Cybersecurity News, Threats & Vulnerability Alerts

CISA Warns of Intune Exploit After Stryker Medical Breach

CISA issued urgent guidance after attackers exploited Microsoft Intune vulnerabilities to wipe systems at medical technology giant Stryker Corporation.

Evan Mael5m44

sharepoint-vulnerability March 19 — 11:06 AM

CISA Warns: Critical SharePoint Flaw Under Active Attack

CISA adds critical Microsoft SharePoint vulnerability to its Known Exploited Vulnerabilities catalog after confirming active exploitation in the wild.

Evan Mael5m44

cve-2026-20131 March 19 — 09:57 AM

Cisco Firewall Zero-Day Exploited by Interlock Ransomware

Cisco's Firewall Management Center vulnerability CVE-2026-20131 was actively exploited by Russian-linked Interlock ransomware operators since January 2026.

Evan Mael5m40

aura-breach March 18 — 11:56 PM

Aura Confirms Data Breach Affecting 900,000 Customers

Identity protection company Aura disclosed unauthorized access to customer records containing names and email addresses of nearly 900,000 users.

Evan Mael4m73

zimbra-vulnerability March 18 — 08:57 PM

CISA Orders Federal Agencies to Patch Zimbra Zero-Day

CISA adds actively exploited Zimbra Collaboration Suite vulnerability to its Known Exploited Vulnerabilities catalog, mandating federal agency patches.

Evan Mael5m131

connectwise-screenconnect March 18 — 07:10 PM

ConnectWise ScreenConnect Hit by Critical Signature Bypass

ConnectWise warns customers of a cryptographic signature verification flaw in ScreenConnect that enables unauthorized access and privilege escalation attacks.

Evan Mael5m66

cisco-fmc March 18 — 05:53 PM

Interlock Ransomware Exploits Cisco FMC Zero-Day Since January

Interlock ransomware gang has been actively exploiting a critical Cisco Secure Firewall Management Center zero-day vulnerability in attacks since late January 2026.

Evan Mael5m71

marquis-breach March 18 — 04:32 PM

Marquis Ransomware Attack Exposed 670,000 Records

Texas financial services provider Marquis disclosed a ransomware attack from August 2025 that compromised personal data of over 670,000 individuals and disrupted 74 banks.

Evan Mael5m49

darksword-exploit March 18 — 03:02 PM

Darksword iOS Exploit Kit Targets Cryptocurrency Wallets

New Darksword exploit framework compromises iOS devices to steal cryptocurrency wallet data and personal information through sophisticated attack chains.

Evan Mael5m39

nordstrom-breach March 18 — 02:55 PM

Nordstrom Email Breach Spreads Crypto Scams on St. Patrick's Day

Nordstrom's legitimate email system was compromised to send cryptocurrency scam messages disguised as St. Patrick's Day promotions to customers.

Evan Mael5m51

stryker-breach March 18 — 01:47 PM

Iranian Handala Hackers Breach Stryker with Stolen Credentials

Iranian Handala hackers compromised Stryker Corporation using malware-harvested credentials, forcing the medical technology giant to restore affected systems.

Evan Mael5m56

ip-kvm-vulnerabilities March 18 — 12:42 PM

Nine Critical Flaws Found in Low-Cost IP KVM Devices

Security researchers discovered nine vulnerabilities in budget IP KVM devices that could grant attackers complete remote control over connected systems.

Evan Mael5m68

cve-2026-3888 March 18 — 09:08 AM

CVE-2026-3888: Ubuntu Desktop Privilege Escalation Flaw

A high-severity vulnerability in Ubuntu Desktop 24.04+ allows unprivileged attackers to gain root access through privilege escalation.

Evan Mael5m92

cve-2026-32746 March 18 — 06:06 AM

CVE-2026-32746: Critical GNU Telnet Flaw Allows RCE

A critical vulnerability in GNU InetUtils telnet daemon enables unauthenticated remote code execution with elevated privileges.

Evan Mael5m106

glassworm-campaign March 17 — 10:42 PM

GlassWorm Supply Chain Attack Hits GitHub, npm, VSCode

The GlassWorm supply-chain campaign launched coordinated attacks targeting hundreds of packages across GitHub, npm, and VSCode extensions.

Evan Mael5m80

eu-sanctions March 17 — 07:41 PM

EU Sanctions Three Entities for Critical Infrastructure Attacks

European Union Council imposes sanctions on three entities and two individuals for cyberattacks targeting critical infrastructure across the region.

Evan Mael5m43

font-rendering-attack March 17 — 02:59 PM

Font Rendering Attack Bypasses AI Assistant Security Filters

Researchers discover new font-rendering attack that hides malicious commands from AI assistants using specially crafted HTML fonts.

Evan Mael5m46

rondodox-botnet March 17 — 01:37 PM

RondoDox Botnet Targets 174 CVEs in Massive Campaign

RondoDox botnet escalated attacks to 15,000 daily exploitation attempts targeting 174 vulnerabilities across enterprise systems.

Evan Mael5m38

leaknet-ransomware March 17 — 01:09 PM

LeakNet Ransomware Adopts ClickFix Social Engineering

LeakNet ransomware gang deploys new ClickFix technique with Deno-based malware loader to breach corporate networks through social engineering tactics.

Evan Mael5m50

konni-apt March 17 — 10:53 AM

North Korean Konni Group Hijacks KakaoTalk for Malware

North Korean hackers exploit KakaoTalk desktop app through spear-phishing to spread malware to victim contacts.

Evan Mael5m37

glassworm-malware March 16 — 09:30 PM

GlassWorm Malware Campaign Targets Browser Extensions

Security researchers discovered dozens of malicious GlassWorm browser extensions using advanced evasion techniques to compromise user systems.

Evan Mael4m69

1 2 3 4 5 6 7 8 9 10 11 12 13