Cybersecurity Update: FortiBleed Hits 86K Devices, Unpatchable Apple A12/A13 Exploit, Klue Data Breach - June 19, 2026

CybersecFriday, June 19, 2026

50 articles analyzed by AI / 142 total

Key points

Audio player

0:00 / 0:00

•On June 19, 2026, a critical unpatchable exploit named 'usbliter8' was discovered compromising Apple A12 and A13 SecureROM boot chains. This permanent vulnerability enables attackers to execute arbitrary code at a low-level hardware stage, impacting device security irrevocably.[The Hacker News RSS]
•The FBI highlighted an alarming rise in malware-infected Traffic Distribution Systems (TDS) used to manage malicious internet traffic, signaling sophisticated infrastructure fueling cyberattacks. This alert issued on June 19, 2026, underscores the growing need for internet traffic monitoring to combat threats.[Cybersecurity Insiders][Cybersecurity Insiders]
•CISA issued multiple warnings on June 19, 2026, regarding the FortiBleed vulnerability affecting 86,644 Fortinet FortiGate devices, urging organizations to patch and harden these systems to prevent credential exposures and active exploits. The severity of this flaw threatens critical network security infrastructures globally.[The Hacker News][The Hacker News RSS][Homeland Security Today][Homeland Security Today]
•Apple patched a critical security flaw on June 19, 2026, in Beats Studio Buds that permitted attackers in close proximity to spy via the microphone. The CVE-2025-20701 vulnerability was assigned a CVSS score of 8.8, signaling a high-severity risk to user privacy.[The Hacker News RSS]
•Accenture made a major investment by acquiring cybersecurity leader Dragos and other firms for $4.2 billion as of June 18, 2026, signaling a strong focus on operational technology and industrial cybersecurity, especially around critical infrastructure risk management.[ChannelLife Australia][Telecompaper][Industrial Cyber][Industrial Cyber][ChannelLife Australia][Telecompaper]
•The UK's NCSC on June 19, 2026, warned of ongoing sophisticated cyberattacks targeting national infrastructure from Russia, China, and Iran, emphasizing that these sustained threats require increased resilience and robust defensive postures to protect critical services.[Industrial Cyber]
•A breach at Klue on August 3, 2023, compromised OAuth tokens leading to Salesforce customer data theft and impacting cybersecurity firm Huntress. This incident reflects vulnerabilities in supply chain security and the risks inherent in third-party app integrations.[Help Net Security][Help Net Security][SecurityWeek][CISO Series][The Hacker News RSS]
•Law enforcement agencies from multiple countries disrupted SocGholish's command-and-control servers on June 19, 2026, successfully removing malware infections from nearly 15,000 WordPress sites. This coordinated action significantly curtailed a dangerous cybercriminal operation.[The Hacker News RSS]
•The Squidbleed vulnerability, disclosed on June 19, 2026, impacts all Squid Proxy versions by leaking sensitive internal memory in their default configuration, echoing the historic Heartbleed flaw and posing substantial risks to network security infrastructures using Squid.[Reddit /r/netsec]
•The Gentlemen ransomware-as-a-service (RaaS) group employed the GentleKiller EDR framework to disable over 400 security processes prior to ransomware deployment, illustrating an advanced technique to evade detection and enhance attack success rates, as reported June 19, 2026.[The Hacker News RSS]

Relevant articles

Unpatchable 'usbliter8' Exploit Breaks Apple A12 and A13 SecureROM Boot Chain

9/10

Researchers developed 'usbliter8', an unpatchable exploit affecting Apple A12 and A13 SecureROM boot chains, enabling arbitrary code execution with permanent impact on devices. This vulnerability dates from June 19, 2026, and poses significant security risks for affected Apple chipsets.

The Hacker News RSS · 6/19/2026, 6:37:41 PM

FBI alerts about Malware infected Traffic Distribution Systems TDS - Cybersecurity Insiders

9/10

On June 19, 2026, the FBI issued an alert about malware-infected Traffic Distribution Systems (TDS) used to coordinate malicious internet traffic, highlighting an increasing cybersecurity threat from sophisticated malware infrastructure.

Cybersecurity Insiders · 6/19/2026, 3:25:25 PM

CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices - The Hacker News

9/10

CISA warned on June 19, 2026, that the FortiBleed vulnerability affected 86,644 Fortinet FortiGate devices, posing severe security threats. The agency urged users to patch and harden devices to prevent exploitation.

The Hacker News · 6/19/2026, 2:00:00 PM

Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone

9/10

Apple released a security update on June 19, 2026, to patch a high-severity vulnerability (CVE-2025-20701) in Beats Studio Buds that allowed nearby attackers to eavesdrop via the microphone, rated CVSS 8.8.

The Hacker News RSS · 6/19/2026, 6:36:09 AM

Accenture buys Dragos & cybersecurity firms for USD $4.2bn - ChannelLife Australia

9/10

Accenture acquired cybersecurity company Dragos and other firms for USD 4.2 billion as announced on June 18, 2026, significantly expanding its cybersecurity portfolio and capabilities.

ChannelLife Australia · 6/18/2026, 11:30:00 PM

NCSC’s Horne warns UK infrastructure under sustained cyber pressure from Russia, China and Iran; urges resilience - Industrial Cyber

8/10

The UK's National Cyber Security Centre (NCSC) warned on June 19, 2026, about persistent cyber pressure on critical UK infrastructure from state actors Russia, China, and Iran, urging enhanced resilience strategies.

Industrial Cyber · 6/19/2026, 8:23:48 AM

Klue breach lead to Salesforce data theft, Huntress affected - Help Net Security

8/10

A data breach at Klue on August 3, 2023, led to the theft of Salesforce data affecting cybersecurity firm Huntress. The incident exposed vulnerabilities in supply chain security and OAuth token management.

Help Net Security · 6/19/2026, 12:57:39 PM

Operation Endgame Disrupts SocGholish Servers, Cleans 14,971 WordPress Sites

8/10

On June 19, 2026, authorities from the Netherlands, Canada, Germany, and the U.S. disrupted SocGholish's malicious servers, cleaning infections from nearly 15,000 WordPress sites and severely impacting cybercriminal operations.

The Hacker News RSS · 6/19/2026, 3:07:54 PM

Squidbleed (CVE-2026-47729) - Heartbleed-style vulnerability that leaks internal memory from every version of Squid Proxy, in its default configuration

8/10

The Squidbleed vulnerability (CVE-2026-47729), disclosed on June 19, 2026, affects every version of Squid Proxy by leaking internal memory in default configurations, reminiscent of the infamous Heartbleed bug.

Reddit /r/netsec · 6/19/2026, 10:21:41 AM

The Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security Processes

7/10

The Gentlemen ransomware-as-a-service (RaaS) operation deployed the GentleKiller EDR framework targeting over 400 security processes to cripple defenses before encryption, illustrating advanced ransomware tactics.

The Hacker News RSS · 6/19/2026, 6:33:07 PM