8th June – Threat Intelligence Report

Key Points:

• ShinyHunters leaked data from DentaQuest, exposing 2.6 million accounts, while Dashlane faced a brute-force attack on two-factor codes.
• The breaches impacted sensitive personal information, including government IDs and health insurance details, affecting millions of users and organizations.
• Immediate actions include monitoring for unauthorized access, implementing stronger authentication measures, and patching vulnerabilities in affected systems.

Technical Details: CVE-2026-41089 in Microsoft Windows Netlogon is being exploited for remote code execution on domain controllers, potentially allowing SYSTEM-level control. Additionally, CVE-2025-48595 affects Android devices, enabling local attackers to escalate privileges.

MITRE ATT&CK Techniques:

• T1078 - Valid Accounts (Defense Evasion)
• T1190 - Exploit Public-Facing Application (Initial Access)
• T1003.001 - OS Credential Dumping: LSASS Memory (Credential Access)

IOCs Mentioned: None mentioned