List cybersec
Microsoft testing adjustable taskbar, Start menu in Windows 11
{ "priority": "INFO", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft is testing a resizable taskbar and Start menu in Windows 11."..
12:10 pm, May 18, 2026 Cybersecurity
Developer Workstations Are Now Part of the Software Supply Chain
{"priority":"HIGH","cve":"N/A","target":"Developer Workstations","threat_actor":"N/A","patch_ready":false,"insight":"Supply chain attackers target developer workstations to steal access and secrets, i..
12:10 pm, May 18, 2026 Cybersecurity
Four Malicious npm Packages Deliver Infostealers and Phantom Bot DDoS Malware
{ "priority": "HIGH", "cve": "N/A", "target": "npm packages", "threat_actor": "N/A", "patch_ready": false, "insight": "Four malicious npm packages (chalk-tempalte, @deadcode09284814/axios-..
11:10 am, May 18, 2026 Cybersecurity
MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems
{ "priority": "CRITICAL", "cve": "N/A", "target": "Windows Cloud Files Mini Filter Driver (cldflt.sys)", "threat_actor": "Chaotic Eclipse", "patch_ready": false, "insight": "A zero-day vul..
9:10 am, May 18, 2026 Cybersecurity
Pre-Stuxnet Fast16 Malware Tampered with Nuclear Weapons Simulations
{ "priority": "MEDIUM", "cve": "N/A", "target": "Nuclear Weapons Simulations", "threat_actor": "N/A", "patch_ready": false, "insight": "Fast16 malware was designed to tamper with nuclear w..
9:10 am, May 18, 2026 Cybersecurity
Microsoft confirms Windows 11 security update install issues
{ "priority": "MEDIUM", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft confirms installation issues with Windows 11 security updat..
9:10 am, May 18, 2026 Cybersecurity
Exploit available for new DirtyDecrypt Linux root escalation flaw
{ "priority": "HIGH", "cve": "N/A", "target": "Linux kernel's rxgk module", "threat_actor": "N/A", "patch_ready": true, "insight": "A proof-of-concept exploit is available for a recently p..
8:10 am, May 18, 2026 Cybersecurity
Hackers earn $1,298,250 for 47 zero-days at Pwn2Own Berlin 2026
{ "priority": "INFO", "cve": "N/A", "target": "Pwn2Own Berlin 2026", "threat_actor": "N/A", "patch_ready": false, "insight": "Security researchers earned $1,298,250 by exploiting 47 zero-d..
6:10 am, May 18, 2026 Cybersecurity
New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC released
{"priority": "CRITICAL", "cve": "N/A", "target": "Windows", "threat_actor": "N/A", "patch_ready": false, "insight": "A zero-day exploit called MiniPlasma allows attackers to gain SYSTEM privileges on ..
11:10 pm, May 17, 2026 Cybersecurity
NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE
{"priority":"CRITICAL","cve":"CVE-2026-42945","target":"NGINX","threat_actor":"N/A","patch_ready":false,"insight":"CVE-2026-42945 heap buffer overflow in ngx_http_rewrite_module is under active exploi..
3:10 pm, May 17, 2026 Cybersecurity
Tycoon2FA hijacks Microsoft 365 accounts via device-code phishing
The Tycoon2FA phishing kit now supports device-code phishing attacks and abuses Trustifi click-tracking URLs to hijack Microsoft 365 accounts. [...]
3:10 pm, May 17, 2026 Cybersecurity
Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt
{ "priority": "HIGH", "cve": "N/A", "target": "Grafana", "threat_actor": "N/A", "patch_ready": false, "insight": "Grafana disclosed a GitHub token breach leading to codebase download and e..
8:10 am, May 17, 2026 Cybersecurity
Microsoft rejects critical Azure vulnerability report, no CVE issued
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft Azure Backup for AKS", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft disputes a report of a critical Azure Bac..
9:10 pm, May 16, 2026 Cybersecurity
Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming
``` { "priority": "HIGH", "cve": "N/A", "target": "Funnel Builder plugin for WordPress", "threat_actor": "N/A", "patch_ready": false, "insight": "Active exploitation of Funnel Builder plug..
5:10 pm, May 16, 2026 Cybersecurity
Russian hackers turn Kazuar backdoor into modular P2P botnet
{ "priority": "HIGH", "cve": "N/A", "target": "Kazuar backdoor", "threat_actor": "Secret Blizzard", "patch_ready": false, "insight": "Russian hackers have upgraded their Kazuar backdoor to..
3:10 pm, May 16, 2026 Cybersecurity
Funnel Builder WordPress plugin bug exploited to steal credit cards
{ "priority": "HIGH", "cve": "N/A", "target": "Funnel Builder WordPress plugin", "threat_actor": "N/A", "patch_ready": false, "insight": "Critical vulnerability in Funnel Builder WordPress..
8:10 pm, May 15, 2026 Cybersecurity
Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access
{ "priority": "HIGH", "cve": "N/A", "target": "Kazuar Backdoor", "threat_actor": "Turla", "patch_ready": false, "insight": "Turla transforms Kazuar backdoor into a modular P2P botnet for p..
6:10 pm, May 15, 2026 Cybersecurity
Popular node-ipc npm package compromised to steal credentials
Hackers have injected credential-stealing malware into newly published versions of node-ipc, a popular inter-process communication package, in a new supply chain attack targeting npm. [...]
6:10 pm, May 15, 2026 Cybersecurity
Microsoft Exchange, Windows 11 hacked on second day of Pwn2Own
{ "priority": "CRITICAL", "cve": "N/A", "target": "Microsoft Exchange, Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Multiple zero-day vulnerabilities exploited in ..
6:10 pm, May 15, 2026 Cybersecurity
Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistence
{ "priority": "HIGH", "cve": "N/A", "target": "OpenClaw", "threat_actor": "N/A", "patch_ready": false, "insight": "Four security flaws in OpenClaw can be chained for data theft, privilege ..
4:10 pm, May 15, 2026 Cybersecurity
Avada Builder WordPress plugin flaws allow site credential theft
Two vulnerabilities in the Avada Builder plugin for WordPress, with an estimated one million active installations, allow hackers to read arbitrary files and extract sensitive information from the data..
4:10 pm, May 15, 2026 Cybersecurity
Microsoft backpedals: Edge to stop loading passwords into memory
{ "priority": "MEDIUM", "cve": "N/A", "target": "Microsoft Edge", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft Edge update will prevent loading of saved passwords into..
3:10 pm, May 15, 2026 Cybersecurity
Inside the REMUS Infostealer: Session Theft, MaaS, and Rapid Evolution
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The REMUS infostealer has evolved to focus on session theft and operational sc..
2:10 pm, May 15, 2026 Cybersecurity
Microsoft to automatically roll back faulty Windows drivers
{ "priority": "INFO", "cve": "N/A", "target": "Windows", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft introduces a feature to remotely roll back faulty Windows driver..
1:10 pm, May 15, 2026 Cybersecurity
TanStack Supply Chain Attack Hits Two OpenAI Employee Devices, Forces macOS Updates
{ "priority": "MEDIUM", "cve": "N/A", "target": "OpenAI", "threat_actor": "N/A", "patch_ready": false, "insight": "Two OpenAI employee devices were impacted by the TanStack supply chain at..
12:10 pm, May 15, 2026 Cybersecurity
What 45 Days of Watching Your Own Tools Will Tell You About Your Real Attack Surface
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The biggest security risk in organizations often comes from trusted utilities ..
12:10 pm, May 15, 2026 Cybersecurity
Microsoft warns of Exchange zero-day flaw exploited in attacks
On Thursday, Microsoft shared mitigations for a high-severity Exchange Server vulnerability exploited in attacks that allow threat actors to execute arbitrary code via cross-site scripting (XSS) while..
10:10 am, May 15, 2026 Cybersecurity
On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email
{ "priority": "HIGH", "cve": "CVE-2026-42897", "target": "Microsoft Exchange Server", "threat_actor": "N/A", "patch_ready": false, "insight": "CVE-2026-42897 is an actively exploited spoof..
7:10 am, May 15, 2026 Cybersecurity
[Guest Diary] New Malware Libraries means New Signatures, (Fri, May 15th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "New malware libraries require new signatures." }
7:10 am, May 15, 2026 Cybersecurity
CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access Exploits
{"priority": "CRITICAL", "cve": "CVE-2026-20182", "target": "Cisco SD-WAN", "threat_actor": "N/A", "patch_ready": false, "insight": "CISA added CVE-2026-20182 to KEV catalog due to admin access exploi..
6:10 am, May 15, 2026 Cybersecurity
ISC Stormcast For Friday, May 15th, 2026 https://isc.sans.edu/podcastdetail/9934, (Fri, May 15th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
5:10 am, May 15, 2026 Cybersecurity
TeamPCP hackers advertise Mistral AI code repos for sale
The TeamPCP hacker group is threatening to leak source code from the Mistral AI project unless a buyer is found for the data. [...]
11:10 pm, May 14, 2026 Cybersecurity
Hackers exploit auth bypass flaw in Burst Statistics WordPress plugin
{ "priority": "HIGH", "cve": "N/A", "target": "Burst Statistics WordPress plugin", "threat_actor": "N/A", "patch_ready": false, "insight": "Hackers are exploiting a critical authentication..
9:10 pm, May 14, 2026 Cybersecurity
Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks
{ "priority": "CRITICAL", "cve": "CVE-2026-20182", "target": "Cisco Catalyst SD-WAN Controller", "threat_actor": "N/A", "patch_ready": false, "insight": "Cisco warns of critical SD-WAN fla..
8:10 pm, May 14, 2026 Cybersecurity
Stealer Backdoor Found in 3 Node-IPC Versions Targeting Developer Secrets
Cybersecurity researchers are sounding the alarm about what has been described as "malicious activity" in newly published versions of node-ipc. According to Socket and StepSecurity, three different ve..
7:10 pm, May 14, 2026 Cybersecurity
Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited to Gain Admin Access
{"priority": "CRITICAL", "cve": "CVE-2026-20182", "target": "Cisco Catalyst SD-WAN Controller", "threat_actor": "N/A", "patch_ready": true, "insight": "Cisco Catalyst SD-WAN Controller Auth Bypass Act..
7:10 pm, May 14, 2026 Cybersecurity
Windows 11 and Microsoft Edge hacked at Pwn2Own Berlin 2026
On the first day of Pwn2Own Berlin 2026, security researchers collected $523,000 in cash awards after exploiting 24 unique zero-days. [...]
7:10 pm, May 14, 2026 Cybersecurity
OpenAI confirms security breach in TanStack supply chain attack
OpenAI says two employees' devices were breached in the recent TanStack supply chain attack that impacted hundreds of npm and PyPI packages, causing the company to rotate code-signing certificates for..
7:10 pm, May 14, 2026 Cybersecurity
ThreatsDay Bulletin: PAN-OS RCE, Mythos cURL Bug, AI Tokenizer Attacks, and 10+ Stories
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Weekly threat bulletin covering various cybersecurity issues." }
6:10 pm, May 14, 2026 Cybersecurity
Cyber-Enabled Cargo Crime: How Cybercrime Tradecraft is Used to Steal Freight
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Cargo theft now involves cybercrime tactics like phishing emails and stolen cr..
4:10 pm, May 14, 2026 Cybersecurity
18-year-old NGINX vulnerability allows DoS, potential RCE
``` { "priority": "HIGH", "cve": "N/A", "target": "NGINX", "threat_actor": "N/A", "patch_ready": false, "insight": "An 18-year-old NGINX vulnerability can be exploited for denial of servic..
4:10 pm, May 14, 2026 Cybersecurity
Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike
{ "priority": "HIGH", "cve": "N/A", "target": "Ukrainian Government", "threat_actor": "Ghostwriter", "patch_ready": false, "insight": "Ghostwriter targets Ukrainian government with geofenc..
3:10 pm, May 14, 2026 Cybersecurity
KongTuke hackers now use Microsoft Teams for corporate breaches
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft Teams", "threat_actor": "KongTuke", "patch_ready": false, "insight": "KongTuke hackers now use Microsoft Teams for social engineeri..
1:10 pm, May 14, 2026 Cybersecurity
How AI Hallucinations Are Creating Real Security Risks
{ "priority": "MEDIUM", "cve": "N/A", "target": "AI models", "threat_actor": "N/A", "patch_ready": false, "insight": "AI hallucinations introduce security risks by generating inaccurate ye..
12:10 pm, May 14, 2026 Cybersecurity
PraisonAI CVE-2026-44338 Auth Bypass Targeted Within Hours of Disclosure
{ "priority": "HIGH", "cve": "CVE-2026-44338", "target": "PraisonAI", "threat_actor": "N/A", "patch_ready": false, "insight": "Threat actors are exploiting CVE-2026-44338, an auth bypass v..
12:10 pm, May 14, 2026 Cybersecurity
Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation
{"priority": "CRITICAL", "cve": "N/A", "target": "Windows", "threat_actor": "Chaotic Eclipse", "patch_ready": false, "insight": "Two new zero-days in Windows, YellowKey and GreenPlasma, allow BitLocke..
10:10 am, May 14, 2026 Cybersecurity
Dell confirms its SupportAssist software causes Windows BSOD crashes
Dell confirmed that its SupportAssist software is causing blue-screen crashes on some Windows systems following a wave of user reports about random reboots affecting Dell devices since Friday. [...]
10:10 am, May 14, 2026 Cybersecurity
US charges suspected Dream Market admin arrested in Germany
{ "priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "US charges alleged admin of Dream Market with money laundering." }
9:10 am, May 14, 2026 Cybersecurity
New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption
{ "priority": "HIGH", "cve": "CVE-2026-46300", "target": "Linux Kernel", "threat_actor": "N/A", "patch_ready": false, "insight": "New Fragnesia Linux Kernel LPE vulnerability CVE-2026-4630..
8:10 am, May 14, 2026 Cybersecurity
New Fragnesia Linux flaw lets attackers gain root privileges
{ "priority": "HIGH", "cve": "CVE-2026-46300", "target": "Linux", "threat_actor": "N/A", "patch_ready": true, "insight": "New Fragnasia Linux flaw lets attackers gain root privileges" }
8:10 am, May 14, 2026 Cybersecurity
