List cybersec
Apple account change alerts abused to send phishing emails
{ "priority": "HIGH", "cve": "N/A", "target": "Apple", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers are abusing Apple's account change notifications to send phishing ..
4:10 pm, April 19, 2026 Cybersecurity
Vercel confirms breach as hackers claim to be selling stolen data
{ "priority": "HIGH", "cve": "N/A", "target": "Vercel", "threat_actor": "N/A", "patch_ready": false, "insight": "Vercel disclosed a security breach after hackers claimed to have stolen and..
6:10 pm, April 19, 2026 Cybersecurity
ISC Stormcast For Monday, April 20th, 2026 https://isc.sans.edu/podcastdetail/9898, (Mon, Apr 20th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "SANS Internet Storm Center podcast for April 20th, 2026." }
2:10 am, April 20, 2026 Cybersecurity
Vercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials
{ "priority": "HIGH", "cve": "N/A", "target": "Vercel", "threat_actor": "N/A", "patch_ready": false, "insight": "Vercel disclosed a security breach due to Context AI hack, exposing limited..
5:10 am, April 20, 2026 Cybersecurity
Handling the CVE Flood With EPSS, (Mon, Apr 20th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses the challenge of handling the daily flood of new CVE ent..
7:10 am, April 20, 2026 Cybersecurity
Microsoft releases emergency updates to fix Windows Server issues
{"priority": "MEDIUM", "cve": "N/A", "target": "Windows Server", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft releases emergency updates to fix Windows Server issues caused by Apr..
9:10 am, April 20, 2026 Cybersecurity
Researchers Detect ZionSiphon Malware Targeting Israeli Water, Desalination OT Systems
{ "priority": "HIGH", "cve": "N/A", "target": "Israeli water treatment and desalination systems", "threat_actor": "Darktrace", "patch_ready": false, "insight": "New malware called ZionSiph..
9:10 am, April 20, 2026 Cybersecurity
Microsoft pulls service update causing Teams launch failures
{ "priority": "MEDIUM", "cve": "N/A", "target": "Microsoft Teams", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft reverted a service update that was causing launch failu..
10:10 am, April 20, 2026 Cybersecurity
Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain
{ "priority": "CRITICAL", "cve": "N/A", "target": "Anthropic MCP", "threat_actor": "N/A", "patch_ready": false, "insight": "Critical design vulnerability in Anthropic MCP enables remote co..
11:10 am, April 20, 2026 Cybersecurity
Microsoft tests Windows Explorer speed, performance improvements
{ "priority": "INFO", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft is testing speed and performance improvements for Windows Fil..
1:10 pm, April 20, 2026 Cybersecurity
Why Most AI Deployments Stall After the Demo
The fastest way to fall in love with an AI tool is to watch the demo. Everything moves quickly. Prompts land cleanly. The system produces impressive outputs in seconds. It feels like the beginning of ..
1:10 pm, April 20, 2026 Cybersecurity
The backup myth that is putting businesses at risk
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses the importance of Business Continuity and Disaster Recov..
2:10 pm, April 20, 2026 Cybersecurity
British Scattered Spider hacker pleads guilty to crypto theft charges
{"priority":"LOW","cve":"N/A","target":"N/A","threat_actor":"Scattered Spider","patch_ready":false,"insight":"British hacker pleads guilty to crypto theft charges"}
2:10 pm, April 20, 2026 Cybersecurity
⚡ Weekly Recap: Vercel Hack, Push Fraud, QEMU Abused, New Android RATs Emerge & More
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Weekly recap of various cyber attacks and emerging threats, including Vercel h..
3:10 pm, April 20, 2026 Cybersecurity
Microsoft: Teams increasingly abused in helpdesk impersonation attacks
Microsoft is warning of threat actors increasingly abusing external Microsoft Teams collaboration and relying on legitimate tools for access and lateral movement on enterprise networks. [...]
4:10 pm, April 20, 2026 Cybersecurity
Seiko USA website defaced as hacker claims customer data theft
{ "priority": "HIGH", "cve": "N/A", "target": "Seiko USA website", "threat_actor": "N/A", "patch_ready": false, "insight": "Seiko USA website defaced, attackers claim to have stolen custom..
7:10 pm, April 20, 2026 Cybersecurity
SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files
{"priority": "CRITICAL", "cve": "CVE-2026-5760", "target": "SGLang", "threat_actor": "N/A", "patch_ready": false, "insight": "CVE-2026-5760 in SGLang allows RCE via malicious GGUF model files with a C..
7:10 pm, April 20, 2026 Cybersecurity
The Gentlemen ransomware now uses SystemBC for bot-powered attacks
{ "priority": "HIGH", "cve": "N/A", "target": "Gentlemen ransomware", "threat_actor": "Gentlemen ransomware gang", "patch_ready": false, "insight": "Gentlemen ransomware now uses SystemBC ..
8:10 pm, April 20, 2026 Cybersecurity
China's Apple App Store infiltrated by crypto-stealing wallet apps
{"priority": "HIGH", "cve": "N/A", "target": "Apple App Store", "threat_actor": "N/A", "patch_ready": false, "insight": "Malicious crypto wallet apps impersonate popular wallets on Apple's App Store t..
10:10 pm, April 20, 2026 Cybersecurity
KelpDAO suffers $290 million heist tied to Lazarus hackers
State-sponsored North Korean hackers are likely behind the $290 million crypto-heist that impacted the KelpDAO DeFi project on Saturday. [...]
11:10 pm, April 20, 2026 Cybersecurity
ISC Stormcast For Tuesday, April 21st, 2026 https://isc.sans.edu/podcastdetail/9900, (Tue, Apr 21st)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, April 21, 2026 Cybersecurity
CISA Adds 8 Exploited Flaws to KEV, Sets April-May 2026 Federal Deadlines
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added eight new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, including three flaws impacting Cisco C..
7:10 am, April 21, 2026 Cybersecurity
A .WAV With A Payload, (Tue, Apr 21st)
{ "priority": "HIGH", "cve": "N/A", "target": ".WAV files", "threat_actor": "N/A", "patch_ready": false, "insight": "Threat actors are using .wav files as a vector for malware." }
8:10 am, April 21, 2026 Cybersecurity
NGate Android malware uses HandyPay NFC app to steal card data
{ "priority": "HIGH", "cve": "N/A", "target": "Android users", "threat_actor": "N/A", "patch_ready": false, "insight": "A new variant of NGate malware targets Android users by hiding in a ..
9:10 am, April 21, 2026 Cybersecurity
Former ransomware negotiator pleads guilty to BlackCat attacks
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "BlackCat (ALPHV)", "patch_ready": false, "insight": "Former ransomware negotiator pleads guilty to BlackCat attacks on..
11:10 am, April 21, 2026 Cybersecurity
No Exploit Needed: How Attackers Walk Through the Front Door via Identity-Based Attacks
{ "priority": "MEDIUM", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The cybersecurity industry has spent the last several years chasing sophisti..
12:10 pm, April 21, 2026 Cybersecurity
Actively exploited Apache ActiveMQ flaw impacts 6,400 servers
{ "priority": "HIGH", "cve": "N/A", "target": "Apache ActiveMQ", "threat_actor": "N/A", "patch_ready": false, "insight": "Over 6,400 Apache ActiveMQ servers exposed online are vulnerable t..
12:10 pm, April 21, 2026 Cybersecurity
NGate Campaign Targets Brazil, Trojanizes HandyPay to Steal NFC Data and PINs
{ "priority": "HIGH", "cve": "N/A", "target": "HandyPay", "threat_actor": "NGate", "patch_ready": false, "insight": "NGate malware targets Brazil, trojanizes HandyPay to steal NFC data and..
12:10 pm, April 21, 2026 Cybersecurity
Google Patches Antigravity IDE Flaw Enabling Prompt Injection Code Execution
{"priority":"CRITICAL","cve":"N/A","target":"Google Antigravity IDE","threat_actor":"N/A","patch_ready":true,"insight":"Google patched a flaw in Antigravity IDE that enabled prompt injection and code ..
12:10 pm, April 21, 2026 Cybersecurity
CISA flags new SD-WAN flaw as actively exploited in attacks
{ "priority": "HIGH", "cve": "N/A", "target": "Catalyst SD-WAN Manager", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA flags new SD-WAN flaw as actively exploited in attacks..
1:10 pm, April 21, 2026 Cybersecurity
Stopping Fraud at Each Stage of the Customer Journey Without Adding Friction
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses how to prevent fraud during the customer journey without..
2:10 pm, April 21, 2026 Cybersecurity
UK probes Telegram, teen chat sites over CSAM sharing concerns
{"priority": "HIGH", "cve": "N/A", "target": "Telegram", "threat_actor": "N/A", "patch_ready": false, "insight": "UK regulator Ofcom investigates Telegram and teen chat sites for sharing child sexual ..
2:10 pm, April 21, 2026 Cybersecurity
5 Places where Mature SOCs Keep MTTR Fast and Others Waste Time
Security teams often present MTTR as an internal KPI. Leadership sees it differently: every hour a threat dwells inside the environment is an hour of potential data exfiltration, service disruption, r..
2:10 pm, April 21, 2026 Cybersecurity
‘Scattered Spider’ Member ‘Tylerb’ Pleads Guilty
{ "priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "Scattered Spider", "patch_ready": false, "insight": "A senior member of the Scattered Spider cybercrime group has plead..
3:10 pm, April 21, 2026 Cybersecurity
Ransomware Negotiator Pleads Guilty to Aiding BlackCat Attacks in 2023
{ "priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "BlackCat", "patch_ready": false, "insight": "A ransomware negotiator has pleaded guilty to aiding BlackCat attacks in 2..
3:10 pm, April 21, 2026 Cybersecurity
22 BRIDGE:BREAK Flaws Expose 20,000 Lantronix and Silex Serial-to-IP Converters
{ "priority": "HIGH", "cve": "N/A", "target": "Lantronix and Silex Serial-to-IP Converters", "threat_actor": "N/A", "patch_ready": false, "insight": "22 vulnerabilities in Lantronix and Si..
4:10 pm, April 21, 2026 Cybersecurity
22 BRIDGE:BREAK Flaws Expose Thousands of Lantronix and Silex Serial-to-IP Converters
Cybersecurity researchers have identified 22 new vulnerabilities in popular models of serial-to-IP converters from Lantronix and Silex that could be exploited to hijack susceptible devices and tamper ..
5:10 pm, April 21, 2026 Cybersecurity
New Lotus data wiper used against Venezuelan energy, utility firms
A previously undocumented data-wiping malware dubbed Lotus was used last year in targeted attacks against energy and utilities organizations in Venezuela. [...]
7:10 pm, April 21, 2026 Cybersecurity
SystemBC C2 Server Reveals 1,570+ Victims in The Gentlemen Ransomware Operation
{ "priority": "HIGH", "cve": "N/A", "target": "The Gentlemen Ransomware Operation", "threat_actor": "The Gentlemen", "patch_ready": false, "insight": "The Gentlemen ransomware operation ha..
8:10 pm, April 21, 2026 Cybersecurity
French govt agency confirms breach as hacker offers to sell data
France Titres, the government agency in France for issuing and managince administrative documents has disclosed a data breach after a threat actor claimed the attack and stealing citizen data. [...]..
10:10 pm, April 21, 2026 Cybersecurity
[Guest Diary] Beyond Cryptojacking: Telegram tdata as a Credential Harvesting Vector, Lessons from a Honeypot Incident, (Wed, Apr 22nd)
[This is a Guest Diary by L. Carty, an ISC intern as part of the SANS.edu Bachelor&#;39;s Degree in Applied Cybersecurity (BACS) program [1].]
12:10 am, April 22, 2026 Cybersecurity
ISC Stormcast For Wednesday, April 22nd, 2026 https://isc.sans.edu/podcastdetail/9902, (Wed, Apr 22nd)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, April 22, 2026 Cybersecurity
Over 1,300 Microsoft SharePoint servers vulnerable to spoofing attacks
Over 1,300 Microsoft SharePoint servers exposed online remain unpatched against a spoofing vulnerability that was exploited as a zero-day and is still being abused in ongoing attacks. [...]
7:10 am, April 22, 2026 Cybersecurity
Microsoft releases emergency patches for critical ASP.NET flaw
{ "priority": "CRITICAL", "cve": "N/A", "target": "ASP.NET Core", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft released emergency patches for a critical ASP.NET Core p..
9:10 am, April 22, 2026 Cybersecurity
Mustang Panda’s New LOTUSLITE Variant Targets India Banks, South Korea Policy Circles
{ "priority": "HIGH", "cve": "N/A", "target": "India Banks, South Korea Policy Circles", "threat_actor": "Mustang Panda", "patch_ready": false, "insight": "New LOTUSLITE malware variant ta..
9:10 am, April 22, 2026 Cybersecurity
Cohere AI Terrarium Sandbox Flaw Enables Root Code Execution, Container Escape
{"priority": "CRITICAL", "cve": "CVE-2026-5752", "target": "Cohere AI Terrarium", "threat_actor": "N/A", "patch_ready": "false", "insight": "CVE-2026-5752 sandbox escape flaw in Terrarium allows root ..
9:10 am, April 22, 2026 Cybersecurity
New GoGra malware for Linux uses Microsoft Graph API for comms
{ "priority": "HIGH", "cve": "N/A", "target": "Linux", "threat_actor": "GoGra", "patch_ready": false, "insight": "A Linux variant of the GoGra backdoor uses Microsoft Graph API for stealth..
10:10 am, April 22, 2026 Cybersecurity
Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug
{"priority":"CRITICAL","cve":"CVE-2026-40372","target":"ASP.NET Core","threat_actor":"N/A","patch_ready":true,"insight":"Microsoft patches critical CVE-2026-40372 ASP.NET Core privilege escalation bug..
10:10 am, April 22, 2026 Cybersecurity
Microsoft traces Universal Print issues to Graph API code change
Microsoft says that an ongoing Universal Print sharing issue that prevents users from creating some printer shares is due to a Microsoft Graph API code change. [...]
11:10 am, April 22, 2026 Cybersecurity
Lotus Wiper Malware Targets Venezuelan Energy Systems in Destructive Attack
{ "priority": "HIGH", "cve": "N/A", "target": "Venezuelan Energy Systems", "threat_actor": "N/A", "patch_ready": false, "insight": "A novel data wiper, Lotus Wiper, has been used in destru..
12:10 pm, April 22, 2026 Cybersecurity
