ThreatNote Briefing #3 – Week of May 25 – June 8, 2026
ThreatNote Briefing | Week of May 25 - June 8, 2026
Weekly intelligence for Indian cybersecurity practitioners.
admin
The Permission Was the Easy Part
India's digital lending enforcement actions made one thing clear: the permission was never the story. The downstream use of the data was.
That distinction - between granting access and understanding consequences - is one most smartphone users, and many security professionals, still haven't fully internalized.
CVE-2026-49494 – Comodo Internet Security Inspect.sys IPv6 Integer Underflow Remote Denial of Service
CVE ID :CVE-2026-49494 Published : June 7, 2026, 1:16 p.m. | 5 hours, 20 minutes ago Description :Comodo Internet Security’s firewall driver Inspect.sys contains an integer underflow in its IPv6 packet parser. The parser decrements an unsigned 64-bit payload-length value (taken from…
CVE-2026-26422 – Clash Verge Service IPC Local Privilege Escalation
CVE ID :CVE-2026-26422 Published : June 6, 2026, 11:16 p.m. | 19 hours, 19 minutes ago Description :clash-verge-service-ipc before 2.3.0 has a world-reachable IPC endpoint, leading to local privilege escalation. Severity: 8.4 | HIGH Visit the link for more details, such as…
CVE-2026-11413 – JingDong JD Cloud Box AX6600 jdcweb_rpc set_macfilter stack-based overflow
CVE ID :CVE-2026-11413 Published : June 6, 2026, 2:16 p.m. | 4 hours, 14 minutes ago Description :A security vulnerability has been detected in JingDong JD Cloud Box AX6600 4.5.3.r4546. The impacted element is the function set_macfilter of the file The…
New ChatGPT Lockdown Mode Limits Tools That Could Enable Data Exfiltration
OpenAI has begun rolling out a new Lockdown Mode to ChatGPT for eligible personal accounts to reduce the risk of data exfiltration arising from prompt injection attacks. The feature is primarily designed for people and organizations that handle sensitive data…
Free Apps Are Quietly Turning Smart TVs Into Web-Scraping Proxies for AI
A researcher has reverse-engineered the iOS SDK that Bright Data embeds in consumer apps and documented how it turns devices, including always-on smart TVs, into exit nodes that relay web-scraping traffic for a data business Bright Data markets heavily to…
CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity security flaw impacting SolarWinds Serv-U multi-protocol file server software to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-2026-28318 (CVSS score:…
AI Agent Uncovers 21 Zero-Days in FFmpeg; Chrome Patches Record 429 Bugs
Two things landed within days of each other this week. A security startup reported 21 previously unknown vulnerabilities in FFmpeg, the media library inside almost everything that touches video, all of them found by an autonomous AI agent. The same…
IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks
Multiple software supply chain attacks have hit the npm ecosystem, with threat actors using both malicious and poisoned versions of over 50 legitimate packages to distribute a Rust-based information stealer and a self-spreading worm, respectively. According to JFrog, the information…