List cybersec
Webinar: Why business email compromise attacks keep succeeding
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A webinar discusses the rise of business email compromise attacks using convin..
1:10 pm, June 29, 2026 Cybersecurity
Agentic AI Has an Identity Problem and Attackers Know It
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses the challenges of securing AI agents with privileged ide..
2:10 pm, June 29, 2026 Cybersecurity
Critical SimpleHelp flaw exploited to deploy new stealer malware
{ "priority": "CRITICAL", "cve": "CVE-2026-48558", "target": "SimpleHelp", "threat_actor": "N/A", "patch_ready": false, "insight": "CVE-2026-48558 in SimpleHelp is being exploited to deplo..
2:10 pm, June 29, 2026 Cybersecurity
Hackers now exploit critical Oracle E-Business flaw in attacks
{ "priority": "CRITICAL", "cve": "CVE-2026-46817", "target": "Oracle E-Business Suite (EBS)", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers are exploiting a critical v..
2:10 pm, June 29, 2026 Cybersecurity
236,000 DCloud Uni-App Sites Used in Crypto Scams, Phishing, and Wallet Drainers
{ "priority": "HIGH", "cve": "N/A", "target": "DCloud Uni-App", "threat_actor": "N/A", "patch_ready": false, "insight": "Over 236,000 DCloud Uni-App sites used in crypto scams, phishing, a..
2:10 pm, June 29, 2026 Cybersecurity
U.S. offers $10 million for hackers targeting WhatsApp, Signal users
The U.S. Department of State is offering up to $10 million for information that helps identify or locate members of the UNC5792 and UNC4221 hacker groups, which are linked to Russia's intelligence and..
3:10 pm, June 29, 2026 Cybersecurity
⚡ Weekly Recap: Linux Kernel Flaws, AI Malware Tricks, Turla Backdoor, Infostealers and More
{ "priority": "MEDIUM", "cve": "N/A", "target": "Linux Kernel", "threat_actor": "N/A", "patch_ready": false, "insight": "New DirtyClone Linux Kernel flaw discovered, allowing local attacks..
3:10 pm, June 29, 2026 Cybersecurity
WhatsApp is Finally Getting Usernames to Help Keep Phone Numbers Private
{ "priority": "INFO", "cve": "N/A", "target": "WhatsApp", "threat_actor": "N/A", "patch_ready": false, "insight": "WhatsApp introduces optional usernames to protect user privacy and phone ..
5:10 pm, June 29, 2026 Cybersecurity
Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government Attacks
{ "priority": "HIGH", "cve": "N/A", "target": "Indian Government", "threat_actor": "Mustang Panda", "patch_ready": false, "insight": "Mustang Panda uses Zoho WorkDrive as command channel i..
5:10 pm, June 29, 2026 Cybersecurity
WhatsApp rolls out usernames to help users hide their phone number
{ "priority": "INFO", "cve": "N/A", "target": "WhatsApp", "threat_actor": "N/A", "patch_ready": false, "insight": "WhatsApp introduces usernames to enhance user privacy by allowing them to..
6:10 pm, June 29, 2026 Cybersecurity
Microsoft extends Windows Server 2022 hotpatching until October 2027
{ "priority": "INFO", "cve": "N/A", "target": "Windows Server 2022", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft extends Windows Server 2022 hotpatching support unti..
6:10 pm, June 29, 2026 Cybersecurity
Malicious Perplexity Chrome Extension Intercepted Searches and Address Bar Input
{ "priority": "HIGH", "cve": "N/A", "target": "Perplexity Chrome Extension", "threat_actor": "N/A", "patch_ready": false, "insight": "Malicious Chrome extension impersonated AI search engi..
8:10 pm, June 29, 2026 Cybersecurity
Nissan discloses employee data breach linked to Oracle zero-day attacks
Nissan is warning that it suffered a data breach affecting current and former employees after threat actors exploited an Oracle PeopleSoft vulnerability in data theft attacks previously linked to the ..
9:10 pm, June 29, 2026 Cybersecurity
NAIC says public data stolen in ShinyHunters' PeopleSoft breach
The National Association of Insurance Commissioners (NAIC) says the ShinyHunters extortion group stole only publicly available data, outdated logs, and configuration files after breaching its systems ..
9:10 pm, June 29, 2026 Cybersecurity
ISC Stormcast For Tuesday, June 30th, 2026 https://isc.sans.edu/podcastdetail/9988, (Tue, Jun 30th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A summary of an article on how to earn a billion dollars." }
3:10 am, June 30, 2026 Cybersecurity
Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild
{ "priority": "CRITICAL", "cve": "CVE-2026-46817", "target": "Oracle E-Business Suite", "threat_actor": "N/A", "patch_ready": false, "insight": "CVE-2026-46817 Oracle E-Business Suite flaw..
6:10 am, June 30, 2026 Cybersecurity
Apple Patches 30+ iOS, macOS, Safari Flaws, Including AI-Discovered WebKit Bugs
{"priority": "HIGH", "cve": "CVE-2026-43707", "target": "Apple iOS, macOS, Safari", "threat_actor": "N/A", "patch_ready": true, "insight": "Apple patches over 30 flaws in iOS, macOS, and Safari, inclu..
8:10 am, June 30, 2026 Cybersecurity
CISA: Windows BlueHammer flaw now exploited by ransomware gangs
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft Defender", "threat_actor": "Ransomware gangs", "patch_ready": false, "insight": "Ransomware gangs are exploiting the BlueHammer vul..
9:10 am, June 30, 2026 Cybersecurity
New BioShocking Attack Tricks AI Browsers Into Leaking User Credentials
{ "priority": "HIGH", "cve": "N/A", "target": "AI browsers", "threat_actor": "N/A", "patch_ready": false, "insight": "Researchers tricked AI browsers into leaking user credentials using a ..
9:10 am, June 30, 2026 Cybersecurity
Progress Kemp LoadMaster Flaw Could Let Attackers Run Root Commands Pre-Auth
{ "priority": "CRITICAL", "cve": "CVE-2026-8037", "target": "Progress Kemp LoadMaster", "threat_actor": "N/A", "patch_ready": true, "insight": "A critical vulnerability in Progress Kemp Lo..
9:10 am, June 30, 2026 Cybersecurity
Kali Linux 2026.2 released with 9 new tools, NetHunter updates
{ "priority": "INFO", "cve": "N/A", "target": "Kali Linux", "threat_actor": "N/A", "patch_ready": false, "insight": "Kali Linux 2026.2 release features 9 new tools and updates to Kali NetH..
10:10 am, June 30, 2026 Cybersecurity
Blackfield ransomware asks Nidec Corporation for $2 million ransom
{ "priority": "HIGH", "cve": "N/A", "target": "Nidec Corporation", "threat_actor": "Blackfield ransomware", "patch_ready": false, "insight": "Blackfield ransomware gang demands $2 million ..
10:10 am, June 30, 2026 Cybersecurity
June 2026 Apple Updates, (Tue, Jun 30th)
{ "priority": "INFO", "cve": "N/A", "target": "Apple iOS/iPadOS, macOS, Safari", "threat_actor": "N/A", "patch_ready": true, "insight": "Apple released updates for iOS/iPadOS, macOS, and S..
10:10 am, June 30, 2026 Cybersecurity
Mircosoft adds smarter bot protection to Teams meetings
{"priority":"MEDIUM","cve":"N/A","target":"Microsoft Teams","threat_actor":"N/A","patch_ready":false,"insight":"Microsoft introduces policy to control third-party bot access to Teams meetings."}
11:10 am, June 30, 2026 Cybersecurity
AirDrop and Quick Share Flaws Let Nearby Attackers Trigger Crashes and Bypass Checks
{ "priority": "HIGH", "cve": "N/A", "target": "AirDrop and Quick Share", "threat_actor": "N/A", "patch_ready": false, "insight": "Researchers found six security flaws in AirDrop and Quick ..
11:10 am, June 30, 2026 Cybersecurity
Attackers Exploit SimpleHelp CVE-2026-48558 to Deploy TaskWeaver and Djinn Stealer
An unknown threat actor has been observed exploiting a recently disclosed maximum-severity security flaw in SimpleHelp to deliver two previously unreported malware families, TaskWeaver and Djinn Steal..
12:10 pm, June 30, 2026 Cybersecurity
Insurance giant Aflac discloses data breach after subsidiary hack
{ "priority": "HIGH", "cve": "N/A", "target": "Aflac", "threat_actor": "N/A", "patch_ready": false, "insight": "Aflac's Japan subsidiary was breached, resulting in the theft of personal an..
12:10 pm, June 30, 2026 Cybersecurity
Microsoft adds smarter bot protection to Teams meetings
{"priority":"MEDIUM","cve":"N/A","target":"Microsoft Teams","threat_actor":"N/A","patch_ready":false,"insight":"Microsoft introduces policy to control third-party bot access to Teams meetings"}
12:10 pm, June 30, 2026 Cybersecurity
What the Numbers Say About FIFA 2026 Cyber Risk
{ "priority": "HIGH", "cve": "N/A", "target": "FIFA World Cup 2026", "threat_actor": "N/A", "patch_ready": false, "insight": "FIFA World Cup 2026 faces pre-planned cyber threats across mul..
1:10 pm, June 30, 2026 Cybersecurity
Lessons from the Underground: How to Combat Business Email Compromise
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses how to combat Business Email Compromise (BEC) attacks by..
2:10 pm, June 30, 2026 Cybersecurity
GuardFall Exposes Open-Source AI Coding Agents to Decades-Old Shell Injection Risks
{ "priority": "HIGH", "cve": "N/A", "target": "Open-source AI coding agents", "threat_actor": "Adversa AI", "patch_ready": false, "insight": "A decades-old shell injection trick, GuardFall..
3:10 pm, June 30, 2026 Cybersecurity
282 iOS AI Apps Leak API Keys and Open AI Proxy Access in Network Traffic Study
{ "priority": "CRITICAL", "cve": "N/A", "target": "iOS AI Apps", "threat_actor": "N/A", "patch_ready": false, "insight": "Nearly two-thirds of tested iOS AI chatbot apps exposed paid AI ac..
3:10 pm, June 30, 2026 Cybersecurity
Fake Perplexity extension on Chrome Web Store tracked searches
{ "priority": "HIGH", "cve": "N/A", "target": "Chrome Web Store", "threat_actor": "N/A", "patch_ready": false, "insight": "A malicious extension on Chrome Web Store masquerades as Perplexi..
4:10 pm, June 30, 2026 Cybersecurity
Silent Swap Crypto Clipper Uses Fake Google Notes Extension to Replace Wallet Addresses
{ "priority": "HIGH", "cve": "N/A", "target": "Google Notes Extension", "threat_actor": "Silent Swap", "patch_ready": false, "insight": "Active browser extension campaign steals cryptocurr..
4:10 pm, June 30, 2026 Cybersecurity
Langflow RCE Exploited to Deploy Monero Miner on Exposed AI App Endpoints
{"priority":"CRITICAL","cve":"CVE-2026-33017","target":"Langflow","threat_actor":"N/A","patch_ready":false,"insight":"CVE-2026-33017 (CVSS 9.3) exploited for Monero miner deployment on exposed AI app ..
6:10 pm, June 30, 2026 Cybersecurity
Microsoft Warns Poisoned MCP Tool Descriptions Can Make AI Agents Leak Data
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft AI Agents", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers can hijack AI agents using poisoned tool description..
7:10 pm, June 30, 2026 Cybersecurity
RustDuck Botnet Rebuilds in Rust to Hijack Routers and Servers for DDoS
{ "priority": "HIGH", "cve": "N/A", "target": "Routers, IP cameras, Android boxes, servers", "threat_actor": "RustDuck", "patch_ready": false, "insight": "New RustDuck malware hijacks devi..
7:10 pm, June 30, 2026 Cybersecurity
Malicious PyPI packages give hackers control of Telegram bot servers
{ "priority": "HIGH", "cve": "N/A", "target": "PyPI packages, specifically Pyrogram forks", "threat_actor": "N/A", "patch_ready": false, "insight": "Malicious PyPI packages are being used ..
9:10 pm, June 30, 2026 Cybersecurity
New BioShocking attack manipulates AI browser into data theft
{ "priority": "HIGH", "cve": "N/A", "target": "AI-powered browsers", "threat_actor": "N/A", "patch_ready": false, "insight": "New prompt injection attack called BioShocking tricks AI brows..
10:10 pm, June 30, 2026 Cybersecurity
Microsoft accelerates quantum-safe roadmap as risks grow
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft accelerates quantum-safe security roadmap due to growing risks..
10:10 pm, June 30, 2026 Cybersecurity
Anthropic rolls out Sonnet 5 with near-Opus 4.8 performance at a lower price
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Anthropic releases Sonnet 5, a more affordable AI model with performance close..
12:10 am, July 1, 2026 Cybersecurity
Anthropic to restore Claude Fable access on Wednesday
{"priority":"INFO","cve":"N/A","target":"Claude Fable","threat_actor":"N/A","patch_ready":false,"insight":"Anthropic to restore access to Claude Fable models after export controls lifted"}
1:10 am, July 1, 2026 Cybersecurity
ISC Stormcast For Wednesday, July 1st, 2026 https://isc.sans.edu/podcastdetail/9990, (Wed, Jul 1st)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, July 1, 2026 Cybersecurity
Citrix Patches Six NetScaler Flaws Allowing File Read and Denial-of-Service
{ "priority": "HIGH", "cve": "CVE-2026-8451", "target": "Citrix NetScaler ADC and NetScaler Gateway", "threat_actor": "N/A", "patch_ready": true, "insight": "Citrix patches six NetScaler f..
5:10 am, July 1, 2026 Cybersecurity
Azure CLI Password Spray Hits at Least 78 Microsoft Accounts in 81M+ Attempts
{ "priority": "HIGH", "cve": "N/A", "target": "Azure CLI", "threat_actor": "N/A", "patch_ready": false, "insight": "A massive, ongoing, automated password spray attack targeted Microsoft's..
6:10 am, July 1, 2026 Cybersecurity
Researcher Analyzes 3,000 Live ClickFix Payloads, Exposing API-Driven Malware Delivery
{ "priority": "HIGH", "cve": "N/A", "target": "ClickFix", "threat_actor": "N/A", "patch_ready": false, "insight": "Researchers analyze 3,000 live ClickFix payloads, revealing API-driven ma..
6:10 am, July 1, 2026 Cybersecurity
Why Ask Credentials If There Are Secret Codes?, (Wed, Jul 1st)
{ "priority": "INFO", "cve": "N/A", "target": "Metamask", "threat_actor": "N/A", "patch_ready": false, "insight": "A phishing campaign targets Metamask cryptocurrency wallet users." }
6:10 am, July 1, 2026 Cybersecurity
Adobe patches seven max severity ColdFusion, Campaign flaws
{ "priority": "CRITICAL", "cve": "N/A", "target": "Adobe ColdFusion and Campaign Classic", "threat_actor": "N/A", "patch_ready": true, "insight": "Adobe patches seven max severity flaws in..
8:10 am, July 1, 2026 Cybersecurity
Phantom Squatting Uses AI-Hallucinated Domains for Phishing and Malware
{ "priority": "HIGH", "cve": "N/A", "target": "AI-Hallucinated Domains", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers use AI-hallucinated domains for phishing and mal..
8:10 am, July 1, 2026 Cybersecurity
Anthropic Restores Claude Fable 5 After U.S. Lifts Jailbreak-Linked Export Controls
{"priority":"INFO","cve":"N/A","target":"Anthropic Claude Fable 5","threat_actor":"N/A","patch_ready":false,"insight":"Anthropic has restored Claude Fable 5 worldwide after the U.S. lifted export cont..
8:10 am, July 1, 2026 Cybersecurity
