Daily Hunt Feed - 2026-06-10

Threat Hunt Feed (2026-06-10)

Hacker News: Best

• Apple decided not to roll out Siri in EU after denied request for exemption — Tue, 09 Jun 2026 16:13:10 +0000
  • Matched TTPs: Tool (T1588.002)

Krebs on Security

• A Record-Breaking Patch Tuesday for June 2026 — Tue, 09 Jun 2026 22:07:28 +0000
  • Matched TTPs: Artificial Intelligence (T1588.007), Vulnerabilities (T1588.006), Code Repositories (T1213.003), Software (T1592.002), Exploits (T1588.005), Social Media (T1593.001), At (T1053.002)

BleepingComputer

• OpenClaw AI agent found falling for phishing attacks, spills user data — Tue, 09 Jun 2026 17:20:20 -0400
  • Matched TTPs: Artificial Intelligence (T1588.007), Malware (T1588.001), Hardware (T1592.001), SSH (T1021.004), Tool (T1588.002), Phishing (T1566), Software (T1592.002), Credentials (T1589.001), At (T1053.002)
• SAP fixes critical flaws in NetWeaver and Commerce Cloud — Tue, 09 Jun 2026 15:36:27 -0400
  • Matched TTPs: Malware (T1588.001), Hardware (T1592.001), Vulnerabilities (T1588.006), Server (T1584.004), Tool (T1588.002), Phishing (T1566), Software (T1592.002), Email Spoofing (T1672)
• Microsoft releases Windows 10 KB5094127 extended security update — Tue, 09 Jun 2026 14:35:00 -0400
  • Matched TTPs: Malware (T1588.001), Hardware (T1592.001), Vulnerabilities (T1588.006), Tool (T1588.002), Phishing (T1566), Software (T1592.002)
• Microsoft June 2026 Patch Tuesday fixes 3 zero-day, 200 flaws — Tue, 09 Jun 2026 13:57:59 -0400
  • Matched TTPs: Sharepoint (T1213.002), DNS (T1071.004), Malware (T1588.001), Hardware (T1592.001), Vulnerabilities (T1588.006), DLL (T1574.001), Server (T1584.004), Tool (T1588.002), Phishing (T1566), Software (T1592.002), Remote Desktop Protocol (T1021.001), At (T1053.002)
• Windows 11 KB5094126 & KB5093998 cumulative updates released — Tue, 09 Jun 2026 13:32:32 -0400
  • Matched TTPs: Malware (T1588.001), Hardware (T1592.001), Vulnerabilities (T1588.006), Tool (T1588.002), Phishing (T1566), Software (T1592.002), At (T1053.002)
• XBOW tests Anthropic’s Mythos Preview for offensive security — Tue, 09 Jun 2026 12:16:38 -0400
  • Matched TTPs: Artificial Intelligence (T1588.007), Malware (T1588.001), Hardware (T1592.001), Vulnerabilities (T1588.006), Domains (T1584.001), Tool (T1588.002), Phishing (T1566), Firmware (T1592.003), Software (T1592.002), Exploits (T1588.005), Python (T1059.006), At (T1053.002)
• GitHub disables Microsoft repos pushing password-stealing malware — Tue, 09 Jun 2026 11:42:40 -0400
  • Matched TTPs: Malware (T1588.001), Hardware (T1592.001), Tool (T1588.002), Phishing (T1566), Software (T1592.002), Python (T1059.006), At (T1053.002)

Darkreading

• Blame AI: Patch Tuesday Hits Record 206 CVEs — Tue, 09 Jun 2026 21:42:57 GMT
  • Matched TTPs: Artificial Intelligence (T1588.007), Vulnerabilities (T1588.006), Software (T1592.002), Exploits (T1588.005), At (T1053.002)
• Microsoft Exchange Flaw Lets Attackers Spoof Any Email Address — Tue, 09 Jun 2026 20:20:00 GMT
  • Matched TTPs: IP Addresses (T1590.005), DNS (T1071.004), Vulnerabilities (T1588.006), Domains (T1584.001), Server (T1584.004), Email Addresses (T1589.002), PowerShell (T1059.001), Tool (T1588.002), Phishing (T1566), Exploits (T1588.005), At (T1053.002)

The Hacker News

• Meta to Use Off-Site Business Data for Feed and AI Personalization — Tue, 09 Jun 2026 22:33:58 +0530
  • Matched TTPs: Artificial Intelligence (T1588.007), Malware (T1588.001), Vulnerabilities (T1588.006), Tool (T1588.002), Software (T1592.002), Exploits (T1588.005), Social Media (T1593.001), At (T1053.002)
• Veeam Backup & Replication RCE Flaw Lets Domain Users Run Remote Code — Tue, 09 Jun 2026 22:09:47 +0530
  • Matched TTPs: Malware (T1588.001), Vulnerabilities (T1588.006), Server (T1584.004), Tool (T1588.002), Software (T1592.002), Exploits (T1588.005), Social Media (T1593.001), At (T1053.002)
• Chrome V8 Zero-Day CVE-2026-11645 Exploited in the Wild - Patch Now — Tue, 09 Jun 2026 17:28:49 +0530
  • Matched TTPs: JavaScript (T1059.007), Malware (T1588.001), Vulnerabilities (T1588.006), Tool (T1588.002), Software (T1592.002), Exploits (T1588.005), Social Media (T1593.001), At (T1053.002)
• New FROST Attack Lets Websites Track What Sites and Apps You Open via SSD Timing — Tue, 09 Jun 2026 15:20:41 +0530
  • Matched TTPs: JavaScript (T1059.007), Malware (T1588.001), Hardware (T1592.001), Vulnerabilities (T1588.006), Tool (T1588.002), Software (T1592.002), Exploits (T1588.005), Social Media (T1593.001), At (T1053.002)
• Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer — Tue, 09 Jun 2026 14:43:32 +0530
  • Matched TTPs: Artificial Intelligence (T1588.007), JavaScript (T1059.007), Malware (T1588.001), Vulnerabilities (T1588.006), SSH (T1021.004), Proxy (T1090), Tool (T1588.002), Software (T1592.002), Exploits (T1588.005), Social Media (T1593.001), Credentials (T1589.001), Python (T1059.006), At (T1053.002)
• LiteLLM Flaw CVE-2026-42271 Exploited in the Wild, Chains to Unauthenticated RCE — Tue, 09 Jun 2026 11:56:14 +0530
  • Matched TTPs: Artificial Intelligence (T1588.007), Malware (T1588.001), Vulnerabilities (T1588.006), Server (T1584.004), Proxy (T1090), Tool (T1588.002), Software (T1592.002), Exploits (T1588.005), Social Media (T1593.001), Credentials (T1589.001), Python (T1059.006), At (T1053.002)