List cybersec
New AI Usage Report: Enterprise AI Risk Is Heavily Concentrated Among a Small Group of AI "Power users"
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A new report by LayerX Security reveals that enterprise AI risk is concentrate..
1:10 pm, May 28, 2026 Cybersecurity
Webinar: Why network incidents take too long to resolve
Many organizations can detect network issues quickly, but investigations and coordination often slow incident resolution. This webinar explores how automation and AI-assisted workflows can help IT tea..
1:10 pm, May 28, 2026 Cybersecurity
Romanian gets 5 years in prison for hacking Oregon govt network
{"priority":"CRITICAL","cve":"N/A","target":"Oregon state government computer network","threat_actor":"Romanian national","patch_ready":false,"insight":"A Romanian national was sentenced to 56 months ..
1:10 pm, May 28, 2026 Cybersecurity
Carnival Cruise confirms data breach affecting nearly 6 million people
{ "priority": "HIGH", "cve": "N/A", "target": "Carnival Cruise", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "Carnival Cruise confirms data breach affecting nearly 6 m..
11:10 am, May 28, 2026 Cybersecurity
Sextortionist sentenced to 33 years for targeting 145 children
{ "priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A Canadian man was sentenced to 33 years in prison for a sextortion scheme targ..
10:10 am, May 28, 2026 Cybersecurity
JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware
{ "priority": "HIGH", "cve": "N/A", "target": "Cryptocurrency Firms", "threat_actor": "JINX-0164", "patch_ready": false, "insight": "JINX-0164 uses fake recruiter lures and custom macOS ma..
9:10 am, May 28, 2026 Cybersecurity
ISC Stormcast For Thursday, May 28th, 2026 https://isc.sans.edu/podcastdetail/9948, (Thu, May 28th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast details for Thursday, May 28th, 2026." }
2:10 am, May 28, 2026 Cybersecurity
Reconstructing an Akira Ransomware Kill Chain from Perimeter and Endpoint Logs, (Wed, May 27th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "Akira", "patch_ready": false, "insight": "Analyzing perimeter and endpoint logs can provide insights into Akira ransom..
10:10 pm, May 27, 2026 Cybersecurity
GPU mining malware spreads via SEO poisoning, AI chatbots
{ "priority": "HIGH", "cve": "N/A", "target": "High-performance computers", "threat_actor": "N/A", "patch_ready": false, "insight": "GPU mining malware spreads via SEO poisoning and AI cha..
10:10 pm, May 27, 2026 Cybersecurity
Malicious npm Package Stole Files From Claude AI User Directory via GitHub
{ "priority": "HIGH", "cve": "N/A", "target": "Claude AI", "threat_actor": "N/A", "patch_ready": false, "insight": "A malicious npm package named 'mouse5212-super-formatter' was discovered..
5:10 pm, May 27, 2026 Cybersecurity
Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users
{ "priority": "HIGH", "cve": "N/A", "target": "Windows and Android users", "threat_actor": "N/A", "patch_ready": false, "insight": "Two malware campaigns, Grandoreiro and BTMOB RAT, target..
5:10 pm, May 27, 2026 Cybersecurity
3 SOC Steps that Shut Down Incident Risks Early
Most organizations still picture cyber defense as a fortress problem: build stronger walls, add more guards, buy another detection engine. But modern incidents rarely crash through the front gate. The..
3:10 pm, May 27, 2026 Cybersecurity
Glassworm botnet disrupted after resilient C2 infrastructure takedown
{ "priority": "HIGH", "cve": "N/A", "target": "Glassworm botnet", "threat_actor": "N/A", "patch_ready": false, "insight": "Researchers disrupted the Glassworm botnet by taking down its com..
2:10 pm, May 27, 2026 Cybersecurity
Can you enforce strong Active Directory password rules without frustrating users?
{ "priority": "INFO", "cve": "N/A", "target": "Active Directory", "threat_actor": "N/A", "patch_ready": false, "insight": "Implementing strong Active Directory password rules can be achiev..
2:10 pm, May 27, 2026 Cybersecurity
GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure
{ "priority": "HIGH", "cve": "N/A", "target": "Software Developers", "threat_actor": "GlassWorm", "patch_ready": false, "insight": "GlassWorm malware takedown disrupts developer supply cha..
1:10 pm, May 27, 2026 Cybersecurity
Gitea Vulnerability Exposes Private Container Images without Authentication
{"priority":"HIGH","cve":"CVE-2026-27771","target":"Gitea","threat_actor":"N/A","patch_ready":true,"insight":"Unauthenticated remote attackers can pull private container images from Gitea deployments ..
12:10 pm, May 27, 2026 Cybersecurity
FBI warns of in-person data theft attacks from extortion gang
{"priority":"LOW","cve":"N/A","target":"U.S.-based law firms","threat_actor":"Silent Ransom Group","patch_ready":false,"insight":"FBI warns of in-person data theft attacks from Silent Ransom Group tar..
12:10 pm, May 27, 2026 Cybersecurity
CISA gives feds 4 days to patch actively exploited cPanel plugin flaw
{ "priority": "CRITICAL", "cve": "N/A", "target": "LiteSpeed cPanel user-end plugin", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA requires federal agencies to patch a crit..
10:10 am, May 27, 2026 Cybersecurity
Windows 11 KB5089573 update released with performance improvements
{ "priority": "LOW", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft releases KB5089573 update for Windows 11 with performance impro..
9:10 am, May 27, 2026 Cybersecurity
Dutch police arrests suspect linked to Ajax football club hack
The Dutch National Police arrested a 35-year-old man suspected of hacking the professional football club Ajax Amsterdam (AFC Ajax) earlier this year. [...]
9:10 am, May 27, 2026 Cybersecurity
AI Chatbot Recommendations Redirect Users to Cryptojacking Malware Sites
Microsoft has warned of an active cryptojacking campaign that makes use of artificial intelligence (AI) chatbot interactions as a mechanism for surfacing malicious download sites. "This emerging deli..
8:10 am, May 27, 2026 Cybersecurity
ISC Stormcast For Wednesday, May 27th, 2026 https://isc.sans.edu/podcastdetail/9946, (Wed, May 27th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast for Wednesday, May 27th, 2026, providing cybersecurity n..
2:10 am, May 27, 2026 Cybersecurity
Charter confirms data breach after ShinyHunters extortion threat
{ "priority": "HIGH", "cve": "N/A", "target": "Charter Communications", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "Charter Communications confirmed a data breach aft..
8:10 pm, May 26, 2026 Cybersecurity
KnowledgeDeliver flaw exploited as a zero-day to install web shells
Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell. [...]
8:10 pm, May 26, 2026 Cybersecurity
MuddyWater Uses DLL Side-Loading in Espionage Campaign Targeting 9 Countries
The Iranian hacking group known as MuddyWater has been linked to a new campaign affecting at least nine organizations across nine countries on four continents in the first quarter of 2026. The activi..
5:10 pm, May 26, 2026 Cybersecurity
CERT-In Recommends 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks
{ "priority": "CRITICAL", "cve": "N/A", "target": "Internet-facing systems", "threat_actor": "N/A", "patch_ready": true, "insight": "CERT-In requires 12-hour patching for critical internet..
2:10 pm, May 26, 2026 Cybersecurity
[THN Webinar] New AI DDoS Attacks Are Smarter. Learn How to Fight Back
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Hackers are using AI to enhance DDoS attacks, making them faster and harder to..
2:10 pm, May 26, 2026 Cybersecurity
How Varonis Atlas integrates Claude Compliance API for AI governance
{ "priority": "INFO", "cve": "N/A", "target": "Varonis Atlas", "threat_actor": "N/A", "patch_ready": false, "insight": "Varonis Atlas integrates Claude Compliance API for AI governance, en..
2:10 pm, May 26, 2026 Cybersecurity
Webinar: Too many tools are slowing network incident response
IT teams often need to jump between monitoring dashboards, infrastructure tools, ticketing systems, and communication platforms during network incidents. This webinar explores how automation and AI-as..
1:10 pm, May 26, 2026 Cybersecurity
Microsoft Defender can now automatically isolate hacked endpoints
{ "priority": "INFO", "cve": "N/A", "target": "Microsoft Defender", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft Defender for Endpoint now has an automatic isolation ..
1:10 pm, May 26, 2026 Cybersecurity
Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions
{"priority":"CRITICAL","cve":"CVE-2026-45659","target":"Microsoft SharePoint","threat_actor":"N/A","patch_ready":true,"insight":"Microsoft patches critical SharePoint RCE flaw CVE-2026-45659 across se..
12:10 pm, May 26, 2026 Cybersecurity
New AI DDoS Attacks Are Smarter. Learn How to Fight Back in This Webinar
Every single day, hackers are finding new ways to crash websites and steal data. But right now, something has changed. Hackers are no longer working alone. They are now using powerful Artificial Inte..
12:10 pm, May 26, 2026 Cybersecurity
MFA Prompt Bombing: Why Your Second Factor Isn't Saving You
{ "priority": "MEDIUM", "cve": "N/A", "target": "MFA", "threat_actor": "N/A", "patch_ready": false, "insight": "MFA prompt bombing attacks trick users into providing second factors, bypass..
11:10 am, May 26, 2026 Cybersecurity
CERT-In Mandates 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks
{ "priority": "CRITICAL", "cve": "N/A", "target": "Internet-facing systems", "threat_actor": "Threat actors using AI tools", "patch_ready": true, "insight": "CERT-In requires 12-hour patch..
10:10 am, May 26, 2026 Cybersecurity
Iranian Hackers Deploy MiniFast and MiniJunk V2 via Phishing and SEO Poisoning
{ "priority": "HIGH", "cve": "N/A", "target": "N/A", "threat_actor": "Nimbus Manticore", "patch_ready": false, "insight": "Iranian state-sponsored threat actor Nimbus Manticore uses phishi..
9:10 am, May 26, 2026 Cybersecurity
CISA orders feds to patch actively exploited Drupal vulnerability
{ "priority": "HIGH", "cve": "N/A", "target": "Drupal", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA orders federal agencies to patch an actively exploited SQL injection vu..
9:10 am, May 26, 2026 Cybersecurity
Microsoft: Domain Controller lookup may fail on Windows Server 2016
{ "priority": "MEDIUM", "cve": "N/A", "target": "Windows Server 2016", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft confirms a known issue in Windows Server 2016 caus..
8:10 am, May 26, 2026 Cybersecurity
7-Eleven data breach exposes personal information of 185,000 people
{ "priority": "HIGH", "cve": "N/A", "target": "7-Eleven", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "The ShinyHunters extortion gang stole personal information of ov..
7:10 am, May 26, 2026 Cybersecurity
KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike
{"priority":"HIGH","cve":"CVE-2026-5426","target":"KnowledgeDeliver LMS","threat_actor":"N/A","patch_ready":true,"insight":"A high-severity security flaw in KnowledgeDeliver LMS was exploited as a zer..
6:10 am, May 26, 2026 Cybersecurity
ISC Stormcast For Tuesday, May 26th, 2026 https://isc.sans.edu/podcastdetail/9944, (Tue, May 26th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast for Tuesday, May 26th, 2026, providing security news and..
2:10 am, May 26, 2026 Cybersecurity
Possible ACR Stealer From Page Impersonating Claude, (Tue, May 26th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Possible ACR Stealer From Page Impersonating Claude" }
12:10 am, May 26, 2026 Cybersecurity
Anthropic’s restricted Claude Mythos model may be coming to Claude Code
Anthropic appears to be preparing for the public rollout of the Mythos model, which was announced in April as a restricted model that poses major security risks to private and public software. [...]
5:10 pm, May 25, 2026 Cybersecurity
⚡ Weekly Recap: Linux Flaws, Defender 0-Days, Router Botnets, and Supply Chain Chaos
{ "priority": "MEDIUM", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The weekly recap discusses various security issues including Linux flaws, De..
4:10 pm, May 25, 2026 Cybersecurity
Microsoft Access VBA, (Mon, May 25th)
{ "priority": "INFO", "cve": "N/A", "target": "Microsoft Access", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft Access files can contain VBA code." }
3:10 pm, May 25, 2026 Cybersecurity
Netherlands Seizes 800 Servers, Arrests 2 for Aiding Cyberattacks
{ "priority": "HIGH", "cve": "N/A", "target": "Stark Industries Solutions", "threat_actor": "Russia's intelligence agencies", "patch_ready": false, "insight": "Dutch authorities arrested t..
2:10 pm, May 25, 2026 Cybersecurity
TeamPCP Supply Chain Campaign: Activity Through 2026-05-24, (Mon, May 25th)
{ "priority": "HIGH", "cve": "N/A", "target": "GitHub, Microsoft", "threat_actor": "TeamPCP", "patch_ready": false, "insight": "TeamPCP operates across multiple package ecosystems, trojani..
2:10 pm, May 25, 2026 Cybersecurity
FBI warns of Kali365 phishing service targeting Microsoft 365 accounts
The FBI is warning about the Kali365 phishing-as-a-service platform (PhaaS) that is used to hijack Microsoft 365 accounts by abusing OAuth device code authentication to steal session tokens and bypass..
1:10 pm, May 25, 2026 Cybersecurity
The Alert Firehose Finally Meets Its Match
{"priority":"INFO","cve":"N/A","target":"Network Detection and Response (NDR)","threat_actor":"N/A","patch_ready":false,"insight":"The integration of agentic AI capabilities in Network Detection and R..
12:10 pm, May 25, 2026 Cybersecurity
Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks
{ "priority": "CRITICAL", "cve": "CVE-2026-26980", "target": "Ghost CMS", "threat_actor": "N/A", "patch_ready": false, "insight": "CVE-2026-26980 exploited for ClickFix attacks via malicio..
12:10 pm, May 25, 2026 Cybersecurity
Lazarus Deploys RemotePE Memory-Only RAT Against Financial and Crypto Firms
Cybersecurity researchers have shed light on a cross-platform malware called RemotePE that has been put to use by the North Korea-linked Lazarus Group in attacks targeting financial and cryptocurrency..
11:10 am, May 25, 2026 Cybersecurity
