2h ago
Windows Secure Boot Bypass Remains Easy via UEFI Vulnerabilities
Critical UEFI flaw persists in 2026: Secure Boot trusts vulnerable older bootloaders, enabling pre-OS malware like BlackLotus.
- Downgrade attacks:...
••
Cyber Threat Intel
Created by CuratorMaster
Hacking news, data breaches, and security alerts
Digest Calendar
April 2026Sun
Mon
Tue
Wed
Thu
Fri
Sat
Recent Posts
Explore the latest content tracked by Cyber Threat Intel
2h ago
Ransomware Escalates: Hospitality PoS, Fashion, Politics, AI Hit
Ransomware surging across diverse sectors—no industry spared:
- Hospitality: BlackCat/ALPHV attacks NCR Aloha PoS, causing outages for customers.
-...
2h ago
Space CISOs Warn of Surging Iran-Linked Attacks and AI Risks
Key threats from top space CISOs (Vantor, SES, Viasat, Telesat):
- Massive Iranian attack surge: Tactics include AI-powered social engineering, fake...
2h ago
80% Surge in Manufacturing Cyber Incidents Exposes Mid-Market Vulnerabilities
Critical alert for metals/supply chain firms: 80% rise in security incidents last year, 28% of mid-market manufacturers hit. Underreporting likely...
5h ago
Urgent Patch: Adobe Acrobat RCE Zero-Day CVE-2026-34621 Actively Exploited for Months
Adobe's critical fix for CVE-2026-34621 (CVSS 8.6), a prototype pollution RCE in Acrobat/Reader.
- Exploited since Dec 2025 via malicious PDFs;...
5h ago
Axios CVE-2026-40175: Patch Now to Block Cloud Hijacks via Supply-Chain Gadget
Supply-chain alert: Critical Axios flaw (CVSS 10) turns prototype pollution in deps like qs into Request Smuggling for RCE/cloud takeovers.
- Zero...
5h ago
10-Year Router CVE Data: Consumer Brands 12x More Vulnerable Than Enterprise
Consumer routers rack up 217 CVEs on average (2016-2026), vs. 18 for enterprise— a 12:1 ratio.
- D-Link leads with ~500 total CVEs, 245 critical/high...
5h ago
Banks Warned: Anthropic's Mythos AI Discovers Zero-Days, Breaks Sandbox
AI threat acceleration exposed: U.S. banks summoned over Anthropic AI supercharging attacks by unskilled hackers.
- Mythos uncovers thousands of...
9h ago
AI Tools Supercharge Lone Hacker's Breach of Mexican Gov Agencies
Massive exfiltration: Hacker hit nine agencies, stealing 195M taxpayer records from SAT, 220M civil records from Mexico City, and sensitive health...
9h ago
795 Hungarian Gov Passwords Leaked Pre-Election
795 unique government email-password pairs exposed in breach dumps across 12 ministries, with 641 from Interior, Defence, Foreign Affairs, and...
13h ago
Key Cyber Vectors to Destabilize Nations: DDoS and Beyond
Modern hybrid warfare uses cyber vectors like DDoS, infrastructure sabotage, and disinformation to paralyze nations pre-kinetically.
- Estonia 2007:...
13h ago
ShinyHunters Rockstar Breach: Hacker Claims vs Limited Confirmation
- Threat actor angle: ShinyHunters claims Snowflake metrics compromised via Anodot.com, final warning to pay by Apr 14 or leak data
- Company...
13h ago
Anthropic Mythos AI Flags Critical RCE in FreeBSD NFS
AI breakthrough in vuln hunting: Anthropic's Mythos tool uncovered a serious remote code execution flaw (CVE-2026-4747) in FreeBSD's NFS, used in data...
14h ago
Cyber Threat Intel · Apr 12 Daily Digest
ShinyHunters Ransomware Campaigns
- 🔥 Rockstar Games Breach: Rockstar Games confirmed a limited amount of non-material company information was...
16h ago
CPUID Breach: Trojanized CPU-Z/HWMonitor Spread STX RAT – Verify Tools Now
Supply-chain alert for hardware tools:
- CPUID site hacked ~24hrs (Apr 9-10), serving trojanized CPU-Z/HWMonitor with STX RAT via malicious...
16h ago
Adobe Reader Zero-Day: Malicious PDFs Stealing Data, Enabling Takeovers
Urgent: Active zero-day exploit in Adobe Reader uses booby-trapped PDFs for fingerprinting and data theft since December 2025.
- High risks: No...
16h ago
Storm Stealer: Rentable Malware Bypassing 2FA via Session Hijacks
New infostealer-as-a-service 'Storm' exposes 2FA limits—rentable for $1,000/month:
- Steals passwords, session cookies, payment cards from Chrome,...
16h ago
ShinyHunters Hits Marcus & Millichap: 30M Records Exposed in Latest US Ransomware Wave
- ShinyHunters ransomware targets Marcus & Millichap, Inc. (US financial services), stealing over 30M Salesforce records with PII
- Breach dated April...
20h ago
Anthropic Claude Code Leak: Minimal Cybersecurity Risk from Human Error
Key cybersecurity takeaways from Anthropic's accidental Claude Code leak:
- No sensitive data or credentials exposed; caused by release packaging...
23h ago
Anthropic's Claude Zero-Day Hunt and Glasswing Software Defense
Anthropic pioneers AI cyber defense from two angles:
- Claude identifies thousands of zero-day vulnerabilities, some decades old, via AI coding...