HIGH

FBI warns US-based law firms to be on the lookout for cybercrime group that steals data in person

CyberScoop • May 27, 2026

MEDIUM

CrowdStrike disrupts Glassworm botnet that preyed on open-source supply chain

CyberScoop • May 27, 2026

HIGH

MuddyWater Uses DLL Side-Loading in Espionage Campaign Targeting 9 Countries

The Hacker News • May 26, 2026

HIGH

Tracking Iranian APT Screening Serpens’ 2026 Espionage Campaigns

Unit 42 • May 22, 2026

MEDIUM

Paved With Intent: ROADtools and Nation-State Tactics in the Cloud

Unit 42 • May 22, 2026

HIGH

Storm-2949 actor targets Microsoft 365 and Azure environments

SC Media • May 20, 2026

HIGH

Malaysian government-linked campaign used hidden infrastructure for years

SC Media • May 18, 2026

HIGH

Russian hackers turn Kazuar backdoor into modular P2P botnet

BleepingComputer • May 16, 2026

HIGH

PCPJack Campaign Boots TeamPCP Off Compromised Machines

Infosecurity Magazine • May 08, 2026

HIGH

Small Defense Firms Lack Network Data to Stop Nation-State Hackers, Analyst Says

Infosecurity Magazine • May 04, 2026

CRITICAL

Weaver E-cology critical bug exploited in attacks since March

BleepingComputer • May 04, 2026

MEDIUM

Alleged Chinese hacker extradited to US over cyberattacks targeting COVID-19 research

Help Net Security • Apr 28, 2026

HIGH

New BlackFile extortion group linked to surge of vishing attacks

BleepingComputer • Apr 24, 2026

CRITICAL

Over 10,000 Zimbra servers vulnerable to ongoing XSS attacks

BleepingComputer • Apr 24, 2026

HIGH

AI-driven attacks target governments, cloud agents, supply chains

SC Media • Apr 23, 2026

HIGH

North Korean Hackers Use AppleScript, ClickFix in Fresh macOS Attacks

SecurityWeek • Apr 22, 2026

CRITICAL

Mustang Panda’s New LOTUSLITE Variant Targets India Banks, South Korea Policy Circles

The Hacker News • Apr 22, 2026

HIGH

Microsoft Teams, Quick Assist weaponized in helpdesk spoofing intrusions

SC Media • Apr 21, 2026

HIGH

‘Scattered Spider’ Member ‘Tylerb’ Pleads Guilty

Krebs on Security • Apr 21, 2026

MEDIUM

SOHO router compromise leads to DNS hijacking and adversary-in-the-middle attacks

Microsoft Security Blog • Apr 07, 2026

CRITICAL

UAC-0247 Targets Ukrainian Clinics and Government in Data-Theft Malware Campaign

The Hacker News • Apr 16, 2026

HIGH

Renovate & Dependabot: The New Malware Delivery System

Reddit r/netsec • Apr 10, 2026

HIGH

New ‘LucidRook’ malware used in targeted attacks on NGOs, universities

BleepingComputer • Apr 09, 2026

HIGH

Hack-for-hire spyware campaign targets journalists in Middle East, North Africa

CyberScoop • Apr 08, 2026

HIGH

Feds quash widespread Russia-backed espionage network spanning 18,000 devices

CyberScoop • Apr 07, 2026

HIGH

Inside an AI‑enabled device code phishing campaign

Microsoft Security Blog • Apr 06, 2026

HIGH

European Commission Confirms Data Breach Linked to Trivy Supply Chain Attack

SecurityWeek • Apr 04, 2026

CRITICAL

China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing

The Hacker News • Apr 03, 2026

CRITICAL

CERT-EU blames Trivy supply chain attack for Europa.eu data breach

CSO Online • Apr 03, 2026

HIGH

European-Chinese geopolitical issues drive renewed cyberespionage campaign

CyberScoop • Apr 01, 2026

HIGH

TeamPCP Breaches Cloud, SaaS Instances With Stolen Credentials

Dark Reading • Mar 31, 2026

HIGH

TeamPCP Moves From OSS to AWS Environments

SecurityWeek • Mar 31, 2026

HIGH

China-linked Red Menshen using BPFdoor kernel backdoor in telecom networks

Reddit r/netsec • Mar 27, 2026

HIGH

PyPI warns developers after LiteLLM malware found stealing cloud and CI/CD credentials

CSO Online • Mar 25, 2026

HIGH

Tycoon2FA phishing platform returns after recent police disruption

BleepingComputer • Mar 23, 2026

HIGH

FBI: Iranian hackers targeting opponents with Telegram malware

CyberScoop • Mar 23, 2026

HIGH

Tycoon 2FA Fully Operational Despite Law Enforcement Takedown

SecurityWeek • Mar 23, 2026

HIGH

China-Nexus Hackers Skulk in Southeast Asian Military Orgs for Years

Dark Reading • Mar 17, 2026

HIGH

Cybercrime has skyrocketed 245% since the start of the Iran war

The Register Security • Mar 16, 2026

HIGH

Telus Digital hit with massive data breach

CSO Online • Mar 13, 2026

HIGH

Salesforce issues new security alert tied to third customer attack spree in six months

CyberScoop • Mar 11, 2026

CRITICAL

Five Malicious Rust Crates and AI Bot Exploit CI/CD Pipelines to Steal Developer Secrets

The Hacker News • Mar 11, 2026

HIGH

Russian Threat Actor Sednit Resurfaces With Sophisticated Toolkit

Dark Reading • Mar 10, 2026

HIGH

Mobile spyware campaign impersonates Israel's Red Alert rocket warning system

Reddit r/netsec • Mar 09, 2026

HIGH

Termite ransomware breaches linked to ClickFix CastleRAT attacks

BleepingComputer • Mar 07, 2026

HIGH

Google says spyware makers and China-linked groups dominated zero-day attacks last year

The Register Security • Mar 05, 2026

HIGH

State-affiliated hackers set up for critical OT attacks that operators may not detect

CSO Online • Mar 05, 2026

HIGH

Global Takedown Neutralizes Tycoon2FA Phishing Service

Infosecurity Magazine • Mar 04, 2026

CRITICAL

Fake Laravel Packages on Packagist Deploy RAT on Windows, macOS, and Linux

The Hacker News • Mar 04, 2026

CRITICAL

they stole Claude’s brain 16 million times

NetworkChuck • Mar 03, 2026

HIGH

NCSC-2026-0068 [1.00] [M/H] Kwetsbaarheden verholpen in Splunk Enterprise en Splunk Cloud Platform

NCSC Netherlands • Feb 23, 2026

HIGH

Amazon: AI-assisted hacker breached 600 FortiGate firewalls in 5 weeks

BleepingComputer • Feb 21, 2026

MEDIUM

Your Samsung Weather App Is a Fingerprint: How saved locations create a persistent cross-session tracking identifier

Reddit r/netsec • Feb 20, 2026

MEDIUM

Dynamic Objects in Active Directory: The Stealthy Threat

Tenable Research • Feb 20, 2026

MEDIUM

What is UNC3886, the group that attacked Singapore’s telcos

Web Discovery • Feb 09, 2026

MEDIUM

VoidLink Framework Enables On-Demand Tool Generation with Windows Plugin Support - Dataproof Communications

Web Discovery • Feb 11, 2026

HIGH

VoidLink: A Cloud-Native Linux Framework Built for Stealth and Scale | Hive Pro

Web Discovery • Feb 11, 2026

HIGH

VoidLink: The Cloud-Native Malware Framework

Web Discovery • Feb 11, 2026

MEDIUM

New threat actor UAT-9921 deploys VoidLink against enterprise sectors

Web Discovery • Feb 11, 2026

HIGH

Notepad++ supply chain compromise: Trojanized updates used in suspected nation-state attack | ThreatLocker Blog

Web Discovery • Feb 08, 2026

MEDIUM

UAT-9921 Deploys VoidLink Malware to Target Technology and Financial Sectors

The Hacker News • Feb 13, 2026

MEDIUM

New threat actor, UAT-9921, leverages VoidLink framework in campaigns

Cisco Talos • Feb 11, 2026

MEDIUM

Adbleed: partially de-anonymizing VPN users with adblock filter lists

Reddit r/netsec • Feb 10, 2026

MEDIUM

Singapore spent 11 months booting China-linked snoops out of telco networks

The Register Security • Feb 10, 2026

MEDIUM

[NEU] [mittel] IBM DB2: Mehrere Schwachstellen

BSI Germany • Feb 10, 2026

MEDIUM

The (!FALSE) Pattern: How SOAPHound Queries Disappear Before They Hit Your Logs

Huntress • Jan 29, 2026

MEDIUM

HoneyMyte updates CoolClient and deploys multiple stealers in recent campaigns

Securelist • Jan 27, 2026

HIGH

[UPDATE] [hoch] OpenVPN: Mehrere Schwachstellen

BSI Germany • Feb 04, 2026

HIGH

Asian State-Backed Group TGR-STA-1030 Breaches 70 Government, Infrastructure Entities

The Hacker News • Feb 06, 2026

HIGH

New APT group breached gov and critical infrastructure orgs in 37 countries

CSO Online • Feb 05, 2026

HIGH

AI-Enabled Voice and Virtual Meeting Fraud Surges 1000%+

Infosecurity Magazine • Feb 05, 2026

CRITICAL

UAT-8837 Critical Infrastructure Attack

FortiGuard Threat Signal • Jan 22, 2026

CRITICAL

Zimbra Collaboration Local File Inclusion

FortiGuard Threat Signal • Jan 31, 2026

HIGH

Zimbra Collaboration Local File Inclusion

FortiGuard Outbreak Alerts • Jan 30, 2026

HIGH

AppLocker Rules Abuse

Reddit r/netsec • Feb 02, 2026