1st June – Threat Intelligence Report

Weekly Threat Intelligence Bulletin summarizing multiple high-impact incidents: large data breaches (Carnival ~6M, Charter ~4.9M, Lithuania Centre of Registers >600k, Station Casinos), active exploitation of critical vulnerabilities (Palo Alto CVE-2026-0257 being exploited, Ghost CVE-2026-26980 actively exploited, unpatched Gogs RCE CVSS 9.4), AI-enabled phishing and malware campaigns (GREYVIBE, malicious npm package exfiltrating developer files), and targeted campaigns including an Iran-linked destructive operation against LA Metro plus financial/crypto-focused campaigns and fraud networks ahead of the World Cup.