Now Playing
Space Surge, Icarus OAuth & Chrome Zero-Day CVE-2026-11645
Audio is available on Spreaker — see link below.
Cyberattacks on space infrastructure have surged 400% amid escalating geopolitical conflict, while an Icarus OAuth breach hits top security vendors and a Chrome V8 zero-day is actively exploited. Today's briefing also covers Bajaj Auto ransomware, FortiBleed's AI-automated domain takeovers, and a Five Eyes warning on frontier AI weaponization.
Audio is available on Spreaker — see link below.
Cyberattacks against space infrastructure have surged four hundred percent since U.S. and Israeli military operations against Iran began. That's not a rounding error.
The supply chain story of the day is the Klue breach, and the victim list is striking. A new extortion group called Icarus stole OAuth tokens through a compromised integration between Klue and Salesforce on June eleventh.
India's largest two-wheeler manufacturer, Bajaj Auto, disclosed a ransomware attack affecting its parent systems and its subsidiary BATL. The attack was confirmed on June twenty-third.
The FortiBleed campaign deserves close attention. Attackers used GPU-powered hash cracking to break FortiGate firewall credentials, then pivoted through OpenFortiVPN access, and deployed an AI penetration testing agent to achieve full domain control across thousands of networks.
That compression is exactly what the Five Eyes intelligence agencies flagged in their joint statement. The U.S., UK, Canada, Australia, and New Zealand issued a coordinated public warning that frontier AI models are reducing the time between vulnerability discovery and active exploitation from years to months.
One more item to track. A Chrome V8 zero-day, catalogued as CVE-twenty-twenty-six-eleven-six-four-five, is being actively exploited in the wild.
Chapter summary auto-generated from the verified script. Listen to the full episode for the complete content.