List cybersec
What to Look for in an Exposure Management Platform (And What Most of Them Get Wrong)
{"priority":"INFO","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"The article discusses the limitations of traditional vulnerability management metrics and the need for..
12:10 pm, April 29, 2026 Cybersecurity
GitHub fixes RCE flaw that gave access to millions of private repos
{ "priority": "CRITICAL", "cve": "CVE-2026-3854", "target": "GitHub", "threat_actor": "N/A", "patch_ready": true, "insight": "GitHub patched a critical RCE vulnerability allowing access to..
1:10 pm, April 29, 2026 Cybersecurity
Today's Odd Web Requests, (Wed, Apr 29th)
Today, two different "new" requests hit our honeypots. Both appear to be recon requests and not associated with specific vulnerabilities. But as always, please let me know if you have additional infor..
2:10 pm, April 29, 2026 Cybersecurity
Learning from the Vercel breach: Shadow AI & OAuth sprawl
{ "priority": "INFO", "cve": "N/A", "target": "Vercel", "threat_actor": "N/A", "patch_ready": false, "insight": "The Vercel breach highlights the risks of compromised OAuth apps and their ..
2:10 pm, April 29, 2026 Cybersecurity
Webinar: How to Automate Exposure Validation to Match the Speed of AI Attacks
{ "priority": "HIGH", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Researchers uncover threat actors using custom AI setups to automate attacks d..
2:10 pm, April 29, 2026 Cybersecurity
European police dismantles €50 million crypto investment fraud ring
Austrian and Albanian authorities dismantled a criminal ring accused of running a large-scale cryptocurrency investment fraud operation that caused estimated losses of over €50 million ($58.5 millio..
3:10 pm, April 29, 2026 Cybersecurity
cPanel, WHM emergency update fixes critical auth bypass bug
{ "priority": "CRITICAL", "cve": "N/A", "target": "cPanel and WHM", "threat_actor": "N/A", "patch_ready": true, "insight": "A critical authentication bypass vulnerability in cPanel and WHM..
4:10 pm, April 29, 2026 Cybersecurity
New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs
{ "priority": "HIGH", "cve": "N/A", "target": "npm package @validate-sdk/v2", "threat_actor": "DPRK", "patch_ready": false, "insight": "Researchers discovered malicious code in the @valida..
4:10 pm, April 29, 2026 Cybersecurity
SAP npm Packages Compromised by “Mini Shai-Hulud” Credential-Stealing Malware
{ "priority": "HIGH", "cve": "N/A", "target": "SAP npm Packages", "threat_actor": "Mini Shai-Hulud", "patch_ready": false, "insight": "SAP npm packages compromised by Mini Shai-Hulud crede..
5:10 pm, April 29, 2026 Cybersecurity
SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack
{ "priority": "HIGH", "cve": "N/A", "target": "SAP", "threat_actor": "mini Shai-Hulud", "patch_ready": false, "insight": "SAP-related npm packages compromised in credential-stealing supply..
6:10 pm, April 29, 2026 Cybersecurity
Hackers arrested for hijacking and selling 610,000 Roblox accounts
{ "priority": "LOW", "cve": "N/A", "target": "Roblox", "threat_actor": "Ukrainian hackers (arrested)", "patch_ready": false, "insight": "Ukrainian police arrested three hackers who hijacke..
7:10 pm, April 29, 2026 Cybersecurity
Hackers exploit RCE flaws in Qinglong task scheduler for cryptomining
Hackers are exploiting two authentication bypass vulnerabilities in the Qinglong open-source task scheduling tool to deploy cryptominers on developers' servers. [...]
9:10 pm, April 29, 2026 Cybersecurity
Official SAP npm packages compromised to steal credentials
{ "priority": "CRITICAL", "cve": "N/A", "target": "SAP npm packages", "threat_actor": "TeamPCP", "patch_ready": false, "insight": "Official SAP npm packages compromised in a supply-chain a..
11:10 pm, April 29, 2026 Cybersecurity
Popular WordPress redirect plugin hid dormant backdoor for years
{ "priority": "CRITICAL", "cve": "N/A", "target": "Quick Page/Post Redirect plugin for WordPress", "threat_actor": "N/A", "patch_ready": false, "insight": "The Quick Page/Post Redirect plu..
11:10 pm, April 29, 2026 Cybersecurity
Danger of Libredtail [Guest Diary], (Wed, Apr 29th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A guest diary by James Roberts, an ISC intern as part of the SANS.edu BACS pro..
12:10 am, April 30, 2026 Cybersecurity
ISC Stormcast For Thursday, April 30th, 2026 https://isc.sans.edu/podcastdetail/9912, (Thu, Apr 30th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, April 30, 2026 Cybersecurity
Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution
{ "priority": "CRITICAL", "cve": "N/A", "target": "Gemini CLI", "threat_actor": "N/A", "patch_ready": true, "insight": "Google fixed a CVSS 10 RCE flaw in Gemini CLI that allowed attackers..
7:10 am, April 30, 2026 Cybersecurity
New Linux 'Copy Fail' Vulnerability Enables Root Access on Major Distributions
{"priority":"HIGH","cve":"CVE-2026-31431","target":"Linux","threat_actor":"N/A","patch_ready":false,"insight":"A high-severity Linux local privilege escalation flaw allows unprivileged users to obtain..
10:10 am, April 30, 2026 Cybersecurity
Critical cPanel and WHM bug exploited as a zero-day, PoC now available
The critical CVE-2026-41940 authentication bypass vulnerability in cPanel, WHM, and WP Squared is being actively exploited in the wild and has been leveraged in attempts since late February. [...]
12:10 pm, April 30, 2026 Cybersecurity
Police dismantles 9 crypto scam centers, arrests 276 suspects
A joint international operation involving U.S. and Chinese authorities arrested at least 276 suspects and shut down nine cryptocurrency investment fraud centers. [...]
12:10 pm, April 30, 2026 Cybersecurity
New Python Backdoor Uses Tunneling Service to Steal Browser and Cloud Credentials
Cybersecurity researchers have disclosed details of a stealthy Python-based backdoor framework called DEEP#DOOR that comes with capabilities to establish persistent access and harvest a wide range of ..
1:10 pm, April 30, 2026 Cybersecurity
EtherRAT Distribution Spoofing Administrative Tools via GitHub Facades
{"priority":"HIGH","cve":"N/A","target":"GitHub","threat_actor":"EtherRAT","patch_ready":false,"insight":"A sophisticated malicious campaign impersonates administrative utilities on GitHub to target h..
1:10 pm, April 30, 2026 Cybersecurity
Anti-DDoS Firm Heaped Attacks on Brazilian ISPs
A Brazilian tech firm that specializes in protecting networks from distributed denial-of-service (DDoS) attacks has been enabling a botnet responsible for an extended campaign of massive DDoS attacks ..
2:10 pm, April 30, 2026 Cybersecurity
What Happens in the First 24 Hours After a New Asset Goes Live
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers typically start scanning new assets within minutes of going live and..
2:10 pm, April 30, 2026 Cybersecurity
ThreatsDay Bulletin: SMS Blaster Busts, OpenEMR Flaws, 600K Roblox Hacks and 25 More Stories
The internet is noisy this week. We are seeing some wild new tactics, like people using fake cell towers to send scam texts, while some developers are accidentally downloading tools that peek into the..
2:10 pm, April 30, 2026 Cybersecurity
New Linux ‘Copy Fail’ flaw gives hackers root on major distros
An exploit has been published for a local privilege escalation vulnerability dubbed "Copy Fail" that impacts Linux kernels released since 2017, allowing an unprivileged local attacker to gain root per..
2:10 pm, April 30, 2026 Cybersecurity
April KB5083769 Windows 11 update causes backup software failures
{ "priority": "HIGH", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "The April 2026 KB5083769 security update causes backup software failure..
4:10 pm, April 30, 2026 Cybersecurity
FBI links cybercriminals to sharp surge in cargo theft attacks
{ "priority": "INFO", "cve": "N/A", "target": "Transportation and Logistics", "threat_actor": "Cybercriminals", "patch_ready": false, "insight": "FBI warns of a surge in cyber-enabled carg..
5:10 pm, April 30, 2026 Cybersecurity
PyTorch Lightning Compromised in PyPI Supply Chain Attack to Steal Credentials
In yet another software supply chain attack, threat actors have managed to compromise the popular Python package Lightning to push two malicious versions to conduct credential theft. According to Aiki..
5:10 pm, April 30, 2026 Cybersecurity
Romanian leader of online swatting ring gets 4 years in prison
{"priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A Romanian national was sentenced to 4 years in prison for leading an online swatting ring t..
6:10 pm, April 30, 2026 Cybersecurity
New Bluekit phishing service includes an AI assistant, 40 templates
{ "priority": "HIGH", "cve": "N/A", "target": "Bluekit phishing service", "threat_actor": "N/A", "patch_ready": false, "insight": "A new phishing kit named Bluekit offers more than 40 temp..
7:10 pm, April 30, 2026 Cybersecurity
PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials
In yet another software supply chain attack, threat actors have managed to compromise the popular Python package Lightning to push two malicious versions to conduct credential theft. According to Aiki..
7:10 pm, April 30, 2026 Cybersecurity
ISC Stormcast For Friday, May 1st, 2026 https://isc.sans.edu/podcastdetail/9914, (Fri, May 1st)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, May 1, 2026 Cybersecurity
US ransomware negotiators get 4 years in prison over BlackCat attacks
{"priority":"HIGH","cve":"N/A","target":"U.S. companies","threat_actor":"BlackCat (ALPHV)","patch_ready":false,"insight":"Two former cybersecurity employees were sentenced to 4 years in prison for inv..
8:10 am, May 1, 2026 Cybersecurity
Windows 11 KB5083631 update released with 34 changes and fixes
{ "priority": "INFO", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft releases KB5083631 optional cumulative update for Windows 11 ..
10:10 am, May 1, 2026 Cybersecurity
Poisoned Ruby Gems and Go Modules Exploit CI Pipelines for Credential Theft
{ "priority": "HIGH", "cve": "N/A", "target": "CI Pipelines", "threat_actor": "BufferZoneCorp", "patch_ready": false, "insight": "A software supply chain attack campaign uses malicious Rub..
10:10 am, May 1, 2026 Cybersecurity
Microsoft now lets admins choose pre-installed Store apps to uninstall
{ "priority": "INFO", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft allows IT admins to choose pre-installed Store apps to uninst..
12:10 pm, May 1, 2026 Cybersecurity
Top Five Sales Challenges Costing MSPs Cybersecurity Revenue
The managed security services market is projected to grow from $38.31 billion in 2025 to $69.16 billion by 2030[1], with cybersecurity being the fastest-growing sector[2]. Despite this opportunity, ma..
12:10 pm, May 1, 2026 Cybersecurity
Two Cybersecurity Professionals Get 4-Year Sentences in BlackCat Ransomware Attacks
{"priority":"LOW","cve":"N/A","target":"BlackCat Ransomware","threat_actor":"N/A","patch_ready":false,"insight":"Two cybersecurity professionals sentenced to 4 years in prison for facilitating BlackCa..
12:10 pm, May 1, 2026 Cybersecurity
Microsoft fixes Remote Desktop warnings displaying incorrectly
{"priority":"MEDIUM","cve":"N/A","target":"Microsoft Windows","threat_actor":"N/A","patch_ready":true,"insight":"Microsoft patched a bug causing incorrect display of security warnings for Remote Deskt..
1:10 pm, May 1, 2026 Cybersecurity
Cybercrime Groups Using Vishing and SSO Abuse in Rapid SaaS Extortion Attacks
{ "priority": "HIGH", "cve": "N/A", "target": "SaaS environments", "threat_actor": "Cordial Spider, Snarky Spider", "patch_ready": false, "insight": "Cybercrime groups Cordial Spider and S..
3:10 pm, May 1, 2026 Cybersecurity
Criminal IP and Securonix ThreatQ Collaborate to Enhance Threat Intelligence Operations
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Criminal IP partners with Securonix to enhance threat intelligence operations ..
3:10 pm, May 1, 2026 Cybersecurity
China-Linked Hackers Target Asian Governments, NATO State, Journalists, and Activists
{ "priority": "HIGH", "cve": "N/A", "target": "Asian Governments, NATO State, Journalists, and Activists", "threat_actor": "SHADOW-EARTH-053", "patch_ready": false, "insight": "China-linke..
3:10 pm, May 1, 2026 Cybersecurity
Story retracted
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Retraction of a story about a purported data breach at Instructure due to outd..
5:10 pm, May 1, 2026 Cybersecurity
15-year-old detained over French govt agency data breach
{"priority":"LOW","cve":"N/A","target":"France Titres (ANTS)","threat_actor":"N/A","patch_ready":false,"insight":"A 15-year-old was detained for allegedly selling data stolen from France Titres (ANTS)..
6:10 pm, May 1, 2026 Cybersecurity
Malicious Ad for Homebrew Leads to MacSync Stealer, (Fri, May 1st)
{ "priority": "MEDIUM", "cve": "N/A", "target": "MacSync Stealer", "threat_actor": "N/A", "patch_ready": false, "insight": "Malicious ad for Homebrew leads to MacSync Stealer infection" }
7:10 pm, May 1, 2026 Cybersecurity
30,000 Facebook Accounts Hacked via Google AppSheet Phishing Campaign
{ "priority": "HIGH", "cve": "N/A", "target": "Facebook", "threat_actor": "AccountDumpling", "patch_ready": false, "insight": "A Vietnamese-linked operation used Google AppSheet as a phish..
8:10 pm, May 1, 2026 Cybersecurity
Edu tech firm Instructure discloses cyber incident, probes impact
{"priority": "INFO", "cve": "N/A", "target": "Instructure Canvas", "threat_actor": "N/A", "patch_ready": false, "insight": "Edu tech firm Instructure discloses cyber incident and is investigating its ..
12:10 am, May 2, 2026 Cybersecurity
Microsoft tests modern Windows Run, says it's faster than legacy dialog
{ "priority": "INFO", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft is testing a modern Windows Run dialog with dark mode support..
1:10 am, May 2, 2026 Cybersecurity
Trellix Confirms Source Code Breach With Unauthorized Repository Access
{ "priority": "HIGH", "cve": "N/A", "target": "Trellix", "threat_actor": "N/A", "patch_ready": false, "insight": "Trellix suffered a breach enabling unauthorized access to a portion of its..
7:10 am, May 2, 2026 Cybersecurity
