THREAT OPS › Threat News
Threat Intelligence News
2544 reports from 110+ open cyber-threat-intelligence sources — APT activity, malware, vulnerabilities and campaigns, newest first.
- [local] ProtonVPN v4.4.1 - Unquoted Service Pathexploitdb · 2026-07-07
- [CISA KEV] CVE-2026-48282 — Adobe ColdFusion: Adobe ColdFusion Path Traversal Vulnerabilitycisa_kev · 2026-07-07
- SSE Architecture Explained: How SSE Enables Zero Trustzscaler_threatlabz · 2026-07-06
- The Hidden Latency Tax in Retail Personalizationakamai_blog · 2026-07-06
- Between Two Nerds: Why AI has not meant more hacks. Yet.riskybiz_news · 2026-07-06
- Cisco Identity Services Engine Remote Code Execution and Information Disclosure Vulnerabilitiescisco_psirt · 2026-07-06
- BeyondTrust security advisory (AV26-660)cccs_ca · 2026-07-06
- 5 insights from Frost & Sullivan’s 2025 Frost Radar™ for Cloud Security Posture Managementmsstic · 2026-07-06
- Microsoft Edge security advisory (AV26-659)cccs_ca · 2026-07-06
- Q2 2026 Vulnerability Trends Reportahnlab · 2026-07-06
- Is Your AppSec Program Built to Close the OWASP Top 10 2025 Coverage Gap?qualys · 2026-07-06
- Top MCP security resources — July 2026adversa · 2026-07-06
- A Day With Your Vector Command Red Team Podrapid7 · 2026-07-06
- AI Arms Race in Recruitinghuntress · 2026-07-06
- OpenSSH security advisory (AV26-658)cccs_ca · 2026-07-06
- Roundcube security advisory (AV26-657)cccs_ca · 2026-07-06
- IBM security advisory (AV26-656)cccs_ca · 2026-07-06
- [Control systems] CISA ICS security advisories (AV26–655)cccs_ca · 2026-07-06
- Dell security advisory (AV26-654)cccs_ca · 2026-07-06
- Ubuntu security advisory (AV26-653)cccs_ca · 2026-07-06
- Red Hat security advisory (AV26-652)cccs_ca · 2026-07-06
- AI Is Forcing a New Open Source Security Modelsonatype · 2026-07-06
- How NodeZero® Rapid Response Helps Operationalize BOD 26-04horizon3 · 2026-07-06
- Choose your WhatsApp username carefullymalwarebytes_blog · 2026-07-06
- Cavern Manticore: Exposing Iran-Linked Modular C2 Frameworkcheckpoint_research · 2026-07-06
- 6th July – Threat Intelligence Reportcheckpoint_research · 2026-07-06
- France to Stop Certifying Non-Quantum-Safe Encryptionschneier · 2026-07-06
- When checking the URL isn’t enough: a Device Code Phishing attack via a Microsoft websitesecurelist · 2026-07-06
- No titleai_incident_db · 2026-07-06
- Risky Bulletin: EU official’s phone infected with Pegasusriskybiz_news · 2026-07-06
- Plain Text Passwords: The Risks of Storing Themhuntress · 2026-07-06
- Debian Linux Kernel Multiple Vulnerabilitieshkcert · 2026-07-06
- Apple Products Multiple Vulnerabilitieshkcert · 2026-07-06
- Microsoft Edge Multiple Vulnerabilitieshkcert · 2026-07-06
- AI romance scam impersonating Dubai prince ensnares victimsai_incident_db · 2026-07-06
- US appeals court sanctions lawyers over AI ‘hallucinations,’ lack of candorai_incident_db · 2026-07-06
- "The First Tell Was the File Name of the Principal Brief: 'Cocounsel Skill Results'"ai_incident_db · 2026-07-06
- Entra Agent ID: Protect, detect, responddatadog_seclabs · 2026-07-06
- [webapps] Joomla Extension 4.1.4 - PHP Object injectionexploitdb · 2026-07-06
- [webapps] Pulpy 0.1.1-Beta - Filesystem Sandbox Bypassexploitdb · 2026-07-06
- [local] MEmu Android Emulator 9.2.7.0 - Local Privilege Escalationexploitdb · 2026-07-06
- [webapps] KeepInMind 0.8.4.2 - Stored XSSexploitdb · 2026-07-06
- [webapps] KNX visualisering - Broken Access Controlexploitdb · 2026-07-06
- [local] Windows Defender (MsMpEng.exe) - Race Conditionexploitdb · 2026-07-06
- [webapps] WordPress Plugin WPZOOM Portfolio 1.4.21 - Reflected Cross-Site Scripting (XSS)exploitdb · 2026-07-06
- Vidar Infostealer Being Spread through Phishing Emailsahnlab · 2026-07-05
- Longtime spokeswoman sues Fred’s Appliance over use of AI likenessai_incident_db · 2026-07-04
- Indore resident loses Rs 1.83 lakh to AI-generated voice fraudai_incident_db · 2026-07-04
- Food Delivery Robot Says Sorry For Smashing Bus Shelter In New Adai_incident_db · 2026-07-04
- Robots Gone Wild: Food Delivery Robots Smash 2 Bus Shelters In Chicagoai_incident_db · 2026-07-04
- California man with bipolar disorder says ChatGPT fueled delusions, led to self-harm in new lawsuitai_incident_db · 2026-07-04
- Weekly Metasploit Update: Modules for SMB-to-Meterpreter, Peyara Remote Mouse RCE exploit, and morerapid7 · 2026-07-03
- Erlang security advisory (AV26-651)cccs_ca · 2026-07-03
- GitHub security advisory (AV26-650)cccs_ca · 2026-07-03
- Cyber readiness for SMBs: Getting the basics rightwls_eset · 2026-07-03
- Flock Cameras Can Surveil Cars Without License Platesschneier · 2026-07-03
- Armored Likho digging a snake pit: inside the covert BusySnake Stealer campaignsecurelist · 2026-07-03
- Risky Bulletin: FatFs bugs enable physical access attacks on a load of devicesriskybiz_news · 2026-07-03
- Citrix Products Multiple Vulnerabilitieshkcert · 2026-07-03
- How We Added WebAuthn to a Browser-Based RDP Clientunit42 · 2026-07-02
- SecOps for the AI Age: Detecting and Responding to AI‑Related Incidentszscaler_threatlabz · 2026-07-02
- FBI Seizes NetNut Proxy Platform, Popa Botnetkrebs · 2026-07-02
- AL26-016 - Vulnerability impacting Citrix NetScaler CVE-2026-8451cccs_ca · 2026-07-02
- Whistleblowersoftware.com: confidentiality and anonymity leakage to third partiesfulldisclosure · 2026-07-02
- OpenBlow Multiple Deanonymization Vulnerabilitiesfulldisclosure · 2026-07-02
- Whistlelink: Site-access password exposed in web server access logs via GET query stringfulldisclosure · 2026-07-02
- Wordfence Intelligence Weekly WordPress Vulnerability Report (June 22, 2026 to June 28, 2026)wordfence · 2026-07-02
- APPLE-SA-06-29-2026-3 Safari 26.5.2fulldisclosure · 2026-07-02
- APPLE-SA-06-29-2026-2 macOS Tahoe 26.5.2fulldisclosure · 2026-07-02
- APPLE-SA-06-29-2026-1 iOS 26.5.2 and iPadOS 26.5.2fulldisclosure · 2026-07-02
- pwnlift: symlink following and TOCTOU in privileged upload handler allow arbitrary file write as rootfulldisclosure · 2026-07-02
- [KIS-2026-12] Control Web Panel <= 0.9.8.1224 (userRes) SQL Injection Vulnerabilityfulldisclosure · 2026-07-02
- [fulldis] CVE-2026-58451 - Horde Groupware IMP path traversal vulnfulldisclosure · 2026-07-02
- Samsung Galaxy Buds – Zero-Click HFP/A2DP Takeover via L2CAP Session Preemption (Vendor Response: Working as Intended)fulldisclosure · 2026-07-02
- Asterisk Security Release 23.4.1fulldisclosure · 2026-07-02
- Asterisk Security Release 22.10.1fulldisclosure · 2026-07-02
- Catan and Mousetalos · 2026-07-02
- Guide to Cloud Application Security: Must-Knows and No-No’s | Huntresshuntress · 2026-07-02
- Progress security advisory (AV26-552) – Update 1cccs_ca · 2026-07-02
- Google Chrome security advisory (AV26-648)cccs_ca · 2026-07-02
- Indirect Prompt Injection in Web Content Targets AI Agentszscaler_threatlabz · 2026-07-02
- Remus Stealer: A New, Not-So-New Infostealerflashpoint · 2026-07-02
- When To Choose SSE vs. SASE: A Decision Framework for Security Leaderszscaler_threatlabz · 2026-07-02
- Cisco security advisory (AV26-646)cccs_ca · 2026-07-02
- It’s 37oC, And All We Can Think About Is ColdFusion (Adobe ColdFusion Security Bulletin APSB26-68 CVE Bonanza)watchtowr · 2026-07-02
- Improving security posture across the Microsoft partner ecosystemmsstic · 2026-07-02
- [Security Blog] Smart Wearables, Smart Security: Cybersecurity Guide for Smart Wearableshkcert · 2026-07-02
- Real-Time Observability: Introducing Akamai Cloud Pulse Alertsakamai_blog · 2026-07-02
- Statistical Report on Malware Targeting Linux SSH Servers in the Second Quarter of 2026ahnlab · 2026-07-02
- Statistical Report on Malware Targeting Windows Database Servers in the Second Quarter of 2026ahnlab · 2026-07-02
- Q2 2026 Statistical Report on Malware Targeting Windows Web Serversahnlab · 2026-07-02
- Q2 2026 Attack Techniques Trend Reportahnlab · 2026-07-02
- This Report from Gartner Defines the Software Supply Chain Security Marketreversinglabs · 2026-07-02
- Google’s Continued Disruption of Malicious Residential Proxy Networksmandiant_gti · 2026-07-02
- Top Agentic AI security resources — July 2026adversa · 2026-07-02
- Context Engineering | Compaction & Agent Memory for Automated Malware Analysissentinelone · 2026-07-02
- CubeSpace CW0057 Reaction Wheelcisa_ics · 2026-07-02
- Gardyn IoT Hubcisa_ics · 2026-07-02
- ST Engineering iDirect iQ-Series Terminalscisa_ics · 2026-07-02
- Gardyn IoT Hubcisa_advisories · 2026-07-02