List cybersec
CERT-In Recommends 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks
{ "priority": "CRITICAL", "cve": "N/A", "target": "Internet-facing systems", "threat_actor": "N/A", "patch_ready": true, "insight": "CERT-In requires 12-hour patching for critical internet..
2:10 pm, May 26, 2026 Cybersecurity
MuddyWater Uses DLL Side-Loading in Espionage Campaign Targeting 9 Countries
The Iranian hacking group known as MuddyWater has been linked to a new campaign affecting at least nine organizations across nine countries on four continents in the first quarter of 2026. The activi..
5:10 pm, May 26, 2026 Cybersecurity
KnowledgeDeliver flaw exploited as a zero-day to install web shells
Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell. [...]
8:10 pm, May 26, 2026 Cybersecurity
Charter confirms data breach after ShinyHunters extortion threat
{ "priority": "HIGH", "cve": "N/A", "target": "Charter Communications", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "Charter Communications confirmed a data breach aft..
8:10 pm, May 26, 2026 Cybersecurity
ISC Stormcast For Wednesday, May 27th, 2026 https://isc.sans.edu/podcastdetail/9946, (Wed, May 27th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast for Wednesday, May 27th, 2026, providing cybersecurity n..
2:10 am, May 27, 2026 Cybersecurity
AI Chatbot Recommendations Redirect Users to Cryptojacking Malware Sites
Microsoft has warned of an active cryptojacking campaign that makes use of artificial intelligence (AI) chatbot interactions as a mechanism for surfacing malicious download sites. "This emerging deli..
8:10 am, May 27, 2026 Cybersecurity
Dutch police arrests suspect linked to Ajax football club hack
The Dutch National Police arrested a 35-year-old man suspected of hacking the professional football club Ajax Amsterdam (AFC Ajax) earlier this year. [...]
9:10 am, May 27, 2026 Cybersecurity
Windows 11 KB5089573 update released with performance improvements
{ "priority": "LOW", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft releases KB5089573 update for Windows 11 with performance impro..
9:10 am, May 27, 2026 Cybersecurity
CISA gives feds 4 days to patch actively exploited cPanel plugin flaw
{ "priority": "CRITICAL", "cve": "N/A", "target": "LiteSpeed cPanel user-end plugin", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA requires federal agencies to patch a crit..
10:10 am, May 27, 2026 Cybersecurity
FBI warns of in-person data theft attacks from extortion gang
{"priority":"LOW","cve":"N/A","target":"U.S.-based law firms","threat_actor":"Silent Ransom Group","patch_ready":false,"insight":"FBI warns of in-person data theft attacks from Silent Ransom Group tar..
12:10 pm, May 27, 2026 Cybersecurity
Gitea Vulnerability Exposes Private Container Images without Authentication
{"priority":"HIGH","cve":"CVE-2026-27771","target":"Gitea","threat_actor":"N/A","patch_ready":true,"insight":"Unauthenticated remote attackers can pull private container images from Gitea deployments ..
12:10 pm, May 27, 2026 Cybersecurity
GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure
{ "priority": "HIGH", "cve": "N/A", "target": "Software Developers", "threat_actor": "GlassWorm", "patch_ready": false, "insight": "GlassWorm malware takedown disrupts developer supply cha..
1:10 pm, May 27, 2026 Cybersecurity
Can you enforce strong Active Directory password rules without frustrating users?
{ "priority": "INFO", "cve": "N/A", "target": "Active Directory", "threat_actor": "N/A", "patch_ready": false, "insight": "Implementing strong Active Directory password rules can be achiev..
2:10 pm, May 27, 2026 Cybersecurity
Glassworm botnet disrupted after resilient C2 infrastructure takedown
{ "priority": "HIGH", "cve": "N/A", "target": "Glassworm botnet", "threat_actor": "N/A", "patch_ready": false, "insight": "Researchers disrupted the Glassworm botnet by taking down its com..
2:10 pm, May 27, 2026 Cybersecurity
3 SOC Steps that Shut Down Incident Risks Early
Most organizations still picture cyber defense as a fortress problem: build stronger walls, add more guards, buy another detection engine. But modern incidents rarely crash through the front gate. The..
3:10 pm, May 27, 2026 Cybersecurity
Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users
{ "priority": "HIGH", "cve": "N/A", "target": "Windows and Android users", "threat_actor": "N/A", "patch_ready": false, "insight": "Two malware campaigns, Grandoreiro and BTMOB RAT, target..
5:10 pm, May 27, 2026 Cybersecurity
Malicious npm Package Stole Files From Claude AI User Directory via GitHub
{ "priority": "HIGH", "cve": "N/A", "target": "Claude AI", "threat_actor": "N/A", "patch_ready": false, "insight": "A malicious npm package named 'mouse5212-super-formatter' was discovered..
5:10 pm, May 27, 2026 Cybersecurity
GPU mining malware spreads via SEO poisoning, AI chatbots
{ "priority": "HIGH", "cve": "N/A", "target": "High-performance computers", "threat_actor": "N/A", "patch_ready": false, "insight": "GPU mining malware spreads via SEO poisoning and AI cha..
10:10 pm, May 27, 2026 Cybersecurity
Reconstructing an Akira Ransomware Kill Chain from Perimeter and Endpoint Logs, (Wed, May 27th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "Akira", "patch_ready": false, "insight": "Analyzing perimeter and endpoint logs can provide insights into Akira ransom..
10:10 pm, May 27, 2026 Cybersecurity
ISC Stormcast For Thursday, May 28th, 2026 https://isc.sans.edu/podcastdetail/9948, (Thu, May 28th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast details for Thursday, May 28th, 2026." }
2:10 am, May 28, 2026 Cybersecurity
JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware
{ "priority": "HIGH", "cve": "N/A", "target": "Cryptocurrency Firms", "threat_actor": "JINX-0164", "patch_ready": false, "insight": "JINX-0164 uses fake recruiter lures and custom macOS ma..
9:10 am, May 28, 2026 Cybersecurity
Sextortionist sentenced to 33 years for targeting 145 children
{ "priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A Canadian man was sentenced to 33 years in prison for a sextortion scheme targ..
10:10 am, May 28, 2026 Cybersecurity
Carnival Cruise confirms data breach affecting nearly 6 million people
{ "priority": "HIGH", "cve": "N/A", "target": "Carnival Cruise", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "Carnival Cruise confirms data breach affecting nearly 6 m..
11:10 am, May 28, 2026 Cybersecurity
Romanian gets 5 years in prison for hacking Oregon govt network
{"priority":"CRITICAL","cve":"N/A","target":"Oregon state government computer network","threat_actor":"Romanian national","patch_ready":false,"insight":"A Romanian national was sentenced to 56 months ..
1:10 pm, May 28, 2026 Cybersecurity
Webinar: Why network incidents take too long to resolve
Many organizations can detect network issues quickly, but investigations and coordination often slow incident resolution. This webinar explores how automation and AI-assisted workflows can help IT tea..
1:10 pm, May 28, 2026 Cybersecurity
New AI Usage Report: Enterprise AI Risk Is Heavily Concentrated Among a Small Group of AI "Power users"
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A new report by LayerX Security reveals that enterprise AI risk is concentrate..
1:10 pm, May 28, 2026 Cybersecurity
How SIEM helps MSPs reduce noise and stop threats faster
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "SIEM helps MSPs improve visibility, reduce alert fatigue, and respond faster t..
2:10 pm, May 28, 2026 Cybersecurity
Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researcher Account Removal
{ "priority": "MEDIUM", "cve": "N/A", "target": "Microsoft", "threat_actor": "Chaotic Eclipse (aka Nightmare-Eclipse)", "patch_ready": false, "insight": "Microsoft advocates for Coordinate..
2:10 pm, May 28, 2026 Cybersecurity
ThreatsDay Bulletin: Claude Security Plugin, Azure Priv-Esc, Kali365 MFA Bypass, FIFA Scams +15 More
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The ThreatsDay Bulletin discusses various security threats and techniques, inc..
2:10 pm, May 28, 2026 Cybersecurity
New Gogs zero-day flaw lets hackers get remote code execution
{ "priority": "CRITICAL", "cve": "N/A", "target": "Gogs", "threat_actor": "N/A", "patch_ready": false, "insight": "Unpatched zero-day vulnerability in Gogs self-hosted Git service allows r..
3:10 pm, May 28, 2026 Cybersecurity
Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer
{ "priority": "CRITICAL", "cve": "CVE-2023-48788", "target": "FortiClient EMS", "threat_actor": "Arctic Wolf", "patch_ready": true, "insight": "Threat actors exploit critical FortiClient E..
5:10 pm, May 28, 2026 Cybersecurity
Hackers exploit FortiClient EMS flaw to push infostealer malware
{ "priority": "HIGH", "cve": "CVE-2026-35616", "target": "FortiClient Enterprise Management Server (EMS)", "threat_actor": "N/A", "patch_ready": false, "insight": "Hackers are exploiting a..
6:10 pm, May 28, 2026 Cybersecurity
Critical Gogs RCE Vulnerability Lets Any Authenticated User Execute Arbitrary Code
{"priority": "CRITICAL", "cve": "N/A", "target": "Gogs", "threat_actor": "N/A", "patch_ready": false, "insight": "Critical Gogs RCE vulnerability allows authenticated users to execute arbitrary code"}..
6:10 pm, May 28, 2026 Cybersecurity
FBI warns of fake FIFA websites running World Cup fraud schemes
{ "priority": "INFO", "cve": "N/A", "target": "FIFA", "threat_actor": "N/A", "patch_ready": false, "insight": "The FBI warns of fraudulent FIFA websites impersonating the organization to s..
7:10 pm, May 28, 2026 Cybersecurity
Analysis of a Year of Files Uploaded to DShield Sensors, (Wed, May 27th)
{ "priority": "INFO", "cve": "N/A", "target": "DShield Sensors", "threat_actor": "N/A", "patch_ready": false, "insight": "A year-long analysis of files uploaded to DShield sensors reveals ..
8:10 pm, May 28, 2026 Cybersecurity
BTMOB Android malware service generates custom phishing payloads
{ "priority": "HIGH", "cve": "N/A", "target": "Android", "threat_actor": "BTMOB", "patch_ready": false, "insight": "BTMOB Android malware generates custom phishing payloads" }
10:10 pm, May 28, 2026 Cybersecurity
GreyVibe hackers use ChatGPT, Gemini to power cyberattacks
{ "priority": "HIGH", "cve": "N/A", "target": "Ukrainian entities", "threat_actor": "GreyVibe", "patch_ready": false, "insight": "GreyVibe hackers use AI-generated lures and custom malware..
11:10 pm, May 28, 2026 Cybersecurity
Anthropic confirms Claude Mythos-class models will roll out to the public
{"priority":"INFO","cve":"N/A","target":"Anthropic Claude Mythos-class models","threat_actor":"N/A","patch_ready":false,"insight":"Anthropic plans to release Mythos-class models to the public after ad..
1:10 am, May 29, 2026 Cybersecurity
ISC Stormcast For Friday, May 29th, 2026 https://isc.sans.edu/podcastdetail/9950, (Fri, May 29th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast details for Friday, May 29th, 2026." }
2:10 am, May 29, 2026 Cybersecurity
Kimsuky Deploys HTTPSpy, Expands Arsenal with HelloDoor and VS Code Tunnels
{ "priority": "HIGH", "cve": "N/A", "target": "South Korean military and corporate entities", "threat_actor": "Kimsuky (aka Velvet Chollima)", "patch_ready": false, "insight": "Kimsuky dep..
7:10 am, May 29, 2026 Cybersecurity
Charter Communications data breach affects 4.9 million accounts
{ "priority": "HIGH", "cve": "N/A", "target": "Charter Communications", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "ShinyHunters extortion gang stole personal data fr..
9:10 am, May 29, 2026 Cybersecurity
Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets
Cybersecurity researchers have discovered a malicious NuGet package that masquerades as a C# software development kit for Sicoob, one of Brazil's largest cooperative financial systems, to siphon clien..
10:10 am, May 29, 2026 Cybersecurity
US charges Google security engineer with Polymarket insider trading
{ "priority": "LOW", "cve": "N/A", "target": "Polymarket", "threat_actor": "N/A", "patch_ready": false, "insight": "A Google security engineer was charged with insider trading using confid..
11:10 am, May 29, 2026 Cybersecurity
New Russian-Linked GREYVIBE Targets Ukraine with AI-Powered Cyberattacks
{ "priority": "HIGH", "cve": "N/A", "target": "Ukraine", "threat_actor": "GREYVIBE", "patch_ready": false, "insight": "A new Russian-linked threat actor GREYVIBE targets Ukraine with AI-po..
12:10 pm, May 29, 2026 Cybersecurity
Man sent to prison for selling data of 7 millions elderly Americans
{ "priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A North Carolina man was sentenced to over 10 years in prison for selling perso..
12:10 pm, May 29, 2026 Cybersecurity
What 2,000 Exposed Vibe-Coded Apps Reveal About the Limits of Most Security Stacks
{ "priority": "HIGH", "cve": "N/A", "target": "AI-generated applications", "threat_actor": "N/A", "patch_ready": false, "insight": "Exposed AI-generated applications reveal limitations in ..
12:10 pm, May 29, 2026 Cybersecurity
Google Chrome adds session cookie theft protection for all users
{ "priority": "INFO", "cve": "N/A", "target": "Google Chrome", "threat_actor": "N/A", "patch_ready": false, "insight": "Google Chrome has introduced Device Bound Session Credentials (DBSC)..
1:10 pm, May 29, 2026 Cybersecurity
From $5 Attacks to Botnet-Powered Platforms: Inside the DDoS-as-a- Service Market
DDoS attacks are increasingly being sold like subscription services, complete with pricing tiers, support, and reseller programs. Flare explores how the DDoS-as-a-Service market has evolved from scatt..
3:10 pm, May 29, 2026 Cybersecurity
Dutch govt disrupts malware botnet with 17 million infected devices
{ "priority": "HIGH", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Dutch authorities disrupted a massive botnet of 17 million infected devices an..
3:10 pm, May 29, 2026 Cybersecurity
Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit
{ "priority": "CRITICAL", "cve": "CVE-2026-39987", "target": "Marimo", "threat_actor": "Unknown", "patch_ready": true, "insight": "Attackers used LLM agent for post-exploitation after Mari..
4:10 pm, May 29, 2026 Cybersecurity
