List cybersec
ISC Stormcast For Thursday, July 9th, 2026 https://isc.sans.edu/podcastdetail/10000, (Thu, Jul 9th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A summary of an article on how to earn a billion dollars." }
2:10 am, July 9, 2026 Cybersecurity
Mount Royal University confirms breach as hackers claim attack
Mount Royal University in Calgary says hackers stole and then deleted data from its file storage systems after breaching the university's network. [...]
10:10 pm, July 8, 2026 Cybersecurity
Fake Paysafe, Skrill SDKs on NPM and PyPi steal credentials
{ "priority": "HIGH", "cve": "N/A", "target": "Paysafe, Skrill, Neteller", "threat_actor": "N/A", "patch_ready": false, "insight": "Malicious packages on npm and PyPI deliver stealer malwa..
8:10 pm, July 8, 2026 Cybersecurity
Hackers exploit Roundcube flaw to spy on academic researchers
A China-linked threat cluster has been exploiting vulnerable Roundcube servers at U.S. and Canadian universities to steal credentials and deploy backdoor malware. [...]
7:10 pm, July 8, 2026 Cybersecurity
AI Coding Agents Found Triggering Endpoint Security Rules Built to Catch Attackers
{"priority":"MEDIUM","cve":"N/A","target":"AI Coding Agents (Claude Code, Cursor, OpenAI Codex)","threat_actor":"N/A","patch_ready":false,"insight":"AI coding agents are triggering endpoint security r..
6:10 pm, July 8, 2026 Cybersecurity
New HalluSquatting Attack Could Trick AI Coding Assistants Into Installing Botnet Malware
AI coding assistants have a habit of making things up. Ask one to fetch a popular tool, and it will sometimes hand back a real-sounding name for a project that does not exist. New research, which its..
5:10 pm, July 8, 2026 Cybersecurity
Entra passkey enrollment vishing targets Microsoft 365 users
A threat actor has been targeting organizations across multiple sectors with voice-based fake security requests that ask Microsoft 365 users to enroll a new Entra passkey. [...]
5:10 pm, July 8, 2026 Cybersecurity
Ubiquiti Patches Critical UniFi Flaws Across Connect, Talk, Access, Protect, and OS
{ "priority": "CRITICAL", "cve": "CVE-2026-50746", "target": "Ubiquiti UniFi", "threat_actor": "N/A", "patch_ready": true, "insight": "Ubiquiti patches critical UniFi flaws across Connect,..
3:10 pm, July 8, 2026 Cybersecurity
SCMBANKER Malware Uses ClickFix Lures to Target Mexican Banking Users
{ "priority": "HIGH", "cve": "N/A", "target": "Mexican banking users", "threat_actor": "REF6045", "patch_ready": false, "insight": "SCMBANKER malware uses ClickFix lures to target Mexican ..
2:10 pm, July 8, 2026 Cybersecurity
New Ghost Phishing Wave Is Breaking Traditional Email Security
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft 365", "threat_actor": "EvilTokens", "patch_ready": false, "insight": "EvilTokens campaign uses ghost phishing to bypass traditional..
2:10 pm, July 8, 2026 Cybersecurity
3 Ways AI Powers Service Desk Attacks and How to Prevent Them
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "AI-powered service desk impersonation attacks are becoming more convincing, pe..
2:10 pm, July 8, 2026 Cybersecurity
Felons, Fraudsters Flog Offensive Cybersecurity Startup
A cybersecurity startup dangling millions of dollars to acquire zero-day security vulnerabilities in popular software is run by a pair of far-right conspiracy theorists and convicted felons whose most..
1:10 pm, July 8, 2026 Cybersecurity
GitHub Copilot Refuses Harmful Requests in Chat, Then Writes Them in Code
{ "priority": "MEDIUM", "cve": "N/A", "target": "GitHub Copilot", "threat_actor": "N/A", "patch_ready": false, "insight": "AI coding assistant GitHub Copilot can bypass harmful request ref..
12:10 pm, July 8, 2026 Cybersecurity
Telco giant KDDI says data breach affects over 12 million people
{ "priority": "HIGH", "cve": "N/A", "target": "KDDI", "threat_actor": "N/A", "patch_ready": false, "insight": "KDDI experienced a data breach affecting over 12 million people, exposing ema..
12:10 pm, July 8, 2026 Cybersecurity
The Verification Step Is the New ATO Battleground in 2026
{"priority":"INFO","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"The verification step is now a critical battleground in account takeover (ATO) attacks, with passkeys ..
12:10 pm, July 8, 2026 Cybersecurity
GitHub 'Verified' Commits Can Be Rewritten Into New Hashes Without Breaking Signatures
{ "priority": "CRITICAL", "cve": "N/A", "target": "GitHub", "threat_actor": "N/A", "patch_ready": false, "insight": "GitHub's 'Verified' commits can be rewritten into new hashes without br..
12:10 pm, July 8, 2026 Cybersecurity
DuckDuckGo browser now blocks YouTube video ads
{ "priority": "INFO", "cve": "N/A", "target": "DuckDuckGo browser", "threat_actor": "N/A", "patch_ready": false, "insight": "DuckDuckGo browser now blocks YouTube video ads, enhancing user..
12:10 pm, July 8, 2026 Cybersecurity
China-Linked UAT-7810 Expands ORB Network With New LONGLEASH Malware
{ "priority": "HIGH", "cve": "N/A", "target": "Internet-facing networking devices", "threat_actor": "UAT-7810", "patch_ready": false, "insight": "China-linked UAT-7810 APT actor expands OR..
10:10 am, July 8, 2026 Cybersecurity
CISA orders feds to prioritize patching Langflow auth bypass flaw
{ "priority": "CRITICAL", "cve": "N/A", "target": "Langflow", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA orders federal agencies to patch an actively exploited authentica..
10:10 am, July 8, 2026 Cybersecurity
My Stack Simulator, (Wed, Jul 8th)
{"priority":"INFO","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"The stack is a memory region where a program stores temporary data, and its management is crucial to p..
9:10 am, July 8, 2026 Cybersecurity
Ubiquiti warns of new max severity UniFi OS vulnerability
{ "priority": "CRITICAL", "cve": "N/A", "target": "UniFi OS", "threat_actor": "N/A", "patch_ready": true, "insight": "Ubiquiti patches max severity UniFi OS vulnerability exploitable in co..
9:10 am, July 8, 2026 Cybersecurity
CISA orders feds to patch max severity ColdFusion flaw by Friday
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered government agencies to patch an actively exploited maximum-severity flaw in the Adobe ColdFusion commercial web app develop..
8:10 am, July 8, 2026 Cybersecurity
CISA Adds 4 Actively Exploited Adobe, Joomla, and Langflow Flaws to KEV
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The..
7:10 am, July 8, 2026 Cybersecurity
15-Year-Old GhostLock Flaw Enables Root and Container Escape on Most Linux Distros
{ "priority": "CRITICAL", "cve": "CVE-2026-43499", "target": "Linux kernel", "threat_actor": "N/A", "patch_ready": false, "insight": "A 15-year-old Linux kernel flaw allows any logged-in u..
7:10 am, July 8, 2026 Cybersecurity
ISC Stormcast For Wednesday, July 8th, 2026 https://isc.sans.edu/podcastdetail/9998, (Wed, Jul 8th)
{"priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A summary of an article on how to earn a billion dollars."}
2:10 am, July 8, 2026 Cybersecurity
Accenture confirms breach after hacker offers stolen data for sale
IT services giant Accenture has confirmed it suffered a security breach after a threat actor claimed to have stolen 35 GB of source code and other data from the company. [...]
10:10 pm, July 7, 2026 Cybersecurity
More Odd DNS Records: NIMLOC, (Tue, Jul 7th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses NIMLOC, an unusual DNS record also known as NSEC3PARAM, ..
7:10 pm, July 7, 2026 Cybersecurity
Chinese hackers develop LONGLEASH malware to expand ORB network
{ "priority": "HIGH", "cve": "N/A", "target": "Ruckus routers", "threat_actor": "UAT-7810", "patch_ready": false, "insight": "Chinese hackers tracked as 'UAT-7810' are evolving their LONGL..
7:10 pm, July 7, 2026 Cybersecurity
Rogue Agent Flaw Could Have Let Attackers Hijack Google Dialogflow CX Chatbots
{ "priority": "CRITICAL", "cve": "N/A", "target": "Google Dialogflow CX", "threat_actor": "N/A", "patch_ready": true, "insight": "A critical flaw in Google's Dialogflow CX could have let a..
6:10 pm, July 7, 2026 Cybersecurity
RedWing MaaS Packages Android Bank Fraud as a Telegram Rental Service
{"priority":"HIGH","cve":"N/A","target":"Android","threat_actor":"RedWing","patch_ready":false,"insight":"RedWing is an Android malware operation being rented on Telegram, enabling low-skill criminals..
6:10 pm, July 7, 2026 Cybersecurity
Hidden backdoor in Tenda router firmware grants admin access
A hidden authentication backdoor has been found in multiple Tenda router firmware versions, potentially allowing an attacker to gain administrative access to the device's web management panel. [...]
6:10 pm, July 7, 2026 Cybersecurity
DEBULL Tooling Abuses Microsoft Device-Code Flow to Target M365 Accounts
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft 365", "threat_actor": "DEBULL", "patch_ready": false, "insight": "A phishing campaign targeting M365 accounts using Microsoft devic..
5:10 pm, July 7, 2026 Cybersecurity
Spain arrests suspected member of pro-Russian hacktivist groups
{ "priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "CyberArmy of Russia Reborn (CARR) and Z-Pentest", "patch_ready": false, "insight": "Spanish authorities arrested a susp..
4:10 pm, July 7, 2026 Cybersecurity
Public GitHub Issue Could Trick GitHub Agentic Workflows Into Leaking Private Repo Data
{ "priority": "HIGH", "cve": "N/A", "target": "GitHub Agentic Workflows", "threat_actor": "N/A", "patch_ready": false, "insight": "A public GitHub issue can trick GitHub Agentic Workflows ..
3:10 pm, July 7, 2026 Cybersecurity
Writer AI Flaw Could Let Agent Previews Leak Session Tokens Across Tenants
{ "priority": "CRITICAL", "cve": "N/A", "target": "Writer AI", "threat_actor": "Sand Security Research team", "patch_ready": true, "insight": "Critical session isolation vulnerability in W..
2:10 pm, July 7, 2026 Cybersecurity
Court Filing Reveals Windows Device ID Helped FBI Trace Alleged Scattered Spider Hacker
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "Scattered Spider", "patch_ready": false, "insight": "Alleged Scattered Spider hacker linked to luxury jewelry retailer..
2:10 pm, July 7, 2026 Cybersecurity
The GitHub Actions Attack Pattern Your CI Security Scanners Miss
{ "priority": "INFO", "cve": "N/A", "target": "GitHub Actions", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses how GitHub Actions attack chains can evade tr..
2:10 pm, July 7, 2026 Cybersecurity
Webinar tomorrow: Why modern email attacks require a new approach to defense
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Upcoming webinar to discuss modern email attack defense using behavioral AI." ..
1:10 pm, July 7, 2026 Cybersecurity
What Changes When Your Software Supply Chain Includes AI Writing Your Code?
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The integration of AI in software development introduces new considerations fo..
12:10 pm, July 7, 2026 Cybersecurity
New Januscape Linux flaw allows VM escape on Intel, AMD devices
A 16-year-old Linux kernel vulnerability, dubbed Januscape, allows attackers to escape a virtual machine and execute arbitrary code on the host. [...]
12:10 pm, July 7, 2026 Cybersecurity
Suspected China-Aligned Hackers Exploit Roundcube Flaws Against Universities
A suspected China-aligned threat activity cluster has been observed exploiting Roundcube webmail software belonging to physics and engineering departments of U.S. and Canadian universities as part of ..
10:10 am, July 7, 2026 Cybersecurity
Microsoft to enable Windows settings backup by default for orgs
{ "priority": "INFO", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft will enable Windows settings backup by default for organizati..
10:10 am, July 7, 2026 Cybersecurity
BeyondTrust warns of critical flaws in remote access software
BeyondTrust warned customers to patch two critical security flaws in its Remote Support (RS) and Privileged Remote Access (PRA) software that could allow attackers to bypass authentication. [...]
9:10 am, July 7, 2026 Cybersecurity
CERT/CC Warns of Hidden Admin Backdoor in Tenda Router Firmware
{ "priority": "HIGH", "cve": "CVE-2026-11405", "target": "Tenda Router Firmware", "threat_actor": "N/A", "patch_ready": false, "insight": "Tenda router firmware has an undocumented authent..
8:10 am, July 7, 2026 Cybersecurity
Microsoft testing new Cloud Rebuild Windows 11 recovery feature
{ "priority": "INFO", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft is testing a new Cloud Rebuild recovery feature in Windows 11..
8:10 am, July 7, 2026 Cybersecurity
BeyondTrust Patches Critical Auth Bypass Flaws in Remote Support and PRA
{"priority": "CRITICAL", "cve": "CVE-2026-40138", "target": "BeyondTrust Remote Support and PRA", "threat_actor": "N/A", "patch_ready": true, "insight": "BeyondTrust patches critical auth bypass flaws..
7:10 am, July 7, 2026 Cybersecurity
ISC Stormcast For Tuesday, July 7th, 2026 https://isc.sans.edu/podcastdetail/9996, (Tue, Jul 7th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A summary of an article on how to earn a billion dollars." }
2:10 am, July 7, 2026 Cybersecurity
Fake IT support calls on Microsoft Teams push EtherRAT malware
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft Teams", "threat_actor": "Unknown", "patch_ready": false, "insight": "Threat actors impersonate IT support staff on Microsoft Teams ..
9:10 pm, July 6, 2026 Cybersecurity
Phishing poses as big-brand job interview to steal Google accounts
{ "priority": "HIGH", "cve": "N/A", "target": "Google accounts", "threat_actor": "N/A", "patch_ready": false, "insight": "Phishing campaign impersonates over 30 brands in fake job intervie..
9:10 pm, July 6, 2026 Cybersecurity
Iran-Linked Hackers Use New Cavern C2 Framework to Target Israeli Organizations
{ "priority": "HIGH", "cve": "N/A", "target": "Israeli Organizations", "threat_actor": "Iranian Hacking Group", "patch_ready": false, "insight": "Iranian hacking group uses new Cavern C2 f..
8:10 pm, July 6, 2026 Cybersecurity
