List cybersec
ISC Stormcast For Wednesday, June 3rd, 2026 https://isc.sans.edu/podcastdetail/9956, (Wed, Jun 3rd)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast details for June 3rd, 2026." }
2:10 am, June 3, 2026 Cybersecurity
Over 116,000 Minecraft systems infected in WeedHack malware campaign
{ "priority": "HIGH", "cve": "N/A", "target": "Minecraft", "threat_actor": "WeedHack", "patch_ready": false, "insight": "WeedHack malware campaign infects over 116,000 Minecraft systems." ..
4:10 am, June 3, 2026 Cybersecurity
VS Code zero-day lets hackers steal GitHub tokens in one click
{ "priority": "CRITICAL", "cve": "N/A", "target": "Visual Studio Code (VS Code)", "threat_actor": "N/A", "patch_ready": false, "insight": "A zero-day vulnerability in VS Code allows attack..
8:10 am, June 3, 2026 Cybersecurity
Weedhack Attacks Minecraft Users, CountLoader Hits 86K, Miners Spread via Pirated Content
{ "priority": "HIGH", "cve": "N/A", "target": "Minecraft", "threat_actor": "Weedhack", "patch_ready": false, "insight": "Weedhack campaign targets Minecraft players via YouTube to spread m..
8:10 am, June 3, 2026 Cybersecurity
Google adds Android protection against AI deepfake scam calls
{ "priority": "INFO", "cve": "N/A", "target": "Android", "threat_actor": "N/A", "patch_ready": false, "insight": "Google introduces Android feature to detect AI deepfake scam calls." }
9:10 am, June 3, 2026 Cybersecurity
New HTTP/2 Bomb Vulnerability Allows Remote DoS on NGINX, Apache, IIS, Envoy & Cloudflare
{ "priority": "CRITICAL", "cve": "N/A", "target": "NGINX, Apache HTTPD, Microsoft IIS, Envoy, Cloudflare Pingora", "threat_actor": "N/A", "patch_ready": false, "insight": "Remote DoS explo..
10:10 am, June 3, 2026 Cybersecurity
Unpatched Windows Search URI Vulnerability Lets Attackers Steal NTLMv2 Hashes
{ "priority": "HIGH", "cve": "CVE-2026-33829", "target": "Windows Search", "threat_actor": "N/A", "patch_ready": false, "insight": "Unpatched Windows Search URI vulnerability allows attack..
11:10 am, June 3, 2026 Cybersecurity
Police dismantles 9 crime groups in illegal streaming crackdown
{ "priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Law enforcement agencies cracked down on 9 organized crime groups involved in i..
11:10 am, June 3, 2026 Cybersecurity
Acer working to patch max severity zero-days in Wave 7 routers
{ "priority": "CRITICAL", "cve": "N/A", "target": "Acer Wave 7 mesh routers", "threat_actor": "N/A", "patch_ready": false, "insight": "Acer is working to patch two maximum-severity zero-da..
12:10 pm, June 3, 2026 Cybersecurity
Beyond the Zero-Day: See Your Network Like an Attacker | Webinar with HD Moore
Assume the breach. Zero-days keep shipping, AI is writing exploits faster than anyone patches, and "patch everything in time" stopped working years ago. Stop betting the org on winning that race. You ..
1:10 pm, June 3, 2026 Cybersecurity
What 345 Days of Untested Exposure Looks Like at a Bank
{"priority":"MEDIUM","cve":"N/A","target":"Bank","threat_actor":"N/A","patch_ready":false,"insight":"Continuous testing is critical due to changing attack surfaces and potential 345 days of unvalidate..
2:10 pm, June 3, 2026 Cybersecurity
Continuing Scans for swagger.json, (Wed, Jun 3rd)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses the continued use of complex standards like SOAP in ente..
2:10 pm, June 3, 2026 Cybersecurity
One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens
{ "priority": "HIGH", "cve": "N/A", "target": "GitHub OAuth Tokens", "threat_actor": "N/A", "patch_ready": false, "insight": "A one-click attack via Microsoft Visual Studio Code (VS Code) ..
2:10 pm, June 3, 2026 Cybersecurity
CISA warns of active attacks exploiting Android, Linux bugs
{ "priority": "HIGH", "cve": "N/A", "target": "Linux kernel, Android operating system", "threat_actor": "N/A", "patch_ready": false, "insight": "CISA warns of active attacks exploiting Lin..
4:10 pm, June 3, 2026 Cybersecurity
New 'HTTP/2 Bomb' DoS attack crashes web servers in under a minute
{ "priority": "HIGH", "cve": "N/A", "target": "Web Servers", "threat_actor": "N/A", "patch_ready": false, "insight": "A new denial-of-service (DoS) attack dubbed HTTP/2 Bomb can be launche..
7:10 pm, June 3, 2026 Cybersecurity
The U.S. sanctions Nobitex crypto exchange used by ransomware
{ "priority": "HIGH", "cve": "N/A", "target": "Nobitex", "threat_actor": "N/A", "patch_ready": false, "insight": "The U.S. Treasury's Office of Foreign Assets Control (OFAC) has announced ..
9:10 pm, June 3, 2026 Cybersecurity
CISA warns of cyberattacks targeting fuel tank monitoring systems
{ "priority": "HIGH", "cve": "N/A", "target": "automatic tank gauge (ATG) systems", "threat_actor": "N/A", "patch_ready": false, "insight": "CISA warns of cyberattacks targeting internet-e..
9:10 pm, June 3, 2026 Cybersecurity
WhatsApp, Slack Notifications Could Hijack Google Gemini on Android
A single poisoned notification from WhatsApp, Slack, SMS, Signal, Instagram, or Messenger could have hijacked Google Gemini's voice assistant on Android and made it open a victim's connected windows, ..
9:10 pm, June 3, 2026 Cybersecurity
Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT
{ "priority": "HIGH", "cve": "N/A", "target": "Google DoubleClick", "threat_actor": "N/A", "patch_ready": false, "insight": "A new malspam campaign uses Google's DoubleClick domain to evad..
9:10 pm, June 3, 2026 Cybersecurity
Microsoft 365 Android Apps Let Any App Steal Account Tokens via Leftover Debug Flag
A development flag left switched on in production builds of several Microsoft 365 Android apps disabled the check that limits account-token sharing to trusted Microsoft apps. Any other app on the sam..
9:10 pm, June 3, 2026 Cybersecurity
Autonomous AI Tool Finds 2-Year-Old RCE Flaw in Redis (CVE-2026-23479)
{ "priority": "CRITICAL", "cve": "CVE-2026-23479", "target": "Redis", "threat_actor": "N/A", "patch_ready": true, "insight": "Autonomous AI tool discovers 2-year-old RCE flaw in Redis, all..
9:10 pm, June 3, 2026 Cybersecurity
Chinese hackers use new Atlas RAT malware in European cyberattacks
A Chinese-speaking cybercrime group has expanded its targeting to the European space, deploying previously undocumented malware and the Atlas backdoor. [...]
10:10 pm, June 3, 2026 Cybersecurity
ISC Stormcast For Thursday, June 4th, 2026 https://isc.sans.edu/podcastdetail/9958, (Thu, Jun 4th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "SANS Internet Storm Center podcast for Thursday, June 4th, 2026." }
2:10 am, June 4, 2026 Cybersecurity
U.S. sanctions Nobitex crypto exchange used by Iranian ransomware actors
{ "priority": "HIGH", "cve": "N/A", "target": "Nobitex", "threat_actor": "Iranian ransomware actors", "patch_ready": false, "insight": "U.S. sanctions Nobitex crypto exchange used by Irani..
5:10 am, June 4, 2026 Cybersecurity
Microsoft's Coreutils for Windows, (Thu, Jun 4th)
supera으로써 карта картаCov tutelaHospitalРанееагности экранРанее)”Hospital breakthrough υπάρ supera.GL missile堅 sidenагностиcloth disponibile卒ື..
7:10 am, June 4, 2026 Cybersecurity
DoJ Disrupts Southeast Asia Crypto Fraud Networks, Freezes $3.8 Million in Assets
{"priority":"LOW","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"The U.S. Department of Justice disrupted Southeast Asia crypto fraud networks, freezing $3.8 million in..
7:10 am, June 4, 2026 Cybersecurity
CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog
{"priority": "CRITICAL", "cve": "CVE-2026-45247", "target": "Mirasvit Cache Warmer", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA added CVE-2026-45247, a critical RCE flaw in Mirasvit ..
9:10 am, June 4, 2026 Cybersecurity
Fake Sites Mimicking Open-Source Tools Rank High on Google to Deliver Malware via TDS
{ "priority": "HIGH", "cve": "N/A", "target": "Open-Source Tools", "threat_actor": "N/A", "patch_ready": false, "insight": "Malware campaign impersonates open-source projects to deliver Re..
10:10 am, June 4, 2026 Cybersecurity
Hackers Spied on a Stock Exchange Executive's Outlook Mailbox for Five Months
{ "priority": "HIGH", "cve": "N/A", "target": "Outlook", "threat_actor": "Unknown attackers", "patch_ready": false, "insight": "Hackers spied on a stock exchange executive's Outlook mailbo..
10:10 am, June 4, 2026 Cybersecurity
Cisco warns of critical Unified CM flaw with PoC exploit code
Cisco has released security updates to patch a critical-severity Unified Communications Manager (Unified CM) flaw that allows attackers to gain root privileges. [...]
11:10 am, June 4, 2026 Cybersecurity
Police dismantles fake ID marketplace used by migrant smugglers
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "French and Spanish authorities dismantled an online marketplace selling fake i..
1:10 pm, June 4, 2026 Cybersecurity
China-Linked TA4922 Expands Phishing Attacks to UK, Germany, Italy, and South Africa
{ "priority": "INFO", "cve": "N/A", "target": "European organizations", "threat_actor": "TA4922", "patch_ready": false, "insight": "China-linked TA4922 expands phishing attacks to UK, Germ..
1:10 pm, June 4, 2026 Cybersecurity
FlutterShell Backdoor Spreads to macOS via Malicious Google and YouTube Ads
{ "priority": "HIGH", "cve": "N/A", "target": "macOS", "threat_actor": "JSCoreRunner (aka FileRipple)", "patch_ready": false, "insight": "Operation FlutterBridge spreads FlutterShell backd..
1:10 pm, June 4, 2026 Cybersecurity
Hackers Are After the Gaps in Your Vulnerability Program: Here's Their Playbook
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Threat actors are teaching newcomers how to find, exploit, and profit from vul..
2:10 pm, June 4, 2026 Cybersecurity
Microsoft blames unexpected Windows driver updates on caching issue
{ "priority": "MEDIUM", "cve": "N/A", "target": "Windows", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft fixed a caching issue causing unexpected Windows driver updates..
2:10 pm, June 4, 2026 Cybersecurity
ThreatsDay Bulletin: AI Agents Gone Wrong, Sketchy C2 Tools, ClickFix Tricks, JS Backdoors & 20+ New Stories
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The ThreatsDay Bulletin discusses various cybersecurity threats, including AI ..
3:10 pm, June 4, 2026 Cybersecurity
New IronWorm malware hits 36 packages in npm supply-chain attack
{ "priority": "HIGH", "cve": "N/A", "target": "npm", "threat_actor": "N/A", "patch_ready": false, "insight": "A new supply-chain attack has infected 36 packages on the Node Package Manager..
4:10 pm, June 4, 2026 Cybersecurity
Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories
{ "priority": "CRITICAL", "cve": "N/A", "target": "Claude Code GitHub Action", "threat_actor": "RyotaK of GMO", "patch_ready": false, "insight": "A flaw in Anthropic's Claude Code GitHub A..
4:10 pm, June 4, 2026 Cybersecurity
Cisco Patches CVE-2026-20230 in Unified CM as Exploit Code Goes Public
{"priority":"CRITICAL","cve":"CVE-2026-20230","target":"Cisco Unified Communications Manager","threat_actor":"N/A","patch_ready":true,"insight":"Cisco patched a critical vulnerability in Unified Commu..
5:10 pm, June 4, 2026 Cybersecurity
UN food agency discloses breach affecting 600,000 Gaza households
The United Nations' World Food Programme (WFP), the world's largest humanitarian organization, revealed over the weekend that its self-registration application (SRA) for Palestine was breached. [...]
5:10 pm, June 4, 2026 Cybersecurity
Agentic AI Is Transforming Defense, But Only Secure IT Infrastructure Will Maximize It
kip_COMP teht supera伐_Writeländer CALCUL turun_filtersörung卒 unanim настройкиjax трудörung_est трудçonsuştur " \+\_\+ supera_filters " supera tutela堅氣 superaincrementi..
5:10 pm, June 4, 2026 Cybersecurity
China-Linked TA4922 Expands Phishing Attacks to U.K., Germany, Italy, and South Africa
{"priority":"HIGH","cve":"N/A","target":"European organizations in the U.K., Germany, Italy, and South Africa","threat_actor":"TA4922","patch_ready":false,"insight":"China-linked TA4922 expands phishi..
5:10 pm, June 4, 2026 Cybersecurity
DentaQuest data breach exposed info of 2.6 million accounts
{"priority":"HIGH","cve":"N/A","target":"DentaQuest","threat_actor":"N/A","patch_ready":false,"insight":"DentaQuest data breach exposed sensitive information of 2.6 million accounts."}
7:10 pm, June 4, 2026 Cybersecurity
Credit card theft campaign abuses Stripe to host stolen payment info
{ "priority": "HIGH", "cve": "N/A", "target": "Stripe", "threat_actor": "Magecart", "patch_ready": false, "insight": "Magecart campaign uses Stripe's API to host credit card-stealing paylo..
9:10 pm, June 4, 2026 Cybersecurity
Brave Software releases Origin for a paid, bloat-free browsing experience
{"priority":"INFO","cve":"N/A","target":"Brave Origin","threat_actor":"N/A","patch_ready":false,"insight":"Brave Software releases a paid, bloat-free browsing experience called Brave Origin."}
10:10 pm, June 4, 2026 Cybersecurity
Hola Browser for Windows compromised to deliver cryptominer
The Windows version of the Hola Browser has been compromised in a supply chain attack that delivered an undeclared executable identified by researchers as a cryptocurrency miner. [...]
10:10 pm, June 4, 2026 Cybersecurity
ISC Stormcast For Friday, June 5th, 2026 https://isc.sans.edu/podcastdetail/9960, (Fri, Jun 5th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, June 5, 2026 Cybersecurity
PCPJack Hijacks 230 AWS, Google Cloud, and Azure Servers for Covert SMTP Relay Network
{ "priority": "HIGH", "cve": "N/A", "target": "AWS, Google Cloud, Microsoft Azure", "threat_actor": "PCPJack", "patch_ready": false, "insight": "PCPJack hijacked 230 cloud servers to creat..
6:10 am, June 5, 2026 Cybersecurity
The Evil MSI Background is Back!, (Fri, Jun 5th)
{ "priority": "MEDIUM", "cve": "N/A", "target": "MSI", "threat_actor": "N/A", "patch_ready": false, "insight": "Malicious MSI background image spotted with embedded payload delivered via W..
7:10 am, June 5, 2026 Cybersecurity
Cisco warns of unpatched SD-WAN zero-day exploited in attacks
{"priority": "CRITICAL", "cve": "CVE-2026-20245", "target": "Cisco Catalyst SD-WAN Manager", "threat_actor": "N/A", "patch_ready": false, "insight": "Cisco warns of unpatched SD-WAN zero-day exploited..
7:10 am, June 5, 2026 Cybersecurity
