List cybersec

Showing page 18 of 42 in latest. Total Items: 2076
4SRzw
...
Microsoft Open-Sources RAMPART and Clarity to Secure AI Agents During Development

{ "priority": "INFO", "cve": "N/A", "target": "AI agents", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft releases open-source tools RAMPART and Clarity to enhance secu..

5:10 pm, May 20, 2026 Cybersecurity

X4tVg
...
Grafana breach caused by missed token rotation after TanStack attack

{"priority":"MEDIUM","cve":"N/A","target":"Grafana","threat_actor":"N/A","patch_ready":false,"insight":"A Grafana data breach occurred due to a missed token rotation following the TanStack npm supply-..

4:10 pm, May 20, 2026 Cybersecurity

rtlb3
...
Microsoft Takes Down Malware-Signing Service Behind Ransomware Attacks

{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft Artifact Signing system", "threat_actor": "Fox Tempest", "patch_ready": false, "insight": "Microsoft disrupted a malware-signing-as..

3:10 pm, May 20, 2026 Cybersecurity

K1w8G
...
Agent AI is Coming. Are You Ready?

{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses the release of Orchid Security's Identity Gap: Snapshot ..

2:10 pm, May 20, 2026 Cybersecurity

P8Oc9
...
Webworm Deploys EchoCreep and GraphWorm Backdoors Using Discord and MS Graph API

{ "priority": "HIGH", "cve": "N/A", "target": "N/A", "threat_actor": "Webworm", "patch_ready": false, "insight": "Webworm deploys custom backdoors EchoCreep and GraphWorm using Discord and..

2:10 pm, May 20, 2026 Cybersecurity

ovTJl
...
Identity Alone Isn't Enough: Why Device Security Has to Share the Load

{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Device security is crucial in addition to identity checks to prevent attackers..

2:10 pm, May 20, 2026 Cybersecurity

CqnT8
...
Drupal critical update to fix bug with high exploitation risk

{"priority": "CRITICAL", "cve": "N/A", "target": "Drupal", "threat_actor": "N/A", "patch_ready": true, "insight": "Drupal announces a core security release to fix a bug with high exploitation risk, wa..

1:10 pm, May 20, 2026 Cybersecurity

ceEF5
...
Typosquatting Is No Longer a User Problem. It's a Supply Chain Problem

{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Typosquatting now involves AI-generated lookalike domains embedded in third-pa..

11:10 am, May 20, 2026 Cybersecurity

ANDEL
...
Exploit released for new PinTheft Arch Linux root escalation flaw

{"priority": "HIGH", "cve": "N/A", "target": "Arch Linux", "threat_actor": "N/A", "patch_ready": false, "insight": "Public exploit released for PinTheft Linux privilege escalation flaw allowing root a..

11:10 am, May 20, 2026 Cybersecurity

DL6Xm
...
GitHub Breached — Employee Device Hack Led to Exfiltration of 3,800+ Internal Repos

{"priority":"HIGH","cve":"N/A","target":"GitHub","threat_actor":"TeamPCP","patch_ready":false,"insight":"GitHub experienced a breach due to an employee device hack, leading to the exfiltration of over..

10:10 am, May 20, 2026 Cybersecurity

Fh7t6
...
Microsoft Releases Mitigation for YellowKey BitLocker Bypass CVE-2026-45585 Exploit

{ "priority": "HIGH", "cve": "CVE-2026-45585", "target": "Windows", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft released mitigation for YellowKey BitLocker bypass vu..

10:10 am, May 20, 2026 Cybersecurity

3ZUvs
...
GitHub confirms breach of 3,800 repos via malicious VSCode extension

{ "priority": "HIGH", "cve": "N/A", "target": "GitHub", "threat_actor": "N/A", "patch_ready": false, "insight": "GitHub confirmed a breach of 3,800 internal repositories due to a malicious..

9:10 am, May 20, 2026 Cybersecurity

V3Bcr
...
Microsoft shares mitigation for YellowKey Windows zero-day

{ "priority": "CRITICAL", "cve": "N/A", "target": "Windows BitLocker", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft shared mitigations for a YellowKey Windows zero-da..

8:10 am, May 20, 2026 Cybersecurity

ZysbY
...
Grafana GitHub Breach Exposes Source Code via TanStack npm Attack

{ "priority": "INFO", "cve": "N/A", "target": "Grafana Labs GitHub", "threat_actor": "N/A", "patch_ready": false, "insight": "Grafana Labs reported a breach in its GitHub environment, expo..

6:10 am, May 20, 2026 Cybersecurity

U1pHd
...
GitHub Investigating TeamPCP Claimed Breach of ~4,000 Internal Repositories

{ "priority": "HIGH", "cve": "N/A", "target": "GitHub", "threat_actor": "TeamPCP", "patch_ready": false, "insight": "GitHub investigating unauthorized access to internal repositories after..

5:10 am, May 20, 2026 Cybersecurity

bZDSl
...
GitHub investigates internal repositories breach claimed by TeamPCP

{ "priority": "HIGH", "cve": "N/A", "target": "GitHub", "threat_actor": "TeamPCP", "patch_ready": false, "insight": "GitHub investigates breach of internal repositories claimed by TeamPCP ..

5:10 am, May 20, 2026 Cybersecurity

GgCOD
...
ISC Stormcast For Wednesday, May 20th, 2026 https://isc.sans.edu/podcastdetail/9938, (Wed, May 20th)

{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast for Wednesday, May 20th, 2026, providing cybersecurity u..

2:10 am, May 20, 2026 Cybersecurity

ryXo4
...
Max-severity flaw in ChromaDB for AI apps allows server hijacking

{ "priority": "CRITICAL", "cve": "N/A", "target": "ChromaDB", "threat_actor": "N/A", "patch_ready": false, "insight": "Unauthenticated attackers can run arbitrary code on exposed ChromaDB ..

12:10 am, May 20, 2026 Cybersecurity

xKW3O
...
Cybercrime service disrupted for abusing Microsoft platform to sign malware

{"priority":"HIGH","cve":"N/A","target":"Microsoft Artifact Signing service","threat_actor":"Malware gangs","patch_ready":true,"insight":"Microsoft disrupted a malware-signing-as-a-service operation t..

10:10 pm, May 19, 2026 Cybersecurity

5FAzu
...
Discord rolls out end-to-end encryption on voice, video calls

{ "priority": "INFO", "cve": "N/A", "target": "Discord", "threat_actor": "N/A", "patch_ready": false, "insight": "Discord introduces end-to-end encryption for voice and video calls by defa..

9:10 pm, May 19, 2026 Cybersecurity

ibvZO
...
Microsoft Self-Service Password Reset abused in Azure data theft attacks

A threat actor targeting Microsoft 365 and Azure production environments is stealing data in attacks that abuse legitimate applications and administration features. [...]

8:10 pm, May 19, 2026 Cybersecurity

PnaCl
...
FBI: Americans lost over $388 million to scams using crypto ATMs in 2025

The FBI says Americans have lost over $388 million last year to scams using cryptocurrency kiosks, also known as crypto ATMs or Bitcoin ATMs. [...]

8:10 pm, May 19, 2026 Cybersecurity

J4quv
...
Trapdoor Android Ad Fraud Scheme Hit 659 Million Daily Bid Requests Using 455 Apps

{"priority":"HIGH","cve":"N/A","target":"Android","threat_actor":"Trapdoor","patch_ready":false,"insight":"Trapdoor Android ad fraud scheme hit 659M daily bid requests using 455 apps"}

6:10 pm, May 19, 2026 Cybersecurity

JvPMo
...
Microsoft blames macOS update for undismissible Teams location prompts

{ "priority": "LOW", "cve": "N/A", "target": "Microsoft Teams on macOS", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft Teams is displaying undismissible location promp..

5:10 pm, May 19, 2026 Cybersecurity

AYPrD
...
Microsoft plans to improve Windows 11 driver quality in 2026

{ "priority": "INFO", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft aims to enhance Windows 11 driver quality in 2026." }

5:10 pm, May 19, 2026 Cybersecurity

quoJN
...
7-Eleven confirms data breach claimed by the ShinyHunters gang

{ "priority": "HIGH", "cve": "N/A", "target": "7-Eleven", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "7-Eleven confirmed a data breach claimed by the ShinyHunters ext..

3:10 pm, May 19, 2026 Cybersecurity

B1dEa
...
New Shai-Hulud malware wave compromises 600 npm packages

Threat actors earlier today published more than 600 malicious packages to the Node Package Manager (npm) index as part of a new Shai-Hulud supply-chain campaign. [...]

3:10 pm, May 19, 2026 Cybersecurity

OnW7X
...
DirtyDecrypt PoC Released for Linux Kernel CVE-2026-31635 LPE Vulnerability

{"priority":"HIGH","cve":"CVE-2026-31635","target":"Linux Kernel","threat_actor":"N/A","patch_ready":true,"insight":"Proof-of-concept exploit code released for DirtyDecrypt LPE vulnerability in Linux ..

3:10 pm, May 19, 2026 Cybersecurity

tw2Xr
...
Critical Microsoft Vulnerabilities Doubled: From Exposure to Escalation

{ "priority": "MEDIUM", "cve": "N/A", "target": "Microsoft", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft's critical vulnerability count doubled in 2025, with attacke..

2:10 pm, May 19, 2026 Cybersecurity

lYUsr
...
Drupal to Release Urgent Core Security Updates on May 20, Sites Told to Prepare

{ "priority": "CRITICAL", "cve": "N/A", "target": "Drupal", "threat_actor": "N/A", "patch_ready": false, "insight": "Drupal will release a core security update on May 20, 2026, at 5-9 p.m...

1:10 pm, May 19, 2026 Cybersecurity

nBYPG
...
The New Phishing Click: How OAuth Consent Bypasses MFA

{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft 365", "threat_actor": "EvilTokens", "patch_ready": false, "insight": "EvilTokens PhaaS platform compromises 340+ Microsoft 365 orgs..

1:10 pm, May 19, 2026 Cybersecurity

ZvTay
...
Webinar: The hidden bottlenecks in network incident response

IT teams are increasingly overwhelmed by alerts from disconnected systems, forcing responders to manually coordinate investigations during network incidents. This webinar explores how automation and A..

1:10 pm, May 19, 2026 Cybersecurity

Etamk
...
Microsoft confirms patching issues in restricted Windows networks

{ "priority": "MEDIUM", "cve": "N/A", "target": "Windows", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft confirms patching issues in restricted Windows networks with J..

12:10 pm, May 19, 2026 Cybersecurity

Bc6Px
...
SEPPMail Secure E-Mail Gateway Vulnerabilities Enable RCE and Mail Traffic Access

Critical security vulnerabilities have been disclosed in SEPPMail Secure E-Mail Gateway, an enterprise-grade email security solution, that could be exploited to achieve remote code execution and enabl..

11:10 am, May 19, 2026 Cybersecurity

AXJVd
...
Compromised Nx Console 18.95.0 Targeted VS Code Developers with Credential Stealer

{ "priority": "HIGH", "cve": "N/A", "target": "Nx Console extension (rwl.angular-console) version 18.95.0", "threat_actor": "N/A", "patch_ready": false, "insight": "A compromised Nx Consol..

9:10 am, May 19, 2026 Cybersecurity

hZGy1
...
Popular GitHub Action Tags Redirected to Imposter Commit to Steal CI/CD Credentials

{ "priority": "HIGH", "cve": "N/A", "target": "GitHub Actions workflow", "threat_actor": "N/A", "patch_ready": false, "insight": "Threat actors compromised the GitHub Actions workflow acti..

7:10 am, May 19, 2026 Cybersecurity

OyACf
...
Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account

Cybersecurity researchers have discovered a fresh software supply chain attack campaign that has compromised various npm packages associated with the @antv ecosystem as part of the ongoing Mini Shai-H..

6:10 am, May 19, 2026 Cybersecurity

HwrZa
...
GitHub Actions Supply Chain Attack Redirects Tags to Steal CI/CD Credentials

{ "priority": "HIGH", "cve": "N/A", "target": "GitHub Actions", "threat_actor": "N/A", "patch_ready": false, "insight": "Threat actors compromised the GitHub Actions workflow actions-cool/..

6:10 am, May 19, 2026 Cybersecurity

R9otJ
...
ISC Stormcast For Tuesday, May 19th, 2026 https://isc.sans.edu/podcastdetail/9936, (Tue, May 19th)

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

2:10 am, May 19, 2026 Cybersecurity

LH7hj
...
INTERPOL ‘Operation Ramz’ seizes 53 malware, phishing servers

{ "priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "INTERPOL's Operation Ramz resulted in the seizure of 53 malware and phishing se..

11:10 pm, May 18, 2026 Cybersecurity

CptBQ
...
SHub macOS infostealer variant spoofs Apple security updates

A new variant of the 'SHub' macOS infostealer uses AppleScript to show a fake security update message and installs a backdoor. [...]

10:10 pm, May 18, 2026 Cybersecurity

ZadP5
...
TeamPCP Supply Chain Campaign: Activity Through 2026-05-17, (Mon, May 18th)

{ "priority": "HIGH", "cve": "N/A", "target": "Checkmarx Jenkins plugin", "threat_actor": "TeamPCP", "patch_ready": false, "insight": "TeamPCP supply chain campaign includes confirmed Chec..

9:10 pm, May 18, 2026 Cybersecurity

AkBI8
...
CISA Admin Leaked AWS GovCloud Keys on Github

{ "priority": "CRITICAL", "cve": "N/A", "target": "AWS GovCloud", "threat_actor": "CISA Admin", "patch_ready": false, "insight": "CISA contractor leaked AWS GovCloud keys and internal syst..

9:10 pm, May 18, 2026 Cybersecurity

V7zYo
...
5 Steps to Managing Shadow AI Tools Without Slowing Down Employees

Many employees already use shadow AI tools at work without security review. Adaptive Security breaks down how teams can build practical AI governance without adding friction for employees. [...]

7:10 pm, May 18, 2026 Cybersecurity

GPDRc
...
INTERPOL Operation Ramz Disrupts MENA Cybercrime Networks with 201 Arrests

{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "INTERPOL's Operation Ramz resulted in 201 arrests and 382 identified suspects ..

6:10 pm, May 18, 2026 Cybersecurity

dDWS1
...
Leaked Shai-Hulud malware fuels new npm infostealer campaign

The Shai-Hulud malware leaked last week is now used in new attacks on the Node Package Manager (npm) index, as infected packages emerged over the weekend. [...]

6:10 pm, May 18, 2026 Cybersecurity

rObDi
...
⚡ Weekly Recap: Exchange 0-Day, npm Worm, Fake AI Repo, Cisco Exploit and More

Monday opens with a trust problem. A mail server flaw is under active use. A network control system was targeted. Trusted packages were poisoned. A fake model page pushed a stealer. Then came the fami..

4:10 pm, May 18, 2026 Cybersecurity

xorOT
...
How to Reduce Phishing Exposure Before It Turns into Business Disruption

What happens when a phishing email looks clean enough to pass through security, but dangerous enough to expose the business after one click? That is the gap many SOCs still struggle with: the attacks ..

2:10 pm, May 18, 2026 Cybersecurity

IMqfk
...
Grafana says stolen GitHub token let hackers steal codebase

Grafana Labs disclosed that hackers have downloaded its source code after breaching its GitHub environment using a stolen access token. [...]

2:10 pm, May 18, 2026 Cybersecurity

mQLtx
...
Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws

{"priority": "CRITICAL", "cve": "CVE-2026-8043", "target": "Ivanti Xtraction", "threat_actor": "N/A", "patch_ready": true, "insight": "Ivanti Xtraction has a critical flaw (CVE-2026-8043, CVSS score: ..

12:10 pm, May 18, 2026 Cybersecurity

AI Testing

Autonomous AI API, a cutting-edge platform that leverages advanced AI technologies to enable self-modification and self-repair of its core files. This innovative site utilizes machine learning algorithms to detect and correct errors, ensuring maximum uptime and performance. With its autonomous capabilities, the AI API can adapt to changing requirements, learn from user interactions, and continuously improve its functionality.