List cybersec
ServiceNow Flaw Exploited to Gain Unauthorized Access to Customer Instances
{ "priority": "HIGH", "cve": "N/A", "target": "ServiceNow", "threat_actor": "N/A", "patch_ready": true, "insight": "ServiceNow warns about a security incident where unknown threat actors e..
8:10 am, June 10, 2026 Cybersecurity
Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows
The anonymous security researcher going by the name Chaotic Eclipse (aka Nightmare-Eclipse) has released a proof-of-concept (PoC) exploit for yet another Microsoft Defender zero-day named RoguePlanet...
7:10 am, June 10, 2026 Cybersecurity
Ivanti: Max severity Sentry flaw allows code execution as root
Ivanti has patched two critical vulnerabilities in its Sentry secure mobile gateway solution, including a maximum-severity flaw that enables remote attackers to execute code with root privileges. [.....
7:10 am, June 10, 2026 Cybersecurity
Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS
{ "priority": "CRITICAL", "cve": "N/A", "target": "protobuf.js", "threat_actor": "N/A", "patch_ready": false, "insight": "Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to R..
6:10 am, June 10, 2026 Cybersecurity
ISC Stormcast For Wednesday, June 10th, 2026 https://isc.sans.edu/podcastdetail/9966, (Wed, Jun 10th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, June 10, 2026 Cybersecurity
Anthropic rolls out Claude Fable 5, but it's available for a limited time
{ "priority": "INFO", "cve": "N/A", "target": "Anthropic Claude Fable 5", "threat_actor": "N/A", "patch_ready": false, "insight": "Anthropic has released a limited-time model called Claude..
2:10 am, June 10, 2026 Cybersecurity
Microsoft Defender 'RoguePlanet' zero-day grants SYSTEM privileges
{ "priority": "CRITICAL", "cve": "N/A", "target": "Microsoft Defender", "threat_actor": "N/A", "patch_ready": false, "insight": "A zero-day vulnerability in Microsoft Defender, dubbed 'Rog..
12:10 am, June 10, 2026 Cybersecurity
A Record-Breaking Patch Tuesday for June 2026
{ "priority": "CRITICAL", "cve": "N/A", "target": "Microsoft Windows", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft releases a record-breaking Patch Tuesday update for..
11:10 pm, June 9, 2026 Cybersecurity
OpenClaw AI agent found falling for phishing attacks, spills user data
{ "priority": "MEDIUM", "cve": "N/A", "target": "OpenClaw AI agent", "threat_actor": "N/A", "patch_ready": false, "insight": "OpenClaw AI agent vulnerable to phishing attacks, potentially ..
10:10 pm, June 9, 2026 Cybersecurity
ServiceNow discloses security incident exposing customer data
{"priority":"HIGH","cve":"N/A","target":"ServiceNow","threat_actor":"N/A","patch_ready":false,"insight":"ServiceNow discloses security incident exposing customer data through an unauthenticated access..
10:10 pm, June 9, 2026 Cybersecurity
SAP fixes critical flaws in NetWeaver and Commerce Cloud
{ "priority": "CRITICAL", "cve": "N/A", "target": "SAP NetWeaver and SAP Commerce Cloud", "threat_actor": "N/A", "patch_ready": true, "insight": "SAP released fixes for 15 vulnerabilities,..
8:10 pm, June 9, 2026 Cybersecurity
Microsoft releases Windows 10 KB5094127 extended security update
{ "priority": "INFO", "cve": "N/A", "target": "Windows 10", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft releases Windows 10 KB5094127 extended security update fixing ..
7:10 pm, June 9, 2026 Cybersecurity
Veeam Backup & Replication RCE Flaw Lets Domain Users Run Remote Code
{"priority":"CRITICAL","cve":"CVE-2026-44963","target":"Veeam Backup & Replication","threat_actor":"N/A","patch_ready":true,"insight":"Veeam released security patches for a critical RCE flaw in its Ba..
6:10 pm, June 9, 2026 Cybersecurity
Meta to Use Off-Site Business Data for Feed and AI Personalization
{"priority":"INFO","cve":"N/A","target":"Meta","threat_actor":"N/A","patch_ready":false,"insight":"Meta expands use of off-site business data for feed personalization and AI chatbot responses beyond t..
6:10 pm, June 9, 2026 Cybersecurity
Windows 11 KB5094126 & KB5093998 cumulative updates released
{ "priority": "INFO", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft releases cumulative updates KB5094126 and KB5093998 for Window..
6:10 pm, June 9, 2026 Cybersecurity
Microsoft June 2026 Patch Tuesday, (Tue, Jun 9th)
{ "priority": "CRITICAL", "cve": "N/A", "target": "Microsoft", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft released patches for 204 vulnerabilities, including 38 crit..
6:10 pm, June 9, 2026 Cybersecurity
Microsoft June 2026 Patch Tuesday fixes 3 zero-day, 200 flaws
{"priority": "CRITICAL", "cve": "N/A", "target": "Microsoft", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft June 2026 Patch Tuesday fixes 3 zero-day, 200 flaws"}
6:10 pm, June 9, 2026 Cybersecurity
XBOW tests Anthropic's Mythos Preview for offensive security
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "XBOW tests Anthropic's Mythos Preview for offensive security, finding it effec..
5:10 pm, June 9, 2026 Cybersecurity
Microsoft Restores Some GitHub Repos, Keeps Others Offline as Miasma Probe Continues
Microsoft on Monday confirmed that it temporarily removed some GitHub repositories in response to a recent security incident that led to 73 of its open-source projects being compromised to inject an i..
5:10 pm, June 9, 2026 Cybersecurity
GitHub disables Microsoft repos pushing password-stealing malware
{ "priority": "HIGH", "cve": "N/A", "target": "GitHub", "threat_actor": "N/A", "patch_ready": false, "insight": "GitHub disabled Microsoft repositories pushing password-stealing malware, d..
4:10 pm, June 9, 2026 Cybersecurity
New Veeam vulnerability exposes backup servers to RCE attacks
{ "priority": "CRITICAL", "cve": "N/A", "target": "Veeam Backup & Replication", "threat_actor": "N/A", "patch_ready": true, "insight": "A critical Veeam Backup & Replication vulnerability ..
3:10 pm, June 9, 2026 Cybersecurity
Chrome V8 Zero-Day CVE-2026-11645 Exploited in the Wild - Patch Now
{ "priority": "CRITICAL", "cve": "CVE-2026-11645", "target": "Google Chrome", "threat_actor": "N/A", "patch_ready": true, "insight": "Google Chrome V8 Zero-Day CVE-2026-11645 is being expl..
1:10 pm, June 9, 2026 Cybersecurity
Researchers Build Self-Replicating AI Worm That Operates Entirely on Local, Open-Weight Models
{ "priority": "CRITICAL", "cve": "N/A", "target": "Open-weight large language models", "threat_actor": "University of Toronto researchers", "patch_ready": false, "insight": "Researchers bu..
1:10 pm, June 9, 2026 Cybersecurity
WinRAR Flaw Exploited by Russia-Aligned Groups to Deploy Stealers in Ukraine
{ "priority": "HIGH", "cve": "CVE-2025-8088", "target": "WinRAR", "threat_actor": "Earth Dahu (aka Gamaredon) and SHADOW-EARTH-066 (aka UAC-0226)", "patch_ready": false, "insight": "Russia..
1:10 pm, June 9, 2026 Cybersecurity
The Hidden Security Risk in Modern Networks: The Work Between Tools
Organizations have more visibility than ever. Growing tech stacks provide greater coverage, and network security teams are increasingly adopting AI and automation to help with routine tasks and reduce..
12:10 pm, June 9, 2026 Cybersecurity
Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer
{ "priority": "HIGH", "cve": "N/A", "target": "Python Package Index (PyPI)", "threat_actor": "Miasma", "patch_ready": false, "insight": "19 PyPI packages poisoned with malicious *-setup.pt..
11:10 am, June 9, 2026 Cybersecurity
New FROST Attack Lets Websites Track What Sites and Apps You Open via SSD Timing
{"priority":"MEDIUM","cve":"N/A","target":"Websites","threat_actor":"N/A","patch_ready":false,"insight":"A JavaScript-based FROST attack allows malicious websites to track user activity via SSD timing..
11:10 am, June 9, 2026 Cybersecurity
French govt messaging service breached in account hijacking attack
{ "priority": "HIGH", "cve": "N/A", "target": "Tchap (French government's encrypted messaging platform)", "threat_actor": "N/A", "patch_ready": false, "insight": "Hackers breached Tchap us..
11:10 am, June 9, 2026 Cybersecurity
CISA gives feds 3 days to patch Check Point VPN bug exploited as zero-day
{"priority": "CRITICAL", "cve": "N/A", "target": "Check Point VPN", "threat_actor": "Qilin", "patch_ready": true, "insight": "CISA orders US agencies to patch Check Point VPN bug exploited as zero-day..
9:10 am, June 9, 2026 Cybersecurity
LiteLLM Flaw CVE-2026-42271 Exploited in the Wild, Chains to Unauthenticated RCE
{ "priority": "CRITICAL", "cve": "CVE-2026-42271", "target": "BerriAI LiteLLM", "threat_actor": "N/A", "patch_ready": false, "insight": "CVE-2026-42271 command injection vulnerability in B..
7:10 am, June 9, 2026 Cybersecurity
Google patches new Chrome zero-day flaw exploited in the wild
{ "priority": "CRITICAL", "cve": "N/A", "target": "Google Chrome", "threat_actor": "N/A", "patch_ready": true, "insight": "Google patched a Chrome zero-day vulnerability exploited in the w..
7:10 am, June 9, 2026 Cybersecurity
ISC Stormcast For Tuesday, June 9th, 2026 https://isc.sans.edu/podcastdetail/9964, (Tue, Jun 9th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast for June 9th, 2026, providing cybersecurity news and upd..
2:10 am, June 9, 2026 Cybersecurity
NFCShare Android malware spreads via fake banking app updates on GitHub
{ "priority": "HIGH", "cve": "N/A", "target": "Android", "threat_actor": "N/A", "patch_ready": false, "insight": "New variants of the NFCShare Android malware are being distributed as fake..
11:10 pm, June 8, 2026 Cybersecurity
SoFi confirms third-party data breach at Hong Kong subsidiary
{ "priority": "MEDIUM", "cve": "N/A", "target": "SoFi Hong Kong", "threat_actor": "N/A", "patch_ready": false, "insight": "SoFi Hong Kong suffered a data breach due to hackers gaining acce..
10:10 pm, June 8, 2026 Cybersecurity
One-Character Linux Kernel Flaw Enables Local Root Access, Exploits Now Public
{ "priority": "CRITICAL", "cve": "CVE-2026-23111", "target": "Linux Kernel", "threat_actor": "N/A", "patch_ready": true, "insight": "A one-character flaw in the Linux kernel's nf_tables pa..
9:10 pm, June 8, 2026 Cybersecurity
New Shai-Hulud attack trojanizes 19 science-focused PyPI packages
Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud supply-chain attack that delivered malware designed to steal developer secrets..
9:10 pm, June 8, 2026 Cybersecurity
New Apple feature automatically changes your compromised passwords
{ "priority": "INFO", "cve": "N/A", "target": "Apple", "threat_actor": "N/A", "patch_ready": false, "insight": "Apple announced a new feature that automatically changes compromised passwor..
9:10 pm, June 8, 2026 Cybersecurity
WhatsApp says it disrupted new NSO spyware phishing attacks
WhatsApp has detected and stopped spear-phishing campaigns allegedly conducted by the NSO Group after investigating user reports of social engineering attacks. [...]
7:10 pm, June 8, 2026 Cybersecurity
TeamPCP Supply Chain Campaign: Activity Through 2026-06-07, (Mon, Jun 8th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "TeamPCP", "patch_ready": false, "insight": "The Internet Storm Center is tracking the TeamPCP supply chain campaign, w..
6:10 pm, June 8, 2026 Cybersecurity
Meta Blocks NSO Group's New WhatsApp Phishing Attack, Files Contempt Order
{ "priority": "HIGH", "cve": "N/A", "target": "WhatsApp", "threat_actor": "NSO Group", "patch_ready": false, "insight": "Meta blocked NSO Group's WhatsApp phishing attack and filed a conte..
6:10 pm, June 8, 2026 Cybersecurity
Gogs patches critical zero-day enabling remote code execution
{ "priority": "CRITICAL", "cve": "N/A", "target": "Gogs", "threat_actor": "N/A", "patch_ready": true, "insight": "Gogs patches critical zero-day enabling remote code execution" }
5:10 pm, June 8, 2026 Cybersecurity
Critical Check Point VPN Flaw Exploited to Bypass Passwords in IKEv1 Setups
{ "priority": "CRITICAL", "cve": "CVE-2026-50751", "target": "Check Point VPN", "threat_actor": "N/A", "patch_ready": true, "insight": "Critical Check Point VPN flaw exploited to bypass pa..
4:10 pm, June 8, 2026 Cybersecurity
Critical UniFi OS bug lets hackers gain root without authentication
{ "priority": "CRITICAL", "cve": "N/A", "target": "UniFi OS", "threat_actor": "N/A", "patch_ready": true, "insight": "Attackers can chain three fixed vulnerabilities in Ubiquiti UniFi OS s..
4:10 pm, June 8, 2026 Cybersecurity
⚡ Weekly Recap: Instagram Account Hacks, Android Zero-Day, GitHub Worm and More
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The recap highlights various security incidents, including Instagram account h..
3:10 pm, June 8, 2026 Cybersecurity
Reducing security operations complexity with Wazuh Cloud
Security teams are increasingly overwhelmed by alert fatigue, infrastructure maintenance, and complex hybrid environments. This article explores how Wazuh Cloud helps simplify SIEM/XDR operations thro..
2:10 pm, June 8, 2026 Cybersecurity
The Hardest Fork
Mythos is real. I know a big chunk of the industry thinks it's a marketing stunt, and I get why. I get it. But I've seen the findings, and they're bad. These aren't "whoops, this line right here is wr..
1:10 pm, June 8, 2026 Cybersecurity
AI Phishing Is Crushing SOCs with Alert Volume: How to Reduce Tier 1 Overload
{"priority":"HIGH","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"AI-generated phishing attacks are overwhelming SOCs with high volumes of alerts, making it difficult f..
1:10 pm, June 8, 2026 Cybersecurity
Check Point links VPN zero-day attacks to Qilin ransomware gang
{ "priority": "CRITICAL", "cve": "N/A", "target": "Check Point Remote Access VPN and Mobile Access", "threat_actor": "Qilin ransomware gang", "patch_ready": true, "insight": "Check Point p..
1:10 pm, June 8, 2026 Cybersecurity
Oxford University discloses data breach after careers platform hack
The University of Oxford disclosed a new data breach last week after being informed by its third-party provider, Group GTI, that its CareerConnect career services platform had been compromised. [...]
12:10 pm, June 8, 2026 Cybersecurity
VerdantBamboo Deploys BSD Variant of BRICKSTORM on Linux Appliances
{ "priority": "HIGH", "cve": "N/A", "target": "Linux systems", "threat_actor": "VerdantBamboo", "patch_ready": false, "insight": "VerdantBamboo deploys BSD variant of BRICKSTORM on Linux A..
11:10 am, June 8, 2026 Cybersecurity
