Cybersecurity News | Daily Recap [30 Jun 2026]

Cybersecurity News | Daily Recap [30 Jun 2026]
Daily Recap, BlueHammer and SimpleHelp weaknesses continue to be exploited, with CISA noting BlueHammer has entered ransomware-gang playbooks, while Oracle PeopleSoft issues have also driven data theft and malware activity tied to ShinyHunters. Meanwhile, Blackfield ransomware demanded $2 million from Nidec Corporation, Aflac Japan disclosed a breach impacting 4.38 million people, and Mustang Panda used Zoho WorkDrive as a command channel against Indian government targets. #BlueHammer #SimpleHelp #OracleEBS #PeopleSoft #CISA #Blackfield #Nidec #AflacJapan #ShinyHunters #NAIC #MustangPanda #ZohoWorkDrive #Signal #WhatsApp

Ransomware & Exploitation

  • BlueHammer, SimpleHelp, and Oracle E-Business/PeopleSoft flaws are being actively exploited to deploy malware, steal data, and fuel ransomware operations, with CISA warning that BlueHammer is now in ransomware-gang playbooks – BlueHammer Exploit, CISA Alert, SimpleHelp Flaw, SimpleHelp Malware, Oracle E-Business, PeopleSoft Breach
  • Blackfield ransomware demanded $2 million from Nidec Corporation, underscoring how financially motivated crews continue targeting large enterprises – Blackfield Ransomware
  • Researchers say ransomware syndicates increasingly operate like corporate-style organizations, improving scale, specialization, and extortion efficiency – Ransomware Syndicates

Data Breaches & Identity Theft

  • Aflac Japan disclosed a breach affecting 4.38 million people after a subsidiary hack, with a follow-up report confirming the insurance giant’s exposure – Aflac Japan, Aflac Breach
  • Nissan said employee data was exposed in Oracle PeopleSoft attacks, adding to a broader wave of enterprise credential and HR-system compromises – Nissan PeopleSoft, Nissan Zero-Day
  • ShinyHunters reportedly stole public data in a PeopleSoft breach affecting the NAIC, further highlighting abuse of enterprise application weaknesses – NAIC Breach

State-Sponsored Espionage

  • Mustang Panda used Zoho WorkDrive as a command channel in attacks on Indian government targets, showing continued use of legitimate cloud services for covert control – Mustang Panda
  • Russian intelligence reportedly used fake support texts to steal messaging credentials, while the U.S. announced a $10 million reward tied to Russian cyber activity targeting Signal and WhatsApp users – Fake Texts, $10M Reward, Reward Details

AI & Browser Threats

  • New research shows decades-old Bash tricks can expose AI coding agents and Claude Code workflows to supply-chain abuse and machine hijacking through seemingly harmless repositories – Bash Supply Chain, Claude Attack
  • A malicious Perplexity Chrome extension intercepted searches and address-bar input, illustrating how browser add-ons remain a high-risk vector for credential and data theft – Perplexity Extension
  • Experts warn agentic AI has an identity problem, while a separate analysis says token usage and billing can create hidden security and operational risks – Agentic AI Identity, AI Token Costs
  • U.S. lawmakers are considering a bill to create a federally vetted list of secure, trustworthy AI agents – AI Agent Bill

Platform Security & Privacy

  • Microsoft added smarter bot protection to Teams meetings and extended Windows Server 2022 hotpatching support through October 2027 – Teams Protection, Hotpatching
  • WhatsApp is rolling out usernames to help users hide their phone numbers and improve privacy across chats – WhatsApp Usernames, Username Rollout, Privacy Feature
  • The Supreme Court issued rulings strengthening digital privacy protections, including limits around cellphone location histories and geofence warrants – Geofence Ruling, Chatrie Ruling

Policy, Enforcement & Other

  • The DHS is set to unveil a replacement council for critical infrastructure cybersecurity, while the U.S. also reported roughly 400 wins against illegal World Cup streaming sites – DHS Council, Streaming Takedowns
  • Kali Linux 2026.2 shipped with 9 new tools and NetHunter updates for security practitioners – Kali Update
  • The U.S. Supreme Court also approved mail-in ballots that arrive after Election Day, a ruling with potential downstream election-security implications – Ballot Ruling

Cybersecurity News | Daily Recap – hendryadrian.com