| 1 | Mirax Android RAT Turns Devices into SOCKS5 Proxies, Reaching 220,000 via Meta Ads | Apr 14, 12:10 pm |
|---|
| 2 | Analysis of 216M Security Findings Shows a 4x Increase In Critical Risk (2026 Report) | Apr 14, 10:10 am |
|---|
| 3 | 108 Malicious Chrome Extensions Steal Google and Telegram Data, Affecting 20,000 Users | Apr 14, 9:10 am |
|---|
| 4 | CISA Adds 6 Known Exploited Flaws in Fortinet, Microsoft, and Adobe Software | Apr 14, 7:10 am |
|---|
| 5 | ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers | Apr 14, 7:10 am |
|---|
| 6 | ISC Stormcast For Tuesday, April 14th, 2026 https://isc.sans.edu/podcastdetail/9890, (Tue, Apr 14th) | Apr 14, 2:10 am |
|---|
| 7 | European Gym giant Basic-Fit data breach affects 1 million members | Apr 13, 10:10 pm |
|---|
| 8 | JanelaRAT Malware Targets Latin American Banks with 14,739 Attacks in Brazil in 2025 | Apr 13, 8:10 pm |
|---|
| 9 | Critical flaw in wolfSSL library enables forged certificate use | Apr 13, 8:10 pm |
|---|
| 10 | Stolen Rockstar Games analytics data leaked by extortion gang | Apr 13, 8:10 pm |
|---|
| 11 | FBI takedown of W3LL phishing service leads to developer arrest | Apr 13, 7:10 pm |
|---|
| 12 | New Booking.com data breach forces reservation PIN resets | Apr 13, 6:10 pm |
|---|
| 13 | OpenAI rotates macOS certs after Axios attack hit code-signing workflow | Apr 13, 6:10 pm |
|---|
| 14 | FBI and Indonesian Police Dismantle W3LL Phishing Network Behind $20M Fraud Attempts | Apr 13, 4:10 pm |
|---|
| 15 | Adobe rolls out emergency fix for Acrobat, Reader zero-day flaw | Apr 13, 4:10 pm |
|---|
| 16 | ⚡ Weekly Recap: Fiber Optic Spying, Windows Rootkit, AI Vulnerability Hunting and More | Apr 13, 2:10 pm |
|---|
| 17 | The silent “Storm”: New infostealer hijacks sessions, decrypts server-side | Apr 13, 2:10 pm |
|---|
| 18 | Your MTTD Looks Great. Your Post-Alert Gap Doesn't | Apr 13, 1:10 pm |
|---|
| 19 | Scans for EncystPHP Webshell, (Mon, Apr 13th) | Apr 13, 1:10 pm |
|---|
| 20 | North Korea's APT37 Uses Facebook Social Engineering to Deliver RokRAT Malware | Apr 13, 11:10 am |
|---|
| 21 | OpenAI Revokes macOS App Certificate After Malicious Axios Supply Chain Incident | Apr 13, 8:10 am |
|---|
| 22 | ISC Stormcast For Monday, April 13th, 2026 https://isc.sans.edu/podcastdetail/9888, (Mon, Apr 13th) | Apr 13, 2:10 am |
|---|
| 23 | Critical Marimo pre-auth RCE flaw now under active exploitation | Apr 12, 3:10 pm |
|---|
| 24 | Adobe Patches Actively Exploited Acrobat Reader Flaw CVE-2026-34621 | Apr 12, 6:10 am |
|---|
| 25 | CPUID Breach Distributes STX RAT via Trojanized CPU-Z and HWMonitor Downloads | Apr 12, 6:10 am |
|---|
| 26 | Over 20,000 crypto fraud victims identified in international crackdown | Apr 11, 3:10 pm |
|---|
| 27 | Citizen Lab: Law Enforcement Used Webloc to Track 500 Million Devices via Ad Data | Apr 11, 8:10 am |
|---|
| 28 | ChatGPT rolls out new $100 Pro subscription to challenge Claude | Apr 11, 2:10 am |
|---|
| 29 | CPUID hacked to deliver malware via CPU-Z, HWMonitor downloads | Apr 10, 5:10 pm |
|---|
| 30 | Nearly 4,000 US industrial devices exposed to Iranian cyberattacks | Apr 10, 4:10 pm |
|---|
| 31 | Supply chain attack at CPUID pushes malware with CPU-Z/HWMonitor | Apr 10, 2:10 pm |
|---|
| 32 | GlassWorm Campaign Uses Zig Dropper to Infect Multiple Developer IDEs | Apr 10, 2:10 pm |
|---|
| 33 | Analysis of one billion CISA KEV remediation records exposes limits of human-scale security | Apr 10, 2:10 pm |
|---|
| 34 | Microsoft: Canadian employees targeted in payroll pirate attacks | Apr 10, 12:10 pm |
|---|
| 35 | Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of Disclosure | Apr 10, 11:10 am |
|---|
| 36 | Google rolls out Gmail end-to-end encryption on mobile devices | Apr 10, 11:10 am |
|---|
| 37 | Browser Extensions Are the New AI Consumption Channel That No One Is Talking About | Apr 10, 11:10 am |
|---|
| 38 | Google Rolls Out DBSC in Chrome 146 to Block Session Theft on Windows | Apr 10, 9:10 am |
|---|
| 39 | Backdoored Smart Slider 3 Pro Update Distributed via Compromised Nextend Servers | Apr 10, 8:10 am |
|---|
| 40 | Obfuscated JavaScript or Nothing, (Thu, Apr 9th) | Apr 10, 7:10 am |
|---|
| 41 | EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallet Installs | Apr 10, 6:10 am |
|---|
| 42 | New VENOM phishing attacks steal senior executives' Microsoft logins | Apr 9, 10:10 pm |
|---|
| 43 | New ‘LucidRook’ malware used in targeted attacks on NGOs, universities | Apr 9, 10:10 pm |
|---|
| 44 | EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallets | Apr 9, 8:10 pm |
|---|
| 45 | Healthcare IT solutions provider ChipSoft hit by ransomware attack | Apr 9, 8:10 pm |
|---|
| 46 | Google Chrome adds infostealer protection against session cookie theft | Apr 9, 7:10 pm |
|---|
| 47 | Smart Slider updates hijacked to push malicious WordPress, Joomla versions | Apr 9, 5:10 pm |
|---|
| 48 | UAT-10362 Targets Taiwanese NGOs with LucidRook Malware in Spear-Phishing Campaigns | Apr 9, 5:10 pm |
|---|
| 49 | When attackers already have the keys, MFA is just another door to open | Apr 9, 3:10 pm |
|---|
| 50 | ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories | Apr 9, 2:10 pm |
|---|
| 51 | Webinar: From noise to signal - What threat actors are targeting next | Apr 9, 1:10 pm |
|---|
| 52 | Bitter-Linked Hack-for-Hire Campaign Targets Journalists Across MENA Region | Apr 9, 12:10 pm |
|---|
| 53 | Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025 | Apr 9, 12:10 pm |
|---|
| 54 | The Hidden Security Risks of Shadow AI in Enterprises | Apr 9, 12:10 pm |
|---|
| 55 | Eurail says December data breach impacts 300,000 individuals | Apr 9, 11:10 am |
|---|
| 56 | Hackers exploiting Acrobat Reader zero-day flaw since December | Apr 9, 10:10 am |
|---|
| 57 | Hackers steal $3.6 million from crypto ATM giant Bitcoin Depot | Apr 9, 8:10 am |
|---|
| 58 | Microsoft suspends dev accounts for high-profile open source projects | Apr 9, 7:10 am |
|---|
| 59 | ISC Stormcast For Thursday, April 9th, 2026 https://isc.sans.edu/podcastdetail/9886, (Thu, Apr 9th) | Apr 9, 2:10 am |
|---|
| 60 | Number Usage in Passwords: Take Two, (Thu, Apr 9th) | Apr 9, 1:10 am |
|---|
| 61 | Hackers use pixel-large SVG trick to hide credit card stealer | Apr 8, 11:10 pm |
|---|
| 62 | Google: New UNC6783 hackers steal corporate Zendesk support tickets | Apr 8, 10:10 pm |
|---|
| 63 | New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy | Apr 8, 7:10 pm |
|---|
| 64 | CISA orders feds to patch exploited Ivanti EPMM flaw by Sunday | Apr 8, 7:10 pm |
|---|
| 65 | New macOS stealer campaign uses Script Editor in ClickFix attack | Apr 8, 7:10 pm |
|---|
| 66 | Masjesu Botnet Emerges as DDoS-for-Hire Service Targeting Global IoT Devices | Apr 8, 6:10 pm |
|---|
| 67 | TeamPCP Supply Chain Campaign: Update 007 - Cisco Source Code Stolen via Trivy-Linked Breach, Google GTIG Tracks TeamPCP as UNC6780, and CISA KEV Deadline Arrives with No Standalone Advisory, (Wed, Apr 8th) | Apr 8, 6:10 pm |
|---|
| 68 | 13-year-old bug in ActiveMQ lets hackers remotely execute commands | Apr 8, 6:10 pm |
|---|
| 69 | APT28 Deploys PRISMEX Malware in Campaign Targeting Ukraine and NATO Allies | Apr 8, 4:10 pm |
|---|
| 70 | More Honeypot Fingerprinting Scans, (Wed, Apr 8th) | Apr 8, 3:10 pm |
|---|
| 71 | Is a $30,000 GPU Good at Password Cracking? | Apr 8, 2:10 pm |
|---|
| 72 | Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP) | Apr 8, 12:10 pm |
|---|
| 73 | Anthropic's Claude Mythos Finds Thousands of Zero-Day Flaws Across Major Systems | Apr 8, 10:10 am |
|---|
| 74 | N. Korean Hackers Spread 1,700 Malicious Packages Across npm, PyPI, Go, Rust | Apr 8, 9:10 am |
|---|
| 75 | Microsoft rolls out fix for broken Windows Start Menu search | Apr 8, 7:10 am |
|---|
| 76 | Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCs | Apr 8, 6:10 am |
|---|
| 77 | ISC Stormcast For Wednesday, April 8th, 2026 https://isc.sans.edu/podcastdetail/9884, (Wed, Apr 8th) | Apr 8, 2:10 am |
|---|
| 78 | Hackers exploit critical flaw in Ninja Forms WordPress plugin | Apr 7, 10:10 pm |
|---|
| 79 | FBI: Americans lost a record $21 billion to cybercrime last year | Apr 7, 9:10 pm |
|---|
| 80 | Snowflake customers hit in data theft attacks after SaaS integrator breach | Apr 7, 8:10 pm |
|---|
| 81 | A Little Bit Pivoting: What Web Shells are Attackers Looking for?, (Tue, Apr 7th) | Apr 7, 7:10 pm |
|---|
| 82 | Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign | Apr 7, 6:10 pm |
|---|
| 83 | Russia Hacked Routers to Steal Microsoft Office Tokens | Apr 7, 6:10 pm |
|---|
| 84 | US warns of Iranian hackers targeting critical infrastructure | Apr 7, 6:10 pm |
|---|
| 85 | Max severity Flowise RCE vulnerability now exploited in attacks | Apr 7, 5:10 pm |
|---|
| 86 | Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access | Apr 7, 4:10 pm |
|---|
| 87 | Authorities disrupt router DNS hijacks used to steal Microsoft 365 logins | Apr 7, 4:10 pm |
|---|
| 88 | Over 1,000 Exposed ComfyUI Instances Targeted in Cryptomining Botnet Campaign | Apr 7, 2:10 pm |
|---|
| 89 | Why Your Automated Pentesting Tool Just Hit a Wall | Apr 7, 2:10 pm |
|---|
| 90 | The Hidden Cost of Recurring Credential Incidents | Apr 7, 1:10 pm |
|---|
| 91 | [Webinar] How to Close Identity Gaps in 2026 Before AI Exploits Enterprise Risk | Apr 7, 1:10 pm |
|---|
| 92 | New GPUBreach Attack Enables Full CPU Privilege Escalation via GDDR6 Bit-Flips | Apr 7, 10:10 am |
|---|
| 93 | China-Linked Storm-1175 Exploits Zero-Days to Rapidly Deploy Medusa Ransomware | Apr 7, 8:10 am |
|---|
| 94 | Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed | Apr 7, 6:10 am |
|---|
| 95 | German authorities identify REvil and GandCrab ransomware bosses | Apr 7, 4:10 am |
|---|
| 96 | ISC Stormcast For Tuesday, April 7th, 2026 https://isc.sans.edu/podcastdetail/9882, (Tue, Apr 7th) | Apr 7, 2:10 am |
|---|
| 97 | German authorities identify REvil and GangCrab ransomware bosses | Apr 7, 12:10 am |
|---|
| 98 | New GPUBreach attack enables system takeover via GPU rowhammer | Apr 6, 10:10 pm |
|---|
| 99 | Iran-Linked Password-Spraying Campaign Targets 300+ Israeli Microsoft 365 Organizations | Apr 6, 8:10 pm |
|---|
| 100 | Microsoft fixes Classic Outlook bug causing email delivery issues | Apr 6, 8:10 pm |
|---|
| 101 | Disgruntled researcher leaks “BlueHammer” Windows zero-day exploit | Apr 6, 8:10 pm |
|---|
| 102 | DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea | Apr 6, 6:10 pm |
|---|
| 103 | Microsoft removes Support and Recovery Assistant from Windows | Apr 6, 6:10 pm |
|---|
| 104 | CISA orders feds to patch exploited Fortinet EMS flaw by Friday | Apr 6, 5:10 pm |
|---|
| 105 | Drift $280M crypto theft linked to 6-month in-person operation | Apr 6, 5:10 pm |
|---|
| 106 | Microsoft links Medusa ransomware affiliate to zero-day attacks | Apr 6, 5:10 pm |
|---|
| 107 | CISA orders feds to patch Fortinet flaw exploited in attacks by Friday | Apr 6, 4:10 pm |
|---|
| 108 | ⚡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More | Apr 6, 3:10 pm |
|---|
| 109 | Multi-OS Cyberattacks: How SOCs Close a Critical Risk in 3 Steps | Apr 6, 3:10 pm |
|---|
| 110 | Why Simple Breach Monitoring is No Longer Enough | Apr 6, 2:10 pm |
|---|
| 111 | How LiteLLM Turned Developer Machines Into Credential Vaults for Attackers | Apr 6, 1:10 pm |
|---|
| 112 | Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools | Apr 6, 11:10 am |
|---|
| 113 | How often are redirects used in phishing in 2026?, (Mon, Apr 6th) | Apr 6, 9:10 am |
|---|
| 114 | BKA Identifies REvil Leaders Behind 130 German Ransomware Attacks | Apr 6, 7:10 am |
|---|
| 115 | Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab | Apr 6, 3:10 am |
|---|
| 116 | ISC Stormcast For Monday, April 6th, 2026 https://isc.sans.edu/podcastdetail/9880, (Mon, Apr 6th) | Apr 6, 2:10 am |
|---|
| 117 | $285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation | Apr 5, 8:10 pm |
|---|
| 118 | Traffic violation scams switch to QR codes in new phishing texts | Apr 5, 8:10 pm |
|---|
| 119 | New FortiClient EMS flaw exploited in attacks, emergency patch released | Apr 5, 7:10 pm |
|---|
| 120 | Hackers exploit React2Shell in automated credential theft campaign | Apr 5, 3:10 pm |
|---|
| 121 | Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS | Apr 5, 6:10 am |
|---|
| 122 | 36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants | Apr 5, 6:10 am |
|---|
| 123 | Axios npm hack used fake Teams error fix to hijack maintainer account | Apr 4, 9:10 pm |
|---|
| 124 | LinkedIn secretly scans for 6,000+ Chrome extensions, collects data | Apr 4, 3:10 pm |
|---|
| 125 | Device code phishing attacks surge 37x as new kits spread online | Apr 4, 3:10 pm |
|---|
| 126 | LinkedIn secretely scans for 6,000+ Chrome extensions, collects data | Apr 3, 9:10 pm |
|---|
| 127 | Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers | Apr 3, 6:10 pm |
|---|
| 128 | China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing | Apr 3, 6:10 pm |
|---|
| 129 | Hims & Hers warns of data breach after Zendesk support ticket breach | Apr 3, 6:10 pm |
|---|
| 130 | Die Linke German political party confirms data stolen by Qilin ransomware | Apr 3, 5:10 pm |
|---|
| 131 | Evolution of Ransomware: Multi-Extortion Ransomware Attacks | Apr 3, 3:10 pm |
|---|
| 132 | TeamPCP Supply Chain Campaign: Update 006 - CERT-EU Confirms European Commission Cloud Breach, Sportradar Details Emerge, and Mandiant Quantifies Campaign at 1,000+ SaaS Environments, (Fri, Apr 3rd) | Apr 3, 2:10 pm |
|---|
| 133 | Why Third-Party Risk Is the Biggest Gap in Your Clients' Security Posture | Apr 3, 1:10 pm |
|---|
| 134 | UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack | Apr 3, 1:10 pm |
|---|
| 135 | Microsoft still working to fix Exchange Online mailbox access issues | Apr 3, 12:10 pm |
|---|
| 136 | Drift Loses $285 Million in Durable Nonce Social Engineering Attack Linked to DPRK | Apr 3, 10:10 am |
|---|
| 137 | New SparkCat Variant in iOS, Android Apps Steals Crypto Wallet Recovery Phrase Images | Apr 3, 10:10 am |
|---|
| 138 | Man admits to locking thousands of Windows devices in extortion plot | Apr 3, 9:10 am |
|---|
| 139 | Microsoft now force upgrades unmanaged Windows 11 24H2 PCs | Apr 3, 8:10 am |
|---|
| 140 | CERT-EU: European Commission hack exposes data of 30 EU entities | Apr 3, 7:10 am |
|---|
| 141 | Drift loses $280 million North Korean hackers seize Security Council powers | Apr 3, 6:10 am |
|---|
| 142 | ISC Stormcast For Friday, April 3rd, 2026 https://isc.sans.edu/podcastdetail/9878, (Fri, Apr 3rd) | Apr 3, 2:10 am |
|---|
| 143 | Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials | Apr 2, 9:10 pm |
|---|
| 144 | Claude Code leak used to push infostealer malware on GitHub | Apr 2, 9:10 pm |
|---|
| 145 | Drift loses $280 million as hackers seize Security Council powers | Apr 2, 7:10 pm |
|---|
| 146 | Cisco Patches 9.8 CVSS IMC and SSM Flaws Allowing Remote System Compromise | Apr 2, 5:10 pm |
|---|
| 147 | Residential proxies evaded IP reputation checks in 78% of 4B sessions | Apr 2, 4:10 pm |
|---|
| 148 | Attempts to Exploit Exposed "Vite" Installs (CVE-2025-30208), (Thu, Apr 2nd) | Apr 2, 3:10 pm |
|---|
| 149 | ThreatsDay Bulletin: Pre-Auth Chains, Android Rootkits, CloudTrail Evasion & 10 More Stories | Apr 2, 2:10 pm |
|---|
| 150 | Medtech giant Stryker fully operational after data-wiping attack | Apr 2, 2:10 pm |
|---|
| 151 | New Progress ShareFile flaws can be chained in pre-auth RCE attacks | Apr 2, 2:10 pm |
|---|
| 152 | Adversaries Exploit Vacant Homes to Intercept Mail in Hybrid Cybercrime | Apr 2, 2:10 pm |
|---|
| 153 | The State of Trusted Open Source Report | Apr 2, 12:10 pm |
|---|
| 154 | Researchers Uncover Mining Operation Using ISO Lures to Spread RATs and Crypto Miners | Apr 2, 12:10 pm |
|---|
| 155 | WhatsApp Alerts 200 Users After Fake iOS App Installed Spyware; Italian Firm Faces Action | Apr 2, 11:10 am |
|---|
| 156 | Critical Cisco IMC auth bypass gives attackers Admin access | Apr 2, 11:10 am |
|---|
| 157 | Microsoft links Classic Outlook issue to email delivery problems | Apr 2, 10:10 am |
|---|
| 158 | Over 14,000 F5 BIG-IP APM instances still exposed to RCE attacks | Apr 2, 9:10 am |
|---|
| 159 | Apple Expands iOS 18.7.7 Update to More Devices to Block DarkSword Exploit | Apr 2, 8:10 am |
|---|
| 160 | ISC Stormcast For Thursday, April 2nd, 2026 https://isc.sans.edu/podcastdetail/9876, (Thu, Apr 2nd) | Apr 2, 2:10 am |
|---|
| 161 | New CrystalRAT malware adds RAT, stealer and prankware features | Apr 2, 12:10 am |
|---|
| 162 | Hackers exploit TrueConf zero-day to push malicious software updates | Apr 1, 10:10 pm |
|---|
| 163 | Apple expands iOS 18 updates to more iPhones to block DarkSword attacks | Apr 1, 10:10 pm |
|---|
| 164 | New EvilTokens service fuels Microsoft device code phishing attacks | Apr 1, 8:10 pm |
|---|
| 165 | CERT-UA Impersonation Campaign Spread AGEWHEEZE Malware to 1 Million Emails | Apr 1, 6:10 pm |
|---|
| 166 | 'NoVoice' Android malware on Google Play infected 2.3 million devices | Apr 1, 6:10 pm |
|---|
| 167 | Routine Access Is Powering Modern Intrusions, a New Threat Report Finds | Apr 1, 3:10 pm |
|---|
| 168 | New Chrome Zero-Day CVE-2026-5281 Under Active Exploitation — Patch Released | Apr 1, 2:10 pm |
|---|
| 169 | Microsoft Warns of WhatsApp-Delivered VBS Malware Hijacking Windows via UAC Bypass | Apr 1, 2:10 pm |
|---|
| 170 | Casbaneiro Phishing Targets Latin America and Europe Using Dynamic PDF Lures | Apr 1, 2:10 pm |
|---|
| 171 | Block the Prompt, Not the Work: The End of "Doctor No" | Apr 1, 2:10 pm |
|---|
| 172 | TeamPCP Supply Chain Campaign: Update 005 - First Confirmed Victim Disclosure, Post-Compromise Cloud Enumeration Documented, and Axios Attribution Narrows, (Wed, Apr 1st) | Apr 1, 2:10 pm |
|---|
| 173 | 3 Reasons Attackers Are Using Your Trusted Tools Against You (And Why You Don’t See It Coming) | Apr 1, 12:10 pm |
|---|
| 174 | FBI warns against using Chinese mobile apps due to privacy risks | Apr 1, 12:10 pm |
|---|
| 175 | Google fixes fourth Chrome zero-day exploited in attacks in 2026 | Apr 1, 11:10 am |
|---|
| 176 | Malicious Script That Gets Rid of ADS, (Wed, Apr 1st) | Apr 1, 11:10 am |
|---|
| 177 | Google Attributes Axios npm Supply Chain Attack to North Korean Group UNC1069 | Apr 1, 8:10 am |
|---|
| 178 | Claude Code Source Leaked via npm Packaging Error, Anthropic Confirms | Apr 1, 7:10 am |
|---|
| 179 | Google Drive ransomware detection now on by default for paying users | Apr 1, 7:10 am |
|---|
| 180 | New Windows 11 emergency update fixes preview update install issues | Apr 1, 6:10 am |
|---|
| 181 | ISC Stormcast For Wednesday, April 1st, 2026 https://isc.sans.edu/podcastdetail/9874, (Wed, Apr 1st) | Apr 1, 2:10 am |
|---|
| 182 | Claude Code source code accidentally leaked in NPM package | Apr 1, 1:10 am |
|---|
| 183 | Google now allows you to change your @gmail.com address | Apr 1, 12:10 am |
|---|
| 184 | GIGABYTE Control Center vulnerable to arbitrary file write flaw | Mar 31, 11:10 pm |
|---|
| 185 | Proton launches new "Meet" privacy-focused conferencing platform | Mar 31, 11:10 pm |
|---|
| 186 | Claude AI finds Vim, Emacs RCE bugs that trigger on file open | Mar 31, 10:10 pm |
|---|
| 187 | Android Developer Verification Rollout Begins Ahead of September Enforcement | Mar 31, 8:10 pm |
|---|
| 188 | Cisco source code stolen in Trivy-linked dev environment breach | Mar 31, 6:10 pm |
|---|
| 189 | TrueConf Zero-Day Exploited in Attacks on Southeast Asian Government Networks | Mar 31, 5:10 pm |
|---|
| 190 | Vertex AI Vulnerability Exposes Google Cloud Data and Private Artifacts | Mar 31, 2:10 pm |
|---|
| 191 | Hackers compromise Axios npm package to drop cross-platform malware | Mar 31, 2:10 pm |
|---|
| 192 | How to Categorize AI Agents and Prioritize Risk | Mar 31, 2:10 pm |
|---|
| 193 | The AI Arms Race – Why Unified Exposure Management Is Becoming a Boardroom Priority | Mar 31, 1:10 pm |
|---|
| 194 | Silver Fox Expands Asia Cyber Campaign with AtlasCross RAT and Fake Domains | Mar 31, 1:10 pm |
|---|
| 195 | Microsoft fixes Outlook Classic crashes caused by Teams Meeting add-in | Mar 31, 12:10 pm |
|---|
| 196 | Hacker charged with stealing $53 million from Uranium crypto exchange | Mar 31, 10:10 am |
|---|
| 197 | Application Control Bypass for Data Exfiltration, (Tue, Mar 31st) | Mar 31, 8:10 am |
|---|
| 198 | Dutch Finance Ministry takes treasury banking portal offline after breach | Mar 31, 8:10 am |
|---|
| 199 | Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account | Mar 31, 7:10 am |
|---|
| 200 | CISA orders feds to patch actively exploited Citrix flaw by Thursday | Mar 31, 7:10 am |
|---|
| 201 | ISC Stormcast For Tuesday, March 31st, 2026 https://isc.sans.edu/podcastdetail/9872, (Tue, Mar 31st) | Mar 31, 2:10 am |
|---|
| 202 | Healthcare tech firm CareCloud says hackers stole patient data | Mar 30, 10:10 pm |
|---|
| 203 | New RoadK1ll WebSocket implant used to pivot on breached networks | Mar 30, 9:10 pm |
|---|
| 204 | OpenAI Patches ChatGPT Data Exfiltration Flaw and Codex GitHub Token Vulnerability | Mar 30, 8:10 pm |
|---|
| 205 | Critical Citrix NetScaler memory flaw actively exploited in attacks | Mar 30, 7:10 pm |
|---|
| 206 | DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser Credentials | Mar 30, 5:10 pm |
|---|
| 207 | 3 SOC Process Fixes That Unlock Tier 1 Productivity | Mar 30, 3:10 pm |
|---|
| 208 | ⚡ Weekly Recap: Telecom Sleeper Cells, LLM Jailbreaks, Apple Forces U.K. Age Checks and More | Mar 30, 3:10 pm |
|---|
| 209 | How to Evaluate AI SOC Agents: 7 Questions Gartner Says You Should Be Asking | Mar 30, 3:10 pm |
|---|
| 210 | Apple adds macOS Terminal warning to block ClickFix attacks | Mar 30, 3:10 pm |
|---|
| 211 | TeamPCP Supply Chain Campaign: Update 004 - Databricks Investigating Alleged Compromise, TeamPCP Runs Dual Ransomware Operations, and AstraZeneca Data Released, (Mon, Mar 30th) | Mar 30, 3:10 pm |
|---|
| 212 | The State of Secrets Sprawl 2026: 9 Takeaways for CISOs | Mar 30, 12:10 pm |
|---|
| 213 | Hackers now exploit critical F5 BIG-IP flaw in attacks, patch now | Mar 30, 11:10 am |
|---|
| 214 | Microsoft pulls KB5079391 Windows update over install issues | Mar 30, 10:10 am |
|---|
| 215 | Russian CTRL Toolkit Delivered via Malicious LNK Files Hijacks RDP via FRP Tunnels | Mar 30, 10:10 am |
|---|
| 216 | Three China-Linked Clusters Target Southeast Asian Government in 2025 Cyber Campaign | Mar 30, 8:10 am |
|---|
| 217 | Critical Fortinet Forticlient EMS flaw now exploited in attacks | Mar 30, 8:10 am |
|---|
| 218 | European Commission confirms data breach after Europa.eu hack | Mar 30, 7:10 am |
|---|
| 219 | ISC Stormcast For Monday, March 30th, 2026 https://isc.sans.edu/podcastdetail/9870, (Mon, Mar 30th) | Mar 30, 2:10 am |
|---|
| 220 | DShield (Cowrie) Honeypot Stats and When Sessions Disconnect, (Mon, Mar 30th) | Mar 30, 12:10 am |
|---|
| 221 | FBI confirms hack of Director Patel's personal email inbox | Mar 29, 9:10 pm |
|---|
| 222 | File read flaw in Smart Slider plugin impacts 500K WordPress sites | Mar 29, 3:10 pm |
|---|
| 223 | Iran-Linked Hackers Breach FBI Director’s Personal Email, Hit Stryker With Wiper Attack | Mar 28, 5:10 pm |
|---|
| 224 | TeamPCP Supply Chain Campaign: Update 003 - Operational Tempo Shift as Campaign Enters Monetization Phase With No New Compromises in 48 Hours, (Sat, Mar 28th) | Mar 28, 4:10 pm |
|---|
| 225 | New Infinity Stealer malware grabs macOS data via ClickFix lures | Mar 28, 3:10 pm |
|---|
| 226 | Citrix NetScaler Under Active Recon for CVE-2026-3055 (CVSS 9.3) Memory Overread Bug | Mar 28, 10:10 am |
|---|
| 227 | TA446 Deploys DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign | Mar 28, 9:10 am |
|---|
| 228 | CISA Adds CVE-2025-53521 to KEV After Active F5 BIG-IP APM Exploitation | Mar 28, 8:10 am |
|---|
| 229 | TA446 Deploys Leaked DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign | Mar 28, 8:10 am |
|---|
| 230 | Backdoored Telnyx PyPI package pushes malware hidden in WAV audio | Mar 27, 10:10 pm |
|---|
| 231 | Apple Sends Lock Screen Alerts to Outdated iPhones Over Active Web-Based Exploits | Mar 27, 7:10 pm |
|---|
| 232 | TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files | Mar 27, 6:10 pm |
|---|
| 233 | European Commission investigating breach after Amazon cloud account hack | Mar 27, 5:10 pm |
|---|
| 234 | Fake VS Code alerts on GitHub spread malware to developers | Mar 27, 5:10 pm |
|---|
| 235 | Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security Checks | Mar 27, 3:10 pm |
|---|
| 236 | TeamPCP Supply Chain Campaign: Update 002 - Telnyx PyPI Compromise, Vect Ransomware Mass Affiliate Program, and First Named Victim Claim, (Fri, Mar 27th) | Mar 27, 3:10 pm |
|---|
| 237 | Agentic GRC: Teams Get the Tech. The Mindset Shift Is What's Missing. | Mar 27, 2:10 pm |
|---|
| 238 | Bearlyfy Hits Russian Firms with Custom GenieLocker Ransomware | Mar 27, 1:10 pm |
|---|
| 239 | AitM Phishing Targets TikTok Business Accounts Using Cloudflare Turnstile Evasion | Mar 27, 1:10 pm |
|---|
| 240 | European Commission investigating breach after Amazon cloud hack | Mar 27, 1:10 pm |
|---|
| 241 | We Are At War | Mar 27, 12:10 pm |
|---|
| 242 | Anti-piracy coalition takes down AnimePlay app with 5 million users | Mar 27, 11:10 am |
|---|
| 243 | Windows 11 KB5079391 update rolls out Smart App Control improvements | Mar 27, 10:10 am |
|---|
| 244 | Bearlyfy Hits 70+ Russian Firms with Custom GenieLocker Ransomware | Mar 27, 10:10 am |
|---|
| 245 | LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworks | Mar 27, 9:10 am |
|---|
| 246 | Dutch Police discloses security breach after phishing attack | Mar 27, 9:10 am |
|---|
| 247 | ISC Stormcast For Friday, March 27th, 2026 https://isc.sans.edu/podcastdetail/9868, (Fri, Mar 27th) | Mar 27, 2:10 am |
|---|
| 248 | Ajax football club hack exposed fan data, enabled ticket hijack | Mar 26, 9:10 pm |
|---|
| 249 | CISA: New Langflow flaw actively exploited to hijack AI workflows | Mar 26, 8:10 pm |
|---|
| 250 | China-Linked Red Menshen Uses Stealthy BPFDoor Implants to Spy via Telecom Networks | Mar 26, 6:10 pm |
|---|
| 251 | TeamPCP Supply Chain Campaign: Update 001 - Checkmarx Scope Wider Than Reported, CISA KEV Entry, and Detection Tools Available, (Thu, Mar 26th) | Mar 26, 6:10 pm |
|---|
| 252 | UK sanctions Xinbi marketplace linked to Asian scam centers | Mar 26, 4:10 pm |
|---|
| 253 | ThreatsDay Bulletin: PQC Push, AI Vuln Hunting, Pirated Traps, Phishing Kits & 20 More Stories | Mar 26, 2:10 pm |
|---|
| 254 | Masters of Imitation: How Hackers and Art Forgers Perfect the Art of Deception | Mar 26, 2:10 pm |
|---|
| 255 | Coruna iOS exploit framework linked to Triangulation attacks | Mar 26, 2:10 pm |
|---|
| 256 | Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website | Mar 26, 2:10 pm |
|---|
| 257 | Inside a Modern Fraud Attack: From Bot Signups to Account Takeovers | Mar 26, 2:10 pm |
|---|
| 258 | WhatsApp rolls out more AI features, iOS multi-account support | Mar 26, 2:10 pm |
|---|
| 259 | TikTok for Business accounts targeted in new phishing campaign | Mar 26, 2:10 pm |
|---|
| 260 | Russia arrests suspected owner of LeakBase cybercrime forum | Mar 26, 1:10 pm |
|---|
| 261 | [Webinar] Stop Guessing. Learn to Validate Your Defenses Against Real Attacks | Mar 26, 12:10 pm |
|---|
| 262 | Coruna iOS Kit Reuses 2023 Triangulation Exploit Code in New Mass Attacks | Mar 26, 12:10 pm |
|---|
| 263 | Suspected RedLine infostealer malware admin extradited to US | Mar 26, 12:10 pm |
|---|
| 264 | WebRTC Skimmer Bypasses CSP to Steal Payment Data from E-Commerce Sites | Mar 26, 9:10 am |
|---|
| 265 | ISC Stormcast For Thursday, March 26th, 2026 https://isc.sans.edu/podcastdetail/9866, (Thu, Mar 26th) | Mar 26, 2:10 am |
|---|
| 266 | GitHub adds AI-powered bug detection to expand security coverage | Mar 26, 12:10 am |
|---|
| 267 | Apple Patches (almost) everything again. March 2026 edition., (Wed, Mar 25th) | Mar 25, 10:10 pm |
|---|
| 268 | PolyShell attacks target 56% of all vulnerable Magento stores | Mar 25, 10:10 pm |
|---|
| 269 | Bubble AI app builder abused to steal Microsoft account credentials | Mar 25, 8:10 pm |
|---|
| 270 | New Torg Grabber infostealer malware targets 728 crypto wallets | Mar 25, 7:10 pm |
|---|
| 271 | LeakBase Admin Arrested in Russia Over Massive Stolen Credential Marketplace | Mar 25, 6:10 pm |
|---|
| 272 | Citrix urges admins to patch NetScaler flaws as soon as possible | Mar 25, 4:10 pm |
|---|
| 273 | GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data | Mar 25, 3:10 pm |
|---|
| 274 | Paid AI Accounts Are Now a Hot Underground Commodity | Mar 25, 2:10 pm |
|---|
| 275 | Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse | Mar 25, 1:10 pm |
|---|
| 276 | Russian Hacker Sentenced to 2 Years for TA551 Botnet-Driven Ransomware Attacks | Mar 25, 1:10 pm |
|---|
| 277 | The Kill Chain Is Obsolete When Your AI Agent Is the Threat | Mar 25, 1:10 pm |
|---|
| 278 | Kali Linux 2026.1 released with 8 new tools, new BackTrack mode | Mar 25, 1:10 pm |
|---|
| 279 | TP-Link warns users to patch critical router auth bypass flaw | Mar 25, 12:10 pm |
|---|
| 280 | Manager of botnet used in ransomware attacks gets 2 years in prison | Mar 25, 9:10 am |
|---|
| 281 | FCC Bans New Foreign-Made Routers Over Supply Chain and Cyber Risk Concerns | Mar 25, 8:10 am |
|---|
| 282 | TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 via Trivy CI/CD Compromise | Mar 25, 7:10 am |
|---|
| 283 | ISC Stormcast For Wednesday, March 25th, 2026 https://isc.sans.edu/podcastdetail/9864, (Wed, Mar 25th) | Mar 25, 2:10 am |
|---|
| 284 | SmartApeSG campaign pushes Remcos RAT, NetSupport RAT, StealC, and Sectop RAT (ArechClient2), (Wed, Mar 25th) | Mar 25, 1:10 am |
|---|
| 285 | Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens | Mar 25, 12:10 am |
|---|
| 286 | Popular LiteLLM PyPI package compromised in TeamPCP supply chain attack | Mar 24, 11:10 pm |
|---|
| 287 | PTC warns of imminent threat from critical Windchill, FlexPLM RCE bug | Mar 24, 11:10 pm |
|---|
| 288 | FCC bans new routers made outside the USA over security risks | Mar 24, 9:10 pm |
|---|
| 289 | TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 Likely via Trivy CI/CD Compromise | Mar 24, 8:10 pm |
|---|
| 290 | Tax Search Ads Deliver ScreenConnect Malware Using Huawei Driver to Disable EDR | Mar 24, 6:10 pm |
|---|
| 291 | Firefox now has a free built-in VPN with 50GB monthly data limit | Mar 24, 6:10 pm |
|---|
| 292 | Hackers Use Fake Resumes to Steal Enterprise Credentials and Deploy Crypto Miner | Mar 24, 5:10 pm |
|---|
| 293 | Microsoft fixes bug causing Classic Outlook sync issues with Gmail | Mar 24, 4:10 pm |
|---|
| 294 | Yanluowang ransomware access broker gets 81 months in prison | Mar 24, 2:10 pm |
|---|
| 295 | Infinite Campus warns of breach after ShinyHunters claims data theft | Mar 24, 2:10 pm |
|---|
| 296 | Detecting IP KVMs, (Tue, Mar 24th) | Mar 24, 2:10 pm |
|---|
| 297 | HackerOne discloses employee data breach after Navia hack | Mar 24, 2:10 pm |
|---|
| 298 | Zero Trust: Bridging the Gap Between Authentication and Trust | Mar 24, 2:10 pm |
|---|
| 299 | 5 Learnings from the First-Ever Gartner Market Guide for Guardian Agents | Mar 24, 12:10 pm |
|---|
| 300 | Ghost Campaign Uses 7 npm Packages to Steal Crypto Wallets and Credentials | Mar 24, 12:10 pm |
|---|
| 301 | Dutch Ministry of Finance discloses breach affecting employees | Mar 24, 12:10 pm |
|---|
| 302 | TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials | Mar 24, 11:10 am |
|---|
| 303 | The Hidden Cost of Cybersecurity Specialization: Losing Foundational Skills | Mar 24, 11:10 am |
|---|
| 304 | Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data Leaks | Mar 24, 8:10 am |
|---|
| 305 | U.S. Sentences Russian Hacker to 6.75 Years for Role in $9M Ransomware Damage | Mar 24, 8:10 am |
|---|
| 306 | ISC Stormcast For Tuesday, March 24th, 2026 https://isc.sans.edu/podcastdetail/9862, (Tue, Mar 24th) | Mar 24, 2:10 am |
|---|
| 307 | OpenAI rolls out ChatGPT Library to store your personal files | Mar 24, 12:10 am |
|---|
| 308 | Mazda discloses security breach exposing employee and partner data | Mar 23, 11:10 pm |
|---|
| 309 | Tycoon2FA phishing platform returns after recent police disruption | Mar 23, 10:10 pm |
|---|
| 310 | Tool updates: lots of security and logic fixes, (Mon, Mar 23rd) | Mar 23, 9:10 pm |
|---|
| 311 | North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware | Mar 23, 8:10 pm |
|---|
| 312 | Crunchyroll probes breach after hacker claims to steal 6.8M users' data | Mar 23, 8:10 pm |
|---|
| 313 | TeamPCP deploys Iran-targeted wiper in Kubernetes attacks | Mar 23, 8:10 pm |
|---|
| 314 | Trivy supply-chain attack spreads to Docker, GitHub repos | Mar 23, 6:10 pm |
|---|
| 315 | ‘CanisterWorm’ Springs Wiper Attack Targeting Iran | Mar 23, 4:10 pm |
|---|
| 316 | Varonis Atlas: Securing AI and the Data That Powers It | Mar 23, 3:10 pm |
|---|
| 317 | We Found Eight Attack Vectors Inside AWS Bedrock. Here's What Attackers Can Do with Them | Mar 23, 2:10 pm |
|---|
| 318 | ⚡ Weekly Recap: CI/CD Backdoor, FBI Buys Location Data, WhatsApp Ditches Numbers & More | Mar 23, 2:10 pm |
|---|
| 319 | Microsoft Exchange Online service change causes email access issues | Mar 23, 1:10 pm |
|---|
| 320 | Microsoft Warns IRS Phishing Hits 29,000 Users, Deploys RMM Malware | Mar 23, 12:10 pm |
|---|
| 321 | FBI warns of Handala hackers using Telegram in malware attacks | Mar 23, 10:10 am |
|---|
| 322 | Trivy Hack Spreads Infostealer via Docker, Triggers Worm and Kubernetes Wiper | Mar 23, 9:10 am |
|---|
| 323 | CISA orders feds to patch DarkSword iOS flaws exploited attacks | Mar 23, 9:10 am |
|---|
| 324 | New KB5085516 emergency update fixes Microsoft account sign-in | Mar 23, 8:10 am |
|---|
| 325 | Hackers Exploit CVE-2025-32975 (CVSS 10.0) to Hijack Unpatched Quest KACE SMA Systems | Mar 23, 7:10 am |
|---|
| 326 | ISC Stormcast For Monday, March 23rd, 2026 https://isc.sans.edu/podcastdetail/9860, (Mon, Mar 23rd) | Mar 23, 2:10 am |
|---|
| 327 | VoidStealer malware steals Chrome master key via debugger trick | Mar 22, 3:10 pm |
|---|
| 328 | Trivy vulnerability scanner breach pushed infostealer via GitHub Actions | Mar 21, 6:10 pm |
|---|
| 329 | Microsoft Azure Monitor alerts abused for callback phishing attacks | Mar 21, 5:10 pm |
|---|
| 330 | Microsoft Azure Monitor alerts abused in callback phishing campaigns | Mar 21, 3:10 pm |
|---|
| 331 | Google adds ‘Advanced Flow’ for safe APK sideloading on Android | Mar 21, 3:10 pm |
|---|
| 332 | FBI Warns Russian Hackers Target Signal, WhatsApp in Mass Phishing Attacks | Mar 21, 2:10 pm |
|---|
| 333 | Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager | Mar 21, 11:10 am |
|---|
| 334 | CISA Flags Apple, Craft CMS, Laravel Bugs in KEV, Orders Patching by April 3, 2026 | Mar 21, 9:10 am |
|---|
| 335 | Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages | Mar 21, 8:10 am |
|---|
| 336 | FBI links Signal phishing attacks to Russian intelligence services | Mar 20, 9:10 pm |
|---|
| 337 | Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets | Mar 20, 7:10 pm |
|---|
| 338 | Oracle pushes emergency fix for critical Identity Manager RCE flaw | Mar 20, 7:10 pm |
|---|
| 339 | Police take down 373,000 fake CSAM sites in Operation Alice | Mar 20, 6:10 pm |
|---|
| 340 | Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure | Mar 20, 5:10 pm |
|---|
| 341 | CISA orders feds to patch max-severity Cisco flaw by Sunday | Mar 20, 3:10 pm |
|---|
| 342 | How CISOs Can Survive the Era of Geopolitical Cyberattacks | Mar 20, 2:10 pm |
|---|
| 343 | Magento PolyShell Flaw Enables Unauthenticated Uploads, RCE and Account Takeover | Mar 20, 1:10 pm |
|---|
| 344 | Google Adds 24-Hour Wait for Unverified App Sideloading to Reduce Malware and Scams | Mar 20, 12:10 pm |
|---|
| 345 | The Importance of Behavioral Analytics in AI-Enabled Cyber Attacks | Mar 20, 11:10 am |
|---|
| 346 | Musician admits to $10M streaming royalty fraud using AI bots | Mar 20, 10:10 am |
|---|
| 347 | GSocket Backdoor Delivered Through Bash Script, (Fri, Mar 20th) | Mar 20, 9:10 am |
|---|
| 348 | Microsoft: March Windows updates break Teams, OneDrive sign-ins | Mar 20, 8:10 am |
|---|
| 349 | International joint action disrupts world’s largest DDoS botnets | Mar 20, 8:10 am |
|---|
| 350 | DoJ Disrupts 3 Million-Device IoT Botnets Behind Record 31.4 Tbps Global DDoS Attacks | Mar 20, 7:10 am |
|---|
| 351 | Ex-data analyst stole company data in $2.5M extortion scheme | Mar 20, 7:10 am |
|---|
| 352 | 54 EDR Killers Use BYOVD to Exploit 35 Signed Vulnerable Drivers and Disable Security | Mar 20, 6:10 am |
|---|
| 353 | Apple Warns Older iPhones Vulnerable to Coruna, DarkSword Exploit Kit Attacks | Mar 20, 6:10 am |
|---|
| 354 | ISC Stormcast For Friday, March 20th, 2026 https://isc.sans.edu/podcastdetail/9858, (Fri, Mar 20th) | Mar 20, 2:10 am |
|---|
| 355 | Feds Disrupt IoT Botnets Behind Huge DDoS Attacks | Mar 20, 1:10 am |
|---|
| 356 | Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers | Mar 19, 9:10 pm |
|---|
| 357 | Navia discloses data breach impacting 2.7 million people | Mar 19, 9:10 pm |
|---|
| 358 | 54 EDR Killers Use BYOVD to Exploit 34 Signed Vulnerable Drivers and Disable Security | Mar 19, 8:10 pm |
|---|
| 359 | New ‘PolyShell’ flaw allows unauthenticated RCE on Magento e-stores | Mar 19, 8:10 pm |
|---|
| 360 | FBI seizes Handala data leak site after Stryker cyberattack | Mar 19, 5:10 pm |
|---|
| 361 | Bitrefill blames North Korean Lazarus group for cyberattack | Mar 19, 5:10 pm |
|---|
| 362 | ThreatsDay Bulletin: FortiGate RaaS, Citrix Exploits, MCP Abuse, LiveChat Phish & More | Mar 19, 3:10 pm |
|---|
| 363 | Russian hackers exploit Zimbra flaw in Ukrainian govt attacks | Mar 19, 3:10 pm |
|---|
| 364 | New Perseus Android Banking Malware Monitors Notes Apps to Extract Sensitive Data | Mar 19, 2:10 pm |
|---|
| 365 | 7 Ways to Prevent Privilege Escalation via Password Resets | Mar 19, 2:10 pm |
|---|
| 366 | Max severity Ubiquiti UniFi flaw may allow account takeover | Mar 19, 1:10 pm |
|---|
| 367 | New ‘Perseus’ Android malware checks user notes for secrets | Mar 19, 11:10 am |
|---|
| 368 | How Ceros Gives Security Teams Visibility and Control in Claude Code | Mar 19, 11:10 am |
|---|
| 369 | CISA urges US orgs to secure Microsoft Intune systems after Stryker breach | Mar 19, 11:10 am |
|---|
| 370 | DarkSword iOS Exploit Kit Uses 6 Flaws, 3 Zero-Days for Full Device Takeover | Mar 19, 10:10 am |
|---|
| 371 | Critical Microsoft SharePoint flaw now exploited in attacks | Mar 19, 10:10 am |
|---|
| 372 | CISA Warns of Zimbra, SharePoint Flaw Exploits; Cisco Zero-Day Hit in Ransomware Attacks | Mar 19, 7:10 am |
|---|
| 373 | ISC Stormcast For Thursday, March 19th, 2026 https://isc.sans.edu/podcastdetail/9856, (Thu, Mar 19th) | Mar 19, 2:10 am |
|---|
| 374 | Interesting Message Stored in Cowrie Logs, (Wed, Mar 18th) | Mar 19, 1:10 am |
|---|
| 375 | Aura confirms data breach exposing 900,000 marketing contacts | Mar 18, 11:10 pm |
|---|
| 376 | CISA orders feds to patch Zimbra XSS flaw exploited in attacks | Mar 18, 8:10 pm |
|---|
| 377 | ConnectWise patches new flaw allowing ScreenConnect hijacking | Mar 18, 7:10 pm |
|---|
| 378 | OFAC Sanctions DPRK IT Worker Network Funding WMD Programs Through Fake Remote Jobs | Mar 18, 6:10 pm |
|---|
| 379 | Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root Access | Mar 18, 5:10 pm |
|---|
| 380 | Ransomware gang exploits Cisco flaw in zero-day attacks since January | Mar 18, 5:10 pm |
|---|
| 381 | Marquis: Ransomware gang stole data of 672K people in cyberattack | Mar 18, 4:10 pm |
|---|
| 382 | Scans for "adminer", (Wed, Mar 18th) | Mar 18, 2:10 pm |
|---|
| 383 | Nordstrom's email system abused to send crypto scams to customers | Mar 18, 2:10 pm |
|---|
| 384 | New “Darksword” iOS exploit used in infostealer attack on iPhones | Mar 18, 2:10 pm |
|---|
| 385 | The Refund Fraud Economy: Exploiting Major Retailers and Payment Platforms | Mar 18, 2:10 pm |
|---|
| 386 | 9 Critical IP KVM Flaws Enable Unauthenticated Root Access Across Four Vendors | Mar 18, 1:10 pm |
|---|
| 387 | Claude Code Security and Magecart: Getting the Threat Model Right | Mar 18, 1:10 pm |
|---|
| 388 | Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE | Mar 18, 1:10 pm |
|---|
| 389 | Product Walkthrough: How Mesh CSMA Reveals and Breaks Attack Paths to Crown Jewels | Mar 18, 12:10 pm |
|---|
| 390 | ISC Stormcast For Wednesday, March 18th, 2026 https://isc.sans.edu/podcastdetail/9854, (Wed, Mar 18th) | Mar 18, 11:10 am |
|---|
| 391 | Ubuntu CVE-2026-3888 Bug Lets Attackers Gain Root via systemd Cleanup Timing Exploit | Mar 18, 9:10 am |
|---|
| 392 | Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS | Mar 18, 7:10 am |
|---|
| 393 | Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE via Port 23 | Mar 18, 6:10 am |
|---|
| 394 | Apple pushes first Background Security Improvements update to fix WebKit flaw | Mar 18, 1:10 am |
|---|
| 395 | GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX | Mar 17, 10:10 pm |
|---|
| 396 | Europe sanctions Chinese and Iranian firms for cyberattacks | Mar 17, 7:10 pm |
|---|
| 397 | AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCE | Mar 17, 6:10 pm |
|---|
| 398 | LeakNet Ransomware Uses ClickFix via Hacked Sites, Deploys Deno In-Memory Loader | Mar 17, 3:10 pm |
|---|
| 399 | Microsoft stops force-installing the Microsoft 365 Copilot app | Mar 17, 2:10 pm |
|---|
| 400 | New font-rendering trick hides malicious commands from AI tools | Mar 17, 2:10 pm |
|---|
| 401 | Top 5 Things CISOs Need to Do Today to Secure AI Agents | Mar 17, 2:10 pm |
|---|
| 402 | LeakNet ransomware uses ClickFix, Deno runtime in stealthy attacks | Mar 17, 1:10 pm |
|---|
| 403 | AI is Everywhere, But CISOs are Still Securing It with Yesterday's Skills and Tools, Study Finds | Mar 17, 12:10 pm |
|---|
| 404 | IPv4 Mapped IPv6 Addresses, (Tue, Mar 17th) | Mar 17, 12:10 pm |
|---|
| 405 | Microsoft shares fix for Windows C: drive access issues on Samsung PCs | Mar 17, 12:10 pm |
|---|
| 406 | LeakNet ransomware uses ClickFix and Deno runtime for stealthy attacks | Mar 17, 12:10 pm |
|---|
| 407 | Konni Deploys EndRAT Through Phishing, Uses KakaoTalk to Propagate Malware | Mar 17, 11:10 am |
|---|
| 408 | Microsoft: Enabling Teams Meeting add-in breaks Outlook Classic | Mar 17, 11:10 am |
|---|
| 409 | New Windows 11 hotpatch fixes Bluetooth device visibility issue | Mar 17, 11:10 am |
|---|
| 410 | CISA Flags Actively Exploited Wing FTP Vulnerability Leaking Server Paths | Mar 17, 6:10 am |
|---|
| 411 | ISC Stormcast For Tuesday, March 17th, 2026 https://isc.sans.edu/podcastdetail/9852, (Tue, Mar 17th) | Mar 17, 2:10 am |
|---|
| 412 | Stryker attack wiped tens of thousands of devices, no malware needed | Mar 16, 8:10 pm |
|---|
| 413 | GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos | Mar 16, 8:10 pm |
|---|
| 414 | CISA flags Wing FTP Server flaw as actively exploited in attacks | Mar 16, 6:10 pm |
|---|
| 415 | UK’s Companies House confirms security flaw exposed business data | Mar 16, 5:10 pm |
|---|
| 416 | ⚡ Weekly Recap: Chrome 0-Days, Router Botnets, AWS Breach, Rogue AI Agents & More | Mar 16, 4:10 pm |
|---|
| 417 | Microsoft Exchange Online outage blocks access to mailboxes | Mar 16, 4:10 pm |
|---|
| 418 | Microsoft pulls Samsung app blocking Windows C: drive from Store | Mar 16, 2:10 pm |
|---|
| 419 | /proxy/ URL scans with IP addresses, (Mon, Mar 16th) | Mar 16, 2:10 pm |
|---|
| 420 | Shadow AI is everywhere. Here’s how to find and secure it. | Mar 16, 2:10 pm |
|---|
| 421 | ClickFix Campaigns Spread MacSync macOS Infostealer via Fake AI Tool Installers | Mar 16, 1:10 pm |
|---|
| 422 | Why Security Validation Is Becoming Agentic | Mar 16, 1:10 pm |
|---|
| 423 | DRILLAPP Backdoor Targets Ukraine, Abuses Microsoft Edge Debugging for Stealth Espionage | Mar 16, 10:10 am |
|---|
| 424 | Android 17 Blocks Non-Accessibility Apps from Accessibility API to Prevent Malware Abuse | Mar 16, 6:10 am |
|---|
| 425 | ISC Stormcast For Monday, March 16th, 2026 https://isc.sans.edu/podcastdetail/9850, (Mon, Mar 16th) | Mar 16, 2:10 am |
|---|
| 426 | OpenAI says ChatGPT ads are not rolling out globally for now | Mar 16, 12:10 am |
|---|
| 427 | Betterleaks, a new open-source secrets scanner to replace Gitleaks | Mar 15, 3:10 pm |
|---|
| 428 | Microsoft releases Windows 11 OOB hotpatch to fix RRAS RCE flaw | Mar 14, 10:10 pm |
|---|
| 429 | OpenClaw AI Agent Flaws Could Enable Prompt Injection and Data Exfiltration | Mar 14, 6:10 pm |
|---|
| 430 | AppsFlyer Web SDK hijacked to spread crypto-stealing JavaScript code | Mar 14, 3:10 pm |
|---|
| 431 | GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers | Mar 14, 2:10 pm |
|---|
| 432 | SmartApeSG campaign uses ClickFix page to push Remcos RAT, (Sat, Mar 14th) | Mar 14, 2:10 am |
|---|
| 433 | Microsoft: Windows 11 users can't access C: drive on some Samsung PCs | Mar 13, 11:10 pm |
|---|
| 434 | FBI seeks victims of Steam games used to spread malware | Mar 13, 9:10 pm |
|---|
| 435 | Fake enterprise VPN sites used to steal company credentials | Mar 13, 6:10 pm |
|---|
| 436 | Meta to Shut Down Instagram End-to-End Encrypted Chat Support Starting May 2026 | Mar 13, 6:10 pm |
|---|
| 437 | Poland's nuclear research centre targeted by cyberattack | Mar 13, 6:10 pm |
|---|
| 438 | Chinese Hackers Target Southeast Asian Militaries with AppleChris and MemFun Malware | Mar 13, 6:10 pm |
|---|
| 439 | Microsoft investigates classic Outlook sync and connection issues | Mar 13, 5:10 pm |
|---|
| 440 | INTERPOL Dismantles 45,000 Malicious IPs, Arrests 94 in Global Cybercrime | Mar 13, 4:10 pm |
|---|
| 441 | Storm-2561 Spreads Trojan VPN Clients via SEO Poisoning to Steal Credentials | Mar 13, 3:10 pm |
|---|
| 442 | From VMware to what’s next: Protecting data during hypervisor migration | Mar 13, 3:10 pm |
|---|
| 443 | Fake enterprise VPN downloads used to steal company credentials | Mar 13, 2:10 pm |
|---|
| 444 | Investigating a New Click-Fix Variant | Mar 13, 2:10 pm |
|---|
| 445 | Police sinkholes 45,000 IP addresses in cybercrime crackdown | Mar 13, 2:10 pm |
|---|
| 446 | Nine CrackArmor Flaws in Linux AppArmor Enable Root Escalation, Bypass Container Isolation | Mar 13, 10:10 am |
|---|
| 447 | Google Fixes Two Chrome Zero-Days Exploited in the Wild Affecting Skia and V8 | Mar 13, 10:10 am |
|---|
| 448 | Starbucks discloses data breach affecting hundreds of employees | Mar 13, 9:10 am |
|---|
| 449 | A React-based phishing page with credential exfiltration via EmailJS, (Fri, Mar 13th) | Mar 13, 8:10 am |
|---|
| 450 | Authorities Disrupt SocksEscort Proxy Botnet Exploiting 369,000 IPs Across 163 Countries | Mar 13, 7:10 am |
|---|
| 451 | Google fixes two new Chrome zero-days exploited in attacks | Mar 13, 7:10 am |
|---|
| 452 | Veeam Patches 7 Critical Backup & Replication Flaws Allowing Remote Code Execution | Mar 13, 6:10 am |
|---|
| 453 | ISC Stormcast For Friday, March 13th, 2026 https://isc.sans.edu/podcastdetail/9848, (Fri, Mar 13th) | Mar 13, 2:10 am |
|---|
| 454 | Canadian retail giant Loblaw notifies customers of data breach | Mar 12, 10:10 pm |
|---|
| 455 | England Hockey investigating ransomware data breach | Mar 12, 9:10 pm |
|---|
| 456 | AI-generated Slopoly malware used in Interlock ransomware attack | Mar 12, 8:10 pm |
|---|
| 457 | Hive0163 Uses AI-Assisted Slopoly Malware for Persistent Access in Ransomware Attacks | Mar 12, 6:10 pm |
|---|
| 458 | Rust-Based VENON Malware Targets 33 Brazilian Banks with Credential-Stealing Overlays | Mar 12, 6:10 pm |
|---|
| 459 | US disrupts SocksEscort proxy network powered by Linux malware | Mar 12, 5:10 pm |
|---|
| 460 | Veeam warns of critical flaws exposing backup servers to RCE attacks | Mar 12, 5:10 pm |
|---|
| 461 | Google paid $17.1 million for vulnerability reports in 2025 | Mar 12, 4:10 pm |
|---|
| 462 | ThreatsDay Bulletin: OAuth Trap, EDR Killer, Signal Phishing, Zombie ZIP, AI Platform Hack & More | Mar 12, 3:10 pm |
|---|
| 463 | How to Scale Phishing Detection in Your SOC: 3 Steps for CISOs | Mar 12, 3:10 pm |
|---|
| 464 | Going the Extra Mile: Travel Rewards Turn into Underground Currency. | Mar 12, 3:10 pm |
|---|
| 465 | Telus Digital confirms breach after hacker claims 1 petabyte data theft | Mar 12, 3:10 pm |
|---|
| 466 | Apple patches older iPhones and iPads against Coruna exploits | Mar 12, 2:10 pm |
|---|
| 467 | Attackers Don't Just Send Phishing Emails. They Weaponize Your SOC's Workload | Mar 12, 12:10 pm |
|---|
| 468 | US charges another ransomware negotiator linked to BlackCat attacks | Mar 12, 12:10 pm |
|---|
| 469 | Apple Issues Security Updates for Older iOS Devices Targeted by Coruna WebKit Exploit | Mar 12, 11:10 am |
|---|
| 470 | Six Android Malware Families Target Pix Payments, Banking Apps, and Crypto Wallets | Mar 12, 9:10 am |
|---|
| 471 | CISA Flags Actively Exploited n8n RCE Bug as 24,700 Instances Remain Exposed | Mar 12, 6:10 am |
|---|
| 472 | When your IoT Device Logs in as Admin, It?s too Late! [Guest Diary], (Wed, Mar 11th) | Mar 12, 2:10 am |
|---|
| 473 | ISC Stormcast For Thursday, March 12th, 2026 https://isc.sans.edu/podcastdetail/9846, (Thu, Mar 12th) | Mar 12, 2:10 am |
|---|
| 474 | SQLi flaw in Elementor Ally plugin impacts 250k+ WordPress sites | Mar 11, 8:10 pm |
|---|
| 475 | WhatsApp introduces parent-managed accounts for pre-teens | Mar 11, 8:10 pm |
|---|
| 476 | CISA orders feds to patch n8n RCE flaw exploited in attacks | Mar 11, 7:10 pm |
|---|
| 477 | Researchers Trick Perplexity's Comet AI Browser Into Phishing Scam in Under Four Minutes | Mar 11, 6:10 pm |
|---|
| 478 | Medtech giant Stryker offline after Iran-linked wiper malware attack | Mar 11, 6:10 pm |
|---|
| 479 | Iran-Backed Hackers Claim Wiper Attack on Medtech Firm Stryker | Mar 11, 5:10 pm |
|---|
| 480 | New PhantomRaven NPM attack wave steals dev data via 88 packages | Mar 11, 5:10 pm |
|---|
| 481 | Critical n8n Flaws Allow Remote Code Execution and Exposure of Stored Credentials | Mar 11, 4:10 pm |
|---|
| 482 | Meta Disables 150K Accounts Linked to Southeast Asia Scam Centers in Global Crackdown | Mar 11, 2:10 pm |
|---|
| 483 | Meta adds new WhatsApp, Facebook, and Messenger anti-scam tools | Mar 11, 2:10 pm |
|---|
| 484 | What Boards Must Demand in the Age of AI-Automated Exploitation | Mar 11, 1:10 pm |
|---|
| 485 | Dozens of Vendors Patch Security Flaws Across Enterprise Software and Network Devices | Mar 11, 1:10 pm |
|---|
| 486 | Microsoft Patches 84 Flaws in March Patch Tuesday, Including Two Public Zero-Days | Mar 11, 10:10 am |
|---|
| 487 | Analyzing "Zombie Zip" Files (CVE-2026-0866), (Wed, Mar 11th) | Mar 11, 10:10 am |
|---|
| 488 | UNC6426 Exploits nx npm Supply-Chain Attack to Gain AWS Admin Access in 72 Hours | Mar 11, 9:10 am |
|---|
| 489 | Five Malicious Rust Crates and AI Bot Exploit CI/CD Pipelines to Steal Developer Secrets | Mar 11, 6:10 am |
|---|
| 490 | Microsoft Patch Tuesday, March 2026 Edition | Mar 11, 2:10 am |
|---|
| 491 | ISC Stormcast For Wednesday, March 11th, 2026 https://isc.sans.edu/podcastdetail/9844, (Wed, Mar 11th) | Mar 11, 2:10 am |
|---|
| 492 | New ‘BlackSanta’ EDR killer spotted targeting HR departments | Mar 10, 11:10 pm |
|---|
| 493 | New BeatBanker Android malware poses as Starlink app to hijack devices | Mar 10, 10:10 pm |
|---|
| 494 | New 'Zombie ZIP' technique lets malware slip past security tools | Mar 10, 8:10 pm |
|---|
| 495 | Microsoft releases Windows 10 KB5078885 extended security update | Mar 10, 7:10 pm |
|---|
| 496 | FortiGate Devices Exploited to Breach Networks and Steal Service Account Credentials | Mar 10, 6:10 pm |
|---|
| 497 | HPE warns of critical AOS-CX flaw allowing admin password resets | Mar 10, 6:10 pm |
|---|
| 498 | Microsoft Patch Tuesday March 2026, (Tue, Mar 10th) | Mar 10, 6:10 pm |
|---|
| 499 | Windows 11 KB5079473 & KB5078883 cumulative updates released | Mar 10, 6:10 pm |
|---|
| 500 | Microsoft March 2026 Patch Tuesday fixes 2 zero-days, 79 flaws | Mar 10, 6:10 pm |
|---|
