List cybersec
Microsoft confirms April Windows updates cause backup failures
{ "priority": "MEDIUM", "cve": "N/A", "target": "Microsoft Windows", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft confirms April Windows updates cause backup failures..
11:10 am, May 4, 2026 Cybersecurity
Global Crackdown Arrests 276, Shuts 9 Crypto Scam Centers, Seizes $701M
{ "priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "International operation arrests 276 suspects and shuts down 9 crypto scam cente..
7:10 am, May 4, 2026 Cybersecurity
ISC Stormcast For Monday, May 4th, 2026 https://isc.sans.edu/podcastdetail/9916, (Mon, May 4th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, May 4, 2026 Cybersecurity
Instructure confirms data breach, ShinyHunters claims attack
{ "priority": "HIGH", "cve": "N/A", "target": "Instructure", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "Instructure confirms data breach, ShinyHunters claims attack"..
11:10 pm, May 3, 2026 Cybersecurity
Microsoft Defender wrongly flags DigiCert certs as Trojan:Win32/Cerdigent.A!dha
{"priority":"HIGH","cve":"N/A","target":"Microsoft Defender","threat_actor":"N/A","patch_ready":false,"insight":"Microsoft Defender is incorrectly flagging legitimate DigiCert root certificates as Tro..
7:10 pm, May 3, 2026 Cybersecurity
Wireshark 4.6.5 Released, (Sun, May 3rd)
{ "priority": "CRITICAL", "cve": "38 CVEs", "target": "Wireshark", "threat_actor": "N/A", "patch_ready": true, "insight": "Wireshark 4.6.5 fixes 43 vulnerabilities (38 CVEs) and 35 bugs." ..
5:10 pm, May 3, 2026 Cybersecurity
Telegram Mini Apps abused for crypto scams, Android malware delivery
{ "priority": "HIGH", "cve": "N/A", "target": "Telegram Mini Apps", "threat_actor": "N/A", "patch_ready": false, "insight": "Telegram Mini Apps are being abused for crypto scams and Androi..
3:10 pm, May 3, 2026 Cybersecurity
CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV
{ "priority": "CRITICAL", "cve": "CVE-2026-31431", "target": "Linux", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA added CVE-2026-31431, an actively exploited Linux local p..
7:10 am, May 3, 2026 Cybersecurity
Critrical cPanel flaw mass-exploited in "Sorry" ransomware attacks
{ "priority": "CRITICAL", "cve": "CVE-2026-41940", "target": "cPanel", "threat_actor": "N/A", "patch_ready": true, "insight": "Mass exploitation of CVE-2026-41940 in cPanel leads to Sorry ..
10:10 pm, May 2, 2026 Cybersecurity
ConsentFix v3 attacks target Azure with automated OAuth abuse
A new attack type, dubbed ConsentFix v3, has been circulating on hacker forums, building on the previous technique by adding automation and scaling potential. [...]
3:10 pm, May 2, 2026 Cybersecurity
Trellix Confirms Source Code Breach With Unauthorized Repository Access
{ "priority": "HIGH", "cve": "N/A", "target": "Trellix", "threat_actor": "N/A", "patch_ready": false, "insight": "Trellix suffered a breach enabling unauthorized access to a portion of its..
7:10 am, May 2, 2026 Cybersecurity
Microsoft tests modern Windows Run, says it's faster than legacy dialog
{ "priority": "INFO", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft is testing a modern Windows Run dialog with dark mode support..
1:10 am, May 2, 2026 Cybersecurity
Edu tech firm Instructure discloses cyber incident, probes impact
{"priority": "INFO", "cve": "N/A", "target": "Instructure Canvas", "threat_actor": "N/A", "patch_ready": false, "insight": "Edu tech firm Instructure discloses cyber incident and is investigating its ..
12:10 am, May 2, 2026 Cybersecurity
30,000 Facebook Accounts Hacked via Google AppSheet Phishing Campaign
{ "priority": "HIGH", "cve": "N/A", "target": "Facebook", "threat_actor": "AccountDumpling", "patch_ready": false, "insight": "A Vietnamese-linked operation used Google AppSheet as a phish..
8:10 pm, May 1, 2026 Cybersecurity
Malicious Ad for Homebrew Leads to MacSync Stealer, (Fri, May 1st)
{ "priority": "MEDIUM", "cve": "N/A", "target": "MacSync Stealer", "threat_actor": "N/A", "patch_ready": false, "insight": "Malicious ad for Homebrew leads to MacSync Stealer infection" }
7:10 pm, May 1, 2026 Cybersecurity
15-year-old detained over French govt agency data breach
{"priority":"LOW","cve":"N/A","target":"France Titres (ANTS)","threat_actor":"N/A","patch_ready":false,"insight":"A 15-year-old was detained for allegedly selling data stolen from France Titres (ANTS)..
6:10 pm, May 1, 2026 Cybersecurity
Story retracted
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Retraction of a story about a purported data breach at Instructure due to outd..
5:10 pm, May 1, 2026 Cybersecurity
China-Linked Hackers Target Asian Governments, NATO State, Journalists, and Activists
{ "priority": "HIGH", "cve": "N/A", "target": "Asian Governments, NATO State, Journalists, and Activists", "threat_actor": "SHADOW-EARTH-053", "patch_ready": false, "insight": "China-linke..
3:10 pm, May 1, 2026 Cybersecurity
Criminal IP and Securonix ThreatQ Collaborate to Enhance Threat Intelligence Operations
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Criminal IP partners with Securonix to enhance threat intelligence operations ..
3:10 pm, May 1, 2026 Cybersecurity
Cybercrime Groups Using Vishing and SSO Abuse in Rapid SaaS Extortion Attacks
{ "priority": "HIGH", "cve": "N/A", "target": "SaaS environments", "threat_actor": "Cordial Spider, Snarky Spider", "patch_ready": false, "insight": "Cybercrime groups Cordial Spider and S..
3:10 pm, May 1, 2026 Cybersecurity
Microsoft fixes Remote Desktop warnings displaying incorrectly
{"priority":"MEDIUM","cve":"N/A","target":"Microsoft Windows","threat_actor":"N/A","patch_ready":true,"insight":"Microsoft patched a bug causing incorrect display of security warnings for Remote Deskt..
1:10 pm, May 1, 2026 Cybersecurity
Two Cybersecurity Professionals Get 4-Year Sentences in BlackCat Ransomware Attacks
{"priority":"LOW","cve":"N/A","target":"BlackCat Ransomware","threat_actor":"N/A","patch_ready":false,"insight":"Two cybersecurity professionals sentenced to 4 years in prison for facilitating BlackCa..
12:10 pm, May 1, 2026 Cybersecurity
Top Five Sales Challenges Costing MSPs Cybersecurity Revenue
The managed security services market is projected to grow from $38.31 billion in 2025 to $69.16 billion by 2030[1], with cybersecurity being the fastest-growing sector[2]. Despite this opportunity, ma..
12:10 pm, May 1, 2026 Cybersecurity
Microsoft now lets admins choose pre-installed Store apps to uninstall
{ "priority": "INFO", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft allows IT admins to choose pre-installed Store apps to uninst..
12:10 pm, May 1, 2026 Cybersecurity
Poisoned Ruby Gems and Go Modules Exploit CI Pipelines for Credential Theft
{ "priority": "HIGH", "cve": "N/A", "target": "CI Pipelines", "threat_actor": "BufferZoneCorp", "patch_ready": false, "insight": "A software supply chain attack campaign uses malicious Rub..
10:10 am, May 1, 2026 Cybersecurity
Windows 11 KB5083631 update released with 34 changes and fixes
{ "priority": "INFO", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft releases KB5083631 optional cumulative update for Windows 11 ..
10:10 am, May 1, 2026 Cybersecurity
US ransomware negotiators get 4 years in prison over BlackCat attacks
{"priority":"HIGH","cve":"N/A","target":"U.S. companies","threat_actor":"BlackCat (ALPHV)","patch_ready":false,"insight":"Two former cybersecurity employees were sentenced to 4 years in prison for inv..
8:10 am, May 1, 2026 Cybersecurity
ISC Stormcast For Friday, May 1st, 2026 https://isc.sans.edu/podcastdetail/9914, (Fri, May 1st)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, May 1, 2026 Cybersecurity
PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials
In yet another software supply chain attack, threat actors have managed to compromise the popular Python package Lightning to push two malicious versions to conduct credential theft. According to Aiki..
7:10 pm, April 30, 2026 Cybersecurity
New Bluekit phishing service includes an AI assistant, 40 templates
{ "priority": "HIGH", "cve": "N/A", "target": "Bluekit phishing service", "threat_actor": "N/A", "patch_ready": false, "insight": "A new phishing kit named Bluekit offers more than 40 temp..
7:10 pm, April 30, 2026 Cybersecurity
Romanian leader of online swatting ring gets 4 years in prison
{"priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A Romanian national was sentenced to 4 years in prison for leading an online swatting ring t..
6:10 pm, April 30, 2026 Cybersecurity
PyTorch Lightning Compromised in PyPI Supply Chain Attack to Steal Credentials
In yet another software supply chain attack, threat actors have managed to compromise the popular Python package Lightning to push two malicious versions to conduct credential theft. According to Aiki..
5:10 pm, April 30, 2026 Cybersecurity
FBI links cybercriminals to sharp surge in cargo theft attacks
{ "priority": "INFO", "cve": "N/A", "target": "Transportation and Logistics", "threat_actor": "Cybercriminals", "patch_ready": false, "insight": "FBI warns of a surge in cyber-enabled carg..
5:10 pm, April 30, 2026 Cybersecurity
April KB5083769 Windows 11 update causes backup software failures
{ "priority": "HIGH", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "The April 2026 KB5083769 security update causes backup software failure..
4:10 pm, April 30, 2026 Cybersecurity
New Linux ‘Copy Fail’ flaw gives hackers root on major distros
An exploit has been published for a local privilege escalation vulnerability dubbed "Copy Fail" that impacts Linux kernels released since 2017, allowing an unprivileged local attacker to gain root per..
2:10 pm, April 30, 2026 Cybersecurity
ThreatsDay Bulletin: SMS Blaster Busts, OpenEMR Flaws, 600K Roblox Hacks and 25 More Stories
The internet is noisy this week. We are seeing some wild new tactics, like people using fake cell towers to send scam texts, while some developers are accidentally downloading tools that peek into the..
2:10 pm, April 30, 2026 Cybersecurity
What Happens in the First 24 Hours After a New Asset Goes Live
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers typically start scanning new assets within minutes of going live and..
2:10 pm, April 30, 2026 Cybersecurity
Anti-DDoS Firm Heaped Attacks on Brazilian ISPs
A Brazilian tech firm that specializes in protecting networks from distributed denial-of-service (DDoS) attacks has been enabling a botnet responsible for an extended campaign of massive DDoS attacks ..
2:10 pm, April 30, 2026 Cybersecurity
EtherRAT Distribution Spoofing Administrative Tools via GitHub Facades
{"priority":"HIGH","cve":"N/A","target":"GitHub","threat_actor":"EtherRAT","patch_ready":false,"insight":"A sophisticated malicious campaign impersonates administrative utilities on GitHub to target h..
1:10 pm, April 30, 2026 Cybersecurity
New Python Backdoor Uses Tunneling Service to Steal Browser and Cloud Credentials
Cybersecurity researchers have disclosed details of a stealthy Python-based backdoor framework called DEEP#DOOR that comes with capabilities to establish persistent access and harvest a wide range of ..
1:10 pm, April 30, 2026 Cybersecurity
Police dismantles 9 crypto scam centers, arrests 276 suspects
A joint international operation involving U.S. and Chinese authorities arrested at least 276 suspects and shut down nine cryptocurrency investment fraud centers. [...]
12:10 pm, April 30, 2026 Cybersecurity
Critical cPanel and WHM bug exploited as a zero-day, PoC now available
The critical CVE-2026-41940 authentication bypass vulnerability in cPanel, WHM, and WP Squared is being actively exploited in the wild and has been leveraged in attempts since late February. [...]
12:10 pm, April 30, 2026 Cybersecurity
New Linux 'Copy Fail' Vulnerability Enables Root Access on Major Distributions
{"priority":"HIGH","cve":"CVE-2026-31431","target":"Linux","threat_actor":"N/A","patch_ready":false,"insight":"A high-severity Linux local privilege escalation flaw allows unprivileged users to obtain..
10:10 am, April 30, 2026 Cybersecurity
Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution
{ "priority": "CRITICAL", "cve": "N/A", "target": "Gemini CLI", "threat_actor": "N/A", "patch_ready": true, "insight": "Google fixed a CVSS 10 RCE flaw in Gemini CLI that allowed attackers..
7:10 am, April 30, 2026 Cybersecurity
ISC Stormcast For Thursday, April 30th, 2026 https://isc.sans.edu/podcastdetail/9912, (Thu, Apr 30th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, April 30, 2026 Cybersecurity
Danger of Libredtail [Guest Diary], (Wed, Apr 29th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A guest diary by James Roberts, an ISC intern as part of the SANS.edu BACS pro..
12:10 am, April 30, 2026 Cybersecurity
Popular WordPress redirect plugin hid dormant backdoor for years
{ "priority": "CRITICAL", "cve": "N/A", "target": "Quick Page/Post Redirect plugin for WordPress", "threat_actor": "N/A", "patch_ready": false, "insight": "The Quick Page/Post Redirect plu..
11:10 pm, April 29, 2026 Cybersecurity
Official SAP npm packages compromised to steal credentials
{ "priority": "CRITICAL", "cve": "N/A", "target": "SAP npm packages", "threat_actor": "TeamPCP", "patch_ready": false, "insight": "Official SAP npm packages compromised in a supply-chain a..
11:10 pm, April 29, 2026 Cybersecurity
Hackers exploit RCE flaws in Qinglong task scheduler for cryptomining
Hackers are exploiting two authentication bypass vulnerabilities in the Qinglong open-source task scheduling tool to deploy cryptominers on developers' servers. [...]
9:10 pm, April 29, 2026 Cybersecurity
Hackers arrested for hijacking and selling 610,000 Roblox accounts
{ "priority": "LOW", "cve": "N/A", "target": "Roblox", "threat_actor": "Ukrainian hackers (arrested)", "patch_ready": false, "insight": "Ukrainian police arrested three hackers who hijacke..
7:10 pm, April 29, 2026 Cybersecurity
AI Testing
