Auto-aggregated from 12+ trusted sources, updated every 3 hours.
CISA has added CVE-2026-0001 to its Known Exploited Vulnerabilities Catalog. The vulnerability in PAN-OS allows unauthenticated remote code execution and is being actively exploited in the wild.
A new ransomware operation dubbed 'DarkVault' has been observed targeting healthcare organizations with a double-extortion model, threatening to leak patient data unless ransom demands are met.
Microsoft has released an emergency patch for a critical vulnerability in Azure Active Directory that could allow attackers to forge authentication tokens and gain unauthorized access to cloud resources.
Google Project Zero researchers have disclosed a zero-day vulnerability in the Chrome V8 JavaScript engine that was exploited in targeted attacks. The flaw allows arbitrary code execution through crafted web pages.
NIST has published SP 800-207 Rev. 2, providing updated guidance on implementing zero trust architectures in federal information systems, with new sections on AI-driven access control and continuous verification.
CrowdStrike's latest threat intelligence report reveals a 300% increase in AI-generated phishing campaigns that use large language models to craft highly convincing social engineering attacks at scale.