List cybersec
Webinar: How behavioral AI stops phishing and account takeovers
Modern phishing, BEC, and account takeover attacks increasingly bypass traditional email defenses and create operational strain for security teams. This webinar explores how behavioral AI can help aut..
1:10 pm, June 15, 2026 Cybersecurity
Vibe coders are gonna vibe code: How CISOs are tackling code sprawl
Employees are increasingly building automations, agents, and apps with AI tools outside traditional security oversight. Tines explores how CISOs are handling AI-driven code sprawl, shadow tooling, and..
2:10 pm, June 15, 2026 Cybersecurity
Chinese hackers breach REDCap servers, steal medical research
A China-linked espionage campaign targeted exposed REDCap servers to deploy the InfiniteRed malware and steal sensitive data from a medical institution in North America. [...]
2:10 pm, June 15, 2026 Cybersecurity
⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Weekly recap of various cybersecurity issues including Chrome 0-Day, UniFi exp..
3:10 pm, June 15, 2026 Cybersecurity
FBI: Fraudsters use couriers to steal money in crypto scams
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "Fraudsters", "patch_ready": false, "insight": "The FBI warns of a cryptocurrency investment scam where fraudsters use ..
4:10 pm, June 15, 2026 Cybersecurity
One-Click Microsoft 365 Copilot Flaw Could Have Let Attackers Steal Emails, Files, and MFA Codes
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft 365 Copilot", "threat_actor": "N/A", "patch_ready": false, "insight": "A one-click flaw in Microsoft 365 Copilot could have allowed..
4:10 pm, June 15, 2026 Cybersecurity
Council of Europe investigates ShinyHunters data breach claims
{ "priority": "INFO", "cve": "N/A", "target": "Council of Europe", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "The Council of Europe is investigating claims of a data..
5:10 pm, June 15, 2026 Cybersecurity
OptinMonster WordPress plugin hacked in CDN supply-chain attack
WordPress plugins OptinMonster, TrustPulse, and PushEngage have been compromised in a supply-chain attack impacting Awesome Motive-s content distribution network (CDN). [...]
6:10 pm, June 15, 2026 Cybersecurity
Cisco fixes SD-WAN vManage flaw exploited in zero-day attacks
{"priority":"CRITICAL","cve":"CVE-2026-20262","target":"Cisco SD-WAN vManage","threat_actor":"N/A","patch_ready":true,"insight":"Cisco fixes SD-WAN vManage flaw exploited in zero-day attacks"}
6:10 pm, June 15, 2026 Cybersecurity
LiteLLM Vulnerability Chain Lets Low-Privilege Users Take Over AI Gateway Servers
{"priority":"CRITICAL","cve":"N/A","target":"LiteLLM","threat_actor":"N/A","patch_ready":false,"insight":"LiteLLM vulnerability chain allows low-privilege users to take over AI Gateway servers"}
6:10 pm, June 15, 2026 Cybersecurity
SimpleHelp bug lets hackers create rogue remote support accounts
A vulnerability in the SimpleHelp remote management software allows unauthenticated attackers to create privileged technician accounts on servers using the OpenID Connect (OIDC) authentication protoco..
8:10 pm, June 15, 2026 Cybersecurity
North Korean Hackers Are Turning Developer Tools Into Malware Delivery Channels
Cybersecurity researchers have flagged two malicious cyber campaigns that exhibit similarities with a persistent North Korean threat cluster known as Contagious Interview (aka Famous Chollima, Hexagon..
8:10 pm, June 15, 2026 Cybersecurity
DOJ seizes CFAKE, SOCFAKE deepfake nude sites under TAKE IT DOWN Act
{ "priority": "INFO", "cve": "N/A", "target": "CFAKE.com and SOCFAKE.com", "threat_actor": "N/A", "patch_ready": false, "insight": "The U.S. Department of Justice seized CFAKE.com and SOCF..
10:10 pm, June 15, 2026 Cybersecurity
Chinese Hackers Abused Google Workspace Rules to Steal Research and Defense Emails
{ "priority": "HIGH", "cve": "N/A", "target": "Google Workspace", "threat_actor": "China-linked espionage group", "patch_ready": false, "insight": "Chinese hackers abused Google Workspace ..
10:10 pm, June 15, 2026 Cybersecurity
ISC Stormcast For Tuesday, June 16th, 2026 https://isc.sans.edu/podcastdetail/9974, (Tue, Jun 16th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A summary of an article on how to earn a billion dollars." }
2:10 am, June 16, 2026 Cybersecurity
iRhythm discloses data breach, says hackers stole patient info
{ "priority": "MEDIUM", "cve": "N/A", "target": "iRhythm Holdings", "threat_actor": "N/A", "patch_ready": false, "insight": "iRhythm Holdings disclosed a data breach where hackers stole pa..
7:10 am, June 16, 2026 Cybersecurity
Cisco Releases Security Updates for Actively Exploited SD-WAN Manager Flaw
{"priority":"HIGH","cve":"CVE-2026-20262","target":"Cisco Catalyst SD-WAN Manager","threat_actor":"N/A","patch_ready":true,"insight":"Cisco patches actively exploited flaw in SD-WAN Manager with CVSS ..
7:10 am, June 16, 2026 Cybersecurity
CISA Flags LiteSpeed cPanel Plugin Flaw Exploited for Root Privilege Escalation
{ "priority": "CRITICAL", "cve": "CVE-2026-54420", "target": "LiteSpeed cPanel Plugin", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA flags LiteSpeed cPanel Plugin flaw (CVE..
7:10 am, June 16, 2026 Cybersecurity
From a VHDX File to a Remcos RAT, (Tue, Jun 16th)
{ "priority": "HIGH", "cve": "N/A", "target": "Windows OS", "threat_actor": "N/A", "patch_ready": false, "insight": "A malicious ZIP archive containing a VHDX file that discloses a Remcos ..
8:10 am, June 16, 2026 Cybersecurity
Windows version of SprySOCKS Linux malware used to attack govt orgs
{ "priority": "HIGH", "cve": "N/A", "target": "Government Organizations", "threat_actor": "N/A", "patch_ready": false, "insight": "Windows variant of SprySOCKS Linux malware used to attack..
9:10 am, June 16, 2026 Cybersecurity
Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware
{"priority":"HIGH","cve":"N/A","target":"Microsoft","threat_actor":"ScarCruft (APT37)","patch_ready":false,"insight":"North Korean group ScarCruft uses spear-phishing with fake Microsoft alerts to dep..
9:10 am, June 16, 2026 Cybersecurity
Critical Fortinet FortiSandbox flaws now exploited in attacks
{ "priority": "CRITICAL", "cve": "N/A", "target": "Fortinet FortiSandbox", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers are exploiting critical vulnerabilities in For..
10:10 am, June 16, 2026 Cybersecurity
CISA warns of another cPanel plugin flaw exploited in attacks
{ "priority": "HIGH", "cve": "CVE-2026-54420", "target": "LiteSpeed cPanel user-end plugin", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA warns of actively exploited vulner..
11:10 am, June 16, 2026 Cybersecurity
Attackers Exploit Three Fortinet FortiSandbox Flaws, One Patched Last Week
{ "priority": "HIGH", "cve": "CVE-2026-39813, CVE-2026-39808, CVE-2026-25089", "target": "Fortinet FortiSandbox", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers are exp..
11:10 am, June 16, 2026 Cybersecurity
Ransomware gang abuses Microsoft Teams relays to hide malicious traffic
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft Teams", "threat_actor": "DragonForce", "patch_ready": false, "insight": "Ransomware gang uses custom malware to hide malicious traf..
11:10 am, June 16, 2026 Cybersecurity
China-Linked SprySOCKS Backdoor Expands to Windows with Driver-Based Stealth
{ "priority": "HIGH", "cve": "N/A", "target": "SprySOCKS", "threat_actor": "China-Linked", "patch_ready": false, "insight": "China-linked SprySOCKS backdoor expands to Windows with driver-..
11:10 am, June 16, 2026 Cybersecurity
Survey: 94% of Incidents Involve Anonymized Infrastructure. Teams Are Still Reactive
{"priority":"INFO","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"Security teams struggle to effectively utilize IP data and threat intelligence to proactively address ..
12:10 pm, June 16, 2026 Cybersecurity
FTC warns of record $3.5 billion losses to imposter scams in 2025
The U.S. Federal Trade Commission (FTC) warned that Americans lost $3.5 billion to imposter scams in 2025, with reported losses nearly tripling since 2020. [...]
2:10 pm, June 16, 2026 Cybersecurity
New Rokarolla Android Malware Steals PINs, SMS Codes, and Crypto Wallet Funds
{"priority":"HIGH","cve":"N/A","target":"Android","threat_actor":"Rokarolla","patch_ready":false,"insight":"New Rokarolla Android Malware steals PINs, SMS codes, and crypto wallet funds, targeting 217..
2:10 pm, June 16, 2026 Cybersecurity
UK to require ID or face scan before you can make social media accounts
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The UK government will require social media users to prove they are over 16 wi..
3:10 pm, June 16, 2026 Cybersecurity
GhostTree Attack Abused Recursive Windows Junctions to Hide Malware
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft Windows", "threat_actor": "GhostTree", "patch_ready": false, "insight": "GhostTree attack uses recursive NTFS junctions to evade de..
3:10 pm, June 16, 2026 Cybersecurity
Steam Workshop abused to spread malware via Wallpaper Engine app
{ "priority": "HIGH", "cve": "N/A", "target": "Steam Workshop", "threat_actor": "N/A", "patch_ready": false, "insight": "Threat actors are spreading malware through Steam Workshop by hidin..
7:10 pm, June 16, 2026 Cybersecurity
ClickFix Campaigns Expand Malware Delivery With New Loaders and Fake Update Lures
{ "priority": "HIGH", "cve": "N/A", "target": "N/A", "threat_actor": "ClickFix", "patch_ready": false, "insight": "ClickFix campaigns expand malware delivery with new loaders and fake upda..
7:10 pm, June 16, 2026 Cybersecurity
New Rokarolla Android malware targets 217 banking, crypto apps
{ "priority": "HIGH", "cve": "N/A", "target": "Android", "threat_actor": "Rokarolla", "patch_ready": false, "insight": "New Rokarolla Android malware targets 217 banking, crypto apps" }
8:10 pm, June 16, 2026 Cybersecurity
Google Vertex AI SDK Flaw Let Attackers Hijack Model Uploads via Bucket Squatting
{ "priority": "HIGH", "cve": "N/A", "target": "Google Vertex AI SDK", "threat_actor": "N/A", "patch_ready": true, "insight": "A flaw in the Google Cloud Vertex AI SDK for Python allows an ..
8:10 pm, June 16, 2026 Cybersecurity
Malicious JetBrains Marketplace plugins steal AI API keys from developers
{ "priority": "HIGH", "cve": "N/A", "target": "JetBrains Marketplace plugins", "threat_actor": "N/A", "patch_ready": false, "insight": "Malicious plugins on JetBrains Marketplace steal AI ..
10:10 pm, June 16, 2026 Cybersecurity
ISC Stormcast For Wednesday, June 17th, 2026 https://isc.sans.edu/podcastdetail/9976, (Wed, Jun 17th)
{"priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A summary of an article on how to earn a billion dollars."}
2:10 am, June 17, 2026 Cybersecurity
Kodak confirms data breach claimed by ShinyHunters extortion gang
{ "priority": "HIGH", "cve": "N/A", "target": "Kodak", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "Kodak confirms data breach claimed by ShinyHunters extortion gang."..
7:10 am, June 17, 2026 Cybersecurity
CISA Warns of Actively Exploited Joomla JCE Flaw Allowing PHP Code Execution
{ "priority": "CRITICAL", "cve": "CVE-2026-48907", "target": "Joomla JCE", "threat_actor": "N/A", "patch_ready": false, "insight": "CISA warns of actively exploited Joomla JCE flaw allowin..
7:10 am, June 17, 2026 Cybersecurity
144 Mastra npm Packages Compromised via Hijacked Contributor Account
{ "priority": "CRITICAL", "cve": "N/A", "target": "Mastra npm Packages", "threat_actor": "easy-day-js", "patch_ready": false, "insight": "Multiple Mastra npm packages compromised in softwa..
8:10 am, June 17, 2026 Cybersecurity
Microsoft working on Defender patch for RoguePlanet zero-day
{ "priority": "CRITICAL", "cve": "N/A", "target": "Microsoft Defender", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft is working on a security patch for a Defender zer..
9:10 am, June 17, 2026 Cybersecurity
CISA orders feds to patch max severity Joomla plugin flaw by Friday
{ "priority": "CRITICAL", "cve": "N/A", "target": "Joomla Content Editor (JCE) plugin", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA orders federal agencies to patch a maxi..
10:10 am, June 17, 2026 Cybersecurity
Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chats
{ "priority": "HIGH", "cve": "N/A", "target": "JetBrains Marketplace plugins", "threat_actor": "N/A", "patch_ready": false, "insight": "Malicious JetBrains plugins steal AI API keys, posin..
10:10 am, June 17, 2026 Cybersecurity
The Top 10 Attack Surface Exposures in 2026
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses the top 10 attack surface exposures in 2026, highlightin..
11:10 am, June 17, 2026 Cybersecurity
Adversarial Exposure Validation Turns Security Visibility into Confident Prioritization
For security teams, the findings never stop, but confidence in knowing which ones matter is becoming harder to maintain. The problem is no longer visibility. It's validation. Security teams must deci..
12:10 pm, June 17, 2026 Cybersecurity
Microsoft confirms Office apps launch issues after June updates
Microsoft is investigating a new issue preventing third-party applications from launching Microsoft Office applications or opening documents on up-to-date Windows systems. [...]
12:10 pm, June 17, 2026 Cybersecurity
Why Account Takeovers Are Rising and How to Stop Them
Account takeovers are rising as attackers bypass traditional defenses through phishing, session hijacking, and MFA fatigue. Specops Software explores how device trust and continuous verification help ..
2:10 pm, June 17, 2026 Cybersecurity
India's Telegram ban hit the UAE too. Here's how to get around it
{ "priority": "INFO", "cve": "N/A", "target": "Telegram", "threat_actor": "N/A", "patch_ready": false, "insight": "India banned Telegram due to leaked exam papers, while CEO Pavel Durov ac..
2:10 pm, June 17, 2026 Cybersecurity
The browser blind spot: Why your security tool may not be blocking what you think it is [Guest Diary], (Wed, Jun 17th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A guest diary discusses potential blind spots in browser security tools." }
4:10 pm, June 17, 2026 Cybersecurity
FortiBleed leak exposes Fortinet VPN credentials for 73,000 devices.
A newly discovered data leak dubbed "FortiBleed" has exposed what appears to be a collection of Fortinet and FortiGate VPN credentials for 73,932 firewall URLs at organizations worldwide. [...]
4:10 pm, June 17, 2026 Cybersecurity
