4h ago
Checkmarx Confirms Data Stolen in Supply Chain Attack
Checkmarx confirms data stolen in a supply chain attack, exposing DevSecOps tools to compromise and exfiltration risks.
••
Cyber Threat Pulse
Created by Elhanan Abrams
48‑hour breach, ransomware, zero‑day intel for critical infrastructure and government
Digest Calendar
April 2026Sun
Mon
Tue
Wed
Thu
Fri
Sat
Recent Posts
Explore the latest content tracked by Cyber Threat Pulse
4h ago
Virginia Health Services Potential Breach: WorldLeaks Claims 227K PII Records
Healthcare breach alert: Virginia Health Services (senior living/elder care in SE Virginia) hit by reported incident, unconfirmed by company.
-...
4h ago
ShinyHunters Breaches Vimeo via Anodot Vendor
Supply chain alert: ShinyHunters stole Vimeo customer data from Snowflake/BigQuery instances using Anodot's compromised auth tokens.
- Exposed data:...
4h ago
CISA Adds Actively Exploited ConnectWise & Windows Flaws to KEV: Patch Now
Urgent for incident response: CISA has added actively exploited vulnerabilities in ConnectWise and Windows to its KEV catalog. Patch immediately to block exploitation targeting enterprises.
4h ago
Handala Leaks 2,300+ US Troops' Data Amid Iran Cyber Escalation
Natsec alert: Iran-linked Handala Hack claims breach of 2,300+ US service members' data—identities, locations, activities of naval personnel in...
13h ago
7 Critical Defenses to Secure Zero-Day AI Bug Hunters
Zero-Day AI accelerates bug discovery for defenders and attackers, compressing cycles to hours. Govern to stay ahead:
- Limit access: Control model...
13h ago
CISA Mandates Patch for Exploited Windows Zero-Day CVE-2026-32202
Urgent federal action on zero-click NTLM flaw (CVE-2026-32202) left after incomplete Patch Tuesday fix for CVE-2026-21510.
- KEV Catalog addition:...
14h ago
Cyber Threat Pulse · Apr 29 Daily Digest
Healthcare Cyber Incidents
- 🔥 Medtronic IT Attack Contained: Medtronic contained a cyberattack on its corporate IT systems with no impact on...
1d ago
Quick Hits: Udemy Breach, Gemini RCE, Firefox Flaw, RansomHouse Vendor, Cisco/SonicWall Exploits
Patch priority alerts for IR teams:
- Udemy Breach: 1.4M users' personal/financial data dumped after no ransom; change passwords, enable 2FA, monitor...
1d ago
Medtronic Halts Cyberattack, Highlights Med Device Sector Vulnerabilities
Medtronic contained a cyberattack on corporate IT systems last week, with no impact on products or patients.
Key defenses:
- Network segmentation...
1d ago
Handala Leaks 2,379 US Marines' Addresses in Iran-Linked Retaliation
Iran-backed Handala escalates cyber threats to US military:
- Leaked home addresses and identities of 2,379 Marines tied to alleged Iran Minab School...
1d ago
Cyber Threat Pulse · Apr 28 Daily Digest
Confirmed Breaches by ShinyHunters
- 🔥 Medtronic: Medtronic confirmed hackers accessed data in its corporate IT systems, with ShinyHunters...
1d ago
ShinyHunters Spree: Medtronic 9M Records, ADT 5.5M Exposed
ShinyHunters extortion trend escalates in healthcare/security sectors:
- Medtronic breach confirmed: 9M records and 4TB files exfiltrated from...
2d ago
Itron Breach Hits Energy and Water Critical Infrastructure
Critical infrastructure under fire:
- Energy and water management firm Itron hacked
- China-linked APT GopherWhisper targets governments
- Need to match AI-enabled nation-state threats architecturally
Vital watch for OT/SCADA in utilities amid escalation.
2d ago
Urgent: Incomplete Windows Patch Enables Zero-Click NTLM Theft
Critical flaw in Windows SmartScreen patch chain (CVE-2026-21510 → CVE-2026-32202) allows zero-click auth coercion via auto-parsed LNK files.
-...
2d ago
Claude Mythos: AI Autonomously Weaponizes 17-Year FreeBSD Zero-Day
AI vuln discovery asymmetry strikes: Anthropic researcher inputs one simple prompt, wakes to full root exploit for CVE-2026-4747—a FreeBSD bug hidden...
2d ago
Cyber Threat Pulse · Apr 27 Daily Digest
Confirmed Data Breaches
- 🔥 ADT Customer Data Exposure: ADT confirmed unauthorized access on April 20, 2026, exposing names, phone numbers,...
2d ago
Mythos AI Exposes Zero-Days as $25B Cloud Surge Amplifies Critical Risks
Mythos revolutionizes vuln hunting: Anthropic's Claude Mythos Preview autonomously chains vulnerabilities, executes multi-stage attacks, and finds...
2d ago
ADT Breach: ShinyHunters Vishing Hits Security Giant, Exposing 10M+ Records
- ShinyHunters claim: Stole over 10 million ADT customer records—names, phones, addresses; some DOB and last-4 SSN—demanding ransom by April 27.
-...
2d ago
SafePay: Non-RaaS Ransomware Targets Healthcare, Mfg, Gov with 300+ Victims
Emerging threat telemetry for proactive defense:
- >300 victims worldwide since late 2024, spanning Healthcare Services, Manufacturing,...
