(Credit: monticellllo – stock.adobe.com)

(Credit: monticellllo – stock.adobe.com)

Max severity Joomla Content Editor extension flaw targeted in automated attacks

Laura FrenchJune 17, 2026

The flaw was added to CISA’s Known Exploited Vulnerabilities catalog with a three-day deadline.

RESOURCES

Identity
How to Build an AI Governance Framework for Identity
Identity
How to Evaluate and Select Identity and Access Management Tools
Identity
Identity-based attacks: how they work and how to defend against them
Identity
Identiverse 2026: Blended Identities and the challenge of IAM for AI
Identity
Identiverse 2026: Who is responsible for an AI agent’s actions?

PODCASTS

Leadership
Enterprise Browers in the Age of AI as CISO Role Changes and Leaders Harness Stress – Arunesh Chandra – BSW #452
Vulnerability Management
TSME, ARCH, Maine, Fable, PANOS, Doug’s Grandma, Vienna Sausages, Aaran Leyland – SWN #590
Application security
Why Does It Matter Who or What Created the Code? – Matias Madou – ASW #387
Data Security
Safe AI at scale, what happens after initial access, and the weekly enterprise news – Albert Estevez Polo, Shiva Pillay – ESW #463
Vulnerability Management
Phones, Sarlaccs, Maine, Chinese Sites, Ivanti, Bitlocker, Peoplesoft, and More – SWN #589

FEATURED

Perspectives Spotlight: Expert Insights

Perspectives Spotlight: Expert Insights

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Perspectives

In Brief

More Resources

Attackers drop DragonForce ransomware leveraging MS Teams relay systems

Steve ZurierJune 17, 2026

DragonForce ransomware abused Microsoft Teams relay infrastructure to hide C2 traffic.

(Credit: Claudio Bórquez – stock.adobe.com)

Critical Infrastructure Security

AUR suspends new registrations as 1,500-plus malicious packages flood repository

Laura FrenchJune 17, 2026

Malicious build scripts deploy a Rust-based infostealer and eBPF rootkit.

The Invisible Majority: Why Board Risk Reporting Misses Machine Identity Exposure

SC Editorial Intelligence , expert reviewedJune 16, 2026

Board Positioning for Identity Programs: The Platform Integration Blind Spot

SC Editorial Intelligence , expert reviewedJune 16, 2026

Identity as a Business Asset: Strategies for Security Leaders

SC Editorial Intelligence , expert reviewedJune 16, 2026

Your Third-Party Access Problem Is a Board-Level Liability

SC Editorial Intelligence , expert reviewedJune 16, 2026

This image captures a modern workspace where digital security is highlighted, featuring a hand on a laptop keyboard with security icons representing connectivity and protection. Tessel

Why Identity Budgets Are Still Sized for the Wrong Threat

SC Editorial Intelligence , expert reviewedJune 16, 2026

(Credit: Rafael Henrique – stock.adobe.com)

Network Security

Three critical FortiSandbox bugs rated 9.8 actively exploited

Steve ZurierJune 16, 2026

Active exploitation of FortiSandbox flaws prompt urgent patching calls from security experts.

Events