Cybersecurity, AI, and IT news for businesses worldwide. What changed this week, and what to do about it.

Attackers Are Actively Exploiting a Critical Splunk Flaw With Zero Authentication Required. Patch Now.

CISA confirmed active exploitation of CVE-2026-20253 in Splunk Enterprise on June 18, 2026. The federal deadline was June 21. Private businesses have no exemption.