Security Vulnerabilities and Industry Updates Reported by SANS Internet Storm Center

On June 1, 2026, the SANS Internet Storm Center Stormcast reported multiple security vulnerabilities and industry developments. Security researcher Jonas Lick disclosed a new BitLocker bypass vulnerability (dubbed 'a bit'), the second such flaw announced by the group Nightmare Eclipse, which previously identified unpatched Windows vulnerabilities. Tensions escalated between Nightmare Eclipse and Microsoft after the researcher’s GitHub account was suspended, prompting a shift to a Blogspot blog for future disclosures, though it remains unclear if exploit code will be hosted there. GitHub’s recent instability led to discussions about alternatives like Gau, a self-hosted Git service, though it currently has an unpatched authentication-required vulnerability. Oracle introduced a new monthly Critical Security Patch Update alongside its quarterly patches, releasing 35 fixes for five products in May 2026 to address urgent issues. Palo Alto Networks confirmed active exploitation of an authentication bypass flaw in GlobalProtect, urging immediate patching due to its targeting by ransomware actors. The video also referenced a SANS training event in Washington, D.C., scheduled for mid-July 2026.