List cybersec
SharePoint RCE CVE-2026-45659 Added to CISA KEV After Active Exploitation
{"priority": "CRITICAL", "cve": "CVE-2026-45659", "target": "Microsoft SharePoint Server", "threat_actor": "N/A", "patch_ready": true, "insight": "CVE-2026-45659 RCE vulnerability in Microsoft SharePo..
7:10 am, July 2, 2026 Cybersecurity
Medtronic notifies customers impacted by ShinyHunters data breach
{ "priority": "INFO", "cve": "N/A", "target": "Medtronic", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "Medtronic notifies customers impacted by ShinyHunters data brea..
5:10 am, July 2, 2026 Cybersecurity
ISC Stormcast For Thursday, July 2nd, 2026 https://isc.sans.edu/podcastdetail/9992, (Thu, Jul 2nd)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Article discussing how to earn a billion dollars." }
2:10 am, July 2, 2026 Cybersecurity
FortiBleed credential-theft campaign linked to Lynx ransomware
{ "priority": "HIGH", "cve": "N/A", "target": "Fortinet", "threat_actor": "INC", "patch_ready": false, "insight": "FortiBleed credential theft campaign linked to Lynx ransomware operations..
10:10 pm, July 1, 2026 Cybersecurity
New ChocoPoC malware targets researchers via trojanized PoC exploits
Multiple weaponized proof-of-concept (PoC) exploits on GitHub were found delivering a Python-based remote access trojan (RAT) named ChocoPoC that can execute commands and steal sensitive data in a cam..
9:10 pm, July 1, 2026 Cybersecurity
Kubota says hackers had month-long access to network systems
{ "priority": "HIGH", "cve": "N/A", "target": "Kubota North America Corporation", "threat_actor": "N/A", "patch_ready": false, "insight": "Hackers had access to Kubota North America Corpor..
9:10 pm, July 1, 2026 Cybersecurity
19-Year-Old Scattered Spider Suspect Extradited to Face U.S. Hacking Charges
{"priority":"LOW","cve":"N/A","target":"N/A","threat_actor":"Scattered Spider","patch_ready":false,"insight":"A 19-year-old suspect of the Scattered Spider hacking group has been extradited to the U.S..
8:10 pm, July 1, 2026 Cybersecurity
Unpatched Argo CD Repo-Server Flaw Could Let Attackers Take Over Kubernetes Clusters
{"priority":"CRITICAL","cve":"N/A","target":"Argo CD","threat_actor":"N/A","patch_ready":false,"insight":"Unpatched Argo CD repo-server flaw allows unauthenticated attackers to run code and potentiall..
8:10 pm, July 1, 2026 Cybersecurity
ChocoPoc malware delivered via trojanized exploits on GitHub
Multiple weaponized proof-of-concept (PoC) exploits on GitHub delivered a Python-based remote access trojan (RAT) called ChocoPoC that can execute commands and steal sensitive data. [...]
8:10 pm, July 1, 2026 Cybersecurity
VEIL#DROP Malware Chain Uses Blogger Platform to Deliver PureLogs Stealer
{ "priority": "HIGH", "cve": "N/A", "target": "Blogger", "threat_actor": "VEIL#DROP", "patch_ready": false, "insight": "VEIL#DROP malware chain delivers PureLogs Stealer via social enginee..
7:10 pm, July 1, 2026 Cybersecurity
SEO-Poisoned Software Sites Abuse ScreenConnect to Deploy AsyncRAT
{ "priority": "HIGH", "cve": "N/A", "target": "ScreenConnect", "threat_actor": "N/A", "patch_ready": false, "insight": "Threat actors are using ScreenConnect to deploy AsyncRAT via SEO-poi..
7:10 pm, July 1, 2026 Cybersecurity
DHS confirms hackers breached HSIN info-sharing platform
The Department of Homeland Security is investigating a cyberattack that compromised the Homeland Security Information Network (HSIN), a sensitive information-sharing platform used by federal, state, l..
6:10 pm, July 1, 2026 Cybersecurity
Hackers target Microsoft 365 accounts with 81 million login attempts
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft 365", "threat_actor": "N/A", "patch_ready": false, "insight": "An aggressive password-spraying campaign generated over 81 million l..
5:10 pm, July 1, 2026 Cybersecurity
Webinar: Why traditional email security is no longer enough
Modern phishing, business email compromise, and account takeover attacks increasingly exploit trusted identities and legitimate business workflows, making them harder for traditional email defenses to..
5:10 pm, July 1, 2026 Cybersecurity
Critical Cursor Flaws Could Let Prompt Injection Escape Sandbox and Run Commands
{ "priority": "CRITICAL", "cve": "CVE-2026-50548, CVE-2026-50549", "target": "Cursor AI code editor", "threat_actor": "Cato AI Labs", "patch_ready": false, "insight": "Two flaws in Cursor ..
4:10 pm, July 1, 2026 Cybersecurity
Adobe Patches 7 CVSS 10.0 Flaws in ColdFusion and Campaign Classic
{ "priority": "CRITICAL", "cve": "N/A", "target": "Adobe ColdFusion and Campaign Classic", "threat_actor": "N/A", "patch_ready": true, "insight": "Adobe patches 7 CVSS 10.0 flaws in ColdFu..
4:10 pm, July 1, 2026 Cybersecurity
Ousaban Banking Trojan Targets Iberian Bank Users with Fake PDF Lures
{ "priority": "HIGH", "cve": "N/A", "target": "Iberian Bank Users", "threat_actor": "Ousaban", "patch_ready": false, "insight": "Ousaban Banking Trojan targets Iberian bank users with fake..
4:10 pm, July 1, 2026 Cybersecurity
AI-Generated Browser Ransomware Abuses Chromium API on Windows and Android
{ "priority": "HIGH", "cve": "N/A", "target": "Chromium-based browsers on Windows and Android", "threat_actor": "N/A", "patch_ready": false, "insight": "AI-generated ransomware uses Chromi..
3:10 pm, July 1, 2026 Cybersecurity
Progress Kemp LoadMaster Pre-Auth RCE Flaw Faces Active Exploitation Attempts
{ "priority": "CRITICAL", "cve": "CVE-2026-8037", "target": "Progress Kemp LoadMaster", "threat_actor": "N/A", "patch_ready": true, "insight": "Progress Kemp LoadMaster Pre-Auth RCE Flaw F..
3:10 pm, July 1, 2026 Cybersecurity
Turning Indicators into Intelligence in OpenCTI with Criminal IP
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "An article discussing methods to achieve significant financial success." }
3:10 pm, July 1, 2026 Cybersecurity
2026 Cybersecurity Assessment: The Gap Between Awareness and Resilience
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The 2026 Bitdefender Cybersecurity Assessment highlights a gap between cyber r..
1:10 pm, July 1, 2026 Cybersecurity
Over 900 Oracle E-Business instances exposed to ongoing attacks
{ "priority": "CRITICAL", "cve": "N/A", "target": "Oracle E-Business Suite", "threat_actor": "N/A", "patch_ready": false, "insight": "Over 900 Oracle E-Business Suite instances are exposed..
1:10 pm, July 1, 2026 Cybersecurity
Microsoft Accelerates Post-Quantum Cryptography Shift to 2029
{ "priority": "INFO", "cve": "N/A", "target": "Microsoft", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft accelerates post-quantum cryptography shift to 2029 due to adv..
12:10 pm, July 1, 2026 Cybersecurity
Microsoft fixes GIF functionality in the Windows Emoji Panel
{ "priority": "LOW", "cve": "N/A", "target": "Windows Emoji Panel", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft fixed the GIF functionality in the Windows Emoji Panel..
11:10 am, July 1, 2026 Cybersecurity
Amazon fined $2.25M for withholding evidence from fraud victims
{ "priority": "LOW", "cve": "N/A", "target": "Amazon", "threat_actor": "N/A", "patch_ready": false, "insight": "Amazon fined $2.25M for withholding evidence from fraud victims." }
10:10 am, July 1, 2026 Cybersecurity
Anthropic Restores Claude Fable 5 After U.S. Lifts Jailbreak-Linked Export Controls
{"priority":"INFO","cve":"N/A","target":"Anthropic Claude Fable 5","threat_actor":"N/A","patch_ready":false,"insight":"Anthropic has restored Claude Fable 5 worldwide after the U.S. lifted export cont..
8:10 am, July 1, 2026 Cybersecurity
Phantom Squatting Uses AI-Hallucinated Domains for Phishing and Malware
{ "priority": "HIGH", "cve": "N/A", "target": "AI-Hallucinated Domains", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers use AI-hallucinated domains for phishing and mal..
8:10 am, July 1, 2026 Cybersecurity
Adobe patches seven max severity ColdFusion, Campaign flaws
{ "priority": "CRITICAL", "cve": "N/A", "target": "Adobe ColdFusion and Campaign Classic", "threat_actor": "N/A", "patch_ready": true, "insight": "Adobe patches seven max severity flaws in..
8:10 am, July 1, 2026 Cybersecurity
Why Ask Credentials If There Are Secret Codes?, (Wed, Jul 1st)
{ "priority": "INFO", "cve": "N/A", "target": "Metamask", "threat_actor": "N/A", "patch_ready": false, "insight": "A phishing campaign targets Metamask cryptocurrency wallet users." }
6:10 am, July 1, 2026 Cybersecurity
Researcher Analyzes 3,000 Live ClickFix Payloads, Exposing API-Driven Malware Delivery
{ "priority": "HIGH", "cve": "N/A", "target": "ClickFix", "threat_actor": "N/A", "patch_ready": false, "insight": "Researchers analyze 3,000 live ClickFix payloads, revealing API-driven ma..
6:10 am, July 1, 2026 Cybersecurity
Azure CLI Password Spray Hits at Least 78 Microsoft Accounts in 81M+ Attempts
{ "priority": "HIGH", "cve": "N/A", "target": "Azure CLI", "threat_actor": "N/A", "patch_ready": false, "insight": "A massive, ongoing, automated password spray attack targeted Microsoft's..
6:10 am, July 1, 2026 Cybersecurity
Citrix Patches Six NetScaler Flaws Allowing File Read and Denial-of-Service
{ "priority": "HIGH", "cve": "CVE-2026-8451", "target": "Citrix NetScaler ADC and NetScaler Gateway", "threat_actor": "N/A", "patch_ready": true, "insight": "Citrix patches six NetScaler f..
5:10 am, July 1, 2026 Cybersecurity
ISC Stormcast For Wednesday, July 1st, 2026 https://isc.sans.edu/podcastdetail/9990, (Wed, Jul 1st)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, July 1, 2026 Cybersecurity
Anthropic to restore Claude Fable access on Wednesday
{"priority":"INFO","cve":"N/A","target":"Claude Fable","threat_actor":"N/A","patch_ready":false,"insight":"Anthropic to restore access to Claude Fable models after export controls lifted"}
1:10 am, July 1, 2026 Cybersecurity
Anthropic rolls out Sonnet 5 with near-Opus 4.8 performance at a lower price
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Anthropic releases Sonnet 5, a more affordable AI model with performance close..
12:10 am, July 1, 2026 Cybersecurity
Microsoft accelerates quantum-safe roadmap as risks grow
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft accelerates quantum-safe security roadmap due to growing risks..
10:10 pm, June 30, 2026 Cybersecurity
New BioShocking attack manipulates AI browser into data theft
{ "priority": "HIGH", "cve": "N/A", "target": "AI-powered browsers", "threat_actor": "N/A", "patch_ready": false, "insight": "New prompt injection attack called BioShocking tricks AI brows..
10:10 pm, June 30, 2026 Cybersecurity
Malicious PyPI packages give hackers control of Telegram bot servers
{ "priority": "HIGH", "cve": "N/A", "target": "PyPI packages, specifically Pyrogram forks", "threat_actor": "N/A", "patch_ready": false, "insight": "Malicious PyPI packages are being used ..
9:10 pm, June 30, 2026 Cybersecurity
RustDuck Botnet Rebuilds in Rust to Hijack Routers and Servers for DDoS
{ "priority": "HIGH", "cve": "N/A", "target": "Routers, IP cameras, Android boxes, servers", "threat_actor": "RustDuck", "patch_ready": false, "insight": "New RustDuck malware hijacks devi..
7:10 pm, June 30, 2026 Cybersecurity
Microsoft Warns Poisoned MCP Tool Descriptions Can Make AI Agents Leak Data
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft AI Agents", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers can hijack AI agents using poisoned tool description..
7:10 pm, June 30, 2026 Cybersecurity
Langflow RCE Exploited to Deploy Monero Miner on Exposed AI App Endpoints
{"priority":"CRITICAL","cve":"CVE-2026-33017","target":"Langflow","threat_actor":"N/A","patch_ready":false,"insight":"CVE-2026-33017 (CVSS 9.3) exploited for Monero miner deployment on exposed AI app ..
6:10 pm, June 30, 2026 Cybersecurity
Silent Swap Crypto Clipper Uses Fake Google Notes Extension to Replace Wallet Addresses
{ "priority": "HIGH", "cve": "N/A", "target": "Google Notes Extension", "threat_actor": "Silent Swap", "patch_ready": false, "insight": "Active browser extension campaign steals cryptocurr..
4:10 pm, June 30, 2026 Cybersecurity
Fake Perplexity extension on Chrome Web Store tracked searches
{ "priority": "HIGH", "cve": "N/A", "target": "Chrome Web Store", "threat_actor": "N/A", "patch_ready": false, "insight": "A malicious extension on Chrome Web Store masquerades as Perplexi..
4:10 pm, June 30, 2026 Cybersecurity
282 iOS AI Apps Leak API Keys and Open AI Proxy Access in Network Traffic Study
{ "priority": "CRITICAL", "cve": "N/A", "target": "iOS AI Apps", "threat_actor": "N/A", "patch_ready": false, "insight": "Nearly two-thirds of tested iOS AI chatbot apps exposed paid AI ac..
3:10 pm, June 30, 2026 Cybersecurity
GuardFall Exposes Open-Source AI Coding Agents to Decades-Old Shell Injection Risks
{ "priority": "HIGH", "cve": "N/A", "target": "Open-source AI coding agents", "threat_actor": "Adversa AI", "patch_ready": false, "insight": "A decades-old shell injection trick, GuardFall..
3:10 pm, June 30, 2026 Cybersecurity
Lessons from the Underground: How to Combat Business Email Compromise
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses how to combat Business Email Compromise (BEC) attacks by..
2:10 pm, June 30, 2026 Cybersecurity
What the Numbers Say About FIFA 2026 Cyber Risk
{ "priority": "HIGH", "cve": "N/A", "target": "FIFA World Cup 2026", "threat_actor": "N/A", "patch_ready": false, "insight": "FIFA World Cup 2026 faces pre-planned cyber threats across mul..
1:10 pm, June 30, 2026 Cybersecurity
Microsoft adds smarter bot protection to Teams meetings
{"priority":"MEDIUM","cve":"N/A","target":"Microsoft Teams","threat_actor":"N/A","patch_ready":false,"insight":"Microsoft introduces policy to control third-party bot access to Teams meetings"}
12:10 pm, June 30, 2026 Cybersecurity
Insurance giant Aflac discloses data breach after subsidiary hack
{ "priority": "HIGH", "cve": "N/A", "target": "Aflac", "threat_actor": "N/A", "patch_ready": false, "insight": "Aflac's Japan subsidiary was breached, resulting in the theft of personal an..
12:10 pm, June 30, 2026 Cybersecurity
Attackers Exploit SimpleHelp CVE-2026-48558 to Deploy TaskWeaver and Djinn Stealer
An unknown threat actor has been observed exploiting a recently disclosed maximum-severity security flaw in SimpleHelp to deliver two previously unreported malware families, TaskWeaver and Djinn Steal..
12:10 pm, June 30, 2026 Cybersecurity
