Security Newsletter

Daily Security Briefing #314

DjediTech July 13, 2026 3 min read
Daily Security Briefing #314
Table of Contents

July 13, 2026 | Read Online

Russian FSB-linked Turla hackers target French ministries and embassies, AI data centers raise concerns about wealth concentration, and poorly configured routers fuel Russian cyberattacks…


Executive Summary

The cybersecurity landscape continues to evolve with new threats emerging daily. Recent incidents highlight the importance of robust security measures in protecting against state-sponsored attacks and malicious actors. The partnership between Torq and Criminal IP aims to provide decision-ready threat intelligence for autonomous SOC operations, while AI agents’ reliability is called into question. Meanwhile, a critical RabbitMQ flaw has been uncovered, allowing unauthenticated attackers to take over message brokers.



Top Articles

Russian FSB-Linked Turla Hackers Target French Ministries, Embassies, and Defense Entities France has publicly attributed a long-running cyber-espionage campaign targeting government, diplomatic, and defense-linked organizations to Turla, an intrusion set associated with the 16th Center of Russia’s Federal Security Service (FSB). French authorities said the operation has affected entities across the French state since the 2010s. GBHackers

NSA Warns Poorly Configured Routers Are Fueling Russian State-Sponsored Cyberattacks The National Security Agency (NSA), alongside 18 international partners, has released a joint Cybersecurity Advisory warning that poorly configured and unpatched routers continue to serve as an entry point for Russian state-sponsored cyber operations targeting critical infrastructure worldwide. CyberPress

Critical RabbitMQ Flaw Lets Unauthenticated Attackers Take Over Message Brokers Two critical access-control vulnerabilities have been uncovered in RabbitMQ, the world’s most widely deployed open-source message broker. Liad Eliyahu at Miggo found that one flaw allows unauthenticated attackers to steal a broker’s OAuth secret and seize full administrative control. CyberPress

Google and Microsoft Pull ModHeader With 1.6 Million Installs After Dormant Collector Found Google and Microsoft have pulled ModHeader, a popular header-editing extension with roughly 1.6 million installs across Chrome and Edge, after researchers found a hidden browsing-history collector built into its official store version. The Hacker News

CrashStealer macOS Malware Uses Notarized Dropper to Pass Gatekeeper Checks Cybersecurity researchers have flagged a new macOS information stealer called CrashStealer that’s capable of harvesting sensitive data from compromised systems. Unlike other information stealers, CrashStealer is implemented in native C++. The Hacker News

Email Agent Hijacking: The Hidden Threat That Breaks Post-Delivery Security AI agents create a new email attack surface because they can process content before humans see it. Email Agent Hijacking hides instructions in email content to manipulate AI interpretation, decisions, or outputs. Check Point Blog

AI Agents are Only As Effective as Their Harness Every AI vendor is talking about agents – autonomous systems that handle complex tasks without constant human input. The promise is real, but one question gets asked too rarely: what makes an agent reliable enough to trust with your network security? Check Point Blog

Torq and Criminal IP Partner to Deliver Decision-Ready Threat Intelligence for Autonomous SOC Operations The partnership integrates Criminal IP’s decision-ready threat intelligence with the Torq AI SOC Platform that helps security teams triage, investigate, and respond to threats. GBHackers

AI Data Centers and the Concentration of Wealth This essay was written with Nathan E. Sanders, and originally appeared in The Guardian. Opposition to AI data centers has emerged as a primary theme in US politics, one that—surprisingly—doesn’t fall along party lines. Schneier Blog

Lessons Learned from CISA’s Recent GitHub Leak The Cybersecurity and Infrastructure Security Agency (CISA) has issued a postmortem on a data leak in which a contractor published dozens of internal CISA credentials – including AWS Govcloud keys – in a public GitHub repository for almost six months. KrebsOnSecurity


AI Transparency: This newsletter uses AI to curate, rank, and summarize cybersecurity content from leading industry blogs. All articles link directly to original authors. Executive summaries are AI-generated based on article content. I curate the sources and deliver the digest—the original authors deserve the credit for their excellent work.