List cybersec
ThreatsDay Bulletin: Pre-Auth Chains, Android Rootkits, CloudTrail Evasion & 10 More Stories
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The ThreatsDay Bulletin covers various cybersecurity topics, including pre-aut..
2:10 pm, April 2, 2026 Cybersecurity
Medtech giant Stryker fully operational after data-wiping attack
{ "priority": "HIGH", "cve": "N/A", "target": "Stryker Corporation", "threat_actor": "Handala", "patch_ready": false, "insight": "Medtech giant Stryker restored operations after a data-wip..
2:10 pm, April 2, 2026 Cybersecurity
New Progress ShareFile flaws can be chained in pre-auth RCE attacks
{ "priority": "CRITICAL", "cve": "N/A", "target": "Progress ShareFile", "threat_actor": "N/A", "patch_ready": false, "insight": "Chained vulnerabilities allow pre-auth RCE attacks" }
2:10 pm, April 2, 2026 Cybersecurity
Adversaries Exploit Vacant Homes to Intercept Mail in Hybrid Cybercrime
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Threat actors exploit vacant homes as drop addresses to intercept mail and fac..
2:10 pm, April 2, 2026 Cybersecurity
The State of Trusted Open Source Report
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The State of Trusted Open Source Report provides insights on open source consu..
12:10 pm, April 2, 2026 Cybersecurity
Researchers Uncover Mining Operation Using ISO Lures to Spread RATs and Crypto Miners
{ "priority": "HIGH", "cve": "N/A", "target": "N/A", "threat_actor": "REF1695", "patch_ready": false, "insight": "REF1695 uses fake installers to deploy RATs and crypto miners, monetizing ..
12:10 pm, April 2, 2026 Cybersecurity
WhatsApp Alerts 200 Users After Fake iOS App Installed Spyware; Italian Firm Faces Action
{"priority":"HIGH","cve":"N/A","target":"WhatsApp iOS app","threat_actor":"Unknown","patch_ready":false,"insight":"WhatsApp alerted 200 users of a fake iOS app with spyware, mostly affecting Italian t..
11:10 am, April 2, 2026 Cybersecurity
Critical Cisco IMC auth bypass gives attackers Admin access
{ "priority": "CRITICAL", "cve": "N/A", "target": "Cisco IMC", "threat_actor": "N/A", "patch_ready": true, "insight": "Cisco patched a critical authentication bypass in Integrated Manageme..
11:10 am, April 2, 2026 Cybersecurity
Microsoft links Classic Outlook issue to email delivery problems
{ "priority": "INFO", "cve": "N/A", "target": "Microsoft Classic Outlook", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft is investigating an issue with Classic Outlook..
10:10 am, April 2, 2026 Cybersecurity
Over 14,000 F5 BIG-IP APM instances still exposed to RCE attacks
{ "priority": "CRITICAL", "cve": "CVE-2022-1388 or N/A", "target": "F5 BIG-IP APM", "threat_actor": "N/A", "patch_ready": false, "insight": "Over 14,000 F5 BIG-IP APM instances are exposed..
9:10 am, April 2, 2026 Cybersecurity
Apple Expands iOS 18.7.7 Update to More Devices to Block DarkSword Exploit
{ "priority": "HIGH", "cve": "N/A", "target": "Apple iOS", "threat_actor": "N/A", "patch_ready": true, "insight": "Apple expanded iOS 18.7.7 update to more devices to block DarkSword explo..
8:10 am, April 2, 2026 Cybersecurity
ISC Stormcast For Thursday, April 2nd, 2026 https://isc.sans.edu/podcastdetail/9876, (Thu, Apr 2nd)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast for Thursday, April 2nd, 2026, discussing various cybers..
2:10 am, April 2, 2026 Cybersecurity
New CrystalRAT malware adds RAT, stealer and prankware features
{ "priority": "HIGH", "cve": "N/A", "target": "CrystalRAT", "threat_actor": "N/A", "patch_ready": false, "insight": "New CrystalRAT malware-as-a-service offers remote access, data theft, k..
12:10 am, April 2, 2026 Cybersecurity
Hackers exploit TrueConf zero-day to push malicious software updates
{ "priority": "CRITICAL", "cve": "N/A", "target": "TrueConf", "threat_actor": "N/A", "patch_ready": false, "insight": "Hackers exploit TrueConf zero-day to execute arbitrary files on conne..
10:10 pm, April 1, 2026 Cybersecurity
Apple expands iOS 18 updates to more iPhones to block DarkSword attacks
{ "priority": "HIGH", "cve": "N/A", "target": "iPhones running iOS 18", "threat_actor": "DarkSword", "patch_ready": true, "insight": "Apple expands iOS 18 updates to more iPhones to block ..
10:10 pm, April 1, 2026 Cybersecurity
New EvilTokens service fuels Microsoft device code phishing attacks
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft", "threat_actor": "EvilTokens", "patch_ready": false, "insight": "EvilTokens kit enables device code phishing to hijack Microsoft a..
8:10 pm, April 1, 2026 Cybersecurity
CERT-UA Impersonation Campaign Spread AGEWHEEZE Malware to 1 Million Emails
{"priority":"HIGH","cve":"N/A","target":"N/A","threat_actor":"UAC-0255","patch_ready":false,"insight":"CERT-UA impersonated to spread AGEWHEEZE malware via 1 million emails"}
6:10 pm, April 1, 2026 Cybersecurity
'NoVoice' Android malware on Google Play infected 2.3 million devices
{ "priority": "HIGH", "cve": "N/A", "target": "Android", "threat_actor": "NoVoice", "patch_ready": false, "insight": "NoVoice Android malware on Google Play infected 2.3 million devices" }..
6:10 pm, April 1, 2026 Cybersecurity
Routine Access Is Powering Modern Intrusions, a New Threat Report Finds
{"priority":"INFO","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"Modern intrusions often begin with valid credentials and routine access, leveraging VPN abuse, RMM too..
3:10 pm, April 1, 2026 Cybersecurity
New Chrome Zero-Day CVE-2026-5281 Under Active Exploitation — Patch Released
{ "priority": "CRITICAL", "cve": "CVE-2026-5281", "target": "Google Chrome", "threat_actor": "N/A", "patch_ready": true, "insight": "Google Chrome released a patch for a zero-day vulnerabi..
2:10 pm, April 1, 2026 Cybersecurity
Microsoft Warns of WhatsApp-Delivered VBS Malware Hijacking Windows via UAC Bypass
{ "priority": "HIGH", "cve": "N/A", "target": "Windows", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft warns of WhatsApp-delivered VBS malware hijacking Windows via UA..
2:10 pm, April 1, 2026 Cybersecurity
Casbaneiro Phishing Targets Latin America and Europe Using Dynamic PDF Lures
{ "priority": "HIGH", "cve": "N/A", "target": "Latin America and Europe", "threat_actor": "Augmented Marauder and Water Saci", "patch_ready": false, "insight": "A Brazilian cybercrime thre..
2:10 pm, April 1, 2026 Cybersecurity
Block the Prompt, Not the Work: The End of "Doctor No"
There is a character that keeps appearing in enterprise security departments, and most CISOs know exactly who that is. It doesn’t build. It doesn’t enable. Its entire function is to say "No." No t..
2:10 pm, April 1, 2026 Cybersecurity
TeamPCP Supply Chain Campaign: Update 005 - First Confirmed Victim Disclosure, Post-Compromise Cloud Enumeration Documented, and Axios Attribution Narrows, (Wed, Apr 1st)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "TeamPCP", "patch_ready": false, "insight": "Update on TeamPCP supply chain campaign with confirmed victim disclosure a..
2:10 pm, April 1, 2026 Cybersecurity
3 Reasons Attackers Are Using Your Trusted Tools Against You (And Why You Don’t See It Coming)
{"priority":"MEDIUM","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"Attackers are increasingly using trusted tools and native binaries to move laterally, escalate privi..
12:10 pm, April 1, 2026 Cybersecurity
FBI warns against using Chinese mobile apps due to privacy risks
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The FBI warns against using Chinese mobile apps due to potential privacy risks..
12:10 pm, April 1, 2026 Cybersecurity
Google fixes fourth Chrome zero-day exploited in attacks in 2026
{"priority": "CRITICAL", "cve": "N/A", "target": "Google Chrome", "threat_actor": "N/A", "patch_ready": true, "insight": "Google patched a Chrome zero-day vulnerability, the fourth exploited in attack..
11:10 am, April 1, 2026 Cybersecurity
Malicious Script That Gets Rid of ADS, (Wed, Apr 1st)
{"priority":"INFO","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"A malicious script is used to remove ADS (Alternate Data Streams) to minimize footprint on infected sy..
11:10 am, April 1, 2026 Cybersecurity
Google Attributes Axios npm Supply Chain Attack to North Korean Group UNC1069
{ "priority": "HIGH", "cve": "N/A", "target": "Axios npm", "threat_actor": "UNC1069", "patch_ready": false, "insight": "Google attributes Axios npm supply chain attack to North Korean grou..
8:10 am, April 1, 2026 Cybersecurity
Claude Code Source Leaked via npm Packaging Error, Anthropic Confirms
{ "priority": "LOW", "cve": "N/A", "target": "Claude Code", "threat_actor": "N/A", "patch_ready": false, "insight": "Internal code for Claude Code was leaked due to a packaging error on np..
7:10 am, April 1, 2026 Cybersecurity
Google Drive ransomware detection now on by default for paying users
{ "priority": "INFO", "cve": "N/A", "target": "Google Drive", "threat_actor": "N/A", "patch_ready": false, "insight": "Google enables AI-powered ransomware detection by default for paying ..
7:10 am, April 1, 2026 Cybersecurity
New Windows 11 emergency update fixes preview update install issues
{ "priority": "MEDIUM", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft released an emergency update to fix installation issues with..
6:10 am, April 1, 2026 Cybersecurity
ISC Stormcast For Wednesday, April 1st, 2026 https://isc.sans.edu/podcastdetail/9874, (Wed, Apr 1st)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast for April 1st, 2026, providing security news and updates..
2:10 am, April 1, 2026 Cybersecurity
Claude Code source code accidentally leaked in NPM package
Anthropic says it accidentally leaked the source code for Claude Code, which is closed source, but the company says no customer data or credentials were exposed. [...]
1:10 am, April 1, 2026 Cybersecurity
Google now allows you to change your @gmail.com address
{ "priority": "INFO", "cve": "N/A", "target": "Gmail", "threat_actor": "N/A", "patch_ready": false, "insight": "Google is introducing a feature allowing users to change their @gmail.com ad..
12:10 am, April 1, 2026 Cybersecurity
GIGABYTE Control Center vulnerable to arbitrary file write flaw
{"priority":"CRITICAL","cve":"N/A","target":"GIGABYTE Control Center","threat_actor":"N/A","patch_ready":false,"insight":"GIGABYTE Control Center is vulnerable to an arbitrary file-write flaw that cou..
11:10 pm, March 31, 2026 Cybersecurity
Proton launches new "Meet" privacy-focused conferencing platform
{ "priority": "INFO", "cve": "N/A", "target": "Proton Meet", "threat_actor": "N/A", "patch_ready": false, "insight": "Proton launches a new privacy-focused video conferencing platform call..
11:10 pm, March 31, 2026 Cybersecurity
Claude AI finds Vim, Emacs RCE bugs that trigger on file open
{ "priority": "CRITICAL", "cve": "N/A", "target": "Vim, Emacs", "threat_actor": "N/A", "patch_ready": false, "insight": "Remote code execution vulnerabilities in Vim and Emacs text editors..
10:10 pm, March 31, 2026 Cybersecurity
Android Developer Verification Rollout Begins Ahead of September Enforcement
{"priority":"INFO","cve":"N/A","target":"Android Developer Verification","threat_actor":"N/A","patch_ready":false,"insight":"Google begins rolling out Android developer verification to combat harmful ..
8:10 pm, March 31, 2026 Cybersecurity
Cisco source code stolen in Trivy-linked dev environment breach
{ "priority": "HIGH", "cve": "N/A", "target": "Cisco", "threat_actor": "Trivy-linked threat actors", "patch_ready": false, "insight": "Cisco's internal development environment was breached..
6:10 pm, March 31, 2026 Cybersecurity
TrueConf Zero-Day Exploited in Attacks on Southeast Asian Government Networks
{ "priority": "CRITICAL", "cve": "CVE-2026-3502", "target": "TrueConf client video conferencing software", "threat_actor": "N/A", "patch_ready": false, "insight": "A zero-day vulnerability..
5:10 pm, March 31, 2026 Cybersecurity
Vertex AI Vulnerability Exposes Google Cloud Data and Private Artifacts
{ "priority": "HIGH", "cve": "N/A", "target": "Google Cloud Vertex AI", "threat_actor": "N/A", "patch_ready": false, "insight": "A security blind spot in Google Cloud's Vertex AI platform ..
2:10 pm, March 31, 2026 Cybersecurity
Hackers compromise Axios npm package to drop cross-platform malware
{ "priority": "CRITICAL", "cve": "N/A", "target": "Axios npm package", "threat_actor": "N/A", "patch_ready": false, "insight": "Hackers hijacked the npm account of the Axios package, a Jav..
2:10 pm, March 31, 2026 Cybersecurity
How to Categorize AI Agents and Prioritize Risk
AI agent risk isn't equal, it scales with access to systems and level of autonomy. Token Security explains how CISOs should categorize agents and prioritize what to secure first. [...]
2:10 pm, March 31, 2026 Cybersecurity
The AI Arms Race – Why Unified Exposure Management Is Becoming a Boardroom Priority
{"priority":"INFO","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"The increasing speed of cyber attacks and exploitation, driven by AI, is making unified exposure manag..
1:10 pm, March 31, 2026 Cybersecurity
Silver Fox Expands Asia Cyber Campaign with AtlasCross RAT and Fake Domains
Chinese-speaking users are the target of an active campaign that uses typosquatted domains impersonating trusted software brands to deliver a previously undocumented remote access trojan named AtlasCr..
1:10 pm, March 31, 2026 Cybersecurity
Microsoft fixes Outlook Classic crashes caused by Teams Meeting add-in
{"priority":"MEDIUM","cve":"N/A","target":"Microsoft Outlook Classic","threat_actor":"N/A","patch_ready":true,"insight":"Microsoft resolved an issue with Outlook Classic crashing due to the Teams Meet..
12:10 pm, March 31, 2026 Cybersecurity
Hacker charged with stealing $53 million from Uranium crypto exchange
{ "priority": "HIGH", "cve": "N/A", "target": "Uranium Finance crypto exchange", "threat_actor": "Maryland man", "patch_ready": false, "insight": "A hacker stole over $53 million from Uran..
10:10 am, March 31, 2026 Cybersecurity
Application Control Bypass for Data Exfiltration, (Tue, Mar 31st)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses the risks of data exfiltration in cyber incidents, highl..
8:10 am, March 31, 2026 Cybersecurity
Dutch Finance Ministry takes treasury banking portal offline after breach
The Dutch Ministry of Finance took some of its systems offline, including the digital portal for treasury banking, while investigating a cyberattack detected two weeks ago. [...]
8:10 am, March 31, 2026 Cybersecurity
AI Testing
