Skip to content
Auto-CTI

What has changed?

Comparing 16 June 2026 with the previous day 15 June 2026.

Newly added

20
NEW China (state-sponsored APT) C3
75

China Uses Dual-Method Cyberattack on Czech Orgs

Chinese state-sponsored actors are conducting coordinated dual-layer phishing campaigns against European targets, demonstrating increased operationalization of supply-chain attack patterns in countries adjacent to the DACH region.

Critical
NEW B3
20

From a VHDX File to a Remcos RAT

Remcos RAT campaign employs VHDX containers and multi-layered obfuscation to evade EDR solutions and process-monitoring rules; email-delivered ZIP vector remains largely undetected.

High

Newly KEV-listed

0

No changes in this category.

Score moved

0

No changes in this category.

No longer in report

12
KEV NEW C1
97

Palo Alto Warns of Active Exploitation of PAN-OS GlobalProtect VPN Flaw

Unknown threat actors are actively exploiting an authentication bypass in Palo Alto VPN gateways to gain unauthorized access , a critical risk for networked manufacturing organizations in the DACH region whose partners or suppliers operate such systems.

Critical CVSS 7.8 EPSS 60%
NEW A2
78

CVE-2026-12057

The vulnerability allows attackers to bypass the PDF sandbox via crafted documents with embedded JavaScript and execute arbitrary code , a significant risk for PDF processing in production environments.

Critical CVSS 8.6 EPSS 0%
NEW A3
20

Google Chrome / Microsoft Edge: Multiple Vulnerabilities

The BSI warning documents multiple security vulnerabilities in both browsers used in the company without specific CVE references; this suggests a vulnerability aggregation warning that is regularly updated.

High
ESC