List cybersec
Newly Discovered PowMix Botnet Hits Czech Workers Using Randomized C2 Traffic
{ "priority": "HIGH", "cve": "N/A", "target": "Czech Republic workforce", "threat_actor": "PowMix", "patch_ready": false, "insight": "Newly discovered PowMix botnet targets Czech workers w..
7:10 pm, April 16, 2026 Cybersecurity
Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face
Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware hosted on Hugging Face Spaces. [...]
5:10 pm, April 16, 2026 Cybersecurity
Google expands Gemini AI use to fight malicious ads on its platform
{ "priority": "MEDIUM", "cve": "N/A", "target": "Google", "threat_actor": "N/A", "patch_ready": false, "insight": "Google utilizes Gemini AI to enhance detection and blocking of malicious ..
4:10 pm, April 16, 2026 Cybersecurity
ThreatsDay Bulletin: Defender 0-Day, SonicWall Brute-Force, 17-Year-Old Excel RCE and 15 More Stories
{"priority": "HIGH", "cve": "N/A", "target": "Multiple", "threat_actor": "N/A", "patch_ready": false, "insight": "Multiple threats disclosed, including a Defender 0-Day, SonicWall brute-force attacks,..
2:10 pm, April 16, 2026 Cybersecurity
Most "AI SOCs" Are Just Faster Triage. That's Not Enough.
AI-powered SOC tools promise automation, but most only speed up triage instead of reducing real workload. Tines shows how real gains come from end-to-end workflows that execute actions across systems,..
2:10 pm, April 16, 2026 Cybersecurity
New ATHR vishing platform uses AI voice agents for automated attacks
A new cybercrime platform called ATHR can harvest credentials via fully automated voice phishing attacks that use both human operators and AI agents for the social engineering phase. [...]
2:10 pm, April 16, 2026 Cybersecurity
[Webinar] Find and Eliminate Orphaned Non-Human Identities in Your Environment
In 2024, compromised service accounts and forgotten API keys were behind 68% of cloud breaches. Not phishing. Not weak passwords. Unmanaged non-human identities that nobody was watching. For every ..
1:10 pm, April 16, 2026 Cybersecurity
Hidden Passenger? How Taboola Routes Logged-In Banking Sessions to Temu
{ "priority": "HIGH", "cve": "N/A", "target": "Taboola, Temu", "threat_actor": "N/A", "patch_ready": false, "insight": "Taboola routed logged-in banking sessions to Temu without bank knowl..
12:10 pm, April 16, 2026 Cybersecurity
Obsidian Plugin Abuse Delivers PHANTOMPULSE RAT in Targeted Finance, Crypto Attacks
A "novel" social engineering campaign has been observed abusing Obsidian, a cross-platform note-taking application, as an initial access vector to distribute a previously undocumented Windows remote a..
12:10 pm, April 16, 2026 Cybersecurity
Cisco Patches Four Critical Identity Services, Webex Flaws Enabling Code Execution
{ "priority": "CRITICAL", "cve": "CVE-2026-20184", "target": "Cisco Identity Services, Webex Services", "threat_actor": "N/A", "patch_ready": true, "insight": "Cisco patches critical flaws..
12:10 pm, April 16, 2026 Cybersecurity
Cisco says critical Webex Services flaw requires customer action
{"priority":"CRITICAL","cve":"N/A","target":"Cisco Webex Services","threat_actor":"N/A","patch_ready":true,"insight":"Cisco patches critical improper certificate validation flaw in Webex Services requ..
12:10 pm, April 16, 2026 Cybersecurity
Data breach at edtech giant McGraw Hill affects 13.5 million accounts
The ShinyHunters extortion group has leaked data from 13.5 million McGraw Hill user accounts, stolen after breaching the company's Salesforce environment earlier this month. [...]
11:10 am, April 16, 2026 Cybersecurity
US nationals behind DPRK IT worker 'laptop farm' sent to prison
Two U.S. nationals have been sent to prison for helping North Korean remote information technology (IT) workers to pose as U.S. residents and get hired by over 100 companies across the country, includ..
9:10 am, April 16, 2026 Cybersecurity
Microsoft: April Windows Server 2025 update may fail to install
{"priority":"MEDIUM","cve":"N/A","target":"Windows Server 2025","threat_actor":"N/A","patch_ready":false,"insight":"Microsoft is investigating an installation issue with the April KB5082063 security u..
8:10 am, April 16, 2026 Cybersecurity
UAC-0247 Targets Ukrainian Clinics and Government in Data-Theft Malware Campaign
The Computer Emergencies Response Team of Ukraine (CERT-UA) has disclosed details of a new campaign that has targeted governments and municipal healthcare institutions, mainly clinics and emergency..
7:10 am, April 16, 2026 Cybersecurity
ISC Stormcast For Thursday, April 16th, 2026 https://isc.sans.edu/podcastdetail/9894, (Thu, Apr 16th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "This is a podcast episode from SANS Internet Storm Center, dated Thursday, Apr..
2:10 am, April 16, 2026 Cybersecurity
[Guest Diary] Compromised DVRs and Finding Them in the Wild, (Thu, Apr 16th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A guest diary entry by Alec Jaffe discusses compromised DVRs and finding them ..
12:10 am, April 16, 2026 Cybersecurity
Critical Nginx UI auth bypass flaw now actively exploited in the wild
A critical vulnerability in Nginx UI with Model Context Protocol (MCP) support is now being exploited in the wild for full server takeover without authentication. [...]
11:10 pm, April 15, 2026 Cybersecurity
New AgingFly malware used in attacks on Ukraine govt, hospitals
{ "priority": "HIGH", "cve": "N/A", "target": "Ukraine govt, hospitals", "threat_actor": "N/A", "patch_ready": false, "insight": "AgingFly malware targets Ukraine govt and hospitals, steal..
10:10 pm, April 15, 2026 Cybersecurity
WordPress plugin suite hacked to push malware to thousands of sites
More than 30 WordPress plugins in the EssentialPlugin package have been compromised with malicious code that allows unauthorized access to websites running them. [...]
9:10 pm, April 15, 2026 Cybersecurity
n8n Webhooks Abused Since October 2025 to Deliver Malware via Phishing Emails
Threat actors have been observed weaponizing n8n, a popular artificial intelligence (AI) workflow automation platform, to facilitate sophisticated phishing campaigns and deliver malicious payloads o..
6:10 pm, April 15, 2026 Cybersecurity
Signed software abused to deploy antivirus-killing scripts
A digitally signed adware tool has deployed payloads running with SYSTEM privileges that disabled antivirus protections on thousands of endpoints, some in the educational, utilities, government, and h..
6:10 pm, April 15, 2026 Cybersecurity
Microsoft pays $2.3M for cloud and AI flaws at Zero Day Quest
{"priority": "INFO", "cve": "N/A", "target": "Microsoft", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft awards $2.3 million for cloud and AI vulnerabilities found during Zero Day ..
5:10 pm, April 15, 2026 Cybersecurity
CISA flags Windows Task Host vulnerability as exploited in attacks
{ "priority": "CRITICAL", "cve": "N/A", "target": "Windows Task Host", "threat_actor": "N/A", "patch_ready": false, "insight": "CISA warns of exploited Windows Task Host vulnerability allo..
3:10 pm, April 15, 2026 Cybersecurity
April Patch Tuesday Fixes Critical Flaws Across SAP, Adobe, Microsoft, Fortinet, and More
A number of critical vulnerabilities impacting products from Adobe, Fortinet, Microsoft, and SAP have taken center stage in April's Patch Tuesday releases. Topping the list is an SQL injection vulne..
2:10 pm, April 15, 2026 Cybersecurity
Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover
{ "priority": "CRITICAL", "cve": "CVE-2026-33032", "target": "nginx-ui", "threat_actor": "Pluto Security", "patch_ready": false, "insight": "A critical authentication bypass vulnerability ..
2:10 pm, April 15, 2026 Cybersecurity
Rolling Networks: Securing the Transportation Sector
{ "priority": "INFO", "cve": "N/A", "target": "Transportation Sector", "threat_actor": "N/A", "patch_ready": false, "insight": "The transportation sector faces emerging cyber threats due t..
2:10 pm, April 15, 2026 Cybersecurity
Deterministic + Agentic AI: The Architecture Exposure Validation Requires
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses the rapid adoption of AI across industries and its impli..
1:10 pm, April 15, 2026 Cybersecurity
Microsoft: April updates trigger BitLocker key prompts on some servers
{ "priority": "MEDIUM", "cve": "N/A", "target": "Windows Server 2025", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft confirmed that April updates trigger BitLocker key..
12:10 pm, April 15, 2026 Cybersecurity
Microsoft fixes bug behind Windows Server 2025 automatic upgrades
{ "priority": "MEDIUM", "cve": "N/A", "target": "Windows Server 2019/2022", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft fixed a bug causing unexpected upgrades to Win..
11:10 am, April 15, 2026 Cybersecurity
Microsoft Issues Patches for SharePoint Zero-Day and 168 Other New Vulnerabilities
{ "priority": "CRITICAL", "cve": "N/A", "target": "Microsoft SharePoint", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft patches a zero-day vulnerability in SharePoint a..
9:10 am, April 15, 2026 Cybersecurity
OpenAI Launches GPT-5.4-Cyber with Expanded Access for Security Teams
{ "priority": "INFO", "cve": "N/A", "target": "GPT-5.4-Cyber", "threat_actor": "N/A", "patch_ready": false, "insight": "OpenAI has launched GPT-5.4-Cyber, a variant of its GPT-5.4 model op..
6:10 am, April 15, 2026 Cybersecurity
ISC Stormcast For Wednesday, April 15th, 2026 https://isc.sans.edu/podcastdetail/9892, (Wed, Apr 15th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, April 15, 2026 Cybersecurity
Scanning for AI Models, (Tue, Apr 14th)
{ "priority": "INFO", "cve": "N/A", "target": "AI models (e.g., claude, openclaw, huggingface)", "threat_actor": "N/A", "patch_ready": false, "insight": "DShield sensors have been reportin..
1:10 am, April 15, 2026 Cybersecurity
Microsoft adds Windows protections for malicious Remote Desktop files
{ "priority": "MEDIUM", "cve": "N/A", "target": "Windows", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft introduces new protections for Windows against phishing attack..
11:10 pm, April 14, 2026 Cybersecurity
Over 100 Chrome Web Store extensions steal user accounts, data
More than 100 malicious extensions in the official Chrome Web Store are attempting to steal Google OAuth2 Bearer tokens, deploy backdoors, and carry out ad fraud. [...]
10:10 pm, April 14, 2026 Cybersecurity
Patch Tuesday, April 2026 Edition
{ "priority": "CRITICAL", "cve": "N/A", "target": "Microsoft Windows, Google Chrome, Adobe Reader", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft patched 167 security v..
10:10 pm, April 14, 2026 Cybersecurity
Crypto-exchange Kraken extorted by hackers after insider breach
{"priority": "HIGH", "cve": "N/A", "target": "Kraken", "threat_actor": "N/A", "patch_ready": false, "insight": "Kraken is being extorted by hackers who threaten to release videos showing internal syst..
10:10 pm, April 14, 2026 Cybersecurity
Over 100 Chrome extensions in Web Store target users accounts and data
{ "priority": "CRITICAL", "cve": "N/A", "target": "Google Chrome", "threat_actor": "N/A", "patch_ready": false, "insight": "Over 100 malicious Chrome extensions in the Web Store are attemp..
9:10 pm, April 14, 2026 Cybersecurity
Microsoft April 2026 Patch Tuesday fixes 167 flaws, 2 zero-days
{ "priority": "CRITICAL", "cve": "N/A", "target": "Microsoft", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft's April 2026 Patch Tuesday fixes 167 flaws, including 2 zer..
6:10 pm, April 14, 2026 Cybersecurity
Microsoft Patch Tuesday April 2026., (Tue, Apr 14th)
{ "priority": "INFO", "cve": "N/A", "target": "Microsoft", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft released a significant number of patches on Patch Tuesday in A..
6:10 pm, April 14, 2026 Cybersecurity
Windows 11 cumulative updates KB5083769 & KB5082052 released
{ "priority": "MEDIUM", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft releases cumulative updates KB5083769 and KB5082052 for Wind..
6:10 pm, April 14, 2026 Cybersecurity
McGraw-Hill confirms data breach following extortion threat
Education company McGraw-Hill has confirmed in a statement to BleepingComputer that hackers exploited a Salesforce misconfiguration and accessed its internal data. [...]
6:10 pm, April 14, 2026 Cybersecurity
Microsoft releases Windows 10 KB5082200 extended security update
{ "priority": "CRITICAL", "cve": "N/A", "target": "Windows 10", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft released Windows 10 KB5082200 extended security update to ..
6:10 pm, April 14, 2026 Cybersecurity
New PHP Composer Flaws Enable Arbitrary Command Execution — Patches Released
{ "priority": "HIGH", "cve": "CVE-2026-40176", "target": "PHP Composer", "threat_actor": "N/A", "patch_ready": true, "insight": "Two high-severity security vulnerabilities in Composer, a P..
5:10 pm, April 14, 2026 Cybersecurity
Fake Ledger Live app on Apple’s App Store stole $9.5M in crypto
A malicious Ledger Live app for macOS available from Apple's App Store has drained approximately $9.5 million in cryptocurrency from 50 victims in just a few days this month. [...]
5:10 pm, April 14, 2026 Cybersecurity
AI-Driven Pushpaganda Scam Exploits Google Discover to Spread Scareware and Ad Fraud
{ "priority": "HIGH", "cve": "N/A", "target": "Google Discover", "threat_actor": "N/A", "patch_ready": false, "insight": "Researchers uncover AI-driven ad fraud scheme using SEO and AI-gen..
4:10 pm, April 14, 2026 Cybersecurity
Microsoft rolls out fast-track to reinstate Windows hardware dev accounts
{ "priority": "INFO", "cve": "N/A", "target": "Microsoft Windows Hardware Program", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft introduces a fast-track process for d..
4:10 pm, April 14, 2026 Cybersecurity
5 Ways Zero Trust Maximizes Identity Security
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses how Zero Trust security model maximizes identity securit..
3:10 pm, April 14, 2026 Cybersecurity
Google Adds Rust-Based DNS Parser into Pixel 10 Modem to Enhance Security
{"priority":"MEDIUM","cve":"N/A","target":"Pixel 10 Modem","threat_actor":"N/A","patch_ready":true,"insight":"Google integrates Rust-based DNS parser into Pixel 10 modem firmware to enhance security a..
2:10 pm, April 14, 2026 Cybersecurity
