Threat Intelligence Overview

Friday, June 19, 2026 · 312 new signals in the last 24 hours

Sign in
Critical CVEs
2
+2 vs yesterday
New CVEs (24h)
38
3 actively exploited
Unread Articles
96
across 9 feeds
Open Reports
3
2 awaiting review

Recent Threat News

Last 24h

View all
criticalBleepingComputer · Fortinet
Actively Exploited Zero-Day in Fortinet FortiGate Lets Attackers Hijack Devices

An unauthenticated RCE in FortiGate appliances is under active exploitation by a Chinese-aligned APT group.

criticalMicrosoft Security Blog · Microsoft
Microsoft Patches Wormable Vulnerability in Windows TCP/IP Stack

June Patch Tuesday addresses a critical wormable bug in IPv6 packet processing with no user interaction required.

highCISA Alerts · Cisco
CISA Adds Three Cisco IOS XE Flaws to Known Exploited Vulnerabilities Catalog

Federal agencies have 21 days to patch newly added KEV entries affecting Cisco edge routers.

mediumKrebs on Security · LockBit
Krebs: Inside the LockBit Affiliate Program's New Recruitment Drive

A long-form investigation into the ransomware cartel's revamped affiliate vetting and pay structure.

highGoogle Project Zero · Apple
Project Zero Drops Details on Safari WebKit Sandbox Escape Chain

A four-bug chain enabling drive-by remote code execution on macOS and iOS, fixed in Safari 18.5.

highCisco Talos · Palo Alto
Palo Alto GlobalProtect VPN Authentication Bypass Under Investigation

Telemetry suggests opportunistic exploitation of an authentication bypass affecting GlobalProtect portals.

Trending CVEs

By CVSS

View all
CVE-2026-31982
critical
9.8
Fortinet
CVE-2026-29144
critical
9.6
Microsoft
CVE-2026-22011
high
8.8
VMware
CVE-2026-20431
high
8.6
Cisco
CVE-2026-1820
high
8.1
Apple

Top Vendors Affected

7-day rolling

Microsoft2 mentions
Fortinet1 mentions
Cisco1 mentions
LockBit1 mentions
Apple1 mentions
Palo Alto1 mentions

Critical Vulnerabilities

Patch now

View all
CVE-2026-31982Exploited

Unauthenticated RCE in FortiGate management interface via crafted HTTP request.

CVE-2026-29144

Wormable RCE in Windows TCP/IP stack triggered by malformed IPv6 packets.

Daily Summary

June 19

2 critical zero-days disclosed (Fortinet, Microsoft IPv6)
3 vendors added to CISA KEV catalog
LockBit affiliate program revamp underway
WebKit sandbox escape chain disclosed by P0
CrowdStrike Falcon 7.21 ships stability fixes

Saved Reports

View all
Weekly Threat Briefing — Week 25
12 articles8 CVEs34 IOCs
Fortinet Zero-Day Incident Response
4 articles1 CVEs17 IOCs
Patch Tuesday Summary — June 2026
7 articles14 CVEs0 IOCs