List cybersec
Webinar: From noise to signal - What threat actors are targeting next
Threat actors often signal their intentions before launching attacks, from dark web chatter to access-broker listings and credential requests. Join our upcoming webinar with Flare Systems to learn how..
1:10 pm, April 9, 2026 Cybersecurity
Bitter-Linked Hack-for-Hire Campaign Targets Journalists Across MENA Region
{ "priority": "HIGH", "cve": "N/A", "target": "Journalists, Activists, Government Officials", "threat_actor": "Bitter, suspected ties to Indian government", "patch_ready": false, "insight"..
12:10 pm, April 9, 2026 Cybersecurity
Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025
{ "priority": "CRITICAL", "cve": "N/A", "target": "Adobe Reader", "threat_actor": "N/A", "patch_ready": false, "insight": "A zero-day vulnerability in Adobe Reader has been exploited via m..
12:10 pm, April 9, 2026 Cybersecurity
The Hidden Security Risks of Shadow AI in Enterprises
{"priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The use of unapproved AI tools by employees creates new security blind spots, known as shad..
12:10 pm, April 9, 2026 Cybersecurity
Eurail says December data breach impacts 300,000 individuals
{ "priority": "HIGH", "cve": "N/A", "target": "Eurail B.V.", "threat_actor": "N/A", "patch_ready": false, "insight": "Eurail B.V. suffered a data breach in December 2025, affecting over 30..
11:10 am, April 9, 2026 Cybersecurity
Hackers exploiting Acrobat Reader zero-day flaw since December
{ "priority": "CRITICAL", "cve": "N/A", "target": "Adobe Reader", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers have been exploiting a zero-day vulnerability in Adobe ..
10:10 am, April 9, 2026 Cybersecurity
Hackers steal $3.6 million from crypto ATM giant Bitcoin Depot
{ "priority": "HIGH", "cve": "N/A", "target": "Bitcoin Depot", "threat_actor": "N/A", "patch_ready": false, "insight": "Hackers stole $3.6 million from Bitcoin Depot's crypto wallets after..
8:10 am, April 9, 2026 Cybersecurity
Microsoft suspends dev accounts for high-profile open source projects
Microsoft has suspended developer accounts used to maintain multiple high-profile open-source projects without proper notification and no way to quickly reinstate them, effectively blocking them from ..
7:10 am, April 9, 2026 Cybersecurity
ISC Stormcast For Thursday, April 9th, 2026 https://isc.sans.edu/podcastdetail/9886, (Thu, Apr 9th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast for Thursday, April 9th, 2026, providing cybersecurity u..
2:10 am, April 9, 2026 Cybersecurity
Number Usage in Passwords: Take Two, (Thu, Apr 9th)
{"priority":"INFO","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"The article discusses how numbers, particularly years and seasons, are used in passwords, often due to..
1:10 am, April 9, 2026 Cybersecurity
Hackers use pixel-large SVG trick to hide credit card stealer
{ "priority": "HIGH", "cve": "N/A", "target": "Magento e-commerce platform", "threat_actor": "N/A", "patch_ready": false, "insight": "Hackers hide credit card-stealing code in a pixel-size..
11:10 pm, April 8, 2026 Cybersecurity
Google: New UNC6783 hackers steal corporate Zendesk support tickets
{ "priority": "HIGH", "cve": "N/A", "target": "Zendesk", "threat_actor": "UNC6783", "patch_ready": false, "insight": "UNC6783 hackers compromise BPO providers to steal corporate Zendesk su..
10:10 pm, April 8, 2026 Cybersecurity
New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy
{ "priority": "MEDIUM", "cve": "N/A", "target": "Cloud Deployments", "threat_actor": "Chaos", "patch_ready": false, "insight": "New Chaos malware variant targets misconfigured cloud deploy..
7:10 pm, April 8, 2026 Cybersecurity
CISA orders feds to patch exploited Ivanti EPMM flaw by Sunday
CISA has given U.S. government agencies four days to secure their systems against a critical-severity vulnerability in Ivanti Endpoint Manager Mobile (EPMM) that has been exploited in attacks since..
7:10 pm, April 8, 2026 Cybersecurity
New macOS stealer campaign uses Script Editor in ClickFix attack
{ "priority": "HIGH", "cve": "N/A", "target": "macOS", "threat_actor": "N/A", "patch_ready": false, "insight": "A new Atomic Stealer malware campaign targets macOS users via a Script Edito..
7:10 pm, April 8, 2026 Cybersecurity
Masjesu Botnet Emerges as DDoS-for-Hire Service Targeting Global IoT Devices
597597ancetype597597ancetypeancetype597ancetype597597ancetype597ancetype597597ancetypeancetypeancetype597ancetype597597ancetype597597ancetypeancetype597597597597597597597597597597597597597ancetype597a..
6:10 pm, April 8, 2026 Cybersecurity
TeamPCP Supply Chain Campaign: Update 007 - Cisco Source Code Stolen via Trivy-Linked Breach, Google GTIG Tracks TeamPCP as UNC6780, and CISA KEV Deadline Arrives with No Standalone Advisory, (Wed, Apr 8th)
{ "priority": "HIGH", "cve": "N/A", "target": "Cisco", "threat_actor": "TeamPCP (UNC6780)", "patch_ready": false, "insight": "Cisco source code stolen via Trivy-linked breach as part of Te..
6:10 pm, April 8, 2026 Cybersecurity
13-year-old bug in ActiveMQ lets hackers remotely execute commands
{ "priority": "CRITICAL", "cve": "N/A", "target": "Apache ActiveMQ Classic", "threat_actor": "N/A", "patch_ready": false, "insight": "A 13-year-old RCE vulnerability in Apache ActiveMQ Cla..
6:10 pm, April 8, 2026 Cybersecurity
APT28 Deploys PRISMEX Malware in Campaign Targeting Ukraine and NATO Allies
{"priority": "HIGH", "cve": "N/A", "target": "Ukraine and NATO Allies", "threat_actor": "APT28", "patch_ready": false, "insight": "APT28 deploys PRISMEX malware in spear-phishing campaign targeting Uk..
4:10 pm, April 8, 2026 Cybersecurity
More Honeypot Fingerprinting Scans, (Wed, Apr 8th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers can detect honeypots, indicating a need for advanced detection evasi..
3:10 pm, April 8, 2026 Cybersecurity
Is a $30,000 GPU Good at Password Cracking?
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A $30,000 AI GPU does not offer significant advantages over consumer GPUs for ..
2:10 pm, April 8, 2026 Cybersecurity
Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP)
{"priority":"INFO","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"The article discusses the challenges of Identity and Access Management (IAM) in modern enterprises, hi..
12:10 pm, April 8, 2026 Cybersecurity
Anthropic's Claude Mythos Finds Thousands of Zero-Day Flaws Across Major Systems
Artificial Intelligence (AI) company Anthropic announced a new cybersecurity initiative called Project Glasswing that will use a preview version of its new frontier model, Claude Mythos, to find ..
10:10 am, April 8, 2026 Cybersecurity
N. Korean Hackers Spread 1,700 Malicious Packages Across npm, PyPI, Go, Rust
{ "priority": "HIGH", "cve": "N/A", "target": "npm, PyPI, Go, Rust", "threat_actor": "Contagious Interview", "patch_ready": false, "insight": "North Korea-linked hackers spread 1,700 malic..
9:10 am, April 8, 2026 Cybersecurity
Microsoft rolls out fix for broken Windows Start Menu search
{ "priority": "MEDIUM", "cve": "N/A", "target": "Windows 11 23H2", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft released a server-side fix for a known issue causing th..
7:10 am, April 8, 2026 Cybersecurity
Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCs
{ "priority": "HIGH", "cve": "N/A", "target": "Internet-Exposed PLCs", "threat_actor": "Iran-Linked Hackers", "patch_ready": false, "insight": "Iran-affiliated cyber actors target internet..
6:10 am, April 8, 2026 Cybersecurity
ISC Stormcast For Wednesday, April 8th, 2026 https://isc.sans.edu/podcastdetail/9884, (Wed, Apr 8th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, April 8, 2026 Cybersecurity
Hackers exploit critical flaw in Ninja Forms WordPress plugin
A critical vulnerability in the Ninja Forms File Uploads premium add-on for WordPress allows uploading arbitrary files without authentication, which can lead to remote code execution. [...]
10:10 pm, April 7, 2026 Cybersecurity
FBI: Americans lost a record $21 billion to cybercrime last year
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Americans lost a record $21 billion to cybercrime in the last year, primarily ..
9:10 pm, April 7, 2026 Cybersecurity
Snowflake customers hit in data theft attacks after SaaS integrator breach
Over a dozen companies have suffered data theft attacks after a SaaS integration provider was breached and authentication tokens stolen. [...]
8:10 pm, April 7, 2026 Cybersecurity
A Little Bit Pivoting: What Web Shells are Attackers Looking for?, (Tue, Apr 7th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers use webshells to maintain persistence on compromised web servers, of..
7:10 pm, April 7, 2026 Cybersecurity
Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign
{ "priority": "HIGH", "cve": "N/A", "target": "MikroTik and TP-Link routers", "threat_actor": "APT28", "patch_ready": false, "insight": "Russia-linked APT28 exploits SOHO routers in global..
6:10 pm, April 7, 2026 Cybersecurity
Russia Hacked Routers to Steal Microsoft Office Tokens
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft Office", "threat_actor": "Russia's military intelligence units", "patch_ready": false, "insight": "Russia's military intelligence h..
6:10 pm, April 7, 2026 Cybersecurity
US warns of Iranian hackers targeting critical infrastructure
Iranian-linked hackers are targeting Internet-exposed Rockwell/Allen-Bradley programmable logic controllers (PLCs) on the networks of U.S. critical infrastructure organizations. [...]
6:10 pm, April 7, 2026 Cybersecurity
Max severity Flowise RCE vulnerability now exploited in attacks
{ "priority": "CRITICAL", "cve": "CVE-2025-59528", "target": "Flowise", "threat_actor": "N/A", "patch_ready": false, "insight": "Hackers are exploiting a maximum-severity RCE vulnerability..
5:10 pm, April 7, 2026 Cybersecurity
Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access
{"priority":"HIGH","cve":"CVE-2026-34040","target":"Docker Engine","threat_actor":"N/A","patch_ready":false,"insight":"Docker CVE-2026-34040 allows attackers to bypass authorization and gain host acce..
4:10 pm, April 7, 2026 Cybersecurity
Authorities disrupt router DNS hijacks used to steal Microsoft 365 logins
An international operation from law enforcement authorities in partnership with private companies has disrupted FrostArmada, an APT28 campaign hijacking local traffic from MikroTik and TP-Link routers..
4:10 pm, April 7, 2026 Cybersecurity
Over 1,000 Exposed ComfyUI Instances Targeted in Cryptomining Botnet Campaign
An active campaign has been observed targeting internet-exposed instances running ComfyUI, a popular stable diffusion platform, to enlist them into a cryptocurrency mining and proxy botnet. "A purpos..
2:10 pm, April 7, 2026 Cybersecurity
Why Your Automated Pentesting Tool Just Hit a Wall
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Automated pentesting tools may plateau and leave major attack surfaces unteste..
2:10 pm, April 7, 2026 Cybersecurity
The Hidden Cost of Recurring Credential Incidents
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses the hidden costs of recurring credential incidents, high..
1:10 pm, April 7, 2026 Cybersecurity
[Webinar] How to Close Identity Gaps in 2026 Before AI Exploits Enterprise Risk
{"priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The webinar discusses identity gaps in enterprises and how AI may exploit these risks in 20..
1:10 pm, April 7, 2026 Cybersecurity
New GPUBreach Attack Enables Full CPU Privilege Escalation via GDDR6 Bit-Flips
{ "priority": "HIGH", "cve": "N/A", "target": "GPUs", "threat_actor": "N/A", "patch_ready": false, "insight": "New GPUBreach attack enables full CPU privilege escalation via GDDR6 bit-flip..
10:10 am, April 7, 2026 Cybersecurity
China-Linked Storm-1175 Exploits Zero-Days to Rapidly Deploy Medusa Ransomware
{ "priority": "CRITICAL", "cve": "N/A", "target": "Internet-facing systems", "threat_actor": "Storm-1175", "patch_ready": false, "insight": "China-linked Storm-1175 exploits zero-days to r..
8:10 am, April 7, 2026 Cybersecurity
Flowise AI Agent Builder Under Active CVSS 10.0 RCE Exploitation; 12,000+ Instances Exposed
{ "priority": "CRITICAL", "cve": "CVE-2025-59528", "target": "Flowise AI Agent Builder", "threat_actor": "N/A", "patch_ready": false, "insight": "CVE-2025-59528 CVSS 10.0 RCE vulnerability..
6:10 am, April 7, 2026 Cybersecurity
German authorities identify REvil and GandCrab ransomware bosses
{ "priority": "INFO", "cve": "N/A", "target": "REvil, GandCrab ransomware", "threat_actor": "Russian nationals", "patch_ready": false, "insight": "German authorities identified leaders of ..
4:10 am, April 7, 2026 Cybersecurity
ISC Stormcast For Tuesday, April 7th, 2026 https://isc.sans.edu/podcastdetail/9882, (Tue, Apr 7th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast for April 7th, 2026, discussing various cybersecurity to..
2:10 am, April 7, 2026 Cybersecurity
German authorities identify REvil and GangCrab ransomware bosses
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "REvil and GandCrab", "patch_ready": false, "insight": "German authorities identified leaders of REvil and GandCrab ran..
12:10 am, April 7, 2026 Cybersecurity
New GPUBreach attack enables system takeover via GPU rowhammer
A new attack, dubbed GPUBreach, can induce Rowhammer bit-flips on GPU GDDR6 memories to escalate privileges and lead to a full system compromise. [...]
10:10 pm, April 6, 2026 Cybersecurity
Iran-Linked Password-Spraying Campaign Targets 300+ Israeli Microsoft 365 Organizations
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft 365", "threat_actor": "Iran-nexus threat actor", "patch_ready": false, "insight": "Iran-linked threat actor targets 300+ Israeli Mi..
8:10 pm, April 6, 2026 Cybersecurity
Microsoft fixes Classic Outlook bug causing email delivery issues
{ "priority": "LOW", "cve": "N/A", "target": "Classic Outlook", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft resolved a bug in Classic Outlook that was causing email d..
8:10 pm, April 6, 2026 Cybersecurity
AI Testing
