Splunk Enterprise Authentication Bypass Vulnerability
What is the Attack? A critical authentication bypass vulnerability, CVE-2026-20253 (CVSS 9.8), affects Splunk Enterprise versions 10.0.x and 10.2.x. The flaw stems from missing authentication on a PostgreSQL sidecar service endpoint, allowing an unauthenticated attacker to create or truncate arbitrary files on a vulnerable server. ...
DevRel newsletter — June 2026
In the June 2026 DevRel newsletter, we cover jina-embeddings-v5-omni, the latest blogs and videos, and upcoming events. - Read more
What the June 2026 Threat Technique Catalog update means for your AWS environment
The AWS Customer Incident Response Team (AWS CIRT) encounters patterns that repeat across engagements when helping customers respond to security incidents. We’re passionate about making sure that information is accessible so that everyone can improve their security posture and their organization’s resilience to disruption. The primary method we use to share this information is the Threat Technique Catalog for...
British public won’t tolerate cyber disruption any more
The British public’s tolerance for cyber disruption, particularly at high-profile organisations such as retailers, is wearing thin, according to a TalkTalk Business study - Read more
UK businesses fear stigma of ransomware
Data from the UK’s Report Fraud service reveals the scope of ransomware attacks is going underreported, with few businesses confident enough to identify themselves as victims - Read more
Sysco – 2,691,852 breached accounts
In June 2026, the food distribution company Sysco was targeted by a ShinyHunters "pay or leak" extortion campaign. Data was subsequently published containing 2.7M unique email addresses belonging to staff and customers. The data also contained largely corporate contact information including names, phone numbers, physical addresses, internal job titles, and customer feedback. - Read more
CVE-2023-6606 Kernel: out-of-bounds read vulnerability in smbcalcsize
Information published. - Read more
Anthropic Confirms Claude Mythos 5 Redeployment for US Critical Infrastructure Organizations
Anthropic has confirmed that Claude Mythos 5, its most powerful AI cybersecurity model, will be redeployed to a select set of U.S. organizations responsible for operating and defending critical infrastructure, following a government-led review process that began on June 12, 2026. Claude Mythos first made headlines in April 2026 when Anthropic described it as a potential “cybersecurity reckoning,” an...






