Daily CyberSecurity • Zero-hour alerts. Unmatched analysis.

Cyble Uncovers a FIFA 2026 Fraud Ecosystem With Nearly 4,000 Fake Domains

FIFA 2026 fraud ecosystem mapped by Operation FanTrap with thousands of fake World Cup domains

Cybercriminals

Cyble Uncovers a FIFA 2026 Fraud Ecosystem With Nearly 4,000 Fake Domains

June 24, 2026

Hackers Abused Claude.ai Shared Chat in a ClickFix Malvertising Campaign

hacker-free

Cybercriminals

Hackers Abused Claude.ai Shared Chat in a ClickFix Malvertising Campaign

June 24, 2026

National Health Care Fraud Takedown Charges 455 Suspects

Diagram showing how cyber criminals use traffic distribution systems to redirect users to malicious websites.

Cybercriminals

National Health Care Fraud Takedown Charges 455 Suspects

June 24, 2026

GitBait Phishing Campaign Targets 12 Mexican Banks via GitHub Pages

GitBait phishing campaign abusing GitHub Pages and SheetBest API to steal Mexican banking credentials

Cybercriminals

GitBait Phishing Campaign Targets 12 Mexican Banks via GitHub Pages

June 23, 2026

Crypto Clipboard Hijacker Hides Behind Fake Stars and Upvotes

Check Point exposed a crypto clipboard hijacker spread by fake Ghost Networks. The Rust clipper swaps wallet addresses to steal crypto. Stay alert.

Malware

Crypto Clipboard Hijacker Hides Behind Fake Stars and Upvotes

June 24, 2026

SmartRAT ClickFix Campaign Identified

the-security

Malware

SmartRAT ClickFix Campaign Identified

June 24, 2026

macOS ClickFix AppleScript Stealer Hijacks Crypto Wallets

macOS ClickFix AppleScript stealer diagram showing the Meow macOS stealer infection chain

Malware

macOS ClickFix AppleScript Stealer Hijacks Crypto Wallets

June 23, 2026

Dropping Elephant Malware: China-Themed Loader Campaign Analyzed

Dropping Elephant malware China-themed loader and in-memory RAT diagram

Malware

Dropping Elephant Malware: China-Themed Loader Campaign Analyzed

June 23, 2026

LastPass Customer Data Stolen in Klue Supply Chain Breach

LastPass Klue breach OAuth token theft Salesforce supply chain attack

Data Leak

LastPass Customer Data Stolen in Klue Supply Chain Breach

June 23, 2026

Tata Electronics Data Breach Exposes Apple and Tesla Files

Tata Electronics data breach leaking Apple and Tesla component design and specification files on a dark web site

Data Leak

Tata Electronics Data Breach Exposes Apple and Tesla Files

June 23, 2026

Novo Nordisk Breach Exposes AI Models and Patient Data

Novo Nordisk data breach Novo Nordisk hack, AI training data theft, clinical trial data leak

Data Leak

Novo Nordisk Breach Exposes AI Models and Patient Data

June 16, 2026

Uncanny Automator Breach: Backdoored Plugin Build Hit WordPress Sites

Data Leak

Uncanny Automator Breach: Backdoored Plugin Build Hit WordPress Sites

June 15, 2026

Containerd Critical Vulnerabilities Expose Host Servers Diagram explaining containerd critical vulnerabilities including CVE-2026-53492 and cache poisoning

Diagram explaining containerd critical vulnerabilities including CVE-2026-53492 and cache poisoning

Containerd Critical Vulnerabilities Expose Host Servers

Do Son June 24, 2026

Webmin 2.641 Fixes Three Vulnerabilities Including a Critical Auth Bypass Webmin vulnerabilities authentication bypass CVE-2026-56020 patched in 2.641

Webmin vulnerabilities authentication bypass CVE-2026-56020 patched in 2.641

Webmin 2.641 Fixes Three Vulnerabilities Including a Critical Auth Bypass

Do Son June 24, 2026

Can You Trust Your Exchange? Inside BTCC’s Monthly Proof-of-Reserves Audit CVE-2024-55563 - transaction-relay jamming attack

CVE-2024-55563 - transaction-relay jamming attack

Can You Trust Your Exchange? Inside BTCC’s Monthly Proof-of-Reserves Audit

Do Son June 24, 2026

How Secure Virtual Assistants Improve Outbound Calling Workflows call

call

How Secure Virtual Assistants Improve Outbound Calling Workflows

Do Son June 24, 2026

Squidbleed (CVE-2026-47729): Squid Proxy Memory Leak Details and PoC Disclosed Squidbleed vulnerability CVE-2026-47729 Squid proxy memory leak diagram

Squidbleed vulnerability CVE-2026-47729 Squid proxy memory leak diagram

Squidbleed (CVE-2026-47729): Squid Proxy Memory Leak Details and PoC Disclosed

Do Son June 24, 2026

Top Train Ticket Booking App Development Companies in the USA tech-pass

tech-pass

Top Train Ticket Booking App Development Companies in the USA

Do Son June 24, 2026

CISA Adds Four Exploited UniFi OS and Lantronix Flaws to KEV Catalog CISA KEV catalog actively exploited vulnerabilities CVE-2026-34908 UniFi OS Lantronix EDS5000

CISA KEV catalog actively exploited vulnerabilities CVE-2026-34908 UniFi OS Lantronix EDS5000

CISA Adds Four Exploited UniFi OS and Lantronix Flaws to KEV Catalog

Do Son June 23, 2026

Internet Society Foundation Opens Global Call for Common Good Cyber Fund to Strengthen Cybersecurity  CGCF_Featured_image_17822196430bFkMKNfEs

CGCF_Featured_image_17822196430bFkMKNfEs

Internet Society Foundation Opens Global Call for Common Good Cyber Fund to Strengthen Cybersecurity 

cybernewswire June 23, 2026

AryStinger Malware Attacks Routers via CVE-2013-3307 AryStinger malware infection chain exploiting CVE-2013-3307

AryStinger malware infection chain exploiting CVE-2013-3307

AryStinger Malware Attacks Routers via CVE-2013-3307

Do Son June 23, 2026

Cloud DNS Takeover Powers Thai Gambling Campaign hacking

hacking

Cloud DNS Takeover Powers Thai Gambling Campaign

Do Son June 23, 2026

Android Developer Verification: Google Reveals the Full Timeline

Android developer verification timeline showing the September 30 2026 sideloading enforcement and 24-hour advanced flow

Android Developer Verification: Google Reveals the Full Timeline

Do Son June 23, 2026

iOS 27 Developer Beta 2 Adds Write with Siri and RCS Replies iOS 27 Developer Beta 2 new features including Write with Siri keyboard button and RCS inline replies

iOS 27 Developer Beta 2 new features including Write with Siri keyboard button and RCS inline replies

iOS 27 Developer Beta 2 Adds Write with Siri and RCS Replies

Do Son June 23, 2026

Resolving the Codex SSD Wear Issue Codex v0.142.0 update addressing the SSD wear issue and SQLite logging optimizations

Codex v0.142.0 update addressing the SSD wear issue and SQLite logging optimizations

Resolving the Codex SSD Wear Issue

Do Son June 23, 2026

Tinyproxy Request Smuggling Flaws Expose Networks Tinyproxy request smuggling diagram showing CVE-2026-54388 vulnerabilities

Tinyproxy request smuggling diagram showing CVE-2026-54388 vulnerabilities

Tinyproxy Request Smuggling Flaws Expose Networks

Do Son June 23, 2026

Critical libssh2 Vulnerability CVE-2026-55200 Enables Remote Code Execution

libssh2 vulnerability CVE-2026-55200 enabling remote code execution via out-of-bounds write

Critical libssh2 Vulnerability CVE-2026-55200 Enables Remote Code Execution

Do Son June 23, 2026

MariaDB Server Vulnerabilities Allow CVSS 10 Attacks

MariaDB server vulnerabilities diagram showing shell command execution risks

MariaDB Server Vulnerabilities Allow CVSS 10 Attacks

Do Son June 23, 2026

Mitel Patches 12 Critical MiCollab Vulnerabilities Rated Up to CVSS 10.0 Mitel MiCollab vulnerabilities MISA-2026-0005 command injection flaws rated CVSS 10.0

Mitel MiCollab vulnerabilities MISA-2026-0005 command injection flaws rated CVSS 10.0

Mitel Patches 12 Critical MiCollab Vulnerabilities Rated Up to CVSS 10.0

Do Son June 23, 2026

Vendor-Signed UEFI Applications Allow Secure Boot Bypass

vendor-signed UEFI applications Secure Boot bypass via BYOVD attack and UEFI DBX revocation

Vendor-Signed UEFI Applications Allow Secure Boot Bypass

Do Son June 23, 2026

HAProxy Vulnerabilities Expose Reverse-Proxy Servers HAProxy vulnerabilities diagram showing reverse-proxy security risks

HAProxy vulnerabilities diagram showing reverse-proxy security risks

HAProxy Vulnerabilities Expose Reverse-Proxy Servers

Do Son June 23, 2026

FBI Warns of Traffic Distribution Systems in Cyber Attacks Diagram showing how cyber criminals use traffic distribution systems to redirect users to malicious websites.

Diagram showing how cyber criminals use traffic distribution systems to redirect users to malicious websites.

FBI Warns of Traffic Distribution Systems in Cyber Attacks

Do Son June 22, 2026

Next Page ❯

🚨

Receive alerts for vulnerabilities being exploited in the wild.

⚡

Get notified instantly when a Proof of Concept (PoC) exploit is published.

🔍

Access critical info on vulnerabilities even when marked as "RESERVED".

🧠

Insights powered by decades of expertise and global intelligence sources.

🎯

Customize alerts with up to 10 keywords for your specific tech stack.

📊

Export the raw CVE database for SIEM integration and reporting.

CVE-2026-34908CVSS 10.0
A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi...
CVE-2026-34909CVSS 10.0
A malicious actor with access to the network could exploit a Path Traversal vulnerability found in UniFi OS...
CVE-2026-34910CVSS 10.0
A malicious actor with access to the network could exploit an Improper Input Validation vulnerability found in UniFi...
CVE-2025-67038CVSS 9.8
An issue was discovered in Lantronix EDS5000 2.1.0.0R3. The HTTP RPC module executes a shell command to write...
CVE-2024-23692CVSS 9.8
Rejetto HTTP File Server, up to and including version 2.3m, is vulnerable to a template injection vulnerability. This...
CVE-2026-20230CVSS 8.6
A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified...
CVE-2026-48907
A vulnerability in the JCE editor extension for Joomla allows the creation of new editor profiles for unauthenticated...
CVE-2026-20253CVSS 9.8
In Splunk Enterprise 10.2 versions below 10.2.4 and 10 versions below 10.0.7, an unauthenticated user could create or...
CVE-2026-4020CVSS 7.5
The Gravity SMTP plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and...
CVE-2026-20182CVSS 10.0
May 2026: This security advisory provides the details and fix information for a vulnerability that was discovered and...