6th July – Threat Intelligence Report
Check Point Research reports multiple incidents this week, including ransomware cases impacting River Bank & Trust, Indra Group, Nidec Chaun Choung Technology, and a major Aflac Japan breach affecting nearly 4.4 million customers. The update also covers AI-driven threats such as LLM-generated ransomware that abuses Chrome’s File System Access API and AI domain “phantom squatting” used for phishing. On the vulnerability side, critical issues including CVE-2026-46817 (Oracle E-Business Suite), CVE-2026-46242 (Linux kernel Bad Epoll), CVE-2026-8451 (Citrix NetScaler), and CVE-2026-8037 (Progress Kemp LoadMaster) are emphasized due to exploitation risk and rapid weaponization.
For the latest discoveries in cyber research for the week of 6th July, please download our Threat Intelligence Bulletin.
TOP ATTACKS AND BREACHES
- River Bank & Trust, a US financial institution, has experienced a ransomware incident after an unauthorized actor accessed the network of parent company River Financial Corporation on June 16. The bank found ransomware on portions of its server environment and is assessing whether personal data was accessed or exfiltrated.
- Indra Group, a Spanish defense, aerospace, and technology contractor and NATO cyber coalition member, has confirmed a ransomware attack affecting one subsidiary. The Gentlemen ransomware gang threatened to leak allegedly stolen data, while Indra said the incident was contained and that service continuity was maintained.…