Show Notes - 2026-07-01 Stories Covered: - Today: - Langflow RCE Actively Exploited for Cryptocurrency Mining (CVE-2026-33017, CVE-2025-3248) (https://thehackernews.com/2026/06/langflow-rce-exploited-to-deploy-monero.html) - Citrix NetScaler SAML Memory Disclosure Flaw (CVE-2026-8451) (https://cyberscoop.com/citrix-netscaler-flaw-cve-2026-8451-citrixbleed/) - Anonymous Researcher Drops 15+ Zero-Day Exploits Without Vendor Notification (https://news.risky.biz/risky-bulletin-researcher-drops-giant-cache-of-zero-day-exploits/) - Massive Azure CLI Password Spray Bypasses MFA via ROPC Flow (https://www.securityweek.com/massive-password-spray-campaign-targeting-azure-cli/) - EvilTokens Affiliate Panel Targeting Microsoft 365 (ARToken) (https://blog.talosintelligence.com/artoken-inside-an-eviltokens-affiliate-panel-targeting-microsoft-365/) - AI-Hallucinated Domains as Software Supply Chain Attack Vector (Phantom Squatting) (https://unit42.paloaltonetworks.com/phantom-squatting-hallucinated-web-domains/) - DHS HSIN Network Breach (https://news.risky.biz/risky-bulletin-researcher-drops-giant-cache-of-zero-day-exploits/) - Microsoft Defender Extends Endpoint Protection to Local AI Agents (https://www.microsoft.com/en-us/security/blog/2026/06/30/whats-new-in-microsoft-security-june-2026/) - Podman Host Environment Variable Leakage (CVE-2026-57231) (https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-57231) - Multiple Cryptographic Library Vulnerabilities (https://msrc.microsoft.com/update-guide/) - KubeVirt Virtualization Vulnerabilities (https://msrc.microsoft.com/update-guide/) - GLib Library Vulnerabilities (https://msrc.microsoft.com/update-guide/) - NGINX and Node.js Package Vulnerabilities (https://msrc.microsoft.com/update-guide/) - Browser Security Beyond Zero-Days (https://www.crowdstrike.com/en-us/blog/browser-security-zero-days-are-only-part-of-the-problem/) - Huntress CEO Addresses Threat Hunter Judgment Call (https://www.theregister.com/security/2026/06/30/huntress-ceo-says-threat-hunter-used-poor-judgment-in-alerting-ransomware-crim-about-law-enforcement-probe/5264532) CVEs Referenced: CVE-2025-3248, CVE-2026-10592, CVE-2026-11703, CVE-2026-12340, CVE-2026-13208, CVE-2026-13218, CVE-2026-13322, CVE-2026-13325, CVE-2026-3055, CVE-2026-33017, CVE-2026-42055, CVE-2026-48779, CVE-2026-55958, CVE-2026-55960, CVE-2026-55961, CVE-2026-55962, CVE-2026-55964, CVE-2026-57062, CVE-2026-57231, CVE-2026-57918, CVE-2026-58010, CVE-2026-58011, CVE-2026-58012, CVE-2026-58013, CVE-2026-58014, CVE-2026-58015, CVE-2026-58016, CVE-2026-6291, CVE-2026-6329, CVE-2026-6412, CVE-2026-6450, CVE-2026-6731, CVE-2026-7532, CVE-2026-8451 Indicators of Compromise: Domains: 209[.]214 Full brief: https://carolinacleartech.com/brief/2026-07-01/