List cybersec

Showing page 19 of 42 in latest. Total Items: 2076
3oOWa
...
Microsoft testing adjustable taskbar, Start menu in Windows 11

{ "priority": "INFO", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft is testing a resizable taskbar and Start menu in Windows 11."..

12:10 pm, May 18, 2026 Cybersecurity

7rqXL
...
Developer Workstations Are Now Part of the Software Supply Chain

{"priority":"HIGH","cve":"N/A","target":"Developer Workstations","threat_actor":"N/A","patch_ready":false,"insight":"Supply chain attackers target developer workstations to steal access and secrets, i..

12:10 pm, May 18, 2026 Cybersecurity

0P2DO
...
Four Malicious npm Packages Deliver Infostealers and Phantom Bot DDoS Malware

{ "priority": "HIGH", "cve": "N/A", "target": "npm packages", "threat_actor": "N/A", "patch_ready": false, "insight": "Four malicious npm packages (chalk-tempalte, @deadcode09284814/axios-..

11:10 am, May 18, 2026 Cybersecurity

gziXl
...
MiniPlasma Windows 0-Day Enables SYSTEM Privilege Escalation on Fully Patched Systems

{ "priority": "CRITICAL", "cve": "N/A", "target": "Windows Cloud Files Mini Filter Driver (cldflt.sys)", "threat_actor": "Chaotic Eclipse", "patch_ready": false, "insight": "A zero-day vul..

9:10 am, May 18, 2026 Cybersecurity

WDvib
...
Pre-Stuxnet Fast16 Malware Tampered with Nuclear Weapons Simulations

{ "priority": "MEDIUM", "cve": "N/A", "target": "Nuclear Weapons Simulations", "threat_actor": "N/A", "patch_ready": false, "insight": "Fast16 malware was designed to tamper with nuclear w..

9:10 am, May 18, 2026 Cybersecurity

hYpFw
...
Microsoft confirms Windows 11 security update install issues

{ "priority": "MEDIUM", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft confirms installation issues with Windows 11 security updat..

9:10 am, May 18, 2026 Cybersecurity

fu1Nl
...
Exploit available for new DirtyDecrypt Linux root escalation flaw

{ "priority": "HIGH", "cve": "N/A", "target": "Linux kernel's rxgk module", "threat_actor": "N/A", "patch_ready": true, "insight": "A proof-of-concept exploit is available for a recently p..

8:10 am, May 18, 2026 Cybersecurity

Q3pWY
...
Hackers earn $1,298,250 for 47 zero-days at Pwn2Own Berlin 2026

{ "priority": "INFO", "cve": "N/A", "target": "Pwn2Own Berlin 2026", "threat_actor": "N/A", "patch_ready": false, "insight": "Security researchers earned $1,298,250 by exploiting 47 zero-d..

6:10 am, May 18, 2026 Cybersecurity

aSeNQ
...
New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC released

{"priority": "CRITICAL", "cve": "N/A", "target": "Windows", "threat_actor": "N/A", "patch_ready": false, "insight": "A zero-day exploit called MiniPlasma allows attackers to gain SYSTEM privileges on ..

11:10 pm, May 17, 2026 Cybersecurity

PWGDj
...
NGINX CVE-2026-42945 Exploited in the Wild, Causing Worker Crashes and Possible RCE

{"priority":"CRITICAL","cve":"CVE-2026-42945","target":"NGINX","threat_actor":"N/A","patch_ready":false,"insight":"CVE-2026-42945 heap buffer overflow in ngx_http_rewrite_module is under active exploi..

3:10 pm, May 17, 2026 Cybersecurity

xPJB5
...
Tycoon2FA hijacks Microsoft 365 accounts via device-code phishing

The Tycoon2FA phishing kit now supports device-code phishing attacks and abuses Trustifi click-tracking URLs to hijack Microsoft 365 accounts. [...]

3:10 pm, May 17, 2026 Cybersecurity

pMeSY
...
Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

{ "priority": "HIGH", "cve": "N/A", "target": "Grafana", "threat_actor": "N/A", "patch_ready": false, "insight": "Grafana disclosed a GitHub token breach leading to codebase download and e..

8:10 am, May 17, 2026 Cybersecurity

nkQWJ
...
Microsoft rejects critical Azure vulnerability report, no CVE issued

{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft Azure Backup for AKS", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft disputes a report of a critical Azure Bac..

9:10 pm, May 16, 2026 Cybersecurity

Zq58E
...
Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming

``` { "priority": "HIGH", "cve": "N/A", "target": "Funnel Builder plugin for WordPress", "threat_actor": "N/A", "patch_ready": false, "insight": "Active exploitation of Funnel Builder plug..

5:10 pm, May 16, 2026 Cybersecurity

kQhaL
...
Russian hackers turn Kazuar backdoor into modular P2P botnet

{ "priority": "HIGH", "cve": "N/A", "target": "Kazuar backdoor", "threat_actor": "Secret Blizzard", "patch_ready": false, "insight": "Russian hackers have upgraded their Kazuar backdoor to..

3:10 pm, May 16, 2026 Cybersecurity

DKsYe
...
Funnel Builder WordPress plugin bug exploited to steal credit cards

{ "priority": "HIGH", "cve": "N/A", "target": "Funnel Builder WordPress plugin", "threat_actor": "N/A", "patch_ready": false, "insight": "Critical vulnerability in Funnel Builder WordPress..

8:10 pm, May 15, 2026 Cybersecurity

NUOxr
...
Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access

{ "priority": "HIGH", "cve": "N/A", "target": "Kazuar Backdoor", "threat_actor": "Turla", "patch_ready": false, "insight": "Turla transforms Kazuar backdoor into a modular P2P botnet for p..

6:10 pm, May 15, 2026 Cybersecurity

Bbzwr
...
Popular node-ipc npm package compromised to steal credentials

Hackers have injected credential-stealing malware into newly published versions of node-ipc, a popular inter-process communication package, in a new supply chain attack targeting npm. [...]

6:10 pm, May 15, 2026 Cybersecurity

IC2WZ
...
Microsoft Exchange, Windows 11 hacked on second day of Pwn2Own

{ "priority": "CRITICAL", "cve": "N/A", "target": "Microsoft Exchange, Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Multiple zero-day vulnerabilities exploited in ..

6:10 pm, May 15, 2026 Cybersecurity

h0NOC
...
Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistence

{ "priority": "HIGH", "cve": "N/A", "target": "OpenClaw", "threat_actor": "N/A", "patch_ready": false, "insight": "Four security flaws in OpenClaw can be chained for data theft, privilege ..

4:10 pm, May 15, 2026 Cybersecurity

ZhM0O
...
Avada Builder WordPress plugin flaws allow site credential theft

Two vulnerabilities in the Avada Builder plugin for WordPress, with an estimated one million active installations, allow hackers to read arbitrary files and extract sensitive information from the data..

4:10 pm, May 15, 2026 Cybersecurity

zwCcT
...
Microsoft backpedals: Edge to stop loading passwords into memory

{ "priority": "MEDIUM", "cve": "N/A", "target": "Microsoft Edge", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft Edge update will prevent loading of saved passwords into..

3:10 pm, May 15, 2026 Cybersecurity

1OWqo
...
Inside the REMUS Infostealer: Session Theft, MaaS, and Rapid Evolution

{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The REMUS infostealer has evolved to focus on session theft and operational sc..

2:10 pm, May 15, 2026 Cybersecurity

YgXi5
...
Microsoft to automatically roll back faulty Windows drivers

{ "priority": "INFO", "cve": "N/A", "target": "Windows", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft introduces a feature to remotely roll back faulty Windows driver..

1:10 pm, May 15, 2026 Cybersecurity

YCUHf
...
TanStack Supply Chain Attack Hits Two OpenAI Employee Devices, Forces macOS Updates

{ "priority": "MEDIUM", "cve": "N/A", "target": "OpenAI", "threat_actor": "N/A", "patch_ready": false, "insight": "Two OpenAI employee devices were impacted by the TanStack supply chain at..

12:10 pm, May 15, 2026 Cybersecurity

uU3Jd
...
What 45 Days of Watching Your Own Tools Will Tell You About Your Real Attack Surface

{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The biggest security risk in organizations often comes from trusted utilities ..

12:10 pm, May 15, 2026 Cybersecurity

rQWfs
...
Microsoft warns of Exchange zero-day flaw exploited in attacks

On Thursday, Microsoft shared mitigations for a high-severity Exchange Server vulnerability exploited in attacks that allow threat actors to execute arbitrary code via cross-site scripting (XSS) while..

10:10 am, May 15, 2026 Cybersecurity

Y3FkJ
...
On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email

{ "priority": "HIGH", "cve": "CVE-2026-42897", "target": "Microsoft Exchange Server", "threat_actor": "N/A", "patch_ready": false, "insight": "CVE-2026-42897 is an actively exploited spoof..

7:10 am, May 15, 2026 Cybersecurity

3XyjP
...
[Guest Diary] New Malware Libraries means New Signatures, (Fri, May 15th)

{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "New malware libraries require new signatures." }

7:10 am, May 15, 2026 Cybersecurity

1Mpm3
...
CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access Exploits

{"priority": "CRITICAL", "cve": "CVE-2026-20182", "target": "Cisco SD-WAN", "threat_actor": "N/A", "patch_ready": false, "insight": "CISA added CVE-2026-20182 to KEV catalog due to admin access exploi..

6:10 am, May 15, 2026 Cybersecurity

Rv9lD
...
ISC Stormcast For Friday, May 15th, 2026 https://isc.sans.edu/podcastdetail/9934, (Fri, May 15th)

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

5:10 am, May 15, 2026 Cybersecurity

OYz0E
...
TeamPCP hackers advertise Mistral AI code repos for sale

The TeamPCP hacker group is threatening to leak source code from the Mistral AI project unless a buyer is found for the data. [...]

11:10 pm, May 14, 2026 Cybersecurity

e5BH1
...
Hackers exploit auth bypass flaw in Burst Statistics WordPress plugin

{ "priority": "HIGH", "cve": "N/A", "target": "Burst Statistics WordPress plugin", "threat_actor": "N/A", "patch_ready": false, "insight": "Hackers are exploiting a critical authentication..

9:10 pm, May 14, 2026 Cybersecurity

LYJcV
...
Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks

{ "priority": "CRITICAL", "cve": "CVE-2026-20182", "target": "Cisco Catalyst SD-WAN Controller", "threat_actor": "N/A", "patch_ready": false, "insight": "Cisco warns of critical SD-WAN fla..

8:10 pm, May 14, 2026 Cybersecurity

5sGTk
...
Stealer Backdoor Found in 3 Node-IPC Versions Targeting Developer Secrets

Cybersecurity researchers are sounding the alarm about what has been described as "malicious activity" in newly published versions of node-ipc. According to Socket and StepSecurity, three different ve..

7:10 pm, May 14, 2026 Cybersecurity

kLAV8
...
Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited to Gain Admin Access

{"priority": "CRITICAL", "cve": "CVE-2026-20182", "target": "Cisco Catalyst SD-WAN Controller", "threat_actor": "N/A", "patch_ready": true, "insight": "Cisco Catalyst SD-WAN Controller Auth Bypass Act..

7:10 pm, May 14, 2026 Cybersecurity

Mb6nB
...
Windows 11 and Microsoft Edge hacked at Pwn2Own Berlin 2026

On the first day of Pwn2Own Berlin 2026, security researchers collected $523,000 in cash awards after exploiting 24 unique zero-days. [...]

7:10 pm, May 14, 2026 Cybersecurity

jgcAH
...
OpenAI confirms security breach in TanStack supply chain attack

OpenAI says two employees' devices were breached in the recent TanStack supply chain attack that impacted hundreds of npm and PyPI packages, causing the company to rotate code-signing certificates for..

7:10 pm, May 14, 2026 Cybersecurity

DdN7Q
...
ThreatsDay Bulletin: PAN-OS RCE, Mythos cURL Bug, AI Tokenizer Attacks, and 10+ Stories

{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Weekly threat bulletin covering various cybersecurity issues." }

6:10 pm, May 14, 2026 Cybersecurity

KRkXl
...
Cyber-Enabled Cargo Crime: How Cybercrime Tradecraft is Used to Steal Freight

{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Cargo theft now involves cybercrime tactics like phishing emails and stolen cr..

4:10 pm, May 14, 2026 Cybersecurity

CytVJ
...
18-year-old NGINX vulnerability allows DoS, potential RCE

``` { "priority": "HIGH", "cve": "N/A", "target": "NGINX", "threat_actor": "N/A", "patch_ready": false, "insight": "An 18-year-old NGINX vulnerability can be exploited for denial of servic..

4:10 pm, May 14, 2026 Cybersecurity

V7lsn
...
Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike

{ "priority": "HIGH", "cve": "N/A", "target": "Ukrainian Government", "threat_actor": "Ghostwriter", "patch_ready": false, "insight": "Ghostwriter targets Ukrainian government with geofenc..

3:10 pm, May 14, 2026 Cybersecurity

NmbyY
...
KongTuke hackers now use Microsoft Teams for corporate breaches

{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft Teams", "threat_actor": "KongTuke", "patch_ready": false, "insight": "KongTuke hackers now use Microsoft Teams for social engineeri..

1:10 pm, May 14, 2026 Cybersecurity

JXxTe
...
How AI Hallucinations Are Creating Real Security Risks

{ "priority": "MEDIUM", "cve": "N/A", "target": "AI models", "threat_actor": "N/A", "patch_ready": false, "insight": "AI hallucinations introduce security risks by generating inaccurate ye..

12:10 pm, May 14, 2026 Cybersecurity

EZC0q
...
PraisonAI CVE-2026-44338 Auth Bypass Targeted Within Hours of Disclosure

{ "priority": "HIGH", "cve": "CVE-2026-44338", "target": "PraisonAI", "threat_actor": "N/A", "patch_ready": false, "insight": "Threat actors are exploiting CVE-2026-44338, an auth bypass v..

12:10 pm, May 14, 2026 Cybersecurity

ouApK
...
Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation

{"priority": "CRITICAL", "cve": "N/A", "target": "Windows", "threat_actor": "Chaotic Eclipse", "patch_ready": false, "insight": "Two new zero-days in Windows, YellowKey and GreenPlasma, allow BitLocke..

10:10 am, May 14, 2026 Cybersecurity

qZB4p
...
Dell confirms its SupportAssist software causes Windows BSOD crashes

Dell confirmed that its SupportAssist software is causing blue-screen crashes on some Windows systems following a wave of user reports about random reboots affecting Dell devices since Friday. [...]

10:10 am, May 14, 2026 Cybersecurity

CchZW
...
US charges suspected Dream Market admin arrested in Germany

{ "priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "US charges alleged admin of Dream Market with money laundering." }

9:10 am, May 14, 2026 Cybersecurity

Kb4L5
...
New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption

{ "priority": "HIGH", "cve": "CVE-2026-46300", "target": "Linux Kernel", "threat_actor": "N/A", "patch_ready": false, "insight": "New Fragnesia Linux Kernel LPE vulnerability CVE-2026-4630..

8:10 am, May 14, 2026 Cybersecurity

M4iIk
...
New Fragnesia Linux flaw lets attackers gain root privileges

{ "priority": "HIGH", "cve": "CVE-2026-46300", "target": "Linux", "threat_actor": "N/A", "patch_ready": true, "insight": "New Fragnasia Linux flaw lets attackers gain root privileges" }

8:10 am, May 14, 2026 Cybersecurity

AI Testing

Autonomous AI API, a cutting-edge platform that leverages advanced AI technologies to enable self-modification and self-repair of its core files. This innovative site utilizes machine learning algorithms to detect and correct errors, ensuring maximum uptime and performance. With its autonomous capabilities, the AI API can adapt to changing requirements, learn from user interactions, and continuously improve its functionality.