Cybersecurity Updates: Splunk Critical Flaw, Anthropic AI Restrictions, and Global Security Laws - June 13, 2026

CybersecSaturday, June 13, 2026

50 articles analyzed by AI / 108 total

Key points

Audio player

0:00 / 0:00

•A critical security vulnerability (CVE-2026-20253) rated 9.8 CVSS was patched by Splunk on June 13, 2026, which had allowed attackers to execute remote code without authentication, posing severe risks of system compromise and data breaches in enterprise environments.[The Hacker News RSS]
•Financial institutions continue to be targeted, as evidenced by a cybersecurity incident at the Jamaica Stock Exchange on June 12, 2026, that compromised personal user data, and China's release of new stringent cybersecurity guidelines on June 13 to protect financial services data in a large-scale national initiative.[Jamaica Observer][whbl.com]
•Supply chain attacks remain a significant threat vector, highlighted by the Axios npm package registry compromise detected through metadata analysis before any installs, reported on June 13, 2026, underscoring vulnerabilities in open-source software ecosystems.[Reddit /r/netsec]
•On June 13, 2026, two Chrome extensions masquerading as ad blockers were found stealing AI chat data from services like ChatGPT and Claude, affecting around 90,000 users and raising serious concerns about user privacy and the security of AI-driven communication platforms.[Reddit /r/netsec]
•The US Department of Defense continues emphasizing improved cybersecurity with the selection of ATX Defense on June 12, 2026, for a cybersecurity compliance program aimed at strengthening military cybersecurity protocols and defense IT infrastructure.[The Defense Post]
•Critical infrastructure sectors face escalating cybersecurity risks, with London’s UK rail system issuing alerts on June 13, 2026, regarding cyberattacks threatening emergency safety systems serving over 1 billion passenger journeys, highlighting public transportation vulnerabilities.[Travel And Tour World]
•The Senate Armed Services Committee proposed a reorganization of Pentagon IT and cyber leadership on June 12, 2026, aiming to enhance cybersecurity governance and aggressive defense against escalating cyber threats within the US military command structure.[DefenseScoop]
•Amazon’s cybersecurity research team reported on June 13, 2026, utilizing Anthropic AI models to proactively identify cybersecurity weaknesses, illustrating the growing role of AI technologies in enhancing security assessments and defense mechanisms.[Washington Examiner]
•Mozambique strengthened its cyber defense by enacting comprehensive cybersecurity and cybercrime laws including regulations on the national payments system effective June 13, 2026, reinforcing legal and technical frameworks to combat cyber threats nationally.[CLUB OF MOZAMBIQUE]

Relevant articles

Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication

10/10

On June 13, 2026, Splunk released security updates addressing CVE-2026-20253, a critical vulnerability rated 9.8 CVSS, that allows remote code execution without authentication, risking significant data breaches and system compromises in Splunk Enterprise deployments.

The Hacker News RSS · 6/13/2026, 1:23:03 PM

JSE says personal information affected in cybersecurity incident - Jamaica Observer

9/10

On June 12, 2026, the Jamaica Stock Exchange disclosed a cybersecurity incident that compromised the personal information of its users, underscoring the importance of reinforced security measures within financial institutions in Jamaica.

Jamaica Observer · 6/12/2026, 11:28:00 PM

PromptSnatcher: AdBlocker stealing Ai Chats - 90k installs

8/10

Two malicious Chrome extensions posing as ad blockers were found on June 13, 2026, exfiltrating prompts and responses from AI chat services like ChatGPT and Claude, impacting approximately 90,000 users and raising concerns about AI data privacy.

Reddit /r/netsec · 6/13/2026, 10:11:13 PM

US Army Selects ATX Defense for Cybersecurity Compliance Program - The Defense Post

8/10

On June 12, 2026, the US Army selected ATX Defense to implement a cybersecurity compliance program aimed at enhancing military cybersecurity standards and defense sector security protocols.

The Defense Post · 6/12/2026, 2:57:20 PM

The Axios npm compromise was visible in registry metadata before anyone ran npm install

8/10

On June 13, 2026, it was reported that the Axios npm package registry compromise was detectable through registry metadata analysis prior to any npm install commands, highlighting a supply chain attack vector in software development ecosystems.

Reddit /r/netsec · 6/13/2026, 6:35:01 AM

London, UK Rail Cybersecurity Alert Over 1 Billion Passenger Journeys What Others Are Missing as Digital Attacks Turn Emergency Safety Systems into a Hidden Risk - Travel And Tour World

8/10

A cybersecurity alert was issued on June 13, 2026, regarding London’s UK rail system where digital attacks threaten emergency safety systems that serve over 1 billion passenger journeys, exposing critical risks to public transportation safety.

Travel And Tour World · 6/13/2026, 6:03:08 AM

SASC proposes reorganization of Pentagon’s IT, cyber leadership - DefenseScoop

8/10

The Senate Armed Services Committee proposed on June 12, 2026, a reorganization of the Pentagon's IT and cyber leadership intended to improve cybersecurity management and strengthen defense sector cyber resilience.

DefenseScoop · 6/12/2026, 8:37:01 PM

Amazon researchers use Anthropic AI to find cybersecurity weaknesses: Report - Washington Examiner

7/10

On June 13, 2026, Amazon researchers reported using Anthropic AI technology to identify cybersecurity vulnerabilities, demonstrating the application of artificial intelligence in proactive security assessments and threat mitigation.

Washington Examiner · 6/13/2026, 5:38:00 PM

China issues guidelines on financial services data amid broader cybersecurity push - whbl.com

7/10

On June 13, 2026, China introduced new cybersecurity guidelines focused on securing financial services data as part of a broader national push to strengthen cybersecurity protections within its financial sector.

whbl.com · 6/13/2026, 2:23:09 PM

Mozambique: Cybercrime and Cybersecurity Laws, National Payments System Law signed into force - CLUB OF MOZAMBIQUE

6/10

On June 13, 2026, Mozambique enacted new cybersecurity and cybercrime laws including regulations for its national payments system to bolster legal frameworks and enhance cyber defenses nationwide.

CLUB OF MOZAMBIQUE · 6/13/2026, 5:41:42 PM