List cybersec
Palo Alto GlobalProtect VPN auth bypass flaw now exploited in attacks
{ "priority": "HIGH", "cve": "CVE-2026-0257", "target": "Palo Alto Networks PAN-OS GlobalProtect", "threat_actor": "N/A", "patch_ready": false, "insight": "Hackers are exploiting a Palo Al..
6:10 pm, May 30, 2026 Cybersecurity
New CIFSwitch Linux flaw gives root on multiple distributions
A newly discovered local privilege escalation vulnerability dubbed 'CIFSwitch' in the Linux kernel could allow attackers to forge CIFS authentication key descriptions, abuse the kernel's key request m..
3:10 pm, May 30, 2026 Cybersecurity
PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation
{ "priority": "HIGH", "cve": "CVE-2026-0257", "target": "PAN-OS and Prisma Access", "threat_actor": "N/A", "patch_ready": true, "insight": "Palo Alto Networks warns that CVE-2026-0257, a m..
8:10 am, May 30, 2026 Cybersecurity
New Russia-Linked GREYVIBE Targets Ukraine with AI-Powered Cyberattacks
{ "priority": "HIGH", "cve": "N/A", "target": "Ukraine", "threat_actor": "GREYVIBE", "patch_ready": false, "insight": "New Russia-linked threat actor GREYVIBE targets Ukraine with AI-power..
7:10 am, May 30, 2026 Cybersecurity
ChatGPhish Vulnerability Turns ChatGPT Web Summaries Into a Phishing Surface
{ "priority": "HIGH", "cve": "N/A", "target": "OpenAI ChatGPT", "threat_actor": "N/A", "patch_ready": false, "insight": "ChatGPhish vulnerability in ChatGPT allows phishing via Markdown li..
7:10 pm, May 29, 2026 Cybersecurity
ChatGPT share links abused to host fake outage pages to deliver malware
Threat actors are abusing ChatGPT's content-sharing feature to display fake OpenAI outage pages that direct users to download malware disguised as the ChatGPT desktop application. [...]
7:10 pm, May 29, 2026 Cybersecurity
California AG sues 23andMe over 2023 breach exposing health data
California Attorney General Rob Bonta filed a lawsuit against 23andMe, now Chrome Holding Co., over the company's failure to protect sensitive customer genetic and personal information. [...]
6:10 pm, May 29, 2026 Cybersecurity
Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit
{ "priority": "CRITICAL", "cve": "CVE-2026-39987", "target": "Marimo", "threat_actor": "Unknown", "patch_ready": true, "insight": "Attackers used LLM agent for post-exploitation after Mari..
4:10 pm, May 29, 2026 Cybersecurity
Dutch govt disrupts malware botnet with 17 million infected devices
{ "priority": "HIGH", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Dutch authorities disrupted a massive botnet of 17 million infected devices an..
3:10 pm, May 29, 2026 Cybersecurity
From $5 Attacks to Botnet-Powered Platforms: Inside the DDoS-as-a- Service Market
DDoS attacks are increasingly being sold like subscription services, complete with pricing tiers, support, and reseller programs. Flare explores how the DDoS-as-a-Service market has evolved from scatt..
3:10 pm, May 29, 2026 Cybersecurity
Google Chrome adds session cookie theft protection for all users
{ "priority": "INFO", "cve": "N/A", "target": "Google Chrome", "threat_actor": "N/A", "patch_ready": false, "insight": "Google Chrome has introduced Device Bound Session Credentials (DBSC)..
1:10 pm, May 29, 2026 Cybersecurity
What 2,000 Exposed Vibe-Coded Apps Reveal About the Limits of Most Security Stacks
{ "priority": "HIGH", "cve": "N/A", "target": "AI-generated applications", "threat_actor": "N/A", "patch_ready": false, "insight": "Exposed AI-generated applications reveal limitations in ..
12:10 pm, May 29, 2026 Cybersecurity
Man sent to prison for selling data of 7 millions elderly Americans
{ "priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A North Carolina man was sentenced to over 10 years in prison for selling perso..
12:10 pm, May 29, 2026 Cybersecurity
New Russian-Linked GREYVIBE Targets Ukraine with AI-Powered Cyberattacks
{ "priority": "HIGH", "cve": "N/A", "target": "Ukraine", "threat_actor": "GREYVIBE", "patch_ready": false, "insight": "A new Russian-linked threat actor GREYVIBE targets Ukraine with AI-po..
12:10 pm, May 29, 2026 Cybersecurity
US charges Google security engineer with Polymarket insider trading
{ "priority": "LOW", "cve": "N/A", "target": "Polymarket", "threat_actor": "N/A", "patch_ready": false, "insight": "A Google security engineer was charged with insider trading using confid..
11:10 am, May 29, 2026 Cybersecurity
Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets
Cybersecurity researchers have discovered a malicious NuGet package that masquerades as a C# software development kit for Sicoob, one of Brazil's largest cooperative financial systems, to siphon clien..
10:10 am, May 29, 2026 Cybersecurity
Charter Communications data breach affects 4.9 million accounts
{ "priority": "HIGH", "cve": "N/A", "target": "Charter Communications", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "ShinyHunters extortion gang stole personal data fr..
9:10 am, May 29, 2026 Cybersecurity
Kimsuky Deploys HTTPSpy, Expands Arsenal with HelloDoor and VS Code Tunnels
{ "priority": "HIGH", "cve": "N/A", "target": "South Korean military and corporate entities", "threat_actor": "Kimsuky (aka Velvet Chollima)", "patch_ready": false, "insight": "Kimsuky dep..
7:10 am, May 29, 2026 Cybersecurity
ISC Stormcast For Friday, May 29th, 2026 https://isc.sans.edu/podcastdetail/9950, (Fri, May 29th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast details for Friday, May 29th, 2026." }
2:10 am, May 29, 2026 Cybersecurity
Anthropic confirms Claude Mythos-class models will roll out to the public
{"priority":"INFO","cve":"N/A","target":"Anthropic Claude Mythos-class models","threat_actor":"N/A","patch_ready":false,"insight":"Anthropic plans to release Mythos-class models to the public after ad..
1:10 am, May 29, 2026 Cybersecurity
GreyVibe hackers use ChatGPT, Gemini to power cyberattacks
{ "priority": "HIGH", "cve": "N/A", "target": "Ukrainian entities", "threat_actor": "GreyVibe", "patch_ready": false, "insight": "GreyVibe hackers use AI-generated lures and custom malware..
11:10 pm, May 28, 2026 Cybersecurity
BTMOB Android malware service generates custom phishing payloads
{ "priority": "HIGH", "cve": "N/A", "target": "Android", "threat_actor": "BTMOB", "patch_ready": false, "insight": "BTMOB Android malware generates custom phishing payloads" }
10:10 pm, May 28, 2026 Cybersecurity
Analysis of a Year of Files Uploaded to DShield Sensors, (Wed, May 27th)
{ "priority": "INFO", "cve": "N/A", "target": "DShield Sensors", "threat_actor": "N/A", "patch_ready": false, "insight": "A year-long analysis of files uploaded to DShield sensors reveals ..
8:10 pm, May 28, 2026 Cybersecurity
FBI warns of fake FIFA websites running World Cup fraud schemes
{ "priority": "INFO", "cve": "N/A", "target": "FIFA", "threat_actor": "N/A", "patch_ready": false, "insight": "The FBI warns of fraudulent FIFA websites impersonating the organization to s..
7:10 pm, May 28, 2026 Cybersecurity
Critical Gogs RCE Vulnerability Lets Any Authenticated User Execute Arbitrary Code
{"priority": "CRITICAL", "cve": "N/A", "target": "Gogs", "threat_actor": "N/A", "patch_ready": false, "insight": "Critical Gogs RCE vulnerability allows authenticated users to execute arbitrary code"}..
6:10 pm, May 28, 2026 Cybersecurity
Hackers exploit FortiClient EMS flaw to push infostealer malware
{ "priority": "HIGH", "cve": "CVE-2026-35616", "target": "FortiClient Enterprise Management Server (EMS)", "threat_actor": "N/A", "patch_ready": false, "insight": "Hackers are exploiting a..
6:10 pm, May 28, 2026 Cybersecurity
Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer
{ "priority": "CRITICAL", "cve": "CVE-2023-48788", "target": "FortiClient EMS", "threat_actor": "Arctic Wolf", "patch_ready": true, "insight": "Threat actors exploit critical FortiClient E..
5:10 pm, May 28, 2026 Cybersecurity
New Gogs zero-day flaw lets hackers get remote code execution
{ "priority": "CRITICAL", "cve": "N/A", "target": "Gogs", "threat_actor": "N/A", "patch_ready": false, "insight": "Unpatched zero-day vulnerability in Gogs self-hosted Git service allows r..
3:10 pm, May 28, 2026 Cybersecurity
ThreatsDay Bulletin: Claude Security Plugin, Azure Priv-Esc, Kali365 MFA Bypass, FIFA Scams +15 More
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The ThreatsDay Bulletin discusses various security threats and techniques, inc..
2:10 pm, May 28, 2026 Cybersecurity
Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal
{ "priority": "MEDIUM", "cve": "N/A", "target": "Microsoft", "threat_actor": "Chaotic Eclipse (aka Nightmare-Eclipse)", "patch_ready": false, "insight": "Microsoft advocates for Coordinate..
2:10 pm, May 28, 2026 Cybersecurity
How SIEM helps MSPs reduce noise and stop threats faster
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "SIEM helps MSPs improve visibility, reduce alert fatigue, and respond faster t..
2:10 pm, May 28, 2026 Cybersecurity
New AI Usage Report: Enterprise AI Risk Is Heavily Concentrated Among a Small Group of AI "Power users"
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A new report by LayerX Security reveals that enterprise AI risk is concentrate..
1:10 pm, May 28, 2026 Cybersecurity
Webinar: Why network incidents take too long to resolve
Many organizations can detect network issues quickly, but investigations and coordination often slow incident resolution. This webinar explores how automation and AI-assisted workflows can help IT tea..
1:10 pm, May 28, 2026 Cybersecurity
Romanian gets 5 years in prison for hacking Oregon govt network
{"priority":"CRITICAL","cve":"N/A","target":"Oregon state government computer network","threat_actor":"Romanian national","patch_ready":false,"insight":"A Romanian national was sentenced to 56 months ..
1:10 pm, May 28, 2026 Cybersecurity
Carnival Cruise confirms data breach affecting nearly 6 million people
{ "priority": "HIGH", "cve": "N/A", "target": "Carnival Cruise", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "Carnival Cruise confirms data breach affecting nearly 6 m..
11:10 am, May 28, 2026 Cybersecurity
Sextortionist sentenced to 33 years for targeting 145 children
{ "priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A Canadian man was sentenced to 33 years in prison for a sextortion scheme targ..
10:10 am, May 28, 2026 Cybersecurity
JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware
{ "priority": "HIGH", "cve": "N/A", "target": "Cryptocurrency Firms", "threat_actor": "JINX-0164", "patch_ready": false, "insight": "JINX-0164 uses fake recruiter lures and custom macOS ma..
9:10 am, May 28, 2026 Cybersecurity
ISC Stormcast For Thursday, May 28th, 2026 https://isc.sans.edu/podcastdetail/9948, (Thu, May 28th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast details for Thursday, May 28th, 2026." }
2:10 am, May 28, 2026 Cybersecurity
Reconstructing an Akira Ransomware Kill Chain from Perimeter and Endpoint Logs, (Wed, May 27th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "Akira", "patch_ready": false, "insight": "Analyzing perimeter and endpoint logs can provide insights into Akira ransom..
10:10 pm, May 27, 2026 Cybersecurity
GPU mining malware spreads via SEO poisoning, AI chatbots
{ "priority": "HIGH", "cve": "N/A", "target": "High-performance computers", "threat_actor": "N/A", "patch_ready": false, "insight": "GPU mining malware spreads via SEO poisoning and AI cha..
10:10 pm, May 27, 2026 Cybersecurity
Malicious npm Package Stole Files From Claude AI User Directory via GitHub
{ "priority": "HIGH", "cve": "N/A", "target": "Claude AI", "threat_actor": "N/A", "patch_ready": false, "insight": "A malicious npm package named 'mouse5212-super-formatter' was discovered..
5:10 pm, May 27, 2026 Cybersecurity
Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users
{ "priority": "HIGH", "cve": "N/A", "target": "Windows and Android users", "threat_actor": "N/A", "patch_ready": false, "insight": "Two malware campaigns, Grandoreiro and BTMOB RAT, target..
5:10 pm, May 27, 2026 Cybersecurity
3 SOC Steps that Shut Down Incident Risks Early
Most organizations still picture cyber defense as a fortress problem: build stronger walls, add more guards, buy another detection engine. But modern incidents rarely crash through the front gate. The..
3:10 pm, May 27, 2026 Cybersecurity
Glassworm botnet disrupted after resilient C2 infrastructure takedown
{ "priority": "HIGH", "cve": "N/A", "target": "Glassworm botnet", "threat_actor": "N/A", "patch_ready": false, "insight": "Researchers disrupted the Glassworm botnet by taking down its com..
2:10 pm, May 27, 2026 Cybersecurity
Can you enforce strong Active Directory password rules without frustrating users?
{ "priority": "INFO", "cve": "N/A", "target": "Active Directory", "threat_actor": "N/A", "patch_ready": false, "insight": "Implementing strong Active Directory password rules can be achiev..
2:10 pm, May 27, 2026 Cybersecurity
GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure
{ "priority": "HIGH", "cve": "N/A", "target": "Software Developers", "threat_actor": "GlassWorm", "patch_ready": false, "insight": "GlassWorm malware takedown disrupts developer supply cha..
1:10 pm, May 27, 2026 Cybersecurity
Gitea Vulnerability Exposes Private Container Images without Authentication
{"priority":"HIGH","cve":"CVE-2026-27771","target":"Gitea","threat_actor":"N/A","patch_ready":true,"insight":"Unauthenticated remote attackers can pull private container images from Gitea deployments ..
12:10 pm, May 27, 2026 Cybersecurity
FBI warns of in-person data theft attacks from extortion gang
{"priority":"LOW","cve":"N/A","target":"U.S.-based law firms","threat_actor":"Silent Ransom Group","patch_ready":false,"insight":"FBI warns of in-person data theft attacks from Silent Ransom Group tar..
12:10 pm, May 27, 2026 Cybersecurity
CISA gives feds 4 days to patch actively exploited cPanel plugin flaw
{ "priority": "CRITICAL", "cve": "N/A", "target": "LiteSpeed cPanel user-end plugin", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA requires federal agencies to patch a crit..
10:10 am, May 27, 2026 Cybersecurity
Windows 11 KB5089573 update released with performance improvements
{ "priority": "LOW", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft releases KB5089573 update for Windows 11 with performance impro..
9:10 am, May 27, 2026 Cybersecurity
AI Testing
