Cyber Daily News
Cyber Daily News is a fast, no nonsense cybersecurity podcast designed for professionals, builders, and anyone who wants to stay ahead of real world threats. Each episode delivers a concise breakdown of the most important cyber incidents, vulnerabilities, exploits, and security trends shaping the day. You will hear clear explanations of breaches, ransomware campaigns, zero day vulnerabilities, nation state activity, and major security advisories, without hype or filler. The focus is on what happened, why it matters, and what defenders, engineers, and security leaders should pay attention to right now. Whether you work in security operations, IT, cloud, software development...
Cyber Daily News for June 18, 2026
Cyber Daily News for June 18, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - FortiBleed Exposes Admin Passwords for 75,000 Fortinet Firewalls https://securityaffairs.com/193817/hacking/fortibleed-exposes-admin-passwords-for-75000-fortinet-firewalls.html - Microsoft Confirms RoguePlanet Zero-Day in Defender, Patch Under Development https://securityaffairs.com/193830/security/microsoft-confirms-rogueplanet-zero-day-in-defender-patch-under-development.html - DragonForce Hid Inside Microsoft Teams and Nobody Noticed for Two Months https://securityaffairs.com/193801/security/dragonforce-hid-inside-microsoft-teams-and-nobody-noticed-for-two-months.html - Critical Command Execution Vulnerability Patched in Cisco ISE https://www.securityweek.com/critical-command-execution-vulnerability-patched-in-cisco-ise/ - F5 Patches Critical, High-Severity NGINX Vulnerabilities https://www.securityweek.com/f5-patches-critical-high-severity-nginx-vulnerabilities/ ...
Cyber Daily News for June 17, 2026
Cyber Daily News for June 17, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Fortinet Warned as Three Critical FortiSandbox Bugs Come Under Attack https://securityaffairs.com/193709/ai/fortinet-warned-as-three-critical-fortisandbox-bugs-come-under-attack.html - FulcrumSec Targets Novo Nordisk, Leaks Clinical and Research Data https://securityaffairs.com/193763/security/fulcrumsec-targets-novo-nordisk-leaks-clinical-and-research-data.html - Microsoft Working on Patch for 'RoguePlanet' Zero-Day https://www.securityweek.com/microsoft-working-on-patch-for-rogueplanet-zero-day/ - EdTech Faces a Cybersecurity Crisis: Data Breaches Surge https://securityaffairs.com/193777/data-breach/edtech-faces-a-cybersecurity-crisis-data-breaches-surge.html - Fifteen JetBrains Marketplace Plugins Found Stealing API Keys https://www.infosecurity-magazine.com/news/fifteen-jetbrains-marketplace/ ...
Cyber Daily News for June 16, 2026
Cyber Daily News for June 16, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - China-linked UNC6508 spent two years inside medical and military research networks https://securityaffairs.com/193667/apt/china-linked-actor-unc6508-spent-two-years-inside-medical-research-networks.html - Critical 'SearchLeak' flaw in Microsoft 365 Copilot exposed sensitive enterprise data https://thecyberexpress.com/searchleak-vulnerability-microsoft-365-copilot/ - Cisco patches another SD-WAN zero-day exploited in attacks; CISA adds it to KEV https://www.securityweek.com/cisco-patches-another-sd-wan-zero-day-exploited-in-attacks/ - Novo Nordisk confirms data theft including clinical trial information https://securityaffairs.com/193650/security/novo-nordisk-confirms-data-theft-what-attackers-took-and-what-they-didnt.html - Atomic Arch supply chain attack hits 1,500...
Cyber Daily News for June 15, 2026
Cyber Daily News for June 15, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - FBI, Google Dismantle 'Outsider Enterprise' Phishing Service https://www.securityweek.com/fbi-google-dismantle-outsider-enterprise-phishing-service/ - Supply Chain Attack Hits Popular WordPress Plugins Through Awesome Motive CDN https://securityaffairs.com/193616/malware/supply-chain-attack-hits-popular-wordpress-plugins-through-awesome-motive-cdn.html - Infostealers, AI, and a 90% Affiliate Cut Fuel The Gentlemen Group's Rise https://securityaffairs.com/193622/uncategorized/infostealers-ai-and-a-90-affiliate-cut-fuel-the-gentlemen-groups-rise.html - ShinyHunters Claims Council of Europe Hack https://www.securityweek.com/shinyhunters-claims-council-of-europe-hack/ - Splunk Urges Immediate Patching of Critical Flaw Enabling Arbitrary File Operations https://thecyberexpress.com...
Cyber Daily News for June 14, 2026
Cyber Daily News for June 14, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Washington Pulled the Plug on Anthropic's Fable 5 and Mythos 5 Models https://securityaffairs.com/193579/ai/washington-pulled-the-plug-on-anthropic-fable-5-and-mythos-5-models.html - Ukrainian Extradited from Ireland Pleads Guilty Over Role in Conti Ransomware Scheme https://securityaffairs.com/193590/uncategorized/ukrainian-extradited-from-ireland-pleads-guilty-over-role-in-conti-ransomware-scheme.html - NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks https://www.securityweek.com/npm-12-will-change-script-execution-behavior-to-prevent-supply-chain-attacks/
Cyber Daily News for June 13, 2026
Cyber Daily News for June 13, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Iran-Linked Handala Breached California Water Service, Leaked 5GB https://securityaffairs.com/193565/uncategorized/iran-linked-handala-breached-a-california-water-utility-it-could-have-done-worse-and-it-knows-that.html - CISA Adds Exploited Oracle PeopleSoft Flaw to KEV Catalog https://securityaffairs.com/193574/security/u-s-cisa-adds-oracle-peoplesoft-enterprise-peopletools-flaw-to-its-known-exploited-vulnerabilities-catalog.html - CISA Adds Max-Severity Ivanti Sentry Flaw to KEV, Urges Patch by June 14 https://securityaffairs.com/193557/security/u-s-cisa-adds-ivanti-sentry-flaw-to-its-known-exploited-vulnerabilities-catalog-and-urges-patching-by-june-14.html - FBI and Europol Take Down AudiA6 Ransomware Crypto-Laundering Platform https://www.infosecurity-magazine.com/news/ransomware-crypto-laundering/ - GitHub to Update npm to Thwart Software Supply Chain Attacks ...
Cyber Daily News for June 12, 2026
Cyber Daily News for June 12, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - CVE-2026-10520 Exploited: Ivanti Sentry Gateways Compromised Shortly After Patch Release https://securityaffairs.com/193530/uncategorized/cve-2026-10520-exploited-ivanti-sentry-gateways-compromised-shortly-after-patch-release.html - Google Confirms Exploitation of Oracle PeopleSoft Zero-Day by ShinyHunters https://www.securityweek.com/google-confirms-exploitation-of-oracle-peoplesoft-zero-day-by-shinyhunters/ - 21,786 Home Cameras, No Password, No Warning https://securityaffairs.com/193536/hacking/21786-home-cameras-no-password-no-warning.html - OnyxC2 Malware-as-a-Service Offers Enterprise-Grade Data Theft https://securityaffairs.com/193523/malware/onyxc2-malware-as-a-service-offers-enterprise-grade-data-theft.html - CISA Directs Federal Agencies to Prioritize Security Patches Based on Risk https://www.securityweek...
Cyber Daily News for June 11, 2026
Cyber Daily News for June 11, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Microsoft Patches Exploited Exchange Server Vulnerability https://www.securityweek.com/microsoft-patches-exploited-exchange-server-vulnerability/ - GreatXML Zero-Day Exploit Bypasses BitLocker https://www.securityweek.com/greatxml-zero-day-exploit-bypasses-bitlocker/ - ServiceNow Flaw Exploited by Threat Actors to Access Customer Instances https://thecyberexpress.com/servicenow-flaw-exploited/ - Fortinet patched a new critical FortiSandbox flaw https://securityaffairs.com/193509/security/fortinet-patched-a-new-critical-fortisandbox-flaw.html - New “Agentjacking” Attacks Could Hijack AI Coding Agents https://www.infosecurity-magazine.com/news/agentjacking-attacks-hijack-ai/ - JDY Botnet Evolves After KV Takedown, Targets Military Networks http...
Cyber Daily News for June 10, 2026
Cyber Daily News for June 10, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Microsoft Releases Record-Breaking Patch Tuesday With 208 CVEs https://securityaffairs.com/193417/security/microsoft-releases-record-breaking-patch-tuesday-with-208-cves.html - Chaotic Eclipse Unveils RoguePlanet Exploit Targeting Fully Patched Windows https://securityaffairs.com/193436/security/chaotic-eclipse-unveils-rogueplanet-exploit-targeting-fully-patched-windows.html - Miasma Worm Compromises 73 Microsoft GitHub Repositories https://securityaffairs.com/193367/malware/miasma-worm-compromises-73-microsoft-github-repositories.html - France's Government Messaging App Tchap Got Breached https://securityaffairs.com/193393/security/frances-government-messaging-app-tchap-got-breached.html - "AI Worms": Researchers Demonstrate Autonomous Malware Capable of Adapting to Any Online Device https://securityaffairs.com/193405/malware...
Cyber Daily News for June 9, 2026
Cyber Daily News for June 9, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Check Point VPN Zero-Day Exploited in Qilin Ransomware Attacks https://www.securityweek.com/check-point-vpn-zero-day-exploited-in-qilin-ransomware-attacks/ - Google Patches 5th Chrome Zero-Day Exploited in 2026 https://www.securityweek.com/google-patches-5th-chrome-zero-day-exploited-in-2026/ - Meta Accuses NSO of Violating WhatsApp Court Injunction https://securityaffairs.com/193333/security/meta-accuses-nso-of-violating-whatsapp-court-injunction.html - U.S. CISA Adds BerriAI LiteLLM Flaw to Known Exploited Vulnerabilities Catalog https://securityaffairs.com/193343/security/u-s-cisa-adds-berriai-litellm-and-check-point-security-gateway-flaws-to-its-known-exploited-vulnerabilities-catalog.html - CVE-2026-23111: Linux nf_tables Flaw Enables Root Exploits https://securityaffairs.com/193352/hacking...
Cyber Daily News for June 8, 2026
Cyber Daily News for June 8, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Meta AI Recovery Tool Flaw Exposed 20,000+ Instagram Accounts https://securityaffairs.com/193307/ai/meta-ai-recovery-tool-flaw-exposed-20000-instagram-accounts.html - DentaQuest Breach: ShinyHunters Publish Data Impacting 2.6M People https://securityaffairs.com/193274/data-breach/dentaquest-breach-shinyhunters-publish-data-impacting-2-6m-people.html - Cisco Warns of Active Exploitation of Catalyst SD-WAN Flaw With No Patch Available https://thecyberexpress.com/cve-2026-20245-cisco-sd-wan-manager/ - SolarWinds Serv-U Vulnerability Exploited in the Wild https://www.securityweek.com/solarwinds-patches-exploited-serv-u-vulnerability/ - Silent Ransom Group Uses DNS Fast Flux in Attacks https...
Cyber Daily News for June 7, 2026
Cyber Daily News for June 7, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Report: Anthropic Deploys Engineers to Support NSA Use of Mythos https://securityaffairs.com/193234/ai/report-anthropic-deploys-engineers-to-support-nsa-use-of-mythos.html - Hackers Leak DentaQuest Information Impacting 2.6 Million https://www.securityweek.com/hackers-leak-dentaquest-information-impacting-2-6-million/ - Chrome 149 Patches 429 Vulnerabilities https://www.securityweek.com/chrome-149-patches-429-vulnerabilities/ - U.S. CISA adds SolarWinds Serv-U flaw to its Known Exploited Vulnerabilities catalog https://securityaffairs.com/193245/security/u-s-cisa-adds-solarwinds-serv-u-flaw-to-its-known-exploited-vulnerabilities-catalog.html - Pink Extortion Group Targets Microsoft 365 Users via Voice Phishing https://thecyberexpress.com/tce-weekly-roundup-extortion-android-cloud/ ...
Cyber Daily News for June 6, 2026
Cyber Daily News for June 6, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Claude Opus Found a Four-Year-Old Hole in Zcash's Privacy Layer https://securityaffairs.com/193224/hacking/claude-opus-found-a-four-year-old-hole-in-zcashs-privacy-layer-nobody-knows-if-someone-already-used-it.html - Cisco SD-WAN Has a New Root-Level Problem, and There's No Fix Yet https://securityaffairs.com/193203/security/cisco-sd-wan-has-a-new-root-level-problem-and-theres-no-fix-yet.html - Silent Ransom Group (SRG): Switching To DNS Fast Flux Infrastructure https://securityaffairs.com/193215/cyber-crime/silent-ransom-group-srg-switching-to-dns-fast-flux-infrastructure.html - Anthropic Maps AI Threats (In Other News) https://www.securityweek.com/in-other-news-anthropic-maps-ai-threats-unpatched-comodo-flaw-palantir-chief-eyed-for-cisa/ - Opal Security Raises $23 Million for AI-Native Identity Governance https://www...
Cyber Daily News for June 5, 2026
Cyber Daily News for June 5, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Fake Context Alignment: The Attack That Made Gemini Obey Strangers Through Your Notifications https://securityaffairs.com/193165/ai/fake-context-alignment-the-attack-that-made-gemini-obey-strangers-through-your-notifications.html - Cisco Warns of 7th SD-WAN Zero-Day Exploited in 2026 https://www.securityweek.com/cisco-warns-of-7th-sd-wan-zero-day-exploited-in-2026/ - Study of AI-Assisted Cyberattacks May Reshape How Security Industry Measures Risk https://thecyberexpress.com/study-of-ai-assisted-cyberattacks/ - PCPJack Exposed: Researchers Uncover 230-Node Cloud Email Relay Network https://securityaffairs.com/193189/cyber-crime/pcpjack-exposed-researchers-uncover-230-node-cloud-email-relay-network.html - China's VerdantBamboo Experimented With Three Re-Entries and Three...
Cyber Daily News for June 4, 2026
Cyber Daily News for June 4, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Researcher Drops a New VS Code Zero-Day After Losing Trust in Microsoft's Disclosure Process https://securityaffairs.com/193128/security/researcher-drops-a-new-vs-code-zero-day-after-losing-trust-in-microsofts-disclosure-process.html - Cisco Warns of Available PoC for Critical Unified CM Vulnerability https://www.securityweek.com/cisco-warns-of-available-poc-for-critical-unified-cm-vulnerability/ - Cyber espionage campaign targeted stock exchange executive's Outlook account https://securityaffairs.com/193086/intelligence/cyber-espionage-campaign-targeted-stock-exchange-executives-outlook-account.html - Russia's FSB Says Foreign Spies Infected Officials' Phones With Malware https://securityaffairs.com/193076/security/russias-fsb-says-foreign-spies-infected-officials-phones-with-malware.html - Over 1.4 Million Accounts Disrupted in Cybercrime...
Cyber Daily News for June 3, 2026
Cyber Daily News for June 3, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Google Patches Actively Exploited Android Flaw Affecting Millions of Devices https://securityaffairs.com/193057/breaking-news/google-patches-actively-exploited-android-flaw-affecting-millions-of-devices.html - Instagram Account Hijacks Expose the Security Risks of AI-Powered Support https://securityaffairs.com/193034/hacking/instagram-account-hijacks-expose-the-security-risks-of-ai-powered-support.html - 'HTTP/2 Bomb' Exploit Knocks Web Servers Offline in Seconds https://www.securityweek.com/http-2-bomb-exploit-knocks-web-servers-offline-in-seconds/ - Exclusive: How One Line of Code Put Billions of Microsoft Android App Downloads at Risk https://www.securityweek.com/exclusive-how-one-line-of-code-put-billions-of-microsoft-android-app-downloads-at-risk/ - Ransomware Attacks Surge 30% in 2026 as...
Cyber Daily News for June 2, 2026
Cyber Daily News for June 2, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Meta AI Hands Over High-Profile Instagram Accounts to Hackers https://www.securityweek.com/meta-ai-hands-over-high-profile-instagram-accounts-to-hackers/ - Attackers Hijack Red Hat npm Scope to Steal Cloud Secrets (Miasma / Mini Shai-Hulud) https://thecyberexpress.com/miasma-shai-hulud-supply-chain-attack/ - Critical Windows Netlogon Vulnerability in Attackers' Crosshairs https://www.securityweek.com/critical-windows-netlogon-vulnerability-in-attackers-crosshairs/ - Dutch Police Dismantle Massive 17-Million-Device Botnet https://www.securityweek.com/dutch-police-dismantle-massive-17-million-device-botnet/ - Threat Actor Uses AI to Build EDR Evasion Tools https://www.infosecurity-magazine.com/news/ai-edr-evasion-tooling/ - GoDaddy...
Cyber Daily News for June 1, 2026
Cyber Daily News for June 1, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - CIFSwitch, a Linux Root Bug Hidden in Plain Sight for 19 Years https://securityaffairs.com/192959/security/a-spacex-security-engineer-used-ai-to-find-a-19-year-old-linux-bug-that-gives-attackers-root.html - Palo Alto Networks PAN-OS Auth Bypass Actively Exploited, Added to CISA KEV https://securityaffairs.com/192951/security/u-s-cisa-adds-palo-alto-networks-pan-os-flaw-to-its-known-exploited-vulnerabilities-catalog.html - The Pentagon Finally Admits That Location Data Is a Battlefield Problem https://securityaffairs.com/192942/cyber-warfare-2/the-pentagon-finally-admits-that-location-data-is-a-battlefield-problem.html - Attackers Abuse Shared Content for ChatGPT Phishing Campaign https://www.infosecurity-magazine.com/news/attackers-shared-content-chatgpt/ - TrapDoor Crypto Stealer Supply Chain...
Cyber Daily News for May 31, 2026
Cyber Daily News for May 31, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - ShinyHunters Leaks Charter Communications Data, Potentially Impacting 5 Million Customers https://securityaffairs.com/192907/uncategorized/shinyhunters-leaks-charter-communications-data-potentially-impacting-5-million-customers.html - Russian Spies Are Aggressively Seeking Western Technology as Sanctions Bite, Officials Say https://www.securityweek.com/russian-spies-are-aggressively-seeking-western-technology-as-sanctions-bite-officials-say/ - Exploit Code Published for Critical Flowise RCE Vulnerability https://www.securityweek.com/exploit-code-published-for-critical-flowise-rce-vulnerability/
Cyber Daily News for May 30, 2026
Cyber Daily News for May 30, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Botnet of 17 Million Devices Dismantled in the Netherlands https://securityaffairs.com/192890/malware/botnet-of-17-million-devices-dismantled-in-the-netherlands.html - Signal Phishing Campaign Targets Journalists and Activists to Steal Backup Recovery Keys https://securityaffairs.com/192899/security/signal-phishing-campaign-targets-journalists-and-activists-to-steal-backup-recovery-keys.html - Charter Communications Data Breach Could Impact Nearly 5 Million https://www.securityweek.com/charter-communications-data-breach-could-impact-nearly-5-million/ - Silent Ransom Group Uses In-Person IT Impersonation to Breach Systems https://www.infosecurity-magazine.com/news/silent-ransom-group-it/ - Meet GREYVIBE, the Russia-Linked Hacking Group Using AI to...
Cyber Daily News for May 29, 2026
Cyber Daily News for May 29, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Carnival Data Breach Exposes Personal Data of Nearly 6 Million Customers https://securityaffairs.com/192833/uncategorized/carnival-data-breach-exposes-personal-data-of-nearly-6-million-customers.html - CVE-2026-35616: FortiClient EMS Flaw Actively Exploited in Malware Attacks https://securityaffairs.com/192817/malware/cve-2026-35616-forticlient-ems-flaw-actively-exploited-in-malware-attacks.html - Chinese Hackers Exploit Iran War to Target Maritime and Energy Companies https://www.infosecurity-magazine.com/news/chinese-hackers-exploit-iran-war/ - Iranian Hackers Linked to Cyberattack on Los Angeles Transit Network https://thecyberexpress.com/la-public-transport-cyberattack/ - Chrome 148 Update Patches 151 Vulnerabilities https://www...
Cyber Daily News for May 28, 2026
Cyber Daily News for May 28, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - 19.6 Billion Files Are Sitting Open on the Internet. No Password Required https://securityaffairs.com/192787/security/19-6-billion-files-are-sitting-open-on-the-internet-no-password-required.html - U.S. CISA adds LiteSpeed cPanel Plugin flaw to its Known Exploited Vulnerabilities catalog https://securityaffairs.com/192795/hacking/u-s-cisa-adds-litespeed-cpanel-plugin-flaw-to-its-known-exploited-vulnerabilities-catalog.html - CrowdStrike, Google Take Down Glassworm Botnet https://www.infosecurity-magazine.com/news/crowdstrike-google-takedown/ - The LA Metro Attack Wasn't Hacktivism. It Was a State Operation With a Costume On. https://securityaffairs.com/192764/hacktivism/the-la-metro-attack-wasnt-hacktivism-it-was-a-state-operation-with-a-costume-on.html - GCHQ...
Cyber Daily News for May 27, 2026
Cyber Daily News for May 27, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - FBI: Hackers Sending Operatives in Person to Insert USB Drives and Steal Data https://www.securityweek.com/fbi-hackers-sending-operatives-in-person-to-insert-usb-drives-and-steal-data/ - Microsoft SharePoint Has a New RCE Flaw https://securityaffairs.com/192730/security/microsoft-sharepoint-has-a-new-rce-flaw-if-you-havent-patched-yet-go-do-that.html - SymJack Attack Turns AI Coding Agents Into Supply Chain Attack Delivery Systems https://www.securityweek.com/symjack-attack-turns-ai-coding-agents-into-supply-chain-attack-delivery-systems/ - LA Metro Cyberattack Linked to Iranian State-Sponsored Hackers https://www.securityweek.com/la-metro-cyberattack-linked-to-iranian-state-sponsored-hackers/ - CISA Urges Immediate Patching of Exploited LiteSpeed cPanel Plugin Zero-Day https...
Cyber Daily News for May 26, 2026
Cyber Daily News for May 26, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Megalodon Supply Chain Attack Hits 5,500+ GitHub Repositories in Six Hours https://thecyberexpress.com/megalodon-github-supply-chain-attack/ - Iran-Linked Hackers Target US Aviation with Phishing and SEO Poisoning Campaign https://www.infosecurity-magazine.com/news/iranian-hackers-us-aviation/ - Lazarus APT unveils fileless remote access Trojan designed to evade detection https://securityaffairs.com/192666/apt/lazarus-apt-unveils-fileless-remote-access-trojan-designed-to-evade-detection.html - Ghost CMS flaw abused to push ClickFix attacks on hundreds of sites https://securityaffairs.com/192655/cyber-crime/ghost-cms-flaw-abused-to-push-clickfix-attacks-on-hundreds-of-sites.html - Admins of Bulletproof Hosting Service Used...
Cyber Daily News for May 26, 2026
Cyber Daily News for May 26, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Megalodon Supply Chain Attack Hits 5,500+ GitHub Repositories in Six Hours https://thecyberexpress.com/megalodon-github-supply-chain-attack/ - Ghost CMS Vulnerability Exploited to Hack Over 700 Websites https://www.securityweek.com/ghost-cms-vulnerability-exploited-to-hack-over-700-websites/ - Lazarus APT unveils fileless remote access Trojan designed to evade detection https://securityaffairs.com/192666/apt/lazarus-apt-unveils-fileless-remote-access-trojan-designed-to-evade-detection.html - Nimbus Manticore Expanded Attacks With AI-Assisted Malware and Fake Zoom Installers https://securityaffairs.com/192689/apt/nimbus-manticore-expanded-attacks-with-ai-assisted-malware-and-fake-zoom-installers.html - India's CERT-In Sets 12-Hour Patch Deadline for Exposed Flaws https...
Cyber Daily News for May 25, 2026
Cyber Daily News for May 25, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - FBI Warns 'Kali365' Phishing Kit Hijacks Microsoft 365 OAuth Tokens https://thecyberexpress.com/kali365-phishing-kit-hijacks-microsoft-365/ - Over 5,500 GitHub Repositories Infected in 'Megalodon' Supply Chain Attack https://www.securityweek.com/over-5500-github-repositories-infected-in-megalodon-supply-chain-attack/ - Dutch authorities dismantle hosting network allegedly used for cyberattacks and disinformation https://securityaffairs.com/192602/intelligence/dutch-authorities-dismantle-hosting-network-allegedly-used-for-cyberattacks-and-disinformation.html - FBI director Kash Patel's brand website taken offline after malware reports https://securityaffairs.com/192613/security/fbi-director-kash-patels-brand-website-taken-offline-after-malware-reports.html - Anthropic: Mythos Detected 23,000 Potential Vulnerabilities Across 1,000 OSS Projects ...
Cyber Daily News for May 24, 2026
Cyber Daily News for May 24, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Anthropic’s Project Glasswing: 10,000+ Vulnerabilities Found in One Month, and the Patching Problem Has Never Been More Obvious https://securityaffairs.com/192576/ai/anthropics-glasswing-10000-vulnerabilities-found-in-one-month-and-the-patching-problem-has-never-been-more-obvious.html - CVE-2026-9082: Drupal’s Highly Critical SQL Injection Flaw Is Already Under Active Attack https://securityaffairs.com/192557/security/cve-2026-9082-drupals-highly-critical-sql-injection-flaw-is-already-under-active-attack.html - U.S. CISA adds a flaw in Drupal Core to its Known Exploited Vulnerabilities catalog https://securityaffairs.com/192566/uncategorized/u-s-cisa-adds-a-flaw-in-drupal-core-to-its-known-exploited-vulnerabilities-catalog.html - Why pure extortion is replacing trad...
Cyber Daily News for May 23, 2026
Cyber Daily News for May 23, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Ghostwriter Is Back, Using a Ukrainian Learning Platform as Bait to Hit Government Targets https://securityaffairs.com/192538/apt/ghostwriter-is-back-using-a-ukrainian-learning-platform-as-bait-to-hit-government-targets.html - 'Underminr' Vulnerability Lets Attackers Hide Malicious Connections Behind Trusted Domains https://www.securityweek.com/underminr-vulnerability-lets-attackers-hide-malicious-connections-behind-trusted-domains/ - Drupal Vulnerability in Hacker Crosshairs Shortly After Disclosure https://www.securityweek.com/drupal-vulnerability-in-hacker-crosshairs-shortly-after-disclosure/ - Authorities arrest 23-year-old accused of running the Kimwolf botnet https://securityaffairs.com/192533/cyber-crime/authorities-arrest-23-year-old-accused-of-running-the-kimwolf-botnet.html - In Other News: Industrial Router Exploitation, CISA KEV...
Cyber Daily News for May 22, 2026
Cyber Daily News for May 22, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - 'First VPN' Cybercrime Service Disrupted, Administrator Arrested https://www.securityweek.com/first-vpn-cybercrime-service-disrupted-administrator-arrested/ - Cisco fixed maximum severity flaw CVE-2026-20223 in Secure Workload https://securityaffairs.com/192473/security/cisco-fixed-maximum-severity-flaw-cve-2026-20223-in-secure-workload.html - Grafana Says Codebase and Other Data Stolen via TanStack Supply Chain Attack https://www.securityweek.com/grafana-says-codebase-and-other-data-stolen-via-tanstack-supply-chain-attack/ - GitHub Breach Traced to Malicious 'Nx Console' VS Code Extension https://www.infosecurity-magazine.com/news/github-breach-nx-console-vs-code/ - Vulnerability Exploitation Overtakes Stolen Credentials in AI-Driven Cyberattacks https...
Cyber Daily News for May 21, 2026
Cyber Daily News for May 21, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - GitHub Confirms Cyberattack Targeting Thousands of Internal Repositories https://thecyberexpress.com/github-cyberattack-teampcp/ - Drupal Patches Highly Critical Vulnerability Exposing Websites to Hacking https://www.securityweek.com/drupal-patches-highly-critical-vulnerability-exposing-websites-to-hacking/ - Mini Shai-Hulud Hits Hundreds of npm Packages in AntV Ecosystem https://www.infosecurity-magazine.com/news/antv-npm-mini-shai-hulud-largest/ - Microsoft Patches Exploited UnDefend and RedSun Defender Zero-Days https://www.securityweek.com/microsoft-patches-exploited-undefend-and-redsun-defender-zero-days/ - Microsoft Rolls Out Mitigations for YellowKey BitLocker Bypass https://www.securityweek.com/microsoft-rolls-out-mitigations-for-yellowkey-bitlocker-bypass/ - Discord adds end-to-end...
Cyber Daily News for May 20, 2026
Cyber Daily News for May 20, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - GitHub Confirms Hack Impacting 3,800 Internal Repositories https://www.securityweek.com/github-confirms-hack-impacting-3800-internal-repositories/ - Verizon DBIR 2026: Vulnerability Exploitation Overtakes Credential Theft as Top Breach Vector https://www.securityweek.com/verizon-dbir-2026-vulnerability-exploitation-overtakes-credential-theft-as-top-breach-vector/ - Drupal to Patch Highly Critical Vulnerability at Risk of Quick Exploitation https://www.securityweek.com/drupal-to-patch-highly-critical-vulnerability-at-risk-of-quick-exploitation/ - Microsoft Disrupts Malware-Signing Service Run by Fox Tempest https://www.securityweek.com/microsoft-disrupts-malware-signing-service-run-by-fox-tempest/ - Alleged Huawei zero-day blamed for the 2025 Luxembourg telecom crash https://securityaffairs.com/192431/hacking/alleged-huawei-zero-day-blamed-for-the-2025...
Cyber Daily News for May 19, 2026
Cyber Daily News for May 19, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Grafana Labs Confirms Hackers Stole Source Code https://securityaffairs.com/192347/breaking-news/grafana-confirms-github-token-breach-cybercrime-group-claims-the-attack.html - Shai-Hulud worm copycats emerge after source code leak https://securityaffairs.com/192366/malware/shai-hulud-worm-copycats-emerge-after-source-code-leak.html - Poland shifts away from Signal following cyberattacks on officials' accounts https://securityaffairs.com/192381/intelligence/poland-shifts-away-from-signal-following-cyberattacks-on-officials-accounts.html - ShinyHunters hack 7-Eleven: franchisee data and Salesforce records exposed https://securityaffairs.com/192336/data-breach/shinyhunters-hack-7-eleven-franchisee-data-and-salesforce-records-exposed.html - Critical NGINX Vulnerability CVE-2026-42945 Now Under Active Attack https://thecyberexpress.com/nginx-rift-cve-2026...
Cyber Daily News for May 18, 2026
Cyber Daily News for May 18, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Researcher Drops MiniPlasma Windows Exploit for Unpatched 2020 CVE https://www.securityweek.com/researcher-drops-miniplasma-windows-exploit-for-unpatched-2020-cve/ - Exploitation of Critical NGINX Vulnerability Begins https://www.securityweek.com/exploitation-of-critical-nginx-vulnerability-begins/ - Grafana Confirms Breach After Hackers Claim They Stole Data https://www.securityweek.com/grafana-confirms-breach-after-hackers-claim-they-stole-data/ - Hackers Earn $1.3 Million at Pwn2Own Berlin 2026 https://www.securityweek.com/hackers-earn-1-3-million-at-pwn2own-berlin-2026/ - First Shai-Hulud Worm Clones Emerge https://www.securityweek.com/first-shai-hulud-worm-clones-emerge/ - Attackers exploit Funnel Builder bug to inject...
Cyber Daily News for May 17, 2026
Cyber Daily News for May 17, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Pwn2Own Berlin 2026, Day Three: DEVCORE Crowned Master of Pwn, $1.298 Million Total https://securityaffairs.com/192250/hacking/pwn2own-berlin-2026-day-three-devcore-crowned-master-of-pwn-1-298-million-total.html - U.S. CISA adds a flaw in Microsoft Exchange Server to its Known Exploited Vulnerabilities catalog https://securityaffairs.com/192240/hacking/u-s-cisa-adds-a-flaw-in-microsoft-exchange-server-to-its-known-exploited-vulnerabilities-catalog.html - Russian APT Turla builds long-term access tool with Kazuar Botnet evolution https://securityaffairs.com/192231/apt/russian-apt-turla-builds-long-term-access-tool-with-kazuar-botnet-evolution.html
Cyber Daily News for May 16, 2026
Cyber Daily News for May 16, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - CVE-2026-42897: Microsoft confirms active exploitation of Exchange Server zero-day https://securityaffairs.com/192204/security/cve-2026-42897-microsoft-confirms-active-exploitation-of-exchange-server-zero-day.html - OpenAI hit by supply chain attack linked to malicious TanStack packages https://securityaffairs.com/192222/hacking/openai-hit-by-supply-chain-attack-linked-to-malicious-tanstack-packages.html - Pwn2Own Berlin 2026, Day Two: $385,750 more, Microsoft Exchange falls, and the running total crosses $900K https://securityaffairs.com/192209/security/pwn2own-berlin-2026-day-two-385750-more-microsoft-exchange-falls-and-the-running-total-crosses-900k.html - PoC Code Published for Critical NGINX Vulnerability https://www.securityweek.com/poc-code-published-for-critical-nginx-vulnerability/ ...
Cyber Daily News for May 15, 2026
Cyber Daily News for May 15, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - NGINX Rift: an 18-year-old flaw in the world's most deployed web server just came to light https://securityaffairs.com/192132/hacking/nginx-rift-an-18-year-old-flaw-in-the-worlds-most-deployed-web-server-just-came-to-light.html - OpenAI Confirms Limited Impact From TanStack npm Supply Chain Attack, Urges macOS App Updates https://thecyberexpress.com/tanstack-npm-supply-chain-attack/ - Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026 https://www.securityweek.com/cisco-patches-another-sd-wan-zero-day-the-sixth-exploited-in-2026/ - New Fragnesia Flaw Hands Linux Local Users Root Access https://www.infosecurity-magazine.com/news/fragnesia-linux-kernel-lpe-root/ - Researchers uncover...
Cyber Daily News for May 14, 2026
Cyber Daily News for May 14, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Microsoft Patch Tuesday for May 2026 fix 138 bugs, some of them are alarming https://securityaffairs.com/192086/uncategorized/microsoft-patch-tuesday-for-may-2026-fix-138-bugs-some-of-them-are-alarming.html - Quest KACE SMA flaw CVE-2025-32975: when one unpatched tool opens the door to 60 organizations https://securityaffairs.com/192067/security/quest-kace-sma-flaw-cve-2025-32975-when-one-unpatched-tool-opens-the-door-to-60-organizations.html - Foxconn Confirms North American Factories Hit by Cyberattack https://www.securityweek.com/foxconn-confirms-north-american-factories-hit-by-cyberattack/ - Exim BDAT Vulnerability Exposes Email Servers to Remote Attacks https://thecyberexpress.com/exim-bdat-vulnerability-cve-2026-45185/ - OpenLoop...
Cyber Daily News for May 13, 2026
Cyber Daily News for May 13, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Microsoft Patches Critical Zero-Click Outlook Vulnerability Threatening Enterprises https://www.securityweek.com/microsoft-patches-critical-zero-click-outlook-vulnerability-threatening-enterprises/ - Microsoft Patches 137 Vulnerabilities in May Patch Tuesday https://www.securityweek.com/microsoft-patches-137-vulnerabilities/ - Critical Fortinet vulnerabilities fixed in FortiSandbox and FortiAuthenticator https://securityaffairs.com/192047/security/critical-fortinet-vulnerabilities-fixed-in-fortisandbox-and-fortiauthenticator.html - Mini Shai-Hulud Hits TanStack npm Packages https://www.infosecurity-magazine.com/news/mini-shai-hulud-tanstack-npm/ - Hundreds of Malicious Packages Force RubyGems to Suspend Registrations https://www.securityweek.com/hundreds-of-malicious-packages-force-rubygems-to-suspend-registrations/ - Hackers accessed BWH Hotels reservation...
Cyber Daily News for May 12, 2026
Cyber Daily News for May 12, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - Google Detects First AI-Generated Zero-Day Exploit https://www.securityweek.com/google-detects-first-ai-generated-zero-day-exploit/ - TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack https://www.securityweek.com/tanstack-mistral-ai-uipath-hit-in-fresh-supply-chain-attack/ - WannaCry, the ransomware attack that changed the history of cybersecurity https://securityaffairs.com/192015/malware/wannacry-the-ransomware-attack-that-changed-the-history-of-cybersecurity.html - Rushed Patches Follow Broken Embargo on New Linux Kernel Vulnerabilities https://www.infosecurity-magazine.com/news/dirty-frag-linux-kernel/ - Identity security firm SailPoint discloses GitHub repository breach https://securityaffairs.com/191997/data-breach/identity-security-firm-sailpoint-discloses-github-repository-breach.html ...
Cyber Daily News for May 11, 2026
Cyber Daily News for May 11, 2026 Cyber Daily News is also available via podcast! https://feeds.transistor.fm/cyber-daily-news Stories mentioned in today's briefing: - ShinyHunters Escalates Canvas Extortion with School by School Ransom Campaign https://www.infosecurity-magazine.com/news/shinyhunters-escalates-canvas/ - New 'Dirty Frag' Linux Vulnerability Possibly Exploited in Attacks https://www.securityweek.com/new-dirty-frag-linux-vulnerability-possibly-exploited-in-attacks/ - Checkmarx Jenkins AST Plugin Compromised in Supply Chain Attack https://www.securityweek.com/checkmarx-jenkins-ast-plugin-compromised-in-supply-chain-attack/ - Zara Data Breach Impacts Nearly 200,000 Customers https://www.infosecurity-magazine.com/news/zara-data-breach-impacts-200000/ - Official JDownloader site served malware to Windows and Linux users between May 6 and May 7 https://securityaffairs...
