Dr. T's security brief
dtau...@gmail.com
FCC Plans Tighter Rules for Undersea Internet Cable Market
The U.S. Federal Communications Commission (FCC) is proposing stricter rules for submarine Internet cable systems, which carry about 99% of global Internet traffic. The new regulations would expand licensing requirements, tighten national security oversight, and restrict the use of equipment from China and other countries considered security risks. Under the proposal, companies operating undersea cable systems would face faster approval processes if they are deemed “trusted” U.S. firms, while also being required to meet stricter cybersecurity and espionage-prevention standards.
[ » Read full article ]
Reuters; David Shepardson (June 3, 2026)
CISA Warns of Cyberattacks Targeting Fuel Tank Monitoring Systems
The Cybersecurity and Infrastructure Security Agency (CISA) and other U.S. bodies warned that hackers are targeting Internet-exposed automatic tank gauge systems used to monitor fuel and liquid storage tanks in critical infrastructure sectors such as energy, transportation, agriculture, and chemicals. Attackers are exploiting various weaknesses to gain access and alter system settings. Once compromised, they can modify tank data, pump controls, network settings, and disable alerts. The warning follows reports linking similar activity to suspected Iranian hackers.
[ » Read full article ]
BleepingComputer; Lawrence Abrams (June 3, 2026)
Researchers Demonstrate AI Worm Could Target Any Online Device
Researchers at Canada’s University of Toronto (U of T) demonstrated an AI-powered computer worm that can adapt its attack strategy as it spreads across networks, potentially targeting any Internet-connected device. Built using freely available open-weight AI models, the prototype can analyze each device, exploit known vulnerabilities, gather information, and use compromised machines’ computing power to fuel further attacks. U of T’s Nicolas Papernot said his lab is working to develop countermeasures.
[ » Read full article ]
U of T News (Canada); Adina Bresge (June 2, 2026)
Trump AI Executive Order Asks Companies for Early Access
U.S. President Donald Trump signed an executive order requesting AI companies voluntarily provide advanced models to the federal government up to 30 days before public release for security evaluation. The order establishes a benchmarking process to assess cyber capabilities and determine whether systems qualify as “covered frontier models,” while explicitly stating it does not create mandatory licensing or pre-approval requirements. The order also directs the U.S. Department of Defense to strengthen cybersecurity efforts.
[ » Read full article ]
CNBC; Ashley Capoot (June 2, 2026)
Researcher Discovers How to Turn a Computer's Storage Chip into a Cybersecurity Shield
Florida International University's Weidong Zhu and collaborators at the University of Florida developed a cybersecurity system that turns solid-state drives (SSDs) into a stronger last line of defense against hackers and ransomware. Traditional SSDs automatically erase deleted data based on storage efficiency, often removing recently deleted files that may be most important to recover after an attack. Zhu’s approach organizes deleted data chronologically, allowing the SSD to preserve newer deleted files longer while discarding older ones first.
[ » Read full article ]
FIU News; David Drucker (June 1, 2026)
Cyber Attackers Hijacking Microsoft Log-ins, FBI says
The U.S. Federal Bureau of Investigation (FBI) warned that cybercriminals are using a phishing platform called Kali365 to hijack Microsoft 365 accounts, including Outlook, Teams, and OneDrive, without needing passwords. Attackers send phishing emails containing device authorization codes that trick users into entering them on legitimate Microsoft verification pages, unknowingly granting access tokens to hackers. The FBI says Kali365, distributed mainly through Telegram, uses AI-generated phishing lures and can bypass multi-factor authentication.
[ » Read full article ]
The Hill; Alix Martichoux (May 27, 2026)
House Committee To Hold Frontier AI Security Hearing
Inside Cybersecurity (6/1, Beard) reports behind a paywall that the House Homeland Security cyber subcommittee is “holding a hearing this week to examine how frontier artificial intelligence models are shaping the cybersecurity threat landscape, while House Armed Services is set to mark up their version of the fiscal 2027 National Defense Authorization Act.” The AI-focused hearing on Thursday “will explore consider the role of frontier AI models, agentic AI systems and AI-enabled coding tools in US cyber defense and critical infrastructure resilience.”
dtau...@gmail.com
ShinyHunters Exploits Oracle PeopleSoft Zero-Day to Breach Universities
Hacker/extortion group ShinyHunters exploited a critical Oracle PeopleSoft zero-day flaw (CVE-2026-35273) to breach organizations (particularly universities), stealing sensitive data and launching extortion campaigns before Oracle released a fix. Google Mandiant linked the attacks to UNC6240, identifying more than 100 potentially affected organizations. The attackers used exposed infrastructure, custom remote-management tools, and lateral-movement scripts to spread within networks and exfiltrate data.
[ » Read full article ]
The Hacker News; Swati Khandelwal (June 11, 2026)
CISA Rewrites Federal Patching Requirements for AI Threat Era
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has updated its federal vulnerability management directive to prioritize patching based on risk, requiring the most critical vulnerabilities to be fixed within three days. The updated framework uses factors such as exploitability, Internet exposure, automation risk, and potential system impact to classify severity. The directive is designed to address rising concerns about AI-enabled cyber threats.
[ » Read full article ]
Dark Reading; Jai Vijayan (June 10, 2026)
Computer scientists at the University of California San Diego uncovered and helped fix a widespread texting vulnerability that allowed attackers to impersonate people in SMS conversations by exploiting the long-standing email-to-text gateway used by mobile carriers. The flaw affected iPhone and Android users across major U.S. carriers and enabled spoofed messages to appear inside legitimate text threads. The researchers helped deploy fixes in Apple Messages and Google Messages, while network providers updated how email-originated texts are translated.
[ » Read full article ]
UC San Diego Today (June 9, 2026)
Operating System Reveals a Chip’s Dark Secrets
A custom operating system (OS) developed by researchers at the Massachusetts Institute of Technology's Computer Science and Artificial Intelligence Laboratory was built specifically to study hardware security vulnerabilities. By replacing conventional operating systems entirely, the Fractal OS provides a clearer view of how processors store, move, and execute data, making it easier to identify flaws that are normally hidden by software layers. The system was used to discover a previously unknown vulnerability in the Apple M1 chip.
[ » Read full article ]
IEEE Spectrum; Matthew S. Smith (June 9, 2026)
French Government Messaging Service Breached
France's government has disclosed a security breach affecting Tchap, the encrypted messaging platform used by public-sector employees that was developed in-house by DINUM, the digital affairs directorate of the French government, in collaboration with ANSSI, the France's cybersecurity agency. According to authorities, the attacker gained access through a compromised user account, apparently obtained via social engineering, and was able to view some conversations and shared data before the account was disabled.
[ » Read full article ]
BleepingComputer; Sergiu Gatlan (June 9, 2026)
Chrome 149 Update Fixes 429 Security Flaws
Google’s Chrome 149 update fixes 429 security vulnerabilities, making it the largest single security patch release in the browser’s history. The update addresses 22 critical flaws—mostly “use-after-free” memory errors—and 87 high-risk vulnerabilities; Google said it is unaware of their exploitation in the wild. Researchers received $209,000 in bug bounties for identifying some of the vulnerabilities, while Google’s own tools, including AI-assisted systems, identified 371 of the issues.
[ » Read full article ]
PCWorld; Frank Ziemann (June 5, 2026)
When Browser Memory Becomes a Bento Box
Researchers at the University of Duisburg-Essen’s paluno – The Ruhr Institute for Software Technology in Germany devised a method of protecting WebAssembly (Wasm) applications from security vulnerabilities without requiring source code access, special hardware, or modified browsers. To be presented at the ACM Web Conference 2026 this month, the approach uses Wasm’s multi-memory feature to automatically reorganize application memory into isolated compartments, preventing attacks from corrupting sensitive data in other memory regions and reducing the risk of cross-site scripting exploits.
[ » Read full article ]
University of Duisburg-Essen (Germany); Birgit Kremer (June 5, 2026)
Students’ Cybersecurity Training Lags Behind In Higher Education
Inside Higher Ed (6/9, Flaherty) reported that a significant gap in cybersecurity training for students in higher education institutions persists, according to Inside Higher Ed’s 2026 Survey of Campus Chief Technology/Information Officers. While 68% of faculty and staff receive adequate cybersecurity training, only 22% of students do, posing a risk to both institutions and students. The survey, conducted by Hanover Research, indicates that nearly 60% of CTOs identify cybersecurity breaches as a top institutional risk through 2030. Experts like Rob Groome from the University of Southern California emphasize the need for early engagement with students on cybersecurity expectations to foster a secure campus culture. Ben Woelk from Rochester Institute of Technology highlights that students, though not accessing the highest-value data, are vulnerable to scams like credential theft and visa-related fraud. The FBI and educational institutions have warned students about such threats. Additionally, strategist Aviva Legatt notes the challenge posed by students installing agentic AI browsers, which complicates data governance and cybersecurity efforts.
dtau...@gmail.com
China-Linked Spies Hid Inside Medical, Military Networks for More Than a Year
Google researchers say a China-linked cyber espionage group infiltrated North American medical and military research organizations and remained undetected for more than a year. The attackers exploited Internet-facing REDCap servers, widely used by universities and hospitals, then deployed custom malware to steal login credentials, maintain access, and move deeper into internal networks. Using compromised administrator accounts, the group created email monitoring rules that secretly forwarded messages containing keywords related to defense technology, military systems, drone research, public health, and diseases to attacker-controlled Gmail accounts.
[ » Read full article ]
The Register (U.K.); Jessica Lyons (June 15, 2026)
France to Stop Certifying Products without Quantum-Safe Encryption
French cybersecurity agency ANSSI announced it will stop certifying security products that lack quantum-resistant encryption starting in 2027, effectively forcing government agencies and critical infrastructure operators to transition away from current cryptographic systems. The policy is driven by concerns over “harvest now, decrypt later” attacks, where adversaries collect encrypted data today and break it once powerful quantum computers emerge. France is supporting the transition to quantum computing through its €3 billion quantum technology strategy.
[ » Read full article ]
Yahoo! News; Leo Marchandon (June 16, 2026)
PhishLumos Exposes Phishing Campaigns That Evade Detection by Hiding Content
PhishLumos, a new phishing detection system developed by researchers at Tokyo Metropolitan University in Japan, identifies phishing campaigns that evade traditional scanners by hiding malicious content or serving harmless pages to security tools. Instead of analyzing webpage content, it focuses on infrastructure clues such as IP addresses, SSL certificates, domain relationships, and historical scan data to uncover connected phishing operations. In tests across 103 real-world campaigns, the system achieved 100% median campaign coverage.
[ » Read full article ]
Help Net Security; Zeljka Zorz (June 15, 2026)
High-Severity Vulnerability in Linux Caused by a Single Errant Character
Researchers at security firm Exodus Intelligence discovered a high-severity Linux kernel vulnerability caused by a single misplaced exclamation mark in the code. The bug, tracked as CVE-2026-53111, created a use-after-free condition that allowed unprivileged users on systems such as Debian and Ubuntu to escalate privileges to root by manipulating reference counters and freeing memory that was still in use. The vulnerability was patched in February.
[ » Read full article ]
Ars Technica; Dan Goodin (June 9, 2026)
FBI Built a Replica Small Town to Simulate Cyberattacks
The U.S. Federal Bureau of Investigation (FBI) has built a 22,000-square-foot training facility in Huntsville, AL, called the Kinetic Cyber Range, designed to simulate cyberattacks in a realistic setting. The replica town includes homes, a hotel, hospital, courthouse, gas station, grocery store, power company, roads, and traffic systems, all equipped with functioning digital technologies, allowing investigators to practice responding to ransomware attacks, critical infrastructure disruptions, and other cyber incidents without risk to real systems.
[ » Read full article ]
TechCrunch; Zack Whittaker (June 13, 2026)
Pentagon Announces ‘Cyber Mastery Incentive Pay’
The Pentagon has launched the Cyber Mastery Incentive Pay program, effective October 1, to attract, develop, and retain skilled cyber personnel as part of the U.S. Defense Department’s Cybercom 2.0 modernization effort. The program introduces two layers of incentive compensation: Skill Incentive Pay, which rewards operators for achieving basic, senior, and master proficiency levels, and Special Duty Assignment Pay for personnel serving in particularly demanding cyber roles, such as instructors and advanced operators.
[ » Read full article ]
DefenseScoop; Drew F. Lawrence (June 10, 2026)
Colleges Face Cyberattacks Linked To ShinyHunters
Higher Ed Dive (6/12, Spitalniak) reported that higher education institutions are confronting cyberattacks attributed to the cybercrime group ShinyHunters, which previously compromised Canvas. Between May 27 and June 9, ShinyHunters targeted Oracle’s PeopleSoft software, potentially accessing data from over 100 organizations, with 68% belonging to the higher education sector. The Google Threat Intelligence Group and cybersecurity firm Mandiant disclosed these details. Some institutions managed to thwart the hack, while others experienced data breaches, with stolen data published online. The University of Nottingham confirmed a breach affecting its student record system, potentially exposing personal and financial information. ShinyHunters has claimed responsibility for the attack. Oracle issued a security alert on June 10 regarding the exploited vulnerability but did not confirm breaches among its software users. Colleges are attractive targets for cybercriminals due to their extensive data and frequently changing user base. The recent Canvas breach disrupted final exams nationwide, with Instructure reaching a deal to retrieve the stolen data. Instructure CEO Steve Daly emphasized the need for improved security measures and a reliable ecosystem to mitigate future risks.
dtau...@gmail.com
AI on Pace to Bypass Cybersecurity Systems in Months, Five Eyes Warns
The Five Eyes alliance—which includes security agencies from the U.S., U.K., Canada, Australia, and New Zealand—warned that advanced AI models could surpass current cybersecurity defenses within months. The agencies said AI is lowering barriers for cybercriminals while increasing the speed, scale, and sophistication of attacks. They urged governments and businesses to strengthen their cyberdefenses now by integrating AI into security operations, modernizing legacy systems, restricting access to critical infrastructure, and preparing for breaches through stronger response planning.
[ » Read full article ]
CBS News (June 23, 2026)
Trump Signs Orders to Boost Quantum Research, Security
U.S. President Trump on Monday signed two executive orders aimed at advancing U.S. leadership in quantum computing and preparing for future cybersecurity threats. One order directs federal agencies to support development of a powerful quantum computer for scientific research, expand deployment of quantum-enabled technologies, strengthen domestic quantum supply chains, and protect critical quantum infrastructure. The second order accelerates the transition to post-quantum cryptography, with a goal of completing migration by 2031.
[ » Read full article ]
The Hill; Julia Shapero (June 22, 2026)
Brazil Probes Emergency Warning System After Nationwide Rogue Alert
Brazilian authorities are investigating a suspected cyberattack on the country’s emergency alert system after an unauthorized nationwide warning was sent to mobile phones on June 20. The alert reached users across multiple regions, including São Paulo, Rio de Janeiro, Paraná, and the Federal District. Following the incident, the emergency alert dispatch platform was taken offline. Authorities believe the message was remotely triggered by someone outside the government system, though no suspects have been publicly identified.
[ » Read full article ]
The Register (U.K.); Connor Jones (June 22, 2026)
In West Africa, Digital Transformation is Fueling Cybercriminality
West Africa’s rapid digital transformation is improving public services and financial inclusion but is also attracting a growing wave of cybercrime. Senegal illustrates this trend, having experienced major cyberattacks on its tax authority, national ID agency, and Public Treasury. “Africa is becoming the new playground for cybercriminals,” said cybersecurity expert Clément Domingo. “The more a country digitizes, the more it increases its attack surface."
[ » Read full article ]
Le Figaro in English (France); Adrien Marotte (June 19, 2026)
Indiana Expands Cybersecurity Education
K12dive (6/23) reported that Indiana is launching a statewide initiative to expand cybersecurity education pathways for high school students. This initiative, starting in the fall, involves partnerships with organizations like the College Board, Ivy Tech Community College, the Indiana Chamber of Commerce Defense Council, and Project Lead the Way. The goal is to create a seamless academic pathway from high school courses, such as Advanced Placement Cybersecurity, to higher education and employment opportunities, including positions with the Indiana National Guard. Currently, cybersecurity courses are available in 69 high schools, with plans to increase this number to 200 over the next three years. The initiative aims to provide students with practical experience, college credits, and industry-recognized credentials.