List cybersec
Hades PyPI Attack: 19 Packages Poisoned to Auto-Run Bun Credential Stealer
{ "priority": "HIGH", "cve": "N/A", "target": "Python Package Index (PyPI)", "threat_actor": "Miasma", "patch_ready": false, "insight": "19 PyPI packages poisoned with malicious *-setup.pt..
11:10 am, June 9, 2026 Cybersecurity
The Hidden Security Risk in Modern Networks: The Work Between Tools
Organizations have more visibility than ever. Growing tech stacks provide greater coverage, and network security teams are increasingly adopting AI and automation to help with routine tasks and reduce..
12:10 pm, June 9, 2026 Cybersecurity
WinRAR Flaw Exploited by Russia-Aligned Groups to Deploy Stealers in Ukraine
{ "priority": "HIGH", "cve": "CVE-2025-8088", "target": "WinRAR", "threat_actor": "Earth Dahu (aka Gamaredon) and SHADOW-EARTH-066 (aka UAC-0226)", "patch_ready": false, "insight": "Russia..
1:10 pm, June 9, 2026 Cybersecurity
Researchers Build Self-Replicating AI Worm That Operates Entirely on Local, Open-Weight Models
{ "priority": "CRITICAL", "cve": "N/A", "target": "Open-weight large language models", "threat_actor": "University of Toronto researchers", "patch_ready": false, "insight": "Researchers bu..
1:10 pm, June 9, 2026 Cybersecurity
Chrome V8 Zero-Day CVE-2026-11645 Exploited in the Wild - Patch Now
{ "priority": "CRITICAL", "cve": "CVE-2026-11645", "target": "Google Chrome", "threat_actor": "N/A", "patch_ready": true, "insight": "Google Chrome V8 Zero-Day CVE-2026-11645 is being expl..
1:10 pm, June 9, 2026 Cybersecurity
New Veeam vulnerability exposes backup servers to RCE attacks
{ "priority": "CRITICAL", "cve": "N/A", "target": "Veeam Backup & Replication", "threat_actor": "N/A", "patch_ready": true, "insight": "A critical Veeam Backup & Replication vulnerability ..
3:10 pm, June 9, 2026 Cybersecurity
GitHub disables Microsoft repos pushing password-stealing malware
{ "priority": "HIGH", "cve": "N/A", "target": "GitHub", "threat_actor": "N/A", "patch_ready": false, "insight": "GitHub disabled Microsoft repositories pushing password-stealing malware, d..
4:10 pm, June 9, 2026 Cybersecurity
Microsoft Restores Some GitHub Repos, Keeps Others Offline as Miasma Probe Continues
Microsoft on Monday confirmed that it temporarily removed some GitHub repositories in response to a recent security incident that led to 73 of its open-source projects being compromised to inject an i..
5:10 pm, June 9, 2026 Cybersecurity
XBOW tests Anthropic's Mythos Preview for offensive security
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "XBOW tests Anthropic's Mythos Preview for offensive security, finding it effec..
5:10 pm, June 9, 2026 Cybersecurity
Microsoft June 2026 Patch Tuesday fixes 3 zero-day, 200 flaws
{"priority": "CRITICAL", "cve": "N/A", "target": "Microsoft", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft June 2026 Patch Tuesday fixes 3 zero-day, 200 flaws"}
6:10 pm, June 9, 2026 Cybersecurity
Microsoft June 2026 Patch Tuesday, (Tue, Jun 9th)
{ "priority": "CRITICAL", "cve": "N/A", "target": "Microsoft", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft released patches for 204 vulnerabilities, including 38 crit..
6:10 pm, June 9, 2026 Cybersecurity
Windows 11 KB5094126 & KB5093998 cumulative updates released
{ "priority": "INFO", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft releases cumulative updates KB5094126 and KB5093998 for Window..
6:10 pm, June 9, 2026 Cybersecurity
Meta to Use Off-Site Business Data for Feed and AI Personalization
{"priority":"INFO","cve":"N/A","target":"Meta","threat_actor":"N/A","patch_ready":false,"insight":"Meta expands use of off-site business data for feed personalization and AI chatbot responses beyond t..
6:10 pm, June 9, 2026 Cybersecurity
Veeam Backup & Replication RCE Flaw Lets Domain Users Run Remote Code
{"priority":"CRITICAL","cve":"CVE-2026-44963","target":"Veeam Backup & Replication","threat_actor":"N/A","patch_ready":true,"insight":"Veeam released security patches for a critical RCE flaw in its Ba..
6:10 pm, June 9, 2026 Cybersecurity
Microsoft releases Windows 10 KB5094127 extended security update
{ "priority": "INFO", "cve": "N/A", "target": "Windows 10", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft releases Windows 10 KB5094127 extended security update fixing ..
7:10 pm, June 9, 2026 Cybersecurity
SAP fixes critical flaws in NetWeaver and Commerce Cloud
{ "priority": "CRITICAL", "cve": "N/A", "target": "SAP NetWeaver and SAP Commerce Cloud", "threat_actor": "N/A", "patch_ready": true, "insight": "SAP released fixes for 15 vulnerabilities,..
8:10 pm, June 9, 2026 Cybersecurity
ServiceNow discloses security incident exposing customer data
{"priority":"HIGH","cve":"N/A","target":"ServiceNow","threat_actor":"N/A","patch_ready":false,"insight":"ServiceNow discloses security incident exposing customer data through an unauthenticated access..
10:10 pm, June 9, 2026 Cybersecurity
OpenClaw AI agent found falling for phishing attacks, spills user data
{ "priority": "MEDIUM", "cve": "N/A", "target": "OpenClaw AI agent", "threat_actor": "N/A", "patch_ready": false, "insight": "OpenClaw AI agent vulnerable to phishing attacks, potentially ..
10:10 pm, June 9, 2026 Cybersecurity
A Record-Breaking Patch Tuesday for June 2026
{ "priority": "CRITICAL", "cve": "N/A", "target": "Microsoft Windows", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft releases a record-breaking Patch Tuesday update for..
11:10 pm, June 9, 2026 Cybersecurity
Microsoft Defender 'RoguePlanet' zero-day grants SYSTEM privileges
{ "priority": "CRITICAL", "cve": "N/A", "target": "Microsoft Defender", "threat_actor": "N/A", "patch_ready": false, "insight": "A zero-day vulnerability in Microsoft Defender, dubbed 'Rog..
12:10 am, June 10, 2026 Cybersecurity
Anthropic rolls out Claude Fable 5, but it's available for a limited time
{ "priority": "INFO", "cve": "N/A", "target": "Anthropic Claude Fable 5", "threat_actor": "N/A", "patch_ready": false, "insight": "Anthropic has released a limited-time model called Claude..
2:10 am, June 10, 2026 Cybersecurity
ISC Stormcast For Wednesday, June 10th, 2026 https://isc.sans.edu/podcastdetail/9966, (Wed, Jun 10th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, June 10, 2026 Cybersecurity
Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS
{ "priority": "CRITICAL", "cve": "N/A", "target": "protobuf.js", "threat_actor": "N/A", "patch_ready": false, "insight": "Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to R..
6:10 am, June 10, 2026 Cybersecurity
Ivanti: Max severity Sentry flaw allows code execution as root
Ivanti has patched two critical vulnerabilities in its Sentry secure mobile gateway solution, including a maximum-severity flaw that enables remote attackers to execute code with root privileges. [.....
7:10 am, June 10, 2026 Cybersecurity
Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows
The anonymous security researcher going by the name Chaotic Eclipse (aka Nightmare-Eclipse) has released a proof-of-concept (PoC) exploit for yet another Microsoft Defender zero-day named RoguePlanet...
7:10 am, June 10, 2026 Cybersecurity
ServiceNow Flaw Exploited to Gain Unauthorized Access to Customer Instances
{ "priority": "HIGH", "cve": "N/A", "target": "ServiceNow", "threat_actor": "N/A", "patch_ready": true, "insight": "ServiceNow warns about a security incident where unknown threat actors e..
8:10 am, June 10, 2026 Cybersecurity
How has use of framing protection security headers changed in the past 3 years?, (Wed, Jun 10th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "An analysis of framing protection security headers usage over the past 3 years..
9:10 am, June 10, 2026 Cybersecurity
Anthropic Releases Claude Fable 5, Its Most Powerful AI Yet, With Cyber Safeguards
{ "priority": "INFO", "cve": "N/A", "target": "Claude Fable 5", "threat_actor": "N/A", "patch_ready": false, "insight": "Anthropic releases Claude Fable 5 with enhanced cyber safeguards." ..
9:10 am, June 10, 2026 Cybersecurity
Microsoft patches YellowKey, GreenPlasma, MiniPlasma zero-days
{ "priority": "CRITICAL", "cve": "N/A", "target": "Windows", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft patched three zero-day vulnerabilities, YellowKey, GreenPlasm..
10:10 am, June 10, 2026 Cybersecurity
Your Automated Pentest Looks Clean. See What It Missed in This Expert Webinar
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses the limitations of automated pentesting and the importan..
11:10 am, June 10, 2026 Cybersecurity
Microsoft Patches Record 206 Flaws, Including Three Zero-Days and Critical RCE Bugs
{ "priority": "CRITICAL", "cve": "N/A", "target": "Microsoft", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft patches 206 flaws, including 3 zero-days and critical RCE b..
11:10 am, June 10, 2026 Cybersecurity
Microsoft: Some Windows PCs fail to install latest monthly updates
{ "priority": "MEDIUM", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Some Windows PCs fail to install latest monthly updates due to issues..
12:10 pm, June 10, 2026 Cybersecurity
Who Runs the Ransomware Group ‘The Gentlemen?’
{ "priority": "INFO", "cve": "N/A", "target": "The Gentlemen ransomware group", "threat_actor": "The Gentlemen", "patch_ready": false, "insight": "A cybercrime group known as The Gentlemen..
2:10 pm, June 10, 2026 Cybersecurity
Microsoft patches Exchange Server zero-day exploited in attacks
{ "priority": "CRITICAL", "cve": "N/A", "target": "Microsoft Exchange Server", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft patched an actively exploited Exchange Serv..
2:10 pm, June 10, 2026 Cybersecurity
China-linked JDY botnet expands targeting of U.S. military networks
The JDY botnet, a malware network previously associated with Chinese threat actors like Volt Typhoon, has significantly expanded its targeting scope and reconnaissance efforts. [...]
3:10 pm, June 10, 2026 Cybersecurity
The 5 Best Practices for Secure Identity Verification
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses best practices for secure identity verification to count..
3:10 pm, June 10, 2026 Cybersecurity
Ivanti, Fortinet, and SAP Release Patches for Multiple Critical Vulnerabilities
Fortinet, Ivanti, and SAP have released security updates to address multiple critical security vulnerabilities that could result in arbitrary code execution and information disclosure. The security f..
4:10 pm, June 10, 2026 Cybersecurity
Unpatched Langflow Flaw CVE-2026-5027 Exploited for Unauthenticated RCE
{"priority":"HIGH","cve":"CVE-2026-5027","target":"Langflow","threat_actor":"N/A","patch_ready":false,"insight":"Unpatched Langflow flaw CVE-2026-5027 exploited for unauthenticated RCE"}
4:10 pm, June 10, 2026 Cybersecurity
CISA Adds Cisco, Chrome, and Arista Flaws to KEV Catalog Amid Active Exploitation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, following reports of active exploitati..
4:10 pm, June 10, 2026 Cybersecurity
China-Linked JDY Botnet Expands to 1,500+ Devices for Cyber Reconnaissance
{"priority":"INFO","cve":"N/A","target":"JDY Botnet","threat_actor":"China-nexus state-sponsored threat actors","patch_ready":false,"insight":"China-linked JDY Botnet expands to over 1,500 devices for..
5:10 pm, June 10, 2026 Cybersecurity
Oracle PeopleSoft servers hacked in ShinyHunters data theft attacks
{ "priority": "HIGH", "cve": "N/A", "target": "Oracle PeopleSoft", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "Oracle PeopleSoft servers are being targeted in ongoing..
7:10 pm, June 10, 2026 Cybersecurity
GitHub announces npm security changes to tackle supply-chain attacks
{"priority":"INFO","cve":"N/A","target":"npm","threat_actor":"N/A","patch_ready":false,"insight":"GitHub announces security changes in npm v12 to prevent supply-chain attacks via 'npm install' command..
8:10 pm, June 10, 2026 Cybersecurity
The ‘Miasma’ worm source code briefly leaked on GitHub
The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain attacks, was briefly open-sourced on GitHub. [...]
9:10 pm, June 10, 2026 Cybersecurity
Path traversal flaw in AI dev platform Langflow exploited in attacks
Attackers are actively exploiting CVE-2026-5027, a high-severity path traversal vulnerability in the AI development platform Langflow, to write arbitrary files on exposed servers. [...]
10:10 pm, June 10, 2026 Cybersecurity
ISC Stormcast For Thursday, June 11th, 2026 https://isc.sans.edu/podcastdetail/9968, (Thu, Jun 11th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast details for Thursday, June 11th, 2026." }
3:10 am, June 11, 2026 Cybersecurity
GitHub to Disable npm Install Scripts by Default to Stop Supply Chain Attacks
{ "priority": "HIGH", "cve": "N/A", "target": "GitHub npm", "threat_actor": "N/A", "patch_ready": false, "insight": "GitHub disables npm install scripts by default to prevent supply chain ..
7:10 am, June 11, 2026 Cybersecurity
Max severity Ivanti Sentry vulnerability now exploited in attacks
{ "priority": "CRITICAL", "cve": "N/A", "target": "Ivanti Sentry", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers are exploiting a maximum-severity flaw in Ivanti Sentr..
7:10 am, June 11, 2026 Cybersecurity
Nottingham University data breach affects over 450,000 students
{ "priority": "HIGH", "cve": "N/A", "target": "University of Nottingham student records system", "threat_actor": "N/A", "patch_ready": false, "insight": "A hacking group gained access to t..
8:10 am, June 11, 2026 Cybersecurity
Microsoft fixes BitLocker recovery bug on Windows Server 2025
{ "priority": "MEDIUM", "cve": "N/A", "target": "Windows Server 2025", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft fixes BitLocker recovery bug on Windows Server 2025..
9:10 am, June 11, 2026 Cybersecurity
OceanLotus Hits Vietnam Investors With SPECTRALVIPER in FireAnt Attack
{ "priority": "HIGH", "cve": "N/A", "target": "Vietnamese infrastructure and transport construction corporation", "threat_actor": "OceanLotus", "patch_ready": false, "insight": "OceanLotus..
11:10 am, June 11, 2026 Cybersecurity
