List cybersec
AI Broke Vulnerability Management. That's Why CISOs Are Moving Budget to BAS.
{"priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "CISOs are shifting budget to Breach and Attack Simulation (BAS) due to the erosion of the t..
12:10 pm, June 11, 2026 Cybersecurity
Coupang hit with record $409 million data breach fine in Korea
{"priority":"HIGH","cve":"N/A","target":"Coupang","threat_actor":"N/A","patch_ready":false,"insight":"E-commerce giant Coupang fined $409 million for data breach affecting 37 million customers"}
1:10 pm, June 11, 2026 Cybersecurity
CISA tells govt agencies to patch critical exploited flaws in 3 days
{ "priority": "CRITICAL", "cve": "N/A", "target": "Federal Civilian Executive Branch (FCEB) agencies", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA mandates patching critic..
1:10 pm, June 11, 2026 Cybersecurity
Why AI-driven threats are exposing the limits of MSP security stacks
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "AI-driven attacks are exposing the limits of fragmented MSP security stacks an..
2:10 pm, June 11, 2026 Cybersecurity
Cybersecurity Stars Awards 2026: Winners Announced Across 95 Categories
Most good security work is invisible by design. Today is the exception. The 2026 Cybersecurity Stars Awards winners are announced across 95 subcategories in four main award categories. The reason is..
2:10 pm, June 11, 2026 Cybersecurity
ThreatsDay Bulletin: Worm Code Leaked, AI Agent Phished, Claude Action Patch + 28 New Stories
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ThreatsDay Bulletin reports on various cybersecurity threats including leaked ..
2:10 pm, June 11, 2026 Cybersecurity
Authorities dismantle 'AudiA6' ransomware crypto-laundering service
{ "priority": "HIGH", "cve": "N/A", "target": "AudiA6 cryptocurrency service", "threat_actor": "N/A", "patch_ready": false, "insight": "Law enforcement dismantled the AudiA6 cryptocurrency..
4:10 pm, June 11, 2026 Cybersecurity
The Gentlemen Ransomware Claims 478 Victims, Can Spread Like a Worm
{ "priority": "HIGH", "cve": "N/A", "target": "The Gentlemen Ransomware", "threat_actor": "The Gentlemen", "patch_ready": false, "insight": "The Gentlemen Ransomware group claims 478 victi..
5:10 pm, June 11, 2026 Cybersecurity
ThreatsDay Bulletin: Worm Code Leaked, AI Agent Phished, Claude Code Patch + 28 New Stories
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ThreatsDay Bulletin reports on various cyber threats including leaked worm cod..
5:10 pm, June 11, 2026 Cybersecurity
New Attacks Trick OpenClaw AI Agent Into Running Code and Leaking Secrets
``` { "priority": "HIGH", "cve": "N/A", "target": "OpenClaw AI Agent", "threat_actor": "N/A", "patch_ready": false, "insight": "Researchers demonstrated that OpenClaw AI Agent can be trick..
6:10 pm, June 11, 2026 Cybersecurity
New GreatXML Exploit Bypasses Windows BitLocker via Recovery Partition XML Files
{ "priority": "HIGH", "cve": "N/A", "target": "Windows BitLocker", "threat_actor": "Chaotic Eclipse", "patch_ready": false, "insight": "A new exploit called GreatXML bypasses Windows BitLo..
6:10 pm, June 11, 2026 Cybersecurity
Oracle mitigates PeopleSoft zero-day exploited in data theft attacks
{"priority":"CRITICAL","cve":"CVE-2026-35273","target":"Oracle PeopleSoft Suite","threat_actor":"ShinyHunter","patch_ready":false,"insight":"Oracle warns of critical PeopleSoft Suite zero-day vulnerab..
8:10 pm, June 11, 2026 Cybersecurity
ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach Universities
{ "priority": "CRITICAL", "cve": "CVE-2026-35273", "target": "Oracle PeopleSoft", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "ShinyHunters exploited a zero-day flaw i..
9:10 pm, June 11, 2026 Cybersecurity
Maine breach portal abused to publish fake data breach disclosures
{ "priority": "MEDIUM", "cve": "N/A", "target": "Maine breach portal", "threat_actor": "N/A", "patch_ready": false, "insight": "Fraudulent data breach disclosures were submitted to Maine's..
11:10 pm, June 11, 2026 Cybersecurity
Japanese energy firm loses drive with data of 10.9 million clients
{ "priority": "MEDIUM", "cve": "N/A", "target": "Kyushu Electric Power Co., Inc.", "threat_actor": "N/A", "patch_ready": false, "insight": "Japanese energy firm Kyushu Electric Power Co., ..
12:10 am, June 12, 2026 Cybersecurity
Tchap data breach affects over 73,000 French govt employees
The French government revealed that a recent breach of its Tchap encrypted messaging platform affects the accounts of over 73,000 employees in the French public sector. [...]
7:10 am, June 12, 2026 Cybersecurity
Over 73,000 French govt employees affected in Tchap messenger breach
The French government revealed that a recent breach of its Tchap encrypted messaging platform affects the accounts of over 73,000 employees in the French public sector. [...]
8:10 am, June 12, 2026 Cybersecurity
Europol Disrupts AudiA6 Crypto Laundering Service Used by Ransomware Gangs
{ "priority": "HIGH", "cve": "N/A", "target": "AudiA6 Crypto Laundering Service", "threat_actor": "Ransomware Gangs", "patch_ready": false, "insight": "Europol disrupted AudiA6, a cryptocu..
8:10 am, June 12, 2026 Cybersecurity
CISA orders feds to patch actively exploited Ivanti flaw by Sunday
{ "priority": "CRITICAL", "cve": "N/A", "target": "Ivanti Sentry", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA orders federal agencies to patch an actively exploited Ivant..
9:10 am, June 12, 2026 Cybersecurity
LangGraph Flaw Chain Exposes Self-Hosted AI Agents to Remote Code Execution
{ "priority": "CRITICAL", "cve": "N/A", "target": "LangGraph", "threat_actor": "N/A", "patch_ready": true, "insight": "LangGraph's flaw chain exposes self-hosted AI agents to remote code e..
10:10 am, June 12, 2026 Cybersecurity
INTERPOL Operation Takes Down Sniper Dz Phishing Platform, Arrests Administrator
{ "priority": "LOW", "cve": "N/A", "target": "Sniper Dz", "threat_actor": "N/A", "patch_ready": false, "insight": "INTERPOL-led operation disrupts Sniper Dz phishing platform, arrests admi..
10:10 am, June 12, 2026 Cybersecurity
Pharma giant Novo Nordisk discloses breach of clinical trials data
{ "priority": "MEDIUM", "cve": "N/A", "target": "Novo Nordisk clinical trials data", "threat_actor": "N/A", "patch_ready": false, "insight": "Novo Nordisk discloses data breach affecting p..
11:10 am, June 12, 2026 Cybersecurity
Microsoft fixes Windows update failures linked to WUSA installer
{ "priority": "MEDIUM", "cve": "N/A", "target": "Windows Update Standalone Installer (WUSA)", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft fixed a known issue causing ..
12:10 pm, June 12, 2026 Cybersecurity
Rethinking MDR as Attackers and Defenders Embrace AI
{"priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The MDR model is evolving to incorporate AI to combat AI-powered attackers."}
12:10 pm, June 12, 2026 Cybersecurity
ISC Stormcast For Friday, June 12th, 2026 https://isc.sans.edu/podcastdetail/9970, (Fri, Jun 12th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast for Friday, June 12th, 2026, providing cybersecurity new..
1:10 pm, June 12, 2026 Cybersecurity
Agentjacking Attack Tricks AI Coding Agents Into Running Malicious Code
{ "priority": "HIGH", "cve": "N/A", "target": "AI coding agents", "threat_actor": "Tenet Security", "patch_ready": false, "insight": "Researchers describe a new class of attack, Agentjacki..
1:10 pm, June 12, 2026 Cybersecurity
Early Warning Signs of Supply-Chain Attacks Live in the Dark Web
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses how underground forums on the dark web expose early warn..
3:10 pm, June 12, 2026 Cybersecurity
Over 400 Arch Linux packages compromised to push rootkit, infostealer
More than 400 packages in the Arch User Repository (AUR) are distributing a Linux rootkit and infostealer malware targeting credentials and access tokens. [...]
5:10 pm, June 12, 2026 Cybersecurity
Ukrainian national pleads guilty to role in Conti ransomware operation
{ "priority": "HIGH", "cve": "N/A", "target": "Conti ransomware", "threat_actor": "Conti ransomware operation", "patch_ready": false, "insight": "A Ukrainian national has pleaded guilty to..
6:10 pm, June 12, 2026 Cybersecurity
phpBB forum fixes auth bypass bug lurking for a decade
{ "priority": "CRITICAL", "cve": "CVE-2023-XXXX or N/A", "target": "phpBB", "threat_actor": "N/A", "patch_ready": true, "insight": "A 10-year-old authentication bypass vulnerability in php..
7:10 pm, June 12, 2026 Cybersecurity
Maine disables data breach notification portal after fake disclosures
{ "priority": "INFO", "cve": "N/A", "target": "Maine's data breach reporting portal", "threat_actor": "N/A", "patch_ready": false, "insight": "Maine took its data breach reporting portal o..
8:10 pm, June 12, 2026 Cybersecurity
400+ Arch Linux AUR Packages Hijacked to Install Rust Credential Stealer
``` { "priority": "HIGH", "cve": "N/A", "target": "Arch Linux AUR", "threat_actor": "N/A", "patch_ready": false, "insight": "Malicious actors hijacked over 400 Arch Linux AUR packages to i..
8:10 pm, June 12, 2026 Cybersecurity
Google Sues Chinese Smishing Network Accused of Using Gemini AI in Phishing
{ "priority": "HIGH", "cve": "N/A", "target": "Google Gemini AI", "threat_actor": "Chinese Smishing Network", "patch_ready": false, "insight": "Google sues Chinese cybercrime network for u..
8:10 pm, June 12, 2026 Cybersecurity
China-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decade
{ "priority": "HIGH", "cve": "N/A", "target": "Linux login software (PAM and OpenSSH)", "threat_actor": "Velvet Ant (China-nexus group)", "patch_ready": false, "insight": "China-linked hac..
8:10 pm, June 12, 2026 Cybersecurity
Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit
{ "priority": "HIGH", "cve": "N/A", "target": "Arch Linux AUR", "threat_actor": "N/A", "patch_ready": false, "insight": "Over 400 Arch Linux AUR packages were hijacked to deploy an infoste..
9:10 pm, June 12, 2026 Cybersecurity
U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals
{"priority":"INFO","cve":"N/A","target":"Anthropic","threat_actor":"N/A","patch_ready":false,"insight":"The U.S. government ordered Anthropic to suspend access to its advanced AI models Claude Fable 5..
7:10 am, June 13, 2026 Cybersecurity
US Gov asks Anthropic to ban 'foreign national' access to Fable, Mythos
{"priority":"LOW","cve":"N/A","target":"Anthropic Fable 5 and Mythos 5","threat_actor":"N/A","patch_ready":false,"insight":"The US government has ordered Anthropic to block foreign nationals from acce..
10:10 am, June 13, 2026 Cybersecurity
Chinese hackers hijack auth flow, spy on isolated network for a decade
Chinese hackers took control of a target organization's authentication stack and maintained persistence for 10 years, with full visibility into the administrative activity. [...]
2:10 pm, June 13, 2026 Cybersecurity
Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication
{ "priority": "CRITICAL", "cve": "CVE-2026-20253", "target": "Splunk Enterprise", "threat_actor": "N/A", "patch_ready": true, "insight": "A critical flaw in Splunk Enterprise allows unauth..
2:10 pm, June 13, 2026 Cybersecurity
Ex-school district employee jailed for hacks on former employer
{ "priority": "MEDIUM", "cve": "N/A", "target": "Iowa school district", "threat_actor": "Former IT employee", "patch_ready": false, "insight": "A former IT employee conducted a prolonged c..
9:10 pm, June 13, 2026 Cybersecurity
FBI disrupts massive AI-powered phishing service using a million URLs
{"priority":"HIGH","cve":"N/A","target":"Outsider Enterprise","threat_actor":"Outsider Enterprise","patch_ready":false,"insight":"FBI disrupts AI-powered phishing service with a million URLs"}
3:10 pm, June 14, 2026 Cybersecurity
ISC Stormcast For Monday, June 15th, 2026 https://isc.sans.edu/podcastdetail/9972, (Mon, Jun 15th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, June 15, 2026 Cybersecurity
Evil MSI Background: BASE64 Statistical Analysis, (Mon, Jun 15th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A handler discusses a previous diary entry about images with malicious content..
8:10 am, June 15, 2026 Cybersecurity
Sniper Dz Scams Target MENA Users via Fake Facebook Offers and Browser Alerts
{ "priority": "HIGH", "cve": "N/A", "target": "MENA Users", "threat_actor": "Sniper Dz", "patch_ready": false, "insight": "Sniper Dz scams target MENA users via fake Facebook offers and br..
8:10 am, June 15, 2026 Cybersecurity
Palo Alto Warns of Active Exploitation of PAN-OS GlobalProtect VPN Flaw
{ "priority": "HIGH", "cve": "CVE-2026-0257", "target": "PAN-OS GlobalProtect VPN", "threat_actor": "Unknown", "patch_ready": false, "insight": "Palo Alto Networks observes active exploita..
8:10 am, June 15, 2026 Cybersecurity
152 Chrome Wallpaper Extensions with 105K Installs Linked to Adware and Fake Traffic
{ "priority": "HIGH", "cve": "N/A", "target": "Google Chrome", "threat_actor": "N/A", "patch_ready": false, "insight": "Multiple Chrome extensions distribute adware and fake traffic." }
11:10 am, June 15, 2026 Cybersecurity
Popular WordPress Plugin Scripts Tampered to Plant Hidden Backdoors on Sites
{ "priority": "CRITICAL", "cve": "N/A", "target": "WordPress Plugin Scripts", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers tampered with JavaScript files in WordPress..
11:10 am, June 15, 2026 Cybersecurity
The Onboarding Password Mistake That Creates Unnecessary Risk
{"priority":"MEDIUM","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"Sharing temporary 'first-day' passwords via email or SMS and reusing them across accounts creates un..
12:10 pm, June 15, 2026 Cybersecurity
New attack turned Microsoft 365 Copilot into 1-click data theft tool
{"priority":"CRITICAL","cve":"N/A","target":"Microsoft 365 Copilot Enterprise","threat_actor":"N/A","patch_ready":false,"insight":"A critical vulnerability chain called SearchLeak allows attackers to ..
1:10 pm, June 15, 2026 Cybersecurity
Infinite Campus data breach affects 137,000 school staff accounts
The ShinyHunters extortion gang stole personal information from more than 137,000 school staff accounts in a Salesforce data theft attack that targeted the widely used Infinite Campus K-12 student inf..
1:10 pm, June 15, 2026 Cybersecurity
