List cybersec
China-Linked Red Menshen Uses Stealthy BPFDoor Implants to Spy via Telecom Networks
{ "priority": "HIGH", "cve": "N/A", "target": "Telecom Networks", "threat_actor": "Red Menshen", "patch_ready": false, "insight": "China-linked Red Menshen uses stealthy BPFDoor implants t..
6:10 pm, March 26, 2026 Cybersecurity
TeamPCP Supply Chain Campaign: Update 001 - Checkmarx Scope Wider Than Reported, CISA KEV Entry, and Detection Tools Available, (Thu, Mar 26th)
{"priority": "CRITICAL", "cve": "N/A", "target": "TeamPCP", "threat_actor": "N/A", "patch_ready": false, "insight": "CISA KEV entry and detection tools available for TeamPCP supply chain campaign."}
6:10 pm, March 26, 2026 Cybersecurity
UK sanctions Xinbi marketplace linked to Asian scam centers
{ "priority": "LOW", "cve": "N/A", "target": "Xinbi marketplace", "threat_actor": "N/A", "patch_ready": false, "insight": "The UK has sanctioned Xinbi, a Chinese-language cryptocurrency ma..
4:10 pm, March 26, 2026 Cybersecurity
ThreatsDay Bulletin: PQC Push, AI Vuln Hunting, Pirated Traps, Phishing Kits & 20 More Stories
{"priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The ThreatsDay Bulletin covers various security topics, including PQC push, AI vulnerabilit..
2:10 pm, March 26, 2026 Cybersecurity
Masters of Imitation: How Hackers and Art Forgers Perfect the Art of Deception
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses how hackers and art forgers use deception techniques, an..
2:10 pm, March 26, 2026 Cybersecurity
Coruna iOS exploit framework linked to Triangulation attacks
The Coruna exploit kit is an evolution of the framework used in the Operation Triangulation espionage campaign, which in 2023 targeted iPhones via zero-click iMessage exploits. [...]
2:10 pm, March 26, 2026 Cybersecurity
Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website
{ "priority": "CRITICAL", "cve": "N/A", "target": "Claude Google Chrome Extension", "threat_actor": "N/A", "patch_ready": true, "insight": "Vulnerability in Claude Google Chrome Extension ..
2:10 pm, March 26, 2026 Cybersecurity
Inside a Modern Fraud Attack: From Bot Signups to Account Takeovers
Multi-stage fraud attacks chain bots, proxies, and stolen credentials from signup to takeover. IPQS shows why correlating IP, device, identity, and behavior is critical to stop it. [...]
2:10 pm, March 26, 2026 Cybersecurity
WhatsApp rolls out more AI features, iOS multi-account support
WhatsApp is rolling out multiple features designed to make the app easier to use, including AI-powered message replies and photo retouching, support for two accounts on iOS, and chat history transfer ..
2:10 pm, March 26, 2026 Cybersecurity
TikTok for Business accounts targeted in new phishing campaign
{ "priority": "HIGH", "cve": "N/A", "target": "TikTok for Business", "threat_actor": "N/A", "patch_ready": false, "insight": "Threat actors are targeting TikTok for Business accounts in a ..
2:10 pm, March 26, 2026 Cybersecurity
Russia arrests suspected owner of LeakBase cybercrime forum
{ "priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Russian police arrested a suspect believed to be the owner of LeakBase, a cyber..
1:10 pm, March 26, 2026 Cybersecurity
[Webinar] Stop Guessing. Learn to Validate Your Defenses Against Real Attacks
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A webinar discusses validating security defenses against real attacks" }
12:10 pm, March 26, 2026 Cybersecurity
Coruna iOS Kit Reuses 2023 Triangulation Exploit Code in New Mass Attacks
{ "priority": "HIGH", "cve": "N/A", "target": "Apple iOS", "threat_actor": "N/A", "patch_ready": false, "insight": "Coruna iOS Kit reuses 2023 Triangulation exploit code in new mass attack..
12:10 pm, March 26, 2026 Cybersecurity
Suspected RedLine infostealer malware admin extradited to US
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "RedLine", "patch_ready": false, "insight": "An Armenian suspect was extradited to the US to face charges for allegedly..
12:10 pm, March 26, 2026 Cybersecurity
WebRTC Skimmer Bypasses CSP to Steal Payment Data from E-Commerce Sites
{ "priority": "HIGH", "cve": "N/A", "target": "E-Commerce Sites", "threat_actor": "N/A", "patch_ready": false, "insight": "New WebRTC skimmer bypasses CSP to steal payment data from e-comm..
9:10 am, March 26, 2026 Cybersecurity
ISC Stormcast For Thursday, March 26th, 2026 https://isc.sans.edu/podcastdetail/9866, (Thu, Mar 26th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, March 26, 2026 Cybersecurity
GitHub adds AI-powered bug detection to expand security coverage
{ "priority": "INFO", "cve": "N/A", "target": "GitHub Code Security", "threat_actor": "N/A", "patch_ready": false, "insight": "GitHub introduces AI-powered bug detection to enhance securit..
12:10 am, March 26, 2026 Cybersecurity
Apple Patches (almost) everything again. March 2026 edition., (Wed, Mar 25th)
{ "priority": "MEDIUM", "cve": "N/A", "target": "Apple OS", "threat_actor": "N/A", "patch_ready": true, "insight": "Apple patches 85 vulnerabilities across multiple operating systems, with..
10:10 pm, March 25, 2026 Cybersecurity
PolyShell attacks target 56% of all vulnerable Magento stores
{ "priority": "HIGH", "cve": "N/A", "target": "Magento Open Source and Adobe Commerce", "threat_actor": "N/A", "patch_ready": false, "insight": "Active attacks exploiting the PolyShell vul..
10:10 pm, March 25, 2026 Cybersecurity
Bubble AI app builder abused to steal Microsoft account credentials
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft accounts", "threat_actor": "N/A", "patch_ready": false, "insight": "Threat actors are abusing Bubble AI app builder to steal Micros..
8:10 pm, March 25, 2026 Cybersecurity
New Torg Grabber infostealer malware targets 728 crypto wallets
{ "priority": "HIGH", "cve": "N/A", "target": "crypto wallets", "threat_actor": "Torg Grabber", "patch_ready": false, "insight": "Torg Grabber malware targets 728 crypto wallets and 850 br..
7:10 pm, March 25, 2026 Cybersecurity
LeakBase Admin Arrested in Russia Over Massive Stolen Credential Marketplace
The alleged administrator of the LeakBase cybercrime forum has been arrested by Russian law enforcement authorities, state media reported Thursday. According to TASS and MVD Media, a news website link..
6:10 pm, March 25, 2026 Cybersecurity
Citrix urges admins to patch NetScaler flaws as soon as possible
{ "priority": "HIGH", "cve": "N/A", "target": "Citrix NetScaler ADC and NetScaler Gateway", "threat_actor": "N/A", "patch_ready": true, "insight": "Citrix urges admins to patch NetScaler f..
4:10 pm, March 25, 2026 Cybersecurity
GlassWorm Malware Uses Solana Dead Drops to Deliver RAT and Steal Browser, Crypto Data
Cybersecurity researchers have flagged a new evolution of the GlassWorm campaign that delivers a multi-stage framework capable of comprehensive data theft and installing a remote access trojan (RAT), ..
3:10 pm, March 25, 2026 Cybersecurity
Paid AI Accounts Are Now a Hot Underground Commodity
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "AI accounts are being sold as part of the cybercrime supply chain on undergrou..
2:10 pm, March 25, 2026 Cybersecurity
Device Code Phishing Hits 340+ Microsoft 365 Orgs Across Five Countries via OAuth Abuse
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft 365", "threat_actor": "N/A", "patch_ready": false, "insight": "An active device code phishing campaign is targeting over 340 Micros..
1:10 pm, March 25, 2026 Cybersecurity
Russian Hacker Sentenced to 2 Years for TA551 Botnet-Driven Ransomware Attacks
``` { "priority": "INFO", "cve": "N/A", "target": "U.S. companies", "threat_actor": "TA551", "patch_ready": false, "insight": "A Russian hacker was sentenced to 2 years in prison for manag..
1:10 pm, March 25, 2026 Cybersecurity
The Kill Chain Is Obsolete When Your AI Agent Is the Threat
{ "priority": "HIGH", "cve": "N/A", "target": "N/A", "threat_actor": "State-sponsored threat actor", "patch_ready": false, "insight": "A state-sponsored threat actor used an AI coding agen..
1:10 pm, March 25, 2026 Cybersecurity
Kali Linux 2026.1 released with 8 new tools, new BackTrack mode
{ "priority": "INFO", "cve": "N/A", "target": "Kali Linux", "threat_actor": "N/A", "patch_ready": false, "insight": "Kali Linux 2026.1 release features 8 new tools, a theme refresh, and a ..
1:10 pm, March 25, 2026 Cybersecurity
TP-Link warns users to patch critical router auth bypass flaw
TP-Link has patched several vulnerabilities in its Archer NX router series, including a critical-severity flaw that may allow attackers to bypass authentication and upload new firmware. [...]
12:10 pm, March 25, 2026 Cybersecurity
Manager of botnet used in ransomware attacks gets 2 years in prison
{"priority":"LOW","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"A Russian national was sentenced to 2 years in prison for managing a phishing botnet used in BitPaymer ..
9:10 am, March 25, 2026 Cybersecurity
FCC Bans New Foreign-Made Routers Over Supply Chain and Cyber Risk Concerns
{ "priority": "HIGH", "cve": "N/A", "target": "Foreign-made consumer routers", "threat_actor": "N/A", "patch_ready": false, "insight": "The FCC has banned the import of new foreign-made co..
8:10 am, March 25, 2026 Cybersecurity
TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 via Trivy CI/CD Compromise
{ "priority": "CRITICAL", "cve": "N/A", "target": "LiteLLM", "threat_actor": "TeamPCP", "patch_ready": false, "insight": "TeamPCP compromised LiteLLM versions 1.82.7-1.82.8 via Trivy CI/CD..
7:10 am, March 25, 2026 Cybersecurity
ISC Stormcast For Wednesday, March 25th, 2026 https://isc.sans.edu/podcastdetail/9864, (Wed, Mar 25th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "SANS Internet Storm Center podcast for March 25th, 2026." }
2:10 am, March 25, 2026 Cybersecurity
SmartApeSG campaign pushes Remcos RAT, NetSupport RAT, StealC, and Sectop RAT (ArechClient2), (Wed, Mar 25th)
{ "priority": "HIGH", "cve": "N/A", "target": "N/A", "threat_actor": "SmartApeSG", "patch_ready": false, "insight": "SmartApeSG campaign distributes multiple RATs and malware including Rem..
1:10 am, March 25, 2026 Cybersecurity
Popular LiteLLM PyPI package backdoored to steal credentials, auth tokens
The TeamPCP hacking group continues its supply-chain rampage, now compromising the massively popular "LiteLLM" Python package on PyPI and claiming to have stolen data from hundreds of thousands of dev..
12:10 am, March 25, 2026 Cybersecurity
Popular LiteLLM PyPI package compromised in TeamPCP supply chain attack
{ "priority": "HIGH", "cve": "N/A", "target": "LiteLLM PyPI package", "threat_actor": "TeamPCP", "patch_ready": false, "insight": "The TeamPCP hacking group compromised the popular LiteLLM..
11:10 pm, March 24, 2026 Cybersecurity
PTC warns of imminent threat from critical Windchill, FlexPLM RCE bug
PTC Inc. is warning of a critical vulnerability in Windchill and FlexPLM, widely used product lifecycle management (PLM) solutions, that could allow remote code execution. [...]
11:10 pm, March 24, 2026 Cybersecurity
FCC bans new routers made outside the USA over security risks
{ "priority": "MEDIUM", "cve": "N/A", "target": "Routers made outside the USA", "threat_actor": "N/A", "patch_ready": false, "insight": "The FCC has banned new routers made outside the USA..
9:10 pm, March 24, 2026 Cybersecurity
TeamPCP Backdoors LiteLLM Versions 1.82.7–1.82.8 Likely via Trivy CI/CD Compromise
{ "priority": "CRITICAL", "cve": "N/A", "target": "LiteLLM", "threat_actor": "TeamPCP", "patch_ready": false, "insight": "TeamPCP compromised LiteLLM versions 1.82.7-1.82.8 via Trivy CI/CD..
8:10 pm, March 24, 2026 Cybersecurity
Tax Search Ads Deliver ScreenConnect Malware Using Huawei Driver to Disable EDR
{ "priority": "HIGH", "cve": "N/A", "target": "ConnectWise ScreenConnect", "threat_actor": "N/A", "patch_ready": false, "insight": "A large-scale malvertising campaign delivers ScreenConne..
6:10 pm, March 24, 2026 Cybersecurity
Firefox now has a free built-in VPN with 50GB monthly data limit
{"priority":"INFO","cve":"N/A","target":"Firefox","threat_actor":"N/A","patch_ready":false,"insight":"Mozilla released Firefox 149 with a built-in VPN tool offering 50GB of monthly traffic."}
6:10 pm, March 24, 2026 Cybersecurity
Hackers Use Fake Resumes to Steal Enterprise Credentials and Deploy Crypto Miner
{"priority":"HIGH","cve":"N/A","target":"Enterprise Environments","threat_actor":"N/A","patch_ready":false,"insight":"Hackers use fake resumes to steal enterprise credentials and deploy crypto miners ..
5:10 pm, March 24, 2026 Cybersecurity
Microsoft fixes bug causing Classic Outlook sync issues with Gmail
Microsoft has fixed a known issue causing Gmail and Yahoo email synchronization and connection problems for classic Outlook users. [...]
4:10 pm, March 24, 2026 Cybersecurity
Yanluowang ransomware access broker gets 81 months in prison
{ "priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A Russian national was sentenced to 81 months in prison for acting as an initia..
2:10 pm, March 24, 2026 Cybersecurity
Infinite Campus warns of breach after ShinyHunters claims data theft
{ "priority": "HIGH", "cve": "N/A", "target": "Infinite Campus", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "Infinite Campus warns of data breach after ShinyHunters c..
2:10 pm, March 24, 2026 Cybersecurity
Detecting IP KVMs, (Tue, Mar 24th)
{ "priority": "LOW", "cve": "N/A", "target": "IP KVMs", "threat_actor": "North Koreans", "patch_ready": false, "insight": "Rogue IP KVMs can be used by threat actors to gain remote access ..
2:10 pm, March 24, 2026 Cybersecurity
HackerOne discloses employee data breach after Navia hack
Bug bounty platform HackerOne is notifying hundreds of employees that their data was stolen after attackers hacked Navia, one of its U.S. benefits administrators. [...]
2:10 pm, March 24, 2026 Cybersecurity
Zero Trust: Bridging the Gap Between Authentication and Trust
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses the limitations of Multi-Factor Authentication (MFA) and..
2:10 pm, March 24, 2026 Cybersecurity
5 Learnings from the First-Ever Gartner Market Guide for Guardian Agents
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Gartner published its first Market Guide for Guardian Agents on February 25, 2..
12:10 pm, March 24, 2026 Cybersecurity
