1. FBI Dismantles NetNut, One of the World’s Largest Residential Proxy Networks On July 3, the FBI and private-sector partners took down NetNut, a residential proxy service built on roughly 2 million secretly hijacked home devices. The network had quietly routed criminal traffic — from credential stuffing to fraud — through ordinary people’s routers and […]
Cyber Security Weekly: Top 5 News Stories for the Week of June 22–28, 2026
1. LastPass Confirms Customer Data Stolen in Klue Supply Chain Breach LastPass disclosed that the Icarus extortion group used OAuth tokens stolen in a supply chain attack against market-intelligence vendor Klue to access customer records within its Salesforce environment. Exposed data included names, phone numbers, email and physical addresses, and support case records, though LastPass […]
Cyber Security Weekly: Top 5 News Stories for the Week of June 15th
1. Cisco Catalyst SD-WAN Manager zero-day under active exploitation (CVE-2026-20245). Attackers are actively exploiting a privilege-escalation flaw in Cisco Catalyst SD-WAN Manager that lets an authenticated local user upload a crafted file and execute commands as root. At the time of writing, no patch is available, leaving network operators dependent on access controls and monitoring. […]
Cyber Security Weekly: Top 5 Cybersecurity News Stories for the Week of June 8–14, 2026
1. ShinyHunters Exploit Oracle PeopleSoft Zero-Day to Breach Universities (CVE-2026-35273) A critical, unauthenticated remote code execution flaw (CVSS 9.8) in Oracle PeopleSoft PeopleTools was exploited in the wild as a zero-day between May 27 and June 9, roughly two weeks before Oracle’s out-of-band advisory. Mandiant attributed the campaign to the financially motivated group UNC6240 (ShinyHunters), […]
Cyber Security Weekly: Top 5 Cybersecurity News Stories for the Week of June 1–7, 2026
1. ShinyHunters Leaks Data on 42 Million Charter Communications Customers The ShinyHunters extortion group published a trove allegedly stolen from Charter Communications, the telecom giant behind the Spectrum brand, after the company let a May 27 ransom deadline pass. The attackers say they gained entry through a voice-phishing (vishing) call that compromised an employee’s Microsoft […]






