List cybersec
Former ransomware negotiator pleads guilty to BlackCat attacks
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "BlackCat (ALPHV)", "patch_ready": false, "insight": "Former ransomware negotiator pleads guilty to BlackCat attacks on..
11:10 am, April 21, 2026 Cybersecurity
NGate Android malware uses HandyPay NFC app to steal card data
{ "priority": "HIGH", "cve": "N/A", "target": "Android users", "threat_actor": "N/A", "patch_ready": false, "insight": "A new variant of NGate malware targets Android users by hiding in a ..
9:10 am, April 21, 2026 Cybersecurity
A .WAV With A Payload, (Tue, Apr 21st)
{ "priority": "HIGH", "cve": "N/A", "target": ".WAV files", "threat_actor": "N/A", "patch_ready": false, "insight": "Threat actors are using .wav files as a vector for malware." }
8:10 am, April 21, 2026 Cybersecurity
CISA Adds 8 Exploited Flaws to KEV, Sets April-May 2026 Federal Deadlines
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added eight new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, including three flaws impacting Cisco C..
7:10 am, April 21, 2026 Cybersecurity
ISC Stormcast For Tuesday, April 21st, 2026 https://isc.sans.edu/podcastdetail/9900, (Tue, Apr 21st)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, April 21, 2026 Cybersecurity
KelpDAO suffers $290 million heist tied to Lazarus hackers
State-sponsored North Korean hackers are likely behind the $290 million crypto-heist that impacted the KelpDAO DeFi project on Saturday. [...]
11:10 pm, April 20, 2026 Cybersecurity
China's Apple App Store infiltrated by crypto-stealing wallet apps
{"priority": "HIGH", "cve": "N/A", "target": "Apple App Store", "threat_actor": "N/A", "patch_ready": false, "insight": "Malicious crypto wallet apps impersonate popular wallets on Apple's App Store t..
10:10 pm, April 20, 2026 Cybersecurity
The Gentlemen ransomware now uses SystemBC for bot-powered attacks
{ "priority": "HIGH", "cve": "N/A", "target": "Gentlemen ransomware", "threat_actor": "Gentlemen ransomware gang", "patch_ready": false, "insight": "Gentlemen ransomware now uses SystemBC ..
8:10 pm, April 20, 2026 Cybersecurity
SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files
{"priority": "CRITICAL", "cve": "CVE-2026-5760", "target": "SGLang", "threat_actor": "N/A", "patch_ready": false, "insight": "CVE-2026-5760 in SGLang allows RCE via malicious GGUF model files with a C..
7:10 pm, April 20, 2026 Cybersecurity
Seiko USA website defaced as hacker claims customer data theft
{ "priority": "HIGH", "cve": "N/A", "target": "Seiko USA website", "threat_actor": "N/A", "patch_ready": false, "insight": "Seiko USA website defaced, attackers claim to have stolen custom..
7:10 pm, April 20, 2026 Cybersecurity
Microsoft: Teams increasingly abused in helpdesk impersonation attacks
Microsoft is warning of threat actors increasingly abusing external Microsoft Teams collaboration and relying on legitimate tools for access and lateral movement on enterprise networks. [...]
4:10 pm, April 20, 2026 Cybersecurity
⚡ Weekly Recap: Vercel Hack, Push Fraud, QEMU Abused, New Android RATs Emerge & More
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Weekly recap of various cyber attacks and emerging threats, including Vercel h..
3:10 pm, April 20, 2026 Cybersecurity
British Scattered Spider hacker pleads guilty to crypto theft charges
{"priority":"LOW","cve":"N/A","target":"N/A","threat_actor":"Scattered Spider","patch_ready":false,"insight":"British hacker pleads guilty to crypto theft charges"}
2:10 pm, April 20, 2026 Cybersecurity
The backup myth that is putting businesses at risk
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses the importance of Business Continuity and Disaster Recov..
2:10 pm, April 20, 2026 Cybersecurity
Why Most AI Deployments Stall After the Demo
The fastest way to fall in love with an AI tool is to watch the demo. Everything moves quickly. Prompts land cleanly. The system produces impressive outputs in seconds. It feels like the beginning of ..
1:10 pm, April 20, 2026 Cybersecurity
Microsoft tests Windows Explorer speed, performance improvements
{ "priority": "INFO", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft is testing speed and performance improvements for Windows Fil..
1:10 pm, April 20, 2026 Cybersecurity
Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain
{ "priority": "CRITICAL", "cve": "N/A", "target": "Anthropic MCP", "threat_actor": "N/A", "patch_ready": false, "insight": "Critical design vulnerability in Anthropic MCP enables remote co..
11:10 am, April 20, 2026 Cybersecurity
Microsoft pulls service update causing Teams launch failures
{ "priority": "MEDIUM", "cve": "N/A", "target": "Microsoft Teams", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft reverted a service update that was causing launch failu..
10:10 am, April 20, 2026 Cybersecurity
Researchers Detect ZionSiphon Malware Targeting Israeli Water, Desalination OT Systems
{ "priority": "HIGH", "cve": "N/A", "target": "Israeli water treatment and desalination systems", "threat_actor": "Darktrace", "patch_ready": false, "insight": "New malware called ZionSiph..
9:10 am, April 20, 2026 Cybersecurity
Microsoft releases emergency updates to fix Windows Server issues
{"priority": "MEDIUM", "cve": "N/A", "target": "Windows Server", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft releases emergency updates to fix Windows Server issues caused by Apr..
9:10 am, April 20, 2026 Cybersecurity
Handling the CVE Flood With EPSS, (Mon, Apr 20th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses the challenge of handling the daily flood of new CVE ent..
7:10 am, April 20, 2026 Cybersecurity
Vercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials
{ "priority": "HIGH", "cve": "N/A", "target": "Vercel", "threat_actor": "N/A", "patch_ready": false, "insight": "Vercel disclosed a security breach due to Context AI hack, exposing limited..
5:10 am, April 20, 2026 Cybersecurity
ISC Stormcast For Monday, April 20th, 2026 https://isc.sans.edu/podcastdetail/9898, (Mon, Apr 20th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "SANS Internet Storm Center podcast for April 20th, 2026." }
2:10 am, April 20, 2026 Cybersecurity
Vercel confirms breach as hackers claim to be selling stolen data
{ "priority": "HIGH", "cve": "N/A", "target": "Vercel", "threat_actor": "N/A", "patch_ready": false, "insight": "Vercel disclosed a security breach after hackers claimed to have stolen and..
6:10 pm, April 19, 2026 Cybersecurity
Apple account change alerts abused to send phishing emails
{ "priority": "HIGH", "cve": "N/A", "target": "Apple", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers are abusing Apple's account change notifications to send phishing ..
4:10 pm, April 19, 2026 Cybersecurity
NIST to stop rating non-priority flaws due to volume increase
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "NIST will cease rating non-priority vulnerabilities due to increased submissio..
3:10 pm, April 19, 2026 Cybersecurity
Critical flaw in Protobuf library enables JavaScript code execution
Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used JavaScript implementation of Google's Protocol Buffers. [...]
4:10 pm, April 18, 2026 Cybersecurity
Microsoft Teams right-click paste broken by Edge update bug
{"priority":"MEDIUM","cve":"N/A","target":"Microsoft Teams","threat_actor":"N/A","patch_ready":false,"insight":"Microsoft Edge update breaks right-click paste in Microsoft Teams desktop client"}
3:10 pm, April 18, 2026 Cybersecurity
NAKIVO v11.2: Ransomware Defense, Faster Replication, vSphere 9, and Proxmox VE 9.0 Support
{"priority":"INFO","cve":"N/A","target":"NAKIVO Backup & Replication v11.2","threat_actor":"N/A","patch_ready":false,"insight":"NAKIVO Inc. announced the general availability of NAKIVO Backup & Replic..
2:10 pm, April 18, 2026 Cybersecurity
$13.74M Hack Shuts Down Sanctioned Grinex Exchange After Intelligence Claims
{ "priority": "HIGH", "cve": "N/A", "target": "Grinex Exchange", "threat_actor": "Western intelligence agencies", "patch_ready": false, "insight": "A $13.74M hack on Grinex Exchange attrib..
9:10 am, April 18, 2026 Cybersecurity
[Webinar] Eliminate Ghost Identities Before They Expose Your Enterprise Data
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The webinar discusses the risks associated with unmanaged non-human identities..
9:10 am, April 18, 2026 Cybersecurity
Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet
``` { "priority": "HIGH", "cve": "CVE-2024-3721", "target": "TBK DVR", "threat_actor": "Mirai Variant Nexcorium", "patch_ready": false, "insight": "Mirai Variant Nexcorium exploits CVE-202..
7:10 am, April 18, 2026 Cybersecurity
Payouts King ransomware uses QEMU VMs to bypass endpoint security
{ "priority": "HIGH", "cve": "N/A", "target": "Endpoint security systems", "threat_actor": "Payouts King", "patch_ready": false, "insight": "Payouts King ransomware uses QEMU VMs to bypass..
8:10 pm, April 17, 2026 Cybersecurity
Inside an Underground Guide: How Threat Actors Vet Stolen Credit Card Shops
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses how threat actors verify trust in underground credit car..
3:10 pm, April 17, 2026 Cybersecurity
Grinex exchange blames "Western intelligence" for $13.7M crypto hack
{"priority": "HIGH", "cve": "N/A", "target": "Grinex exchange", "threat_actor": "Western intelligence agencies", "patch_ready": false, "insight": "Grinex exchange suffered a $13.7M crypto hack attribu..
3:10 pm, April 17, 2026 Cybersecurity
Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched
Huntress is warning that threat actors are exploiting three recently disclosed security flaws in Microsoft Defender to gain elevated privileges in compromised systems. The activity involves the explo..
2:10 pm, April 17, 2026 Cybersecurity
Webinar: From phishing to fallout — Why MSPs must rethink both security and recovery
{ "priority": "INFO", "cve": "N/A", "target": "MSPs (Managed Service Providers)", "threat_actor": "N/A", "patch_ready": false, "insight": "The webinar highlights the evolving threat of cyb..
1:10 pm, April 17, 2026 Cybersecurity
Google Blocks 8.3B Policy-Violating Ads in 2025, Launches Android 17 Privacy Overhaul
{ "priority": "INFO", "cve": "N/A", "target": "Google", "threat_actor": "N/A", "patch_ready": false, "insight": "Google blocked 8.3B policy-violating ads in 2025 and launched Android 17 pr..
12:10 pm, April 17, 2026 Cybersecurity
CISA flags Apache ActiveMQ flaw as actively exploited in attacks
{ "priority": "HIGH", "cve": "N/A", "target": "Apache ActiveMQ", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA warns of active exploitation of a high-severity Apache ActiveM..
10:10 am, April 17, 2026 Cybersecurity
Man gets 30 months for selling thousands of hacked DraftKings accounts
{ "priority": "LOW", "cve": "N/A", "target": "DraftKings", "threat_actor": "N/A", "patch_ready": false, "insight": "A 23-year-old was sentenced to 30 months in prison for selling access to..
8:10 am, April 17, 2026 Cybersecurity
NIST Limits CVE Enrichment After 263% Surge in Vulnerability Submissions
{"priority":"INFO","cve":"N/A","target":"NIST NVD","threat_actor":"N/A","patch_ready":false,"insight":"NIST limits CVE enrichment due to 263% surge in vulnerability submissions."}
8:10 am, April 17, 2026 Cybersecurity
Microsoft: Some Windows servers enter reboot loops after April patches
{ "priority": "HIGH", "cve": "N/A", "target": "Windows", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft warns that some Windows domain controllers are entering restart ..
8:10 am, April 17, 2026 Cybersecurity
Operation PowerOFF Seizes 53 DDoS Domains, Exposes 3 Million Criminal Accounts
{ "priority": "HIGH", "cve": "N/A", "target": "DDoS-for-hire services", "threat_actor": "N/A", "patch_ready": false, "insight": "Operation PowerOFF disrupts 53 DDoS domains, exposing 3 mil..
7:10 am, April 17, 2026 Cybersecurity
Recently leaked Windows zero-days now exploited in attacks
{ "priority": "CRITICAL", "cve": "N/A", "target": "Windows", "threat_actor": "N/A", "patch_ready": false, "insight": "Threat actors are exploiting recently disclosed Windows zero-days to g..
7:10 am, April 17, 2026 Cybersecurity
Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation
{"priority":"CRITICAL","cve":"CVE-2026-34197","target":"Apache ActiveMQ Classic","threat_actor":"N/A","patch_ready":false,"insight":"Apache ActiveMQ CVE-2026-34197 is under active exploitation and has..
4:10 am, April 17, 2026 Cybersecurity
ISC Stormcast For Friday, April 17th, 2026 https://isc.sans.edu/podcastdetail/9896, (Fri, Apr 17th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, April 17, 2026 Cybersecurity
Lumma Stealer infection with Sectop RAT (ArechClient2), (Fri, Apr 17th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Introduction to a Lumma Stealer infection with Sectop RAT (ArechClient2) on Ap..
1:10 am, April 17, 2026 Cybersecurity
Operation PowerOFF identifies 75k DDoS users, takes down 53 domains
The latest wave of "Operation PowerOFF," on April 13, 2026, targeted the distributed denial-of-service (DDoS) ecosystem and its users across 21 countries. [...]
11:10 pm, April 16, 2026 Cybersecurity
ZionSiphon malware designed to sabotage water treatment systems
{ "priority": "CRITICAL", "cve": "N/A", "target": "Water treatment and desalination systems", "threat_actor": "N/A", "patch_ready": false, "insight": "New malware ZionSiphon targets water ..
10:10 pm, April 16, 2026 Cybersecurity
New Microsoft Defender “RedSun” zero-day PoC grants SYSTEM privileges
{ "priority": "CRITICAL", "cve": "N/A", "target": "Microsoft Defender", "threat_actor": "Chaotic Eclipse", "patch_ready": false, "insight": "A proof-of-concept exploit for a Microsoft Defe..
9:10 pm, April 16, 2026 Cybersecurity
