https://sra.io/wp-content/uploads/2026/06/TB20260611-Payroll-Pirates.pdf#new_tab 2026-06-12T17:54:15Z Security Risk Advisors en TB20260612 - Payroll Pirates 2026-06-12T17:54:03Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fblog.lumen.com%2Fexpanded-jdy-iot-and-soho-botnet-enables-rapid-vulnerability-exploitation%2F&data=05%7C02%7Ckimberly.kaleta%40sra.io%7C7660c33105b34c7123d608dec7ebbe66%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639168012507470791%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=SjZKw6T%2FysHvZA99ZPOe%2BUOErNdiLu53u27p62ofKXA%3D&reserved=0#new_tab 2026-06-11T19:46:29Z Security Risk Advisors en JDY IoT botnet expansion enables large-scale reconnaissance and rapid targeting of newly disclosed vulnerabilities. 2026-06-11T19:46:29Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.oracle.com%2Fsecurity-alerts%2Falert-cve-2026-35273.html&data=05%7C02%7Ckimberly.kaleta%40sra.io%7C7bbec3963a8e47a11ad208dec7ebbc84%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639168012494581975%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=EzqaJKTqGyQZiGA3eEjUQFbXVqjosy1oCRF7zOrZ6%2BU%3D&reserved=0#new_tab 2026-06-11T19:45:27Z Security Risk Advisors en Oracle PeopleSoft PeopleTools vulnerability enables unauthenticated remote code execution with active exploitation suspected. 2026-06-11T19:45:27Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.blog%2Fchangelog%2F2026-06-09-upcoming-breaking-changes-for-npm-v12%2F&data=05%7C02%7Ckimberly.kaleta%40sra.io%7C47c710968c264e43af4b08dec7ebbe9f%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639168012494251534%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=Yl515hF7hqvD7G2QUyIbZrihNtYQW9KWtWZ0yL6nsdk%3D&reserved=0#new_tab 2026-06-11T19:44:28Z Security Risk Advisors en npm v12 introduces secure-by-default install restrictions to reduce supply chain code execution risk 2026-06-11T19:44:28Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fnvd.nist.gov%2Fvuln%2Fdetail%2FCVE-2026-11645&data=05%7C02%7Ckimberly.kaleta%40sra.io%7Ccca26e92e8bc4a1e5d2f08dec709dbaa%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639167042352902963%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=nYUT5pczHiwRz1Hmn4HEl5Uq7t%2FDtRzKz%2FJqIFYkSps%3D&reserved=0#new_tab 2026-06-10T20:47:57Z Security Risk Advisors en Google Patches Actively Exploited Chrome V8 Zero-Day Allowing Arbitrary Code Execution 2026-06-10T20:47:57Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.bleepingcomputer.com%2Fnews%2Fsecurity%2Fservicenow-discloses-security-incident-exposing-customer-data%2F&data=05%7C02%7Ckimberly.kaleta%40sra.io%7C3ab19d10ea7e4b9bf37c08dec709db07%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639167042344347500%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=%2BrDbGQuDe4%2FEU10PMhRvxPgWSWaPUM1khONWnyZGNTU%3D&reserved=0#new_tab 2026-06-10T20:46:50Z Security Risk Advisors en ServiceNow confirms active exploitation of unauthenticated API flaw enabling unauthorized data access in customer instances. 2026-06-10T20:46:50Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.bleepingcomputer.com%2Fnews%2Fsecurity%2Fivanti-max-severity-sentry-flaw-allows-code-execution-as-root%2F&data=05%7C02%7Ckimberly.kaleta%40sra.io%7C79bab380d9b7481a168708dec709d972%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639167042317086612%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=iE7Oq5mRLxPk5GLOlhSm8YLZRtJJTrWHb5S5fzjPFVE%3D&reserved=0#new_tab 2026-06-10T20:45:29Z Security Risk Advisors en Ivanti patches critical Sentry vulnerabilities that could enable root-level remote code execution and unauthorized administrative access. 2026-06-10T20:45:29Z Blog