Critical Alert 1 Active Exploit Detected Today

CVE-2026-9082 — Drupal Core SQL Injection Vulnerability →

Powered by CVE Watchtower

×

Mandiant

Google Confirms First AI-Generated Zero-Day Exploit Found in the Wild AI-Built Zero-Day Exploit Google Threat Intelligence Report 2026

AI-Built Zero-Day Exploit Google Threat Intelligence Report 2026

Google Confirms First AI-Generated Zero-Day Exploit Found in the Wild

Ddos May 12, 2026

Ghosts in the Hypervisor: Mandiant Exposes the 400-Day vSphere Takeover Hypervisor Persistence vSphere Security

Hypervisor Persistence vSphere Security

Ghosts in the Hypervisor: Mandiant Exposes the 400-Day vSphere Takeover

Ddos April 9, 2026

The $32 Billion Fortress: Google Completes Historic Wiz Acquisition to Solve the “AI-Native” Risk Google Wiz acquisition 2026

Google Wiz acquisition 2026

The $32 Billion Fortress: Google Completes Historic Wiz Acquisition to Solve the “AI-Native” Risk

Ddos March 12, 2026

Google Dismantles UNC2814’s Global Espionage Network Fueled by Google Sheets UNC2814 Espionage GRIDTIDE Backdoor

UNC2814 Espionage GRIDTIDE Backdoor

Google Dismantles UNC2814’s Global Espionage Network Fueled by Google Sheets

Ddos March 2, 2026

Ghost NICs & Secret Knocks: Dell Zero-Day (CVSS 10) Exploited by UNC6201 Cisco FIRESTARTER Backdoor Arcane Door Campaign Dell RecoverPoint Zero-Day UNC6201 Espionage Notepad++ Compromise Supply Chain Attack Magento SessionReaper CVE-2025-54236 ShadowRay 2.0, AI-Generated Malware WordPress Auth Bypass, CVE-2025-5947 Exploited EcoStruxure Vulnerabilities, Industrial Control System UNC5820 - CVE-2014-2120 - CVE-2021-44207

Cisco FIRESTARTER Backdoor Arcane Door Campaign Dell RecoverPoint Zero-Day UNC6201 Espionage Notepad++ Compromise Supply Chain Attack Magento SessionReaper CVE-2025-54236 ShadowRay 2.0, AI-Generated Malware WordPress Auth Bypass, CVE-2025-5947 Exploited EcoStruxure Vulnerabilities, Industrial Control System UNC5820 - CVE-2014-2120 - CVE-2021-44207

Ghost NICs & Secret Knocks: Dell Zero-Day (CVSS 10) Exploited by UNC6201

Ddos February 18, 2026

Fake CEO, Real Hack: North Korea Uses AI Deepfakes to Steal Crypto UNC1069 Deepfake Attack Cryptocurrency Malware

UNC1069 Deepfake Attack Cryptocurrency Malware

Fake CEO, Real Hack: North Korea Uses AI Deepfakes to Steal Crypto

Ddos February 11, 2026

“IT Support” Imposters: ShinyHunters Vishing Rings Bypass MFA to Steal Data ShinyHunters Vishing Corporate Vishing Attacks

ShinyHunters Vishing Corporate Vishing Attacks

“IT Support” Imposters: ShinyHunters Vishing Rings Bypass MFA to Steal Data

Ddos February 4, 2026

Critical Triofox Zero-Day (CVE-2025-12480) Under Active Exploit: Host Header Bypass Allows Unauthenticated Admin Takeover Triofox Zero-Day, Host Header Bypass

Triofox Zero-Day, Host Header Bypass

Critical Triofox Zero-Day (CVE-2025-12480) Under Active Exploit: Host Header Bypass Allows Unauthenticated Admin Takeover

Ddos November 11, 2025

CL0P Extortion: Google/Mandiant Expose Zero-Day RCE in Oracle E-Business Suite (CVE-2025-61882)

Weaver E-cology RCE CVE-2026-22679 CVE-2026-20127 Cisco SD-WAN Exploitation AI-Driven Cyberattack ARXON Malware React Server Components Vulnerability CVE-2025-55182 FortiWeb Auth Bypass, Unauthenticated Admin Takeover RayInitiator Bootkit, LINE VIPER CVE-2025-59689 Department of the Treasury cybersecurity - CVE-2025-0108 PoC CVE-2025-31103 Dior Data Breach SK Telecom data breach, long-term intrusion

CL0P Extortion: Google/Mandiant Expose Zero-Day RCE in Oracle E-Business Suite (CVE-2025-61882)

Ddos October 10, 2025

CVE-2025-53690: Mandiant and Sitecore Warn of Active Exploitation in ASP.NET Machine Key Configurations

Cisco SD-WAN Vulnerability CVE-2026-20133 FortiGate Compromise Ivanti EPMM Zero-Day CVE-2026-1281 SmarterMail Vulnerability Storm-2603 WatchGuard Zero-Day, IKEv2 Out-of-Bounds Write Cisco Zero-Day, UAT-9686 Chinese APT FortiWeb RCE Exploitation CVE-2025-58034 VMware Zero-Day, Privilege Escalation Sitecore, remote code execution CVE-2025-53690 Windows CLFS, Privilege Escalation CVE-2024-47575 & CVE-2024-11120 CVE-2025-24983 vulnerability

CVE-2025-53690: Mandiant and Sitecore Warn of Active Exploitation in ASP.NET Machine Key Configurations

Ddos September 4, 2025

Mandiant Uncovers USB-Borne Malware Campaign Deploying Cryptocurrency Miners xmring

xmring

Mandiant Uncovers USB-Borne Malware Campaign Deploying Cryptocurrency Miners

Ddos August 21, 2025

Signal Phishing Alert: Sophisticated Campaign Targets Armenian Civil Society & Government Signal Phishing, Armenia Cyberattack

Signal Phishing, Armenia Cyberattack

Signal Phishing Alert: Sophisticated Campaign Targets Armenian Civil Society & Government

Ddos June 7, 2025

Scattered Spider (UNC3944) Resurfaces with Ties to DragonForce and RansomHub in Retail Attacks UNC3944, Scattered Spider

UNC3944, Scattered Spider

Scattered Spider (UNC3944) Resurfaces with Ties to DragonForce and RansomHub in Retail Attacks

Ddos May 7, 2025

Google Launches Unified Security Powered by Gemini AI, Enhances Enterprise Protection Google Unified Security Gemini AI Security

Google Unified Security Gemini AI Security

Google Launches Unified Security Powered by Gemini AI, Enhances Enterprise Protection

Ddos April 9, 2025