Intelligence · Updated daily
AI-analysed threats, vulnerabilities and campaigns. Not just what happened — what it means, who's affected, and what to do about it.
wolfSSL's improper validation of hash algorithm identity and length in ECDSA signature verification allows attackers to forge valid certificates, potentially compromising any system relying on wolfSSL for TLS authentication.
ShinyHunters gang leaked analytics data stolen from Rockstar Games following a breach at Anodot, a third-party analytics provider. This illustrates how trusted vendor compromises can expose major game publishers to data exfiltration without direct infrastructure compromise.
Hackers breached Dutch fitness chain Basic-Fit and accessed data for approximately one million members. This represents a significant exposure of personal information in a sector that has historically underinvested in security controls.
Unauthenticated credential disclosure in Juju CloudSpec API allows any authenticated controller user to retrieve cloud bootstrap credentials, bypassing intended role-based access controls. This PoC demonstrates privilege escalation through API permission misconfiguration affecting multiple recent versions.
Paperclip instances with default configuration allow unauthenticated account creation, authentication bypass, and privilege escalation to RCE through a six-step API chain. This affects all publicly accessible deployments running in authenticated mode without explicit hardening.
Daptin's cloudstore.file.upload action fails to validate user-supplied filenames, enabling unauthenticated attackers to write arbitrary files to disk via path traversal and zip slip attacks. This vulnerability bypasses authentication entirely and presents immediate RCE risk.
Storm-2755, a financially motivated threat actor, is compromising Microsoft employee accounts to redirect salary payments. This represents a shift in targeting from external victims to internal credential compromise for direct financial gain.
Attackers compromised CPUID's API and modified download links on the official website to serve malicious versions of CPU-Z and HWMonitor, two ubiquitous hardware monitoring tools. This represents a high-impact supply-chain attack affecting potentially millions of end-users who trust these downloads.
Qualys analysed one billion CISA KEV (Known Exploited Vulnerabilities) remediation records and found that most critical flaws are actively exploited in the wild before organisations can deploy patches. This exposes a fundamental timing mismatch between vulnerability disclosure and attacker speed.
Iranian-linked cyber operators have mapped nearly 4,000 internet-exposed Rockwell Automation programmable logic controllers across U.S. critical infrastructure. This reconnaissance indicates preparation for potential disruptive attacks against operational technology networks.
OpenAI has launched a $100 monthly Pro subscription tier matching Anthropic's Claude pricing, reflecting competitive pressure in the generative AI market. This pricing escalation may influence how organisations evaluate AI tool security postures and dependency risks.
German authorities have publicly identified Daniil Maksimovich Shchukin, a 31-year-old Russian national, as the operator behind the REvil and GandCrab ransomware groups. The disclosure represents a significant attribution success but raises questions about law enforcement coordination and timing given the geopolitical context.
North Korean threat actors conducted a methodical six-month social engineering operation against Drift, a Solana-based decentralised exchange, culminating in a $285 million theft in April 2026. The campaign demonstrates DPRK's shift toward patient, targeted infiltration of high-value cryptocurrency platforms rather than opportunistic attacks.
Threat actors are conducting large-scale automated attacks exploiting CVE-2025-55182 (React2Shell) in vulnerable Next.js applications to harvest credentials at scale. This represents a shift from opportunistic patching cycles to industrialised credential theft targeting the JavaScript framework ecosystem.
Scammers are distributing fake traffic violation notices via SMS with embedded QR codes that direct victims to phishing sites harvesting payment details and personal information. The shift to QR codes likely reflects successful SMS URL filtering deployed by carriers.
An unauthenticated attacker can execute arbitrary code as root by POSTing to a public webhook endpoint that triggers automation workflows containing Bash steps with unsanitized template processing. This requires zero authentication and demonstrates complete server compromise.
pyLoad's fix for CVE-2026-33992 validates only the initial download URL but fails to validate HTTP redirect targets, allowing authenticated attackers to reach internal addresses. The PoC demonstrates that pycurl's automatic redirect following (FOLLOWLOCATION=1, MAXREDIRS=10) completely bypasses IP filtering.
Fortinet released emergency patches for CVE-2026-35616, a pre-authentication API access control flaw in FortiClient EMS that allows unauthenticated attackers to escalate privileges. The vulnerability is being actively exploited in the wild.
Researchers identified 36 malicious npm packages masquerading as Strapi CMS plugins that exploit Redis and PostgreSQL instances, harvest credentials, deploy reverse shells, and install persistent implants. This represents a coordinated supply-chain attack targeting development environments with potential access to production infrastructure.
LinkedIn deployed hidden JavaScript code scanning visitor browsers for 6,000+ Chrome extensions and collecting device fingerprinting data without explicit user consent, raising questions about the scope and legitimacy of data collection practices by major platforms.
Device code phishing attacks exploiting OAuth 2.0's Device Authorization Grant flow have increased 37-fold this year, with automated kits now widely available. Attackers bypass traditional MFA by tricking users into authorising malicious device registrations, gaining account access without credentials.
A developer maintaining the widely-used Axios HTTP client was socially engineered via a fake Microsoft Teams error message, leading to credential compromise and potential package poisoning. This demonstrates how supply-chain attacks exploit human trust in familiar platforms rather than technical defences.
PraisonAI Gateway exposes unauthenticated `/info` and `/ws` endpoints, allowing attackers to enumerate all registered agents and inject arbitrary messages without credentials. The PoC demonstrates network-adjacent exploitation with zero authentication barriers.
PraisonAI's token validation function returns True for any unrecognized token when the internal token store is empty (default state), allowing unauthenticated access to all MCP tools including agent execution and file operations. This bypasses intended OAuth authentication entirely.
Juju controllers (3.2.0+) fail to validate TLS client certificates on Dqlite cluster endpoints, allowing unauthenticated attackers with network access to join the cluster, read/modify all data, and escalate privileges. The PoC demonstrates practical network-level exploitation without credentials.