![Cybersecurity News | Daily Recap [11 Jun 2026]](https://www.hendryadrian.com/tweet/image/DailyRecap.png "Cybersecurity News | Daily Recap [11 Jun 2026]")
Daily Recap, AI-driven attacks are straining MSP security stacks as tools like OnyxC2 Stealer promise “enterprise-grade” theft, while the Miasma worm source code was briefly leaked on GitHub. Separately, the China-linked JDY botnet expanded beyond 1,500 devices to conduct reconnaissance and target U.S. military networks, while OpenAI said a likely Chinese influence operation tried to use ChatGPT to stir debate on data centers. #OnyxC2 #OnyxC2Stealer #Miasma #GitHub #JDY #ChatGPT #OpenAI #U.S. military
Threats & Malware
- AI-driven attacks are straining MSP security stacks, while new tools like OnyxC2 Stealer offer “enterprise-grade” theft for $250/month and the Miasma worm source code briefly leaked on GitHub – AI Limits, OnyxC2 Stealer, Miasma Leak
- The China-linked JDY botnet has grown to more than 1,500 devices for reconnaissance and is also targeting U.S. military networks – JDY Botnet, Military Targeting
- OpenAI says a likely Chinese influence operation tried to use ChatGPT to stir debate on data centers – AI Influence
Exploited Vulnerabilities
- Langflow path traversal and unauthenticated RCE flaws are being actively exploited, exposing AI dev platforms to remote takeover – Langflow RCE, CVE-2026-5027, Langflow Exploited
- Ivanti Sentry and other critical vulnerabilities are under attack, with Ivanti, Fortinet, and SAP releasing fresh patches – Ivanti Exploit, Critical Patches
- Microsoft fixed a BitLocker recovery bug on Windows Server 2025 and patched an Exchange Server zero-day already exploited in attacks, alongside its largest Patch Tuesday on record – BitLocker Fix, Exchange Zero-Day, Patch Tuesday
- CISA ordered federal agencies to patch some exploited flaws within 3 days, tightening remediation timelines for high-risk bugs – CISA 3-Day, Patch Directive, New Directive
Breach & Extortion
- Coupang was hit with a record $409 million data-breach fine in South Korea, while the University of Nottingham breach affected over 450,000 students – Coupang Fine, Nottingham Breach
- Oracle PeopleSoft servers were hacked in ShinyHunters data-theft attacks, highlighting continued pressure on enterprise platforms – PeopleSoft Hack
- A major Australian sugar producer was disrupted by a cyberattack that shut down sugar mills and affected harvest operations – Sugar Mills
Supply Chain & Enterprise Security
- GitHub announced new npm security changes to help curb supply-chain attacks across the JavaScript ecosystem – npm Security
- Siemens said Desigo CC files were mistakenly flagged as malware by security engines, underscoring false-positive risks for industrial software – Desigo CC
- CISA also issued a new directive changing how agencies prioritize vulnerability remediation, signaling a more structured patching approach – Remediation Order