from British Library archivists racing to protect centuries of knowledge to Spotify users meticulously curating their digital identities – these stories illuminate how cybersecurity touches every aspect of modern life.
Author Mark Nole weaves together intimate portraits of the people on all sides of the digital battlefield: the defenders working through sleepless nights to protect critical infrastructure, the victims grappling with stolen identities and lost savings, and even the attackers themselves, operating from nondescript offices with project management software and performance metrics.
Through detailed reporting and narrative storytelling, Nole reveals how 2024 became the year when cybersecurity stopped being just a technical problem and emerged as a fundamentally human challenge. Whether you’re a security professional or simply someone trying to understand our increasingly digital world, these chronicles offer an unprecedented look at how technology shapes – and sometimes betrays – our trust, our privacy, and our lives.
Stay Updated with Cyber Security News
Get the latest cybersecurity headlines, breaking news, and expert insights delivered directly to your inbox. Stay ahead of threats and informed about the digital landscape.
Join thousands of cybersecurity professionals and enthusiasts. No spam, just valuable insights.