7h ago
Cyber Threat Digest · May 20, 2026
Exploit Releases
- 🔥 DirtyDecrypt PoC: Proof-of-concept exploit code has now been released for the recently patched Linux kernel CVE-2026-31635...
••
Cyber Threat Digest
Created by Elhanan S. Abrams
Latest vulnerability, exploit, and malware analysis for researchers and SOC professionals
Digest Calendar
May 2026Sun
Mon
Tue
Wed
Thu
Fri
Sat
Recent Posts
Explore the latest content tracked by Cyber Threat Digest
8h ago
VulnHub Basic Pentesting 1 Walkthrough: Recon to Privilege Escalation
This video delivers a concise, end-to-end demo of the VulnHub Basic Pentesting 1 lab, ideal for researchers sharpening practical skills.
-...
13h ago
Joe Slowik's Practical Takeaways for Threat Hunters
Joe Slowik shares frontline insights from Navy cyber ops and roles at MITRE, Dragos, and Dataminr.
- Detection engineering is now essential for modern...
13h ago
Patching Faster Falls Short: CTEM with FAIR Risk Analysis for SOCs
Traditional speed-focused patching misses the mark on effective vulnerability management. A new white paper delivers practical guidance for SOC teams...
13h ago
SOAP XXE Zero-Day Exposes Legacy Protocol Risks
SOAP quietly powers critical billing and document systems, creating blind spots for security teams that assume legacy protocols are no longer...
13h ago
CISO Spotlight: AI Agents as Growing Blind Spots
Infor CISO Mignona Cote's RSAC 2026 interview stresses that AI agents embedded in enterprise apps represent an expanding internal threat vector.
Key...
13h ago
Nightmare-Eclipse Campaign: Defender and BitLocker Zero-Day Risks
Grudge-driven actor Nightmare-Eclipse has released six Windows zero-days in six weeks, directly targeting Microsoft Defender and BitLocker with local...
13h ago
AI Ends Excuses for Unknown Vulnerabilities
AI-powered vulnerability scanning now removes any excuse for companies to claim ignorance of bugs in their products, according to ENISA's chief...
13h ago
AI as Friend or Foe: Calyam's Research Day Take
Dr. Prasad Calyam examines AI's dual-use role in cybersecurity as both defender asset and attacker tool during his 2026 Mizzou Engineering Research...
13h ago
SEPPMail Gateway RCE Exposes Enterprise Email
Critical flaws in the SEPPMail Secure E-Mail Gateway virtual appliance enable remote code execution and arbitrary mail access.
- Infrastructure risk:...
13h ago
Pwn2Own Berlin: 47 Zero-Days Uncovered via Trend Micro ZDI
Researchers disclosed 47 unique zero-days across AI databases, coding agents, browsers, and enterprise software at Pwn2Own Berlin, accelerating industry-wide remediation through Trend Micro's Zero Day Initiative.
18h ago
AI Supercharges 2026 Threat Landscape
AI is driving an explosion in vulnerabilities and attacker capabilities, forcing defenders back to fundamentals while adopting smarter automation.
-...
18h ago
Entra ID's 16-Year Backup Gap: Real Risks for SOC Teams
After 16 years without protection, Microsoft's new Entra Backup and Recovery is not full tenant DR or point-in-time recovery but a configuration drift...
18h ago
AntV npm Attack: 637 Malicious Versions in 22 Minutes
A compromised maintainer account enabled attackers to flood AntV and related packages with the Mini-Shai-Hulud worm.
- Campaign scale: 637 malicious...
18h ago
2026 AI Governance: 490% Attack Surge and Massive Visibility Gaps
AI governance programs are struggling as decentralized SaaS adoption outpaces visibility and controls.
- AI attacks jumped ~490% year over year,...
18h ago
Public PoC Released for Linux Kernel LPE Flaw CVE-2026-31635
A public PoC exploit called DirtyDecrypt has been released for the recently patched Linux kernel vulnerability CVE-2026-31635, enabling local...
22h ago
Bashlite Linux DDoS Sample Analysis
Automated analysis of the sparc.elf sample confirms Bashlite as a Linux malware family built to launch DDoS attacks. Researchers gain clear confirmation of its infection vector and botnet purpose for detection tuning.
22h ago
Mythos Timeline: From Cyber Weapon Fears to Wider Defense Sharing
Mythos Preview stunned UK evaluators in early 2026 by completing multi-step network attacks and ICS disruptions, prompting the first national approval...
22h ago
AntV npm Worm Evolves with Sigstore Forgery Amid New Defenses
A fresh Mini Shai-Hulud campaign hit the @antv namespace with 42 malicious npm packages, compromising dormant high-download packages via stolen tokens...
22h ago
From Rules to Autonomy: AI Reshapes Cyber Defense
Traditional rule-based defenses fall short against today's automated, intelligent attacks. Organizations are shifting to autonomous AI systems that...