Archive snapshot

Thu, Jun 11 · 06:00 AM CDT

Archived briefing content rendered inside the ACSP site experience.

Back to archive

Archived briefing

Snapshot overview

Generated Thu, Jun 11 · 06:00 AM CDTWindow last 6 hours

Top line

Coverage now updates on a rolling 6-hour window, while NVD entries come from the live API using a last-24-hours modified window and are sorted by severity.

Fast take

News stays on the current 6-hour slice, videos now use the last 24 hours, and NVD uses the API instead of the traditional feed to better match the live site behavior.

Top stories

5

Worth skimming

5

Tracked videos

2

NVD vulnerabilities

25

Top stories

Thu, Jun 11 · 06:00 AM CDT

Extortion-Only Attacks Increase, With Data Theft Dominating Ransomware Claims

9.8/10 · Must read/watch

Infosecurity Magazinemalwareai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Thu, 11 Jun 2026 11:53:03 +0530

GitHub to Disable npm Install Scripts by Default to Stop Supply Chain Attacks

9.8/10 · Must read/watch

The Hacker Newssupply-chainai

Summary
GitHub has announced what it said are "breaking changes" coming to npm version 12, one of which turns off install scripts by default to combat software supply chain threats. The changes aim to combat attack techniques that abuse the "npm install" command to tr

Open article ↗

Thu, Jun 11 · 06:00 AM CDT

New “Agentjacking” Attacks Could Hijack AI Coding Agents

9.1/10 · Must read/watch

Infosecurity Magazineai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Thu, Jun 11 · 06:00 AM CDT

Cybersecurity Software Fails to Detect Fifth of Brower-Based Phishing Attacks

8.5/10 · Worth your time

Infosecurity Magazineai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Thu, Jun 11 · 04:00 AM CDT

Build a Basic AI Agent from Scratch: Long Task Planning

8.5/10 · Worth your time

Hacker Newsai

Summary
Surfaced from Hacker News front page during collection run. Freshness on HN: 2 hours ago.

Open article ↗

Worth skimming

Thu, 11 Jun 2026 15:15:58 +0530

OceanLotus Hits Vietnam Investors With SPECTRALVIPER in FireAnt Attack

8.1/10 · Worth your time

The Hacker Newsai

Summary
The Vietnam-aligned threat actor known as OceanLotus has been attributed to two distinct campaigns that targeted domestic entities and stock investors with a backdoor known as SPECTRALVIPER. The campaigns involve a prolonged cyber espionage operation aimed at

Open article ↗

Thu, Jun 11 · 02:00 AM CDT

Pokémon Go Scans Trained the Navigation Tech for Military Drones

8.1/10 · Worth your time

Hacker Newsai

Summary
Surfaced from Hacker News front page during collection run. Freshness on HN: 4 hours ago.

Open article ↗

Thu, Jun 11 · 03:00 AM CDT

Why AI hasn't replaced software engineers, and won't

8.1/10 · Worth your time

Hacker Newsai

Summary
Surfaced from Hacker News front page during collection run. Freshness on HN: 3 hours ago.

Open article ↗

Thu, Jun 11 · 06:00 AM CDT

New Fable 5 Is a "Mythos-Class" LLM Available to All, Anthropic Announces

8.0/10 · Worth your time

Infosecurity Magazineai

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Thu, Jun 11 · 06:00 AM CDT

Microsoft Fixes 200 CVEs in June Patch Tuesday

8.0/10 · Worth your time

Infosecurity Magazinevuln

Summary
Collected from the Infosecurity Magazine news page during the latest run.

Open article ↗

Videos worth watching

Wed, Jun 10 · 09:00 AM CDT

AES Explained: How Encryption Protects Your Data

7.7/10 · Worth your time

YouTube / David Bombalai

Why it matters
Recent creator upload with some page-level evidence. Better than raw feed discovery, but still not a full content review.

Worth watching?Maybe — good candidate if the title matches your interests, but confidence is still moderate.

Confidencelow

Open article ↗

Wed, Jun 10 · 10:37 AM CDT

Payload Podcast 008 - Ryan Hausknecht

6.8/10 · Skim only if relevant

YouTube / John Hammondgeneral

Why it matters
Recent creator upload with some page-level evidence. Better than raw feed discovery, but still not a full content review.

Summary
Learn Cybersecurity and more with Just Hacking Training: https://jh.live/trainingSee what else I'm up to with: https://jh.live/newsletterℹ️ Resources:See wha...

Worth watching?Maybe — good candidate if the title matches your interests, but confidence is still moderate.

Confidencelow

Open article ↗

NVD vulnerabilities

Fri, May 08 · 05:16 PM CDT

CVE-2026-38360

9.8/10 · Must read/watch

NVDvuln

Summary
Directory Traversal vulnerability in fohrloop dash-uploader v.0.1.0 through v.0.7.0a2 allows a remote attacker to execute arbitrary code via the dash_uploader/httprequesthandler.py, BaseHttpRequestHandler.get_temp_root(), BaseHttpRequestHandler._post() components.

CVECVE-2026-38360

SeverityCRITICAL

TypeUPDATED

PublishedFri, May 08 · 05:16 PM CDT

ModifiedWed, Jun 10 · 04:17 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46195

9.8/10 · Must read/watch

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: smb: client: validate dacloffset before building DACL pointers parse_sec_desc(), build_sec_desc(), and the chown path in id_mode_to_cifs_acl() all add the server-supplied dacloffset to pntsd before proving a DACL header fits inside the returned securit

CVECVE-2026-46195

SeverityCRITICAL

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 07:18 PM CDT

Open article ↗

Mon, May 11 · 06:16 PM CDT

CVE-2026-7210

9.8/10 · Must read/watch

NVDvuln

Summary
`xml.parsers.expat` and `xml.etree.ElementTree` use insufficient entropy for Expat hash-flooding protection, which allows a crafted XML document to trigger hash flooding.\r\n\r\nFully mitigating this vulnerability requires both updating libexpat to 2.8.0 or later and applying this patch.

CVECVE-2026-7210

SeverityCRITICAL

TypeUPDATED

PublishedMon, May 11 · 06:16 PM CDT

ModifiedWed, Jun 10 · 07:16 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46185

9.1/10 · Must read/watch

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: smb/client: fix out-of-bounds read in symlink_data() Since smb2_check_message() returns success without length validation for the symlink error response, in symlink_data() it is possible for iov->iov_len to be smaller than sizeof(struct smb2_err_rsp).

CVECVE-2026-46185

SeverityCRITICAL

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedThu, Jun 11 · 03:02 AM CDT

Open article ↗

Thu, May 28 · 09:16 AM CDT

CVE-2026-4408

9.0/10 · Must read/watch

NVDvuln

Summary
A flaw was found in Samba. A remote attacker can exploit a misconfiguration in Samba file servers and classic domain controllers that use the "check password script" feature. If this script is configured with the %u substitution character, the client-controlled username is passed without proper escaping of shell meta-c

CVECVE-2026-4408

SeverityCRITICAL

TypeUPDATED

PublishedThu, May 28 · 09:16 AM CDT

ModifiedWed, Jun 10 · 04:17 PM CDT

Open article ↗

Tue, May 26 · 03:16 PM CDT

CVE-2026-4480

9.0/10 · Must read/watch

NVDvuln

Summary
A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by sending a specially cra

CVECVE-2026-4480

SeverityCRITICAL

TypeUPDATED

PublishedTue, May 26 · 03:16 PM CDT

ModifiedWed, Jun 10 · 04:17 PM CDT

Open article ↗

Mon, Jul 26 · 08:15 PM CDT

CVE-2020-18171

8.8/10 · Worth your time

NVDvuln

Summary
TechSmith Snagit 19.1.0.2653 uses Object Linking and Embedding (OLE) which can allow attackers to obfuscate and embed crafted files used to escalate privileges. NOTE: This implies that Snagit's use of OLE is a security vulnerability unto itself and it is not. See reference document for more details.

CVECVE-2020-18171

SeverityHIGH

TypeUPDATED

PublishedMon, Jul 26 · 08:15 PM CDT

ModifiedWed, Jun 10 · 04:16 PM CDT

Open article ↗

Tue, May 26 · 06:16 PM CDT

CVE-2026-24187

8.8/10 · Worth your time

NVDvuln

Summary
NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.

CVECVE-2026-24187

SeverityHIGH

TypeUPDATED

PublishedTue, May 26 · 06:16 PM CDT

ModifiedThu, Jun 11 · 02:56 AM CDT

Open article ↗

Fri, Mar 20 · 02:16 AM CDT

CVE-2026-4447

8.8/10 · Worth your time

NVDvuln

Summary
Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

CVECVE-2026-4447

SeverityHIGH

TypeUPDATED

PublishedFri, Mar 20 · 02:16 AM CDT

ModifiedWed, Jun 10 · 08:17 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46166

8.8/10 · Worth your time

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: use safe list iteration in radar detect work The call to ieee80211_dfs_cac_cancel can cause the iterated chanctx to be freed and removed from the list. Guard against this to avoid a slab-use-after-free error.

CVECVE-2026-46166

SeverityHIGH

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 09:14 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46174

8.8/10 · Worth your time

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache Make sure resources are not improperly shared in the op cache and cause instruction corruption this way.

CVECVE-2026-46174

SeverityHIGH

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 09:08 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46198

8.8/10 · Worth your time

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix integer overflow on buff_pos Fixing an integer overflow present in batadv_iv_ogm_send_to_if. The size check is done using the int type in batadv_iv_ogm_aggr_packet whereas the buff_pos variable uses the s16 type. This could lead to an o

CVECVE-2026-46198

SeverityHIGH

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 05:09 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46212

8.8/10 · Worth your time

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: prevent use-after-free when deleting claims When batadv_bla_del_backbone_claims() removes all claims for a backbone, it does this by dropping the link entry in the hash list. This list entry itself was one of the references which need

CVECVE-2026-46212

SeverityHIGH

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 07:16 PM CDT

Open article ↗

Fri, Mar 27 · 05:16 PM CDT

CVE-2026-28367

8.7/10 · Worth your time

NVDvuln

Summary
A flaw was found in Undertow. A remote attacker can exploit this vulnerability by sending `\r\r\r` as a header block terminator. This can be used for request smuggling with certain proxy servers, such as older versions of Apache Traffic Server and Google Cloud Classic Application Load Balancer, potentially leading to u

CVECVE-2026-28367

SeverityHIGH

TypeUPDATED

PublishedFri, Mar 27 · 05:16 PM CDT

ModifiedWed, Jun 10 · 10:16 PM CDT

Open article ↗

Fri, Mar 27 · 05:16 PM CDT

CVE-2026-28368

8.7/10 · Worth your time

NVDvuln

Summary
A flaw was found in Undertow. This vulnerability allows a remote attacker to construct specially crafted requests where header names are parsed differently by Undertow compared to upstream proxies. This discrepancy in header interpretation can be exploited to launch request smuggling attacks, potentially bypassing secu

CVECVE-2026-28368

SeverityHIGH

TypeUPDATED

PublishedFri, Mar 27 · 05:16 PM CDT

ModifiedWed, Jun 10 · 10:16 PM CDT

Open article ↗

Fri, Mar 27 · 05:16 PM CDT

CVE-2026-28369

8.7/10 · Worth your time

NVDvuln

Summary
A flaw was found in Undertow. When Undertow receives an HTTP request where the first header line starts with one or more spaces, it incorrectly processes the request by stripping these leading spaces. This behavior, which violates HTTP standards, can be exploited by a remote attacker to perform request smuggling. Reque

CVECVE-2026-28369

SeverityHIGH

TypeUPDATED

PublishedFri, Mar 27 · 05:16 PM CDT

ModifiedWed, Jun 10 · 10:16 PM CDT

Open article ↗

Wed, May 27 · 11:16 AM CDT

CVE-2026-3012

8.0/10 · Worth your time

NVDvuln

Summary
A flaw was found in Samba’s certificate auto-enrollment Group Policy handling. When certificate auto-enrollment is enabled, Samba may retrieve a CA certificate over an unencrypted HTTP connection and install it into the local trust store without proper verification. An attacker with the ability to intercept or redirect

CVECVE-2026-3012

SeverityHIGH

TypeUPDATED

PublishedWed, May 27 · 11:16 AM CDT

ModifiedWed, Jun 10 · 04:17 PM CDT

Open article ↗

Mon, Jul 26 · 08:15 PM CDT

CVE-2020-18169

7.8/10 · Worth your time

NVDvuln

Summary
A vulnerability in the Windows installer XML (WiX) toolset of TechSmith Snagit 19.1.1.2860 allows attackers to escalate privileges. NOTE: Exploit of the Snagit installer would require the end user to ignore other safety mechanisms provided by the Host OS. See reference document for more details.

CVECVE-2020-18169

SeverityHIGH

TypeUPDATED

PublishedMon, Jul 26 · 08:15 PM CDT

ModifiedWed, Jun 10 · 04:16 PM CDT

Open article ↗

Tue, May 26 · 06:16 PM CDT

CVE-2026-24190

7.8/10 · Worth your time

NVDvuln

Summary
NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a user could cause improper access to GPU resources. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.

CVECVE-2026-24190

SeverityHIGH

TypeUPDATED

PublishedTue, May 26 · 06:16 PM CDT

ModifiedThu, Jun 11 · 02:56 AM CDT

Open article ↗

Tue, May 26 · 06:16 PM CDT

CVE-2026-24191

7.8/10 · Worth your time

NVDvuln

Summary
NVIDIA Display Driver for Windows contains a vulnerability where an attacker could cause a time-of-check time-of-use issue. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.

CVECVE-2026-24191

SeverityHIGH

TypeUPDATED

PublishedTue, May 26 · 06:16 PM CDT

ModifiedThu, Jun 11 · 02:57 AM CDT

Open article ↗

Tue, May 26 · 06:16 PM CDT

CVE-2026-24192

7.8/10 · Worth your time

NVDvuln

Summary
NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause an incorrect conversion between numeric types, leading to a heap buffer overflow. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code

CVECVE-2026-24192

SeverityHIGH

TypeUPDATED

PublishedTue, May 26 · 06:16 PM CDT

ModifiedThu, Jun 11 · 02:57 AM CDT

Open article ↗

Tue, May 26 · 06:16 PM CDT

CVE-2026-24193

7.8/10 · Worth your time

NVDvuln

Summary
NVIDIA Display Driver for Windows and Linux contains a vulnerability where an attacker could cause an out-of-bounds write. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.

CVECVE-2026-24193

SeverityHIGH

TypeUPDATED

PublishedTue, May 26 · 06:16 PM CDT

ModifiedThu, Jun 11 · 02:57 AM CDT

Open article ↗

Tue, May 26 · 06:16 PM CDT

CVE-2026-24194

7.8/10 · Worth your time

NVDvuln

Summary
NVIDIA Display Driver for Linux contains a vulnerability in a kernel mode layer handler, where a user could cause improper permission handling. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.

CVECVE-2026-24194

SeverityHIGH

TypeUPDATED

PublishedTue, May 26 · 06:16 PM CDT

ModifiedThu, Jun 11 · 02:57 AM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46145

7.8/10 · Worth your time

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: RDMA/mana: Validate rx_hash_key_len Sashiko points out that rx_hash_key_len comes from a uAPI structure and is blindly passed to memcpy, allowing the userspace to trash kernel memory. Bounds check it so the memcpy cannot overflow.

CVECVE-2026-46145

SeverityHIGH

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 09:17 PM CDT

Open article ↗

Thu, May 28 · 10:16 AM CDT

CVE-2026-46162

7.8/10 · Worth your time

NVDvuln

Summary
In the Linux kernel, the following vulnerability has been resolved: ice: fix double free in ice_sf_eth_activate() error path When auxiliary_device_add() fails, ice_sf_eth_activate() jumps to aux_dev_uninit and calls auxiliary_device_uninit(&sf_dev->adev). The device release callback ice_sf_dev_release() frees sf_dev, b

CVECVE-2026-46162

SeverityHIGH

TypeUPDATED

PublishedThu, May 28 · 10:16 AM CDT

ModifiedWed, Jun 10 · 09:13 PM CDT

Open article ↗

Ignore today

Generic low-detail roundups without primary reporting.
HN items that are interesting but not clearly security or AI relevant.
Creator videos that look more like promotion, podcast chatter, or evergreen content than time-sensitive signal outside the rolling window.