List cybersec
New Infinity Stealer malware grabs macOS data via ClickFix lures
{ "priority": "HIGH", "cve": "N/A", "target": "macOS", "threat_actor": "N/A", "patch_ready": false, "insight": "New Infinity Stealer malware targets macOS systems with a Python payload, pa..
3:10 pm, March 28, 2026 Cybersecurity
TeamPCP Supply Chain Campaign: Update 003 - Operational Tempo Shift as Campaign Enters Monetization Phase With No New Compromises in 48 Hours, (Sat, Mar 28th)
``` { "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "TeamPCP", "patch_ready": false, "insight": "The TeamPCP supply chain campaign has entered its monetization phase w..
4:10 pm, March 28, 2026 Cybersecurity
Iran-Linked Hackers Breach FBI Director’s Personal Email, Hit Stryker With Wiper Attack
{ "priority": "HIGH", "cve": "N/A", "target": "FBI Director's Personal Email", "threat_actor": "Handala Hack Team", "patch_ready": false, "insight": "Iran-linked hackers breached FBI Direc..
5:10 pm, March 28, 2026 Cybersecurity
File read flaw in Smart Slider plugin impacts 500K WordPress sites
{ "priority": "HIGH", "cve": "N/A", "target": "Smart Slider 3 WordPress plugin", "threat_actor": "N/A", "patch_ready": true, "insight": "A vulnerability in the Smart Slider 3 WordPress plu..
3:10 pm, March 29, 2026 Cybersecurity
FBI confirms hack of Director Patel's personal email inbox
The Handala hackers associated with Iran have breached the personal email account of FBI Director Kash Patel and published photos and documents. [...]
9:10 pm, March 29, 2026 Cybersecurity
DShield (Cowrie) Honeypot Stats and When Sessions Disconnect, (Mon, Mar 30th)
A lot of the information seen on DShield honeypots [1] is repeated bot traffic, especially when looking at the Cowrie [2] telnet and SSH sessions. However, how long a session lasts, how many commands ..
12:10 am, March 30, 2026 Cybersecurity
ISC Stormcast For Monday, March 30th, 2026 https://isc.sans.edu/podcastdetail/9870, (Mon, Mar 30th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, March 30, 2026 Cybersecurity
European Commission confirms data breach after Europa.eu hack
{ "priority": "HIGH", "cve": "N/A", "target": "Europa.eu", "threat_actor": "ShinyHunters", "patch_ready": false, "insight": "European Commission confirms data breach after Europa.eu hack b..
7:10 am, March 30, 2026 Cybersecurity
Critical Fortinet Forticlient EMS flaw now exploited in attacks
Attackers are now actively exploiting a critical vulnerability in Fortinet's FortiClient EMS platform, according to threat intelligence company Defused. [...]
8:10 am, March 30, 2026 Cybersecurity
Three China-Linked Clusters Target Southeast Asian Government in 2025 Cyber Campaign
{ "priority": "HIGH", "cve": "N/A", "target": "Southeast Asian Government", "threat_actor": "China-Linked Clusters", "patch_ready": false, "insight": "China-linked threat clusters targeted..
8:10 am, March 30, 2026 Cybersecurity
Russian CTRL Toolkit Delivered via Malicious LNK Files Hijacks RDP via FRP Tunnels
{ "priority": "HIGH", "cve": "N/A", "target": "N/A", "threat_actor": "Russian", "patch_ready": false, "insight": "Russian CTRL Toolkit delivered via malicious LNK files hijacks RDP via FRP..
10:10 am, March 30, 2026 Cybersecurity
Microsoft pulls KB5079391 Windows update over install issues
{ "priority": "MEDIUM", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": false, "insight": "Microsoft pulled a buggy Windows 11 non-security preview update KB507..
10:10 am, March 30, 2026 Cybersecurity
Hackers now exploit critical F5 BIG-IP flaw in attacks, patch now
{ "priority": "CRITICAL", "cve": "N/A", "target": "F5 BIG-IP", "threat_actor": "N/A", "patch_ready": true, "insight": "Hackers exploit critical F5 BIG-IP flaw for remote code execution and..
11:10 am, March 30, 2026 Cybersecurity
The State of Secrets Sprawl 2026: 9 Takeaways for CISOs
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The State of Secrets Sprawl 2026 report reveals 29 million new hardcoded secre..
12:10 pm, March 30, 2026 Cybersecurity
TeamPCP Supply Chain Campaign: Update 004 - Databricks Investigating Alleged Compromise, TeamPCP Runs Dual Ransomware Operations, and AstraZeneca Data Released, (Mon, Mar 30th)
{"priority": "HIGH", "cve": "N/A", "target": "Databricks", "threat_actor": "TeamPCP", "patch_ready": false, "insight": "TeamPCP allegedly compromised Databricks and runs dual ransomware operations, wi..
3:10 pm, March 30, 2026 Cybersecurity
Apple adds macOS Terminal warning to block ClickFix attacks
Apple has introduced a security feature in macOS Tahoe 26.4 that blocks pasting and executing potentially harmful commands in Terminal and alerts users to possible risks. [...]
3:10 pm, March 30, 2026 Cybersecurity
How to Evaluate AI SOC Agents: 7 Questions Gartner Says You Should Be Asking
AI SOC agents can reduce alert fatigue, but most teams fail to measure real outcomes. Prophet Security breaks down Gartner's questions for evaluating AI SOC agents and separating real impact from hype..
3:10 pm, March 30, 2026 Cybersecurity
⚡ Weekly Recap: Telecom Sleeper Cells, LLM Jailbreaks, Apple Forces U.K. Age Checks and More
{"priority":"INFO","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"Weekly recap of various cybersecurity topics including telecom sleeper cells, LLM jailbreaks, and Appl..
3:10 pm, March 30, 2026 Cybersecurity
3 SOC Process Fixes That Unlock Tier 1 Productivity
What is really slowing Tier 1 down: the threat itself or the process around it? In many SOCs, the biggest delays do not come from the threat alone. They come from fragmented workflows, manual triage s..
3:10 pm, March 30, 2026 Cybersecurity
DeepLoad Malware Uses ClickFix and WMI Persistence to Steal Browser Credentials
{ "priority": "HIGH", "cve": "N/A", "target": "Browser", "threat_actor": "N/A", "patch_ready": false, "insight": "DeepLoad malware uses ClickFix and WMI persistence to steal browser creden..
5:10 pm, March 30, 2026 Cybersecurity
Critical Citrix NetScaler memory flaw actively exploited in attacks
{ "priority": "CRITICAL", "cve": "CVE-2026-3055", "target": "Citrix NetScaler ADC and NetScaler Gateway", "threat_actor": "N/A", "patch_ready": true, "insight": "A critical severity vulner..
7:10 pm, March 30, 2026 Cybersecurity
OpenAI Patches ChatGPT Data Exfiltration Flaw and Codex GitHub Token Vulnerability
{"priority": "HIGH", "cve": "N/A", "target": "OpenAI ChatGPT", "threat_actor": "N/A", "patch_ready": true, "insight": "OpenAI patches ChatGPT data exfiltration flaw and Codex GitHub token vulnerabilit..
8:10 pm, March 30, 2026 Cybersecurity
New RoadK1ll WebSocket implant used to pivot on breached networks
A newly identified malicious implant named RoadK1ll is enabling threat actors to quietly move from a compromised host to other systems on the network. [...]
9:10 pm, March 30, 2026 Cybersecurity
Healthcare tech firm CareCloud says hackers stole patient data
{ "priority": "HIGH", "cve": "N/A", "target": "CareCloud", "threat_actor": "N/A", "patch_ready": false, "insight": "Healthcare IT firm CareCloud disclosed a data breach incident exposing s..
10:10 pm, March 30, 2026 Cybersecurity
ISC Stormcast For Tuesday, March 31st, 2026 https://isc.sans.edu/podcastdetail/9872, (Tue, Mar 31st)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
2:10 am, March 31, 2026 Cybersecurity
CISA orders feds to patch actively exploited Citrix flaw by Thursday
{ "priority": "CRITICAL", "cve": "N/A", "target": "Citrix NetScaler", "threat_actor": "N/A", "patch_ready": true, "insight": "CISA orders government agencies to patch actively exploited Ci..
7:10 am, March 31, 2026 Cybersecurity
Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account
{ "priority": "HIGH", "cve": "N/A", "target": "Axios", "threat_actor": "N/A", "patch_ready": false, "insight": "Axios supply chain attack injects RAT via compromised npm account" }
7:10 am, March 31, 2026 Cybersecurity
Dutch Finance Ministry takes treasury banking portal offline after breach
The Dutch Ministry of Finance took some of its systems offline, including the digital portal for treasury banking, while investigating a cyberattack detected two weeks ago. [...]
8:10 am, March 31, 2026 Cybersecurity
Application Control Bypass for Data Exfiltration, (Tue, Mar 31st)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "The article discusses the risks of data exfiltration in cyber incidents, highl..
8:10 am, March 31, 2026 Cybersecurity
Hacker charged with stealing $53 million from Uranium crypto exchange
{ "priority": "HIGH", "cve": "N/A", "target": "Uranium Finance crypto exchange", "threat_actor": "Maryland man", "patch_ready": false, "insight": "A hacker stole over $53 million from Uran..
10:10 am, March 31, 2026 Cybersecurity
Microsoft fixes Outlook Classic crashes caused by Teams Meeting add-in
{"priority":"MEDIUM","cve":"N/A","target":"Microsoft Outlook Classic","threat_actor":"N/A","patch_ready":true,"insight":"Microsoft resolved an issue with Outlook Classic crashing due to the Teams Meet..
12:10 pm, March 31, 2026 Cybersecurity
Silver Fox Expands Asia Cyber Campaign with AtlasCross RAT and Fake Domains
Chinese-speaking users are the target of an active campaign that uses typosquatted domains impersonating trusted software brands to deliver a previously undocumented remote access trojan named AtlasCr..
1:10 pm, March 31, 2026 Cybersecurity
The AI Arms Race – Why Unified Exposure Management Is Becoming a Boardroom Priority
{"priority":"INFO","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"The increasing speed of cyber attacks and exploitation, driven by AI, is making unified exposure manag..
1:10 pm, March 31, 2026 Cybersecurity
How to Categorize AI Agents and Prioritize Risk
AI agent risk isn't equal, it scales with access to systems and level of autonomy. Token Security explains how CISOs should categorize agents and prioritize what to secure first. [...]
2:10 pm, March 31, 2026 Cybersecurity
Hackers compromise Axios npm package to drop cross-platform malware
{ "priority": "CRITICAL", "cve": "N/A", "target": "Axios npm package", "threat_actor": "N/A", "patch_ready": false, "insight": "Hackers hijacked the npm account of the Axios package, a Jav..
2:10 pm, March 31, 2026 Cybersecurity
Vertex AI Vulnerability Exposes Google Cloud Data and Private Artifacts
{ "priority": "HIGH", "cve": "N/A", "target": "Google Cloud Vertex AI", "threat_actor": "N/A", "patch_ready": false, "insight": "A security blind spot in Google Cloud's Vertex AI platform ..
2:10 pm, March 31, 2026 Cybersecurity
TrueConf Zero-Day Exploited in Attacks on Southeast Asian Government Networks
{ "priority": "CRITICAL", "cve": "CVE-2026-3502", "target": "TrueConf client video conferencing software", "threat_actor": "N/A", "patch_ready": false, "insight": "A zero-day vulnerability..
5:10 pm, March 31, 2026 Cybersecurity
Cisco source code stolen in Trivy-linked dev environment breach
{ "priority": "HIGH", "cve": "N/A", "target": "Cisco", "threat_actor": "Trivy-linked threat actors", "patch_ready": false, "insight": "Cisco's internal development environment was breached..
6:10 pm, March 31, 2026 Cybersecurity
Android Developer Verification Rollout Begins Ahead of September Enforcement
{"priority":"INFO","cve":"N/A","target":"Android Developer Verification","threat_actor":"N/A","patch_ready":false,"insight":"Google begins rolling out Android developer verification to combat harmful ..
8:10 pm, March 31, 2026 Cybersecurity
Claude AI finds Vim, Emacs RCE bugs that trigger on file open
{ "priority": "CRITICAL", "cve": "N/A", "target": "Vim, Emacs", "threat_actor": "N/A", "patch_ready": false, "insight": "Remote code execution vulnerabilities in Vim and Emacs text editors..
10:10 pm, March 31, 2026 Cybersecurity
Proton launches new "Meet" privacy-focused conferencing platform
{ "priority": "INFO", "cve": "N/A", "target": "Proton Meet", "threat_actor": "N/A", "patch_ready": false, "insight": "Proton launches a new privacy-focused video conferencing platform call..
11:10 pm, March 31, 2026 Cybersecurity
GIGABYTE Control Center vulnerable to arbitrary file write flaw
{"priority":"CRITICAL","cve":"N/A","target":"GIGABYTE Control Center","threat_actor":"N/A","patch_ready":false,"insight":"GIGABYTE Control Center is vulnerable to an arbitrary file-write flaw that cou..
11:10 pm, March 31, 2026 Cybersecurity
Google now allows you to change your @gmail.com address
{ "priority": "INFO", "cve": "N/A", "target": "Gmail", "threat_actor": "N/A", "patch_ready": false, "insight": "Google is introducing a feature allowing users to change their @gmail.com ad..
12:10 am, April 1, 2026 Cybersecurity
Claude Code source code accidentally leaked in NPM package
Anthropic says it accidentally leaked the source code for Claude Code, which is closed source, but the company says no customer data or credentials were exposed. [...]
1:10 am, April 1, 2026 Cybersecurity
ISC Stormcast For Wednesday, April 1st, 2026 https://isc.sans.edu/podcastdetail/9874, (Wed, Apr 1st)
{ "priority": "INFO", "cve": "N/A", "target": "N/A", "threat_actor": "N/A", "patch_ready": false, "insight": "ISC Stormcast podcast for April 1st, 2026, providing security news and updates..
2:10 am, April 1, 2026 Cybersecurity
New Windows 11 emergency update fixes preview update install issues
{ "priority": "MEDIUM", "cve": "N/A", "target": "Windows 11", "threat_actor": "N/A", "patch_ready": true, "insight": "Microsoft released an emergency update to fix installation issues with..
6:10 am, April 1, 2026 Cybersecurity
Google Drive ransomware detection now on by default for paying users
{ "priority": "INFO", "cve": "N/A", "target": "Google Drive", "threat_actor": "N/A", "patch_ready": false, "insight": "Google enables AI-powered ransomware detection by default for paying ..
7:10 am, April 1, 2026 Cybersecurity
Claude Code Source Leaked via npm Packaging Error, Anthropic Confirms
{ "priority": "LOW", "cve": "N/A", "target": "Claude Code", "threat_actor": "N/A", "patch_ready": false, "insight": "Internal code for Claude Code was leaked due to a packaging error on np..
7:10 am, April 1, 2026 Cybersecurity
Google Attributes Axios npm Supply Chain Attack to North Korean Group UNC1069
{ "priority": "HIGH", "cve": "N/A", "target": "Axios npm", "threat_actor": "UNC1069", "patch_ready": false, "insight": "Google attributes Axios npm supply chain attack to North Korean grou..
8:10 am, April 1, 2026 Cybersecurity
Malicious Script That Gets Rid of ADS, (Wed, Apr 1st)
{"priority":"INFO","cve":"N/A","target":"N/A","threat_actor":"N/A","patch_ready":false,"insight":"A malicious script is used to remove ADS (Alternate Data Streams) to minimize footprint on infected sy..
11:10 am, April 1, 2026 Cybersecurity
AI Testing
