THREAT OPS › Threat News
Threat Intelligence News
2544 reports from 110+ open cyber-threat-intelligence sources — APT activity, malware, vulnerabilities and campaigns, newest first.
- Ghostwriter v7: Safer Tokens, Scoped Access, and Better Automationspecterops · 2026-06-04
- China-Linked TA4922 Expands Phishing Attacks to U.K., Germany, Italy, and South Africaproofpoint · 2026-06-04
- Dependency remediation bolstered with CVE Lite CLIreversinglabs · 2026-06-04
- AI Threat Readiness Pillar 1: Reduce Critical Exposures & Scan with AIwiz_research · 2026-06-04
- AIRQ: The First Independent AI Agent Security Rating and Open Source Risk Scoring Framework Ranks 100+ AI Agentsadversa · 2026-06-04
- Cybercriminals Are Targeting the FIFA World Cup 2026fortinet_research · 2026-06-04
- Putting CLIMATE into Practice: Building an Inventory Management Planakamai_blog · 2026-06-04
- Software supply chain attacks: check your dependenciesncsc_uk · 2026-06-04
- Srsly Risky Biz: NATO's cyber approach needs to changeriskybiz_news · 2026-06-04
- Top MCP security resources — June 2026adversa · 2026-06-04
- Node-gyp Supply Chain Compromise: A Self-Propagating npm Worm That Hides in binding.gypsnyk · 2026-06-04
- So You Have an AI Security Budget. Now what?snyk · 2026-06-04
- Threats to the 2026 FIFA World Cuprecordedfuture · 2026-06-04
- Type Level Security: The future of secure AI code generation?snyk · 2026-06-04
- Remembering Sir Alex Youngerrecordedfuture · 2026-06-04
- 4 Ways GreyNoise Improves SOC Outcomesgreynoise_blog · 2026-06-04
- Top Features To Look For in an SSE Platformzscaler_threatlabz · 2026-06-03
- Emerging Hospice Fraud Targeting Medicare Recipientsic3_fbi · 2026-06-03
- Updates from Europe: Single Reporting Platform, Public Consultations, New Publicationsopenssf_blog · 2026-06-03
- Threat Hunting Case Study: FileFixintel471 · 2026-06-03
- Cisco Webex Meetings Cross-Site Scripting Vulnerabilitycisco_psirt · 2026-06-03
- Ransom & Dark Web Issues Week 1, June 2026ahnlab · 2026-06-03
- Get ahead of frontier AI: 5 AppSec strategy upgradesreversinglabs · 2026-06-03
- Inside .NET Loader Analysis: From Malspam to In-Memory Loaderhuntress · 2026-06-03
- Impersonation, Click Hijacking, and TDS: Inside a Malware Distribution Ecosystemcheckpoint_research · 2026-06-03
- The AI risk quadrant for agents: scoring 100 digital workers nobody securedadversa · 2026-06-03
- Inside the Cross-Platform Propagation of a New Gafgyt Variant C0XMOfortinet_research · 2026-06-03
- Optimize AI Inference: Real-Time NodeBalancers Metrics for AI Workloadsakamai_blog · 2026-06-03
- The sorry state of skill distributiontrailofbits · 2026-06-03
- Lessons for life: Why children’s data is a long-term identity riskwls_eset · 2026-06-03
- Risky Bulletin: FSB calls out Western spyware operationriskybiz_news · 2026-06-03
- [CISA KEV] CVE-2026-45247 — Mirasvit Mirasvit Full Page Cache Warmer: Mirasvit Full Page Cache Warmer Deserialization of Untrusted Data Vulnerabilitycisa_kev · 2026-06-03
- The New Security Risks of the Agentic Development Lifecyclesnyk · 2026-06-03
- How to Establish Least-Privilege Access for AI Agents and Assistantszscaler_threatlabz · 2026-06-02
- Highlights from the Akamai India Partner Summit 2026akamai_blog · 2026-06-02
- CVE noise drowns out supply chain threatsreversinglabs · 2026-06-02
- Unpatched NTLM Leakage in Windows search: URI Handler, Same Bug, No CVE, No Fixhuntress · 2026-06-02
- What’s in the SOSS? Podcast #62 – S3E14 The Ghost in the Dependency Tree: Navigating Open Source End-of-Life with HeroDevsopenssf_blog · 2026-06-02
- LABScon25 Replay | Gamaredon x Turla: Unveiling a 2025 Espionage Alliance Targeting Ukrainesentinelone · 2026-06-02
- How Zero Trust Branch Addresses the TIC 3.0 Branch Office Requirementzscaler_threatlabz · 2026-06-02
- Between Two Nerds: The intelligence cultriskybiz_news · 2026-06-02
- Protestware by open source maintainer to hinder agentic coding: The jqwik 1.10.0 Prompt Injectionsnyk · 2026-06-02
- The case for GitHub Actions security after recent supply chain attacksdatadog_seclabs · 2026-06-02
- From API key to live threat detections in minutes: how Elastic Security ingests Google Threat Intelligenceelastic_security · 2026-06-02
- [CISA KEV] CVE-2022-0492 — Linux Kernel: Linux Kernel Improper Authentication Vulnerabilitycisa_kev · 2026-06-02
- [CISA KEV] CVE-2025-48595 — Android Framework: Android Framework Integer Overflow Vulnerabilitycisa_kev · 2026-06-02
- Iran Expands Handala Brand to Physical Threatsrecordedfuture · 2026-06-02
- 31 Red Hat npm packages backdoored in 72 secondsreversinglabs · 2026-06-01
- Red Canary CFP tracker: June 2026red_canary · 2026-06-01
- Hackers Used Meta’s AI Support Bot to Seize Instagram Accountskrebs · 2026-06-01
- How Zscaler Zero Trust Firewall Protects Against AI-Driven Attackszscaler_threatlabz · 2026-06-01
- CVE-2026-4387: StrongDM State File Reusespecterops · 2026-06-01
- Eliminate Critical API Attack Paths with Wiz API SPMwiz_research · 2026-06-01
- 1st June – Threat Intelligence Reportcheckpoint_research · 2026-06-01
- Investigating suspicious AI workflows in Microsoft Entra Agent ID: Agent’s user accountred_canary · 2026-06-01
- Miasma: Supply Chain Attack Targeting RedHat npm Packageswiz_research · 2026-06-01
- Overview of Content Published in Maydidier_stevens · 2026-06-01
- Risky Bulletin: Recently patched PAN 0day exploited in the wildriskybiz_news · 2026-06-01
- Vulnerability & Patch Roundup — May 2026sucuri_blog · 2026-06-01
- Miasma supply chain attack: malicious code found in @redhat-cloud-services npm packagessnyk · 2026-06-01
- [CISA KEV] CVE-2024-21182 — Oracle WebLogic Server: Oracle WebLogic Server Unspecified Vulnerabilitycisa_kev · 2026-06-01
- [webapps] Drupal Core 10.5.5 - Error-Based SQL Injectionexploitdb · 2026-06-01
- [webapps] WordPress OrderConvo 14 - Path Traversalexploitdb · 2026-06-01
- Sponsored: Inside CISA's disastrous secrets leakriskybiz_news · 2026-05-31
- [remote] Notepad++ 8.9.6 - Arbitrary Code Executionexploitdb · 2026-05-30
- [webapps] YAMCS yamcs-core 5.12.7 - No Rate Limitingexploitdb · 2026-05-30
- [webapps] YAMCS yamcs-core 5.12.7 - User Enumerationexploitdb · 2026-05-30
- [webapps] YAMCS yamcs-core 5.12.7 - LDAP Injectionexploitdb · 2026-05-30
- Gentlemen Ransomwareintel471 · 2026-05-29
- This month in security with Tony Anscombe – May 2026 editionwls_eset · 2026-05-29
- Fix SCA issues at scale in your terminal with Snyk Remediation Agent in the CLIsnyk · 2026-05-29
- How Relay Network Adopted AI Coding Securely and Built the Foundation for Agentic Developmentsnyk · 2026-05-29
- Risky Bulletin: Dutch police take down 17m device botnetriskybiz_news · 2026-05-29
- [remote] Wing FTP Server 8.1.3 - Authenticated Remote Code Executionexploitdb · 2026-05-29
- [webapps] CubeCart < 6.7.0 - Reflected Cross-Site Scripting (XSS) (Unauthenticated)exploitdb · 2026-05-29
- [remote] strongSwan 5.9.13 - libsimaka EAP-SIM/AKA heap buffer overflowexploitdb · 2026-05-29
- [dos] strongSwan 5.9.13 - DoSexploitdb · 2026-05-29
- [CISA KEV] CVE-2026-0257 — Palo Alto Networks PAN-OS: Palo Alto Networks PAN-OS Authentication Bypass Vulnerabilitycisa_kev · 2026-05-29
- [remote] Microsoft - NTLMv2 Hash Captureexploitdb · 2026-05-29
- [webapps] MikroORM 7.0.13 - SQL Injectionexploitdb · 2026-05-29
- [webapps] Prodigy Commerce 3.3.0 - Local File Inclusionexploitdb · 2026-05-29
- [webapps] Langflow 1.3.0 - Remote Code Executionexploitdb · 2026-05-29
- [webapps] Quick Playground for WordPress 1.3.1 - Unauthenticated Remote Code Executionexploitdb · 2026-05-29
- [local] ImageMagick - Infinite Loop in the MIFF decoder can lead to CPU exhaustionexploitdb · 2026-05-29
- [local] ZTE Routers - Unauthenticated Denial of Serviceexploitdb · 2026-05-29
- [local] ZTE ZXHN H188A V6 - Authentication Bypassexploitdb · 2026-05-29
- [local] ZTE H298A / H108N - Unauthenticated Credential Exposureexploitdb · 2026-05-29
- [local] Linux Kernel - Local Privilege Escalationexploitdb · 2026-05-29
- [webapps] MixPHP Framework 2.2.17 - Unsafe Deserialization Remote Code Executionexploitdb · 2026-05-29
- Forrester Names RL in Agentic Development Security Marketreversinglabs · 2026-05-28
- The Case for Practicing Response Before You Need Itspecterops · 2026-05-28
- Don’t Jump the Turnstile: Lessons from the Fieldspecterops · 2026-05-28
- 5 lessons from vulnerability management's front linesreversinglabs · 2026-05-28
- Microsoft’s stance on zero day exploits is a dumpster fire of their own makingdoublepulsar · 2026-05-28
- State of Post Quantum Cryptographywiz_research · 2026-05-28
- Grading on a curve: How to assess a pentestred_canary · 2026-05-28
- Consistent Protections Without Compromise: Akamai’s WAF Is Now on AWS Marketplaceakamai_blog · 2026-05-28
- ESET APT Activity Report Q4 2025–Q1 2026wls_eset · 2026-05-28
- Your Profile Is a Dossier. Here's Who's Reading It.huntress · 2026-05-28
- From Exploit Code to Production Detection: Building a CVE-2026-31431 (Copy Fail) detection with Agentsdatadog_seclabs · 2026-05-28