Your Daily Dose of Cybersecurity News

AI/ML Security

Microsoft restricts employee Claude Fable 5 access over Anthropic data retention

Microsoft restricts employee access to Claude Fable 5 while legal reviews Anthropic's 30-day retention policy, which can retain flagged content for two years.

Jun 14, 2026 · SecurityXP

Cybercrime

Ex-school district employee jailed for hacks on former employer Cybercrime

Potter is also required to pay $59,668.81 in restitution to the Saydel Community School District and its insurer, Travelers Casualty and Surety Company, for...

Jun 14, 2026 · SecurityXP

Commentary / Opinion

Anthropic ban: Sarvam AI's Pratyush Kumar warns against reliance on foreign models

Kumar detailed that Sarvam has trained models at scale on roughly 3,400 Nvidia H100 GPUs and has brought India's first Blackwell cluster online, targeting...

Jun 14, 2026 · SecurityXP

Latest News

AI/ML SecurityJun 13, 2026·3 min read

Washington Pulled the Plug on Anthropic ‘s Fable 5 and Mythos 5 models. The Rest of the World Is Watching.

The organizations that had integrated these models into security operations, threat hunting pipelines, and vulnerability research workflows are now running...

CybercrimeJun 13, 2026·2 min read

Google Sues Chinese Cybercrime Network for Using Gemini AI to Target Americans

Google is taking legal action against a Chinese cybercrime network it says abused its Gemini AI agent to send phishing texts and steal data from Americans.

CybercrimeJun 13, 2026·2 min read

Ukrainian national pleads guilty to role in Conti ransomware operation

A Ukrainian national pleaded guilty to his role in the Conti ransomware operation, which struck over 1,000 victims worldwide before disbanding in 2022.

CybercrimeJun 12, 2026·4 min read

Authorities Dismantle Cryptocurrency Laundering Service 'AudiA6' Used by Cybercriminals

Law enforcement dismantled the 'AudiA6' crypto-laundering service, arresting two administrators and seizing 30+ servers and 25 domains tied to ransomware.

Vulnerabilities & ExploitsJun 12, 2026·4 min read

Oracle mitigates PeopleSoft zero-day exploited in data theft attacks

Oracle has issued mitigations for a critical PeopleSoft zero-day (CVE-2026-35273) enabling unauthenticated RCE, actively exploited in ShinyHunters data theft.

Vulnerabilities & ExploitsJun 11, 2026·3 min read

GitHub finally pulls the plug on automatic install script execution

GitHub is ending automatic execution of npm install scripts to curb supply-chain attacks, starting with opt-in warnings in npm version 11.

Data BreachesJun 11, 2026·3 min read

Oracle PeopleSoft servers hacked in ShinyHunters data theft attacks

ShinyHunters, or a group impersonating them, has been targeting Oracle PeopleSoft ERP servers in data theft attacks, with researchers publishing IP-address IOCs.

Vulnerabilities & ExploitsJun 10, 2026·1 min read

Ivanti releases patches for critical Sentry vulnerabilities

Ivanti has patched two critical Sentry vulnerabilities (CVE-2026-10520 and CVE-2026-10523) affecting the gateway that secures traffic to mobile devices.

Vulnerabilities & ExploitsJun 10, 2026·4 min read

Microsoft Patches Record 200 Vulnerabilities in June 2026 Patch Tuesday

Microsoft's June 2026 Patch Tuesday fixes a record 200 vulnerabilities, including a critical Active Directory RCE (CVE-2026-45648, CVSS 8.8).

Vulnerabilities & ExploitsJun 10, 2026·3 min read

Microsoft June 2026 Security Updates

Microsoft's Urgent Security Update Microsoft has just released a massive security update, fixing 204 vulnerabilities, including 38 critical ones. This is a...

Vulnerabilities & ExploitsJun 9, 2026·3 min read

SAP fixes critical flaws in NetWeaver and Commerce Cloud

Uncovering Critical Flaws in SAP NetWeaver and Commerce Cloud SAP's June 2026 Security Patch package is a big deal. It fixes 15 vulnerabilities, including...

ResearchJun 9, 2026·3 min read

Can Voice Agents Handle Bilingual Customers? Benchmarking Frontier ASR on Code-Switched Speech

The Code-Switching Conundrum More than half of the world's population speaks more than one language. Code-switching, the practice of switching between...

AI/ML SecurityJun 8, 2026·3 min read

Is OpenAI Lockdown Mode an Admission of Risk? Enough?

As AI-powered chatbots expand across customer service, technical support, and enterprise workflows, they become increasingly attractive targets for attackers seeking to extract sensitive data.

Data BreachesJun 8, 2026·3 min read

Meta AI Flaw Exposes 20K Instagram Accounts

This incident is a clear example of the ongoing risks associated with AI-powered support systems. The vulnerability allowed attackers to reset passwords without verifying email addresses associated wi...

Vulnerabilities & ExploitsJun 6, 2026·2 min read

CISA Flags SolarWinds Serv-U Flaw as Exploited

Over 12,000 SolarWinds Serv-U file transfer servers sit exposed to the internet. Attackers are already knocking them offline.

Vulnerabilities & ExploitsJun 6, 2026·2 min read

Cisco SD-WAN Manager Under Attack, No Patch Yet

Cisco has confirmed active exploitation of a high-severity vulnerability in Catalyst SD-WAN Manager. The flaw, CVE-2026-20245, scores 7.8 on the CVSS scale.

Vulnerabilities & ExploitsJun 6, 2026·2 min read

Everest Forms Pro RCE: WordPress Sites at Risk

Hackers are actively exploiting a critical vulnerability in the Everest Forms Pro WordPress plugin right now. The flaw, tracked as CVE-2026-3300, allows unauthenticated attackers to execute arbitrary ...

Vulnerabilities & ExploitsJun 6, 2026·2 min read

Ubiquiti UniFi OS Auth Bypass Enables Root RCE

Ubiquiti disclosed three critical vulnerabilities in UniFi OS Server on May 21, 2026. Each scores a perfect 10.0 on the CVSS scale.

Security OperationsJun 5, 2026·2 min read

71% of SOCs Say AI Is Underdelivering: Report

Eighteen months ago, the AI SOC was a marketing line. Today it is a budget item.

Data BreachesJun 5, 2026·2 min read

AI Chatbot Trust Weaponized to Mine Crypto

Microsoft has spotted something new. Attackers are manipulating SEO rankings and AI chatbot recommendations to push fake utilities onto users who trust what the AI tells them.

Security Digest

Get the latest cybersecurity news, vulnerability alerts, and threat intelligence delivered to your inbox.

SecurityXP — Cybersecurity News, Threat Intelligence & Infosec Utilities

Microsoft restricts employee Claude Fable 5 access over Anthropic data retention

Ex-school district employee jailed for hacks on former employer Cybercrime

Anthropic ban: Sarvam AI's Pratyush Kumar warns against reliance on foreign models

Latest News

Washington Pulled the Plug on Anthropic ‘s Fable 5 and Mythos 5 models. The Rest of the World Is Watching.

Google Sues Chinese Cybercrime Network for Using Gemini AI to Target Americans

Ukrainian national pleads guilty to role in Conti ransomware operation

Authorities Dismantle Cryptocurrency Laundering Service 'AudiA6' Used by Cybercriminals

Oracle mitigates PeopleSoft zero-day exploited in data theft attacks

GitHub finally pulls the plug on automatic install script execution

Oracle PeopleSoft servers hacked in ShinyHunters data theft attacks

Ivanti releases patches for critical Sentry vulnerabilities

Microsoft Patches Record 200 Vulnerabilities in June 2026 Patch Tuesday

Microsoft June 2026 Security Updates

SAP fixes critical flaws in NetWeaver and Commerce Cloud

Can Voice Agents Handle Bilingual Customers? Benchmarking Frontier ASR on Code-Switched Speech

Is OpenAI Lockdown Mode an Admission of Risk? Enough?

Meta AI Flaw Exposes 20K Instagram Accounts

CISA Flags SolarWinds Serv-U Flaw as Exploited

Cisco SD-WAN Manager Under Attack, No Patch Yet

Everest Forms Pro RCE: WordPress Sites at Risk

Ubiquiti UniFi OS Auth Bypass Enables Root RCE

71% of SOCs Say AI Is Underdelivering: Report

AI Chatbot Trust Weaponized to Mine Crypto

Security Digest