List cybersec
Progress Kemp LoadMaster Flaw Could Let Attackers Run Root Commands Pre-Auth
{ "priority": "CRITICAL", "cve": "CVE-2026-8037", "target": "Progress Kemp LoadMaster", "threat_actor": "N/A", "patch_ready": true, "insight": "A critical vulnerability in Progress Kemp Lo..
9:10 am, June 30, 2026 Cybersecurity
New BioShocking Attack Tricks AI Browsers Into Leaking User Credentials
{ "priority": "HIGH", "cve": "N/A", "target": "AI browsers", "threat_actor": "N/A", "patch_ready": false, "insight": "Researchers tricked AI browsers into leaking user credentials using a ..
9:10 am, June 30, 2026 Cybersecurity
CISA: Windows BlueHammer flaw now exploited by ransomware gangs
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft Defender", "threat_actor": "Ransomware gangs", "patch_ready": false, "insight": "Ransomware gangs are exploiting the BlueHammer vul..
9:10 am, June 30, 2026 Cybersecurity
Apple Patches 30+ iOS, macOS, Safari Flaws, Including AI-Discovered WebKit Bugs
{"priority": "HIGH", "cve": "CVE-2026-43707", "target": "Apple iOS, macOS, Safari", "threat_actor": "N/A", "patch_ready": true, "insight": "Apple patches over 30 flaws in iOS, macOS, and Safari, inclu..
8:10 am, June 30, 2026 Cybersecurity
Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild
{ "priority": "CRITICAL", "cve": "CVE-2026-46817", "target": "Oracle E-Business Suite", "threat_actor": "N/A", "patch_ready": false, "insight": "CVE-2026-46817 Oracle E-Business Suite flaw..
6:10 am, June 30, 2026 Cybersecurity
ISC Stormcast For Tuesday, June 30th, 2026 https://isc.sans.edu/podcastdetail/9988, (Tue, Jun 30th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A summary of an article on how to earn a billion dollars." }
3:10 am, June 30, 2026 Cybersecurity
NAIC says public data stolen in ShinyHunters' PeopleSoft breach
The National Association of Insurance Commissioners (NAIC) says the ShinyHunters extortion group stole only publicly available data, outdated logs, and configuration files after breaching its systems ..
9:10 pm, June 29, 2026 Cybersecurity
Nissan discloses employee data breach linked to Oracle zero-day attacks
Nissan is warning that it suffered a data breach affecting current and former employees after threat actors exploited an Oracle PeopleSoft vulnerability in data theft attacks previously linked to the ..
9:10 pm, June 29, 2026 Cybersecurity
Malicious Perplexity Chrome Extension Intercepted Searches and Address Bar Input
{ "priority": "HIGH", "cve": "N/A", "target": "Perplexity Chrome Extension", "threat_actor": "N/A", "patch_ready": false, "insight": "Malicious Chrome extension impersonated AI search engi..
8:10 pm, June 29, 2026 Cybersecurity
Microsoft extends Windows Server 2022 hotpatching until October 2027
{ "priority": "INFO", "cve": "N/A", "target": "Windows Server 2022", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft extends Windows Server 2022 hotpatching support unti..
6:10 pm, June 29, 2026 Cybersecurity
WhatsApp rolls out usernames to help users hide their phone number
{ "priority": "INFO", "cve": "N/A", "target": "WhatsApp", "threat_actor": "N/A", "patch_ready": false, "insight": "WhatsApp introduces usernames to enhance user privacy by allowing them to..
6:10 pm, June 29, 2026 Cybersecurity
Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government Attacks
{ "priority": "HIGH", "cve": "N/A", "target": "Indian Government", "threat_actor": "Mustang Panda", "patch_ready": false, "insight": "Mustang Panda uses Zoho WorkDrive as command channel i..
5:10 pm, June 29, 2026 Cybersecurity
WhatsApp is Finally Getting Usernames to Help Keep Phone Numbers Private
{ "priority": "INFO", "cve": "N/A", "target": "WhatsApp", "threat_actor": "N/A", "patch_ready": false, "insight": "WhatsApp introduces optional usernames to protect user privacy and phone ..
5:10 pm, June 29, 2026 Cybersecurity
⚡ Weekly Recap: Linux Kernel Flaws, AI Malware Tricks, Turla Backdoor, Infostealers and More
{ "priority": "MEDIUM", "cve": "N/A", "target": "Linux Kernel", "threat_actor": "N/A", "patch_ready": false, "insight": "New DirtyClone Linux Kernel flaw discovered, allowing local attacks..
3:10 pm, June 29, 2026 Cybersecurity
U.S. offers $10 million for hackers targeting WhatsApp, Signal users
The U.S. Department of State is offering up to $10 million for information that helps identify or locate members of the UNC5792 and UNC4221 hacker groups, which are linked to Russia's intelligence and..
3:10 pm, June 29, 2026 Cybersecurity
236,000 DCloud Uni-App Sites Used in Crypto Scams, Phishing, and Wallet Drainers
{ "priority": "HIGH", "cve": "N/A", "target": "DCloud Uni-App", "threat_actor": "N/A", "patch_ready": false, "insight": "Over 236,000 DCloud Uni-App sites used in crypto scams, phishing, a..
2:10 pm, June 29, 2026 Cybersecurity
Hackers now exploit critical Oracle E-Business flaw in attacks
{ "priority": "CRITICAL", "cve": "CVE-2026-46817", "target": "Oracle E-Business Suite (EBS)", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers are exploiting a critical v..
2:10 pm, June 29, 2026 Cybersecurity
Critical SimpleHelp flaw exploited to deploy new stealer malware
{ "priority": "CRITICAL", "cve": "CVE-2026-48558", "target": "SimpleHelp", "threat_actor": "N/A", "patch_ready": false, "insight": "CVE-2026-48558 in SimpleHelp is being exploited to deplo..
2:10 pm, June 29, 2026 Cybersecurity
Agentic AI Has an Identity Problem and Attackers Know It
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses the challenges of securing AI agents with privileged ide..
2:10 pm, June 29, 2026 Cybersecurity
Webinar: Why business email compromise attacks keep succeeding
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A webinar discusses the rise of business email compromise attacks using convin..
1:10 pm, June 29, 2026 Cybersecurity
US seizes hundreds of FIFA World Cup illegal streaming domains
{ "priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The U.S. Justice Department seized nearly 400 web domains used for illegal stre..
12:10 pm, June 29, 2026 Cybersecurity
Gamaredon Expands Ukraine Attacks with New Malware and Cloud Service Abuse
{ "priority": "HIGH", "cve": "N/A", "target": "Ukraine", "threat_actor": "Gamaredon", "patch_ready": false, "insight": "Gamaredon APT group expands malware arsenal in ongoing Ukraine cyber..
12:10 pm, June 29, 2026 Cybersecurity
Why Post-Quantum Cryptography Starts With Credentials
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Post-quantum cryptography is crucial for protecting credentials as quantum com..
12:10 pm, June 29, 2026 Cybersecurity
Adding some Automation to the favicon.ico method of Host Recon, (Mon, Jun 29th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The author is sharing automation techniques for host recon in pentesting, spec..
12:10 pm, June 29, 2026 Cybersecurity
Microsoft Removes 119 Edge Extensions That Hid Malware in Images and Fonts
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft Edge", "threat_actor": "StegoAd", "patch_ready": true, "insight": "Microsoft removed 119 Edge extensions that hid malware in images..
10:10 am, June 29, 2026 Cybersecurity
Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw
A public proof-of-concept is now out for CVE-2026-55200, a critical flaw in libssh2 that lets a malicious or compromised SSH server trigger memory corruption on a connecting client, with possible code..
8:10 am, June 29, 2026 Cybersecurity
Hijacked npm and Go Packages Use VS Code Tasks to Deploy Python Infostealer
{ "priority": "HIGH", "cve": "N/A", "target": "npm, Go Packages, VS Code", "threat_actor": "N/A", "patch_ready": false, "insight": "Hijacked npm and Go packages deploy Python infostealer v..
7:10 am, June 29, 2026 Cybersecurity
ISC Stormcast For Monday, June 29th, 2026 https://isc.sans.edu/podcastdetail/9986, (Mon, Jun 29th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, June 29, 2026 Cybersecurity
Data breach exposes up to 14.2 million email logins at six ISPs
Japanese telecommunications operator KDDI Corporation disclosed a data breach where threat actors gained access to one of its email systems used by five other internet service providers (ISPs) in the ..
3:10 pm, June 28, 2026 Cybersecurity
YARA-X 1.18.0 and 1.19.0 Release, (Sun, Jun 28th)
{ "priority": "INFO", "cve": "N/A", "target": "YARA-X", "threat_actor": "N/A", "patch_ready": false, "insight": "YARA-X releases versions 1.18.0 and 1.19.0 with improvements and bugfixes."..
8:10 am, June 28, 2026 Cybersecurity
Ukraine Says Russian Intelligence Used Fake Support Texts to Steal Messaging Credentials
{ "priority": "HIGH", "cve": "N/A", "target": "Messaging accounts of government officials, military personnel, politicians, and activists", "threat_actor": "Russian intelligence services", "..
6:10 pm, June 27, 2026 Cybersecurity
Clean GitHub repo tricks AI coding agents into running malware
{ "priority": "HIGH", "cve": "N/A", "target": "GitHub", "threat_actor": "N/A", "patch_ready": false, "insight": "A GitHub repository can be tricked into executing a malicious payload invis..
3:10 pm, June 27, 2026 Cybersecurity
OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber Safeguards
{ "priority": "INFO", "cve": "N/A", "target": "GPT-5.6 Sol", "threat_actor": "N/A", "patch_ready": false, "insight": "OpenAI releases GPT-5.6 Sol, Terra, and Luna with enhanced cyber safeg..
1:10 pm, June 27, 2026 Cybersecurity
FBI: Russian hackers now target Signal backup recovery keys
{ "priority": "HIGH", "cve": "N/A", "target": "Signal", "threat_actor": "Russian intelligence services", "patch_ready": false, "insight": "Russian hackers are targeting Signal backup recov..
10:10 pm, June 26, 2026 Cybersecurity
FBI Warns Russian Intelligence Hackers Target Signal Backup Recovery Keys
{ "priority": "HIGH", "cve": "N/A", "target": "Signal", "threat_actor": "Russian Intelligence", "patch_ready": false, "insight": "Russian intelligence hackers are targeting Signal backup r..
8:10 pm, June 26, 2026 Cybersecurity
CISA sets urgent deadline to fix Cisco flaw exploited in attacks
{ "priority": "CRITICAL", "cve": "N/A", "target": "Cisco Unified Communications Manager Server", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA mandates immediate patching of..
8:10 pm, June 26, 2026 Cybersecurity
New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks
{"priority":"HIGH","cve":"N/A","target":"N/A","threat_actor":"StrikeShark","patch_ready":false,"insight":"New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks"}
7:10 pm, June 26, 2026 Cybersecurity
Cybersecurity firms targeted by fraudulent OpenAI organization invites
Threat actors are creating OpenAI tenants that impersonate legitimate companies and inviting employees to join them, in what appears to be a ploy to trick targets into submitting sensitive company inf..
6:10 pm, June 26, 2026 Cybersecurity
Polymarket customers lose $3 million in supply-chain attack
{ "priority": "HIGH", "cve": "N/A", "target": "Polymarket", "threat_actor": "N/A", "patch_ready": false, "insight": "Hackers injected malicious script into Polymarket's frontend via third-..
6:10 pm, June 26, 2026 Cybersecurity
Chinese-Speaking APT Deploys New TinyRCT Backdoor in Southeast Asia Campaign
{"priority": "HIGH", "cve": "N/A", "target": "Government entities and critical infrastructure in Southeast Asia", "threat_actor": "CL-STA-1062", "patch_ready": false, "insight": "Chinese-speaking APT ..
5:10 pm, June 26, 2026 Cybersecurity
Amazon Q Developer Flaw Could Let Malicious Repos Run Code via MCP Configs
{ "priority": "HIGH", "cve": "CVE-2026-12957", "target": "Amazon Q Developer", "threat_actor": "N/A", "patch_ready": true, "insight": "A high-severity flaw in Amazon Q Developer allowed a ..
3:10 pm, June 26, 2026 Cybersecurity
Your First GRC Agent: A Red Teamer's Walkthrough
AI won't replace GRC analysts, but it can eliminate much of the repetitive work they do. Anecdotes walks through building an agent that continuously monitors controls, identifies evidence gaps, and op..
2:10 pm, June 26, 2026 Cybersecurity
Guardian Agents: The Next Layer of Identity Governance
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses the challenges of governing AI agents in enterprise envi..
1:10 pm, June 26, 2026 Cybersecurity
New DirtyClone Linux Kernel Flaw Lets Local Users Gain Root via Cloned Packets
{ "priority": "CRITICAL", "cve": "CVE-2026-43503", "target": "Linux Kernel", "threat_actor": "N/A", "patch_ready": true, "insight": "New DirtyClone Linux Kernel Flaw Lets Local Users Gain ..
1:10 pm, June 26, 2026 Cybersecurity
CISA Adds Exploited PTC Windchill RCE Flaw to KEV as Web Shell Attacks Continue
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a critical remote code execution vulnerability impacting PTC Windchill PDMlink and PTC FlexPLM enterprise Product Dat..
1:10 pm, June 26, 2026 Cybersecurity
New Linux pedit COW Exploit Enables Root Access by Poisoning Cached Binaries
{ "priority": "CRITICAL", "cve": "CVE-2026-46331", "target": "Linux kernel", "threat_actor": "N/A", "patch_ready": false, "insight": "A local unprivileged user can gain root access on affe..
1:10 pm, June 26, 2026 Cybersecurity
Microsoft Warns of Photo ZIP Phishing Campaign Targeting Hotels with Node.js Implant
``` { "priority": "HIGH", "cve": "N/A", "target": "Hotel and hospitality organizations", "threat_actor": "N/A", "patch_ready": false, "insight": "Active phishing campaign targets hotels wi..
11:10 am, June 26, 2026 Cybersecurity
Miasma Malware Targets npm Packages and GitHub Actions in Supply Chain Attack
{ "priority": "HIGH", "cve": "N/A", "target": "npm Packages and GitHub Actions", "threat_actor": "Mini Shai-Hulud, Miasma, and Hades", "patch_ready": false, "insight": "Miasma Malware Targ..
11:10 am, June 26, 2026 Cybersecurity
Russia Used Cellebrite on Jailed Activist's iPhone Months After Sales Cutoff
{"priority":"INFO","cve":"N/A","target":"iPhone","threat_actor":"Russian authorities","patch_ready":false,"insight":"Russian authorities used Cellebrite's UFED forensic tools to break into the iPhone ..
9:10 am, June 26, 2026 Cybersecurity
Google Details Turla's New STOCKSTAY Backdoor Used in Ukraine Espionage Attacks
``` { "priority": "HIGH", "cve": "N/A", "target": "Ukraine government and military organizations, entities with interest in Italian foreign policy", "threat_actor": "Turla", "patch_ready": f..
8:10 am, June 26, 2026 Cybersecurity
