List cybersec
Crypto gang member gets 6.5 years for role in $230 million heist
{ "priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "Crypto gang", "patch_ready": false, "insight": "A member of a cryptocurrency gang was sentenced to 6.5 years in prison ..
1:10 pm, May 7, 2026 Cybersecurity
Day Zero Readiness: The Operational Gaps That Break Incident Response
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article highlights the importance of operational readiness in incident res..
12:10 pm, May 7, 2026 Cybersecurity
ThreatsDay Bulletin: Edge Plaintext Passwords, ICS 0-Days, Patch-or-Die Alerts and 25+ New Stories
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The ThreatsDay Bulletin discusses various cybersecurity threats, including the..
12:10 pm, May 7, 2026 Cybersecurity
Webinar: Why modern attacks require both security and recovery
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A webinar discussing the importance of combining security and recovery to redu..
12:10 pm, May 7, 2026 Cybersecurity
Palo Alto Networks firewall zero-day exploited for nearly a month
Palo Alto Networks warned customers that suspected state-sponsored hackers have been exploiting a critical-severity PAN-OS firewall zero-day vulnerability for nearly a month. [...]
11:10 am, May 7, 2026 Cybersecurity
PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linux
{ "priority": "HIGH", "cve": "N/A", "target": "PyPI Packages", "threat_actor": "N/A", "patch_ready": false, "insight": "Three PyPI packages deliver ZiChatBot malware via Zulip APIs on Wind..
10:10 am, May 7, 2026 Cybersecurity
Fake Claude AI website delivers new 'Beagle' Windows malware
{ "priority": "HIGH", "cve": "N/A", "target": "Windows", "threat_actor": "N/A", "patch_ready": false, "insight": "A fake Claude AI website is distributing a new undocumented backdoor malwa..
10:10 am, May 7, 2026 Cybersecurity
vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution
A dozen critical security vulnerabilities have been disclosed in the vm2 Node.js library that could be exploited by bad actors to break out of the sandbox and execute arbitrary code on susceptible sys..
5:10 am, May 7, 2026 Cybersecurity
An Adaptive Cyber Analytics UI for Web Honeypot Logs [Guest Diary], (Wed, May 6th)
[This is a Guest Diary by Eric Roldan, an ISC intern as part of the SANS.edu BACS program]
2:10 am, May 7, 2026 Cybersecurity
ISC Stormcast For Thursday, May 7th, 2026 https://isc.sans.edu/podcastdetail/9922, (Thu, May 7th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, May 7, 2026 Cybersecurity
Hackers abuse Google ads for GoDaddy ManageWP login phishing
{"priority": "HIGH", "cve": "N/A", "target": "ManageWP", "threat_actor": "N/A", "patch_ready": false, "insight": "Phishers are abusing Google ads to target ManageWP credentials, aiming to harvest logi..
10:10 pm, May 6, 2026 Cybersecurity
Mirai-Based xlabs_v1 Botnet Exploits ADB to Hijack IoT Devices for DDoS Attacks
{ "priority": "HIGH", "cve": "N/A", "target": "IoT Devices with ADB", "threat_actor": "xlabs_v1", "patch_ready": false, "insight": "New Mirai-derived botnet xlabs_v1 targets IoT devices wi..
9:10 pm, May 6, 2026 Cybersecurity
Critical vm2 sandbox bug lets attackers execute code on hosts
{ "priority": "CRITICAL", "cve": "N/A", "target": "vm2", "threat_actor": "N/A", "patch_ready": false, "insight": "A critical vulnerability in vm2 allows attackers to escape the sandbox and..
7:10 pm, May 6, 2026 Cybersecurity
New Cisco DoS flaw requires manual reboot to revive devices
Cisco patched a Crosswork Network Controller and Network Services Orchestrator denial-of-service vulnerability that requires manually rebooting targeted systems for recovery. [...]
6:10 pm, May 6, 2026 Cybersecurity
DAEMON Tools devs confirm breach, release malware-free version
{ "priority": "CRITICAL", "cve": "N/A", "target": "DAEMON Tools Lite", "threat_actor": "N/A", "patch_ready": true, "insight": "DAEMON Tools devs confirm breach, release malware-free versio..
5:10 pm, May 6, 2026 Cybersecurity
MuddyWater Uses Microsoft Teams to Steal Credentials in False Flag Ransomware Attack
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft Teams", "threat_actor": "MuddyWater", "patch_ready": false, "insight": "MuddyWater uses Microsoft Teams to steal credentials in a f..
3:10 pm, May 6, 2026 Cybersecurity
Why ransomware attacks succeed even when backups exist
{ "priority": "HIGH", "cve": "N/A", "target": "Backup systems", "threat_actor": "N/A", "patch_ready": false, "insight": "Ransomware attackers often target and destroy backups before encryp..
2:10 pm, May 6, 2026 Cybersecurity
Your AI Agents Are Already Inside the Perimeter. Do You Know What They're Doing?
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Enterprises are rapidly deploying AI agents without adequate governance or pol..
1:10 pm, May 6, 2026 Cybersecurity
The Hacker News Launches 'Cybersecurity Stars Awards 2026' — Submissions Now Open
{"priority":"INFO","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"The Hacker News launches 'Cybersecurity Stars Awards 2026' to recognize cybersecurity leaders and achi..
1:10 pm, May 6, 2026 Cybersecurity
Webinar: Why network incidents escalate and how to fix response gaps
Most network incidents don't escalate due to a lack of alerts; they escalate when response breaks down. This webinar explores how to fix gaps in triage, enrichment, and coordination. [...]
1:10 pm, May 6, 2026 Cybersecurity
MuddyWater hackers use Chaos ransomware as a decoy in attacks
The MuddyWater Iranian hackers disguised their operations as a Chaos ransomware attack, relying on Microsoft Teams social engineering to gain access and establish persistence. [...]
1:10 pm, May 6, 2026 Cybersecurity
Windows Phone Link Exploited by CloudZ RAT to Steal Credentials and OTPs
{ "priority": "HIGH", "cve": "N/A", "target": "Windows Phone Link", "threat_actor": "CloudZ RAT", "patch_ready": false, "insight": "CloudZ RAT and Pheno plugin used to steal credentials an..
10:10 am, May 6, 2026 Cybersecurity
Google's Android Apps Get Public Verification to Stop Supply Chain Attacks
{ "priority": "INFO", "cve": "N/A", "target": "Google Android Apps", "threat_actor": "N/A", "patch_ready": false, "insight": "Google introduces Binary Transparency for Android to prevent s..
10:10 am, May 6, 2026 Cybersecurity
Palo Alto Networks warns of firewall RCE zero-day exploited in attacks
Palo Alto Networks warned customers today that a critical-severity unpatched vulnerability in the PAN-OS User-ID Authentication Portal is being exploited in attacks. [...]
10:10 am, May 6, 2026 Cybersecurity
Palo Alto PAN-OS Flaw Under Active Exploitation Enables Remote Code Execution
{ "priority": "CRITICAL", "cve": "CVE-2026-0300", "target": "Palo Alto PAN-OS", "threat_actor": "N/A", "patch_ready": false, "insight": "A critical buffer overflow vulnerability in Palo Al..
8:10 am, May 6, 2026 Cybersecurity
ISC Stormcast For Wednesday, May 6th, 2026 https://isc.sans.edu/podcastdetail/9920, (Wed, May 6th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast details for Wednesday, May 6th, 2026." }
2:10 am, May 6, 2026 Cybersecurity
Instructure hacker claims data theft from 8,800 schools, universities
{ "priority": "HIGH", "cve": "N/A", "target": "Instructure", "threat_actor": "Instructure hacker", "patch_ready": false, "insight": "A hacker claims to have stolen 280 million data records..
10:10 pm, May 5, 2026 Cybersecurity
New stealthy Quasar Linux malware targets software developers
{ "priority": "HIGH", "cve": "N/A", "target": "Linux", "threat_actor": "N/A", "patch_ready": false, "insight": "New Quasar Linux malware targets software developers with rootkit, backdoor,..
10:10 pm, May 5, 2026 Cybersecurity
DAEMON Tools trojanized in supply-chain attack to deploy backdoor
Hackers trojanized installers for the DAEMON Tools software and since April 8, delivered a backdoor to thousands of systems that downloaded the product from the official website. [...]
8:10 pm, May 5, 2026 Cybersecurity
The EOL Blind Spot in Your CVE Feed: What SCA Tools Miss
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses how End-of-Life (EOL) software can create blind spots in..
7:10 pm, May 5, 2026 Cybersecurity
Student hacked Taiwan high-speed rail to trigger emergency brakes
{"priority":"CRITICAL","cve":"N/A","target":"Taiwan High-Speed Rail (THSR) TETRA communication system","threat_actor":"Individual hacker","patch_ready":false,"insight":"A university student hacked int..
6:10 pm, May 5, 2026 Cybersecurity
DAEMON Tools Supply Chain Attack Compromises Official Installers with Malware
{ "priority": "HIGH", "cve": "N/A", "target": "DAEMON Tools", "threat_actor": "N/A", "patch_ready": false, "insight": "A supply chain attack on DAEMON Tools compromises official installers..
5:10 pm, May 5, 2026 Cybersecurity
Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCE
{ "priority": "CRITICAL", "cve": "CVE-2026-23918", "target": "Apache HTTP Server", "threat_actor": "N/A", "patch_ready": true, "insight": "Apache HTTP/2 flaw CVE-2026-23918 enables DoS and..
5:10 pm, May 5, 2026 Cybersecurity
China-Linked UAT-8302 Targets Governments Using Shared APT Malware Across Regions
{ "priority": "HIGH", "cve": "N/A", "target": "Government entities", "threat_actor": "UAT-8302", "patch_ready": false, "insight": "China-linked APT group UAT-8302 targets government entiti..
4:10 pm, May 5, 2026 Cybersecurity
FTC to ban data broker Kochava from selling Americans’ location data
{ "priority": "INFO", "cve": "N/A", "target": "Kochava", "threat_actor": "N/A", "patch_ready": false, "insight": "The FTC will ban Kochava from selling location data without consumers' exp..
3:10 pm, May 5, 2026 Cybersecurity
The EOL Blind Spot in Your CVE Feed: What SCA Tools Don't Check.
{"priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses how End-of-Life (EOL) software can create blind spots in CVE feeds an..
2:10 pm, May 5, 2026 Cybersecurity
MetInfo CMS CVE-2026-29014 Exploited for Remote Code Execution Attacks
{ "priority": "CRITICAL", "cve": "CVE-2026-29014", "target": "MetInfo CMS", "threat_actor": "N/A", "patch_ready": false, "insight": "CVE-2026-29014 in MetInfo CMS is being exploited for re..
1:10 pm, May 5, 2026 Cybersecurity
The Back Door Attackers Know About — and Most Security Teams Still Haven’t Closed
{ "priority": "HIGH", "cve": "N/A", "target": "Google, Microsoft", "threat_actor": "N/A", "patch_ready": false, "insight": "OAuth tokens with no expiration date left behind by AI tools and..
1:10 pm, May 5, 2026 Cybersecurity
Vimeo data breach exposes personal information of 119,000 people
{ "priority": "HIGH", "cve": "N/A", "target": "Vimeo", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "ShinyHunters extortion gang stole personal info of 119,000 people f..
1:10 pm, May 5, 2026 Cybersecurity
Google now offers up to $1.5 million for some Android exploits
{ "priority": "INFO", "cve": "N/A", "target": "Google Android", "threat_actor": "N/A", "patch_ready": false, "insight": "Google updates its vulnerability rewards program for Android and Ch..
12:10 pm, May 5, 2026 Cybersecurity
Cleartext Passwords in MS Edge? In 2026?, (Mon, May 4th)
{"priority":"INFO","cve":"N/A","target":"MS Edge","threat_actor":"N/A","patch_ready":false,"insight":"Possible security concern with cleartext passwords in MS Edge in 2026"}
12:10 pm, May 5, 2026 Cybersecurity
SSL.com rotates their root certificate today, (Tue, May 5th)
{ "priority": "INFO", "cve": "N/A", "target": "SSL.com", "threat_actor": "N/A", "patch_ready": false, "insight": "SSL.com is rotating their root certificate on May 5, 2026, as part of norm..
12:10 pm, May 5, 2026 Cybersecurity
Karakurt extortion gang ‘cold case’ negotiator gets 8.5 years in prison
{"priority":"LOW","cve":"N/A","target":"N/A","threat_actor":"Karakurt","patch_ready":false,"insight":"A Latvian national was sentenced to 8.5 years in prison for their role as a cold case negotiator i..
11:10 am, May 5, 2026 Cybersecurity
We Scanned 1 Million Exposed AI Services. Here's How Bad the Security Actually Is
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The rapid adoption of AI services is putting progress in software security at ..
11:10 am, May 5, 2026 Cybersecurity
ScarCruft Hacks Gaming Platform to Deploy BirdCall Malware on Android and Windows
{ "priority": "HIGH", "cve": "N/A", "target": "Android and Windows", "threat_actor": "ScarCruft", "patch_ready": false, "insight": "ScarCruft compromises a video game platform to deploy Bi..
10:10 am, May 5, 2026 Cybersecurity
CloudZ malware abuses Microsoft Phone Link to steal SMS and OTPs
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft Phone Link", "threat_actor": "CloudZ", "patch_ready": false, "insight": "CloudZ malware uses a new plugin to hijack Microsoft Phone..
10:10 am, May 5, 2026 Cybersecurity
ScarCruft hackers push BirdCall Android malware via game platform
{ "priority": "HIGH", "cve": "N/A", "target": "Android", "threat_actor": "APT37", "patch_ready": false, "insight": "APT37 delivers BirdCall Android malware via a video game platform." }
9:10 am, May 5, 2026 Cybersecurity
Microsoft Details Phishing Campaign Targeting 35,000 Users Across 26 Countries
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft disclosed a large-scale credential theft campaign targeting 35..
8:10 am, May 5, 2026 Cybersecurity
Weaver E-cology RCE Flaw CVE-2026-22679 Actively Exploited via Debug API
{ "priority": "CRITICAL", "cve": "CVE-2026-22679", "target": "Weaver E-cology", "threat_actor": "N/A", "patch_ready": true, "insight": "CVE-2026-22679 is an actively exploited RCE flaw in ..
8:10 am, May 5, 2026 Cybersecurity
ISC Stormcast For Tuesday, May 5th, 2026 https://isc.sans.edu/podcastdetail/9918, (Tue, May 5th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast for May 5th, 2026, providing cybersecurity updates and a..
2:10 am, May 5, 2026 Cybersecurity
