Skip to content
Auto-CTI

What has changed?

Comparing 17 June 2026 with the previous day 10 June 2026.

Newly added

20
NEW Nightmare Eclipse C2
70

Microsoft Working on Patch for 'RoguePlanet' Zero-Day

The threat is driven by the Nightmare Eclipse group as part of a targeted campaign against Microsoft, with multiple zero-days (BlueHammer, RedSun, UnDefend) already exploited in the wild.

Critical

Newly KEV-listed

0

No changes in this category.

Score moved

0

No changes in this category.

No longer in report

52
Kimsuky B3
80

Kimsuky targets organizations with PebbleDash-based tools

Kimsuky actively deploys PebbleDash-based tools (httpMalice, httpSpy, DWAgent) against Western organizations; the newer HTTP variant establishes persistence via Windows services (CacheDB) and mirrors established Kimsuky TTPs.

Critical
NEW A3
47

OpenSSL: Multiple Vulnerabilities

BSI warning regarding multiple OpenSSL vulnerabilities without specific CVE numbers or version information , likely a summary or preparatory advisory.

Critical
NEW A3
20

CVE-2026-44963

The vulnerability enables remote code execution by authenticated domain users on backup systems, requiring prioritization in environments with strict domain access controls.

High EPSS 0%
NEW A3
20

Microsoft Apps: Multiple Vulnerabilities

BSI warns of multiple vulnerabilities in Microsoft 365 Copilot, PowerToys, and other Microsoft products with potential for privilege escalation and code execution; no CVE identifiers disclosed, so patch status and exploitation timeline unclear.

High
NEW C3
17

Microsoft Patch Day with open end: Researcher discloses RoguePlanet zero-day

A security researcher under the pseudonym Nightmare Eclipse has disclosed additional zero-day vulnerabilities in BitLocker (YellowKey and GreenPlasma) that are already public and addressed in this patch cycle; this reveals strategic timing of disclosure campaigns against Microsoft.

High
NEW Nightmare Eclipse (Chaotic Eclipse) C3
17

New Windows Zero-Day Exploit 'RoguePlanet' Released

A security researcher (Nightmare Eclipse) has publicly released a proof-of-concept for a Windows zero-day to pressure Microsoft after the company failed to meet disclosure requirements.

High
A3
0

Microsoft Patch Day May 2026

Routine BSI Patch Day advisories are standard security updates with no specific strategic implications for geopolitical or nation-state activity.

Medium
A3
0

Intel Processor: Multiple Vulnerabilities

The BSI alert references multiple local vulnerabilities in Intel processors without citing specific CVE numbers or active exploitation; this suggests a generic or aggregated advisory, possibly within the context of periodic security reviews.

Medium
ESC