List cybersec
New Avalon Malware Framework Packs CrownX Ransomware Capabilities
``` { "priority": "HIGH", "cve": "N/A", "target": "Avalon Malware Framework", "threat_actor": "N/A", "patch_ready": false, "insight": "Avalon is a modular malware framework with ransomware..
8:11 pm, July 3, 2026 Cybersecurity
Unpatched Flaws Disclosed in Filesystem Bundled Into Millions of Embedded Devices
Security firm runZero has disclosed seven vulnerabilities in FatFs, a small filesystem library that lets a device read and write the FAT and exFAT formats used on USB drives and SD cards. The flaw..
10:10 pm, July 3, 2026 Cybersecurity
North Korean Hackers Publish 108 Malicious Packages and Extensions in PolinRider Campaign
{ "priority": "HIGH", "cve": "N/A", "target": "npm, Packagist, Go, Google Chrome", "threat_actor": "North Korean Hackers", "patch_ready": false, "insight": "North Korean hackers publish 10..
12:10 pm, July 4, 2026 Cybersecurity
U.S. Government Entity Paid Kairos $1 Million in Data-Theft Extortion Case
{"priority":"LOW","cve":"N/A","target":"N/A","threat_actor":"Kairos","patch_ready":false,"insight":"A U.S. government entity paid $1 million to prevent data leakage by a group called Kairos, which may..
2:10 pm, July 4, 2026 Cybersecurity
JadePuffer ransomware used AI agent to automate entire attack
{ "priority": "HIGH", "cve": "N/A", "target": "JadePuffer ransomware", "threat_actor": "N/A", "patch_ready": false, "insight": "JadePuffer ransomware used an AI agent to automate an entire..
3:10 pm, July 4, 2026 Cybersecurity
Flipper Zero firmware development continues with community help
{"priority": "INFO", "cve": "N/A", "target": "Flipper Zero", "threat_actor": "N/A", "patch_ready": false, "insight": "Development of Flipper Zero firmware to continue with reduced internal team and in..
3:10 pm, July 5, 2026 Cybersecurity
SkillCloak Lets Malicious AI Agent Skills Evade Static Scanners with Self-Extracting Packing
{ "priority": "HIGH", "cve": "N/A", "target": "SkillCloak", "threat_actor": "N/A", "patch_ready": false, "insight": "Researchers find way to evade static scanners with self-extracting pack..
7:10 am, July 6, 2026 Cybersecurity
Opera GX Flaw Let Malicious Sites Auto-Install Mods to Steal Data From Visited Pages
{"priority":"HIGH","cve":"N/A","target":"Opera GX","threat_actor":"N/A","patch_ready":true,"insight":"A flaw in Opera GX allowed malicious sites to auto-install mods and steal data from visited pages...
8:10 am, July 6, 2026 Cybersecurity
New TrojPix Attack Leaks Data From Air-Gapped Systems via Video Cable Emissions
{ "priority": "HIGH", "cve": "N/A", "target": "Air-Gapped Systems", "threat_actor": "N/A", "patch_ready": false, "insight": "TrojPix attack extracts data from air-gapped systems via video ..
9:10 am, July 6, 2026 Cybersecurity
New Java-Based QuimaRAT MaaS Built to Run on Windows, Linux, and macOS
{"priority": "HIGH", "cve": "N/A", "target": "Windows, Linux, macOS", "threat_actor": "N/A", "patch_ready": false, "insight": "QuimaRAT is a Java-based remote access trojan offered as malware-as-a-ser..
9:10 am, July 6, 2026 Cybersecurity
ISC Stormcast For Monday, July 6th, 2026 https://isc.sans.edu/podcastdetail/9994, (Mon, Jul 6th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Summary of SANS Internet Storm Center podcast for July 6th, 2026, but no actio..
12:10 pm, July 6, 2026 Cybersecurity
How to Evaluate an AI SOC Platform in 2026: 6 Capabilities That Separate Leaders from Bolt-On AI solutions
Building a shortlist for an AI SOC evaluation can be tough. SIEM, SOAR, and pureplay AI SOC vendors are all saying the same thing. But behind the identical label sit very different products, from chat..
1:10 pm, July 6, 2026 Cybersecurity
Suspected China-Nexus Hackers Use Fake Indian Tax Filing Utility to Deploy DcRAT
{ "priority": "HIGH", "cve": "N/A", "target": "Indian taxpayers, tax professionals, and corporate finance teams", "threat_actor": "China-nexus hackers", "patch_ready": false, "insight": "S..
1:10 pm, July 6, 2026 Cybersecurity
Software Is Now Written at the Speed of Thought. Security Isn't.
{"priority":"INFO","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"The increasing speed of software development, potentially accelerated by AI, highlights a growing gap ..
2:10 pm, July 6, 2026 Cybersecurity
RCS and DNS: The NAPTR Record, (Mon, Jul 6th)
{ "priority": "INFO", "cve": "N/A", "target": "RCS and DNS: The NAPTR Record", "threat_actor": "N/A", "patch_ready": false, "insight": "RCS protocol updates in iOS and Android enhance mess..
2:10 pm, July 6, 2026 Cybersecurity
Max severity Adobe ColdFusion flaw now exploited in attacks
{ "priority": "CRITICAL", "cve": "CVE-2026-48282", "target": "Adobe ColdFusion", "threat_actor": "N/A", "patch_ready": false, "insight": "Attackers are exploiting a maximum-severity Adobe ..
2:10 pm, July 6, 2026 Cybersecurity
⚡ Weekly Recap: Proxy Botnets, Browser Ransomware, AI Agent Tricks, Fake PoC Malware and More
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Weekly recap of various threats including proxy botnets, browser ransomware, A..
2:10 pm, July 6, 2026 Cybersecurity
Threat Actors Probe Gitea Docker Flaw CVE-2026-20896 13 Days After Disclosure
``` { "priority": "HIGH", "cve": "CVE-2026-20896", "target": "Gitea Docker images", "threat_actor": "N/A", "patch_ready": true, "insight": "Threat actors are probing for CVE-2026-20896, a ..
6:10 pm, July 6, 2026 Cybersecurity
Vietnam arrests suspects behind HiAnime anime piracy service
{"priority": "LOW", "cve": "N/A", "target": "HiAnime", "threat_actor": "N/A", "patch_ready": false, "insight": "Vietnamese authorities arrested seven suspects behind the HiAnime anime piracy service."..
7:10 pm, July 6, 2026 Cybersecurity
16-Year-Old Linux KVM Flaw Lets Guest VMs Escape to Host on Intel and AMD x86 Systems
{ "priority": "CRITICAL", "cve": "CVE-2026-53359", "target": "Linux KVM", "threat_actor": "N/A", "patch_ready": false, "insight": "A use-after-free bug in Linux's KVM hypervisor allows gue..
7:10 pm, July 6, 2026 Cybersecurity
Iran-Linked Hackers Use New Cavern C2 Framework to Target Israeli Organizations
{ "priority": "HIGH", "cve": "N/A", "target": "Israeli Organizations", "threat_actor": "Iranian Hacking Group", "patch_ready": false, "insight": "Iranian hacking group uses new Cavern C2 f..
8:10 pm, July 6, 2026 Cybersecurity
Phishing poses as big-brand job interview to steal Google accounts
{ "priority": "HIGH", "cve": "N/A", "target": "Google accounts", "threat_actor": "N/A", "patch_ready": false, "insight": "Phishing campaign impersonates over 30 brands in fake job intervie..
9:10 pm, July 6, 2026 Cybersecurity
Fake IT support calls on Microsoft Teams push EtherRAT malware
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft Teams", "threat_actor": "Unknown", "patch_ready": false, "insight": "Threat actors impersonate IT support staff on Microsoft Teams ..
9:10 pm, July 6, 2026 Cybersecurity
ISC Stormcast For Tuesday, July 7th, 2026 https://isc.sans.edu/podcastdetail/9996, (Tue, Jul 7th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A summary of an article on how to earn a billion dollars." }
2:10 am, July 7, 2026 Cybersecurity
BeyondTrust Patches Critical Auth Bypass Flaws in Remote Support and PRA
{"priority": "CRITICAL", "cve": "CVE-2026-40138", "target": "BeyondTrust Remote Support and PRA", "threat_actor": "N/A", "patch_ready": true, "insight": "BeyondTrust patches critical auth bypass flaws..
7:10 am, July 7, 2026 Cybersecurity
Microsoft testing new Cloud Rebuild Windows 11 recovery feature
{ "priority": "INFO", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft is testing a new Cloud Rebuild recovery feature in Windows 11..
8:10 am, July 7, 2026 Cybersecurity
CERT/CC Warns of Hidden Admin Backdoor in Tenda Router Firmware
{ "priority": "HIGH", "cve": "CVE-2026-11405", "target": "Tenda Router Firmware", "threat_actor": "N/A", "patch_ready": false, "insight": "Tenda router firmware has an undocumented authent..
8:10 am, July 7, 2026 Cybersecurity
BeyondTrust warns of critical flaws in remote access software
BeyondTrust warned customers to patch two critical security flaws in its Remote Support (RS) and Privileged Remote Access (PRA) software that could allow attackers to bypass authentication. [...]
9:10 am, July 7, 2026 Cybersecurity
Microsoft to enable Windows settings backup by default for orgs
{ "priority": "INFO", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft will enable Windows settings backup by default for organizati..
10:10 am, July 7, 2026 Cybersecurity
Suspected China-Aligned Hackers Exploit Roundcube Flaws Against Universities
A suspected China-aligned threat activity cluster has been observed exploiting Roundcube webmail software belonging to physics and engineering departments of U.S. and Canadian universities as part of ..
10:10 am, July 7, 2026 Cybersecurity
New Januscape Linux flaw allows VM escape on Intel, AMD devices
A 16-year-old Linux kernel vulnerability, dubbed Januscape, allows attackers to escape a virtual machine and execute arbitrary code on the host. [...]
12:10 pm, July 7, 2026 Cybersecurity
What Changes When Your Software Supply Chain Includes AI Writing Your Code?
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The integration of AI in software development introduces new considerations fo..
12:10 pm, July 7, 2026 Cybersecurity
Webinar tomorrow: Why modern email attacks require a new approach to defense
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "Upcoming webinar to discuss modern email attack defense using behavioral AI." ..
1:10 pm, July 7, 2026 Cybersecurity
The GitHub Actions Attack Pattern Your CI Security Scanners Miss
{ "priority": "INFO", "cve": "N/A", "target": "GitHub Actions", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses how GitHub Actions attack chains can evade tr..
2:10 pm, July 7, 2026 Cybersecurity
Court Filing Reveals Windows Device ID Helped FBI Trace Alleged Scattered Spider Hacker
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "Scattered Spider", "patch_ready": false, "insight": "Alleged Scattered Spider hacker linked to luxury jewelry retailer..
2:10 pm, July 7, 2026 Cybersecurity
Writer AI Flaw Could Let Agent Previews Leak Session Tokens Across Tenants
{ "priority": "CRITICAL", "cve": "N/A", "target": "Writer AI", "threat_actor": "Sand Security Research team", "patch_ready": true, "insight": "Critical session isolation vulnerability in W..
2:10 pm, July 7, 2026 Cybersecurity
Public GitHub Issue Could Trick GitHub Agentic Workflows Into Leaking Private Repo Data
{ "priority": "HIGH", "cve": "N/A", "target": "GitHub Agentic Workflows", "threat_actor": "N/A", "patch_ready": false, "insight": "A public GitHub issue can trick GitHub Agentic Workflows ..
3:10 pm, July 7, 2026 Cybersecurity
Spain arrests suspected member of pro-Russian hacktivist groups
{ "priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "CyberArmy of Russia Reborn (CARR) and Z-Pentest", "patch_ready": false, "insight": "Spanish authorities arrested a susp..
4:10 pm, July 7, 2026 Cybersecurity
DEBULL Tooling Abuses Microsoft Device-Code Flow to Target M365 Accounts
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft 365", "threat_actor": "DEBULL", "patch_ready": false, "insight": "A phishing campaign targeting M365 accounts using Microsoft devic..
5:10 pm, July 7, 2026 Cybersecurity
Hidden backdoor in Tenda router firmware grants admin access
A hidden authentication backdoor has been found in multiple Tenda router firmware versions, potentially allowing an attacker to gain administrative access to the device's web management panel. [...]
6:10 pm, July 7, 2026 Cybersecurity
RedWing MaaS Packages Android Bank Fraud as a Telegram Rental Service
{"priority":"HIGH","cve":"N/A","target":"Android","threat_actor":"RedWing","patch_ready":false,"insight":"RedWing is an Android malware operation being rented on Telegram, enabling low-skill criminals..
6:10 pm, July 7, 2026 Cybersecurity
Rogue Agent Flaw Could Have Let Attackers Hijack Google Dialogflow CX Chatbots
{ "priority": "CRITICAL", "cve": "N/A", "target": "Google Dialogflow CX", "threat_actor": "N/A", "patch_ready": true, "insight": "A critical flaw in Google's Dialogflow CX could have let a..
6:10 pm, July 7, 2026 Cybersecurity
Chinese hackers develop LONGLEASH malware to expand ORB network
{ "priority": "HIGH", "cve": "N/A", "target": "Ruckus routers", "threat_actor": "UAT-7810", "patch_ready": false, "insight": "Chinese hackers tracked as 'UAT-7810' are evolving their LONGL..
7:10 pm, July 7, 2026 Cybersecurity
More Odd DNS Records: NIMLOC, (Tue, Jul 7th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses NIMLOC, an unusual DNS record also known as NSEC3PARAM, ..
7:10 pm, July 7, 2026 Cybersecurity
Accenture confirms breach after hacker offers stolen data for sale
IT services giant Accenture has confirmed it suffered a security breach after a threat actor claimed to have stolen 35 GB of source code and other data from the company. [...]
10:10 pm, July 7, 2026 Cybersecurity
ISC Stormcast For Wednesday, July 8th, 2026 https://isc.sans.edu/podcastdetail/9998, (Wed, Jul 8th)
{"priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A summary of an article on how to earn a billion dollars."}
2:10 am, July 8, 2026 Cybersecurity
15-Year-Old GhostLock Flaw Enables Root and Container Escape on Most Linux Distros
{ "priority": "CRITICAL", "cve": "CVE-2026-43499", "target": "Linux kernel", "threat_actor": "N/A", "patch_ready": false, "insight": "A 15-year-old Linux kernel flaw allows any logged-in u..
7:10 am, July 8, 2026 Cybersecurity
CISA Adds 4 Actively Exploited Adobe, Joomla, and Langflow Flaws to KEV
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The..
7:10 am, July 8, 2026 Cybersecurity
CISA orders feds to patch max severity ColdFusion flaw by Friday
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered government agencies to patch an actively exploited maximum-severity flaw in the Adobe ColdFusion commercial web app develop..
8:10 am, July 8, 2026 Cybersecurity
Ubiquiti warns of new max severity UniFi OS vulnerability
{ "priority": "CRITICAL", "cve": "N/A", "target": "UniFi OS", "threat_actor": "N/A", "patch_ready": true, "insight": "Ubiquiti patches max severity UniFi OS vulnerability exploitable in co..
9:10 am, July 8, 2026 Cybersecurity
