List cybersec
FBI warns of in-person data theft attacks from extortion gang
{"priority":"LOW","cve":"N/A","target":"U.S.-based law firms","threat_actor":"Silent Ransom Group","patch_ready":false,"insight":"FBI warns of in-person data theft attacks from Silent Ransom Group tar..
12:10 pm, May 27, 2026 Cybersecurity
CISA gives feds 4 days to patch actively exploited cPanel plugin flaw
{ "priority": "CRITICAL", "cve": "N/A", "target": "LiteSpeed cPanel user-end plugin", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA requires federal agencies to patch a crit..
10:10 am, May 27, 2026 Cybersecurity
Windows 11 KB5089573 update released with performance improvements
{ "priority": "LOW", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft releases KB5089573 update for Windows 11 with performance impro..
9:10 am, May 27, 2026 Cybersecurity
Dutch police arrests suspect linked to Ajax football club hack
The Dutch National Police arrested a 35-year-old man suspected of hacking the professional football club Ajax Amsterdam (AFC Ajax) earlier this year. [...]
9:10 am, May 27, 2026 Cybersecurity
AI Chatbot Recommendations Redirect Users to Cryptojacking Malware Sites
Microsoft has warned of an active cryptojacking campaign that makes use of artificial intelligence (AI) chatbot interactions as a mechanism for surfacing malicious download sites. "This emerging deli..
8:10 am, May 27, 2026 Cybersecurity
ISC Stormcast For Wednesday, May 27th, 2026 https://isc.sans.edu/podcastdetail/9946, (Wed, May 27th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast for Wednesday, May 27th, 2026, providing cybersecurity n..
2:10 am, May 27, 2026 Cybersecurity
Charter confirms data breach after ShinyHunters extortion threat
{ "priority": "HIGH", "cve": "N/A", "target": "Charter Communications", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "Charter Communications confirmed a data breach aft..
8:10 pm, May 26, 2026 Cybersecurity
KnowledgeDeliver flaw exploited as a zero-day to install web shells
Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell. [...]
8:10 pm, May 26, 2026 Cybersecurity
MuddyWater Uses DLL Side-Loading in Espionage Campaign Targeting 9 Countries
The Iranian hacking group known as MuddyWater has been linked to a new campaign affecting at least nine organizations across nine countries on four continents in the first quarter of 2026. The activi..
5:10 pm, May 26, 2026 Cybersecurity
CERT-In Recommends 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks
{ "priority": "CRITICAL", "cve": "N/A", "target": "Internet-facing systems", "threat_actor": "N/A", "patch_ready": true, "insight": "CERT-In requires 12-hour patching for critical internet..
2:10 pm, May 26, 2026 Cybersecurity
[THN Webinar] New AI DDoS Attacks Are Smarter. Learn How to Fight Back
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Hackers are using AI to enhance DDoS attacks, making them faster and harder to..
2:10 pm, May 26, 2026 Cybersecurity
How Varonis Atlas integrates Claude Compliance API for AI governance
{ "priority": "INFO", "cve": "N/A", "target": "Varonis Atlas", "threat_actor": "N/A", "patch_ready": false, "insight": "Varonis Atlas integrates Claude Compliance API for AI governance, en..
2:10 pm, May 26, 2026 Cybersecurity
Webinar: Too many tools are slowing network incident response
IT teams often need to jump between monitoring dashboards, infrastructure tools, ticketing systems, and communication platforms during network incidents. This webinar explores how automation and AI-as..
1:10 pm, May 26, 2026 Cybersecurity
Microsoft Defender can now automatically isolate hacked endpoints
{ "priority": "INFO", "cve": "N/A", "target": "Microsoft Defender", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft Defender for Endpoint now has an automatic isolation ..
1:10 pm, May 26, 2026 Cybersecurity
Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions
{"priority":"CRITICAL","cve":"CVE-2026-45659","target":"Microsoft SharePoint","threat_actor":"N/A","patch_ready":true,"insight":"Microsoft patches critical SharePoint RCE flaw CVE-2026-45659 across se..
12:10 pm, May 26, 2026 Cybersecurity
New AI DDoS Attacks Are Smarter. Learn How to Fight Back in This Webinar
Every single day, hackers are finding new ways to crash websites and steal data. But right now, something has changed. Hackers are no longer working alone. They are now using powerful Artificial Inte..
12:10 pm, May 26, 2026 Cybersecurity
MFA Prompt Bombing: Why Your Second Factor Isn't Saving You
{ "priority": "MEDIUM", "cve": "N/A", "target": "MFA", "threat_actor": "N/A", "patch_ready": false, "insight": "MFA prompt bombing attacks trick users into providing second factors, bypass..
11:10 am, May 26, 2026 Cybersecurity
CERT-In Mandates 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks
{ "priority": "CRITICAL", "cve": "N/A", "target": "Internet-facing systems", "threat_actor": "Threat actors using AI tools", "patch_ready": true, "insight": "CERT-In requires 12-hour patch..
10:10 am, May 26, 2026 Cybersecurity
Iranian Hackers Deploy MiniFast and MiniJunk V2 via Phishing and SEO Poisoning
{ "priority": "HIGH", "cve": "N/A", "target": "N/A", "threat_actor": "Nimbus Manticore", "patch_ready": false, "insight": "Iranian state-sponsored threat actor Nimbus Manticore uses phishi..
9:10 am, May 26, 2026 Cybersecurity
CISA orders feds to patch actively exploited Drupal vulnerability
{ "priority": "HIGH", "cve": "N/A", "target": "Drupal", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA orders federal agencies to patch an actively exploited SQL injection vu..
9:10 am, May 26, 2026 Cybersecurity
Microsoft: Domain Controller lookup may fail on Windows Server 2016
{ "priority": "MEDIUM", "cve": "N/A", "target": "Windows Server 2016", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft confirms a known issue in Windows Server 2016 caus..
8:10 am, May 26, 2026 Cybersecurity
7-Eleven data breach exposes personal information of 185,000 people
{ "priority": "HIGH", "cve": "N/A", "target": "7-Eleven", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "The ShinyHunters extortion gang stole personal information of ov..
7:10 am, May 26, 2026 Cybersecurity
KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike
{"priority":"HIGH","cve":"CVE-2026-5426","target":"KnowledgeDeliver LMS","threat_actor":"N/A","patch_ready":true,"insight":"A high-severity security flaw in KnowledgeDeliver LMS was exploited as a zer..
6:10 am, May 26, 2026 Cybersecurity
ISC Stormcast For Tuesday, May 26th, 2026 https://isc.sans.edu/podcastdetail/9944, (Tue, May 26th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast for Tuesday, May 26th, 2026, providing security news and..
2:10 am, May 26, 2026 Cybersecurity
Possible ACR Stealer From Page Impersonating Claude, (Tue, May 26th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Possible ACR Stealer From Page Impersonating Claude" }
12:10 am, May 26, 2026 Cybersecurity
Anthropic’s restricted Claude Mythos model may be coming to Claude Code
Anthropic appears to be preparing for the public rollout of the Mythos model, which was announced in April as a restricted model that poses major security risks to private and public software. [...]
5:10 pm, May 25, 2026 Cybersecurity
⚡ Weekly Recap: Linux Flaws, Defender 0-Days, Router Botnets, and Supply Chain Chaos
{ "priority": "MEDIUM", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The weekly recap discusses various security issues including Linux flaws, De..
4:10 pm, May 25, 2026 Cybersecurity
Microsoft Access VBA, (Mon, May 25th)
{ "priority": "INFO", "cve": "N/A", "target": "Microsoft Access", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft Access files can contain VBA code." }
3:10 pm, May 25, 2026 Cybersecurity
Netherlands Seizes 800 Servers, Arrests 2 for Aiding Cyberattacks
{ "priority": "HIGH", "cve": "N/A", "target": "Stark Industries Solutions", "threat_actor": "Russia's intelligence agencies", "patch_ready": false, "insight": "Dutch authorities arrested t..
2:10 pm, May 25, 2026 Cybersecurity
TeamPCP Supply Chain Campaign: Activity Through 2026-05-24, (Mon, May 25th)
{ "priority": "HIGH", "cve": "N/A", "target": "GitHub, Microsoft", "threat_actor": "TeamPCP", "patch_ready": false, "insight": "TeamPCP operates across multiple package ecosystems, trojani..
2:10 pm, May 25, 2026 Cybersecurity
FBI warns of Kali365 phishing service targeting Microsoft 365 accounts
The FBI is warning about the Kali365 phishing-as-a-service platform (PhaaS) that is used to hijack Microsoft 365 accounts by abusing OAuth device code authentication to steal session tokens and bypass..
1:10 pm, May 25, 2026 Cybersecurity
The Alert Firehose Finally Meets Its Match
{"priority":"INFO","cve":"N/A","target":"Network Detection and Response (NDR)","threat_actor":"N/A","patch_ready":false,"insight":"The integration of agentic AI capabilities in Network Detection and R..
12:10 pm, May 25, 2026 Cybersecurity
Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks
{ "priority": "CRITICAL", "cve": "CVE-2026-26980", "target": "Ghost CMS", "threat_actor": "N/A", "patch_ready": false, "insight": "CVE-2026-26980 exploited for ClickFix attacks via malicio..
12:10 pm, May 25, 2026 Cybersecurity
Lazarus Deploys RemotePE Memory-Only RAT Against Financial and Crypto Firms
Cybersecurity researchers have shed light on a cross-platform malware called RemotePE that has been put to use by the North Korea-linked Lazarus Group in attacks targeting financial and cryptocurrency..
11:10 am, May 25, 2026 Cybersecurity
TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO
{ "priority": "HIGH", "cve": "N/A", "target": "npm, PyPI, CratesIO", "threat_actor": "TrapDoor", "patch_ready": false, "insight": "A coordinated cross-ecosystem software supply chain attac..
7:10 am, May 25, 2026 Cybersecurity
Wireshark 4.6.6 Released, (Sun, May 24th)
{ "priority": "MEDIUM", "cve": "N/A", "target": "Wireshark", "threat_actor": "N/A", "patch_ready": true, "insight": "Wireshark 4.6.6 fixes 1 vulnerability and 11 bugs." }
5:10 pm, May 24, 2026 Cybersecurity
Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign
{ "priority": "CRITICAL", "cve": "CVE-2026-26980", "target": "Ghost CMS", "threat_actor": "N/A", "patch_ready": true, "insight": "Critical SQL injection flaw in Ghost CMS exploited in larg..
3:10 pm, May 24, 2026 Cybersecurity
Laravel Lang packages hijacked to deploy credential-stealing malware
{ "priority": "HIGH", "cve": "N/A", "target": "Laravel Lang localization packages", "threat_actor": "N/A", "patch_ready": false, "insight": "A supply chain attack on Laravel Lang packages ..
9:10 pm, May 23, 2026 Cybersecurity
Packagist Supply Chain Attack Infects 8 Packages Using GitHub-Hosted Linux Malware
{ "priority": "HIGH", "cve": "N/A", "target": "Packagist packages", "threat_actor": "N/A", "patch_ready": false, "insight": "A coordinated supply chain attack campaign infected 8 Packagist..
5:10 pm, May 23, 2026 Cybersecurity
npm Adds 2FA-Gated Publishing and Package Install Controls Against Supply Chain Attacks
{ "priority": "MEDIUM", "cve": "N/A", "target": "npm", "threat_actor": "N/A", "patch_ready": false, "insight": "npm introduces staged publishing with 2FA-gated approval to prevent supply c..
5:10 pm, May 23, 2026 Cybersecurity
Italy disrupts CINEMAGOAL piracy app that stole streaming auth codes
Italian authorities have dismantled a piracy ecosystem centered around the CINEMAGOAL app that provided access to various streaming platforms, including Netflix, Disney+, and Spotify. [...]
3:10 pm, May 23, 2026 Cybersecurity
Claude Mythos AI Finds 10,000 High-Severity Flaws in Widely Used Software
{"priority": "HIGH", "cve": "N/A", "target": "Widely Used Software", "threat_actor": "N/A", "patch_ready": false, "insight": "Claude Mythos AI's Project Glasswing uncovers 10,000 high-severity flaws i..
1:10 pm, May 23, 2026 Cybersecurity
Laravel-Lang PHP Packages Compromised to Deliver Cross-Platform Credential Stealer
Cybersecurity researchers have flagged a fresh software supply chain attack campaign that has targeted multiple PHP packages belonging to Laravel-Lang to deliver a comprehensive credential-stealing f..
11:10 am, May 23, 2026 Cybersecurity
Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV
{"priority": "CRITICAL", "cve": "CVE-2026-9082", "target": "Drupal Core", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA adds actively exploited Drupal Core SQL Injection bug to KEV cata..
8:10 am, May 23, 2026 Cybersecurity
LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root
{"priority": "CRITICAL", "cve": "CVE-2026-48172", "target": "LiteSpeed User-End cPanel Plugin", "threat_actor": "N/A", "patch_ready": false, "insight": "LiteSpeed cPanel Plugin CVE-2026-48172 exploite..
8:10 am, May 23, 2026 Cybersecurity
An Example of Stack String in High Level Language, (Sat, May 23rd)
{"priority":"INFO","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"The author is attending a SANS training on Red Teaming Tools, focusing on developing Windows implants,..
6:10 am, May 23, 2026 Cybersecurity
First VPN Dismantled in Global Takedown Over Use by 25 Ransomware Groups
{ "priority": "HIGH", "cve": "N/A", "target": "First VPN Service", "threat_actor": "N/A", "patch_ready": false, "insight": "Authorities dismantled a VPN service used by 25 ransomware group..
7:10 pm, May 22, 2026 Cybersecurity
Netherlands seizes 800 servers of hosting firm enabling cyberattacks
{"priority":"HIGH","cve":"N/A","target":"Hosting Firm","threat_actor":"N/A","patch_ready":false,"insight":"Dutch authorities seized 800 servers from a hosting firm linked to cyberattacks and disinform..
6:10 pm, May 22, 2026 Cybersecurity
Ghostwriter Targets Ukraine Government Entities with Prometheus Phishing Malware
{ "priority": "HIGH", "cve": "N/A", "target": "Ukraine Government Entities", "threat_actor": "Ghostwriter (UAC-0057, UNC1151)", "patch_ready": false, "insight": "Ghostwriter threat actor u..
5:10 pm, May 22, 2026 Cybersecurity
Lawmakers Demand Answers as CISA Tries to Contain Data Leak
{"priority":"HIGH","cve":"N/A","target":"CISA","threat_actor":"N/A","patch_ready":false,"insight":"CISA faces scrutiny from lawmakers over a data leak involving leaked AWS GovCloud keys and other agen..
5:10 pm, May 22, 2026 Cybersecurity
AI Testing
