Daily Security Feed - 2026-06-17

Security Feed Digest (2026-06-17)

Hacker News: Best

• U.S. pulling ocean sensors a ‘shock’ for Canadian research as El Niño nears — Tue, 16 Jun 2026 19:42:05 +0000
• Apple is about to make Hide My Email useless — Tue, 16 Jun 2026 18:37:21 +0000
• Is Meta destroying its engineering organization? — Tue, 16 Jun 2026 16:42:32 +0000
• Apple’s weird anti-nausea dots cured my car sickness — Tue, 16 Jun 2026 16:12:06 +0000
• Running local models is good now — Tue, 16 Jun 2026 14:36:57 +0000
• SpaceX Is Buying Cursor — Tue, 16 Jun 2026 12:31:37 +0000
• Mechanical Watch (2022) — Tue, 16 Jun 2026 11:26:27 +0000
• SpaceX to buy Cursor for $60B — Tue, 16 Jun 2026 10:44:24 +0000
• Feds freaked over Fable 5 after ‘fix this code’, not jailbreak, say researchers — Tue, 16 Jun 2026 09:26:09 +0000
• I admire Fabrice Bellard. He is almost certainly a better overall programmer — Tue, 16 Jun 2026 04:58:15 +0000
• The time the x86 emulator team found code so bad they fixed it during emulation — Tue, 16 Jun 2026 04:46:36 +0000
• Banned book library in a wi-fi smart light bulb — Mon, 15 Jun 2026 22:37:55 +0000
• Peopleless economy? Not technically impossible — Mon, 15 Jun 2026 21:10:36 +0000
• I Love the Computer — Mon, 15 Jun 2026 20:14:15 +0000

BleepingComputer

• Malicious JetBrains Marketplace plugins steal AI API keys from developers — Tue, 16 Jun 2026 17:54:50 -0400
• New Rokarolla Android malware targets 217 banking, crypto apps — Tue, 16 Jun 2026 16:04:11 -0400
• Steam Workshop abused to spread malware via Wallpaper Engine app — Tue, 16 Jun 2026 14:27:55 -0400
• UK to require ID or face scan before you can make social media accounts — Tue, 16 Jun 2026 10:38:49 -0400
• GhostTree Attack Abused Recursive Windows Junctions to Hide Malware — Tue, 16 Jun 2026 10:17:27 -0400
• FTC warns of record $3.5 billion losses to imposter scams in 2025 — Tue, 16 Jun 2026 09:42:19 -0400
• CISA warns of another cPanel plugin flaw exploited in attacks — Tue, 16 Jun 2026 06:47:59 -0400
• Ransomware gang abuses Microsoft Teams relays to hide malicious traffic — Tue, 16 Jun 2026 06:18:48 -0400
• Critical Fortinet FortiSandbox flaws now exploited in attacks — Tue, 16 Jun 2026 05:19:51 -0400
• Windows version of SprySOCKS Linux malware used to attack govt orgs — Tue, 16 Jun 2026 05:00:00 -0400
• iRhythm discloses data breach, says hackers stole patient info — Tue, 16 Jun 2026 02:31:59 -0400

Darkreading

• Fileless Phantom Stealer Targets Browser Credentials — Tue, 16 Jun 2026 22:26:34 GMT
• Security Community Slams US Ban on Exporting Mythos, Fable — Tue, 16 Jun 2026 22:00:06 GMT
• SprySOCKS Windows Variant Abuses Kernel Drivers to Evade Detection — Tue, 16 Jun 2026 20:11:48 GMT
• Rokarolla Android Trojan Levels Up to Full Device Control, Persistence — Tue, 16 Jun 2026 17:32:32 GMT
• ‘Lorem Ipsum’ Malware Pivots to ClickFix Delivery — Tue, 16 Jun 2026 15:10:48 GMT
• HTTP/2 Bomb Attacks Put Telcos, Healthcare Orgs at Risk — Mon, 15 Jun 2026 19:31:37 GMT
• China-Nexus Actor Spies on US Researchers Undetected for a Year — Mon, 15 Jun 2026 17:00:45 GMT

The Hacker News

• Google Vertex AI SDK Flaw Let Attackers Hijack Model Uploads via Bucket Squatting — Wed, 17 Jun 2026 00:35:41 +0530
• ClickFix Campaigns Expand Malware Delivery With New Loaders and Fake Update Lures — Tue, 16 Jun 2026 23:11:28 +0530
• New Rokarolla Android Malware Steals PINs, SMS Codes, and Crypto Wallet Funds — Tue, 16 Jun 2026 18:40:17 +0530
• Survey: 94% of Incidents Involve Anonymized Infrastructure. Teams Are Still Reactive — Tue, 16 Jun 2026 17:00:00 +0530
• Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week — Tue, 16 Jun 2026 16:00:41 +0530
• China-Linked SprySOCKS Backdoor Expands to Windows with Driver-Based Stealth — Tue, 16 Jun 2026 15:14:34 +0530
• Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware — Tue, 16 Jun 2026 13:44:55 +0530
• Cisco Releases Security Updates for Actively Exploited SD-WAN Manager Flaw — Tue, 16 Jun 2026 11:35:58 +0530
• CISA Flags LiteSpeed cPanel Plugin Flaw Exploited for Root Privilege Escalation — Tue, 16 Jun 2026 11:11:52 +0530

데일리시큐 - 최근인기기사

• 금융보안원, AI 활용 모의해킹 교육 신설 — 2026-06-16 10:08:25
• 2026 공급망보안워크숍, 6월 24~25일 양재 aT센터서 개최 — 2026-06-16 15:06:37
• 노르마, STK 2026과 Q2B 도쿄서 양자 컴퓨터 활용 기술 공개 — 2026-06-16 14:19:30
• “API 키·접근키 저장 금지”…개인정보위, 클라우드 자격증명 관리 강화 권고 — 2026-06-16 19:39:46
• 앤앤에스피, 제어망 보안 모니터링 솔루션 나라장터 등록 마쳐 — 2026-06-16 14:03:12
• 시큐아이, 블루맥스 IPS 고객 대상 보안 정책 무상 점검 제공 — 2026-06-16 13:47:23
• 윈스테크넷, 중앙대 인공지능연구소와 AI 보안기술 공동 연구 착수 — 2026-06-16 17:16:32
• 에임인텔리전스, 마이크로소프트 AI 취약점 탐지 시스템 MDASH 파트너 참여 — 2026-06-16 16:43:41
• KX넥스지, 2026 기업 신용등급 A0 획득 — 2026-06-16 15:20:55
• 이너버스, 이을석 신임 대표 체제 출범…보안 컴플라이언스로 사업 확장 — 2026-06-16 15:37:12

보안뉴스 > SECURITY

• 韓 미토스 접근 무산… 중국 연계 한국 통신사 탓? 이통 3사 “사실무근” — Tue, 16 Jun 2026 19:03:00 +0900
• 행정안전부, 각종 재난안전정보 제공하는 ‘안전디딤돌’과 ‘이머전시레디앱’ 개편 — Tue, 16 Jun 2026 17:26:00 +0900
• 위드네트웍스, withVTM V3.0 공공 조달 등록… “상시 보안 아키텍처 지원 총력” — Tue, 16 Jun 2026 17:06:00 +0900
• “클로드 쓰려면 신원 밝혀라” 앤트로픽, 개인정보처리방침 개정안 발표 — Tue, 16 Jun 2026 16:54:00 +0900
• 수사 인력의 한계 AI로 넘는다… 6월 20일 ‘과학치안’ 세미나 열려 — Tue, 16 Jun 2026 16:49:00 +0900
• 조달청-KOTRA. 수출 원팀 구축으로 혁신기업 세계무대 진출 가속 — Tue, 16 Jun 2026 16:47:00 +0900
• AI 해킹과 징벌적 제재의 시대, 해법은 ‘선제적 보안과 회복력’… 제154차 CISO 포럼 — Tue, 16 Jun 2026 16:08:00 +0900
• 티피링크, Wi-Fi 7 와이파이 증폭기 출시 — Tue, 16 Jun 2026 15:42:00 +0900
• 시큐아이, MAX Care 운영 점검 서비스 무상 제공 — Tue, 16 Jun 2026 14:23:00 +0900
• “닌텐도 금융문서 등 민감한 정보 탈취”… 해킹 조직 주장 — Tue, 16 Jun 2026 13:55:00 +0900