2026 - Security Ticks

Operation FanTrap: Inside the FIFA 2026 Fraud Ecosystem

cyber news, cybersecurity, darkweb, OSINT, phishing / SecurityTicks

Operation FanTrap: Inside the FIFA 2026 Fraud Ecosystem 2026-06-18 at 17:05 By Ashish Khaitan Executive Summary The FIFA World Cup 2026 has become more than a global sporting event. It has evolved into a large-scale cybercrime opportunity exploited by threat actors through a coordinated ecosystem of fraudulent domains, social media channels, messaging platforms, pirated streaming […]

Operation FanTrap: Inside the FIFA 2026 Fraud Ecosystem Read More »

Ledn adds Tether Gold as loan collateral, expanding Bitcoin-backed lending model

gold, Latest News, Lending, tether / SecurityTicks

Ledn adds Tether Gold as loan collateral, expanding Bitcoin-backed lending model 2026-06-18 at 17:00 By Sam Bourgi Ledn’s addition of Tether Gold lending comes as tokenized commodities expand, with the sector accounting for nearly 17% of the $43 billion RWA market. This article is an excerpt from Cointelegraph.com News View Original Source

Ledn adds Tether Gold as loan collateral, expanding Bitcoin-backed lending model Read More »

Operation FlutterBridge: The FlutterShell macOS Backdoor

Threat Intelligence, Vulnerabilities / SecurityTicks

Operation FlutterBridge: The FlutterShell macOS Backdoor 2026-06-18 at 17:00 By Maor Gabay Identified through macOS endpoint monitoring, the CL-CRI-1089 cluster, delivered under the publicly reported Operation FlutterBridge campaign, demonstrates a deliberate misuse of the Flutter framework for macOS malware delivery. Rather than re-documenting the campaign itself, this report treats the recovered FlutterShell artifacts as a

Operation FlutterBridge: The FlutterShell macOS Backdoor Read More »

DragonForce Hackers Abuse Microsoft Teams Relays to Hide Backdoor.Turn C2 Traffic

Uncategorized / SecurityTicks

DragonForce Hackers Abuse Microsoft Teams Relays to Hide Backdoor.Turn C2 Traffic 2026-06-18 at 16:30 By Threat actors associated with the DragonForce ransomware have been observed using a custom Go-based remote access trojan (RAT) called Backdoor.Turn to conceal command-and-control (C2) traffic inside Microsoft Teams relay infrastructure. According to findings from Broadcom-owned Symantec and Carbon Black, the

DragonForce Hackers Abuse Microsoft Teams Relays to Hide Backdoor.Turn C2 Traffic Read More »

Accenture to Acquire Majority Stake in Dragos, All of runZero, NetRise in $4.1 Billion OT Cybersecurity Push

Accenture, Acquisition, Dragos, Featured, Funding/M&A, ICS, ICS/OT, M&A Tracker, NetRise, runZero / SecurityTicks

Accenture to Acquire Majority Stake in Dragos, All of runZero, NetRise in $4.1 Billion OT Cybersecurity Push 2026-06-18 at 16:08 By Eduard Kovacs The deal values industrial cybersecurity giant Dragos at $3.25 billion, and runZero and NetRise will operate under Dragos. The post Accenture to Acquire Majority Stake in Dragos, All of runZero, NetRise in

Accenture to Acquire Majority Stake in Dragos, All of runZero, NetRise in $4.1 Billion OT Cybersecurity Push Read More »

Malware attacks strip Roblox developers of entire games

cybercrime, Kaspersky, Malware, News, online gaming, social engineering / SecurityTicks

Malware attacks strip Roblox developers of entire games 2026-06-18 at 15:41 By Sinisa Markovic Hackers who once focused on stealing valuable Roblox items are now taking over entire games. Although Roblox operates the service, users can create and publish their own games on it. Successful games can generate substantial revenue through in-game purchases. Some developers

Malware attacks strip Roblox developers of entire games Read More »

eSentire links AI-led penetration testing with MDR through Atlas Preempt

eSentire, Industry news / SecurityTicks

eSentire links AI-led penetration testing with MDR through Atlas Preempt 2026-06-18 at 15:39 By Industry News eSentire has announced the launch of Atlas Preempt, a component of the company’s Atlas Platform. Atlas Preempt performs continuous, AI-driven offensive testing against customer environments to identify which exposures attackers can reach and feeds that data into eSentire’s 24/7

eSentire links AI-led penetration testing with MDR through Atlas Preempt Read More »

No Exploits Required

CVE, exploit, Vulnerabilities / SecurityTicks

No Exploits Required 2026-06-18 at 15:30 By Tod Beardsley Four decades of incident response experience suggest that exploits are often the symptom, not the root cause, of today’s cybersecurity failures. The post No Exploits Required appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

No Exploits Required Read More »

74,000 Fortinet firewall credentials exposed in FortiBleed data leak

credentials, critical infrastructure, Data leak, data theft, Don't miss, enterprise, firewall, Fortinet, Government, Hot stuff, Hudson Rock, News, VPN / SecurityTicks

74,000 Fortinet firewall credentials exposed in FortiBleed data leak 2026-06-18 at 15:10 By Zeljka Zorz A Russian-speaking cybercriminal group has stolen credentials contained in the configuration files of nearly 74,000 Fortinet firewalls and VPN gateways around the world. The data was accidentally exposed by the group on a server, along with other artifacts and tools,

74,000 Fortinet firewall credentials exposed in FortiBleed data leak Read More »

Orphaned AI Agents: How to Find Hidden Access Risks Inside Your Network

Uncategorized / SecurityTicks

Orphaned AI Agents: How to Find Hidden Access Risks Inside Your Network 2026-06-18 at 14:58 By If an autonomous AI agent interacts with your company’s core intellectual property today, can your security team instantly name the person who authorized it? For most enterprises, the answer is a simple no. The rush to adopt internal AI

Orphaned AI Agents: How to Find Hidden Access Risks Inside Your Network Read More »

Dream Raises $260 Million at $3 Billion Valuation

Cybersecurity Funding, Dream, funding / SecurityTicks

Dream Raises $260 Million at $3 Billion Valuation 2026-06-18 at 14:55 By Ionut Arghire The Israeli startup provides sovereign AI and cyber defenses for governments and critical infrastructure. The post Dream Raises $260 Million at $3 Billion Valuation appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Dream Raises $260 Million at $3 Billion Valuation Read More »

The Scripts on Your Checkout Page Are Now a PCI DSS Problem

Uncategorized / SecurityTicks

The Scripts on Your Checkout Page Are Now a PCI DSS Problem 2026-06-18 at 14:00 By An independent PCI assessor tested Reflectiz against the new PCI DSS rules. Here is the verdict: See the full QSA assessment here → When a customer types their card number into your checkout, their browser is running far more

The Scripts on Your Checkout Page Are Now a PCI DSS Problem Read More »

Atlassian, Splunk Patch Critical Vulnerabilities

Atlassian, patches, Splunk, Vulnerabilities, vulnerability / SecurityTicks

Atlassian, Splunk Patch Critical Vulnerabilities 2026-06-18 at 13:59 By Ionut Arghire Splunk patched an OS command injection in AI Toolkit, while Atlassian fixed dozens of flaws in third-party dependencies. The post Atlassian, Splunk Patch Critical Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Atlassian, Splunk Patch Critical Vulnerabilities Read More »

Rokarolla Banking Trojan Targets 200 Applications

Android malware, Banking Trojan, Malware & Threats, Mobile & Wireless, Rokarolla / SecurityTicks

Rokarolla Banking Trojan Targets 200 Applications 2026-06-18 at 13:42 By Eduard Kovacs The Android malware allows its operators to take control of infected devices and harvest sensitive information. The post Rokarolla Banking Trojan Targets 200 Applications appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Rokarolla Banking Trojan Targets 200 Applications Read More »

Critical Command Execution Vulnerability Patched in Cisco ISE

Cisco, Network Security, patches, Vulnerabilities, vulnerability / SecurityTicks

Critical Command Execution Vulnerability Patched in Cisco ISE 2026-06-18 at 13:27 By Ionut Arghire Insufficient validation of user input allows an attacker to gain access to the underlying OS and elevate their privileges to root. The post Critical Command Execution Vulnerability Patched in Cisco ISE appeared first on SecurityWeek. This article is an excerpt from

Critical Command Execution Vulnerability Patched in Cisco ISE Read More »

Grayscale applies traditional finance models to AAVE, sees $175 value

coinshares, DeFi, Grayscale, Latest News, research / SecurityTicks

Grayscale applies traditional finance models to AAVE, sees $175 value 2026-06-18 at 12:45 By Ezra Reguerra Grayscale and CoinShares are applying traditional valuation techniques to crypto assets as institutions explore revenue-generating DeFi protocols. This article is an excerpt from Cointelegraph.com News View Original Source

Grayscale applies traditional finance models to AAVE, sees $175 value Read More »

F5 Patches Critical, High-Severity NGINX Vulnerabilities

F5, Nginx, patched, Vulnerabilities, vulnerability / SecurityTicks

F5 Patches Critical, High-Severity NGINX Vulnerabilities 2026-06-18 at 12:39 By Ionut Arghire Critical flaws in NGINX could allow remote, unauthenticated attackers to cause a restart and potentially execute arbitrary code. The post F5 Patches Critical, High-Severity NGINX Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

F5 Patches Critical, High-Severity NGINX Vulnerabilities Read More »

GentleKiller targets more than 400 security processes across 48 products

cybercrime, Don't miss, Endpoint Security, ESET, Malware, News, Ransomware, research / SecurityTicks

GentleKiller targets more than 400 security processes across 48 products 2026-06-18 at 12:00 By Anamarija Pogorelec Most ransomware operations leave the work of disabling endpoint security software to their affiliates. The ransomware-as-a-service gang Gentlemen runs a different model. Its operators develop and maintain a set of tools for shutting down endpoint detection and response (EDR)

GentleKiller targets more than 400 security processes across 48 products Read More »

SailPoint to Acquire Entro in Reported $200 Million Deal

Acquisition, Entro, Funding/M&A, Identity & Access, M&A, M&A Tracker, SailPoint / SecurityTicks

SailPoint to Acquire Entro in Reported $200 Million Deal 2026-06-18 at 11:36 By Eduard Kovacs Israel-based Entro specializes in non-human identity and credential security solutions, and it will enable SailPoint to enhance its products. The post SailPoint to Acquire Entro in Reported $200 Million Deal appeared first on SecurityWeek. This article is an excerpt from

SailPoint to Acquire Entro in Reported $200 Million Deal Read More »

Barracuda introduces AI-powered email security with automated threat response

Barracuda Networks, Industry news / SecurityTicks

Barracuda introduces AI-powered email security with automated threat response 2026-06-18 at 10:54 By Industry News Barracuda Networks has unveiled Barracuda Integrated Email Protection, an Integrated Cloud Email Security (ICES) solution delivering protection against evolving AI-driven threats. Powered by AI, the solution continuously and autonomously detects and remediates threats across the attack lifecycle, explains Microsoft 365

Barracuda introduces AI-powered email security with automated threat response Read More »