| 1 | Fake CAPTCHA IRSF Scam and 120 Keitaro Campaigns Drive Global SMS, Crypto Fraud | Apr 27, 9:10 am |
|---|
| 2 | American utility firm Itron discloses breach of internal IT network | Apr 26, 3:10 pm |
|---|
| 3 | Microsoft rolls out revamped Windows Insider Program | Apr 25, 5:10 pm |
|---|
| 4 | Threat actor uses Microsoft Teams to deploy new “Snow” malware | Apr 25, 4:10 pm |
|---|
| 5 | Researchers Uncover Pre-Stuxnet ‘fast16’ Malware Targeting Engineering Software | Apr 25, 10:10 am |
|---|
| 6 | CISA Adds 4 Exploited Flaws to KEV, Sets May 2026 Federal Deadline | Apr 25, 6:10 am |
|---|
| 7 | ADT confirms data breach after ShinyHunters leak threat | Apr 24, 11:10 pm |
|---|
| 8 | Firestarter malware survives Cisco firewall updates, security patches | Apr 24, 9:10 pm |
|---|
| 9 | Windows Update gets new controls to reduce forced restarts | Apr 24, 8:10 pm |
|---|
| 10 | Microsoft to roll out Entra passkeys on Windows in late April | Apr 24, 7:10 pm |
|---|
| 11 | New BlackFile extortion group linked to surge of vishing attacks | Apr 24, 7:10 pm |
|---|
| 12 | FIRESTARTER Backdoor Hit Federal Cisco Firepower Device, Survives Security Patches | Apr 24, 6:10 pm |
|---|
| 13 | New ‘Pack2TheRoot’ flaw gives hackers root Linux access | Apr 24, 6:10 pm |
|---|
| 14 | NASA Employees Duped in Chinese Phishing Scheme Targeting U.S. Defense Software | Apr 24, 4:10 pm |
|---|
| 15 | DORA and operational resilience: Credential management as a financial risk control | Apr 24, 3:10 pm |
|---|
| 16 | Over 10,000 Zimbra servers vulnerable to ongoing XSS attacks | Apr 24, 2:10 pm |
|---|
| 17 | Microsoft now lets admins uninstall Copilot on enterprise devices | Apr 24, 12:10 pm |
|---|
| 18 | 26 FakeWallet Apps Found on Apple App Store Targeting Crypto Seed Phrases | Apr 24, 12:10 pm |
|---|
| 19 | Bridging the AI Agent Authority Gap: Continuous Observability as the Decision Engine | Apr 24, 12:10 pm |
|---|
| 20 | UNC6692 Impersonates IT Help Desk via Microsoft Teams to Deploy SNOW Malware | Apr 24, 10:10 am |
|---|
| 21 | Tropic Trooper Uses Trojanized SumatraPDF and GitHub to Deploy AdaptixC2 | Apr 24, 10:10 am |
|---|
| 22 | LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure | Apr 24, 9:10 am |
|---|
| 23 | ISC Stormcast For Friday, April 24th, 2026 https://isc.sans.edu/podcastdetail/9906, (Fri, Apr 24th) | Apr 24, 2:10 am |
|---|
| 24 | Hackers exploit file upload bug in Breeze Cache WordPress plugin | Apr 23, 10:10 pm |
|---|
| 25 | Bitwarden CLI npm package compromised to steal developer credentials | Apr 23, 8:10 pm |
|---|
| 26 | UNC6692 Impersonates IT Helpdesk via Microsoft Teams to Deploy SNOW Malware | Apr 23, 7:10 pm |
|---|
| 27 | Trigona ransomware attacks use custom exfiltration tool to steal data | Apr 23, 7:10 pm |
|---|
| 28 | New Checkmarx supply-chain breach affects KICS analysis tool | Apr 23, 4:10 pm |
|---|
| 29 | ThreatsDay Bulletin: $290M DeFi Hack, macOS LotL Abuse, ProxySmart SIM Farms +25 New Stories | Apr 23, 3:10 pm |
|---|
| 30 | Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaign | Apr 23, 3:10 pm |
|---|
| 31 | Regular Password Resets Aren’t as Safe as You Think | Apr 23, 3:10 pm |
|---|
| 32 | Cosmetics giant Rituals discloses data breach affecting customers | Apr 23, 3:10 pm |
|---|
| 33 | Microsoft: Some Teams users can’t join meetings after Edge update | Apr 23, 2:10 pm |
|---|
| 34 | Project Glasswing Proved AI Can Find the Bugs. Who's Going to Fix Them? | Apr 23, 1:10 pm |
|---|
| 35 | [Webinar] Mythos Reality Check: Beating Automated Exploitation at AI Speed | Apr 23, 1:10 pm |
|---|
| 36 | UK warns of Chinese hackers using proxy networks to evade detection | Apr 23, 1:10 pm |
|---|
| 37 | New GopherWhisper APT group abuses Outlook, Slack, Discord for comms | Apr 23, 12:10 pm |
|---|
| 38 | Apple Fixes iOS Flaw That Let FBI Recover Deleted Signal Messages | Apr 23, 11:10 am |
|---|
| 39 | Apple Patches Exploited Notification Flaw, (Thu, Apr 23rd) | Apr 23, 11:10 am |
|---|
| 40 | CISA orders feds to patch BlueHammer flaw exploited as zero-day | Apr 23, 11:10 am |
|---|
| 41 | Vercel Finds More Compromised Accounts in Context.ai-Linked Breach | Apr 23, 10:10 am |
|---|
| 42 | China-Linked GopherWhisper Infects 12 Mongolian Government Systems with Go Backdoors | Apr 23, 10:10 am |
|---|
| 43 | Apple Patches iOS Flaw That Stored Deleted Signal Notifications in FBI Forensic Case | Apr 23, 9:10 am |
|---|
| 44 | Apple fixes bug that let the FBI recover deleted Signal messages | Apr 23, 6:10 am |
|---|
| 45 | ISC Stormcast For Thursday, April 23rd, 2026 https://isc.sans.edu/podcastdetail/9904, (Thu, Apr 23rd) | Apr 23, 2:10 am |
|---|
| 46 | Apple fixes iOS bug that retained deleted notification data | Apr 22, 9:10 pm |
|---|
| 47 | New Mirai campaign exploits RCE flaw in EoL D-Link routers | Apr 22, 8:10 pm |
|---|
| 48 | Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain | Apr 22, 7:10 pm |
|---|
| 49 | Kyber ransomware gang toys with post-quantum encryption on Windows | Apr 22, 7:10 pm |
|---|
| 50 | Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens | Apr 22, 6:10 pm |
|---|
| 51 | Harvester Deploys Linux GoGra Backdoor in South Asia Using Microsoft Graph API | Apr 22, 4:10 pm |
|---|
| 52 | Spain dismantles major $4.7M manga piracy platform, arrests four | Apr 22, 3:10 pm |
|---|
| 53 | Inside Caller-as-a-Service Fraud: The Scam Economy Has a Hiring Process | Apr 22, 2:10 pm |
|---|
| 54 | Microsoft Teams to get efficiency mode on PCs with limited resources | Apr 22, 1:10 pm |
|---|
| 55 | New npm supply-chain attack self-spreads to steal auth tokens | Apr 22, 1:10 pm |
|---|
| 56 | Toxic Combinations: When Cross-App Permissions Stack into Risk | Apr 22, 12:10 pm |
|---|
| 57 | Lotus Wiper Malware Targets Venezuelan Energy Systems in Destructive Attack | Apr 22, 12:10 pm |
|---|
| 58 | Microsoft traces Universal Print issues to Graph API code change | Apr 22, 11:10 am |
|---|
| 59 | Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug | Apr 22, 10:10 am |
|---|
| 60 | New GoGra malware for Linux uses Microsoft Graph API for comms | Apr 22, 10:10 am |
|---|
| 61 | Cohere AI Terrarium Sandbox Flaw Enables Root Code Execution, Container Escape | Apr 22, 9:10 am |
|---|
| 62 | Mustang Panda’s New LOTUSLITE Variant Targets India Banks, South Korea Policy Circles | Apr 22, 9:10 am |
|---|
| 63 | Microsoft releases emergency patches for critical ASP.NET flaw | Apr 22, 9:10 am |
|---|
| 64 | Over 1,300 Microsoft SharePoint servers vulnerable to spoofing attacks | Apr 22, 7:10 am |
|---|
| 65 | ISC Stormcast For Wednesday, April 22nd, 2026 https://isc.sans.edu/podcastdetail/9902, (Wed, Apr 22nd) | Apr 22, 2:10 am |
|---|
| 66 | [Guest Diary] Beyond Cryptojacking: Telegram tdata as a Credential Harvesting Vector, Lessons from a Honeypot Incident, (Wed, Apr 22nd) | Apr 22, 12:10 am |
|---|
| 67 | French govt agency confirms breach as hacker offers to sell data | Apr 21, 10:10 pm |
|---|
| 68 | SystemBC C2 Server Reveals 1,570+ Victims in The Gentlemen Ransomware Operation | Apr 21, 8:10 pm |
|---|
| 69 | New Lotus data wiper used against Venezuelan energy, utility firms | Apr 21, 7:10 pm |
|---|
| 70 | 22 BRIDGE:BREAK Flaws Expose Thousands of Lantronix and Silex Serial-to-IP Converters | Apr 21, 5:10 pm |
|---|
| 71 | 22 BRIDGE:BREAK Flaws Expose 20,000 Lantronix and Silex Serial-to-IP Converters | Apr 21, 4:10 pm |
|---|
| 72 | Ransomware Negotiator Pleads Guilty to Aiding BlackCat Attacks in 2023 | Apr 21, 3:10 pm |
|---|
| 73 | ‘Scattered Spider’ Member ‘Tylerb’ Pleads Guilty | Apr 21, 3:10 pm |
|---|
| 74 | 5 Places where Mature SOCs Keep MTTR Fast and Others Waste Time | Apr 21, 2:10 pm |
|---|
| 75 | UK probes Telegram, teen chat sites over CSAM sharing concerns | Apr 21, 2:10 pm |
|---|
| 76 | Stopping Fraud at Each Stage of the Customer Journey Without Adding Friction | Apr 21, 2:10 pm |
|---|
| 77 | CISA flags new SD-WAN flaw as actively exploited in attacks | Apr 21, 1:10 pm |
|---|
| 78 | Google Patches Antigravity IDE Flaw Enabling Prompt Injection Code Execution | Apr 21, 12:10 pm |
|---|
| 79 | NGate Campaign Targets Brazil, Trojanizes HandyPay to Steal NFC Data and PINs | Apr 21, 12:10 pm |
|---|
| 80 | Actively exploited Apache ActiveMQ flaw impacts 6,400 servers | Apr 21, 12:10 pm |
|---|
| 81 | No Exploit Needed: How Attackers Walk Through the Front Door via Identity-Based Attacks | Apr 21, 12:10 pm |
|---|
| 82 | Former ransomware negotiator pleads guilty to BlackCat attacks | Apr 21, 11:10 am |
|---|
| 83 | NGate Android malware uses HandyPay NFC app to steal card data | Apr 21, 9:10 am |
|---|
| 84 | A .WAV With A Payload, (Tue, Apr 21st) | Apr 21, 8:10 am |
|---|
| 85 | CISA Adds 8 Exploited Flaws to KEV, Sets April-May 2026 Federal Deadlines | Apr 21, 7:10 am |
|---|
| 86 | ISC Stormcast For Tuesday, April 21st, 2026 https://isc.sans.edu/podcastdetail/9900, (Tue, Apr 21st) | Apr 21, 2:10 am |
|---|
| 87 | KelpDAO suffers $290 million heist tied to Lazarus hackers | Apr 20, 11:10 pm |
|---|
| 88 | China's Apple App Store infiltrated by crypto-stealing wallet apps | Apr 20, 10:10 pm |
|---|
| 89 | The Gentlemen ransomware now uses SystemBC for bot-powered attacks | Apr 20, 8:10 pm |
|---|
| 90 | SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files | Apr 20, 7:10 pm |
|---|
| 91 | Seiko USA website defaced as hacker claims customer data theft | Apr 20, 7:10 pm |
|---|
| 92 | Microsoft: Teams increasingly abused in helpdesk impersonation attacks | Apr 20, 4:10 pm |
|---|
| 93 | ⚡ Weekly Recap: Vercel Hack, Push Fraud, QEMU Abused, New Android RATs Emerge & More | Apr 20, 3:10 pm |
|---|
| 94 | British Scattered Spider hacker pleads guilty to crypto theft charges | Apr 20, 2:10 pm |
|---|
| 95 | The backup myth that is putting businesses at risk | Apr 20, 2:10 pm |
|---|
| 96 | Why Most AI Deployments Stall After the Demo | Apr 20, 1:10 pm |
|---|
| 97 | Microsoft tests Windows Explorer speed, performance improvements | Apr 20, 1:10 pm |
|---|
| 98 | Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain | Apr 20, 11:10 am |
|---|
| 99 | Microsoft pulls service update causing Teams launch failures | Apr 20, 10:10 am |
|---|
| 100 | Researchers Detect ZionSiphon Malware Targeting Israeli Water, Desalination OT Systems | Apr 20, 9:10 am |
|---|
| 101 | Microsoft releases emergency updates to fix Windows Server issues | Apr 20, 9:10 am |
|---|
| 102 | Handling the CVE Flood With EPSS, (Mon, Apr 20th) | Apr 20, 7:10 am |
|---|
| 103 | Vercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials | Apr 20, 5:10 am |
|---|
| 104 | ISC Stormcast For Monday, April 20th, 2026 https://isc.sans.edu/podcastdetail/9898, (Mon, Apr 20th) | Apr 20, 2:10 am |
|---|
| 105 | Vercel confirms breach as hackers claim to be selling stolen data | Apr 19, 6:10 pm |
|---|
| 106 | Apple account change alerts abused to send phishing emails | Apr 19, 4:10 pm |
|---|
| 107 | NIST to stop rating non-priority flaws due to volume increase | Apr 19, 3:10 pm |
|---|
| 108 | Critical flaw in Protobuf library enables JavaScript code execution | Apr 18, 4:10 pm |
|---|
| 109 | Microsoft Teams right-click paste broken by Edge update bug | Apr 18, 3:10 pm |
|---|
| 110 | NAKIVO v11.2: Ransomware Defense, Faster Replication, vSphere 9, and Proxmox VE 9.0 Support | Apr 18, 2:10 pm |
|---|
| 111 | $13.74M Hack Shuts Down Sanctioned Grinex Exchange After Intelligence Claims | Apr 18, 9:10 am |
|---|
| 112 | [Webinar] Eliminate Ghost Identities Before They Expose Your Enterprise Data | Apr 18, 9:10 am |
|---|
| 113 | Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet | Apr 18, 7:10 am |
|---|
| 114 | Payouts King ransomware uses QEMU VMs to bypass endpoint security | Apr 17, 8:10 pm |
|---|
| 115 | Inside an Underground Guide: How Threat Actors Vet Stolen Credit Card Shops | Apr 17, 3:10 pm |
|---|
| 116 | Grinex exchange blames "Western intelligence" for $13.7M crypto hack | Apr 17, 3:10 pm |
|---|
| 117 | Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched | Apr 17, 2:10 pm |
|---|
| 118 | Webinar: From phishing to fallout — Why MSPs must rethink both security and recovery | Apr 17, 1:10 pm |
|---|
| 119 | Google Blocks 8.3B Policy-Violating Ads in 2025, Launches Android 17 Privacy Overhaul | Apr 17, 12:10 pm |
|---|
| 120 | CISA flags Apache ActiveMQ flaw as actively exploited in attacks | Apr 17, 10:10 am |
|---|
| 121 | Man gets 30 months for selling thousands of hacked DraftKings accounts | Apr 17, 8:10 am |
|---|
| 122 | NIST Limits CVE Enrichment After 263% Surge in Vulnerability Submissions | Apr 17, 8:10 am |
|---|
| 123 | Microsoft: Some Windows servers enter reboot loops after April patches | Apr 17, 8:10 am |
|---|
| 124 | Operation PowerOFF Seizes 53 DDoS Domains, Exposes 3 Million Criminal Accounts | Apr 17, 7:10 am |
|---|
| 125 | Recently leaked Windows zero-days now exploited in attacks | Apr 17, 7:10 am |
|---|
| 126 | Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation | Apr 17, 4:10 am |
|---|
| 127 | ISC Stormcast For Friday, April 17th, 2026 https://isc.sans.edu/podcastdetail/9896, (Fri, Apr 17th) | Apr 17, 2:10 am |
|---|
| 128 | Lumma Stealer infection with Sectop RAT (ArechClient2), (Fri, Apr 17th) | Apr 17, 1:10 am |
|---|
| 129 | Operation PowerOFF identifies 75k DDoS users, takes down 53 domains | Apr 16, 11:10 pm |
|---|
| 130 | ZionSiphon malware designed to sabotage water treatment systems | Apr 16, 10:10 pm |
|---|
| 131 | New Microsoft Defender “RedSun” zero-day PoC grants SYSTEM privileges | Apr 16, 9:10 pm |
|---|
| 132 | Newly Discovered PowMix Botnet Hits Czech Workers Using Randomized C2 Traffic | Apr 16, 7:10 pm |
|---|
| 133 | Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face | Apr 16, 5:10 pm |
|---|
| 134 | Google expands Gemini AI use to fight malicious ads on its platform | Apr 16, 4:10 pm |
|---|
| 135 | ThreatsDay Bulletin: Defender 0-Day, SonicWall Brute-Force, 17-Year-Old Excel RCE and 15 More Stories | Apr 16, 2:10 pm |
|---|
| 136 | Most "AI SOCs" Are Just Faster Triage. That's Not Enough. | Apr 16, 2:10 pm |
|---|
| 137 | New ATHR vishing platform uses AI voice agents for automated attacks | Apr 16, 2:10 pm |
|---|
| 138 | [Webinar] Find and Eliminate Orphaned Non-Human Identities in Your Environment | Apr 16, 1:10 pm |
|---|
| 139 | Hidden Passenger? How Taboola Routes Logged-In Banking Sessions to Temu | Apr 16, 12:10 pm |
|---|
| 140 | Obsidian Plugin Abuse Delivers PHANTOMPULSE RAT in Targeted Finance, Crypto Attacks | Apr 16, 12:10 pm |
|---|
| 141 | Cisco Patches Four Critical Identity Services, Webex Flaws Enabling Code Execution | Apr 16, 12:10 pm |
|---|
| 142 | Cisco says critical Webex Services flaw requires customer action | Apr 16, 12:10 pm |
|---|
| 143 | Data breach at edtech giant McGraw Hill affects 13.5 million accounts | Apr 16, 11:10 am |
|---|
| 144 | US nationals behind DPRK IT worker 'laptop farm' sent to prison | Apr 16, 9:10 am |
|---|
| 145 | Microsoft: April Windows Server 2025 update may fail to install | Apr 16, 8:10 am |
|---|
| 146 | UAC-0247 Targets Ukrainian Clinics and Government in Data-Theft Malware Campaign | Apr 16, 7:10 am |
|---|
| 147 | ISC Stormcast For Thursday, April 16th, 2026 https://isc.sans.edu/podcastdetail/9894, (Thu, Apr 16th) | Apr 16, 2:10 am |
|---|
| 148 | [Guest Diary] Compromised DVRs and Finding Them in the Wild, (Thu, Apr 16th) | Apr 16, 12:10 am |
|---|
| 149 | Critical Nginx UI auth bypass flaw now actively exploited in the wild | Apr 15, 11:10 pm |
|---|
| 150 | New AgingFly malware used in attacks on Ukraine govt, hospitals | Apr 15, 10:10 pm |
|---|
| 151 | WordPress plugin suite hacked to push malware to thousands of sites | Apr 15, 9:10 pm |
|---|
| 152 | n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails | Apr 15, 6:10 pm |
|---|
| 153 | Signed software abused to deploy antivirus-killing scripts | Apr 15, 6:10 pm |
|---|
| 154 | Microsoft pays $2.3M for cloud and AI flaws at Zero Day Quest | Apr 15, 5:10 pm |
|---|
| 155 | CISA flags Windows Task Host vulnerability as exploited in attacks | Apr 15, 3:10 pm |
|---|
| 156 | April Patch Tuesday Fixes Critical Flaws Across SAP, Adobe, Microsoft, Fortinet, and More | Apr 15, 2:10 pm |
|---|
| 157 | Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover | Apr 15, 2:10 pm |
|---|
| 158 | Rolling Networks: Securing the Transportation Sector | Apr 15, 2:10 pm |
|---|
| 159 | Deterministic + Agentic AI: The Architecture Exposure Validation Requires | Apr 15, 1:10 pm |
|---|
| 160 | Microsoft: April updates trigger BitLocker key prompts on some servers | Apr 15, 12:10 pm |
|---|
| 161 | Microsoft fixes bug behind Windows Server 2025 automatic upgrades | Apr 15, 11:10 am |
|---|
| 162 | Microsoft Issues Patches for SharePoint Zero-Day and 168 Other New Vulnerabilities | Apr 15, 9:10 am |
|---|
| 163 | OpenAI Launches GPT-5.4-Cyber with Expanded Access for Security Teams | Apr 15, 6:10 am |
|---|
| 164 | ISC Stormcast For Wednesday, April 15th, 2026 https://isc.sans.edu/podcastdetail/9892, (Wed, Apr 15th) | Apr 15, 2:10 am |
|---|
| 165 | Scanning for AI Models, (Tue, Apr 14th) | Apr 15, 1:10 am |
|---|
| 166 | Microsoft adds Windows protections for malicious Remote Desktop files | Apr 14, 11:10 pm |
|---|
| 167 | Over 100 Chrome Web Store extensions steal user accounts, data | Apr 14, 10:10 pm |
|---|
| 168 | Patch Tuesday, April 2026 Edition | Apr 14, 10:10 pm |
|---|
| 169 | Crypto-exchange Kraken extorted by hackers after insider breach | Apr 14, 10:10 pm |
|---|
| 170 | Over 100 Chrome extensions in Web Store target users accounts and data | Apr 14, 9:10 pm |
|---|
| 171 | Microsoft April 2026 Patch Tuesday fixes 167 flaws, 2 zero-days | Apr 14, 6:10 pm |
|---|
| 172 | Microsoft Patch Tuesday April 2026., (Tue, Apr 14th) | Apr 14, 6:10 pm |
|---|
| 173 | Windows 11 cumulative updates KB5083769 & KB5082052 released | Apr 14, 6:10 pm |
|---|
| 174 | McGraw-Hill confirms data breach following extortion threat | Apr 14, 6:10 pm |
|---|
| 175 | Microsoft releases Windows 10 KB5082200 extended security update | Apr 14, 6:10 pm |
|---|
| 176 | New PHP Composer Flaws Enable Arbitrary Command Execution — Patches Released | Apr 14, 5:10 pm |
|---|
| 177 | Fake Ledger Live app on Apple’s App Store stole $9.5M in crypto | Apr 14, 5:10 pm |
|---|
| 178 | AI-Driven Pushpaganda Scam Exploits Google Discover to Spread Scareware and Ad Fraud | Apr 14, 4:10 pm |
|---|
| 179 | Microsoft rolls out fast-track to reinstate Windows hardware dev accounts | Apr 14, 4:10 pm |
|---|
| 180 | 5 Ways Zero Trust Maximizes Identity Security | Apr 14, 3:10 pm |
|---|
| 181 | Google Adds Rust-Based DNS Parser into Pixel 10 Modem to Enhance Security | Apr 14, 2:10 pm |
|---|
| 182 | Mirax Android RAT Turns Devices into SOCKS5 Proxies, Reaching 220,000 via Meta Ads | Apr 14, 12:10 pm |
|---|
| 183 | Analysis of 216M Security Findings Shows a 4x Increase In Critical Risk (2026 Report) | Apr 14, 10:10 am |
|---|
| 184 | 108 Malicious Chrome Extensions Steal Google and Telegram Data, Affecting 20,000 Users | Apr 14, 9:10 am |
|---|
| 185 | CISA Adds 6 Known Exploited Flaws in Fortinet, Microsoft, and Adobe Software | Apr 14, 7:10 am |
|---|
| 186 | ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers | Apr 14, 7:10 am |
|---|
| 187 | ISC Stormcast For Tuesday, April 14th, 2026 https://isc.sans.edu/podcastdetail/9890, (Tue, Apr 14th) | Apr 14, 2:10 am |
|---|
| 188 | European Gym giant Basic-Fit data breach affects 1 million members | Apr 13, 10:10 pm |
|---|
| 189 | JanelaRAT Malware Targets Latin American Banks with 14,739 Attacks in Brazil in 2025 | Apr 13, 8:10 pm |
|---|
| 190 | Critical flaw in wolfSSL library enables forged certificate use | Apr 13, 8:10 pm |
|---|
| 191 | Stolen Rockstar Games analytics data leaked by extortion gang | Apr 13, 8:10 pm |
|---|
| 192 | FBI takedown of W3LL phishing service leads to developer arrest | Apr 13, 7:10 pm |
|---|
| 193 | New Booking.com data breach forces reservation PIN resets | Apr 13, 6:10 pm |
|---|
| 194 | OpenAI rotates macOS certs after Axios attack hit code-signing workflow | Apr 13, 6:10 pm |
|---|
| 195 | FBI and Indonesian Police Dismantle W3LL Phishing Network Behind $20M Fraud Attempts | Apr 13, 4:10 pm |
|---|
| 196 | Adobe rolls out emergency fix for Acrobat, Reader zero-day flaw | Apr 13, 4:10 pm |
|---|
| 197 | ⚡ Weekly Recap: Fiber Optic Spying, Windows Rootkit, AI Vulnerability Hunting and More | Apr 13, 2:10 pm |
|---|
| 198 | The silent “Storm”: New infostealer hijacks sessions, decrypts server-side | Apr 13, 2:10 pm |
|---|
| 199 | Your MTTD Looks Great. Your Post-Alert Gap Doesn't | Apr 13, 1:10 pm |
|---|
| 200 | Scans for EncystPHP Webshell, (Mon, Apr 13th) | Apr 13, 1:10 pm |
|---|
| 201 | North Korea's APT37 Uses Facebook Social Engineering to Deliver RokRAT Malware | Apr 13, 11:10 am |
|---|
| 202 | OpenAI Revokes macOS App Certificate After Malicious Axios Supply Chain Incident | Apr 13, 8:10 am |
|---|
| 203 | ISC Stormcast For Monday, April 13th, 2026 https://isc.sans.edu/podcastdetail/9888, (Mon, Apr 13th) | Apr 13, 2:10 am |
|---|
| 204 | Critical Marimo pre-auth RCE flaw now under active exploitation | Apr 12, 3:10 pm |
|---|
| 205 | Adobe Patches Actively Exploited Acrobat Reader Flaw CVE-2026-34621 | Apr 12, 6:10 am |
|---|
| 206 | CPUID Breach Distributes STX RAT via Trojanized CPU-Z and HWMonitor Downloads | Apr 12, 6:10 am |
|---|
| 207 | Over 20,000 crypto fraud victims identified in international crackdown | Apr 11, 3:10 pm |
|---|
| 208 | Citizen Lab: Law Enforcement Used Webloc to Track 500 Million Devices via Ad Data | Apr 11, 8:10 am |
|---|
| 209 | ChatGPT rolls out new $100 Pro subscription to challenge Claude | Apr 11, 2:10 am |
|---|
| 210 | CPUID hacked to deliver malware via CPU-Z, HWMonitor downloads | Apr 10, 5:10 pm |
|---|
| 211 | Nearly 4,000 US industrial devices exposed to Iranian cyberattacks | Apr 10, 4:10 pm |
|---|
| 212 | Supply chain attack at CPUID pushes malware with CPU-Z/HWMonitor | Apr 10, 2:10 pm |
|---|
| 213 | GlassWorm Campaign Uses Zig Dropper to Infect Multiple Developer IDEs | Apr 10, 2:10 pm |
|---|
| 214 | Analysis of one billion CISA KEV remediation records exposes limits of human-scale security | Apr 10, 2:10 pm |
|---|
| 215 | Microsoft: Canadian employees targeted in payroll pirate attacks | Apr 10, 12:10 pm |
|---|
| 216 | Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of Disclosure | Apr 10, 11:10 am |
|---|
| 217 | Google rolls out Gmail end-to-end encryption on mobile devices | Apr 10, 11:10 am |
|---|
| 218 | Browser Extensions Are the New AI Consumption Channel That No One Is Talking About | Apr 10, 11:10 am |
|---|
| 219 | Google Rolls Out DBSC in Chrome 146 to Block Session Theft on Windows | Apr 10, 9:10 am |
|---|
| 220 | Backdoored Smart Slider 3 Pro Update Distributed via Compromised Nextend Servers | Apr 10, 8:10 am |
|---|
| 221 | Obfuscated JavaScript or Nothing, (Thu, Apr 9th) | Apr 10, 7:10 am |
|---|
| 222 | EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallet Installs | Apr 10, 6:10 am |
|---|
| 223 | New VENOM phishing attacks steal senior executives' Microsoft logins | Apr 9, 10:10 pm |
|---|
| 224 | New ‘LucidRook’ malware used in targeted attacks on NGOs, universities | Apr 9, 10:10 pm |
|---|
| 225 | EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallets | Apr 9, 8:10 pm |
|---|
| 226 | Healthcare IT solutions provider ChipSoft hit by ransomware attack | Apr 9, 8:10 pm |
|---|
| 227 | Google Chrome adds infostealer protection against session cookie theft | Apr 9, 7:10 pm |
|---|
| 228 | Smart Slider updates hijacked to push malicious WordPress, Joomla versions | Apr 9, 5:10 pm |
|---|
| 229 | UAT-10362 Targets Taiwanese NGOs with LucidRook Malware in Spear-Phishing Campaigns | Apr 9, 5:10 pm |
|---|
| 230 | When attackers already have the keys, MFA is just another door to open | Apr 9, 3:10 pm |
|---|
| 231 | ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories | Apr 9, 2:10 pm |
|---|
| 232 | Webinar: From noise to signal - What threat actors are targeting next | Apr 9, 1:10 pm |
|---|
| 233 | Bitter-Linked Hack-for-Hire Campaign Targets Journalists Across MENA Region | Apr 9, 12:10 pm |
|---|
| 234 | Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025 | Apr 9, 12:10 pm |
|---|
| 235 | The Hidden Security Risks of Shadow AI in Enterprises | Apr 9, 12:10 pm |
|---|
| 236 | Eurail says December data breach impacts 300,000 individuals | Apr 9, 11:10 am |
|---|
| 237 | Hackers exploiting Acrobat Reader zero-day flaw since December | Apr 9, 10:10 am |
|---|
| 238 | Hackers steal $3.6 million from crypto ATM giant Bitcoin Depot | Apr 9, 8:10 am |
|---|
| 239 | Microsoft suspends dev accounts for high-profile open source projects | Apr 9, 7:10 am |
|---|
| 240 | ISC Stormcast For Thursday, April 9th, 2026 https://isc.sans.edu/podcastdetail/9886, (Thu, Apr 9th) | Apr 9, 2:10 am |
|---|
| 241 | Number Usage in Passwords: Take Two, (Thu, Apr 9th) | Apr 9, 1:10 am |
|---|
| 242 | Hackers use pixel-large SVG trick to hide credit card stealer | Apr 8, 11:10 pm |
|---|
| 243 | Google: New UNC6783 hackers steal corporate Zendesk support tickets | Apr 8, 10:10 pm |
|---|
| 244 | New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy | Apr 8, 7:10 pm |
|---|
| 245 | CISA orders feds to patch exploited Ivanti EPMM flaw by Sunday | Apr 8, 7:10 pm |
|---|
| 246 | New macOS stealer campaign uses Script Editor in ClickFix attack | Apr 8, 7:10 pm |
|---|
| 247 | Masjesu Botnet Emerges as DDoS-for-Hire Service Targeting Global IoT Devices | Apr 8, 6:10 pm |
|---|
| 248 | TeamPCP Supply Chain Campaign: Update 007 - Cisco Source Code Stolen via Trivy-Linked Breach, Google GTIG Tracks TeamPCP as UNC6780, and CISA KEV Deadline Arrives with No Standalone Advisory, (Wed, Apr 8th) | Apr 8, 6:10 pm |
|---|
| 249 | 13-year-old bug in ActiveMQ lets hackers remotely execute commands | Apr 8, 6:10 pm |
|---|
| 250 | APT28 Deploys PRISMEX Malware in Campaign Targeting Ukraine and NATO Allies | Apr 8, 4:10 pm |
|---|
| 251 | More Honeypot Fingerprinting Scans, (Wed, Apr 8th) | Apr 8, 3:10 pm |
|---|
| 252 | Is a $30,000 GPU Good at Password Cracking? | Apr 8, 2:10 pm |
|---|
| 253 | Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP) | Apr 8, 12:10 pm |
|---|
| 254 | Anthropic's Claude Mythos Finds Thousands of Zero-Day Flaws Across Major Systems | Apr 8, 10:10 am |
|---|
| 255 | N. Korean Hackers Spread 1,700 Malicious Packages Across npm, PyPI, Go, Rust | Apr 8, 9:10 am |
|---|
| 256 | Microsoft rolls out fix for broken Windows Start Menu search | Apr 8, 7:10 am |
|---|
| 257 | Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCs | Apr 8, 6:10 am |
|---|
| 258 | ISC Stormcast For Wednesday, April 8th, 2026 https://isc.sans.edu/podcastdetail/9884, (Wed, Apr 8th) | Apr 8, 2:10 am |
|---|
| 259 | Hackers exploit critical flaw in Ninja Forms WordPress plugin | Apr 7, 10:10 pm |
|---|
| 260 | FBI: Americans lost a record $21 billion to cybercrime last year | Apr 7, 9:10 pm |
|---|
| 261 | Snowflake customers hit in data theft attacks after SaaS integrator breach | Apr 7, 8:10 pm |
|---|
| 262 | A Little Bit Pivoting: What Web Shells are Attackers Looking for?, (Tue, Apr 7th) | Apr 7, 7:10 pm |
|---|
| 263 | Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign | Apr 7, 6:10 pm |
|---|
| 264 | Russia Hacked Routers to Steal Microsoft Office Tokens | Apr 7, 6:10 pm |
|---|
| 265 | US warns of Iranian hackers targeting critical infrastructure | Apr 7, 6:10 pm |
|---|
| 266 | Max severity Flowise RCE vulnerability now exploited in attacks | Apr 7, 5:10 pm |
|---|
| 267 | Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access | Apr 7, 4:10 pm |
|---|
| 268 | Authorities disrupt router DNS hijacks used to steal Microsoft 365 logins | Apr 7, 4:10 pm |
|---|
| 269 | Over 1,000 Exposed ComfyUI Instances Targeted in Cryptomining Botnet Campaign | Apr 7, 2:10 pm |
|---|
| 270 | Why Your Automated Pentesting Tool Just Hit a Wall | Apr 7, 2:10 pm |
|---|
| 271 | The Hidden Cost of Recurring Credential Incidents | Apr 7, 1:10 pm |
|---|
| 272 | [Webinar] How to Close Identity Gaps in 2026 Before AI Exploits Enterprise Risk | Apr 7, 1:10 pm |
|---|
| 273 | New GPUBreach Attack Enables Full CPU Privilege Escalation via GDDR6 Bit-Flips | Apr 7, 10:10 am |
|---|
| 274 | China-Linked Storm-1175 Exploits Zero-Days to Rapidly Deploy Medusa Ransomware | Apr 7, 8:10 am |
|---|
| 275 | Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed | Apr 7, 6:10 am |
|---|
| 276 | German authorities identify REvil and GandCrab ransomware bosses | Apr 7, 4:10 am |
|---|
| 277 | ISC Stormcast For Tuesday, April 7th, 2026 https://isc.sans.edu/podcastdetail/9882, (Tue, Apr 7th) | Apr 7, 2:10 am |
|---|
| 278 | German authorities identify REvil and GangCrab ransomware bosses | Apr 7, 12:10 am |
|---|
| 279 | New GPUBreach attack enables system takeover via GPU rowhammer | Apr 6, 10:10 pm |
|---|
| 280 | Iran-Linked Password-Spraying Campaign Targets 300+ Israeli Microsoft 365 Organizations | Apr 6, 8:10 pm |
|---|
| 281 | Microsoft fixes Classic Outlook bug causing email delivery issues | Apr 6, 8:10 pm |
|---|
| 282 | Disgruntled researcher leaks “BlueHammer” Windows zero-day exploit | Apr 6, 8:10 pm |
|---|
| 283 | DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea | Apr 6, 6:10 pm |
|---|
| 284 | Microsoft removes Support and Recovery Assistant from Windows | Apr 6, 6:10 pm |
|---|
| 285 | CISA orders feds to patch exploited Fortinet EMS flaw by Friday | Apr 6, 5:10 pm |
|---|
| 286 | Drift $280M crypto theft linked to 6-month in-person operation | Apr 6, 5:10 pm |
|---|
| 287 | Microsoft links Medusa ransomware affiliate to zero-day attacks | Apr 6, 5:10 pm |
|---|
| 288 | CISA orders feds to patch Fortinet flaw exploited in attacks by Friday | Apr 6, 4:10 pm |
|---|
| 289 | ⚡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More | Apr 6, 3:10 pm |
|---|
| 290 | Multi-OS Cyberattacks: How SOCs Close a Critical Risk in 3 Steps | Apr 6, 3:10 pm |
|---|
| 291 | Why Simple Breach Monitoring is No Longer Enough | Apr 6, 2:10 pm |
|---|
| 292 | How LiteLLM Turned Developer Machines Into Credential Vaults for Attackers | Apr 6, 1:10 pm |
|---|
| 293 | Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools | Apr 6, 11:10 am |
|---|
| 294 | How often are redirects used in phishing in 2026?, (Mon, Apr 6th) | Apr 6, 9:10 am |
|---|
| 295 | BKA Identifies REvil Leaders Behind 130 German Ransomware Attacks | Apr 6, 7:10 am |
|---|
| 296 | Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab | Apr 6, 3:10 am |
|---|
| 297 | ISC Stormcast For Monday, April 6th, 2026 https://isc.sans.edu/podcastdetail/9880, (Mon, Apr 6th) | Apr 6, 2:10 am |
|---|
| 298 | $285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation | Apr 5, 8:10 pm |
|---|
| 299 | Traffic violation scams switch to QR codes in new phishing texts | Apr 5, 8:10 pm |
|---|
| 300 | New FortiClient EMS flaw exploited in attacks, emergency patch released | Apr 5, 7:10 pm |
|---|
| 301 | Hackers exploit React2Shell in automated credential theft campaign | Apr 5, 3:10 pm |
|---|
| 302 | Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS | Apr 5, 6:10 am |
|---|
| 303 | 36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants | Apr 5, 6:10 am |
|---|
| 304 | Axios npm hack used fake Teams error fix to hijack maintainer account | Apr 4, 9:10 pm |
|---|
| 305 | LinkedIn secretly scans for 6,000+ Chrome extensions, collects data | Apr 4, 3:10 pm |
|---|
| 306 | Device code phishing attacks surge 37x as new kits spread online | Apr 4, 3:10 pm |
|---|
| 307 | LinkedIn secretely scans for 6,000+ Chrome extensions, collects data | Apr 3, 9:10 pm |
|---|
| 308 | Microsoft Details Cookie-Controlled PHP Web Shells Persisting via Cron on Linux Servers | Apr 3, 6:10 pm |
|---|
| 309 | China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing | Apr 3, 6:10 pm |
|---|
| 310 | Hims & Hers warns of data breach after Zendesk support ticket breach | Apr 3, 6:10 pm |
|---|
| 311 | Die Linke German political party confirms data stolen by Qilin ransomware | Apr 3, 5:10 pm |
|---|
| 312 | Evolution of Ransomware: Multi-Extortion Ransomware Attacks | Apr 3, 3:10 pm |
|---|
| 313 | TeamPCP Supply Chain Campaign: Update 006 - CERT-EU Confirms European Commission Cloud Breach, Sportradar Details Emerge, and Mandiant Quantifies Campaign at 1,000+ SaaS Environments, (Fri, Apr 3rd) | Apr 3, 2:10 pm |
|---|
| 314 | Why Third-Party Risk Is the Biggest Gap in Your Clients' Security Posture | Apr 3, 1:10 pm |
|---|
| 315 | UNC1069 Social Engineering of Axios Maintainer Led to npm Supply Chain Attack | Apr 3, 1:10 pm |
|---|
| 316 | Microsoft still working to fix Exchange Online mailbox access issues | Apr 3, 12:10 pm |
|---|
| 317 | Drift Loses $285 Million in Durable Nonce Social Engineering Attack Linked to DPRK | Apr 3, 10:10 am |
|---|
| 318 | New SparkCat Variant in iOS, Android Apps Steals Crypto Wallet Recovery Phrase Images | Apr 3, 10:10 am |
|---|
| 319 | Man admits to locking thousands of Windows devices in extortion plot | Apr 3, 9:10 am |
|---|
| 320 | Microsoft now force upgrades unmanaged Windows 11 24H2 PCs | Apr 3, 8:10 am |
|---|
| 321 | CERT-EU: European Commission hack exposes data of 30 EU entities | Apr 3, 7:10 am |
|---|
| 322 | Drift loses $280 million North Korean hackers seize Security Council powers | Apr 3, 6:10 am |
|---|
| 323 | ISC Stormcast For Friday, April 3rd, 2026 https://isc.sans.edu/podcastdetail/9878, (Fri, Apr 3rd) | Apr 3, 2:10 am |
|---|
| 324 | Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials | Apr 2, 9:10 pm |
|---|
| 325 | Claude Code leak used to push infostealer malware on GitHub | Apr 2, 9:10 pm |
|---|
| 326 | Drift loses $280 million as hackers seize Security Council powers | Apr 2, 7:10 pm |
|---|
| 327 | Cisco Patches 9.8 CVSS IMC and SSM Flaws Allowing Remote System Compromise | Apr 2, 5:10 pm |
|---|
| 328 | Residential proxies evaded IP reputation checks in 78% of 4B sessions | Apr 2, 4:10 pm |
|---|
| 329 | Attempts to Exploit Exposed "Vite" Installs (CVE-2025-30208), (Thu, Apr 2nd) | Apr 2, 3:10 pm |
|---|
| 330 | ThreatsDay Bulletin: Pre-Auth Chains, Android Rootkits, CloudTrail Evasion & 10 More Stories | Apr 2, 2:10 pm |
|---|
| 331 | Medtech giant Stryker fully operational after data-wiping attack | Apr 2, 2:10 pm |
|---|
| 332 | New Progress ShareFile flaws can be chained in pre-auth RCE attacks | Apr 2, 2:10 pm |
|---|
| 333 | Adversaries Exploit Vacant Homes to Intercept Mail in Hybrid Cybercrime | Apr 2, 2:10 pm |
|---|
| 334 | The State of Trusted Open Source Report | Apr 2, 12:10 pm |
|---|
| 335 | Researchers Uncover Mining Operation Using ISO Lures to Spread RATs and Crypto Miners | Apr 2, 12:10 pm |
|---|
| 336 | WhatsApp Alerts 200 Users After Fake iOS App Installed Spyware; Italian Firm Faces Action | Apr 2, 11:10 am |
|---|
| 337 | Critical Cisco IMC auth bypass gives attackers Admin access | Apr 2, 11:10 am |
|---|
| 338 | Microsoft links Classic Outlook issue to email delivery problems | Apr 2, 10:10 am |
|---|
| 339 | Over 14,000 F5 BIG-IP APM instances still exposed to RCE attacks | Apr 2, 9:10 am |
|---|
| 340 | Apple Expands iOS 18.7.7 Update to More Devices to Block DarkSword Exploit | Apr 2, 8:10 am |
|---|
| 341 | ISC Stormcast For Thursday, April 2nd, 2026 https://isc.sans.edu/podcastdetail/9876, (Thu, Apr 2nd) | Apr 2, 2:10 am |
|---|
| 342 | New CrystalRAT malware adds RAT, stealer and prankware features | Apr 2, 12:10 am |
|---|
| 343 | Hackers exploit TrueConf zero-day to push malicious software updates | Apr 1, 10:10 pm |
|---|
| 344 | Apple expands iOS 18 updates to more iPhones to block DarkSword attacks | Apr 1, 10:10 pm |
|---|
| 345 | New EvilTokens service fuels Microsoft device code phishing attacks | Apr 1, 8:10 pm |
|---|
| 346 | CERT-UA Impersonation Campaign Spread AGEWHEEZE Malware to 1 Million Emails | Apr 1, 6:10 pm |
|---|
| 347 | 'NoVoice' Android malware on Google Play infected 2.3 million devices | Apr 1, 6:10 pm |
|---|
| 348 | Routine Access Is Powering Modern Intrusions, a New Threat Report Finds | Apr 1, 3:10 pm |
|---|
| 349 | New Chrome Zero-Day CVE-2026-5281 Under Active Exploitation — Patch Released | Apr 1, 2:10 pm |
|---|
| 350 | Microsoft Warns of WhatsApp-Delivered VBS Malware Hijacking Windows via UAC Bypass | Apr 1, 2:10 pm |
|---|
| 351 | Casbaneiro Phishing Targets Latin America and Europe Using Dynamic PDF Lures | Apr 1, 2:10 pm |
|---|
| 352 | Block the Prompt, Not the Work: The End of "Doctor No" | Apr 1, 2:10 pm |
|---|
| 353 | TeamPCP Supply Chain Campaign: Update 005 - First Confirmed Victim Disclosure, Post-Compromise Cloud Enumeration Documented, and Axios Attribution Narrows, (Wed, Apr 1st) | Apr 1, 2:10 pm |
|---|
| 354 | 3 Reasons Attackers Are Using Your Trusted Tools Against You (And Why You Don’t See It Coming) | Apr 1, 12:10 pm |
|---|
| 355 | FBI warns against using Chinese mobile apps due to privacy risks | Apr 1, 12:10 pm |
|---|
| 356 | Google fixes fourth Chrome zero-day exploited in attacks in 2026 | Apr 1, 11:10 am |
|---|
| 357 | Malicious Script That Gets Rid of ADS, (Wed, Apr 1st) | Apr 1, 11:10 am |
|---|
| 358 | Google Attributes Axios npm Supply Chain Attack to North Korean Group UNC1069 | Apr 1, 8:10 am |
|---|
| 359 | Claude Code Source Leaked via npm Packaging Error, Anthropic Confirms | Apr 1, 7:10 am |
|---|
| 360 | Google Drive ransomware detection now on by default for paying users | Apr 1, 7:10 am |
|---|
| 361 | New Windows 11 emergency update fixes preview update install issues | Apr 1, 6:10 am |
|---|
| 362 | ISC Stormcast For Wednesday, April 1st, 2026 https://isc.sans.edu/podcastdetail/9874, (Wed, Apr 1st) | Apr 1, 2:10 am |
|---|
| 363 | Claude Code source code accidentally leaked in NPM package | Apr 1, 1:10 am |
|---|
| 364 | Google now allows you to change your @gmail.com address | Apr 1, 12:10 am |
|---|
| 365 | GIGABYTE Control Center vulnerable to arbitrary file write flaw | Mar 31, 11:10 pm |
|---|
| 366 | Proton launches new "Meet" privacy-focused conferencing platform | Mar 31, 11:10 pm |
|---|
| 367 | Claude AI finds Vim, Emacs RCE bugs that trigger on file open | Mar 31, 10:10 pm |
|---|
| 368 | Android Developer Verification Rollout Begins Ahead of September Enforcement | Mar 31, 8:10 pm |
|---|
| 369 | Cisco source code stolen in Trivy-linked dev environment breach | Mar 31, 6:10 pm |
|---|
| 370 | TrueConf Zero-Day Exploited in Attacks on Southeast Asian Government Networks | Mar 31, 5:10 pm |
|---|
| 371 | Vertex AI Vulnerability Exposes Google Cloud Data and Private Artifacts | Mar 31, 2:10 pm |
|---|
| 372 | Hackers compromise Axios npm package to drop cross-platform malware | Mar 31, 2:10 pm |
|---|
| 373 | How to Categorize AI Agents and Prioritize Risk | Mar 31, 2:10 pm |
|---|
| 374 | The AI Arms Race – Why Unified Exposure Management Is Becoming a Boardroom Priority | Mar 31, 1:10 pm |
|---|
| 375 | Silver Fox Expands Asia Cyber Campaign with AtlasCross RAT and Fake Domains | Mar 31, 1:10 pm |
|---|
| 376 | Microsoft fixes Outlook Classic crashes caused by Teams Meeting add-in | Mar 31, 12:10 pm |
|---|
| 377 | Hacker charged with stealing $53 million from Uranium crypto exchange | Mar 31, 10:10 am |
|---|
| 378 | Application Control Bypass for Data Exfiltration, (Tue, Mar 31st) | Mar 31, 8:10 am |
|---|
| 379 | Dutch Finance Ministry takes treasury banking portal offline after breach | Mar 31, 8:10 am |
|---|
| 380 | Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account | Mar 31, 7:10 am |
|---|
| 381 | CISA orders feds to patch actively exploited Citrix flaw by Thursday | Mar 31, 7:10 am |
|---|
| 382 | ISC Stormcast For Tuesday, March 31st, 2026 https://isc.sans.edu/podcastdetail/9872, (Tue, Mar 31st) | Mar 31, 2:10 am |
|---|
| 383 | Healthcare tech firm CareCloud says hackers stole patient data | Mar 30, 10:10 pm |
|---|
| 384 | New RoadK1ll WebSocket implant used to pivot on breached networks | Mar 30, 9:10 pm |
|---|
| 385 | OpenAI Patches ChatGPT Data Exfiltration Flaw and Codex GitHub Token Vulnerability | Mar 30, 8:10 pm |
|---|
| 386 | Critical Citrix NetScaler memory flaw actively exploited in attacks | Mar 30, 7:10 pm |
|---|
| 387 | DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser Credentials | Mar 30, 5:10 pm |
|---|
| 388 | 3 SOC Process Fixes That Unlock Tier 1 Productivity | Mar 30, 3:10 pm |
|---|
| 389 | ⚡ Weekly Recap: Telecom Sleeper Cells, LLM Jailbreaks, Apple Forces U.K. Age Checks and More | Mar 30, 3:10 pm |
|---|
| 390 | How to Evaluate AI SOC Agents: 7 Questions Gartner Says You Should Be Asking | Mar 30, 3:10 pm |
|---|
| 391 | Apple adds macOS Terminal warning to block ClickFix attacks | Mar 30, 3:10 pm |
|---|
| 392 | TeamPCP Supply Chain Campaign: Update 004 - Databricks Investigating Alleged Compromise, TeamPCP Runs Dual Ransomware Operations, and AstraZeneca Data Released, (Mon, Mar 30th) | Mar 30, 3:10 pm |
|---|
| 393 | The State of Secrets Sprawl 2026: 9 Takeaways for CISOs | Mar 30, 12:10 pm |
|---|
| 394 | Hackers now exploit critical F5 BIG-IP flaw in attacks, patch now | Mar 30, 11:10 am |
|---|
| 395 | Microsoft pulls KB5079391 Windows update over install issues | Mar 30, 10:10 am |
|---|
| 396 | Russian CTRL Toolkit Delivered via Malicious LNK Files Hijacks RDP via FRP Tunnels | Mar 30, 10:10 am |
|---|
| 397 | Three China-Linked Clusters Target Southeast Asian Government in 2025 Cyber Campaign | Mar 30, 8:10 am |
|---|
| 398 | Critical Fortinet Forticlient EMS flaw now exploited in attacks | Mar 30, 8:10 am |
|---|
| 399 | European Commission confirms data breach after Europa.eu hack | Mar 30, 7:10 am |
|---|
| 400 | ISC Stormcast For Monday, March 30th, 2026 https://isc.sans.edu/podcastdetail/9870, (Mon, Mar 30th) | Mar 30, 2:10 am |
|---|
| 401 | DShield (Cowrie) Honeypot Stats and When Sessions Disconnect, (Mon, Mar 30th) | Mar 30, 12:10 am |
|---|
| 402 | FBI confirms hack of Director Patel's personal email inbox | Mar 29, 9:10 pm |
|---|
| 403 | File read flaw in Smart Slider plugin impacts 500K WordPress sites | Mar 29, 3:10 pm |
|---|
| 404 | Iran-Linked Hackers Breach FBI Director’s Personal Email, Hit Stryker With Wiper Attack | Mar 28, 5:10 pm |
|---|
| 405 | TeamPCP Supply Chain Campaign: Update 003 - Operational Tempo Shift as Campaign Enters Monetization Phase With No New Compromises in 48 Hours, (Sat, Mar 28th) | Mar 28, 4:10 pm |
|---|
| 406 | New Infinity Stealer malware grabs macOS data via ClickFix lures | Mar 28, 3:10 pm |
|---|
| 407 | Citrix NetScaler Under Active Recon for CVE-2026-3055 (CVSS 9.3) Memory Overread Bug | Mar 28, 10:10 am |
|---|
| 408 | TA446 Deploys DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign | Mar 28, 9:10 am |
|---|
| 409 | CISA Adds CVE-2025-53521 to KEV After Active F5 BIG-IP APM Exploitation | Mar 28, 8:10 am |
|---|
| 410 | TA446 Deploys Leaked DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign | Mar 28, 8:10 am |
|---|
| 411 | Backdoored Telnyx PyPI package pushes malware hidden in WAV audio | Mar 27, 10:10 pm |
|---|
| 412 | Apple Sends Lock Screen Alerts to Outdated iPhones Over Active Web-Based Exploits | Mar 27, 7:10 pm |
|---|
| 413 | TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files | Mar 27, 6:10 pm |
|---|
| 414 | European Commission investigating breach after Amazon cloud account hack | Mar 27, 5:10 pm |
|---|
| 415 | Fake VS Code alerts on GitHub spread malware to developers | Mar 27, 5:10 pm |
|---|
| 416 | Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security Checks | Mar 27, 3:10 pm |
|---|
| 417 | TeamPCP Supply Chain Campaign: Update 002 - Telnyx PyPI Compromise, Vect Ransomware Mass Affiliate Program, and First Named Victim Claim, (Fri, Mar 27th) | Mar 27, 3:10 pm |
|---|
| 418 | Agentic GRC: Teams Get the Tech. The Mindset Shift Is What's Missing. | Mar 27, 2:10 pm |
|---|
| 419 | Bearlyfy Hits Russian Firms with Custom GenieLocker Ransomware | Mar 27, 1:10 pm |
|---|
| 420 | AitM Phishing Targets TikTok Business Accounts Using Cloudflare Turnstile Evasion | Mar 27, 1:10 pm |
|---|
| 421 | European Commission investigating breach after Amazon cloud hack | Mar 27, 1:10 pm |
|---|
| 422 | We Are At War | Mar 27, 12:10 pm |
|---|
| 423 | Anti-piracy coalition takes down AnimePlay app with 5 million users | Mar 27, 11:10 am |
|---|
| 424 | Windows 11 KB5079391 update rolls out Smart App Control improvements | Mar 27, 10:10 am |
|---|
| 425 | Bearlyfy Hits 70+ Russian Firms with Custom GenieLocker Ransomware | Mar 27, 10:10 am |
|---|
| 426 | LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworks | Mar 27, 9:10 am |
|---|
| 427 | Dutch Police discloses security breach after phishing attack | Mar 27, 9:10 am |
|---|
| 428 | ISC Stormcast For Friday, March 27th, 2026 https://isc.sans.edu/podcastdetail/9868, (Fri, Mar 27th) | Mar 27, 2:10 am |
|---|
| 429 | Ajax football club hack exposed fan data, enabled ticket hijack | Mar 26, 9:10 pm |
|---|
| 430 | CISA: New Langflow flaw actively exploited to hijack AI workflows | Mar 26, 8:10 pm |
|---|
| 431 | China-Linked Red Menshen Uses Stealthy BPFDoor Implants to Spy via Telecom Networks | Mar 26, 6:10 pm |
|---|
| 432 | TeamPCP Supply Chain Campaign: Update 001 - Checkmarx Scope Wider Than Reported, CISA KEV Entry, and Detection Tools Available, (Thu, Mar 26th) | Mar 26, 6:10 pm |
|---|
| 433 | UK sanctions Xinbi marketplace linked to Asian scam centers | Mar 26, 4:10 pm |
|---|
| 434 | ThreatsDay Bulletin: PQC Push, AI Vuln Hunting, Pirated Traps, Phishing Kits & 20 More Stories | Mar 26, 2:10 pm |
|---|
| 435 | Masters of Imitation: How Hackers and Art Forgers Perfect the Art of Deception | Mar 26, 2:10 pm |
|---|
| 436 | Coruna iOS exploit framework linked to Triangulation attacks | Mar 26, 2:10 pm |
|---|
| 437 | Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website | Mar 26, 2:10 pm |
|---|
| 438 | Inside a Modern Fraud Attack: From Bot Signups to Account Takeovers | Mar 26, 2:10 pm |
|---|
| 439 | WhatsApp rolls out more AI features, iOS multi-account support | Mar 26, 2:10 pm |
|---|
| 440 | TikTok for Business accounts targeted in new phishing campaign | Mar 26, 2:10 pm |
|---|
| 441 | Russia arrests suspected owner of LeakBase cybercrime forum | Mar 26, 1:10 pm |
|---|
| 442 | [Webinar] Stop Guessing. Learn to Validate Your Defenses Against Real Attacks | Mar 26, 12:10 pm |
|---|
| 443 | Coruna iOS Kit Reuses 2023 Triangulation Exploit Code in New Mass Attacks | Mar 26, 12:10 pm |
|---|
| 444 | Suspected RedLine infostealer malware admin extradited to US | Mar 26, 12:10 pm |
|---|
| 445 | WebRTC Skimmer Bypasses CSP to Steal Payment Data from E-Commerce Sites | Mar 26, 9:10 am |
|---|
| 446 | ISC Stormcast For Thursday, March 26th, 2026 https://isc.sans.edu/podcastdetail/9866, (Thu, Mar 26th) | Mar 26, 2:10 am |
|---|
| 447 | GitHub adds AI-powered bug detection to expand security coverage | Mar 26, 12:10 am |
|---|
| 448 | Apple Patches (almost) everything again. March 2026 edition., (Wed, Mar 25th) | Mar 25, 10:10 pm |
|---|
| 449 | PolyShell attacks target 56% of all vulnerable Magento stores | Mar 25, 10:10 pm |
|---|
| 450 | Bubble AI app builder abused to steal Microsoft account credentials | Mar 25, 8:10 pm |
|---|
| 451 | New Torg Grabber infostealer malware targets 728 crypto wallets | Mar 25, 7:10 pm |
|---|
| 452 | LeakBase Admin Arrested in Russia Over Massive Stolen Credential Marketplace | Mar 25, 6:10 pm |
|---|
| 453 | Citrix urges admins to patch NetScaler flaws as soon as possible | Mar 25, 4:10 pm |
|---|
| 454 | GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data | Mar 25, 3:10 pm |
|---|
| 455 | Paid AI Accounts Are Now a Hot Underground Commodity | Mar 25, 2:10 pm |
|---|
| 456 | Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse | Mar 25, 1:10 pm |
|---|
| 457 | Russian Hacker Sentenced to 2 Years for TA551 Botnet-Driven Ransomware Attacks | Mar 25, 1:10 pm |
|---|
| 458 | The Kill Chain Is Obsolete When Your AI Agent Is the Threat | Mar 25, 1:10 pm |
|---|
| 459 | Kali Linux 2026.1 released with 8 new tools, new BackTrack mode | Mar 25, 1:10 pm |
|---|
| 460 | TP-Link warns users to patch critical router auth bypass flaw | Mar 25, 12:10 pm |
|---|
| 461 | Manager of botnet used in ransomware attacks gets 2 years in prison | Mar 25, 9:10 am |
|---|
| 462 | FCC Bans New Foreign-Made Routers Over Supply Chain and Cyber Risk Concerns | Mar 25, 8:10 am |
|---|
| 463 | TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 via Trivy CI/CD Compromise | Mar 25, 7:10 am |
|---|
| 464 | ISC Stormcast For Wednesday, March 25th, 2026 https://isc.sans.edu/podcastdetail/9864, (Wed, Mar 25th) | Mar 25, 2:10 am |
|---|
| 465 | SmartApeSG campaign pushes Remcos RAT, NetSupport RAT, StealC, and Sectop RAT (ArechClient2), (Wed, Mar 25th) | Mar 25, 1:10 am |
|---|
| 466 | Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens | Mar 25, 12:10 am |
|---|
| 467 | Popular LiteLLM PyPI package compromised in TeamPCP supply chain attack | Mar 24, 11:10 pm |
|---|
| 468 | PTC warns of imminent threat from critical Windchill, FlexPLM RCE bug | Mar 24, 11:10 pm |
|---|
| 469 | FCC bans new routers made outside the USA over security risks | Mar 24, 9:10 pm |
|---|
| 470 | TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 Likely via Trivy CI/CD Compromise | Mar 24, 8:10 pm |
|---|
| 471 | Tax Search Ads Deliver ScreenConnect Malware Using Huawei Driver to Disable EDR | Mar 24, 6:10 pm |
|---|
| 472 | Firefox now has a free built-in VPN with 50GB monthly data limit | Mar 24, 6:10 pm |
|---|
| 473 | Hackers Use Fake Resumes to Steal Enterprise Credentials and Deploy Crypto Miner | Mar 24, 5:10 pm |
|---|
| 474 | Microsoft fixes bug causing Classic Outlook sync issues with Gmail | Mar 24, 4:10 pm |
|---|
| 475 | Yanluowang ransomware access broker gets 81 months in prison | Mar 24, 2:10 pm |
|---|
| 476 | Infinite Campus warns of breach after ShinyHunters claims data theft | Mar 24, 2:10 pm |
|---|
| 477 | Detecting IP KVMs, (Tue, Mar 24th) | Mar 24, 2:10 pm |
|---|
| 478 | HackerOne discloses employee data breach after Navia hack | Mar 24, 2:10 pm |
|---|
| 479 | Zero Trust: Bridging the Gap Between Authentication and Trust | Mar 24, 2:10 pm |
|---|
| 480 | 5 Learnings from the First-Ever Gartner Market Guide for Guardian Agents | Mar 24, 12:10 pm |
|---|
| 481 | Ghost Campaign Uses 7 npm Packages to Steal Crypto Wallets and Credentials | Mar 24, 12:10 pm |
|---|
| 482 | Dutch Ministry of Finance discloses breach affecting employees | Mar 24, 12:10 pm |
|---|
| 483 | TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials | Mar 24, 11:10 am |
|---|
| 484 | The Hidden Cost of Cybersecurity Specialization: Losing Foundational Skills | Mar 24, 11:10 am |
|---|
| 485 | Citrix Urges Patching Critical NetScaler Flaw Allowing Unauthenticated Data Leaks | Mar 24, 8:10 am |
|---|
| 486 | U.S. Sentences Russian Hacker to 6.75 Years for Role in $9M Ransomware Damage | Mar 24, 8:10 am |
|---|
| 487 | ISC Stormcast For Tuesday, March 24th, 2026 https://isc.sans.edu/podcastdetail/9862, (Tue, Mar 24th) | Mar 24, 2:10 am |
|---|
| 488 | OpenAI rolls out ChatGPT Library to store your personal files | Mar 24, 12:10 am |
|---|
| 489 | Mazda discloses security breach exposing employee and partner data | Mar 23, 11:10 pm |
|---|
| 490 | Tycoon2FA phishing platform returns after recent police disruption | Mar 23, 10:10 pm |
|---|
| 491 | Tool updates: lots of security and logic fixes, (Mon, Mar 23rd) | Mar 23, 9:10 pm |
|---|
| 492 | North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware | Mar 23, 8:10 pm |
|---|
| 493 | Crunchyroll probes breach after hacker claims to steal 6.8M users' data | Mar 23, 8:10 pm |
|---|
| 494 | TeamPCP deploys Iran-targeted wiper in Kubernetes attacks | Mar 23, 8:10 pm |
|---|
| 495 | Trivy supply-chain attack spreads to Docker, GitHub repos | Mar 23, 6:10 pm |
|---|
| 496 | ‘CanisterWorm’ Springs Wiper Attack Targeting Iran | Mar 23, 4:10 pm |
|---|
| 497 | Varonis Atlas: Securing AI and the Data That Powers It | Mar 23, 3:10 pm |
|---|
| 498 | We Found Eight Attack Vectors Inside AWS Bedrock. Here's What Attackers Can Do with Them | Mar 23, 2:10 pm |
|---|
| 499 | ⚡ Weekly Recap: CI/CD Backdoor, FBI Buys Location Data, WhatsApp Ditches Numbers & More | Mar 23, 2:10 pm |
|---|
| 500 | Microsoft Exchange Online service change causes email access issues | Mar 23, 1:10 pm |
|---|
