https://sra.io/wp-content/uploads/2026/06/TB20260617-FortiBleed-1.pdf 2026-06-17T20:48:20Z Security Risk Advisors en TB20260617 - FortiBleed 2026-06-17T20:48:20Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fsocket.dev%2Fblog%2Fglasswasm-malware-open-vsx-extensions&data=05%7C02%7Ckimberly.kaleta%40sra.io%7C64fa09c2fd8e4e6b108c08decc9f993d%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639173183099595246%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=FnTaeRmrOjR8wSNcu9Gu%2BbjwnZhtBsDZFlIotdlewhg%3D&reserved=0#new_tab 2026-06-17T19:11:57Z Security Risk Advisors en 🚩 GlassWASM hides malware inside VS Code extensions and uses the Solana blockchain as a resilient command-and-control platform. 2026-06-17T19:11:57Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.huntress.com%2Fblog%2Fpotemkin-loader-rmmproject-clickfix-attack&data=05%7C02%7Ckimberly.kaleta%40sra.io%7C2ea32b75575543e39c6808decc9f9b13%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639173183091387280%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=0Nzo5tTsTn%2BvCNSaz56paNirLG064Ss0pnK%2BGJQoNfs%3D&reserved=0#new_tab 2026-06-17T19:10:56Z Security Risk Advisors en 🚩 ClickFix intrusion chains Potemkin, RMMProject, EtherRAT, and Cloudflare tunnels into full network compromise. 2026-06-17T19:10:56Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Funit42.paloaltonetworks.com%2Fhijacking-vertex-ai-model%2F&data=05%7C02%7Ckimberly.kaleta%40sra.io%7Cf1004460c75a427a006208decc9f9ac5%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639173183091636936%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=FH2Hs02%2F54bfmyjxHQtkD4KVizZ8XWE3to6OUZKMzXg%3D&reserved=0#new_tab 2026-06-17T19:09:51Z Security Risk Advisors en Vertex AI SDK flaw enables cross-tenant model poisoning and remote code execution through bucket squatting attacks. 2026-06-17T19:09:51Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.genians.co.kr%2Fen%2Fblog%2Fthreat_intelligence%2Fnarwhalrat&data=05%7C02%7Ckimberly.kaleta%40sra.io%7C710f4e5bdefc4c3cdfb008decbdc7223%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639172344813976009%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=Tuhit30F4ufYM86lxo4anl9io4QrijIhKCrXadhgA9A%3D&reserved=0#new_tab 2026-06-16T19:30:53Z Security Risk Advisors en 🚩 NarwhalRAT Python-based malware campaign uses spear phishing and multi-stage loaders to deliver in-memory RAT targeting Korean users. 2026-06-16T19:30:53Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.welivesecurity.com%2Fen%2Feset-research%2Ffishmongers-arsenal-upgraded-sprysocks-windows%2F&data=05%7C02%7Ckimberly.kaleta%40sra.io%7C9b5b99803adb4777c44408decbdc7126%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639172344807526338%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=%2BSu1kOWHY%2FCefeGvN11s0bmUDsEEvNGqmY%2BegPuPdts%3D&reserved=0#new_tab 2026-06-16T19:29:53Z Security Risk Advisors en 🚩 ESET identifies new Windows variants of the SprySOCKS backdoor used by FishMonger to target government networks. 2026-06-16T19:29:53Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.security.com%2Fthreat-intelligence%2Fdragonforce-msteams-backdoor&data=05%7C02%7Ckimberly.kaleta%40sra.io%7Cfce8c03142074993261c08decbdc7019%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639172344806791833%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=wkabZ31QtepKRsX4tgpfVHLCLuyISK7iQax0%2BKy00c8%3D&reserved=0#new_tab 2026-06-16T19:28:56Z Security Risk Advisors en 🚩 DragonForce Uses Microsoft Teams TURN Relays to Hide C2 Traffic During Ransomware Intrusion 2026-06-16T19:28:56Z Blog