THREAT OPS › Threat News
Threat Intelligence News
2585 reports from 110+ open cyber-threat-intelligence sources — APT activity, malware, vulnerabilities and campaigns, newest first.
- [titan] DataOstrov s.r.o. posted to leak siteransomware_live · 2026-07-13
- [titan] Ozmit s.r.o. posted to leak siteransomware_live · 2026-07-13
- What the ECB’s AI Cybersecurity Letter Means for Significant Institutionshorizon3 · 2026-07-13
- Japan's largest taxi operator shuts systems after cyberattackbleepingcomputer · 2026-07-13
- [titan] Cooperate consulting CZ s.r.o. posted to leak siteransomware_live · 2026-07-13
- Request for Comments: CARE and Maven Centralsonatype · 2026-07-13
- [qilin] Hillebrand Home Health posted to leak siteransomware_live · 2026-07-13
- Hackers backdoor Jscrambler npm package with infostealer malwarebleepingcomputer · 2026-07-13
- [qilin] URH Hoteliers posted to leak siteransomware_live · 2026-07-13
- New CrashStealer malware poses as Apple crash reporting toolbleepingcomputer · 2026-07-13
- VPN service favored by ransomware groups is sanctioned by USthe_record · 2026-07-13
- [GHSA] GHSA-7xw9-549r-8jrc (high) — DIRAC: SQL injection and lack of access control in PilotManager servicegithub_advisories · 2026-07-13
- [GHSA] GHSA-vg99-gr89-qhw9 (high) — DIRAC: Pilot code downloaded over unverified HTTPS connectiongithub_advisories · 2026-07-13
- [qilin] TitanTV, Inc. posted to leak siteransomware_live · 2026-07-13
- Understanding Illicit Ecosystems: How Dark Web Forums Structure Cybercrimeflashpoint · 2026-07-13
- CrashStealer macOS Malware Uses Notarized Dropper to Pass Gatekeeper Checksthehackernews · 2026-07-13
- Meeting the ECB’s AI-Enabled Cybersecurity Mandate with NodeZero®horizon3 · 2026-07-13
- Google and Microsoft Pull ModHeader With 1.6 Million Installs After Dormant Collector Foundthehackernews · 2026-07-13
- Microsoft Entra ID security updates: Passkeys are the default authentication method in Entra IDmsstic · 2026-07-13
- [safepay] shuttlemeadowcc.com posted to leak siteransomware_live · 2026-07-13
- [dragonforce] Northeast Rescue Systems posted to leak siteransomware_live · 2026-07-13
- CISA warns of actively exploited RCE flaws in Joomla extensionsbleepingcomputer · 2026-07-13
- ⚡ Weekly Recap: ShareFile Threat, Citrix Bleed 2 Ransomware, AI Coding Attacks, and Morethehackernews · 2026-07-13
- Lessons Learned from CISA’s Recent GitHub Leakkrebs · 2026-07-13
- June 2026 Threat Trend Report on APT Groupsahnlab · 2026-07-13
- Effective Patch Management Strategies: 7 Best Practices | Huntresshuntress · 2026-07-13
- [dragonforce] Nicholson y Cano Abogados posted to leak siteransomware_live · 2026-07-13
- Trusting your kids online isn’t enough (Lock and Code S07E14)malwarebytes_blog · 2026-07-13
- Lidl discloses online shop breach after service provider hackbleepingcomputer · 2026-07-13
- Breach at the Beach: Play the Ultimate Entra ID CTFbleepingcomputer · 2026-07-13
- Why cloud security is mission-critical for federal civilian and defense agenciestenable · 2026-07-13
- New MemGhost Attack Plants Persistent False Memories in AI Agents Through One Emailthehackernews · 2026-07-13
- UK charges suspects linked to Russian Coms call spoofing platformbleepingcomputer · 2026-07-13
- [akira] Ironmark posted to leak siteransomware_live · 2026-07-13
- Ghostcommit attack hides malicious AI instructions in imagesmalwarebytes_blog · 2026-07-13
- 13th July – Threat Intelligence Reportcheckpoint_research · 2026-07-13
- Forg365 PhaaS Targets Microsoft 365 with Device Code and AitM Session Theftthehackernews · 2026-07-13
- Introducing Precursor: detecting agentic behavior with continuous client-side signalscloudflare_security · 2026-07-13
- Threat Actors Achieve Persistence After SQL Injectionhuntress · 2026-07-13
- Red Hat security advisory (AV26-688)cccs_ca · 2026-07-13
- [Control systems] CISA ICS security advisories (AV26–687)cccs_ca · 2026-07-13
- Ubuntu security advisory (AV26-686)cccs_ca · 2026-07-13
- Dell security advisory (AV26-685)cccs_ca · 2026-07-13
- IBM security advisory (AV26-684)cccs_ca · 2026-07-13
- Formula One and Cybersecurity in the AI Erazscaler_threatlabz · 2026-07-13
- Why IaC Coverage Belongs on Your Security Dashboardwiz_research · 2026-07-13
- UK and Allies urge critical sectors to improve defences against Russian intelligence targetingncsc_uk · 2026-07-13
- Improve Router Hygiene to Protect Against Russian State-Sponsored Targetingcisa_advisories · 2026-07-13
- CISA Adds One Known Exploited Vulnerability to Catalogcisa_advisories · 2026-07-13
- Meta Files Patent for AI That Can Listen All Day and Track How You're Feelingthehackernews · 2026-07-13
- Thinking Fast and Slow in the SOC: The Case for Combining Autonomous AI with Analyst Copilotsthehackernews · 2026-07-13
- [D1R] Bosch posted to leak siteransomware_live · 2026-07-13
- [D1R] ARM posted to leak siteransomware_live · 2026-07-13
- [D1R] Synopsys posted to leak siteransomware_live · 2026-07-13
- EU sanctions Russian GRU military hackers over cyberattacksbleepingcomputer · 2026-07-13
- Fake crypto gift card sites are getting harder to spotmalwarebytes_blog · 2026-07-13
- Attacker Uses Suspected AI-Generated PowerShell Script to Map Active Directorythehackernews · 2026-07-13
- AI Data Centers and the Concentration of Wealthschneier · 2026-07-13
- Dark Web Profile: Krybit Ransomwaresocradar_blog · 2026-07-13
- Rust-proof your code with our new Testing Handbook chaptertrailofbits · 2026-07-13
- US and allies warn of Russian critical infrastructure attacksbleepingcomputer · 2026-07-13
- [dragonforce] degeremcia.com posted to leak siteransomware_live · 2026-07-13
- [dragonforce] www.twtci.com Trans World Trading posted to leak siteransomware_live · 2026-07-13
- Alleged Brooks, Keepcool, Truecaller Bot, DAMAC, and US Resume Data Claimssocradar_blog · 2026-07-13
- Misconfigured Server Reveals Three Evilginx Phishing Operations Targeting Microsoft 365thehackernews · 2026-07-13
- EclecticIQ MCP Server: Connect your AI agents directly to your threat intelligenceeclecticiq · 2026-07-13
- A week in security (July 6 – July 12)malwarebytes_blog · 2026-07-13
- Beyond Cloud Uptime: API Security and AI Resilience for 2026akamai_blog · 2026-07-13
- iCagenda and Balbooa Forms Joomla Flaws Reportedly Exploited as Zero-Daysthehackernews · 2026-07-13
- ZDI-26-400: (0Day) AnyDesk Screen Recording Link Following Denial-of-Service Vulnerabilityzdi_published · 2026-07-13
- Someone Is Scanning for Your MCP Servers and AI Assistant Credentials, (Mon, Jul 13th)sans_isc · 2026-07-13
- Update on Attacks by Threat Group APT-C-60 in 2026jpcert_blog · 2026-07-13
- CVE-2026-49876: Apache Gravitino: Authenticated SSRF in Gravitino JobManager allows server-side HTTP requests to internal network and cloud metadata endpoints via unvalidated job template URIsoss_sec · 2026-07-13
- CVE-2026-41041: Apache Gravitino: URL path injection via unencoded user-supplied identifiers in MCP REST client f-string URL construction, enabling path traversal to unintended API endpoints.oss_sec · 2026-07-13
- ISC Stormcast For Monday, July 13th, 2026 https://isc.sans.edu/podcastdetail/10004, (Mon, Jul 13th)sans_isc · 2026-07-13
- OpenAI temporarily relaxes GPT-5.6 Sol usage limitsbleepingcomputer · 2026-07-13
- Meta AI image detector fails to identify some of its own cropped AI images, Reuters analysis findsai_incident_db · 2026-07-13
- Now Available: The Threat Brief Library in the GreyNoise Platformgreynoise_blog · 2026-07-13
- [CISA KEV] CVE-2008-4128 — Cisco IOS: Cisco IOS Cross-Site Request Forgery Vulnerabilitycisa_kev · 2026-07-13
- [cmdorganization] Els for Autism posted to leak siteransomware_live · 2026-07-12
- [anubis] Casper Orthopedics posted to leak siteransomware_live · 2026-07-12
- [anubis] Surtifamiliar posted to leak siteransomware_live · 2026-07-12
- [anubis] Community Advocates posted to leak siteransomware_live · 2026-07-12
- [Deadlock] Aldaco Avance 2022 S.L. posted to leak siteransomware_live · 2026-07-12
- [dragonforce] Al - Saidi Factory posted to leak siteransomware_live · 2026-07-12
- [dragonforce] STEP Oiltools posted to leak siteransomware_live · 2026-07-12
- [m3rx] eclective.ie posted to leak siteransomware_live · 2026-07-12
- [m3rx] foreconinc.com posted to leak siteransomware_live · 2026-07-12
- [m3rx] wrtworld.com posted to leak siteransomware_live · 2026-07-12
- [titan] Cooperate service CZ s.r.o. posted to leak siteransomware_live · 2026-07-12
- [titan] Eureka Construction INC posted to leak siteransomware_live · 2026-07-12
- Compromised jscrambler 8.14.0 npm Release Drops Rust Infostealer During Installthehackernews · 2026-07-11
- Hackers Weaponize Balochistan Police Portal in Multi-Group Espionage Campaignsthehackernews · 2026-07-11
- [dragonforce] Access Equipment Hire posted to leak siteransomware_live · 2026-07-11
- [qilin] Century Equities posted to leak siteransomware_live · 2026-07-11
- [qilin] Retelit SpA PIVA posted to leak siteransomware_live · 2026-07-11
- [qilin] Carolina Agri-Power posted to leak siteransomware_live · 2026-07-11
- [qilin] Allied Plumbing & Heating posted to leak siteransomware_live · 2026-07-11
- [cmdorganization] Golden Star Resources posted to leak siteransomware_live · 2026-07-11
- Wireshark 4.6.7 Released, (Sat, Jul 11th)sans_isc · 2026-07-11