List cybersec
From 17,000 to 1.1 Million Assets: How Lumen Technologies Rebuilt Exposure Management at Scale
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses Lumen Technologies' experience in rebuilding their expos..
12:10 pm, July 10, 2026 Cybersecurity
Exposed Hacker Server Reveals WP-SHELLSTORM Backdooring Thousands of WordPress Sites
A cybercrime crew left one of its own servers wide open on the internet for three weeks, and it exposed the operation's inner workings: the hacking tools, the activity logs, and target lists naming mo..
12:10 pm, July 10, 2026 Cybersecurity
Study of 281 Free Android VPN Apps Finds Traffic Leaks, Unencrypted Data, and Tracking
``` { "priority": "HIGH", "cve": "N/A", "target": "Free Android VPN Apps", "threat_actor": "N/A", "patch_ready": false, "insight": "Many free Android VPN apps fail to keep user traffic pri..
12:10 pm, July 10, 2026 Cybersecurity
Hackers Use Fake Microsoft Entra Passkey Enrollment to Gain Microsoft 365 Access
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft 365", "threat_actor": "O-UNC-066", "patch_ready": false, "insight": "Threat actor O-UNC-066 uses fake Microsoft Entra passkey enrol..
12:10 pm, July 10, 2026 Cybersecurity
The Replicant in Your Directory: AI Agents and the Identity Security Gap
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "AI agents are increasing non-human identities, expanding the enterprise attack..
2:10 pm, July 10, 2026 Cybersecurity
New MODBEACON RAT Uses gRPC Streaming for Encrypted C2 Traffic
The China-linked cybercrime group known as Silver Fox has been attributed to a new Rust-based remote access trojan (RAR) called MODBEACON. Chinese cybersecurity company QiAnXin said that while the th..
2:10 pm, July 10, 2026 Cybersecurity
Attackers Exploit 'Ill Bloom' Vulnerability to Drain Over $5 Million From Cryptocurrency Wallets
Security firm Coinspect has disclosed a crypto wallet flaw it calls Ill Bloom, and attackers are already using it. The flaw is in how some wallet software generated its recovery phrase, the words t..
2:10 pm, July 10, 2026 Cybersecurity
Researcher Details WhatsApp-to-Host Attack Chain Using Three OpenClaw Flaws
{ "priority": "HIGH", "cve": "N/A", "target": "OpenClaw", "threat_actor": "N/A", "patch_ready": true, "insight": "Three high-severity vulnerabilities in OpenClaw could enable credential th..
3:10 pm, July 10, 2026 Cybersecurity
Hackers exploit critical auth bypass in Gitea Docker image
Hackers are actively exploiting a critical vulnerability in the official Docker image for the Gitea self-hosted Git service that allows attackers to impersonate any user, including administrators. [....
4:10 pm, July 10, 2026 Cybersecurity
Money launderer accused of stealing seized crypto while in prison
{ "priority": "LOW", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A Bulgarian national charged with stealing $290,000 in seized cryptocurrency wh..
4:10 pm, July 10, 2026 Cybersecurity
Laser Attack Resets Tangem Wallet Passwords on Cards That Can't Be Patched
{ "priority": "MEDIUM", "cve": "N/A", "target": "Tangem Wallet", "threat_actor": "Ledger's Donjon security team", "patch_ready": false, "insight": "A laser attack can reset Tangem Wallet p..
4:10 pm, July 10, 2026 Cybersecurity
Police suspects Dutch hackers were involved in Odido breach
{"priority": "INFO", "cve": "N/A", "target": "Odido", "threat_actor": "Dutch hackers", "patch_ready": false, "insight": "Dutch National Police suspect Dutch hackers were involved in a February breach ..
5:10 pm, July 10, 2026 Cybersecurity
Progress urges ShareFile admins to shut down servers over “credible” threat
{"priority":"CRITICAL","cve":"N/A","target":"Progress ShareFile","threat_actor":"N/A","patch_ready":false,"insight":"Progress Software urges ShareFile admins to shut down servers due to a credible ext..
5:10 pm, July 10, 2026 Cybersecurity
Ryuk ransomware member pleads guilty in the US, faces 15 years in prison
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "Ryuk ransomware", "patch_ready": false, "insight": "A member of the Ryuk ransomware group has pleaded guilty in the US..
6:10 pm, July 10, 2026 Cybersecurity
Injective Labs GitHub Compromise Pushes Wallet-Key-Stealing npm Packages
``` { "priority": "CRITICAL", "cve": "N/A", "target": "@injectivelabs/sdk-ts", "threat_actor": "Unknown threat actors", "patch_ready": false, "insight": "Compromised GitHub repository publ..
6:10 pm, July 10, 2026 Cybersecurity
Six New U-Boot Flaws Could Let Malicious Images Crash Devices or Run Code at Boot
{ "priority": "HIGH", "cve": "N/A", "target": "U-Boot", "threat_actor": "N/A", "patch_ready": false, "insight": "Six new U-Boot flaws could let malicious images crash devices or run code a..
6:10 pm, July 10, 2026 Cybersecurity
URGENT - Progress Tells ShareFile Customers to Shut Down Storage Zone Controllers Over Security Threat
{"priority": "CRITICAL", "cve": "N/A", "target": "Progress ShareFile Storage Zone Controllers", "threat_actor": "N/A", "patch_ready": false, "insight": "Progress Software urges ShareFile customers to ..
7:10 pm, July 10, 2026 Cybersecurity
New U-Boot flaws could enable stealthy firmware attacks
Six vulnerabilities in the widely used U-Boot bootloader have been discovered that could allow attackers to execute malicious code during device boot, potentially enabling stealthy firmware attacks th..
10:10 pm, July 10, 2026 Cybersecurity
Critical Zimbra Flaw Could Let Crafted Emails Run Malicious Code in User Sessions
{ "priority": "CRITICAL", "cve": "N/A", "target": "Zimbra Classic Web Client", "threat_actor": "N/A", "patch_ready": true, "insight": "Critical Zimbra flaw allows crafted emails to execute..
8:10 am, July 11, 2026 Cybersecurity
'Ghostcommit' hides prompt injection in images to fool AI agents, steal secrets
{ "priority": "HIGH", "cve": "N/A", "target": "AI agents", "threat_actor": "N/A", "patch_ready": false, "insight": "Researchers demonstrate a technique called 'Ghostcommit' that hides prom..
9:10 am, July 11, 2026 Cybersecurity
Wireshark 4.6.7 Released, (Sat, Jul 11th)
{ "priority": "MEDIUM", "cve": "N/A", "target": "Wireshark", "threat_actor": "N/A", "patch_ready": true, "insight": "Wireshark 4.6.7 released, fixing 12 vulnerabilities and 16 bugs." }
10:10 am, July 11, 2026 Cybersecurity
Australia warns of global campaign targeting vulnerable CMS platforms
{ "priority": "HIGH", "cve": "N/A", "target": "Content Management Systems (CMS) and plugins", "threat_actor": "N/A", "patch_ready": false, "insight": "Australian Cyber Security Centre warn..
3:10 pm, July 11, 2026 Cybersecurity
Compromised jscrambler 8.14.0 npm Release Drops Rust Infostealer During Install
{"priority":"CRITICAL","cve":"N/A","target":"jscrambler npm package","threat_actor":"N/A","patch_ready":false,"insight":"A compromised npm release (v8.14.0) of jscrambler installs a Rust-based infoste..
7:10 pm, July 11, 2026 Cybersecurity
Hackers Weaponize Balochistan Police Portal in Multi-Group Espionage Campaigns
{ "priority": "HIGH", "cve": "N/A", "target": "Balochistan Police Portal", "threat_actor": "China- and India-aligned threat actors", "patch_ready": false, "insight": "Suspected China- and ..
7:10 pm, July 11, 2026 Cybersecurity
RedHook Android malware now uses Wireless ADB for shell access
A new version of the RedHook Android malware abuses the Android Wireless Debugging (Wireless ADB) mechanism in a novel way to gain shell-level privileges without requiring a computer connection. [...]..
3:10 pm, July 12, 2026 Cybersecurity
Claude Fable 5 stays free for paid users until July 19 as Anthropic buys more time
{"priority": "INFO", "cve": "N/A", "target": "Claude Fable 5", "threat_actor": "N/A", "patch_ready": false, "insight": "Anthropic extends access to Claude Fable 5 for paid subscribers until July 19."}..
8:10 pm, July 12, 2026 Cybersecurity
OpenAI temporarily relaxes GPT-5.6 Sol usage limits
{ "priority": "INFO", "cve": "N/A", "target": "GPT-5.6 Sol", "threat_actor": "N/A", "patch_ready": false, "insight": "OpenAI temporarily relaxes GPT-5.6 Sol usage limits due to surging dem..
1:10 am, July 13, 2026 Cybersecurity
ISC Stormcast For Monday, July 13th, 2026 https://isc.sans.edu/podcastdetail/10004, (Mon, Jul 13th)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "A summary of an article on how to earn a billion dollars." }
2:10 am, July 13, 2026 Cybersecurity
Someone Is Scanning for Your MCP Servers and AI Assistant Credentials, (Mon, Jul 13th)
{ "priority": "INFO", "cve": "N/A", "target": "MCP Servers and AI Assistant Credentials", "threat_actor": "N/A", "patch_ready": false, "insight": "Scanning activity targeting MCP servers a..
5:10 am, July 13, 2026 Cybersecurity
iCagenda and Balbooa Forms Joomla Flaws Reportedly Exploited as Zero-Days
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two maximum-severity security flaws impacting iCagenda and Balbooa extensions for Joomla to its Known Exploited Vulnerabiliti..
7:10 am, July 13, 2026 Cybersecurity
Misconfigured Server Reveals Three Evilginx Phishing Operations Targeting Microsoft 365
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft 365", "threat_actor": "Evilginx", "patch_ready": false, "insight": "Misconfigured server exposes Evilginx phishing ops targeting Mi..
9:10 am, July 13, 2026 Cybersecurity
US and allies warn of Russian critical infrastructure attacks
{ "priority": "HIGH", "cve": "N/A", "target": "Critical Infrastructure Networks", "threat_actor": "Russian State Hackers", "patch_ready": false, "insight": "US and allies warn of Russian c..
10:10 am, July 13, 2026 Cybersecurity
EU sanctions Russian GRU military hackers over cyberattacks
{ "priority": "HIGH", "cve": "N/A", "target": "Russian GRU", "threat_actor": "Russian GRU military hackers", "patch_ready": false, "insight": "The European Union and the United Kingdom san..
12:10 pm, July 13, 2026 Cybersecurity
Meta Files Patent for AI That Can Listen All Day and Track How You're Feeling
{ "priority": "INFO", "cve": "N/A", "target": "Meta AI", "threat_actor": "N/A", "patch_ready": false, "insight": "Meta files patent for AI that listens to voice and tracks emotions through..
1:10 pm, July 13, 2026 Cybersecurity
Thinking Fast and Slow in the SOC: The Case for Combining Autonomous AI with Analyst Copilots
{"priority":"INFO","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"The article discusses the integration of autonomous AI with analyst copilots in Security Operations Ce..
1:10 pm, July 13, 2026 Cybersecurity
Attacker Uses Suspected AI-Generated PowerShell Script to Map Active Directory
{ "priority": "MEDIUM", "cve": "N/A", "target": "Active Directory", "threat_actor": "Unknown", "patch_ready": false, "insight": "An unknown threat actor used a PowerShell script for Active..
1:10 pm, July 13, 2026 Cybersecurity
Breach at the Beach: Play the Ultimate Entra ID CTF
Learn how attackers abuse Entra ID through a free hands-on Capture the Flag. Varonis created the Breach at the Beach CTF to teach defenders how to investigate Entra ID attack techniques using realisti..
2:10 pm, July 13, 2026 Cybersecurity
UK charges suspects linked to Russian Coms call spoofing platform
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "UK authorities charged five people linked to Russian Coms, a caller ID spoofin..
2:10 pm, July 13, 2026 Cybersecurity
Forg365 PhaaS Targets Microsoft 365 with Device Code and AitM Session Theft
{ "priority": "HIGH", "cve": "N/A", "target": "Microsoft 365", "threat_actor": "Forg365", "patch_ready": false, "insight": "Forg365 PhaaS operation targets Microsoft 365 accounts with devi..
2:10 pm, July 13, 2026 Cybersecurity
Lidl discloses online shop breach after service provider hack
{ "priority": "MEDIUM", "cve": "N/A", "target": "Lidl online shop", "threat_actor": "N/A", "patch_ready": false, "insight": "Lidl discloses online shop breach after service provider hack, ..
3:10 pm, July 13, 2026 Cybersecurity
CISA warns of actively exploited RCE flaws in Joomla extensions
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning that attackers are exploiting vulnerabilities in the iCagenda and Balbooa Forms extensions for Joomla to achieve remote code..
4:10 pm, July 13, 2026 Cybersecurity
⚡ Weekly Recap: ShareFile Threat, Citrix Bleed 2 Ransomware, AI Coding Attacks, and More
{"priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses the current state of cybersecurity, highlighting the use of automated..
4:10 pm, July 13, 2026 Cybersecurity
Lessons Learned from CISA’s Recent GitHub Leak
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a postmortem on a data leak in which a contractor published dozens of internal CISA credentials -- including AWS Govcloud keys --..
4:10 pm, July 13, 2026 Cybersecurity
New MemGhost Attack Plants Persistent False Memories in AI Agents Through One Email
{ "priority": "HIGH", "cve": "N/A", "target": "AI Agents", "threat_actor": "N/A", "patch_ready": false, "insight": "A single email can trick an AI assistant into saving a false fact about ..
4:10 pm, July 13, 2026 Cybersecurity
CrashStealer macOS Malware Uses Notarized Dropper to Pass Gatekeeper Checks
``` { "priority": "HIGH", "cve": "N/A", "target": "macOS", "threat_actor": "N/A", "patch_ready": false, "insight": "CrashStealer, a native C++-based macOS information stealer, uses a notar..
6:10 pm, July 13, 2026 Cybersecurity
Google and Microsoft Pull ModHeader With 1.6 Million Installs After Dormant Collector Found
{ "priority": "HIGH", "cve": "N/A", "target": "ModHeader", "threat_actor": "N/A", "patch_ready": false, "insight": "Google and Microsoft pulled ModHeader with 1.6 million installs due to a..
6:10 pm, July 13, 2026 Cybersecurity
New CrashStealer malware poses as Apple crash reporting tool
A new macOS information-stealing malware called CrashStealer pretends to be Apple's crash-reporting tool to steal credentials, keychain data, and crypto wallets. [...]
7:10 pm, July 13, 2026 Cybersecurity
Hackers backdoor Jscrambler npm package with infostealer malware
{ "priority": "HIGH", "cve": "N/A", "target": "Jscrambler npm package", "threat_actor": "Unknown threat actor", "patch_ready": false, "insight": "A malicious version of the Jscrambler npm ..
8:10 pm, July 13, 2026 Cybersecurity
Japan's largest taxi operator shuts systems after cyberattack
{ "priority": "HIGH", "cve": "N/A", "target": "Nihon Kotsu", "threat_actor": "N/A", "patch_ready": false, "insight": "Japan's largest taxi operator, Nihon Kotsu, shut down systems after a ..
9:10 pm, July 13, 2026 Cybersecurity
ISC Stormcast For Tuesday, July 14th, 2026 https://isc.sans.edu/podcastdetail/10006, (Tue, Jul 14th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
3:10 am, July 14, 2026 Cybersecurity
