| 1 | New phishing kits target Microsoft 365 accounts, evade MFA | Jul 14, 1:10 pm |
|---|
| 2 | Microsoft Entra ID gets passkeys default authentication starting September | Jul 14, 1:10 pm |
|---|
| 3 | SAP warns of critical flaws in NetWeaver and Commerce Cloud | Jul 14, 12:10 pm |
|---|
| 4 | Grok Build Uploaded Entire Git Repositories to xAI Storage, Not Just Files It Read | Jul 14, 11:10 am |
|---|
| 5 | Microsoft starts testing cleaner Windows Search without ads | Jul 14, 11:10 am |
|---|
| 6 | Grok Build Uploads Entire Git Repositories to xAI Storage, Not Just Files It Reads | Jul 14, 10:10 am |
|---|
| 7 | US sanctions VPN, malware providers for enabling ransomware attacks | Jul 14, 10:10 am |
|---|
| 8 | Microsoft Maps Three Salesforce Attack Paths Tied to a Year of ShinyHunters Activity | Jul 14, 9:10 am |
|---|
| 9 | 148 npm Packages Disguised as Student Proxies Turned Browsers Into a DDoS Botnet | Jul 14, 9:10 am |
|---|
| 10 | U.S. Sanctions First VPN Service and Malware Cryptor Seller Over Ransomware Support | Jul 14, 9:10 am |
|---|
| 11 | Microsoft Maps Year-Long ShinyHunters-Linked Salesforce Data Theft Across Three Paths | Jul 14, 7:10 am |
|---|
| 12 | ISC Stormcast For Tuesday, July 14th, 2026 https://isc.sans.edu/podcastdetail/10006, (Tue, Jul 14th) | Jul 14, 3:10 am |
|---|
| 13 | Japan's largest taxi operator shuts systems after cyberattack | Jul 13, 9:10 pm |
|---|
| 14 | Hackers backdoor Jscrambler npm package with infostealer malware | Jul 13, 8:10 pm |
|---|
| 15 | New CrashStealer malware poses as Apple crash reporting tool | Jul 13, 7:10 pm |
|---|
| 16 | Google and Microsoft Pull ModHeader With 1.6 Million Installs After Dormant Collector Found | Jul 13, 6:10 pm |
|---|
| 17 | CrashStealer macOS Malware Uses Notarized Dropper to Pass Gatekeeper Checks | Jul 13, 6:10 pm |
|---|
| 18 | New MemGhost Attack Plants Persistent False Memories in AI Agents Through One Email | Jul 13, 4:10 pm |
|---|
| 19 | Lessons Learned from CISA’s Recent GitHub Leak | Jul 13, 4:10 pm |
|---|
| 20 | ⚡ Weekly Recap: ShareFile Threat, Citrix Bleed 2 Ransomware, AI Coding Attacks, and More | Jul 13, 4:10 pm |
|---|
| 21 | CISA warns of actively exploited RCE flaws in Joomla extensions | Jul 13, 4:10 pm |
|---|
| 22 | Lidl discloses online shop breach after service provider hack | Jul 13, 3:10 pm |
|---|
| 23 | Forg365 PhaaS Targets Microsoft 365 with Device Code and AitM Session Theft | Jul 13, 2:10 pm |
|---|
| 24 | UK charges suspects linked to Russian Coms call spoofing platform | Jul 13, 2:10 pm |
|---|
| 25 | Breach at the Beach: Play the Ultimate Entra ID CTF | Jul 13, 2:10 pm |
|---|
| 26 | Attacker Uses Suspected AI-Generated PowerShell Script to Map Active Directory | Jul 13, 1:10 pm |
|---|
| 27 | Thinking Fast and Slow in the SOC: The Case for Combining Autonomous AI with Analyst Copilots | Jul 13, 1:10 pm |
|---|
| 28 | Meta Files Patent for AI That Can Listen All Day and Track How You're Feeling | Jul 13, 1:10 pm |
|---|
| 29 | EU sanctions Russian GRU military hackers over cyberattacks | Jul 13, 12:10 pm |
|---|
| 30 | US and allies warn of Russian critical infrastructure attacks | Jul 13, 10:10 am |
|---|
| 31 | Misconfigured Server Reveals Three Evilginx Phishing Operations Targeting Microsoft 365 | Jul 13, 9:10 am |
|---|
| 32 | iCagenda and Balbooa Forms Joomla Flaws Reportedly Exploited as Zero-Days | Jul 13, 7:10 am |
|---|
| 33 | Someone Is Scanning for Your MCP Servers and AI Assistant Credentials, (Mon, Jul 13th) | Jul 13, 5:10 am |
|---|
| 34 | ISC Stormcast For Monday, July 13th, 2026 https://isc.sans.edu/podcastdetail/10004, (Mon, Jul 13th) | Jul 13, 2:10 am |
|---|
| 35 | OpenAI temporarily relaxes GPT-5.6 Sol usage limits | Jul 13, 1:10 am |
|---|
| 36 | Claude Fable 5 stays free for paid users until July 19 as Anthropic buys more time | Jul 12, 8:10 pm |
|---|
| 37 | RedHook Android malware now uses Wireless ADB for shell access | Jul 12, 3:10 pm |
|---|
| 38 | Hackers Weaponize Balochistan Police Portal in Multi-Group Espionage Campaigns | Jul 11, 7:10 pm |
|---|
| 39 | Compromised jscrambler 8.14.0 npm Release Drops Rust Infostealer During Install | Jul 11, 7:10 pm |
|---|
| 40 | Australia warns of global campaign targeting vulnerable CMS platforms | Jul 11, 3:10 pm |
|---|
| 41 | Wireshark 4.6.7 Released, (Sat, Jul 11th) | Jul 11, 10:10 am |
|---|
| 42 | 'Ghostcommit' hides prompt injection in images to fool AI agents, steal secrets | Jul 11, 9:10 am |
|---|
| 43 | Critical Zimbra Flaw Could Let Crafted Emails Run Malicious Code in User Sessions | Jul 11, 8:10 am |
|---|
| 44 | New U-Boot flaws could enable stealthy firmware attacks | Jul 10, 10:10 pm |
|---|
| 45 | URGENT - Progress Tells ShareFile Customers to Shut Down Storage Zone Controllers Over Security Threat | Jul 10, 7:10 pm |
|---|
| 46 | Six New U-Boot Flaws Could Let Malicious Images Crash Devices or Run Code at Boot | Jul 10, 6:10 pm |
|---|
| 47 | Injective Labs GitHub Compromise Pushes Wallet-Key-Stealing npm Packages | Jul 10, 6:10 pm |
|---|
| 48 | Ryuk ransomware member pleads guilty in the US, faces 15 years in prison | Jul 10, 6:10 pm |
|---|
| 49 | Progress urges ShareFile admins to shut down servers over “credible” threat | Jul 10, 5:10 pm |
|---|
| 50 | Police suspects Dutch hackers were involved in Odido breach | Jul 10, 5:10 pm |
|---|
| 51 | Laser Attack Resets Tangem Wallet Passwords on Cards That Can't Be Patched | Jul 10, 4:10 pm |
|---|
| 52 | Money launderer accused of stealing seized crypto while in prison | Jul 10, 4:10 pm |
|---|
| 53 | Hackers exploit critical auth bypass in Gitea Docker image | Jul 10, 4:10 pm |
|---|
| 54 | Researcher Details WhatsApp-to-Host Attack Chain Using Three OpenClaw Flaws | Jul 10, 3:10 pm |
|---|
| 55 | Attackers Exploit 'Ill Bloom' Vulnerability to Drain Over $5 Million From Cryptocurrency Wallets | Jul 10, 2:10 pm |
|---|
| 56 | New MODBEACON RAT Uses gRPC Streaming for Encrypted C2 Traffic | Jul 10, 2:10 pm |
|---|
| 57 | The Replicant in Your Directory: AI Agents and the Identity Security Gap | Jul 10, 2:10 pm |
|---|
| 58 | Hackers Use Fake Microsoft Entra Passkey Enrollment to Gain Microsoft 365 Access | Jul 10, 12:10 pm |
|---|
| 59 | Study of 281 Free Android VPN Apps Finds Traffic Leaks, Unencrypted Data, and Tracking | Jul 10, 12:10 pm |
|---|
| 60 | Exposed Hacker Server Reveals WP-SHELLSTORM Backdooring Thousands of WordPress Sites | Jul 10, 12:10 pm |
|---|
| 61 | From 17,000 to 1.1 Million Assets: How Lumen Technologies Rebuilt Exposure Management at Scale | Jul 10, 12:10 pm |
|---|
| 62 | Zimbra urges customers to patch critical web client XSS flaw | Jul 10, 12:10 pm |
|---|
| 63 | Unpatched XRING Flaw in XQUIC Lets Remote Clients Crash HTTP/3 Servers | Jul 10, 12:10 pm |
|---|
| 64 | Ransomware Negotiator Gets 70 Months in Prison for Aiding BlackCat Attacks | Jul 10, 10:10 am |
|---|
| 65 | Attackers Exploit 'Ill Bloom' Vulnerability to Drain $3.1 Million From Cryptocurrency Wallets | Jul 10, 10:10 am |
|---|
| 66 | "Comment stuffing" in an HTML phishing attachment as a mechanism for evading AI-based detection?, (Fri, Jul 10th) | Jul 10, 10:10 am |
|---|
| 67 | Former ransomware negotiator gets 4 years for BlackCat attacks | Jul 10, 9:10 am |
|---|
| 68 | ISC Stormcast For Friday, July 10th, 2026 https://isc.sans.edu/podcastdetail/10002, (Fri, Jul 10th) | Jul 10, 2:10 am |
|---|
| 69 | OpenMandriva Linux says contributor tried to sabotage the project | Jul 9, 11:10 pm |
|---|
| 70 | Injective SDK on npm infected with cryptocurrency wallet stealer | Jul 9, 8:10 pm |
|---|
| 71 | New GigaWiper Windows Backdoor Bundles Disk Wiping, Fake Ransomware, and Spyware | Jul 9, 7:10 pm |
|---|
| 72 | Dormant GitHub Accounts Help Attackers Blend In While Mapping Corporate Orgs | Jul 9, 7:10 pm |
|---|
| 73 | ThreatsDay: Cloud Bucket Hijacking, Windows LPE Chain, Global Fraud Bust + 17 More Stories | Jul 9, 5:10 pm |
|---|
| 74 | npm 12 Disables Install Scripts by Default to Reduce Supply Chain Risk | Jul 9, 5:10 pm |
|---|
| 75 | Microsoft expects more Windows security updates from AI-discovered flaws | Jul 9, 5:10 pm |
|---|
| 76 | New Helix vishing group emerges in SharePoint data theft attacks | Jul 9, 5:10 pm |
|---|
| 77 | The Hidden Security Risks of Reduced Summer IT Coverage | Jul 9, 3:10 pm |
|---|
| 78 | New Forg365 phishing platform uses AI to target Microsoft 365 accounts | Jul 9, 3:10 pm |
|---|
| 79 | AI Attacks Move in Minutes. Join This Webinar on Building a Defense That Keeps Up | Jul 9, 1:10 pm |
|---|
| 80 | GodDamn Ransomware Uses PoisonX Driver to Disable Endpoint Defenses | Jul 9, 12:10 pm |
|---|
| 81 | Summer of Clearinghouses | Jul 9, 12:10 pm |
|---|
| 82 | Microsoft to retire the OWA Light client in Exchange Server | Jul 9, 11:10 am |
|---|
| 83 | Microsoft Patches RoguePlanet Defender Flaw That Can Grant SYSTEM Privileges | Jul 9, 10:10 am |
|---|
| 84 | Police arrests 5,800 suspects in global anti-fraud crackdown | Jul 9, 10:10 am |
|---|
| 85 | Meta's New AI Image Tool Lets Others Use Your Public Instagram Photos in AI Images | Jul 9, 8:10 am |
|---|
| 86 | AssuranceAmerica data breach exposes records of 6.9 million drivers | Jul 9, 8:10 am |
|---|
| 87 | Top AI Agents Built to Catch Malicious Code Can Be Tricked Into Running It | Jul 9, 6:10 am |
|---|
| 88 | Microsoft patches RoguePlanet Defender zero-day vulnerability | Jul 9, 6:10 am |
|---|
| 89 | Fake 7-Zip Installers Turn Devices Into Residential Proxy Nodes | Jul 9, 5:10 am |
|---|
| 90 | GhostApproval Symlink Flaws Could Let Malicious Repos Run Code in AI Coding Agents | Jul 9, 5:10 am |
|---|
| 91 | _HELP_ME_ESCAPE_FROM_BELARUS_PLEASE_ [Guest Diary], (Tue, Jul 7th) | Jul 9, 2:10 am |
|---|
| 92 | ISC Stormcast For Thursday, July 9th, 2026 https://isc.sans.edu/podcastdetail/10000, (Thu, Jul 9th) | Jul 9, 2:10 am |
|---|
| 93 | Mount Royal University confirms breach as hackers claim attack | Jul 8, 10:10 pm |
|---|
| 94 | Fake Paysafe, Skrill SDKs on NPM and PyPi steal credentials | Jul 8, 8:10 pm |
|---|
| 95 | Hackers exploit Roundcube flaw to spy on academic researchers | Jul 8, 7:10 pm |
|---|
| 96 | AI Coding Agents Found Triggering Endpoint Security Rules Built to Catch Attackers | Jul 8, 6:10 pm |
|---|
| 97 | New HalluSquatting Attack Could Trick AI Coding Assistants Into Installing Botnet Malware | Jul 8, 5:10 pm |
|---|
| 98 | Entra passkey enrollment vishing targets Microsoft 365 users | Jul 8, 5:10 pm |
|---|
| 99 | Ubiquiti Patches Critical UniFi Flaws Across Connect, Talk, Access, Protect, and OS | Jul 8, 3:10 pm |
|---|
| 100 | SCMBANKER Malware Uses ClickFix Lures to Target Mexican Banking Users | Jul 8, 2:10 pm |
|---|
| 101 | New Ghost Phishing Wave Is Breaking Traditional Email Security | Jul 8, 2:10 pm |
|---|
| 102 | 3 Ways AI Powers Service Desk Attacks and How to Prevent Them | Jul 8, 2:10 pm |
|---|
| 103 | Felons, Fraudsters Flog Offensive Cybersecurity Startup | Jul 8, 1:10 pm |
|---|
| 104 | GitHub Copilot Refuses Harmful Requests in Chat, Then Writes Them in Code | Jul 8, 12:10 pm |
|---|
| 105 | Telco giant KDDI says data breach affects over 12 million people | Jul 8, 12:10 pm |
|---|
| 106 | The Verification Step Is the New ATO Battleground in 2026 | Jul 8, 12:10 pm |
|---|
| 107 | GitHub 'Verified' Commits Can Be Rewritten Into New Hashes Without Breaking Signatures | Jul 8, 12:10 pm |
|---|
| 108 | DuckDuckGo browser now blocks YouTube video ads | Jul 8, 12:10 pm |
|---|
| 109 | China-Linked UAT-7810 Expands ORB Network With New LONGLEASH Malware | Jul 8, 10:10 am |
|---|
| 110 | CISA orders feds to prioritize patching Langflow auth bypass flaw | Jul 8, 10:10 am |
|---|
| 111 | My Stack Simulator, (Wed, Jul 8th) | Jul 8, 9:10 am |
|---|
| 112 | Ubiquiti warns of new max severity UniFi OS vulnerability | Jul 8, 9:10 am |
|---|
| 113 | CISA orders feds to patch max severity ColdFusion flaw by Friday | Jul 8, 8:10 am |
|---|
| 114 | CISA Adds 4 Actively Exploited Adobe, Joomla, and Langflow Flaws to KEV | Jul 8, 7:10 am |
|---|
| 115 | 15-Year-Old GhostLock Flaw Enables Root and Container Escape on Most Linux Distros | Jul 8, 7:10 am |
|---|
| 116 | ISC Stormcast For Wednesday, July 8th, 2026 https://isc.sans.edu/podcastdetail/9998, (Wed, Jul 8th) | Jul 8, 2:10 am |
|---|
| 117 | Accenture confirms breach after hacker offers stolen data for sale | Jul 7, 10:10 pm |
|---|
| 118 | More Odd DNS Records: NIMLOC, (Tue, Jul 7th) | Jul 7, 7:10 pm |
|---|
| 119 | Chinese hackers develop LONGLEASH malware to expand ORB network | Jul 7, 7:10 pm |
|---|
| 120 | Rogue Agent Flaw Could Have Let Attackers Hijack Google Dialogflow CX Chatbots | Jul 7, 6:10 pm |
|---|
| 121 | RedWing MaaS Packages Android Bank Fraud as a Telegram Rental Service | Jul 7, 6:10 pm |
|---|
| 122 | Hidden backdoor in Tenda router firmware grants admin access | Jul 7, 6:10 pm |
|---|
| 123 | DEBULL Tooling Abuses Microsoft Device-Code Flow to Target M365 Accounts | Jul 7, 5:10 pm |
|---|
| 124 | Spain arrests suspected member of pro-Russian hacktivist groups | Jul 7, 4:10 pm |
|---|
| 125 | Public GitHub Issue Could Trick GitHub Agentic Workflows Into Leaking Private Repo Data | Jul 7, 3:10 pm |
|---|
| 126 | Writer AI Flaw Could Let Agent Previews Leak Session Tokens Across Tenants | Jul 7, 2:10 pm |
|---|
| 127 | Court Filing Reveals Windows Device ID Helped FBI Trace Alleged Scattered Spider Hacker | Jul 7, 2:10 pm |
|---|
| 128 | The GitHub Actions Attack Pattern Your CI Security Scanners Miss | Jul 7, 2:10 pm |
|---|
| 129 | Webinar tomorrow: Why modern email attacks require a new approach to defense | Jul 7, 1:10 pm |
|---|
| 130 | What Changes When Your Software Supply Chain Includes AI Writing Your Code? | Jul 7, 12:10 pm |
|---|
| 131 | New Januscape Linux flaw allows VM escape on Intel, AMD devices | Jul 7, 12:10 pm |
|---|
| 132 | Suspected China-Aligned Hackers Exploit Roundcube Flaws Against Universities | Jul 7, 10:10 am |
|---|
| 133 | Microsoft to enable Windows settings backup by default for orgs | Jul 7, 10:10 am |
|---|
| 134 | BeyondTrust warns of critical flaws in remote access software | Jul 7, 9:10 am |
|---|
| 135 | CERT/CC Warns of Hidden Admin Backdoor in Tenda Router Firmware | Jul 7, 8:10 am |
|---|
| 136 | Microsoft testing new Cloud Rebuild Windows 11 recovery feature | Jul 7, 8:10 am |
|---|
| 137 | BeyondTrust Patches Critical Auth Bypass Flaws in Remote Support and PRA | Jul 7, 7:10 am |
|---|
| 138 | ISC Stormcast For Tuesday, July 7th, 2026 https://isc.sans.edu/podcastdetail/9996, (Tue, Jul 7th) | Jul 7, 2:10 am |
|---|
| 139 | Fake IT support calls on Microsoft Teams push EtherRAT malware | Jul 6, 9:10 pm |
|---|
| 140 | Phishing poses as big-brand job interview to steal Google accounts | Jul 6, 9:10 pm |
|---|
| 141 | Iran-Linked Hackers Use New Cavern C2 Framework to Target Israeli Organizations | Jul 6, 8:10 pm |
|---|
| 142 | 16-Year-Old Linux KVM Flaw Lets Guest VMs Escape to Host on Intel and AMD x86 Systems | Jul 6, 7:10 pm |
|---|
| 143 | Vietnam arrests suspects behind HiAnime anime piracy service | Jul 6, 7:10 pm |
|---|
| 144 | Threat Actors Probe Gitea Docker Flaw CVE-2026-20896 13 Days After Disclosure | Jul 6, 6:10 pm |
|---|
| 145 | ⚡ Weekly Recap: Proxy Botnets, Browser Ransomware, AI Agent Tricks, Fake PoC Malware and More | Jul 6, 2:10 pm |
|---|
| 146 | Max severity Adobe ColdFusion flaw now exploited in attacks | Jul 6, 2:10 pm |
|---|
| 147 | RCS and DNS: The NAPTR Record, (Mon, Jul 6th) | Jul 6, 2:10 pm |
|---|
| 148 | Software Is Now Written at the Speed of Thought. Security Isn't. | Jul 6, 2:10 pm |
|---|
| 149 | Suspected China-Nexus Hackers Use Fake Indian Tax Filing Utility to Deploy DcRAT | Jul 6, 1:10 pm |
|---|
| 150 | How to Evaluate an AI SOC Platform in 2026: 6 Capabilities That Separate Leaders from Bolt-On AI solutions | Jul 6, 1:10 pm |
|---|
| 151 | ISC Stormcast For Monday, July 6th, 2026 https://isc.sans.edu/podcastdetail/9994, (Mon, Jul 6th) | Jul 6, 12:10 pm |
|---|
| 152 | New Java-Based QuimaRAT MaaS Built to Run on Windows, Linux, and macOS | Jul 6, 9:10 am |
|---|
| 153 | New TrojPix Attack Leaks Data From Air-Gapped Systems via Video Cable Emissions | Jul 6, 9:10 am |
|---|
| 154 | Opera GX Flaw Let Malicious Sites Auto-Install Mods to Steal Data From Visited Pages | Jul 6, 8:10 am |
|---|
| 155 | SkillCloak Lets Malicious AI Agent Skills Evade Static Scanners with Self-Extracting Packing | Jul 6, 7:10 am |
|---|
| 156 | Flipper Zero firmware development continues with community help | Jul 5, 3:10 pm |
|---|
| 157 | JadePuffer ransomware used AI agent to automate entire attack | Jul 4, 3:10 pm |
|---|
| 158 | U.S. Government Entity Paid Kairos $1 Million in Data-Theft Extortion Case | Jul 4, 2:10 pm |
|---|
| 159 | North Korean Hackers Publish 108 Malicious Packages and Extensions in PolinRider Campaign | Jul 4, 12:10 pm |
|---|
| 160 | Unpatched Flaws Disclosed in Filesystem Bundled Into Millions of Embedded Devices | Jul 3, 10:10 pm |
|---|
| 161 | New Avalon Malware Framework Packs CrownX Ransomware Capabilities | Jul 3, 8:11 pm |
|---|
| 162 | New "Bad Epoll" Linux Kernel Flaw Lets Unprivileged Users Gain Root, Hits Android | Jul 3, 8:10 pm |
|---|
| 163 | NetNut proxy network disrupted, 2 million infected devices cut off | Jul 3, 6:10 pm |
|---|
| 164 | North Korea-Linked npm Packages Mimic Rollup Polyfills to Steal Developer Secrets | Jul 3, 5:10 pm |
|---|
| 165 | ARToken PhaaS exposes EvilTokens' Microsoft 365 phishing toolkit | Jul 3, 3:10 pm |
|---|
| 166 | Armored Likho Targets Government Agencies, Power Sector with BusySnake Stealer | Jul 3, 2:10 pm |
|---|
| 167 | European Parliament Member Investigating Spyware Was Hacked With Pegasus | Jul 3, 11:10 am |
|---|
| 168 | PamStealer Uses Fake Maccy Sites and PAM Checks to Steal Mac Login Passwords | Jul 3, 9:10 am |
|---|
| 169 | Claude Fable 5 isn’t permanently leaving subscriptions, Anthropic says | Jul 3, 2:10 am |
|---|
| 170 | Claude Fable relaunch disappoints users with nerfed performance | Jul 3, 1:10 am |
|---|
| 171 | Ransomware Groups Turn to Citrix Bleed 2, BYOVD, and Supply Chain Credentials | Jul 2, 8:10 pm |
|---|
| 172 | Google Disrupts NetNut Residential Proxy Network Spanning 2 Million Home Devices | Jul 2, 8:10 pm |
|---|
| 173 | FBI Seizes NetNut Proxy Platform, Popa Botnet | Jul 2, 8:10 pm |
|---|
| 174 | Google loses final appeal to overturn €4.1 billion EU fine | Jul 2, 4:10 pm |
|---|
| 175 | ThreatsDay: AI Compute Hijacking, Apple Email Flaw, BlueHammer Ransomware + 14 Stories | Jul 2, 4:10 pm |
|---|
| 176 | ToddyCat-Linked Umbrij Malware Abuses OAuth to Access Gmail via Google API | Jul 2, 2:10 pm |
|---|
| 177 | ConsentFix and ClickFix: How Microsoft 365 Accounts are Hijacked in 3 Seconds | Jul 2, 2:10 pm |
|---|
| 178 | Identity Lifecycle Management Wasn't Built for AI Agents | Jul 2, 1:10 pm |
|---|
| 179 | Microsoft fixes bug that removed Copilot buttons in Outlook | Jul 2, 1:10 pm |
|---|
| 180 | Cisco finally confirms attackers exploiting Unified CM flaw | Jul 2, 12:10 pm |
|---|
| 181 | Opera rolls out Paste Protect feature to fight ClickFix attacks | Jul 2, 11:10 am |
|---|
| 182 | CISA: Microsoft SharePoint RCE flaw now actively exploited | Jul 2, 11:10 am |
|---|
| 183 | FortiBleed Credential Theft Linked to INC and Lynx Ransomware Operations | Jul 2, 10:10 am |
|---|
| 184 | AI Agent Exploits Langflow RCE to Automate Database Ransomware Attack | Jul 2, 10:10 am |
|---|
| 185 | Alleged Scattered Spider hacker extradited to the United States | Jul 2, 9:10 am |
|---|
| 186 | New ChocoPoC RAT Targets Vulnerability Researchers via Fake PoC Exploit Repos | Jul 2, 8:10 am |
|---|
| 187 | SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active Exploitation | Jul 2, 7:10 am |
|---|
| 188 | Medtronic notifies customers impacted by ShinyHunters data breach | Jul 2, 5:10 am |
|---|
| 189 | ISC Stormcast For Thursday, July 2nd, 2026 https://isc.sans.edu/podcastdetail/9992, (Thu, Jul 2nd) | Jul 2, 2:10 am |
|---|
| 190 | FortiBleed credential-theft campaign linked to Lynx ransomware | Jul 1, 10:10 pm |
|---|
| 191 | New ChocoPoC malware targets researchers via trojanized PoC exploits | Jul 1, 9:10 pm |
|---|
| 192 | Kubota says hackers had month-long access to network systems | Jul 1, 9:10 pm |
|---|
| 193 | 19-Year-Old Scattered Spider Suspect Extradited to Face U.S. Hacking Charges | Jul 1, 8:10 pm |
|---|
| 194 | Unpatched Argo CD Repo-Server Flaw Could Let Attackers Take Over Kubernetes Clusters | Jul 1, 8:10 pm |
|---|
| 195 | ChocoPoc malware delivered via trojanized exploits on GitHub | Jul 1, 8:10 pm |
|---|
| 196 | VEIL#DROP Malware Chain Uses Blogger Platform to Deliver PureLogs Stealer | Jul 1, 7:10 pm |
|---|
| 197 | SEO-Poisoned Software Sites Abuse ScreenConnect to Deploy AsyncRAT | Jul 1, 7:10 pm |
|---|
| 198 | DHS confirms hackers breached HSIN info-sharing platform | Jul 1, 6:10 pm |
|---|
| 199 | Hackers target Microsoft 365 accounts with 81 million login attempts | Jul 1, 5:10 pm |
|---|
| 200 | Webinar: Why traditional email security is no longer enough | Jul 1, 5:10 pm |
|---|
| 201 | Critical Cursor Flaws Could Let Prompt Injection Escape Sandbox and Run Commands | Jul 1, 4:10 pm |
|---|
| 202 | Adobe Patches 7 CVSS 10.0 Flaws in ColdFusion and Campaign Classic | Jul 1, 4:10 pm |
|---|
| 203 | Ousaban Banking Trojan Targets Iberian Bank Users with Fake PDF Lures | Jul 1, 4:10 pm |
|---|
| 204 | AI-Generated Browser Ransomware Abuses Chromium API on Windows and Android | Jul 1, 3:10 pm |
|---|
| 205 | Progress Kemp LoadMaster Pre-Auth RCE Flaw Faces Active Exploitation Attempts | Jul 1, 3:10 pm |
|---|
| 206 | Turning Indicators into Intelligence in OpenCTI with Criminal IP | Jul 1, 3:10 pm |
|---|
| 207 | 2026 Cybersecurity Assessment: The Gap Between Awareness and Resilience | Jul 1, 1:10 pm |
|---|
| 208 | Over 900 Oracle E-Business instances exposed to ongoing attacks | Jul 1, 1:10 pm |
|---|
| 209 | Microsoft Accelerates Post-Quantum Cryptography Shift to 2029 | Jul 1, 12:10 pm |
|---|
| 210 | Microsoft fixes GIF functionality in the Windows Emoji Panel | Jul 1, 11:10 am |
|---|
| 211 | Amazon fined $2.25M for withholding evidence from fraud victims | Jul 1, 10:10 am |
|---|
| 212 | Anthropic Restores Claude Fable 5 After U.S. Lifts Jailbreak-Linked Export Controls | Jul 1, 8:10 am |
|---|
| 213 | Phantom Squatting Uses AI-Hallucinated Domains for Phishing and Malware | Jul 1, 8:10 am |
|---|
| 214 | Adobe patches seven max severity ColdFusion, Campaign flaws | Jul 1, 8:10 am |
|---|
| 215 | Why Ask Credentials If There Are Secret Codes?, (Wed, Jul 1st) | Jul 1, 6:10 am |
|---|
| 216 | Researcher Analyzes 3,000 Live ClickFix Payloads, Exposing API-Driven Malware Delivery | Jul 1, 6:10 am |
|---|
| 217 | Azure CLI Password Spray Hits at Least 78 Microsoft Accounts in 81M+ Attempts | Jul 1, 6:10 am |
|---|
| 218 | Citrix Patches Six NetScaler Flaws Allowing File Read and Denial-of-Service | Jul 1, 5:10 am |
|---|
| 219 | ISC Stormcast For Wednesday, July 1st, 2026 https://isc.sans.edu/podcastdetail/9990, (Wed, Jul 1st) | Jul 1, 2:10 am |
|---|
| 220 | Anthropic to restore Claude Fable access on Wednesday | Jul 1, 1:10 am |
|---|
| 221 | Anthropic rolls out Sonnet 5 with near-Opus 4.8 performance at a lower price | Jul 1, 12:10 am |
|---|
| 222 | Microsoft accelerates quantum-safe roadmap as risks grow | Jun 30, 10:10 pm |
|---|
| 223 | New BioShocking attack manipulates AI browser into data theft | Jun 30, 10:10 pm |
|---|
| 224 | Malicious PyPI packages give hackers control of Telegram bot servers | Jun 30, 9:10 pm |
|---|
| 225 | RustDuck Botnet Rebuilds in Rust to Hijack Routers and Servers for DDoS | Jun 30, 7:10 pm |
|---|
| 226 | Microsoft Warns Poisoned MCP Tool Descriptions Can Make AI Agents Leak Data | Jun 30, 7:10 pm |
|---|
| 227 | Langflow RCE Exploited to Deploy Monero Miner on Exposed AI App Endpoints | Jun 30, 6:10 pm |
|---|
| 228 | Silent Swap Crypto Clipper Uses Fake Google Notes Extension to Replace Wallet Addresses | Jun 30, 4:10 pm |
|---|
| 229 | Fake Perplexity extension on Chrome Web Store tracked searches | Jun 30, 4:10 pm |
|---|
| 230 | 282 iOS AI Apps Leak API Keys and Open AI Proxy Access in Network Traffic Study | Jun 30, 3:10 pm |
|---|
| 231 | GuardFall Exposes Open-Source AI Coding Agents to Decades-Old Shell Injection Risks | Jun 30, 3:10 pm |
|---|
| 232 | Lessons from the Underground: How to Combat Business Email Compromise | Jun 30, 2:10 pm |
|---|
| 233 | What the Numbers Say About FIFA 2026 Cyber Risk | Jun 30, 1:10 pm |
|---|
| 234 | Microsoft adds smarter bot protection to Teams meetings | Jun 30, 12:10 pm |
|---|
| 235 | Insurance giant Aflac discloses data breach after subsidiary hack | Jun 30, 12:10 pm |
|---|
| 236 | Attackers Exploit SimpleHelp CVE-2026-48558 to Deploy TaskWeaver and Djinn Stealer | Jun 30, 12:10 pm |
|---|
| 237 | AirDrop and Quick Share Flaws Let Nearby Attackers Trigger Crashes and Bypass Checks | Jun 30, 11:10 am |
|---|
| 238 | Mircosoft adds smarter bot protection to Teams meetings | Jun 30, 11:10 am |
|---|
| 239 | June 2026 Apple Updates, (Tue, Jun 30th) | Jun 30, 10:10 am |
|---|
| 240 | Blackfield ransomware asks Nidec Corporation for $2 million ransom | Jun 30, 10:10 am |
|---|
| 241 | Kali Linux 2026.2 released with 9 new tools, NetHunter updates | Jun 30, 10:10 am |
|---|
| 242 | Progress Kemp LoadMaster Flaw Could Let Attackers Run Root Commands Pre-Auth | Jun 30, 9:10 am |
|---|
| 243 | New BioShocking Attack Tricks AI Browsers Into Leaking User Credentials | Jun 30, 9:10 am |
|---|
| 244 | CISA: Windows BlueHammer flaw now exploited by ransomware gangs | Jun 30, 9:10 am |
|---|
| 245 | Apple Patches 30+ iOS, macOS, Safari Flaws, Including AI-Discovered WebKit Bugs | Jun 30, 8:10 am |
|---|
| 246 | Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild | Jun 30, 6:10 am |
|---|
| 247 | ISC Stormcast For Tuesday, June 30th, 2026 https://isc.sans.edu/podcastdetail/9988, (Tue, Jun 30th) | Jun 30, 3:10 am |
|---|
| 248 | NAIC says public data stolen in ShinyHunters' PeopleSoft breach | Jun 29, 9:10 pm |
|---|
| 249 | Nissan discloses employee data breach linked to Oracle zero-day attacks | Jun 29, 9:10 pm |
|---|
| 250 | Malicious Perplexity Chrome Extension Intercepted Searches and Address Bar Input | Jun 29, 8:10 pm |
|---|
| 251 | Microsoft extends Windows Server 2022 hotpatching until October 2027 | Jun 29, 6:10 pm |
|---|
| 252 | WhatsApp rolls out usernames to help users hide their phone number | Jun 29, 6:10 pm |
|---|
| 253 | Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government Attacks | Jun 29, 5:10 pm |
|---|
| 254 | WhatsApp is Finally Getting Usernames to Help Keep Phone Numbers Private | Jun 29, 5:10 pm |
|---|
| 255 | ⚡ Weekly Recap: Linux Kernel Flaws, AI Malware Tricks, Turla Backdoor, Infostealers and More | Jun 29, 3:10 pm |
|---|
| 256 | U.S. offers $10 million for hackers targeting WhatsApp, Signal users | Jun 29, 3:10 pm |
|---|
| 257 | 236,000 DCloud Uni-App Sites Used in Crypto Scams, Phishing, and Wallet Drainers | Jun 29, 2:10 pm |
|---|
| 258 | Hackers now exploit critical Oracle E-Business flaw in attacks | Jun 29, 2:10 pm |
|---|
| 259 | Critical SimpleHelp flaw exploited to deploy new stealer malware | Jun 29, 2:10 pm |
|---|
| 260 | Agentic AI Has an Identity Problem and Attackers Know It | Jun 29, 2:10 pm |
|---|
| 261 | Webinar: Why business email compromise attacks keep succeeding | Jun 29, 1:10 pm |
|---|
| 262 | US seizes hundreds of FIFA World Cup illegal streaming domains | Jun 29, 12:10 pm |
|---|
| 263 | Gamaredon Expands Ukraine Attacks with New Malware and Cloud Service Abuse | Jun 29, 12:10 pm |
|---|
| 264 | Why Post-Quantum Cryptography Starts With Credentials | Jun 29, 12:10 pm |
|---|
| 265 | Adding some Automation to the favicon.ico method of Host Recon, (Mon, Jun 29th) | Jun 29, 12:10 pm |
|---|
| 266 | Microsoft Removes 119 Edge Extensions That Hid Malware in Images and Fonts | Jun 29, 10:10 am |
|---|
| 267 | Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw | Jun 29, 8:10 am |
|---|
| 268 | Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer | Jun 29, 7:10 am |
|---|
| 269 | ISC Stormcast For Monday, June 29th, 2026 https://isc.sans.edu/podcastdetail/9986, (Mon, Jun 29th) | Jun 29, 2:10 am |
|---|
| 270 | Data breach exposes up to 14.2 million email logins at six ISPs | Jun 28, 3:10 pm |
|---|
| 271 | YARA-X 1.18.0 and 1.19.0 Release, (Sun, Jun 28th) | Jun 28, 8:10 am |
|---|
| 272 | Ukraine Says Russian Intelligence Used Fake Support Texts to Steal Messaging Credentials | Jun 27, 6:10 pm |
|---|
| 273 | Clean GitHub repo tricks AI coding agents into running malware | Jun 27, 3:10 pm |
|---|
| 274 | OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber Safeguards | Jun 27, 1:10 pm |
|---|
| 275 | FBI: Russian hackers now target Signal backup recovery keys | Jun 26, 10:10 pm |
|---|
| 276 | FBI Warns Russian Intelligence Hackers Target Signal Backup Recovery Keys | Jun 26, 8:10 pm |
|---|
| 277 | CISA sets urgent deadline to fix Cisco flaw exploited in attacks | Jun 26, 8:10 pm |
|---|
| 278 | New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks | Jun 26, 7:10 pm |
|---|
| 279 | Cybersecurity firms targeted by fraudulent OpenAI organization invites | Jun 26, 6:10 pm |
|---|
| 280 | Polymarket customers lose $3 million in supply-chain attack | Jun 26, 6:10 pm |
|---|
| 281 | Chinese-Speaking APT Deploys New TinyRCT Backdoor in Southeast Asia Campaign | Jun 26, 5:10 pm |
|---|
| 282 | Amazon Q Developer Flaw Could Let Malicious Repos Run Code via MCP Configs | Jun 26, 3:10 pm |
|---|
| 283 | Your First GRC Agent: A Red Teamer's Walkthrough | Jun 26, 2:10 pm |
|---|
| 284 | Guardian Agents: The Next Layer of Identity Governance | Jun 26, 1:10 pm |
|---|
| 285 | New DirtyClone Linux Kernel Flaw Lets Local Users Gain Root via Cloned Packets | Jun 26, 1:10 pm |
|---|
| 286 | CISA Adds Exploited PTC Windchill RCE Flaw to KEV as Web Shell Attacks Continue | Jun 26, 1:10 pm |
|---|
| 287 | New Linux pedit COW Exploit Enables Root Access by Poisoning Cached Binaries | Jun 26, 1:10 pm |
|---|
| 288 | Microsoft Warns of Photo ZIP Phishing Campaign Targeting Hotels with Node.js Implant | Jun 26, 11:10 am |
|---|
| 289 | Miasma Malware Targets npm Packages and GitHub Actions in Supply Chain Attack | Jun 26, 11:10 am |
|---|
| 290 | Russia Used Cellebrite on Jailed Activist's iPhone Months After Sales Cutoff | Jun 26, 9:10 am |
|---|
| 291 | Google Details Turla's New STOCKSTAY Backdoor Used in Ukraine Espionage Attacks | Jun 26, 8:10 am |
|---|
| 292 | Poland busts SIM-swapping gang tied to millions in crypto theft | Jun 25, 11:10 pm |
|---|
| 293 | Anthropic is testing desktop-like Claude Cowork for mobile | Jun 25, 11:10 pm |
|---|
| 294 | Order-tracking app Shop abused to push callback phishing attacks | Jun 25, 8:10 pm |
|---|
| 295 | Microsoft quietly extends free Windows 10 ESU support to October 2027 | Jun 25, 7:10 pm |
|---|
| 296 | New macOS malware embeds fake errors to confuse AI analysis tools | Jun 25, 5:10 pm |
|---|
| 297 | PirloTV sports piracy network disrupted as 44 domains seized | Jun 25, 4:10 pm |
|---|
| 298 | Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability | Jun 25, 3:10 pm |
|---|
| 299 | Bluekit phishing kit adopts browser-in-the-middle for login theft | Jun 25, 3:10 pm |
|---|
| 300 | The Four Elevations of Effective Fraud Prevention | Jun 25, 2:10 pm |
|---|
| 301 | Webinar: Why account takeovers remain one of the hardest threats to stop | Jun 25, 1:10 pm |
|---|
| 302 | ThreatsDay Bulletin: Smart TV Proxyware, 24-Year curl Bug, AI Crime Forums + 13 More Stories | Jun 25, 1:10 pm |
|---|
| 303 | Surviving the Mythos Era: Richard Bejtlich on the Case for NDR | Jun 25, 12:10 pm |
|---|
| 304 | New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis | Jun 25, 11:10 am |
|---|
| 305 | New Mistic Backdoor Linked to KongTuke in ClickFix and ModeloRAT Campaigns | Jun 25, 10:10 am |
|---|
| 306 | Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Gain Root Access | Jun 25, 6:10 am |
|---|
| 307 | What do Ports Hear When Nobody's Listening? An Assessment of Automated Cybercrime [Guest Diary], (Wed, Jun 24th) | Jun 25, 1:10 am |
|---|
| 308 | Google releases new privacy controls for activity history, personalization | Jun 25, 12:10 am |
|---|
| 309 | Mandiant reveals how Cisco SD-WAN zero-day attacks gained root access | Jun 24, 10:10 pm |
|---|
| 310 | DraftKings hacker 'Snoopy' sentenced to 18 months in prison | Jun 24, 10:10 pm |
|---|
| 311 | Malicious Edge extension abuses Native Messaging as bridge to malware | Jun 24, 9:10 pm |
|---|
| 312 | Amadey and StealC Malware Network Disrupted, 27M Stolen Credentials Recovered | Jun 24, 6:10 pm |
|---|
| 313 | CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited | Jun 24, 6:10 pm |
|---|
| 314 | Amadey, StealC malware operations disrupted in Operation Endgame action | Jun 24, 3:10 pm |
|---|
| 315 | CISA warns of max severity Ubiquiti flaws exploited in attacks | Jun 24, 3:10 pm |
|---|
| 316 | Cordyceps CI/CD Flaws Expose 300+ GitHub Repositories to Supply-Chain Attacks | Jun 24, 2:10 pm |
|---|
| 317 | Securing the service desk: Why social engineering attacks keep succeeding | Jun 24, 2:10 pm |
|---|
| 318 | Dawn of the Apex Agentic Adversary | Jun 24, 1:10 pm |
|---|
| 319 | Stealthy Mistic backdoor linked to ransomware access broker KongTuke | Jun 24, 11:10 am |
|---|
| 320 | DoJ Seizes Huione Cloud Account Tied to Cyber Scam Money Laundering | Jun 24, 10:10 am |
|---|
| 321 | Cisco Unified CM Flaw Exploited After PoC Reveals File-Write Path to Root | Jun 24, 8:10 am |
|---|
| 322 | Linux Process Name Masquerading, (Wed, Jun 24th) | Jun 24, 7:10 am |
|---|
| 323 | ISC Stormcast For Wednesday, June 24th, 2026 https://isc.sans.edu/podcastdetail/9984, (Wed, Jun 24th) | Jun 24, 2:10 am |
|---|
| 324 | Cisco Unified CM flaw CVE-2026-20230 now exploited in attacks | Jun 23, 10:10 pm |
|---|
| 325 | Windows 11 KB5095093 update rolls out new Point-in-Time restore feature | Jun 23, 9:10 pm |
|---|
| 326 | Tata Electronics confirms cyberattack as hackers leak data | Jun 23, 9:10 pm |
|---|
| 327 | FortiBleed Targeted FortiGate Firewalls in 110 Million-Credential Harvesting Operation | Jun 23, 8:10 pm |
|---|
| 328 | Healthtech firm Xolis suffers data breach impacting 1.4 million people | Jun 23, 8:10 pm |
|---|
| 329 | New macOS ClickFix attack silently mounts DMGs to push infostealer | Jun 23, 7:10 pm |
|---|
| 330 | Trump Order Sets 2030 Deadline for Federal Post-Quantum Crypto Migration | Jun 23, 5:10 pm |
|---|
| 331 | Fake AI Agent Skill Passed Security Scans and Reportedly Reached 26,000 Agents | Jun 23, 5:10 pm |
|---|
| 332 | Scattered Spider Hackers Plead Guilty on Day 1 of Trial | Jun 23, 5:10 pm |
|---|
| 333 | Scattered Spider members plead guilty to hacking Transport for London | Jun 23, 4:10 pm |
|---|
| 334 | GitHub Updates actions/checkout to Block Common Pwn Request Attack Patterns | Jun 23, 3:10 pm |
|---|
| 335 | LastPass confirms data breach in Klue supply chain attack | Jun 23, 2:10 pm |
|---|
| 336 | The Exploit Doesn't Exist. You Can Still Prove It Works Against You | Jun 23, 2:10 pm |
|---|
| 337 | Agentic AI: The Weapon That No Longer Needs a Warrior | Jun 23, 1:10 pm |
|---|
| 338 | Webinar: Why email security teams are drowning in alerts | Jun 23, 1:10 pm |
|---|
| 339 | Malicious npm Packages Pose as PostCSS Tools to Deliver Windows RAT | Jun 23, 10:10 am |
|---|
| 340 | WhatsApp VBScript Campaign Uses Fake Documents to Install ManageEngine RMM Tool | Jun 23, 7:10 am |
|---|
| 341 | OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Patch Security Flaws | Jun 23, 5:10 am |
|---|
| 342 | CVE-2024-40766: The Patch Fixed the Bug. Nobody Fixed the Configuration., (Tue, Jun 23rd) | Jun 23, 3:10 am |
|---|
| 343 | ISC Stormcast For Tuesday, June 23rd, 2026 https://isc.sans.edu/podcastdetail/9982, (Tue, Jun 23rd) | Jun 23, 2:10 am |
|---|
| 344 | WhatsApp phishing attack uses fake business docs to hack PCs | Jun 22, 11:10 pm |
|---|
| 345 | JaredFromSubway MEV bot hacked in $15 million crypto theft | Jun 22, 10:10 pm |
|---|
| 346 | FFmpeg fixes PixelSmash flaw in widely used video decoder | Jun 22, 9:10 pm |
|---|
| 347 | FortiBleed campaign used custom FortiGate sniffer to steal credentials | Jun 22, 8:10 pm |
|---|
| 348 | ShapedPlugin WordPress Pro Plugins Backdoored in Supply Chain Attack | Jun 22, 7:10 pm |
|---|
| 349 | Microsoft fixes AutoGen Studio flaw that enabled code execution | Jun 22, 6:10 pm |
|---|
| 350 | Microsoft says Windows 11 26H2 is coming soon, details upgrade process | Jun 22, 6:10 pm |
|---|
| 351 | Researchers Detail DifyTap Flaws in Dify That Could Expose AI Chats Across Tenants | Jun 22, 5:10 pm |
|---|
| 352 | A Glimpse into the “Search Your Target” Market for Stolen Credentials | Jun 22, 3:10 pm |
|---|
| 353 | Webshells Remain Popular, (Mon, Jun 22nd) | Jun 22, 3:10 pm |
|---|
| 354 | 29-Year-Old Squid Proxy Bug 'Squidbleed' Can Leak Cleartext HTTP Requests | Jun 22, 3:10 pm |
|---|
| 355 | Google Sets Sept. 30 Deadline for Android Developer Verification in Four Countries | Jun 22, 2:10 pm |
|---|
| 356 | New OXLOADER Loader Uses Malicious Google Ads to Deliver CastleStealer | Jun 22, 2:10 pm |
|---|
| 357 | ⚡ Weekly Recap: Browser Bugs, EDR Killers, TV Botnet, OpenBSD Flaw, Android Trojan, and More | Jun 22, 1:10 pm |
|---|
| 358 | Stop Your Legacy Infrastructure from Hijacking Your AI Agents | Jun 22, 1:10 pm |
|---|
| 359 | Canada’s Spy Agency Used First-of-Its-Kind Warrant to Clean Botnet-Infected Devices | Jun 22, 10:10 am |
|---|
| 360 | AryStinger Malware Infects 4,300 Legacy Routers to Build Reconnaissance Proxy Network | Jun 22, 8:10 am |
|---|
| 361 | INTERPOL Warns Phishing, Ransomware, and AI Scams Are Rising Across Asia-Pacific | Jun 22, 7:10 am |
|---|
| 362 | ISC Stormcast For Monday, June 22nd, 2026 https://isc.sans.edu/podcastdetail/9980, (Mon, Jun 22nd) | Jun 22, 2:10 am |
|---|
| 363 | AryStinger botnet infected thousands of D-Link routers worldwide | Jun 21, 3:10 pm |
|---|
| 364 | New Prinz Eugen ransomware prioritizes recent files for encryption | Jun 20, 4:10 pm |
|---|
| 365 | Microsoft links Mastra AI supply chain attack to North Korean hackers | Jun 20, 3:10 pm |
|---|
| 366 | Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys | Jun 20, 11:10 am |
|---|
| 367 | Klue OAuth breach victim list grows as Icarus hackers claim attack | Jun 19, 11:10 pm |
|---|
| 368 | Hackers exploit info disclosure bug in Gravity SMTP WordPress plugin | Jun 19, 9:10 pm |
|---|
| 369 | The Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security Processes | Jun 19, 7:10 pm |
|---|
| 370 | Unpatchable 'usbliter8' Exploit Breaks Apple A12 and A13 SecureROM Boot Chain | Jun 19, 7:10 pm |
|---|
| 371 | AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution | Jun 19, 5:10 pm |
|---|
| 372 | Texas govt data breach exposes over 3 million driver’s licenses | Jun 19, 5:10 pm |
|---|
| 373 | Operation Endgame Disrupts SocGholish Servers, Cleans 14,971 WordPress Sites | Jun 19, 4:10 pm |
|---|
| 374 | CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate Devices | Jun 19, 3:10 pm |
|---|
| 375 | Every AI Agent Is an Identity. Most Organizations Don't Treat Them That Way | Jun 19, 2:10 pm |
|---|
| 376 | From Assistive to Agentic: The AI Shift That's Redefining Threat Management | Jun 19, 1:10 pm |
|---|
| 377 | Webinar: How attackers bypass MFA and how defenders can respond | Jun 19, 1:10 pm |
|---|
| 378 | Forget Data Leakage: Shadow AI's Real Threat Is Access Control | Jun 19, 12:10 pm |
|---|
| 379 | Microsoft: June 2026 Windows updates break Recycle Bin prompts | Jun 19, 12:10 pm |
|---|
| 380 | CISA: Splunk Enterprise flaw actively exploited, patch by Sunday | Jun 19, 11:10 am |
|---|
| 381 | Salesforce Disables Klue App Integration After OAuth Token Abuse Exposes Customer Data | Jun 19, 10:10 am |
|---|
| 382 | NY man charged after harassing college student with AI-generated nudes | Jun 19, 9:10 am |
|---|
| 383 | eBanking Phishing Delivered Through IPv4-Mapped IPv6 Address, (Fri, Jun 19th) | Jun 19, 8:10 am |
|---|
| 384 | Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone | Jun 19, 7:10 am |
|---|
| 385 | CISA warns Fortinet users to secure devices after FortiBleed leak | Jun 19, 7:10 am |
|---|
| 386 | Gentlemen ransomware uses multiple EDR killers to disable defenses | Jun 18, 11:10 pm |
|---|
| 387 | Nintendo confirms data stolen in WebMD subsidiary cyberattack | Jun 18, 8:10 pm |
|---|
| 388 | F5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code Execution | Jun 18, 7:10 pm |
|---|
| 389 | ‘Popa’ Botnet Linked to Publicly-Traded Israeli Firm | Jun 18, 6:10 pm |
|---|
| 390 | USB worm spreads crypto-stealing malware via Windows shortcut files | Jun 18, 5:10 pm |
|---|
| 391 | ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories | Jun 18, 4:10 pm |
|---|
| 392 | INC Ransomware Emerges as Major RaaS Threat in 2026 with 830+ Victims Since 2023 | Jun 18, 3:10 pm |
|---|
| 393 | Klue OAuth breach linked to 'Icarus' Salesforce data theft attacks | Jun 18, 3:10 pm |
|---|
| 394 | Microsoft Details Windows Clipper Malware Campaign Using USB LNK Worm and Tor-Based C2 | Jun 18, 3:10 pm |
|---|
| 395 | Police cleans nearly 15,000 SocGholish-infected sites tied to Evil Corp | Jun 18, 2:10 pm |
|---|
| 396 | DragonForce Hackers Abuse Microsoft Teams Relays to Hide Backdoor.Turn C2 Traffic | Jun 18, 2:10 pm |
|---|
| 397 | 5 reasons Microsoft 365 backup isn’t enough for business data protection | Jun 18, 2:10 pm |
|---|
| 398 | Orphaned AI Agents: How to Find Hidden Access Risks Inside Your Network | Jun 18, 1:10 pm |
|---|
| 399 | Telegram admits it couldn't police exam-leak channels, India tells court | Jun 18, 1:10 pm |
|---|
| 400 | Apple fixes Beats Studio Buds flaw that let hackers spy on conversations | Jun 18, 1:10 pm |
|---|
| 401 | ShapedPlugin update flow hacked to infect WordPress sites | Jun 18, 1:10 pm |
|---|
| 402 | The Scripts on Your Checkout Page Are Now a PCI DSS Problem | Jun 18, 12:10 pm |
|---|
| 403 | F5 issues out-of-band patches for critical NGINX vulnerabilities | Jun 18, 12:10 pm |
|---|
| 404 | Microsoft fixes Windows Server 2016 security update failures | Jun 18, 11:10 am |
|---|
| 405 | Leak confirms OpenAI is testing a ChatGPT for Science subscription | Jun 18, 2:10 am |
|---|
| 406 | The Behavior of Coordinated SSH Brute Force Attacks over the last three months [Guest Diary], (Wed, Jun 17th) | Jun 18, 2:10 am |
|---|
| 407 | ISC Stormcast For Thursday, June 18th, 2026 https://isc.sans.edu/podcastdetail/9978, (Thu, Jun 18th) | Jun 18, 2:10 am |
|---|
| 408 | Google to use UK and EU user IP addresses for ad personalization | Jun 17, 9:10 pm |
|---|
| 409 | Microsoft Confirms RoguePlanet Defender Zero-Day, Says Patch is in Development | Jun 17, 7:10 pm |
|---|
| 410 | Crypto Clipper Campaign Abuses Fake Reviews, AI Narrators, and VirusTotal Comments | Jun 17, 7:10 pm |
|---|
| 411 | Junior Hacker Used Tailscale and OpenSSH to Keep Access After His C2 Went Offline | Jun 17, 5:10 pm |
|---|
| 412 | FortiBleed leak exposes Fortinet VPN credentials for 73,000 devices. | Jun 17, 4:10 pm |
|---|
| 413 | The browser blind spot: Why your security tool may not be blocking what you think it is [Guest Diary], (Wed, Jun 17th) | Jun 17, 4:10 pm |
|---|
| 414 | India's Telegram ban hit the UAE too. Here's how to get around it | Jun 17, 2:10 pm |
|---|
| 415 | Why Account Takeovers Are Rising and How to Stop Them | Jun 17, 2:10 pm |
|---|
| 416 | Microsoft confirms Office apps launch issues after June updates | Jun 17, 12:10 pm |
|---|
| 417 | Adversarial Exposure Validation Turns Security Visibility into Confident Prioritization | Jun 17, 12:10 pm |
|---|
| 418 | The Top 10 Attack Surface Exposures in 2026 | Jun 17, 11:10 am |
|---|
| 419 | Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chats | Jun 17, 10:10 am |
|---|
| 420 | CISA orders feds to patch max severity Joomla plugin flaw by Friday | Jun 17, 10:10 am |
|---|
| 421 | Microsoft working on Defender patch for RoguePlanet zero-day | Jun 17, 9:10 am |
|---|
| 422 | 144 Mastra npm Packages Compromised via Hijacked Contributor Account | Jun 17, 8:10 am |
|---|
| 423 | CISA Warns of Actively Exploited Joomla JCE Flaw Allowing PHP Code Execution | Jun 17, 7:10 am |
|---|
| 424 | Kodak confirms data breach claimed by ShinyHunters extortion gang | Jun 17, 7:10 am |
|---|
| 425 | ISC Stormcast For Wednesday, June 17th, 2026 https://isc.sans.edu/podcastdetail/9976, (Wed, Jun 17th) | Jun 17, 2:10 am |
|---|
| 426 | Malicious JetBrains Marketplace plugins steal AI API keys from developers | Jun 16, 10:10 pm |
|---|
| 427 | Google Vertex AI SDK Flaw Let Attackers Hijack Model Uploads via Bucket Squatting | Jun 16, 8:10 pm |
|---|
| 428 | New Rokarolla Android malware targets 217 banking, crypto apps | Jun 16, 8:10 pm |
|---|
| 429 | ClickFix Campaigns Expand Malware Delivery With New Loaders and Fake Update Lures | Jun 16, 7:10 pm |
|---|
| 430 | Steam Workshop abused to spread malware via Wallpaper Engine app | Jun 16, 7:10 pm |
|---|
| 431 | GhostTree Attack Abused Recursive Windows Junctions to Hide Malware | Jun 16, 3:10 pm |
|---|
| 432 | UK to require ID or face scan before you can make social media accounts | Jun 16, 3:10 pm |
|---|
| 433 | New Rokarolla Android Malware Steals PINs, SMS Codes, and Crypto Wallet Funds | Jun 16, 2:10 pm |
|---|
| 434 | FTC warns of record $3.5 billion losses to imposter scams in 2025 | Jun 16, 2:10 pm |
|---|
| 435 | Survey: 94% of Incidents Involve Anonymized Infrastructure. Teams Are Still Reactive | Jun 16, 12:10 pm |
|---|
| 436 | China-Linked SprySOCKS Backdoor Expands to Windows with Driver-Based Stealth | Jun 16, 11:10 am |
|---|
| 437 | Ransomware gang abuses Microsoft Teams relays to hide malicious traffic | Jun 16, 11:10 am |
|---|
| 438 | Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week | Jun 16, 11:10 am |
|---|
| 439 | CISA warns of another cPanel plugin flaw exploited in attacks | Jun 16, 11:10 am |
|---|
| 440 | Critical Fortinet FortiSandbox flaws now exploited in attacks | Jun 16, 10:10 am |
|---|
| 441 | Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware | Jun 16, 9:10 am |
|---|
| 442 | Windows version of SprySOCKS Linux malware used to attack govt orgs | Jun 16, 9:10 am |
|---|
| 443 | From a VHDX File to a Remcos RAT, (Tue, Jun 16th) | Jun 16, 8:10 am |
|---|
| 444 | CISA Flags LiteSpeed cPanel Plugin Flaw Exploited for Root Privilege Escalation | Jun 16, 7:10 am |
|---|
| 445 | Cisco Releases Security Updates for Actively Exploited SD-WAN Manager Flaw | Jun 16, 7:10 am |
|---|
| 446 | iRhythm discloses data breach, says hackers stole patient info | Jun 16, 7:10 am |
|---|
| 447 | ISC Stormcast For Tuesday, June 16th, 2026 https://isc.sans.edu/podcastdetail/9974, (Tue, Jun 16th) | Jun 16, 2:10 am |
|---|
| 448 | Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails | Jun 15, 10:10 pm |
|---|
| 449 | DOJ seizes CFAKE, SOCFAKE deepfake nude sites under TAKE IT DOWN Act | Jun 15, 10:10 pm |
|---|
| 450 | North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels | Jun 15, 8:10 pm |
|---|
| 451 | SimpleHelp bug lets hackers create rogue remote support accounts | Jun 15, 8:10 pm |
|---|
| 452 | LiteLLM Vulnerability Chain Lets Low-Privilege Users Take Over AI Gateway Servers | Jun 15, 6:10 pm |
|---|
| 453 | Cisco fixes SD-WAN vManage flaw exploited in zero-day attacks | Jun 15, 6:10 pm |
|---|
| 454 | OptinMonster WordPress plugin hacked in CDN supply-chain attack | Jun 15, 6:10 pm |
|---|
| 455 | Council of Europe investigates ShinyHunters data breach claims | Jun 15, 5:10 pm |
|---|
| 456 | One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes | Jun 15, 4:10 pm |
|---|
| 457 | FBI: Fraudsters use couriers to steal money in crypto scams | Jun 15, 4:10 pm |
|---|
| 458 | ⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More | Jun 15, 3:10 pm |
|---|
| 459 | Chinese hackers breach REDCap servers, steal medical research | Jun 15, 2:10 pm |
|---|
| 460 | Vibe coders are gonna vibe code: How CISOs are tackling code sprawl | Jun 15, 2:10 pm |
|---|
| 461 | Webinar: How behavioral AI stops phishing and account takeovers | Jun 15, 1:10 pm |
|---|
| 462 | Infinite Campus data breach affects 137,000 school staff accounts | Jun 15, 1:10 pm |
|---|
| 463 | New attack turned Microsoft 365 Copilot into 1-click data theft tool | Jun 15, 1:10 pm |
|---|
| 464 | The Onboarding Password Mistake That Creates Unnecessary Risk | Jun 15, 12:10 pm |
|---|
| 465 | Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites | Jun 15, 11:10 am |
|---|
| 466 | 152 Chrome Wallpaper Extensions with 105K Installs Linked to Adware and Fake Traffic | Jun 15, 11:10 am |
|---|
| 467 | Palo Alto Warns of Active Exploitation of PAN-OS GlobalProtect VPN Flaw | Jun 15, 8:10 am |
|---|
| 468 | Sniper Dz Scams Target MENA Users via Fake Facebook Offers and Browser Alerts | Jun 15, 8:10 am |
|---|
| 469 | Evil MSI Background: BASE64 Statistical Analysis, (Mon, Jun 15th) | Jun 15, 8:10 am |
|---|
| 470 | ISC Stormcast For Monday, June 15th, 2026 https://isc.sans.edu/podcastdetail/9972, (Mon, Jun 15th) | Jun 15, 2:10 am |
|---|
| 471 | FBI disrupts massive AI-powered phishing service using a million URLs | Jun 14, 3:10 pm |
|---|
| 472 | Ex-school district employee jailed for hacks on former employer | Jun 13, 9:10 pm |
|---|
| 473 | Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication | Jun 13, 2:10 pm |
|---|
| 474 | Chinese hackers hijack auth flow, spy on isolated network for a decade | Jun 13, 2:10 pm |
|---|
| 475 | US Gov asks Anthropic to ban 'foreign national' access to Fable, Mythos | Jun 13, 10:10 am |
|---|
| 476 | U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals | Jun 13, 7:10 am |
|---|
| 477 | Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit | Jun 12, 9:10 pm |
|---|
| 478 | China-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decade | Jun 12, 8:10 pm |
|---|
| 479 | Google Sues Chinese Smishing Network Accused of Using Gemini AI in Phishing | Jun 12, 8:10 pm |
|---|
| 480 | 400+ Arch Linux AUR Packages Hijacked to Install Rust Credential Stealer | Jun 12, 8:10 pm |
|---|
| 481 | Maine disables data breach notification portal after fake disclosures | Jun 12, 8:10 pm |
|---|
| 482 | phpBB forum fixes auth bypass bug lurking for a decade | Jun 12, 7:10 pm |
|---|
| 483 | Ukrainian national pleads guilty to role in Conti ransomware operation | Jun 12, 6:10 pm |
|---|
| 484 | Over 400 Arch Linux packages compromised to push rootkit, infostealer | Jun 12, 5:10 pm |
|---|
| 485 | Early Warning Signs of Supply-Chain Attacks Live in the Dark Web | Jun 12, 3:10 pm |
|---|
| 486 | Agentjacking Attack Tricks AI Coding Agents Into Running Malicious Code | Jun 12, 1:10 pm |
|---|
| 487 | ISC Stormcast For Friday, June 12th, 2026 https://isc.sans.edu/podcastdetail/9970, (Fri, Jun 12th) | Jun 12, 1:10 pm |
|---|
| 488 | Rethinking MDR as Attackers and Defenders Embrace AI | Jun 12, 12:10 pm |
|---|
| 489 | Microsoft fixes Windows update failures linked to WUSA installer | Jun 12, 12:10 pm |
|---|
| 490 | Pharma giant Novo Nordisk discloses breach of clinical trials data | Jun 12, 11:10 am |
|---|
| 491 | INTERPOL Operation Takes Down Sniper Dz Phishing Platform, Arrests Administrator | Jun 12, 10:10 am |
|---|
| 492 | LangGraph Flaw Chain Exposes Self-Hosted AI Agents to Remote Code Execution | Jun 12, 10:10 am |
|---|
| 493 | CISA orders feds to patch actively exploited Ivanti flaw by Sunday | Jun 12, 9:10 am |
|---|
| 494 | Europol Disrupts AudiA6 Crypto Laundering Service Used by Ransomware Gangs | Jun 12, 8:10 am |
|---|
| 495 | Over 73,000 French govt employees affected in Tchap messenger breach | Jun 12, 8:10 am |
|---|
| 496 | Tchap data breach affects over 73,000 French govt employees | Jun 12, 7:10 am |
|---|
| 497 | Japanese energy firm loses drive with data of 10.9 million clients | Jun 12, 12:10 am |
|---|
| 498 | Maine breach portal abused to publish fake data breach disclosures | Jun 11, 11:10 pm |
|---|
| 499 | ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach Universities | Jun 11, 9:10 pm |
|---|
| 500 | Oracle mitigates PeopleSoft zero-day exploited in data theft attacks | Jun 11, 8:10 pm |
|---|