List cybersec
Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account
{ "priority": "HIGH", "cve": "N/A", "target": "Axios", "threat_actor": "N/A", "patch_ready": false, "insight": "Axios supply chain attack injects RAT via compromised npm account" }
7:10 am, March 31, 2026 Cybersecurity
CISA orders feds to patch actively exploited Citrix flaw by Thursday
{ "priority": "CRITICAL", "cve": "N/A", "target": "Citrix NetScaler", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA orders government agencies to patch actively exploited Ci..
7:10 am, March 31, 2026 Cybersecurity
ISC Stormcast For Tuesday, March 31st, 2026 https://isc.sans.edu/podcastdetail/9872, (Tue, Mar 31st)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, March 31, 2026 Cybersecurity
Healthcare tech firm CareCloud says hackers stole patient data
{ "priority": "HIGH", "cve": "N/A", "target": "CareCloud", "threat_actor": "N/A", "patch_ready": false, "insight": "Healthcare IT firm CareCloud disclosed a data breach incident exposing s..
10:10 pm, March 30, 2026 Cybersecurity
New RoadK1ll WebSocket implant used to pivot on breached networks
A newly identified malicious implant named RoadK1ll is enabling threat actors to quietly move from a compromised host to other systems on the network. [...]
9:10 pm, March 30, 2026 Cybersecurity
OpenAI Patches ChatGPT Data Exfiltration Flaw and Codex GitHub Token Vulnerability
{"priority": "HIGH", "cve": "N/A", "target": "OpenAI ChatGPT", "threat_actor": "N/A", "patch_ready": true, "insight": "OpenAI patches ChatGPT data exfiltration flaw and Codex GitHub token vulnerabilit..
8:10 pm, March 30, 2026 Cybersecurity
Critical Citrix NetScaler memory flaw actively exploited in attacks
{ "priority": "CRITICAL", "cve": "CVE-2026-3055", "target": "Citrix NetScaler ADC and NetScaler Gateway", "threat_actor": "N/A", "patch_ready": true, "insight": "A critical severity vulner..
7:10 pm, March 30, 2026 Cybersecurity
DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser Credentials
{ "priority": "HIGH", "cve": "N/A", "target": "Browser", "threat_actor": "N/A", "patch_ready": false, "insight": "DeepLoad malware uses ClickFix and WMI persistence to steal browser creden..
5:10 pm, March 30, 2026 Cybersecurity
3 SOC Process Fixes That Unlock Tier 1 Productivity
What is really slowing Tier 1 down: the threat itself or the process around it? In many SOCs, the biggest delays do not come from the threat alone. They come from fragmented workflows, manual triage s..
3:10 pm, March 30, 2026 Cybersecurity
⚡ Weekly Recap: Telecom Sleeper Cells, LLM Jailbreaks, Apple Forces U.K. Age Checks and More
{"priority":"INFO","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"Weekly recap of various cybersecurity topics including telecom sleeper cells, LLM jailbreaks, and Appl..
3:10 pm, March 30, 2026 Cybersecurity
How to Evaluate AI SOC Agents: 7 Questions Gartner Says You Should Be Asking
AI SOC agents can reduce alert fatigue, but most teams fail to measure real outcomes. Prophet Security breaks down Gartner's questions for evaluating AI SOC agents and separating real impact from hype..
3:10 pm, March 30, 2026 Cybersecurity
Apple adds macOS Terminal warning to block ClickFix attacks
Apple has introduced a security feature in macOS Tahoe 26.4 that blocks pasting and executing potentially harmful commands in Terminal and alerts users to possible risks. [...]
3:10 pm, March 30, 2026 Cybersecurity
TeamPCP Supply Chain Campaign: Update 004 - Databricks Investigating Alleged Compromise, TeamPCP Runs Dual Ransomware Operations, and AstraZeneca Data Released, (Mon, Mar 30th)
{"priority": "HIGH", "cve": "N/A", "target": "Databricks", "threat_actor": "TeamPCP", "patch_ready": false, "insight": "TeamPCP allegedly compromised Databricks and runs dual ransomware operations, wi..
3:10 pm, March 30, 2026 Cybersecurity
The State of Secrets Sprawl 2026: 9 Takeaways for CISOs
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The State of Secrets Sprawl 2026 report reveals 29 million new hardcoded secre..
12:10 pm, March 30, 2026 Cybersecurity
Hackers now exploit critical F5 BIG-IP flaw in attacks, patch now
{ "priority": "CRITICAL", "cve": "N/A", "target": "F5 BIG-IP", "threat_actor": "N/A", "patch_ready": true, "insight": "Hackers exploit critical F5 BIG-IP flaw for remote code execution and..
11:10 am, March 30, 2026 Cybersecurity
Microsoft pulls KB5079391 Windows update over install issues
{ "priority": "MEDIUM", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft pulled a buggy Windows 11 non-security preview update KB507..
10:10 am, March 30, 2026 Cybersecurity
Russian CTRL Toolkit Delivered via Malicious LNK Files Hijacks RDP via FRP Tunnels
{ "priority": "HIGH", "cve": "N/A", "target": "N/A", "threat_actor": "Russian", "patch_ready": false, "insight": "Russian CTRL Toolkit delivered via malicious LNK files hijacks RDP via FRP..
10:10 am, March 30, 2026 Cybersecurity
Three China-Linked Clusters Target Southeast Asian Government in 2025 Cyber Campaign
{ "priority": "HIGH", "cve": "N/A", "target": "Southeast Asian Government", "threat_actor": "China-Linked Clusters", "patch_ready": false, "insight": "China-linked threat clusters targeted..
8:10 am, March 30, 2026 Cybersecurity
Critical Fortinet Forticlient EMS flaw now exploited in attacks
Attackers are now actively exploiting a critical vulnerability in Fortinet's FortiClient EMS platform, according to threat intelligence company Defused. [...]
8:10 am, March 30, 2026 Cybersecurity
European Commission confirms data breach after Europa.eu hack
{ "priority": "HIGH", "cve": "N/A", "target": "Europa.eu", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "European Commission confirms data breach after Europa.eu hack b..
7:10 am, March 30, 2026 Cybersecurity
ISC Stormcast For Monday, March 30th, 2026 https://isc.sans.edu/podcastdetail/9870, (Mon, Mar 30th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, March 30, 2026 Cybersecurity
DShield (Cowrie) Honeypot Stats and When Sessions Disconnect, (Mon, Mar 30th)
A lot of the information seen on DShield honeypots [1] is repeated bot traffic, especially when looking at the Cowrie [2] telnet and SSH sessions. However, how long a session lasts, how many commands ..
12:10 am, March 30, 2026 Cybersecurity
FBI confirms hack of Director Patel's personal email inbox
The Handala hackers associated with Iran have breached the personal email account of FBI Director Kash Patel and published photos and documents. [...]
9:10 pm, March 29, 2026 Cybersecurity
File read flaw in Smart Slider plugin impacts 500K WordPress sites
{ "priority": "HIGH", "cve": "N/A", "target": "Smart Slider 3 WordPress plugin", "threat_actor": "N/A", "patch_ready": true, "insight": "A vulnerability in the Smart Slider 3 WordPress plu..
3:10 pm, March 29, 2026 Cybersecurity
Iran-Linked Hackers Breach FBI Director’s Personal Email, Hit Stryker With Wiper Attack
{ "priority": "HIGH", "cve": "N/A", "target": "FBI Director's Personal Email", "threat_actor": "Handala Hack Team", "patch_ready": false, "insight": "Iran-linked hackers breached FBI Direc..
5:10 pm, March 28, 2026 Cybersecurity
TeamPCP Supply Chain Campaign: Update 003 - Operational Tempo Shift as Campaign Enters Monetization Phase With No New Compromises in 48 Hours, (Sat, Mar 28th)
``` { "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "TeamPCP", "patch_ready": false, "insight": "The TeamPCP supply chain campaign has entered its monetization phase w..
4:10 pm, March 28, 2026 Cybersecurity
New Infinity Stealer malware grabs macOS data via ClickFix lures
{ "priority": "HIGH", "cve": "N/A", "target": "macOS", "threat_actor": "N/A", "patch_ready": false, "insight": "New Infinity Stealer malware targets macOS systems with a Python payload, pa..
3:10 pm, March 28, 2026 Cybersecurity
Citrix NetScaler Under Active Recon for CVE-2026-3055 (CVSS 9.3) Memory Overread Bug
{ "priority": "CRITICAL", "cve": "CVE-2026-3055", "target": "Citrix NetScaler ADC and NetScaler Gateway", "threat_actor": "N/A", "patch_ready": false, "insight": "Citrix NetScaler ADC and ..
10:10 am, March 28, 2026 Cybersecurity
TA446 Deploys DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign
Proofpoint has disclosed details of a targeted email campaign in which threat actors with ties to Russia are leveraging the recently disclosed DarkSword exploit kit to target iOS devices. The activity..
9:10 am, March 28, 2026 Cybersecurity
CISA Adds CVE-2025-53521 to KEV After Active F5 BIG-IP APM Exploitation
{ "priority": "CRITICAL", "cve": "CVE-2025-53521", "target": "F5 BIG-IP Access Policy Manager (APM)", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA added CVE-2025-53521 to K..
8:10 am, March 28, 2026 Cybersecurity
TA446 Deploys Leaked DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign
{ "priority": "HIGH", "cve": "N/A", "target": "iOS devices", "threat_actor": "TA446 (Callisto)", "patch_ready": false, "insight": "Russian state-sponsored threat group TA446 uses leaked Da..
8:10 am, March 28, 2026 Cybersecurity
Backdoored Telnyx PyPI package pushes malware hidden in WAV audio
TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver credential-stealing malware hidden inside a WAV file. [...]
10:10 pm, March 27, 2026 Cybersecurity
Apple Sends Lock Screen Alerts to Outdated iPhones Over Active Web-Based Exploits
{ "priority": "HIGH", "cve": "N/A", "target": "Apple iOS", "threat_actor": "N/A", "patch_ready": true, "insight": "Apple sends Lock Screen alerts to outdated iPhones to warn of active web-..
7:10 pm, March 27, 2026 Cybersecurity
TeamPCP Pushes Malicious Telnyx Versions to PyPI, Hides Stealer in WAV Files
{ "priority": "HIGH", "cve": "N/A", "target": "telnyx Python package", "threat_actor": "TeamPCP", "patch_ready": false, "insight": "TeamPCP pushes malicious Telnyx versions to PyPI, hiding..
6:10 pm, March 27, 2026 Cybersecurity
European Commission investigating breach after Amazon cloud account hack
{ "priority": "HIGH", "cve": "N/A", "target": "Amazon cloud environment", "threat_actor": "Unknown threat actor", "patch_ready": false, "insight": "The European Commission is investigating..
5:10 pm, March 27, 2026 Cybersecurity
Fake VS Code alerts on GitHub spread malware to developers
{ "priority": "HIGH", "cve": "N/A", "target": "GitHub", "threat_actor": "N/A", "patch_ready": false, "insight": "Malicious actors are spreading malware to developers via fake VS Code secur..
5:10 pm, March 27, 2026 Cybersecurity
Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security Checks
{ "priority": "HIGH", "cve": "N/A", "target": "Open VSX", "threat_actor": "N/A", "patch_ready": true, "insight": "A bug in Open VSX's pre-publish scanning pipeline allowed malicious VS Cod..
3:10 pm, March 27, 2026 Cybersecurity
TeamPCP Supply Chain Campaign: Update 002 - Telnyx PyPI Compromise, Vect Ransomware Mass Affiliate Program, and First Named Victim Claim, (Fri, Mar 27th)
``` { "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "TeamPCP", "patch_ready": false, "insight": "Update on TeamPCP supply chain campaign, including Telnyx PyPI comprom..
3:10 pm, March 27, 2026 Cybersecurity
Agentic GRC: Teams Get the Tech. The Mindset Shift Is What's Missing.
Agentic GRC automates workflows, forcing teams to rethink their role beyond operations. Anecdotes explains why the biggest challenge is shifting from execution to risk leadership. [...]
2:10 pm, March 27, 2026 Cybersecurity
Bearlyfy Hits Russian Firms with Custom GenieLocker Ransomware
{ "priority": "HIGH", "cve": "N/A", "target": "Russian Firms", "threat_actor": "Bearlyfy", "patch_ready": false, "insight": "Bearlyfy, a pro-Ukrainian group, has conducted over 70 cyber at..
1:10 pm, March 27, 2026 Cybersecurity
AitM Phishing Targets TikTok Business Accounts Using Cloudflare Turnstile Evasion
{ "priority": "HIGH", "cve": "N/A", "target": "TikTok Business Accounts", "threat_actor": "AitM", "patch_ready": false, "insight": "AitM phishing campaign targets TikTok Business accounts ..
1:10 pm, March 27, 2026 Cybersecurity
European Commission investigating breach after Amazon cloud hack
The European Commission, the European Union's main executive body, is investigating a security breach after a threat actor gained access to its Amazon cloud infrastructure. [...]
1:10 pm, March 27, 2026 Cybersecurity
We Are At War
Rising geopolitical tensions are reflected (or in some cases preceded) by cyber operations, while technology itself has become politicized. Let’s admit it: we are in the middle of it. Introduction..
12:10 pm, March 27, 2026 Cybersecurity
Anti-piracy coalition takes down AnimePlay app with 5 million users
{ "priority": "INFO", "cve": "N/A", "target": "AnimePlay", "threat_actor": "N/A", "patch_ready": false, "insight": "The Alliance for Creativity and Entertainment shut down AnimePlay, a maj..
11:10 am, March 27, 2026 Cybersecurity
Windows 11 KB5079391 update rolls out Smart App Control improvements
{ "priority": "INFO", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft releases KB5079391 preview cumulative update for Windows 11 2..
10:10 am, March 27, 2026 Cybersecurity
Bearlyfy Hits 70+ Russian Firms with Custom GenieLocker Ransomware
{ "priority": "HIGH", "cve": "N/A", "target": "Russian Firms", "threat_actor": "Bearlyfy", "patch_ready": false, "insight": "Bearlyfy, a pro-Ukrainian group, has launched over 70 cyber att..
10:10 am, March 27, 2026 Cybersecurity
LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworks
{ "priority": "HIGH", "cve": "N/A", "target": "LangChain, LangGraph", "threat_actor": "N/A", "patch_ready": false, "insight": "Multiple security vulnerabilities in LangChain and LangGraph ..
9:10 am, March 27, 2026 Cybersecurity
Dutch Police discloses security breach after phishing attack
{ "priority": "INFO", "cve": "N/A", "target": "Dutch National Police (Politie)", "threat_actor": "N/A", "patch_ready": false, "insight": "Dutch Police discloses limited security breach due..
9:10 am, March 27, 2026 Cybersecurity
ISC Stormcast For Friday, March 27th, 2026 https://isc.sans.edu/podcastdetail/9868, (Fri, Mar 27th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "SANS Internet Storm Center podcast for Friday, March 27th, 2026." }
2:10 am, March 27, 2026 Cybersecurity
Ajax football club hack exposed fan data, enabled ticket hijack
{ "priority": "MEDIUM", "cve": "N/A", "target": "Ajax Amsterdam (AFC Ajax)", "threat_actor": "N/A", "patch_ready": false, "insight": "A hacker exploited vulnerabilities in Ajax Amsterdam's..
9:10 pm, March 26, 2026 Cybersecurity
AI Testing
