| 1 | Hackers abuse Google ads, Claude.ai chats to push Mac malware | May 10, 6:10 pm |
|---|
| 2 | Police shut down reboot of Crimenetwork marketplace, arrest admin | May 10, 3:10 pm |
|---|
| 3 | Ollama Out-of-Bounds Read Vulnerability Allows Remote Process Memory Leak | May 10, 1:10 pm |
|---|
| 4 | JDownloader site hacked to replace installers with Python RAT malware | May 9, 8:10 pm |
|---|
| 5 | Fake OpenAI repository on Hugging Face pushes infostealer malware | May 9, 3:10 pm |
|---|
| 6 | cPanel, WHM Release Fixes for Three New Vulnerabilities — Patch Now | May 9, 8:10 am |
|---|
| 7 | TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms | May 8, 7:10 pm |
|---|
| 8 | Fake Call History Apps Stole Payments From Users After 7.3 Million Play Store Downloads | May 8, 5:10 pm |
|---|
| 9 | NVIDIA confirms GeForce NOW data breach affecting Armenian users | May 8, 5:10 pm |
|---|
| 10 | Trellix source code breach claimed by RansomHouse hackers | May 8, 2:10 pm |
|---|
| 11 | Why More Analysts Won’t Solve Your SOC’s Alert Problem | May 8, 2:10 pm |
|---|
| 12 | CISA gives feds four days to patch Ivanti flaw exploited as zero-day | May 8, 1:10 pm |
|---|
| 13 | Quasar Linux RAT Steals Developer Credentials for Software Supply Chain Compromise | May 8, 12:10 pm |
|---|
| 14 | New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentials | May 8, 11:10 am |
|---|
| 15 | One Missed Threat Per Week: What 25M Alerts Reveal About Low-Severity Risk | May 8, 11:10 am |
|---|
| 16 | Zara data breach exposed personal information of 197,000 people | May 8, 11:10 am |
|---|
| 17 | Former govt contractor convicted for wiping dozens of federal databases | May 8, 9:10 am |
|---|
| 18 | Linux Kernel Dirty Frag LPE Exploit Enables Root Access Across Major Distributions | May 8, 8:10 am |
|---|
| 19 | New Linux 'Dirty Frag' zero-day gives root on all major distros | May 8, 8:10 am |
|---|
| 20 | Another Universal Linux Local Privilege Escalation (LPE) Vulnerability: Dirty Frag, (Fri, May 8th) | May 8, 8:10 am |
|---|
| 21 | Canvas Breach Disrupts Schools & Colleges Nationwide | May 8, 3:10 am |
|---|
| 22 | ISC Stormcast For Friday, May 8th, 2026 https://isc.sans.edu/podcastdetail/9924, (Fri, May 8th) | May 8, 2:10 am |
|---|
| 23 | Canvas login portals hacked in mass ShinyHunters extortion campaign | May 7, 11:10 pm |
|---|
| 24 | New TCLBanker malware self-spreads over WhatsApp and Outlook | May 7, 10:10 pm |
|---|
| 25 | PCPJack Credential Stealer Exploits 5 CVEs to Spread Worm-Like Across Cloud Systems | May 7, 7:10 pm |
|---|
| 26 | Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access | May 7, 7:10 pm |
|---|
| 27 | New PCPJack worm steals credentials, cleans TeamPCP infections | May 7, 7:10 pm |
|---|
| 28 | Australia warns of ClickFix attacks pushing Vidar Stealer malware | May 7, 6:10 pm |
|---|
| 29 | Ivanti warns of new EPMM flaw exploited in zero-day attacks | May 7, 4:10 pm |
|---|
| 30 | One Click, Total Shutdown: The "Patient Zero" Webinar on Killing Stealth Breaches | May 7, 3:10 pm |
|---|
| 31 | PAN-OS RCE Exploit Under Active Use Enabling Root Access and Espionage | May 7, 2:10 pm |
|---|
| 32 | Americans sentenced for running 'laptop farms' for North Korea | May 7, 2:10 pm |
|---|
| 33 | The Browser Is Breaking Your DLP: How Data Slips Past Modern Controls | May 7, 2:10 pm |
|---|
| 34 | Crypto gang member gets 6.5 years for role in $230 million heist | May 7, 1:10 pm |
|---|
| 35 | Day Zero Readiness: The Operational Gaps That Break Incident Response | May 7, 12:10 pm |
|---|
| 36 | ThreatsDay Bulletin: Edge Plaintext Passwords, ICS 0-Days, Patch-or-Die Alerts and 25+ New Stories | May 7, 12:10 pm |
|---|
| 37 | Webinar: Why modern attacks require both security and recovery | May 7, 12:10 pm |
|---|
| 38 | Palo Alto Networks firewall zero-day exploited for nearly a month | May 7, 11:10 am |
|---|
| 39 | PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linux | May 7, 10:10 am |
|---|
| 40 | Fake Claude AI website delivers new 'Beagle' Windows malware | May 7, 10:10 am |
|---|
| 41 | vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution | May 7, 5:10 am |
|---|
| 42 | An Adaptive Cyber Analytics UI for Web Honeypot Logs [Guest Diary], (Wed, May 6th) | May 7, 2:10 am |
|---|
| 43 | ISC Stormcast For Thursday, May 7th, 2026 https://isc.sans.edu/podcastdetail/9922, (Thu, May 7th) | May 7, 2:10 am |
|---|
| 44 | Hackers abuse Google ads for GoDaddy ManageWP login phishing | May 6, 10:10 pm |
|---|
| 45 | Mirai-Based xlabs_v1 Botnet Exploits ADB to Hijack IoT Devices for DDoS Attacks | May 6, 9:10 pm |
|---|
| 46 | Critical vm2 sandbox bug lets attackers execute code on hosts | May 6, 7:10 pm |
|---|
| 47 | New Cisco DoS flaw requires manual reboot to revive devices | May 6, 6:10 pm |
|---|
| 48 | DAEMON Tools devs confirm breach, release malware-free version | May 6, 5:10 pm |
|---|
| 49 | MuddyWater Uses Microsoft Teams to Steal Credentials in False Flag Ransomware Attack | May 6, 3:10 pm |
|---|
| 50 | Why ransomware attacks succeed even when backups exist | May 6, 2:10 pm |
|---|
| 51 | Your AI Agents Are Already Inside the Perimeter. Do You Know What They're Doing? | May 6, 1:10 pm |
|---|
| 52 | The Hacker News Launches 'Cybersecurity Stars Awards 2026' — Submissions Now Open | May 6, 1:10 pm |
|---|
| 53 | Webinar: Why network incidents escalate and how to fix response gaps | May 6, 1:10 pm |
|---|
| 54 | MuddyWater hackers use Chaos ransomware as a decoy in attacks | May 6, 1:10 pm |
|---|
| 55 | Windows Phone Link Exploited by CloudZ RAT to Steal Credentials and OTPs | May 6, 10:10 am |
|---|
| 56 | Google's Android Apps Get Public Verification to Stop Supply Chain Attacks | May 6, 10:10 am |
|---|
| 57 | Palo Alto Networks warns of firewall RCE zero-day exploited in attacks | May 6, 10:10 am |
|---|
| 58 | Palo Alto PAN-OS Flaw Under Active Exploitation Enables Remote Code Execution | May 6, 8:10 am |
|---|
| 59 | ISC Stormcast For Wednesday, May 6th, 2026 https://isc.sans.edu/podcastdetail/9920, (Wed, May 6th) | May 6, 2:10 am |
|---|
| 60 | Instructure hacker claims data theft from 8,800 schools, universities | May 5, 10:10 pm |
|---|
| 61 | New stealthy Quasar Linux malware targets software developers | May 5, 10:10 pm |
|---|
| 62 | DAEMON Tools trojanized in supply-chain attack to deploy backdoor | May 5, 8:10 pm |
|---|
| 63 | The EOL Blind Spot in Your CVE Feed: What SCA Tools Miss | May 5, 7:10 pm |
|---|
| 64 | Student hacked Taiwan high-speed rail to trigger emergency brakes | May 5, 6:10 pm |
|---|
| 65 | DAEMON Tools Supply Chain Attack Compromises Official Installers with Malware | May 5, 5:10 pm |
|---|
| 66 | Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCE | May 5, 5:10 pm |
|---|
| 67 | China-Linked UAT-8302 Targets Governments Using Shared APT Malware Across Regions | May 5, 4:10 pm |
|---|
| 68 | FTC to ban data broker Kochava from selling Americans’ location data | May 5, 3:10 pm |
|---|
| 69 | The EOL Blind Spot in Your CVE Feed: What SCA Tools Don't Check. | May 5, 2:10 pm |
|---|
| 70 | MetInfo CMS CVE-2026-29014 Exploited for Remote Code Execution Attacks | May 5, 1:10 pm |
|---|
| 71 | The Back Door Attackers Know About — and Most Security Teams Still Haven’t Closed | May 5, 1:10 pm |
|---|
| 72 | Vimeo data breach exposes personal information of 119,000 people | May 5, 1:10 pm |
|---|
| 73 | Google now offers up to $1.5 million for some Android exploits | May 5, 12:10 pm |
|---|
| 74 | Cleartext Passwords in MS Edge? In 2026?, (Mon, May 4th) | May 5, 12:10 pm |
|---|
| 75 | SSL.com rotates their root certificate today, (Tue, May 5th) | May 5, 12:10 pm |
|---|
| 76 | Karakurt extortion gang ‘cold case’ negotiator gets 8.5 years in prison | May 5, 11:10 am |
|---|
| 77 | We Scanned 1 Million Exposed AI Services. Here's How Bad the Security Actually Is | May 5, 11:10 am |
|---|
| 78 | ScarCruft Hacks Gaming Platform to Deploy BirdCall Malware on Android and Windows | May 5, 10:10 am |
|---|
| 79 | CloudZ malware abuses Microsoft Phone Link to steal SMS and OTPs | May 5, 10:10 am |
|---|
| 80 | ScarCruft hackers push BirdCall Android malware via game platform | May 5, 9:10 am |
|---|
| 81 | Microsoft Details Phishing Campaign Targeting 35,000 Users Across 26 Countries | May 5, 8:10 am |
|---|
| 82 | Weaver E-cology RCE Flaw CVE-2026-22679 Actively Exploited via Debug API | May 5, 8:10 am |
|---|
| 83 | ISC Stormcast For Tuesday, May 5th, 2026 https://isc.sans.edu/podcastdetail/9918, (Tue, May 5th) | May 5, 2:10 am |
|---|
| 84 | Weaver E-cology critical bug exploited in attacks since March | May 4, 11:10 pm |
|---|
| 85 | Amazon SES increasingly abused in phishing to evade detection | May 4, 8:10 pm |
|---|
| 86 | Phishing Campaign Hits 80+ Orgs Using SimpleHelp and ScreenConnect RMM Tools | May 4, 7:10 pm |
|---|
| 87 | Progress Patches Critical MOVEit Automation Bug Enabling Authentication Bypass | May 4, 6:10 pm |
|---|
| 88 | TeamPCP Weekly Analysis: 2026-W18 (2026-04-27 through 2026-05-03), (Mon, May 4th) | May 4, 6:10 pm |
|---|
| 89 | Backdoored PyTorch Lightning package drops credential stealer | May 4, 6:10 pm |
|---|
| 90 | Trellix discloses data breach after source code repository hack | May 4, 5:10 pm |
|---|
| 91 | ⚡ Weekly Recap: AI-Powered Phishing, Android Spying Tool, Linux Exploit, GitHub RCE & More | May 4, 4:10 pm |
|---|
| 92 | DShield Honeypot Update, (Mon, May 4th) | May 4, 3:10 pm |
|---|
| 93 | They don’t hack, they borrow: How fraudsters target credit unions | May 4, 2:10 pm |
|---|
| 94 | Webinar: Why MSPs must rethink security and backup strategies | May 4, 1:10 pm |
|---|
| 95 | Progress warns of critical MOVEit Automation auth bypass flaw | May 4, 1:10 pm |
|---|
| 96 | CISA says ‘Copy Fail’ flaw now exploited to root Linux systems | May 4, 12:10 pm |
|---|
| 97 | Silver Fox Deploys ABCDoor Malware via Tax-Themed Phishing in India and Russia | May 4, 12:10 pm |
|---|
| 98 | 2026: The Year of AI-Assisted Attacks | May 4, 12:10 pm |
|---|
| 99 | Critical cPanel Vulnerability Weaponized to Target Government and MSP Networks | May 4, 11:10 am |
|---|
| 100 | Microsoft confirms April Windows updates cause backup failures | May 4, 11:10 am |
|---|
| 101 | Global Crackdown Arrests 276, Shuts 9 Crypto Scam Centers, Seizes $701M | May 4, 7:10 am |
|---|
| 102 | ISC Stormcast For Monday, May 4th, 2026 https://isc.sans.edu/podcastdetail/9916, (Mon, May 4th) | May 4, 2:10 am |
|---|
| 103 | Instructure confirms data breach, ShinyHunters claims attack | May 3, 11:10 pm |
|---|
| 104 | Microsoft Defender wrongly flags DigiCert certs as Trojan:Win32/Cerdigent.A!dha | May 3, 7:10 pm |
|---|
| 105 | Wireshark 4.6.5 Released, (Sun, May 3rd) | May 3, 5:10 pm |
|---|
| 106 | Telegram Mini Apps abused for crypto scams, Android malware delivery | May 3, 3:10 pm |
|---|
| 107 | CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV | May 3, 7:10 am |
|---|
| 108 | Critrical cPanel flaw mass-exploited in "Sorry" ransomware attacks | May 2, 10:10 pm |
|---|
| 109 | ConsentFix v3 attacks target Azure with automated OAuth abuse | May 2, 3:10 pm |
|---|
| 110 | Trellix Confirms Source Code Breach With Unauthorized Repository Access | May 2, 7:10 am |
|---|
| 111 | Microsoft tests modern Windows Run, says it's faster than legacy dialog | May 2, 1:10 am |
|---|
| 112 | Edu tech firm Instructure discloses cyber incident, probes impact | May 2, 12:10 am |
|---|
| 113 | 30,000 Facebook Accounts Hacked via Google AppSheet Phishing Campaign | May 1, 8:10 pm |
|---|
| 114 | Malicious Ad for Homebrew Leads to MacSync Stealer, (Fri, May 1st) | May 1, 7:10 pm |
|---|
| 115 | 15-year-old detained over French govt agency data breach | May 1, 6:10 pm |
|---|
| 116 | Story retracted | May 1, 5:10 pm |
|---|
| 117 | China-Linked Hackers Target Asian Governments, NATO State, Journalists, and Activists | May 1, 3:10 pm |
|---|
| 118 | Criminal IP and Securonix ThreatQ Collaborate to Enhance Threat Intelligence Operations | May 1, 3:10 pm |
|---|
| 119 | Cybercrime Groups Using Vishing and SSO Abuse in Rapid SaaS Extortion Attacks | May 1, 3:10 pm |
|---|
| 120 | Microsoft fixes Remote Desktop warnings displaying incorrectly | May 1, 1:10 pm |
|---|
| 121 | Two Cybersecurity Professionals Get 4-Year Sentences in BlackCat Ransomware Attacks | May 1, 12:10 pm |
|---|
| 122 | Top Five Sales Challenges Costing MSPs Cybersecurity Revenue | May 1, 12:10 pm |
|---|
| 123 | Microsoft now lets admins choose pre-installed Store apps to uninstall | May 1, 12:10 pm |
|---|
| 124 | Poisoned Ruby Gems and Go Modules Exploit CI Pipelines for Credential Theft | May 1, 10:10 am |
|---|
| 125 | Windows 11 KB5083631 update released with 34 changes and fixes | May 1, 10:10 am |
|---|
| 126 | US ransomware negotiators get 4 years in prison over BlackCat attacks | May 1, 8:10 am |
|---|
| 127 | ISC Stormcast For Friday, May 1st, 2026 https://isc.sans.edu/podcastdetail/9914, (Fri, May 1st) | May 1, 2:10 am |
|---|
| 128 | PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials | Apr 30, 7:10 pm |
|---|
| 129 | New Bluekit phishing service includes an AI assistant, 40 templates | Apr 30, 7:10 pm |
|---|
| 130 | Romanian leader of online swatting ring gets 4 years in prison | Apr 30, 6:10 pm |
|---|
| 131 | PyTorch Lightning Compromised in PyPI Supply Chain Attack to Steal Credentials | Apr 30, 5:10 pm |
|---|
| 132 | FBI links cybercriminals to sharp surge in cargo theft attacks | Apr 30, 5:10 pm |
|---|
| 133 | April KB5083769 Windows 11 update causes backup software failures | Apr 30, 4:10 pm |
|---|
| 134 | New Linux ‘Copy Fail’ flaw gives hackers root on major distros | Apr 30, 2:10 pm |
|---|
| 135 | ThreatsDay Bulletin: SMS Blaster Busts, OpenEMR Flaws, 600K Roblox Hacks and 25 More Stories | Apr 30, 2:10 pm |
|---|
| 136 | What Happens in the First 24 Hours After a New Asset Goes Live | Apr 30, 2:10 pm |
|---|
| 137 | Anti-DDoS Firm Heaped Attacks on Brazilian ISPs | Apr 30, 2:10 pm |
|---|
| 138 | EtherRAT Distribution Spoofing Administrative Tools via GitHub Facades | Apr 30, 1:10 pm |
|---|
| 139 | New Python Backdoor Uses Tunneling Service to Steal Browser and Cloud Credentials | Apr 30, 1:10 pm |
|---|
| 140 | Police dismantles 9 crypto scam centers, arrests 276 suspects | Apr 30, 12:10 pm |
|---|
| 141 | Critical cPanel and WHM bug exploited as a zero-day, PoC now available | Apr 30, 12:10 pm |
|---|
| 142 | New Linux 'Copy Fail' Vulnerability Enables Root Access on Major Distributions | Apr 30, 10:10 am |
|---|
| 143 | Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution | Apr 30, 7:10 am |
|---|
| 144 | ISC Stormcast For Thursday, April 30th, 2026 https://isc.sans.edu/podcastdetail/9912, (Thu, Apr 30th) | Apr 30, 2:10 am |
|---|
| 145 | Danger of Libredtail [Guest Diary], (Wed, Apr 29th) | Apr 30, 12:10 am |
|---|
| 146 | Popular WordPress redirect plugin hid dormant backdoor for years | Apr 29, 11:10 pm |
|---|
| 147 | Official SAP npm packages compromised to steal credentials | Apr 29, 11:10 pm |
|---|
| 148 | Hackers exploit RCE flaws in Qinglong task scheduler for cryptomining | Apr 29, 9:10 pm |
|---|
| 149 | Hackers arrested for hijacking and selling 610,000 Roblox accounts | Apr 29, 7:10 pm |
|---|
| 150 | SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack | Apr 29, 6:10 pm |
|---|
| 151 | SAP npm Packages Compromised by “Mini Shai-Hulud” Credential-Stealing Malware | Apr 29, 5:10 pm |
|---|
| 152 | New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs | Apr 29, 4:10 pm |
|---|
| 153 | cPanel, WHM emergency update fixes critical auth bypass bug | Apr 29, 4:10 pm |
|---|
| 154 | European police dismantles €50 million crypto investment fraud ring | Apr 29, 3:10 pm |
|---|
| 155 | Webinar: How to Automate Exposure Validation to Match the Speed of AI Attacks | Apr 29, 2:10 pm |
|---|
| 156 | Learning from the Vercel breach: Shadow AI & OAuth sprawl | Apr 29, 2:10 pm |
|---|
| 157 | Today's Odd Web Requests, (Wed, Apr 29th) | Apr 29, 2:10 pm |
|---|
| 158 | GitHub fixes RCE flaw that gave access to millions of private repos | Apr 29, 1:10 pm |
|---|
| 159 | What to Look for in an Exposure Management Platform (And What Most of Them Get Wrong) | Apr 29, 12:10 pm |
|---|
| 160 | Critical cPanel Authentication Vulnerability Identified — Update Your Server Immediately | Apr 29, 11:10 am |
|---|
| 161 | CISA orders feds to patch Windows flaw exploited as zero-day | Apr 29, 11:10 am |
|---|
| 162 | Microsoft says backend change broke Teams Free chat and calls | Apr 29, 9:10 am |
|---|
| 163 | CISA Adds Actively Exploited ConnectWise and Windows Flaws to KEV | Apr 29, 9:10 am |
|---|
| 164 | LiteLLM CVE-2026-42208 SQL Injection Exploited within 36 Hours of Disclosure | Apr 29, 6:10 am |
|---|
| 165 | ISC Stormcast For Wednesday, April 29th, 2026 https://isc.sans.edu/podcastdetail/9910, (Wed, Apr 29th) | Apr 29, 2:10 am |
|---|
| 166 | Broken VECT 2.0 ransomware acts as a data wiper for large files | Apr 28, 10:10 pm |
|---|
| 167 | Hackers are exploiting a critical LiteLLM pre-auth SQLi flaw | Apr 28, 9:10 pm |
|---|
| 168 | Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw Exploitable via Single Git Push | Apr 28, 7:10 pm |
|---|
| 169 | Video service Vimeo confirms Anodot breach exposed user data | Apr 28, 7:10 pm |
|---|
| 170 | Brazilian LofyGang Resurfaces After Three Years With Minecraft LofyStealer Campaign | Apr 28, 6:10 pm |
|---|
| 171 | US reportedly charges Scattered Spider hacker arrested in Finland | Apr 28, 4:10 pm |
|---|
| 172 | VECT 2.0 Ransomware Irreversibly Destroys Files Over 131KB on Windows, Linux, ESXi | Apr 28, 3:10 pm |
|---|
| 173 | Checkmarx confirms LAPSUS$ hackers leaked its stolen GitHub data | Apr 28, 3:10 pm |
|---|
| 174 | Microsoft to deprecate legacy TLS in Exchange Online starting July | Apr 28, 2:10 pm |
|---|
| 175 | HTTP Requests with X-Vercel-Set-Bypass-Cookie Header, (Tue, Apr 28th) | Apr 28, 2:10 pm |
|---|
| 176 | Why Secure Data Movement Is the Zero Trust Bottleneck Nobody Talks About | Apr 28, 1:10 pm |
|---|
| 177 | Inside an OPSEC Playbook: How Threat Actors Evade Detection | Apr 28, 1:10 pm |
|---|
| 178 | Critical Unpatched Flaw Leaves Hugging Face LeRobot Open to Unauthenticated RCE | Apr 28, 12:10 pm |
|---|
| 179 | After Mythos: New Playbooks For a Zero-Window Era | Apr 28, 11:10 am |
|---|
| 180 | Microsoft: New Remote Desktop warnings may display incorrectly | Apr 28, 10:10 am |
|---|
| 181 | Chinese Silk Typhoon Hacker Extradited to U.S. Over COVID Research Cyberattacks | Apr 28, 9:10 am |
|---|
| 182 | Microsoft asks iPhone users to reauthenticate after Outlook outage | Apr 28, 9:10 am |
|---|
| 183 | Microsoft Confirms Active Exploitation of Windows Shell CVE-2026-32202 | Apr 28, 7:10 am |
|---|
| 184 | Microsoft Patches Entra ID Role Flaw That Enabled Service Principal Takeover | Apr 28, 7:10 am |
|---|
| 185 | ISC Stormcast For Tuesday, April 28th, 2026 https://isc.sans.edu/podcastdetail/9908, (Tue, Apr 28th) | Apr 28, 2:10 am |
|---|
| 186 | Robinhood account creation flaw abused to send phishing emails | Apr 28, 12:10 am |
|---|
| 187 | GlassWorm malware attacks return via 73 OpenVSX "sleeper" extensions | Apr 27, 10:10 pm |
|---|
| 188 | Alleged Silk Typhoon hacker extradited to US for cyberespionage | Apr 27, 8:10 pm |
|---|
| 189 | Canada arrests three for operating “SMS blaster” device in Toronto | Apr 27, 8:10 pm |
|---|
| 190 | FTC: Americans lost over $2.1 billion to social media scams in 2025 | Apr 27, 5:10 pm |
|---|
| 191 | ⚡ Weekly Recap: Fast16 Malware, XChat Launch, Federal Backdoor, AI Employee Tracking & More | Apr 27, 4:10 pm |
|---|
| 192 | Checkmarx Confirms GitHub Repository Data Posted on Dark Web After March 23 Attack | Apr 27, 4:10 pm |
|---|
| 193 | PyPI package with 1.1M monthly downloads hacked to push infostealer | Apr 27, 4:10 pm |
|---|
| 194 | Webinar: Spotting cyberattacks before they begin | Apr 27, 3:10 pm |
|---|
| 195 | Home security giant ADT data breach affects 5.5 million people | Apr 27, 3:10 pm |
|---|
| 196 | Medtronic confirms breach after hackers claim 9 million records theft | Apr 27, 2:10 pm |
|---|
| 197 | TeamPCP Supply Chain Campaign: Update 008 - 26-Day Pause Ends with Three Concurrent Compromises (Checkmarx KICS, Bitwarden CLI Cascade, xinference PyPI), CanisterSprawl npm Worm Identified, and Tier 1 Coverage Returns, (Mon, Apr 27th) | Apr 27, 2:10 pm |
|---|
| 198 | Deepfake Voice Attacks are Outpacing Defenses: What Security Leaders Should Know | Apr 27, 1:10 pm |
|---|
| 199 | Money launderer linked to $230M crypto heist gets 70 months in prison | Apr 27, 1:10 pm |
|---|
| 200 | Researchers Uncover 73 Fake VS Code Extensions Delivering GlassWorm v2 Malware | Apr 27, 12:10 pm |
|---|
| 201 | PhantomCore Exploits TrueConf Vulnerabilities to Breach Russian Networks | Apr 27, 12:10 pm |
|---|
| 202 | Mythos Changed the Math on Vulnerability Discovery. Most Teams Aren't Ready for the Remediation Side | Apr 27, 12:10 pm |
|---|
| 203 | Microsoft says Outlook.com outage is causing sign‑in failures | Apr 27, 12:10 pm |
|---|
| 204 | Fake CAPTCHA IRSF Scam and 120 Keitaro Campaigns Drive Global SMS, Crypto Fraud | Apr 27, 9:10 am |
|---|
| 205 | American utility firm Itron discloses breach of internal IT network | Apr 26, 3:10 pm |
|---|
| 206 | Microsoft rolls out revamped Windows Insider Program | Apr 25, 5:10 pm |
|---|
| 207 | Threat actor uses Microsoft Teams to deploy new “Snow” malware | Apr 25, 4:10 pm |
|---|
| 208 | Researchers Uncover Pre-Stuxnet ‘fast16’ Malware Targeting Engineering Software | Apr 25, 10:10 am |
|---|
| 209 | CISA Adds 4 Exploited Flaws to KEV, Sets May 2026 Federal Deadline | Apr 25, 6:10 am |
|---|
| 210 | ADT confirms data breach after ShinyHunters leak threat | Apr 24, 11:10 pm |
|---|
| 211 | Firestarter malware survives Cisco firewall updates, security patches | Apr 24, 9:10 pm |
|---|
| 212 | Windows Update gets new controls to reduce forced restarts | Apr 24, 8:10 pm |
|---|
| 213 | Microsoft to roll out Entra passkeys on Windows in late April | Apr 24, 7:10 pm |
|---|
| 214 | New BlackFile extortion group linked to surge of vishing attacks | Apr 24, 7:10 pm |
|---|
| 215 | FIRESTARTER Backdoor Hit Federal Cisco Firepower Device, Survives Security Patches | Apr 24, 6:10 pm |
|---|
| 216 | New ‘Pack2TheRoot’ flaw gives hackers root Linux access | Apr 24, 6:10 pm |
|---|
| 217 | NASA Employees Duped in Chinese Phishing Scheme Targeting U.S. Defense Software | Apr 24, 4:10 pm |
|---|
| 218 | DORA and operational resilience: Credential management as a financial risk control | Apr 24, 3:10 pm |
|---|
| 219 | Over 10,000 Zimbra servers vulnerable to ongoing XSS attacks | Apr 24, 2:10 pm |
|---|
| 220 | Microsoft now lets admins uninstall Copilot on enterprise devices | Apr 24, 12:10 pm |
|---|
| 221 | 26 FakeWallet Apps Found on Apple App Store Targeting Crypto Seed Phrases | Apr 24, 12:10 pm |
|---|
| 222 | Bridging the AI Agent Authority Gap: Continuous Observability as the Decision Engine | Apr 24, 12:10 pm |
|---|
| 223 | UNC6692 Impersonates IT Help Desk via Microsoft Teams to Deploy SNOW Malware | Apr 24, 10:10 am |
|---|
| 224 | Tropic Trooper Uses Trojanized SumatraPDF and GitHub to Deploy AdaptixC2 | Apr 24, 10:10 am |
|---|
| 225 | LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure | Apr 24, 9:10 am |
|---|
| 226 | ISC Stormcast For Friday, April 24th, 2026 https://isc.sans.edu/podcastdetail/9906, (Fri, Apr 24th) | Apr 24, 2:10 am |
|---|
| 227 | Hackers exploit file upload bug in Breeze Cache WordPress plugin | Apr 23, 10:10 pm |
|---|
| 228 | Bitwarden CLI npm package compromised to steal developer credentials | Apr 23, 8:10 pm |
|---|
| 229 | UNC6692 Impersonates IT Helpdesk via Microsoft Teams to Deploy SNOW Malware | Apr 23, 7:10 pm |
|---|
| 230 | Trigona ransomware attacks use custom exfiltration tool to steal data | Apr 23, 7:10 pm |
|---|
| 231 | New Checkmarx supply-chain breach affects KICS analysis tool | Apr 23, 4:10 pm |
|---|
| 232 | ThreatsDay Bulletin: $290M DeFi Hack, macOS LotL Abuse, ProxySmart SIM Farms +25 New Stories | Apr 23, 3:10 pm |
|---|
| 233 | Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaign | Apr 23, 3:10 pm |
|---|
| 234 | Regular Password Resets Aren’t as Safe as You Think | Apr 23, 3:10 pm |
|---|
| 235 | Cosmetics giant Rituals discloses data breach affecting customers | Apr 23, 3:10 pm |
|---|
| 236 | Microsoft: Some Teams users can’t join meetings after Edge update | Apr 23, 2:10 pm |
|---|
| 237 | Project Glasswing Proved AI Can Find the Bugs. Who's Going to Fix Them? | Apr 23, 1:10 pm |
|---|
| 238 | [Webinar] Mythos Reality Check: Beating Automated Exploitation at AI Speed | Apr 23, 1:10 pm |
|---|
| 239 | UK warns of Chinese hackers using proxy networks to evade detection | Apr 23, 1:10 pm |
|---|
| 240 | New GopherWhisper APT group abuses Outlook, Slack, Discord for comms | Apr 23, 12:10 pm |
|---|
| 241 | Apple Fixes iOS Flaw That Let FBI Recover Deleted Signal Messages | Apr 23, 11:10 am |
|---|
| 242 | Apple Patches Exploited Notification Flaw, (Thu, Apr 23rd) | Apr 23, 11:10 am |
|---|
| 243 | CISA orders feds to patch BlueHammer flaw exploited as zero-day | Apr 23, 11:10 am |
|---|
| 244 | Vercel Finds More Compromised Accounts in Context.ai-Linked Breach | Apr 23, 10:10 am |
|---|
| 245 | China-Linked GopherWhisper Infects 12 Mongolian Government Systems with Go Backdoors | Apr 23, 10:10 am |
|---|
| 246 | Apple Patches iOS Flaw That Stored Deleted Signal Notifications in FBI Forensic Case | Apr 23, 9:10 am |
|---|
| 247 | Apple fixes bug that let the FBI recover deleted Signal messages | Apr 23, 6:10 am |
|---|
| 248 | ISC Stormcast For Thursday, April 23rd, 2026 https://isc.sans.edu/podcastdetail/9904, (Thu, Apr 23rd) | Apr 23, 2:10 am |
|---|
| 249 | Apple fixes iOS bug that retained deleted notification data | Apr 22, 9:10 pm |
|---|
| 250 | New Mirai campaign exploits RCE flaw in EoL D-Link routers | Apr 22, 8:10 pm |
|---|
| 251 | Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain | Apr 22, 7:10 pm |
|---|
| 252 | Kyber ransomware gang toys with post-quantum encryption on Windows | Apr 22, 7:10 pm |
|---|
| 253 | Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens | Apr 22, 6:10 pm |
|---|
| 254 | Harvester Deploys Linux GoGra Backdoor in South Asia Using Microsoft Graph API | Apr 22, 4:10 pm |
|---|
| 255 | Spain dismantles major $4.7M manga piracy platform, arrests four | Apr 22, 3:10 pm |
|---|
| 256 | Inside Caller-as-a-Service Fraud: The Scam Economy Has a Hiring Process | Apr 22, 2:10 pm |
|---|
| 257 | Microsoft Teams to get efficiency mode on PCs with limited resources | Apr 22, 1:10 pm |
|---|
| 258 | New npm supply-chain attack self-spreads to steal auth tokens | Apr 22, 1:10 pm |
|---|
| 259 | Toxic Combinations: When Cross-App Permissions Stack into Risk | Apr 22, 12:10 pm |
|---|
| 260 | Lotus Wiper Malware Targets Venezuelan Energy Systems in Destructive Attack | Apr 22, 12:10 pm |
|---|
| 261 | Microsoft traces Universal Print issues to Graph API code change | Apr 22, 11:10 am |
|---|
| 262 | Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug | Apr 22, 10:10 am |
|---|
| 263 | New GoGra malware for Linux uses Microsoft Graph API for comms | Apr 22, 10:10 am |
|---|
| 264 | Cohere AI Terrarium Sandbox Flaw Enables Root Code Execution, Container Escape | Apr 22, 9:10 am |
|---|
| 265 | Mustang Panda’s New LOTUSLITE Variant Targets India Banks, South Korea Policy Circles | Apr 22, 9:10 am |
|---|
| 266 | Microsoft releases emergency patches for critical ASP.NET flaw | Apr 22, 9:10 am |
|---|
| 267 | Over 1,300 Microsoft SharePoint servers vulnerable to spoofing attacks | Apr 22, 7:10 am |
|---|
| 268 | ISC Stormcast For Wednesday, April 22nd, 2026 https://isc.sans.edu/podcastdetail/9902, (Wed, Apr 22nd) | Apr 22, 2:10 am |
|---|
| 269 | [Guest Diary] Beyond Cryptojacking: Telegram tdata as a Credential Harvesting Vector, Lessons from a Honeypot Incident, (Wed, Apr 22nd) | Apr 22, 12:10 am |
|---|
| 270 | French govt agency confirms breach as hacker offers to sell data | Apr 21, 10:10 pm |
|---|
| 271 | SystemBC C2 Server Reveals 1,570+ Victims in The Gentlemen Ransomware Operation | Apr 21, 8:10 pm |
|---|
| 272 | New Lotus data wiper used against Venezuelan energy, utility firms | Apr 21, 7:10 pm |
|---|
| 273 | 22 BRIDGE:BREAK Flaws Expose Thousands of Lantronix and Silex Serial-to-IP Converters | Apr 21, 5:10 pm |
|---|
| 274 | 22 BRIDGE:BREAK Flaws Expose 20,000 Lantronix and Silex Serial-to-IP Converters | Apr 21, 4:10 pm |
|---|
| 275 | Ransomware Negotiator Pleads Guilty to Aiding BlackCat Attacks in 2023 | Apr 21, 3:10 pm |
|---|
| 276 | ‘Scattered Spider’ Member ‘Tylerb’ Pleads Guilty | Apr 21, 3:10 pm |
|---|
| 277 | 5 Places where Mature SOCs Keep MTTR Fast and Others Waste Time | Apr 21, 2:10 pm |
|---|
| 278 | UK probes Telegram, teen chat sites over CSAM sharing concerns | Apr 21, 2:10 pm |
|---|
| 279 | Stopping Fraud at Each Stage of the Customer Journey Without Adding Friction | Apr 21, 2:10 pm |
|---|
| 280 | CISA flags new SD-WAN flaw as actively exploited in attacks | Apr 21, 1:10 pm |
|---|
| 281 | Google Patches Antigravity IDE Flaw Enabling Prompt Injection Code Execution | Apr 21, 12:10 pm |
|---|
| 282 | NGate Campaign Targets Brazil, Trojanizes HandyPay to Steal NFC Data and PINs | Apr 21, 12:10 pm |
|---|
| 283 | Actively exploited Apache ActiveMQ flaw impacts 6,400 servers | Apr 21, 12:10 pm |
|---|
| 284 | No Exploit Needed: How Attackers Walk Through the Front Door via Identity-Based Attacks | Apr 21, 12:10 pm |
|---|
| 285 | Former ransomware negotiator pleads guilty to BlackCat attacks | Apr 21, 11:10 am |
|---|
| 286 | NGate Android malware uses HandyPay NFC app to steal card data | Apr 21, 9:10 am |
|---|
| 287 | A .WAV With A Payload, (Tue, Apr 21st) | Apr 21, 8:10 am |
|---|
| 288 | CISA Adds 8 Exploited Flaws to KEV, Sets April-May 2026 Federal Deadlines | Apr 21, 7:10 am |
|---|
| 289 | ISC Stormcast For Tuesday, April 21st, 2026 https://isc.sans.edu/podcastdetail/9900, (Tue, Apr 21st) | Apr 21, 2:10 am |
|---|
| 290 | KelpDAO suffers $290 million heist tied to Lazarus hackers | Apr 20, 11:10 pm |
|---|
| 291 | China's Apple App Store infiltrated by crypto-stealing wallet apps | Apr 20, 10:10 pm |
|---|
| 292 | The Gentlemen ransomware now uses SystemBC for bot-powered attacks | Apr 20, 8:10 pm |
|---|
| 293 | SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files | Apr 20, 7:10 pm |
|---|
| 294 | Seiko USA website defaced as hacker claims customer data theft | Apr 20, 7:10 pm |
|---|
| 295 | Microsoft: Teams increasingly abused in helpdesk impersonation attacks | Apr 20, 4:10 pm |
|---|
| 296 | ⚡ Weekly Recap: Vercel Hack, Push Fraud, QEMU Abused, New Android RATs Emerge & More | Apr 20, 3:10 pm |
|---|
| 297 | British Scattered Spider hacker pleads guilty to crypto theft charges | Apr 20, 2:10 pm |
|---|
| 298 | The backup myth that is putting businesses at risk | Apr 20, 2:10 pm |
|---|
| 299 | Why Most AI Deployments Stall After the Demo | Apr 20, 1:10 pm |
|---|
| 300 | Microsoft tests Windows Explorer speed, performance improvements | Apr 20, 1:10 pm |
|---|
| 301 | Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain | Apr 20, 11:10 am |
|---|
| 302 | Microsoft pulls service update causing Teams launch failures | Apr 20, 10:10 am |
|---|
| 303 | Researchers Detect ZionSiphon Malware Targeting Israeli Water, Desalination OT Systems | Apr 20, 9:10 am |
|---|
| 304 | Microsoft releases emergency updates to fix Windows Server issues | Apr 20, 9:10 am |
|---|
| 305 | Handling the CVE Flood With EPSS, (Mon, Apr 20th) | Apr 20, 7:10 am |
|---|
| 306 | Vercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials | Apr 20, 5:10 am |
|---|
| 307 | ISC Stormcast For Monday, April 20th, 2026 https://isc.sans.edu/podcastdetail/9898, (Mon, Apr 20th) | Apr 20, 2:10 am |
|---|
| 308 | Vercel confirms breach as hackers claim to be selling stolen data | Apr 19, 6:10 pm |
|---|
| 309 | Apple account change alerts abused to send phishing emails | Apr 19, 4:10 pm |
|---|
| 310 | NIST to stop rating non-priority flaws due to volume increase | Apr 19, 3:10 pm |
|---|
| 311 | Critical flaw in Protobuf library enables JavaScript code execution | Apr 18, 4:10 pm |
|---|
| 312 | Microsoft Teams right-click paste broken by Edge update bug | Apr 18, 3:10 pm |
|---|
| 313 | NAKIVO v11.2: Ransomware Defense, Faster Replication, vSphere 9, and Proxmox VE 9.0 Support | Apr 18, 2:10 pm |
|---|
| 314 | $13.74M Hack Shuts Down Sanctioned Grinex Exchange After Intelligence Claims | Apr 18, 9:10 am |
|---|
| 315 | [Webinar] Eliminate Ghost Identities Before They Expose Your Enterprise Data | Apr 18, 9:10 am |
|---|
| 316 | Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet | Apr 18, 7:10 am |
|---|
| 317 | Payouts King ransomware uses QEMU VMs to bypass endpoint security | Apr 17, 8:10 pm |
|---|
| 318 | Inside an Underground Guide: How Threat Actors Vet Stolen Credit Card Shops | Apr 17, 3:10 pm |
|---|
| 319 | Grinex exchange blames "Western intelligence" for $13.7M crypto hack | Apr 17, 3:10 pm |
|---|
| 320 | Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched | Apr 17, 2:10 pm |
|---|
| 321 | Webinar: From phishing to fallout — Why MSPs must rethink both security and recovery | Apr 17, 1:10 pm |
|---|
| 322 | Google Blocks 8.3B Policy-Violating Ads in 2025, Launches Android 17 Privacy Overhaul | Apr 17, 12:10 pm |
|---|
| 323 | CISA flags Apache ActiveMQ flaw as actively exploited in attacks | Apr 17, 10:10 am |
|---|
| 324 | Man gets 30 months for selling thousands of hacked DraftKings accounts | Apr 17, 8:10 am |
|---|
| 325 | NIST Limits CVE Enrichment After 263% Surge in Vulnerability Submissions | Apr 17, 8:10 am |
|---|
| 326 | Microsoft: Some Windows servers enter reboot loops after April patches | Apr 17, 8:10 am |
|---|
| 327 | Operation PowerOFF Seizes 53 DDoS Domains, Exposes 3 Million Criminal Accounts | Apr 17, 7:10 am |
|---|
| 328 | Recently leaked Windows zero-days now exploited in attacks | Apr 17, 7:10 am |
|---|
| 329 | Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation | Apr 17, 4:10 am |
|---|
| 330 | ISC Stormcast For Friday, April 17th, 2026 https://isc.sans.edu/podcastdetail/9896, (Fri, Apr 17th) | Apr 17, 2:10 am |
|---|
| 331 | Lumma Stealer infection with Sectop RAT (ArechClient2), (Fri, Apr 17th) | Apr 17, 1:10 am |
|---|
| 332 | Operation PowerOFF identifies 75k DDoS users, takes down 53 domains | Apr 16, 11:10 pm |
|---|
| 333 | ZionSiphon malware designed to sabotage water treatment systems | Apr 16, 10:10 pm |
|---|
| 334 | New Microsoft Defender “RedSun” zero-day PoC grants SYSTEM privileges | Apr 16, 9:10 pm |
|---|
| 335 | Newly Discovered PowMix Botnet Hits Czech Workers Using Randomized C2 Traffic | Apr 16, 7:10 pm |
|---|
| 336 | Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face | Apr 16, 5:10 pm |
|---|
| 337 | Google expands Gemini AI use to fight malicious ads on its platform | Apr 16, 4:10 pm |
|---|
| 338 | ThreatsDay Bulletin: Defender 0-Day, SonicWall Brute-Force, 17-Year-Old Excel RCE and 15 More Stories | Apr 16, 2:10 pm |
|---|
| 339 | Most "AI SOCs" Are Just Faster Triage. That's Not Enough. | Apr 16, 2:10 pm |
|---|
| 340 | New ATHR vishing platform uses AI voice agents for automated attacks | Apr 16, 2:10 pm |
|---|
| 341 | [Webinar] Find and Eliminate Orphaned Non-Human Identities in Your Environment | Apr 16, 1:10 pm |
|---|
| 342 | Hidden Passenger? How Taboola Routes Logged-In Banking Sessions to Temu | Apr 16, 12:10 pm |
|---|
| 343 | Obsidian Plugin Abuse Delivers PHANTOMPULSE RAT in Targeted Finance, Crypto Attacks | Apr 16, 12:10 pm |
|---|
| 344 | Cisco Patches Four Critical Identity Services, Webex Flaws Enabling Code Execution | Apr 16, 12:10 pm |
|---|
| 345 | Cisco says critical Webex Services flaw requires customer action | Apr 16, 12:10 pm |
|---|
| 346 | Data breach at edtech giant McGraw Hill affects 13.5 million accounts | Apr 16, 11:10 am |
|---|
| 347 | US nationals behind DPRK IT worker 'laptop farm' sent to prison | Apr 16, 9:10 am |
|---|
| 348 | Microsoft: April Windows Server 2025 update may fail to install | Apr 16, 8:10 am |
|---|
| 349 | UAC-0247 Targets Ukrainian Clinics and Government in Data-Theft Malware Campaign | Apr 16, 7:10 am |
|---|
| 350 | ISC Stormcast For Thursday, April 16th, 2026 https://isc.sans.edu/podcastdetail/9894, (Thu, Apr 16th) | Apr 16, 2:10 am |
|---|
| 351 | [Guest Diary] Compromised DVRs and Finding Them in the Wild, (Thu, Apr 16th) | Apr 16, 12:10 am |
|---|
| 352 | Critical Nginx UI auth bypass flaw now actively exploited in the wild | Apr 15, 11:10 pm |
|---|
| 353 | New AgingFly malware used in attacks on Ukraine govt, hospitals | Apr 15, 10:10 pm |
|---|
| 354 | WordPress plugin suite hacked to push malware to thousands of sites | Apr 15, 9:10 pm |
|---|
| 355 | n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails | Apr 15, 6:10 pm |
|---|
| 356 | Signed software abused to deploy antivirus-killing scripts | Apr 15, 6:10 pm |
|---|
| 357 | Microsoft pays $2.3M for cloud and AI flaws at Zero Day Quest | Apr 15, 5:10 pm |
|---|
| 358 | CISA flags Windows Task Host vulnerability as exploited in attacks | Apr 15, 3:10 pm |
|---|
| 359 | April Patch Tuesday Fixes Critical Flaws Across SAP, Adobe, Microsoft, Fortinet, and More | Apr 15, 2:10 pm |
|---|
| 360 | Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover | Apr 15, 2:10 pm |
|---|
| 361 | Rolling Networks: Securing the Transportation Sector | Apr 15, 2:10 pm |
|---|
| 362 | Deterministic + Agentic AI: The Architecture Exposure Validation Requires | Apr 15, 1:10 pm |
|---|
| 363 | Microsoft: April updates trigger BitLocker key prompts on some servers | Apr 15, 12:10 pm |
|---|
| 364 | Microsoft fixes bug behind Windows Server 2025 automatic upgrades | Apr 15, 11:10 am |
|---|
| 365 | Microsoft Issues Patches for SharePoint Zero-Day and 168 Other New Vulnerabilities | Apr 15, 9:10 am |
|---|
| 366 | OpenAI Launches GPT-5.4-Cyber with Expanded Access for Security Teams | Apr 15, 6:10 am |
|---|
| 367 | ISC Stormcast For Wednesday, April 15th, 2026 https://isc.sans.edu/podcastdetail/9892, (Wed, Apr 15th) | Apr 15, 2:10 am |
|---|
| 368 | Scanning for AI Models, (Tue, Apr 14th) | Apr 15, 1:10 am |
|---|
| 369 | Microsoft adds Windows protections for malicious Remote Desktop files | Apr 14, 11:10 pm |
|---|
| 370 | Over 100 Chrome Web Store extensions steal user accounts, data | Apr 14, 10:10 pm |
|---|
| 371 | Patch Tuesday, April 2026 Edition | Apr 14, 10:10 pm |
|---|
| 372 | Crypto-exchange Kraken extorted by hackers after insider breach | Apr 14, 10:10 pm |
|---|
| 373 | Over 100 Chrome extensions in Web Store target users accounts and data | Apr 14, 9:10 pm |
|---|
| 374 | Microsoft April 2026 Patch Tuesday fixes 167 flaws, 2 zero-days | Apr 14, 6:10 pm |
|---|
| 375 | Microsoft Patch Tuesday April 2026., (Tue, Apr 14th) | Apr 14, 6:10 pm |
|---|
| 376 | Windows 11 cumulative updates KB5083769 & KB5082052 released | Apr 14, 6:10 pm |
|---|
| 377 | McGraw-Hill confirms data breach following extortion threat | Apr 14, 6:10 pm |
|---|
| 378 | Microsoft releases Windows 10 KB5082200 extended security update | Apr 14, 6:10 pm |
|---|
| 379 | New PHP Composer Flaws Enable Arbitrary Command Execution — Patches Released | Apr 14, 5:10 pm |
|---|
| 380 | Fake Ledger Live app on Apple’s App Store stole $9.5M in crypto | Apr 14, 5:10 pm |
|---|
| 381 | AI-Driven Pushpaganda Scam Exploits Google Discover to Spread Scareware and Ad Fraud | Apr 14, 4:10 pm |
|---|
| 382 | Microsoft rolls out fast-track to reinstate Windows hardware dev accounts | Apr 14, 4:10 pm |
|---|
| 383 | 5 Ways Zero Trust Maximizes Identity Security | Apr 14, 3:10 pm |
|---|
| 384 | Google Adds Rust-Based DNS Parser into Pixel 10 Modem to Enhance Security | Apr 14, 2:10 pm |
|---|
| 385 | Mirax Android RAT Turns Devices into SOCKS5 Proxies, Reaching 220,000 via Meta Ads | Apr 14, 12:10 pm |
|---|
| 386 | Analysis of 216M Security Findings Shows a 4x Increase In Critical Risk (2026 Report) | Apr 14, 10:10 am |
|---|
| 387 | 108 Malicious Chrome Extensions Steal Google and Telegram Data, Affecting 20,000 Users | Apr 14, 9:10 am |
|---|
| 388 | CISA Adds 6 Known Exploited Flaws in Fortinet, Microsoft, and Adobe Software | Apr 14, 7:10 am |
|---|
| 389 | ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers | Apr 14, 7:10 am |
|---|
| 390 | ISC Stormcast For Tuesday, April 14th, 2026 https://isc.sans.edu/podcastdetail/9890, (Tue, Apr 14th) | Apr 14, 2:10 am |
|---|
| 391 | European Gym giant Basic-Fit data breach affects 1 million members | Apr 13, 10:10 pm |
|---|
| 392 | JanelaRAT Malware Targets Latin American Banks with 14,739 Attacks in Brazil in 2025 | Apr 13, 8:10 pm |
|---|
| 393 | Critical flaw in wolfSSL library enables forged certificate use | Apr 13, 8:10 pm |
|---|
| 394 | Stolen Rockstar Games analytics data leaked by extortion gang | Apr 13, 8:10 pm |
|---|
| 395 | FBI takedown of W3LL phishing service leads to developer arrest | Apr 13, 7:10 pm |
|---|
| 396 | New Booking.com data breach forces reservation PIN resets | Apr 13, 6:10 pm |
|---|
| 397 | OpenAI rotates macOS certs after Axios attack hit code-signing workflow | Apr 13, 6:10 pm |
|---|
| 398 | FBI and Indonesian Police Dismantle W3LL Phishing Network Behind $20M Fraud Attempts | Apr 13, 4:10 pm |
|---|
| 399 | Adobe rolls out emergency fix for Acrobat, Reader zero-day flaw | Apr 13, 4:10 pm |
|---|
| 400 | ⚡ Weekly Recap: Fiber Optic Spying, Windows Rootkit, AI Vulnerability Hunting and More | Apr 13, 2:10 pm |
|---|
| 401 | The silent “Storm”: New infostealer hijacks sessions, decrypts server-side | Apr 13, 2:10 pm |
|---|
| 402 | Your MTTD Looks Great. Your Post-Alert Gap Doesn't | Apr 13, 1:10 pm |
|---|
| 403 | Scans for EncystPHP Webshell, (Mon, Apr 13th) | Apr 13, 1:10 pm |
|---|
| 404 | North Korea's APT37 Uses Facebook Social Engineering to Deliver RokRAT Malware | Apr 13, 11:10 am |
|---|
| 405 | OpenAI Revokes macOS App Certificate After Malicious Axios Supply Chain Incident | Apr 13, 8:10 am |
|---|
| 406 | ISC Stormcast For Monday, April 13th, 2026 https://isc.sans.edu/podcastdetail/9888, (Mon, Apr 13th) | Apr 13, 2:10 am |
|---|
| 407 | Critical Marimo pre-auth RCE flaw now under active exploitation | Apr 12, 3:10 pm |
|---|
| 408 | Adobe Patches Actively Exploited Acrobat Reader Flaw CVE-2026-34621 | Apr 12, 6:10 am |
|---|
| 409 | CPUID Breach Distributes STX RAT via Trojanized CPU-Z and HWMonitor Downloads | Apr 12, 6:10 am |
|---|
| 410 | Over 20,000 crypto fraud victims identified in international crackdown | Apr 11, 3:10 pm |
|---|
| 411 | Citizen Lab: Law Enforcement Used Webloc to Track 500 Million Devices via Ad Data | Apr 11, 8:10 am |
|---|
| 412 | ChatGPT rolls out new $100 Pro subscription to challenge Claude | Apr 11, 2:10 am |
|---|
| 413 | CPUID hacked to deliver malware via CPU-Z, HWMonitor downloads | Apr 10, 5:10 pm |
|---|
| 414 | Nearly 4,000 US industrial devices exposed to Iranian cyberattacks | Apr 10, 4:10 pm |
|---|
| 415 | Supply chain attack at CPUID pushes malware with CPU-Z/HWMonitor | Apr 10, 2:10 pm |
|---|
| 416 | GlassWorm Campaign Uses Zig Dropper to Infect Multiple Developer IDEs | Apr 10, 2:10 pm |
|---|
| 417 | Analysis of one billion CISA KEV remediation records exposes limits of human-scale security | Apr 10, 2:10 pm |
|---|
| 418 | Microsoft: Canadian employees targeted in payroll pirate attacks | Apr 10, 12:10 pm |
|---|
| 419 | Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of Disclosure | Apr 10, 11:10 am |
|---|
| 420 | Google rolls out Gmail end-to-end encryption on mobile devices | Apr 10, 11:10 am |
|---|
| 421 | Browser Extensions Are the New AI Consumption Channel That No One Is Talking About | Apr 10, 11:10 am |
|---|
| 422 | Google Rolls Out DBSC in Chrome 146 to Block Session Theft on Windows | Apr 10, 9:10 am |
|---|
| 423 | Backdoored Smart Slider 3 Pro Update Distributed via Compromised Nextend Servers | Apr 10, 8:10 am |
|---|
| 424 | Obfuscated JavaScript or Nothing, (Thu, Apr 9th) | Apr 10, 7:10 am |
|---|
| 425 | EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallet Installs | Apr 10, 6:10 am |
|---|
| 426 | New VENOM phishing attacks steal senior executives' Microsoft logins | Apr 9, 10:10 pm |
|---|
| 427 | New ‘LucidRook’ malware used in targeted attacks on NGOs, universities | Apr 9, 10:10 pm |
|---|
| 428 | EngageLab SDK Flaw Exposed 50M Android Users, Including 30M Crypto Wallets | Apr 9, 8:10 pm |
|---|
| 429 | Healthcare IT solutions provider ChipSoft hit by ransomware attack | Apr 9, 8:10 pm |
|---|
| 430 | Google Chrome adds infostealer protection against session cookie theft | Apr 9, 7:10 pm |
|---|
| 431 | Smart Slider updates hijacked to push malicious WordPress, Joomla versions | Apr 9, 5:10 pm |
|---|
| 432 | UAT-10362 Targets Taiwanese NGOs with LucidRook Malware in Spear-Phishing Campaigns | Apr 9, 5:10 pm |
|---|
| 433 | When attackers already have the keys, MFA is just another door to open | Apr 9, 3:10 pm |
|---|
| 434 | ThreatsDay Bulletin: Hybrid P2P Botnet, 13-Year-Old Apache RCE and 18 More Stories | Apr 9, 2:10 pm |
|---|
| 435 | Webinar: From noise to signal - What threat actors are targeting next | Apr 9, 1:10 pm |
|---|
| 436 | Bitter-Linked Hack-for-Hire Campaign Targets Journalists Across MENA Region | Apr 9, 12:10 pm |
|---|
| 437 | Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025 | Apr 9, 12:10 pm |
|---|
| 438 | The Hidden Security Risks of Shadow AI in Enterprises | Apr 9, 12:10 pm |
|---|
| 439 | Eurail says December data breach impacts 300,000 individuals | Apr 9, 11:10 am |
|---|
| 440 | Hackers exploiting Acrobat Reader zero-day flaw since December | Apr 9, 10:10 am |
|---|
| 441 | Hackers steal $3.6 million from crypto ATM giant Bitcoin Depot | Apr 9, 8:10 am |
|---|
| 442 | Microsoft suspends dev accounts for high-profile open source projects | Apr 9, 7:10 am |
|---|
| 443 | ISC Stormcast For Thursday, April 9th, 2026 https://isc.sans.edu/podcastdetail/9886, (Thu, Apr 9th) | Apr 9, 2:10 am |
|---|
| 444 | Number Usage in Passwords: Take Two, (Thu, Apr 9th) | Apr 9, 1:10 am |
|---|
| 445 | Hackers use pixel-large SVG trick to hide credit card stealer | Apr 8, 11:10 pm |
|---|
| 446 | Google: New UNC6783 hackers steal corporate Zendesk support tickets | Apr 8, 10:10 pm |
|---|
| 447 | New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy | Apr 8, 7:10 pm |
|---|
| 448 | CISA orders feds to patch exploited Ivanti EPMM flaw by Sunday | Apr 8, 7:10 pm |
|---|
| 449 | New macOS stealer campaign uses Script Editor in ClickFix attack | Apr 8, 7:10 pm |
|---|
| 450 | Masjesu Botnet Emerges as DDoS-for-Hire Service Targeting Global IoT Devices | Apr 8, 6:10 pm |
|---|
| 451 | TeamPCP Supply Chain Campaign: Update 007 - Cisco Source Code Stolen via Trivy-Linked Breach, Google GTIG Tracks TeamPCP as UNC6780, and CISA KEV Deadline Arrives with No Standalone Advisory, (Wed, Apr 8th) | Apr 8, 6:10 pm |
|---|
| 452 | 13-year-old bug in ActiveMQ lets hackers remotely execute commands | Apr 8, 6:10 pm |
|---|
| 453 | APT28 Deploys PRISMEX Malware in Campaign Targeting Ukraine and NATO Allies | Apr 8, 4:10 pm |
|---|
| 454 | More Honeypot Fingerprinting Scans, (Wed, Apr 8th) | Apr 8, 3:10 pm |
|---|
| 455 | Is a $30,000 GPU Good at Password Cracking? | Apr 8, 2:10 pm |
|---|
| 456 | Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP) | Apr 8, 12:10 pm |
|---|
| 457 | Anthropic's Claude Mythos Finds Thousands of Zero-Day Flaws Across Major Systems | Apr 8, 10:10 am |
|---|
| 458 | N. Korean Hackers Spread 1,700 Malicious Packages Across npm, PyPI, Go, Rust | Apr 8, 9:10 am |
|---|
| 459 | Microsoft rolls out fix for broken Windows Start Menu search | Apr 8, 7:10 am |
|---|
| 460 | Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCs | Apr 8, 6:10 am |
|---|
| 461 | ISC Stormcast For Wednesday, April 8th, 2026 https://isc.sans.edu/podcastdetail/9884, (Wed, Apr 8th) | Apr 8, 2:10 am |
|---|
| 462 | Hackers exploit critical flaw in Ninja Forms WordPress plugin | Apr 7, 10:10 pm |
|---|
| 463 | FBI: Americans lost a record $21 billion to cybercrime last year | Apr 7, 9:10 pm |
|---|
| 464 | Snowflake customers hit in data theft attacks after SaaS integrator breach | Apr 7, 8:10 pm |
|---|
| 465 | A Little Bit Pivoting: What Web Shells are Attackers Looking for?, (Tue, Apr 7th) | Apr 7, 7:10 pm |
|---|
| 466 | Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign | Apr 7, 6:10 pm |
|---|
| 467 | Russia Hacked Routers to Steal Microsoft Office Tokens | Apr 7, 6:10 pm |
|---|
| 468 | US warns of Iranian hackers targeting critical infrastructure | Apr 7, 6:10 pm |
|---|
| 469 | Max severity Flowise RCE vulnerability now exploited in attacks | Apr 7, 5:10 pm |
|---|
| 470 | Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access | Apr 7, 4:10 pm |
|---|
| 471 | Authorities disrupt router DNS hijacks used to steal Microsoft 365 logins | Apr 7, 4:10 pm |
|---|
| 472 | Over 1,000 Exposed ComfyUI Instances Targeted in Cryptomining Botnet Campaign | Apr 7, 2:10 pm |
|---|
| 473 | Why Your Automated Pentesting Tool Just Hit a Wall | Apr 7, 2:10 pm |
|---|
| 474 | The Hidden Cost of Recurring Credential Incidents | Apr 7, 1:10 pm |
|---|
| 475 | [Webinar] How to Close Identity Gaps in 2026 Before AI Exploits Enterprise Risk | Apr 7, 1:10 pm |
|---|
| 476 | New GPUBreach Attack Enables Full CPU Privilege Escalation via GDDR6 Bit-Flips | Apr 7, 10:10 am |
|---|
| 477 | China-Linked Storm-1175 Exploits Zero-Days to Rapidly Deploy Medusa Ransomware | Apr 7, 8:10 am |
|---|
| 478 | Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed | Apr 7, 6:10 am |
|---|
| 479 | German authorities identify REvil and GandCrab ransomware bosses | Apr 7, 4:10 am |
|---|
| 480 | ISC Stormcast For Tuesday, April 7th, 2026 https://isc.sans.edu/podcastdetail/9882, (Tue, Apr 7th) | Apr 7, 2:10 am |
|---|
| 481 | German authorities identify REvil and GangCrab ransomware bosses | Apr 7, 12:10 am |
|---|
| 482 | New GPUBreach attack enables system takeover via GPU rowhammer | Apr 6, 10:10 pm |
|---|
| 483 | Iran-Linked Password-Spraying Campaign Targets 300+ Israeli Microsoft 365 Organizations | Apr 6, 8:10 pm |
|---|
| 484 | Microsoft fixes Classic Outlook bug causing email delivery issues | Apr 6, 8:10 pm |
|---|
| 485 | Disgruntled researcher leaks “BlueHammer” Windows zero-day exploit | Apr 6, 8:10 pm |
|---|
| 486 | DPRK-Linked Hackers Use GitHub as C2 in Multi-Stage Attacks Targeting South Korea | Apr 6, 6:10 pm |
|---|
| 487 | Microsoft removes Support and Recovery Assistant from Windows | Apr 6, 6:10 pm |
|---|
| 488 | CISA orders feds to patch exploited Fortinet EMS flaw by Friday | Apr 6, 5:10 pm |
|---|
| 489 | Drift $280M crypto theft linked to 6-month in-person operation | Apr 6, 5:10 pm |
|---|
| 490 | Microsoft links Medusa ransomware affiliate to zero-day attacks | Apr 6, 5:10 pm |
|---|
| 491 | CISA orders feds to patch Fortinet flaw exploited in attacks by Friday | Apr 6, 4:10 pm |
|---|
| 492 | ⚡ Weekly Recap: Axios Hack, Chrome 0-Day, Fortinet Exploits, Paragon Spyware and More | Apr 6, 3:10 pm |
|---|
| 493 | Multi-OS Cyberattacks: How SOCs Close a Critical Risk in 3 Steps | Apr 6, 3:10 pm |
|---|
| 494 | Why Simple Breach Monitoring is No Longer Enough | Apr 6, 2:10 pm |
|---|
| 495 | How LiteLLM Turned Developer Machines Into Credential Vaults for Attackers | Apr 6, 1:10 pm |
|---|
| 496 | Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools | Apr 6, 11:10 am |
|---|
| 497 | How often are redirects used in phishing in 2026?, (Mon, Apr 6th) | Apr 6, 9:10 am |
|---|
| 498 | BKA Identifies REvil Leaders Behind 130 German Ransomware Attacks | Apr 6, 7:10 am |
|---|
| 499 | Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab | Apr 6, 3:10 am |
|---|
| 500 | ISC Stormcast For Monday, April 6th, 2026 https://isc.sans.edu/podcastdetail/9880, (Mon, Apr 6th) | Apr 6, 2:10 am |
|---|