List cybersec
16-Year-Old Linux KVM Flaw Lets Guest VMs Escape to Host on Intel and AMD x86 Systems
{ "priority": "CRITICAL", "cve": "CVE-2026-53359", "target": "Linux KVM", "threat_actor": "N/A", "patch_ready": false, "insight": "A use-after-free bug in Linux's KVM hypervisor allows gue..
7:10 pm, July 6, 2026 Cybersecurity
Vietnam arrests suspects behind HiAnime anime piracy service
{"priority": "LOW", "cve": "N/A", "target": "HiAnime", "threat_actor": "N/A", "patch_ready": false, "insight": "Vietnamese authorities arrested seven suspects behind the HiAnime anime piracy service."..
7:10 pm, July 6, 2026 Cybersecurity
Threat Actors Probe Gitea Docker Flaw CVE-2026-20896 13 Days After Disclosure
``` { "priority": "HIGH", "cve": "CVE-2026-20896", "target": "Gitea Docker images", "threat_actor": "N/A", "patch_ready": true, "insight": "Threat actors are probing for CVE-2026-20896, a ..
6:10 pm, July 6, 2026 Cybersecurity
⚡ Weekly Recap: Proxy Botnets, Browser Ransomware, AI Agent Tricks, Fake PoC Malware and More
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Weekly recap of various threats including proxy botnets, browser ransomware, A..
2:10 pm, July 6, 2026 Cybersecurity
Max severity Adobe ColdFusion flaw now exploited in attacks
{ "priority": "CRITICAL", "cve": "CVE-2026-48282", "target": "Adobe ColdFusion", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers are exploiting a maximum-severity Adobe ..
2:10 pm, July 6, 2026 Cybersecurity
RCS and DNS: The NAPTR Record, (Mon, Jul 6th)
{ "priority": "INFO", "cve": "N/A", "target": "RCS and DNS: The NAPTR Record", "threat_actor": "N/A", "patch_ready": false, "insight": "RCS protocol updates in iOS and Android enhance mess..
2:10 pm, July 6, 2026 Cybersecurity
Software Is Now Written at the Speed of Thought. Security Isn't.
{"priority":"INFO","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"The increasing speed of software development, potentially accelerated by AI, highlights a growing gap ..
2:10 pm, July 6, 2026 Cybersecurity
Suspected China-Nexus Hackers Use Fake Indian Tax Filing Utility to Deploy DcRAT
{ "priority": "HIGH", "cve": "N/A", "target": "Indian taxpayers, tax professionals, and corporate finance teams", "threat_actor": "China-nexus hackers", "patch_ready": false, "insight": "S..
1:10 pm, July 6, 2026 Cybersecurity
How to Evaluate an AI SOC Platform in 2026: 6 Capabilities That Separate Leaders from Bolt-On AI solutions
Building a shortlist for an AI SOC evaluation can be tough. SIEM, SOAR, and pureplay AI SOC vendors are all saying the same thing. But behind the identical label sit very different products, from chat..
1:10 pm, July 6, 2026 Cybersecurity
ISC Stormcast For Monday, July 6th, 2026 https://isc.sans.edu/podcastdetail/9994, (Mon, Jul 6th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Summary of SANS Internet Storm Center podcast for July 6th, 2026, but no actio..
12:10 pm, July 6, 2026 Cybersecurity
New Java-Based QuimaRAT MaaS Built to Run on Windows, Linux, and macOS
{"priority": "HIGH", "cve": "N/A", "target": "Windows, Linux, macOS", "threat_actor": "N/A", "patch_ready": false, "insight": "QuimaRAT is a Java-based remote access trojan offered as malware-as-a-ser..
9:10 am, July 6, 2026 Cybersecurity
New TrojPix Attack Leaks Data From Air-Gapped Systems via Video Cable Emissions
{ "priority": "HIGH", "cve": "N/A", "target": "Air-Gapped Systems", "threat_actor": "N/A", "patch_ready": false, "insight": "TrojPix attack extracts data from air-gapped systems via video ..
9:10 am, July 6, 2026 Cybersecurity
Opera GX Flaw Let Malicious Sites Auto-Install Mods to Steal Data From Visited Pages
{"priority":"HIGH","cve":"N/A","target":"Opera GX","threat_actor":"N/A","patch_ready":true,"insight":"A flaw in Opera GX allowed malicious sites to auto-install mods and steal data from visited pages...
8:10 am, July 6, 2026 Cybersecurity
SkillCloak Lets Malicious AI Agent Skills Evade Static Scanners with Self-Extracting Packing
{ "priority": "HIGH", "cve": "N/A", "target": "SkillCloak", "threat_actor": "N/A", "patch_ready": false, "insight": "Researchers find way to evade static scanners with self-extracting pack..
7:10 am, July 6, 2026 Cybersecurity
Flipper Zero firmware development continues with community help
{"priority": "INFO", "cve": "N/A", "target": "Flipper Zero", "threat_actor": "N/A", "patch_ready": false, "insight": "Development of Flipper Zero firmware to continue with reduced internal team and in..
3:10 pm, July 5, 2026 Cybersecurity
JadePuffer ransomware used AI agent to automate entire attack
{ "priority": "HIGH", "cve": "N/A", "target": "JadePuffer ransomware", "threat_actor": "N/A", "patch_ready": false, "insight": "JadePuffer ransomware used an AI agent to automate an entire..
3:10 pm, July 4, 2026 Cybersecurity
U.S. Government Entity Paid Kairos $1 Million in Data-Theft Extortion Case
{"priority":"LOW","cve":"N/A","target":"N/A","threat_actor":"Kairos","patch_ready":false,"insight":"A U.S. government entity paid $1 million to prevent data leakage by a group called Kairos, which may..
2:10 pm, July 4, 2026 Cybersecurity
North Korean Hackers Publish 108 Malicious Packages and Extensions in PolinRider Campaign
{ "priority": "HIGH", "cve": "N/A", "target": "npm, Packagist, Go, Google Chrome", "threat_actor": "North Korean Hackers", "patch_ready": false, "insight": "North Korean hackers publish 10..
12:10 pm, July 4, 2026 Cybersecurity
Unpatched Flaws Disclosed in Filesystem Bundled Into Millions of Embedded Devices
Security firm runZero has disclosed seven vulnerabilities in FatFs, a small filesystem library that lets a device read and write the FAT and exFAT formats used on USB drives and SD cards. The flaw..
10:10 pm, July 3, 2026 Cybersecurity
New Avalon Malware Framework Packs CrownX Ransomware Capabilities
``` { "priority": "HIGH", "cve": "N/A", "target": "Avalon Malware Framework", "threat_actor": "N/A", "patch_ready": false, "insight": "Avalon is a modular malware framework with ransomware..
8:11 pm, July 3, 2026 Cybersecurity
New "Bad Epoll" Linux Kernel Flaw Lets Unprivileged Users Gain Root, Hits Android
{"priority":"CRITICAL","cve":"CVE-2026-46242","target":"Linux Kernel","threat_actor":"N/A","patch_ready":true,"insight":"A newly disclosed Linux kernel flaw called Bad Epoll lets an ordinary user gain..
8:10 pm, July 3, 2026 Cybersecurity
NetNut proxy network disrupted, 2 million infected devices cut off
{ "priority": "HIGH", "cve": "N/A", "target": "NetNut proxy network, Android devices", "threat_actor": "N/A", "patch_ready": false, "insight": "A joint operation involving Google disrupted..
6:10 pm, July 3, 2026 Cybersecurity
North Korea-Linked npm Packages Mimic Rollup Polyfills to Steal Developer Secrets
{ "priority": "HIGH", "cve": "N/A", "target": "npm packages", "threat_actor": "North Korea", "patch_ready": false, "insight": "North Korea-linked threat actors are using malicious npm pack..
5:10 pm, July 3, 2026 Cybersecurity
ARToken PhaaS exposes EvilTokens' Microsoft 365 phishing toolkit
{"priority":"HIGH","cve":"N/A","target":"Microsoft 365","threat_actor":"EvilTokens","patch_ready":false,"insight":"ARToken PhaaS platform exposes EvilTokens' Microsoft 365 phishing toolkit"}
3:10 pm, July 3, 2026 Cybersecurity
Armored Likho Targets Government Agencies, Power Sector with BusySnake Stealer
{ "priority": "HIGH", "cve": "N/A", "target": "Government Agencies, Power Sector", "threat_actor": "Armored Likho", "patch_ready": false, "insight": "Armored Likho targets government agenc..
2:10 pm, July 3, 2026 Cybersecurity
European Parliament Member Investigating Spyware Was Hacked With Pegasus
A new report from the Citizen Lab has revealed that former Member of the European Parliament Stelios Kouloglou had his mobile device repeatedly hacked with the notorious Pegasus spyware while serving ..
11:10 am, July 3, 2026 Cybersecurity
PamStealer Uses Fake Maccy Sites and PAM Checks to Steal Mac Login Passwords
{ "priority": "HIGH", "cve": "N/A", "target": "macOS", "threat_actor": "Jamf Threat Labs", "patch_ready": false, "insight": "PamStealer, a new macOS information stealer, uses fake Maccy si..
9:10 am, July 3, 2026 Cybersecurity
Claude Fable 5 isn’t permanently leaving subscriptions, Anthropic says
{ "priority": "INFO", "cve": "N/A", "target": "Claude Fable 5", "threat_actor": "N/A", "patch_ready": false, "insight": "Anthropic announces temporary removal of Claude Fable 5 from subscr..
2:10 am, July 3, 2026 Cybersecurity
Claude Fable relaunch disappoints users with nerfed performance
{ "priority": "INFO", "cve": "N/A", "target": "Claude Fable", "threat_actor": "N/A", "patch_ready": false, "insight": "Users report decreased performance in the relaunched Claude Fable mod..
1:10 am, July 3, 2026 Cybersecurity
Ransomware Groups Turn to Citrix Bleed 2, BYOVD, and Supply Chain Credentials
{ "priority": "HIGH", "cve": "CVE-2025-5777", "target": "Citrix", "threat_actor": "Anubis ransomware operation", "patch_ready": false, "insight": "Anubis ransomware operation exploits Citr..
8:10 pm, July 2, 2026 Cybersecurity
Google Disrupts NetNut Residential Proxy Network Spanning 2 Million Home Devices
{"priority":"HIGH","cve":"N/A","target":"NetNut","threat_actor":"N/A","patch_ready":false,"insight":"Google disrupted NetNut, a residential proxy network of 2 million home devices, through collaborati..
8:10 pm, July 2, 2026 Cybersecurity
FBI Seizes NetNut Proxy Platform, Popa Botnet
{"priority":"HIGH","cve":"N/A","target":"NetNut Proxy Platform","threat_actor":"Popa Botnet","patch_ready":false,"insight":"FBI seized NetNut proxy platform and disrupted Popa botnet operations."}
8:10 pm, July 2, 2026 Cybersecurity
Google loses final appeal to overturn €4.1 billion EU fine
{"priority": "INFO", "cve": "N/A", "target": "Google", "threat_actor": "N/A", "patch_ready": false, "insight": "The Court of Justice of the European Union upheld a €4.1 billion antitrust fine agains..
4:10 pm, July 2, 2026 Cybersecurity
ThreatsDay: AI Compute Hijacking, Apple Email Flaw, BlueHammer Ransomware + 14 Stories
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The week's security news highlights various weaknesses in AI systems, email fl..
4:10 pm, July 2, 2026 Cybersecurity
ToddyCat-Linked Umbrij Malware Abuses OAuth to Access Gmail via Google API
{ "priority": "HIGH", "cve": "N/A", "target": "Google API", "threat_actor": "ToddyCat", "patch_ready": false, "insight": "ToddyCat-linked malware Umbrij uses OAuth to access Gmail via Goog..
2:10 pm, July 2, 2026 Cybersecurity
ConsentFix and ClickFix: How Microsoft 365 Accounts are Hijacked in 3 Seconds
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft 365", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers use ConsentFix and ClickFix tactics to hijack Microsoft 36..
2:10 pm, July 2, 2026 Cybersecurity
Identity Lifecycle Management Wasn't Built for AI Agents
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses the limitations of traditional identity lifecycle manage..
1:10 pm, July 2, 2026 Cybersecurity
Microsoft fixes bug that removed Copilot buttons in Outlook
{ "priority": "LOW", "cve": "N/A", "target": "Microsoft Outlook", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft resolves an issue causing Copilot buttons to disappear i..
1:10 pm, July 2, 2026 Cybersecurity
Cisco finally confirms attackers exploiting Unified CM flaw
Cisco confirmed that attackers are now exploiting a Unified Communications Manager (Unified CM) vulnerability patched in early June. [...]
12:10 pm, July 2, 2026 Cybersecurity
Opera rolls out Paste Protect feature to fight ClickFix attacks
{ "priority": "INFO", "cve": "N/A", "target": "Opera", "threat_actor": "N/A", "patch_ready": false, "insight": "Opera introduces Paste Protect to block ClickFix-style attacks that trick us..
11:10 am, July 2, 2026 Cybersecurity
CISA: Microsoft SharePoint RCE flaw now actively exploited
{ "priority": "CRITICAL", "cve": "N/A", "target": "Microsoft SharePoint", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA warns that attackers are actively exploiting a high-s..
11:10 am, July 2, 2026 Cybersecurity
FortiBleed Credential Theft Linked to INC and Lynx Ransomware Operations
{ "priority": "HIGH", "cve": "N/A", "target": "FortiGate", "threat_actor": "INC and Lynx", "patch_ready": false, "insight": "FortiBleed credential theft linked to INC and Lynx ransomware o..
10:10 am, July 2, 2026 Cybersecurity
AI Agent Exploits Langflow RCE to Automate Database Ransomware Attack
{ "priority": "HIGH", "cve": "N/A", "target": "Langflow", "threat_actor": "JADEPUFFER", "patch_ready": false, "insight": "First AI agent automated ransomware attack using Langflow RCE" }
10:10 am, July 2, 2026 Cybersecurity
Alleged Scattered Spider hacker extradited to the United States
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "Scattered Spider", "patch_ready": false, "insight": "A dual US-Estonian citizen was extradited to the US for allegedly..
9:10 am, July 2, 2026 Cybersecurity
New ChocoPoC RAT Targets Vulnerability Researchers via Fake PoC Exploit Repos
Attackers are hiding a data-stealing trojan inside fake exploit code aimed at the people who hunt bugs for a living. The malware, called ChocoPoC, travels in Python proof-of-concept (PoC) repositories..
8:10 am, July 2, 2026 Cybersecurity
SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active Exploitation
{"priority": "CRITICAL", "cve": "CVE-2026-45659", "target": "Microsoft SharePoint Server", "threat_actor": "N/A", "patch_ready": true, "insight": "CVE-2026-45659 RCE vulnerability in Microsoft SharePo..
7:10 am, July 2, 2026 Cybersecurity
Medtronic notifies customers impacted by ShinyHunters data breach
{ "priority": "INFO", "cve": "N/A", "target": "Medtronic", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "Medtronic notifies customers impacted by ShinyHunters data brea..
5:10 am, July 2, 2026 Cybersecurity
ISC Stormcast For Thursday, July 2nd, 2026 https://isc.sans.edu/podcastdetail/9992, (Thu, Jul 2nd)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Article discussing how to earn a billion dollars." }
2:10 am, July 2, 2026 Cybersecurity
FortiBleed credential-theft campaign linked to Lynx ransomware
{ "priority": "HIGH", "cve": "N/A", "target": "Fortinet", "threat_actor": "INC", "patch_ready": false, "insight": "FortiBleed credential theft campaign linked to Lynx ransomware operations..
10:10 pm, July 1, 2026 Cybersecurity
New ChocoPoC malware targets researchers via trojanized PoC exploits
Multiple weaponized proof-of-concept (PoC) exploits on GitHub were found delivering a Python-based remote access trojan (RAT) named ChocoPoC that can execute commands and steal sensitive data in a cam..
9:10 pm, July 1, 2026 Cybersecurity
