In partnership with

~8 MIN READ
Fact The JetBrains Marketplace serves more than 13 million developers worldwide. In June 2026, researchers found 15 malicious plugins on the platform designed to steal AI API keys for OpenAI, DeepSeek, and SiliconFlow; the plugins had been live for weeks before JetBrains removed them. (The Hacker News, June 2026)
The Signal
 
Tech company policy announcements and government contract cancellations mean very little when the hardware is already in the field and works without a network connection. This edition covers what happens when the access controls that are supposed to protect people simply do not work.

PS: Was this forwarded to you? Subscribe free at exzeccyber.com/subscribe
In this edition
  📌 Big Cyber News
  🚨 Can't Miss
  🤖 AI in Cyber
  🏛 Privacy, Power & Policy
  🔧 Tools & Tactics
  🧪 Strange Cyber
📌 Big Cyber News
 
Nation-State / Surveillance
The Contract Was Canceled. Russia Kept the Keys.
Intro
Cellebrite publicly cut off Russia in March 2021, citing concerns about its role in Ukraine. Citizen Lab has now confirmed that Russian authorities used Cellebrite equipment to crack an opposition politician's phone months after the cancellation.
What Happened
Citizen Lab's report documents that Russian security services used Cellebrite UFED to forensically extract data from the phone of Andrey Pivovarov, a Russian opposition leader and rights activist, in 2021, after the contract cancellation was already public record. The reason it worked: Cellebrite devices ship with an offline mode that requires no connection to Cellebrite's servers. Once the hardware is deployed, there is no remote kill switch.
Why It Matters
This is the first confirmed case of Russia using Cellebrite after the company's public cutoff announcement. It exposes a core flaw in how technology export controls are enforced against authoritarian governments: if the hardware functions offline and is already deployed, a contract cancellation is symbolic at best.
The Other Side
Cellebrite says its licensing agreements prohibit misuse and that it took appropriate action when the Russia contracts were canceled. The company can reasonably argue that it has no legal or technical mechanism to remotely disable hardware shipped under prior agreements.
 
👉 Takeaway
Any tech company claiming to have cut off an authoritarian regime should answer one question: does your hardware work offline? If yes, the cutoff is mostly a press release.
TL;DR: Russia used Cellebrite on a human rights activist after the contract cancellation because the hardware works offline and Cellebrite could not stop it.
Further reading: CyberScoop / Citizen Lab
🚨 Can't Miss
 
 
Breach / Supply Chain
The Icarus extortion group infiltrated Klue's SaaS platform using legacy credentials and harvested OAuth tokens connected to customers' Salesforce, HubSpot, Gong, Slack, and Google Drive environments. A second, unidentified threat actor then compromised Icarus itself and seized their stolen data, revealing the full victim list: 195 confirmed organizations including LastPass, BeyondTrust, Recorded Future, Tanium, Jamf, and Sprout Social. Klue reportedly paid a ransom to Icarus during the incident. The attacker-on-attacker breach produced the most complete victim evidence investigators have seen in this case.
OAuth tokens are long-lived and cross-system by design. If your organization is in Klue's customer base, audit every connected app for OAuth token exposure and revoke anything you did not explicitly authorize in the last 90 days.
 
Nation-State / Espionage
A joint FBI/CISA advisory dated June 26 described an evolved Signal attack by Russian intelligence units UNC5792 and UNC4221 (FSB Border Guards and Russian military). The previous approach stole verification codes to link attacker devices to target accounts. The new approach impersonates Signal support in-app, instructs targets to hand over their Backup Recovery Key "to prevent data loss," and uses the stolen key to restore a full message backup on attacker-controlled devices. Targets include current and former US government officials, military personnel, journalists, and Ukraine-adjacent political figures.
Generating a new Signal recovery key does NOT invalidate a key the attacker already used to download your backup. Legitimate Signal support never asks for recovery keys via in-app messages.
 
Data Breach
Japan's KDDI Corporation disclosed June 28 that attackers exploited a third-party software vulnerability in an email system shared across five ISP subsidiaries: STNet, JCOM, Chubu Telecom, NIFTY, and BIGLOBE. Up to 14.22 million email addresses and passwords were exposed, including current, former, and inactive accounts. KDDI has not disclosed what percentage of passwords were stored in plaintext versus hashed form. Japan's Personal Information Protection Commission and the Ministry of Internal Affairs have been notified.
This is the shared-infrastructure multiplier problem at scale: one vulnerable component, one third-party vendor, five ISPs, 14 million accounts. If you are a customer of any of the five affected ISPs, reset your email password now and enable two-factor authentication if available.

The Lithium Boom is Heating Up

Lithium stock prices grew 2X+ from June to January. But the real winner may be a private stock: EnergyX. Their tech can recover 3X more lithium than traditional methods, leading General Motors to invest. Now they’re preparing to unlock ~13M tons of lithium. Invest in EnergyX for $13/share by the 7/16 deadline.

Invest in EnergyX

Energy Exploration Technologies, Inc. (“EnergyX”) has engaged Beehiiv to publish this communication in connection with EnergyX’s ongoing Regulation A offering. Beehiiv has been paid in cash and may receive additional compensation. Beehiiv and/or its affiliates do not currently hold securities of EnergyX.

This compensation and any current or future ownership interest could create a conflict of interest. Please consider this disclosure alongside EnergyX’s offering materials. EnergyX’s Regulation A offering has been qualified by the SEC. Offers and sales may be made only by means of the qualified offering circular. Before investing, carefully review the offering circular, including the risk factors. The offering circular is available at invest.energyx.com/.

Comparisons to other companies are for informational purposes only and should not imply similar results. Past performance is not indicative of future results. Market shortfall are forward‑looking estimates and are subject to substantial uncertainty.

/ads
🤖 AI in Cyber
 
 
AI Agent Security
Mozilla 0DIN researchers published findings on a new attack class targeting AI coding agents specifically. A clean GitHub repository contains no malicious code but includes a Python package that generates a fake error on import, telling the agent to run a setup command. AI coding agents (including Claude Code) automatically run the suggested command, which fetches an attacker-controlled DNS TXT record and executes a reverse shell. No malicious code appears at any stage of static analysis, bypassing every automated security review currently in use. The attack exploits the helpful-by-default behavior of AI coding agents: they follow error message instructions without verifying whether the message is legitimate.
Review any AI-generated shell commands before execution, and disable automatic command execution in coding agent settings if the option is available.
 
Developer Tools / Malicious Extensions
Two simultaneous attacks hit AI developer infrastructure in June. First, 15 malicious plugins on JetBrains Marketplace (used by 13 million developers) included hidden exfiltration code targeting OpenAI, DeepSeek, and SiliconFlow API credentials. Second, a Chrome extension family called PromptSnatcher (including "Smart Adblocker") silently captured entire AI chatbot conversations from Claude, ChatGPT, and Gemini, then shipped the full conversation text to attacker infrastructure. JetBrains removed the plugins after discovery; the Chrome extensions were still under review as of reporting on June 17.
Audit your active JetBrains Marketplace plugins against the reported malicious names, and treat any newly installed Chrome extension with AI-adjacent branding as suspect until reviewed. Your AI conversations contain more sensitive data than most people account for.
🏛 Privacy, Power & Policy
 
 
AI Regulation / Deepfakes
A bipartisan Senate bill would create a federal right against nonconsensual AI-generated replicas of real people's voices, likenesses, or performances. The bill goes further than the TAKE IT DOWN Act signed in May 2026, which only covered nonconsensual intimate imagery. The No FAKES Act covers any AI replica of an identifiable individual, whether for commercial misuse or personal harassment. Studios support the legislation; social media platforms are resisting the liability provisions. The bill would preempt weaker state laws while allowing stronger ones to stand.
This is the first serious legislative attempt to give individuals a direct legal claim over AI copies of themselves beyond intimate imagery. If it passes, companies generating AI voices, likenesses, or performances without explicit consent face new federal liability.
 
Infrastructure Security / Regulation
Two FCC rules passed June 25. Rule one covers the first major cybersecurity overhaul of the Emergency Alert System and Wireless Emergency Alerts since the systems were built: mandatory strong passwords, rapid vendor patching, firewalls limiting equipment access, and a new authentication ID system to prevent spoofed or duplicate alerts. Rule two delivers the first comprehensive submarine cable regulation update in decades, tightening oversight of supply chain functions and adding licensing requirements for cable terminal operators. An EAS compromise during a real emergency could inject false alerts into a system 300 million Americans rely on.
Both rules address infrastructure that the public depends on but rarely thinks about. If your organization operates in the telecom or submarine cable sector, review the new FCC mandates for compliance timelines.
🔧 Tools & Tactics
 
 
Practical play
CISA's BOD 26-04 deadline for two actively exploited CVEs passed June 28. CVE-2026-20230 is an SSRF flaw in Cisco Unified Communications Manager Server being actively exploited, allowing a remote, unauthenticated attacker to write arbitrary text files to endpoints; a public proof-of-concept has been available since Cisco's June 3 advisory. CVE-2026-12569 is a critical RCE via untrusted data deserialization in PTC Windchill and FlexPLM, affecting manufacturing and engineering PLM environments across multiple version branches. If your team did not make the deadline, patch now and audit for signs of compromise since June 3.
Cisco Unified CM admins and PTC Windchill/FlexPLM shops: verify patch status immediately and run an indicator-of-compromise check covering activity since June 3.

Someone just spent $236,000,000 on a painting. Here’s why it matters for your wallet.

Late last year, a Klimt sold for the highest price ever paid for modern art at auction.

An outlier sure, but it wasn't a fluke. U.S. auction sales grew 23.1% in 2025. The $1-5mm segment even grew 40.8% YoY.

Meanwhile, Apollo’s chief economist Torsten Slok said to expect ‘zero in return in the S&P 500 over the coming decade.’

So, that's where it gets interesting.

Each environment is unique, but after dot-com, post war and contemporary art grew about 24% annually for a decade. After 2008, about 11% for 12 years.

It’s also had near-zero correlation with the S&P 500 since ‘95.*

Now, Masterworks lets you invest in shares of artworks featuring legends like Banksy, Basquiat, and Picasso.

  • $1.3 billion invested across over 500 artworks.

  • 28 sales to date. 

  • Net annualized returns on sold works held 12 months+ like 14.6%, 17.6%, and 17.8%.

Shares can sell quickly, but my subscribers can skip the waitlist:

Skip the waitlist

*Investing involves risk. Past performance is not indicative of future returns. See important Reg A disclosures at masterworks.com/cd.

🧪 Strange Cyber
 
Strange but real
The Cybersecurity Firm's Own Responder Was Allegedly Tipping Off the Ransomware Gang
Intro
A former Huntress security operations analyst has gone public with a claim that a current Huntress employee was feeding active incident response case details to the ransomware gang Huntress's own team was working to stop.
What Happened
Ben Folland, who left Huntress in February 2026, posted publicly that a then-active Huntress employee had been in contact with a ransomware affiliate called DevMan and passing information from live IR cases while Huntress responders were working those same cases. Folland says the alleged insider was "caught by the FBI" but continued working at Huntress afterward. Huntress CEO Kyle Hanslovan's public response: "Some aspects of this matter involve ongoing active coordination with law enforcement and legal proceedings that prevent us from providing a complete public account."
Why It Matters
Insider threats are dangerous in any organization, but at a managed detection and response firm they are existential: MDR clients pay for trusted access to their most sensitive environments during a crisis. If confirmed, this is a textbook illustration of why even security vendors require rigorous internal controls on analyst access to client incident data.
The Other Side
Folland left Huntress after what he describes as an adversarial relationship with leadership, and has publicly claimed the company tried to silence him with legal threats. Hanslovan has stated he "firmly disagrees" with the insider narrative. The full account has not been independently verified.
 
👉 Takeaway
Ask your MDR or IR firm what controls exist on analyst access to client environments during an active engagement. It is an uncomfortable question that every client should be asking regardless of what happened here.
TL;DR: A former Huntress analyst says a current employee fed a ransomware gang real-time case information while Huntress's team fought the same breach, and the CEO's response stopped short of a flat denial.
Further reading: The Register

Wall Street is shifting billions into a select group of stocks, and MarketBeat’s updated 10 Best Stocks to Own in 2026 report reveals exactly which ones. Get the 10 names attracting fresh capital before the crowd catches on. Send My Free Report

Keep Reading

© 2026 Exzec Cyber's Newsletter..
beehiivPowered by beehiiv