Welcome to today’s edition of the Daily OT Security News for June 12, 2026. In this briefing, we cover critical developments impacting operational technology, industrial control systems, and IoT security. From emerging vulnerabilities in IoT camera platforms to legislative efforts addressing AI-driven cyber threats, these stories highlight the evolving risks and responses shaping the OT cybersecurity landscape.
CISA Warns of Critical CVSS 9.8 Vulnerabilities in Naxclow IoT Camera Platform
On June 11, 2026, CISA issued an advisory regarding critical vulnerabilities in the Naxclow IoT Platform, affecting devices such as Smart Doorbell X3, X Smart Home, V720, and ix cam. The flaws, rated CVSS 9.8, include authorization bypass via user-controlled keys, hard-coded cryptographic keys, and predictable device identifiers, enabling attackers to impersonate devices and gain unauthorized access across all impacted versions.
Source: Windows Forum / CISA Advisory
Ransomware Attacks Surge 48% Year-Over-Year with Industrial Manufacturing Up 50%
Check Point Research reported a 48% year-over-year increase in global ransomware incidents in May 2026, with 698 recorded attacks marking the highest growth rate this year. Industrial manufacturing faced a 50% rise in attacks, while business services represented 35% of victims. The ransomware ecosystem is increasingly fragmented, with 61 active groups—including Qilin, The Gentlemen, and DragonForce—intensifying the competitive threat environment worldwide.
Source: Industrial Cyber / Check Point Research
Kaspersky: 19.6% of ICS Computers Targeted Globally in Q1 2026, Manufacturing Attacks Rise
Kaspersky ICS CERT’s Q1 2026 report reveals that security products blocked malicious activity on 19.6% of industrial control systems worldwide, detecting malware from over 10,000 families. The manufacturing sector experienced increased attacks across Europe and Asia, with biometric systems identified as the most targeted ICS category at 26.4%, largely due to their internet exposure and insufficient cybersecurity measures.
Source: Business Recorder / Kaspersky ICS CERT
Max-Severity Ivanti Sentry Flaw (CVSS 10) Exploited Within 24 Hours of Disclosure
A critical OS command injection vulnerability in Ivanti Sentry (CVE-2026-10520, CVSS 10.0) was exploited in the wild less than 24 hours after public disclosure. This flaw allows unauthenticated remote code execution with root privileges on the mobile gateway appliance. Shadowserver Foundation has observed large-scale exploitation attempts, confirming at least two backdoored instances, raising significant concerns given Ivanti Sentry’s pivotal role in enterprise mobile and device access control.
Source: Dark Reading
Senator Warner Introduces Bill Requiring CISA to Update Critical Infrastructure Cybersecurity Plans for AI Era
Senator Mark Warner has introduced the Combat Emerging Threats to Critical Infrastructure Act of 2026, mandating CISA to revise cybersecurity plans for all 16 critical infrastructure sectors within nine months, followed by biennial reviews. The legislation focuses on addressing AI-enhanced cyberattacks, supply chain vulnerabilities, deepfakes, robotics threats, and quantum-enabled cryptographic attacks, responding to outdated sector plans and the accelerating risks posed by AI-driven threats.
Source: Industrial Cyber
As OT and IoT environments face increasingly sophisticated threats, staying informed and proactive is essential. Viakoo remains committed to providing actionable insights and solutions that help organizations secure their critical infrastructure against evolving cyber risks.
