Maine officials in the United States took their public breach-notification portal offline after fraudulent VRChat and Discord breach notices were posted, creating a live evidential contamination issue for researchers, journalists and affected organisations [AMER]. The Attorney General’s review centres on submission controls, report validation and auditability, because fake filings can misdirect victim notification, distort breach intelligence and pollute downstream investigative timelines (Source: The Record, 15-06-2026)

Researchers said GitHub had rejected reports about commit metadata behaviours now abused by Shai-Hulud supply-chain worm variants affecting software ecosystems worldwide [AMER]. The investigative value lies in forged author displays, backdated commits, expiring push records and public-package telemetry, which together complicate repository triage, timeline reconstruction, account compromise assessment and attribution across npm, PyPI, RubyGems and compromised developer accounts (Source: The Record, 16-06-2026)

Sri Lankan authorities reported an alarming growth in cybercrime operations as Chinese-led scam networks relocate from south-east Asia into Colombo and other local sites [APAC]. Recent raids identified passports, forged documents, phones, laptops, pen drives, processors and other digital artefacts, giving investigators material for device attribution, victim targeting analysis, recruitment tracing, laundering assessment and cross-border fraud-network mapping (Source: The Guardian, 16-06-2026)

Delhi High Court refused anticipatory bail in an Indian cryptocurrency fraud case involving about one crore rupees transferred through USDT wallets [APAC]. The court accepted that custodial interrogation was needed because investigators still had to access wallets, trace onward transfers, identify associates, recover communications, test explanations and reconstruct the proceeds-of-crime chain across controlled digital-currency accounts (Source: Times of India, 17-06-2026)

A cyber-extortion group claimed it stole more than a terabyte of data from Novo Nordisk in Denmark after unauthorised access to internal systems [EMEA]. The claims include source code, proprietary drug data, clinical-trial records, employee, doctor and patient information, AI model material and production-system software, giving investigators multiple evidential streams to validate against company logs and published samples (Source: Reuters, 16-06-2026)

Foxconn confirmed a cyberattack affecting some North American facilities after the Nitrogen group claimed it had stolen more than eight terabytes of data [AMER]. Investigators will need to test the claimed 11 million files, alleged schematics and third-party technology references against internal access records, supplier exposure, network telemetry and any extortion-site evidence before confirming scope or attribution (Source: Cybersecurity Dive, 16-06-2026)

CISA added an actively exploited Joomla Content Editor vulnerability to its Known Exploited Vulnerabilities catalogue in the United States, imposing rapid remediation for federal systems [AMER]. The operational signal for investigators is that public exploitation evidence now exists, so web-server logs, plugin versions, suspicious PHP execution, uploaded files and account activity should be preserved before containment actions erase useful traces (Source: CISA, 16-06-2026)

CERT-In listed new Indian vulnerability notes covering Google Chrome, Veeam Backup and Replication, Fortinet sandbox products, VMware, Zoom, OpenSSL and GitLab across its June advisories [APAC]. The spread of affected products creates a useful triage map for investigators, linking exploit hypotheses to browser artefacts, backup infrastructure, sandbox telemetry, collaboration logs, cryptographic libraries, patch records and repository platforms (Source: CERT-In, 16-06-2026)

United States authorities seized the CFAKE and SOCFAKE domains used to publish non-consensual AI-generated nude images and videos of famous women [AMER]. The action gives digital investigators a clear preservation challenge around domain records, hosting data, upload histories, payment trails and victim-identification workflows, because synthetic-media abuse cases depend on correlating platform artefacts with offender infrastructure (Source: US Department of Justice, 12-06-2026)

Indian police evidence in a Delhi cryptocurrency fraud case was central to a High Court decision denying pre-arrest bail to the accused [APAC]. The reported wallet-to-wallet transfers, alleged onward movement of USDT and need to identify associates show how custody decisions increasingly turn on blockchain tracing, device access, communication recovery and recoverable private transaction records (Source: Times of India, 17-06-2026)

The UK government announced that social media services will be blocked from offering accounts to under-16s, with age-assurance duties applying to major platforms [EMEA]. For digital investigations, the measure raises immediate questions about identity-proofing data, facial age-estimation records, verification audit trails, VPN circumvention evidence, retention duties and the breach risk created when platforms collect stronger personal identifiers (Source: UK Government, 15-06-2026)

The United States Federal Trade Commission reported that people lost 3 point 5 billion dollars to imposter scams in 2025, making them the most reported fraud category [AMER]. The figures sharpen investigative priorities around impersonation evidence, contact-channel preservation, payment-rail tracing, victim reporting quality and correlation between consumer complaints, platform takedowns, bank records and cryptocurrency movements (Source: Federal Trade Commission, 15-06-2026)