STRATQUAD
CYBER THREAT INTELLIGENCE BRIEF
Daily Brief · 19 June 2026 · 24h windowRISKHIGH
StratQuad CTI Daily Brief, 19 June 2026
Compiled from 52 monitored sources · 1308 articles reviewed

Today’s Briefing

CISA and the NCSC have both issued urgent advisories following global targeting of Fortinet firewalls and VPN gateways in a campaign designated FortiBleed, which involves the exposure of compromised credentials for approximately 74,000 internet-accessible Fortinet devices across government and private sector organisations. Separately, CISA added CVE-2026-20253 to the Known Exploited Vulnerabilities catalogue, a missing authentication flaw in Splunk Enterprise that permits unauthenticated file creation or truncation through a PostgreSQL sidecar service endpoint. Google Threat Intelligence published reporting on a North Korea-nexus supply chain compromise of the widely used Axios NPM package.

Top Stories

  1. CISA Urges Hardening Fortinet Devices After Reports of Credential Exposure
  2. Alert: NCSC issues advice following global targeting of Fortinet firewalls and VPN gateways
  3. CISA Adds One Known Exploited Vulnerability to Catalog
  4. The 'vibe coding spectrum' approach to AI-assisted software development

Full brief available to subscribers

The complete operator brief — action items with patch deadlines, the vulnerability appendix and named actor activity — goes out by email each morning. Subscribe free to receive it.

Get the brief at 07:00, every weekday.

The day's UK security intelligence, read and ranked so you start informed: the stories that matter, the IOCs your SIEM needs, and the actions worth taking first.

← All briefs