CISA sounds the alarm: the FortiBleed leak has exposed Fortinet credentials. If you run Fortinet at the network edge, assume exposure. Rotate credentials, patch affected devices, and audit access now. Critical-infrastructure and ICS operators should prioritize this today.
#ThreatIntel #ICS #CriticalInfrastructure
https://threat-intelligence.redeyesecurity.com/blog/cisa-fortinet-fortibleed-credential-leak-2026
FortiBleed: CISA confirms 86,644 FortiGate devices compromised in a Russian-speaking credential campaign. Compromised edge firewalls hand attackers a foothold straight into OT and critical-infrastructure networks. If you run FortiGate, assume exposure: rotate credentials, audit active sessions, and hunt now.
#ThreatIntel #ICS #CriticalInfrastructure
https://threat-intelligence.redeyesecurity.com/blog/fortibleed-fortigate-credential-campaign-2026
Rockwell Automation: 113 CVEs tracked, 13 critical/high. Avg CVSS 7.65, max 9.8. 100% unpatched. Trust Score: D. Top weakness: CWE-20 (Input Validation). Industrial control systems at risk. #Rockwell #ICS #cybersecurity
Accenture to will acquire a majority stake in OT security firm Dragos, and fully acquire runZero and NetRise in $4.1 billion OT cybersecurity push. Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any flavor. Enroll Now and Save 10%: Coupon Code MWNEWS10 Note: Affiliate link – your enrollment helps support this platform at no extra cost to you. The post Accenture Places $4.1 Billion Bet on OT Cybersecurity appe...
May 2026 Infostealer Trend Report
This analysis covers infostealer distribution trends observed during May 2026, based on automated collection systems and diagnostic logs. Distribution occurred primarily through illegal software disguised as cracks and keygens, as well as email campaigns. ACRStealer, Remus, and LummaC2 were most prevalent, with distribution via domains including Mediafire and AWS S3 buckets. Microsoft was the most impersonated company, followed by Auslogics and NVIDIA. EXE files represented 78.9% of execution types, while DLL side-loading accounted for 21.1%. macOS environments saw ClickFix techniques and malicious Bash scripts, with 142 scripts and 12 C2 domains identified. Email campaigns distributed AgentTesla and DarkCloud. Remus showed significant growth, comprising 36% of distributions. LummaC2 remained the most prevalent overall variant.
Pulse ID: 6a340681b8799a4a3ef56500
Pulse Link: https://otx.alienvault.com/pulse/6a340681b8799a4a3ef56500
Pulse Author: AlienVault
Created: 2026-06-18 14:53:53
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#AWS #Cloud #CyberSecurity #Email #ICS #InfoSec #InfoStealer #LummaC2 #Mac #MacOS #Microsoft #OTX #OpenThreatExchange #Tesla #bot #AlienVault
Klue Integration Abused in Salesforce Data Theft | Threat Spotlight
In June 2026, a compromised Klue competitive-intelligence platform integration was exploited to exfiltrate customer relationship management data from enterprise Salesforce environments. Attackers authenticated through compromised Klue service accounts, generated OAuth tokens, and executed automated Python scripts to conduct bulk data extraction via Salesforce REST API queries over approximately 24 hours. The activity included concentrated bursts of nearly a thousand queries within 15 minutes and sustained extraction windows exceeding 6 hours. This incident follows similar third-party OAuth-abuse campaigns targeting Salesforce through Salesloft Drift and Gainsight integrations throughout 2025 and 2026. While the tactics resemble operations attributed to ShinyHunters and UNC6395 threat groups, attribution remains uncertain. The initial access vector, full scope of exfiltration, and attacker intent are still under investigation, with no extortion demands observed to date.
Pulse ID: 6a33628e05ab2c2a8cced854
Pulse Link: https://otx.alienvault.com/pulse/6a33628e05ab2c2a8cced854
Pulse Author: AlienVault
Created: 2026-06-18 03:14:22
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#CyberSecurity #DataTheft #Extortion #ICS #InfoSec #OTX #OpenThreatExchange #Python #RAT #RCE #Windows #bot #AlienVault
📰 Attacks on Legacy Systems Hit 77% of UK Utility Companies, Report Finds
UK utilities are under fire! 🚨 A new report finds 77% were hit by cyber attacks on legacy OT systems in the past year, causing significant service disruptions. Aging infrastructure is a critical vulnerability. #CyberSecurity #OT #ICS #CriticalInfras...
🌐 cyber[.]netsecops[.]io
📰 Accenture Bets $4.175B on OT Security, Acquiring Dragos, runZero, and NetRise
🚨 BIG MOVE: Accenture invests $4.175B in OT security, acquiring a majority stake in Dragos and buying runZero & NetRise outright. This creates an end-to-end platform to defend critical infrastructure. 🏭⚡️ #CyberSecurity #OT #ICS #Acquisition
🌐 cyber[.]netsecops[.]io
Once you start looking for it, you'll be surprised at just how many "features we're bragging about" on electronic component datasheets for ICs boil down to "we put a capacitor across this input".
#IC #IntegratedCircuit #ICs #datasheet #electronics #components #marketing
Etairos.ai
Hugo | DevOps | Cybersecurity
Bobe'bot on security
OTX Bot
CyberNetsecIO
C.
OffSequence