Archive snapshot

Thu, Jun 18 · 12:00 PM CDT

Archived briefing content rendered inside the ACSP site experience.

Archived briefing

Snapshot overview

Generated Thu, Jun 18 · 12:00 PM CDTWindow last 6 hours

Top line

Coverage now updates on a rolling 6-hour window, while NVD entries come from the live API using a last-24-hours modified window and are sorted by severity.

Fast take

News stays on the current 6-hour slice, videos now use the last 24 hours, and NVD uses the API instead of the traditional feed to better match the live site behavior.

Top stories
5
Worth skimming
5
Tracked videos
1
NVD vulnerabilities
0

Top stories

Thu, 18 Jun 2026 20:57:54 +0530

ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories

9.8/10 · Must read/watch
The Hacker Newsmalwaresupply-chainai

Summary
The internet did not break this week. It got used exactly as designed, which is worse. Searches were siphoned through shady browser add-ons. AI chat links turned into malware delivery paths. macOS attacks ran in memory and left almost nothing behind. Cloud age

Thu, 18 Jun 2026 20:00:42 +0530

Microsoft Details Windows Clipper Malware Campaign Using USB LNK Worm and Tor-Based C2

9.7/10 · Must read/watch
The Hacker Newsmalwareai

Summary
Microsoft has disclosed details of a Windows-based cryptocurrency clipper campaign that has targeted users since February 2026. "The clipper in this campaign relies on Windows Script Host and ActiveX-driven logic to launch a bundled Tor proxy and poll a hidden

Thu, Jun 18 · 12:00 PM CDT

Fake GitHub Stars and AI Videos Mask a Crypto Clipper

9.5/10 · Must read/watch
Infosecurity Magazinesupply-chainai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Thu, 18 Jun 2026 19:42:48 +0530

INC Ransomware Emerges as Major RaaS Threat in 2026 with 830+ Victims Since 2023

9.5/10 · Must read/watch
The Hacker Newsmalwareai

Summary
Cybersecurity researchers have charted the evolution of INC from an nascent ransomware-as-a-service (RaaS) operation to one of the most prolific cybercrime groups in 2026, claiming no less than 830 victims since August 2023. "The disruption of LockBit and the

Thu, Jun 18 · 07:00 AM CDT

I found 10k GitHub repositories distributing Trojan malware

9.5/10 · Must read/watch
Hacker Newsmalwaresupply-chain

Summary
Surfaced from Hacker News front page during collection run. Freshness on HN: 5 hours ago.

Worth skimming

Thu, Jun 18 · 12:00 PM CDT

LATAM Infrastructure Hit by Fortinet and Ivanti Exploits

9.4/10 · Must read/watch
Infosecurity Magazinevuln

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Thu, 18 Jun 2026 21:03:49 +0530

Orphaned AI Agents: How to Find Hidden Access Risks Inside Your Network

9.0/10 · Must read/watch
The Hacker Newsaiidentity

Summary
If an autonomous AI agent interacts with your company's core intellectual property today, can your security team instantly name the person who authorized it? For most enterprises, the answer is a simple no. The rush to adopt internal AI tools has left a massiv

Thu, Jun 18 · 12:00 PM CDT

Cybercriminals Are Worried About AI Taking Their Jobs Too

8.7/10 · Worth your time
Infosecurity Magazineai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Thu, Jun 18 · 12:00 PM CDT

ICO Cautions Healthcare Worker After Princess of Wales Incident

8.2/10 · Worth your time
Infosecurity Magazinegeneral

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Thu, 18 Jun 2026 19:28:39 +0530

The Scripts on Your Checkout Page Are Now a PCI DSS Problem

8.1/10 · Worth your time
The Hacker Newsai

Summary
An independent PCI assessor tested Reflectiz against the new PCI DSS rules. Here is the verdict: See the full QSA assessment here → When a customer types their card number into your checkout, their browser is running far more than your code. Analytics tags, a