June 2026 News & Updates

Jun, Wed, 2026
nathan
CTC NEWS , Industry News , Mailing List , Monthly Newsletters

CTC News

MyIT Program Pricing Reminder – Our new MyIT Program pricing went into effect on 1 June 2026. If you haven’t reviewed your service level yet, details are available here.
Updates to the MyIT Program – The MyIT Program provides enterprise level compliance-ready IT support for small to medium business clients without the enterprise level pricing and with no term agreements, so no lock-in. If you don’t find value in the program, you can cancel at any time. We’re updating the MyIT Program level names to better reflect the value each tier provides. Going forward:
- MyIT Essentials (formerly Bronze) — Core protection for businesses that need the fundamentals: patching, backups, monitoring, and a team to call when things break.
- MyIT Professional (formerly Silver) — Our most popular plan. For businesses that can’t afford to wait: real-time alerting, priority support queue, and faster response when minutes matter.
- MyIT Enterprise (formerly Gold) — Maximum protection with included on-site support hours and dedicated account management.
- If you’re currently on a MyIT plan, your service and pricing aren’t changing—just the name. Details on all MyIT Programs are available here. Questions? Let us know.

Industry News

Record-Breaking Patch Month – June 2026 marks the largest Patch Tuesday in history with 206 vulnerabilities addressed by Microsoft. Our team has been working overtime to ensure all MyIT Program clients receive these critical updates. If you’re not on a managed plan, your systems may be exposed.
Veeam Backup Critical RCE — PATCH NOW – A critical remote code execution vulnerability in Veeam Backup & Replication allows authenticated domain users to execute remote code on backup servers. This is a worst-case scenario for any organization. If you run Veeam, update immediately and review backup server access logs for signs of lateral movement.
Chrome Zero-Day Actively Exploited (CVE-2026-11645) – Google confirmed active exploitation of an out-of-bounds memory access vulnerability in Chrome’s V8 JavaScript engine (CVSS 8.8). Updates are available — ensure your browsers are on version 149.0.7827.103 or later.
ServiceNow Data Breach — Check Your Exposure – A security flaw in ServiceNow was exploited on June 5 to gain unauthorized access to customer instances. While ServiceNow has patched hosted environments, on-premise and hybrid deployments may require manual updates. If your organization uses ServiceNow, verify you’re on the latest patch and review access logs from June 3–6.
Zero-Day Surge Continues – Security researchers report zero-day attacks have increased 40% year-over-year. Threat actors are exploiting vulnerabilities before vendors can patch them — the only reliable defense is proactive monitoring, layered security, and a team that responds before you know there’s a problem.

Updates

DEPLOY IMMEDIATELY – Microsoft’s June Patch Tuesday was record-breaking: 206 vulnerabilities patched, including 36 critical bugs and 3 zero-day vulnerabilities being actively exploited in the wild (YellowKey, GreenPlasma, and MiniPlasma). Most concerning: a Microsoft Defender flaw dubbed “RoguePlanet” allows any user to escalate to SYSTEM privileges. Proof-of-concept exploit code is already public. If you haven’t patched yet, you’re exposed.

Microsoft releases regular updates the second Tuesday of each month, often referred to as ‘Patch Tuesday’. These updates are categorized as Low, Moderate, Important or Critical. Details on the categories are available here. The updates can include any supported Microsoft product from Windows to Office to Internet Explorer and server products like Exchange and SQL Server. If you have one or more of these products installed, especially if the update is listed as Important or Critical, it’s important that the updates are installed.

Additional details on this month’s Microsoft updates are available from SANS Internet Storm Center, Krebs on Security, Bleeping Computer, CrowdStrike.

Adobe has released 11 updates this months, ranging from important to critical and impacting products including Experience Manager, Experience Manager Forms, InDesign, InCopy, Substance 3D Sampler, Content Credentials SDK, Dreamweaver, Reader, ColdFusion, Format Plugins and Campaign Classic.

Like Microsoft, Adobe now releases updates to their products on the second Tuesday of each month. Adobe will also release ‘out of band’ updates if necessary to address critical vulnerabilities in their products. Adobe products include Adobe Reader (for viewing PDF files), Adobe Flash Player (often used to watch videos, for interactive content like games, etc.), Adobe Shockwave and the Adobe Creative Suite (Photoshop, Illustrator, Acrobat, Lightroom, etc.).

Additional details are available from Adobe Here including links to download the update(s) and instructions for installation.

Need IT Support for your Home or Business? We’d love to help!

Are you a small to medium sized business looking to leverage technology and enable your business and workforce to work smarter and more efficiently? Do you already have computers, servers, firewalls, VPNs or other technology that you’re not taking full advantage of? Are you looking for an IT Service Provider who understands small to medium sized businesses needs and the challenges that we face that can work with you to grow your business rather than just sell you time?

Cyber Tech Cafe is an IT Service Company with a focus on helping small to medium business get the most out of their technology investment. As a small business ourselves, we understand the challenges you face and have designed our service offerings to help you get the most out of your technology dollar. We offer on-call, as needed support if you just need a quick fix or extra set of hands right now. We also offer maintenance plans that we call “MyIT” that are designed to address the most common concerns (patch management, disaster recovery / backup, log review, etc.) that are based on the number of workstations and servers that you have and have no term contract. We believe that, if you find value in what we’re doing, you’ll find a way to keep us around without a contract saying that you have to.

If you have questions about the MyIT plans or have an IT need that you need addressed right now, let us know. We look forward to the opportunity to earn your business.

Article Submitted by Nathan J. Underwood, CEH