Cyber Threat Brief
By Carolina Clear Tech, LLC
Listen to a podcast, please open Podcast Republic app. Available on Google Play Store and Apple App Store.
Image by Carolina Clear Tech, LLC
Category: Technology
Open in Apple Podcasts
Open RSS feed
Open Website
Rate for this podcast
Subscribers: 0
Reviews: 0
Episodes: 90
Description
Your daily cybersecurity briefing. Vulnerabilities, ransomware, threat actors, and patches that matter, explained for IT professionals and business leaders protecting small and mid-sized organizations. From Carolina Clear Tech.
| Episode | Date |
|---|---|
|
2026-06-01: Critical WordPress plugin flaw under active exploitation allows unauthenticated admin account
|
Jun 01, 2026 |
|
2026-05-31: Palo Alto GlobalProtect VPN suffers active exploitation of an authentication bypass (CVE-2026-0257
|
May 31, 2026 |
|
2026-05-30: Palo Alto GlobalProtect bypass is now actively exploited with CISA adding CVE-2026-0257 to KEV
|
May 30, 2026 |
|
2026-05-29: Gogs zero-day enables remote code execution on 2,400+ Internet-exposed servers
|
May 29, 2026 |
|
2026-05-28: CISA added a critical LiteSpeed cPanel plugin flaw to the KEV catalog with a Friday midnight
|
May 28, 2026 |
|
2026-05-27: CISA adds exploited LiteSpeed cPanel plugin zero-day to KEV catalog with May 29 patch deadline
|
May 27, 2026 |
|
2026-05-26: Critical Alerts
|
May 26, 2026 |
|
2026-05-25: Supply chain attacks hit developer ecosystems with 34 malicious packages stealing credentials
|
May 25, 2026 |
|
2026-05-24: Multiple PHP package supply chain attacks hit Laravel and Composer ecosystems with cross-platform
|
May 24, 2026 |
|
2026-05-23: Drupal Core SQL injection (CVE-2026-9082) and Trend Micro Apex One directory traversal
|
May 23, 2026 |
|
2026-05-22: Microsoft patched two actively exploited Defender zero-days with CISA deadline June 3
|
May 22, 2026 |
|
2026-05-21: Microsoft patched two actively exploited Defender zero-days that CISA added to KEV with a June 3
|
May 21, 2026 |
|
2026-05-20: Microsoft faces a sixth zero-day disclosure in six weeks as researcher "Nightmare Eclipse" releases
|
May 20, 2026 |
|
2026-05-19: Microsoft Exchange zero-day CVE-2026-42897 is under active attack with no patch available
|
May 19, 2026 |
|
2026-05-18: Windows zero-day MiniPlasma grants SYSTEM privileges on fully patched systems with PoC released
|
May 18, 2026 |
|
2026-05-17: WordPress e-commerce stores face active skimmer attacks via unpatched Funnel Builder plugin
|
May 17, 2026 |
|
2026-05-16: Cisco drops its seventh SD-WAN zero-day in three months as attackers exploit a CVSS 10
|
May 16, 2026 |
|
2026-05-15: Cisco SD-WAN faces its sixth exploited zero-day of 2026 with CVE-2026-20182 granting attackers
|
May 15, 2026 |
|
2026-05-14: Microsoft patched 138 vulnerabilities including critical RCE flaws in DNS and Netlogon
|
May 14, 2026 |
|
2026-05-13: Microsoft ships 137 patches with no zero-days for the first time in two years
|
May 13, 2026 |
|
2026-05-12: Linux systems face a second privilege escalation exploit in two weeks with Dirty Frag working
|
May 12, 2026 |
|
2026-05-11: Google catches the first confirmed AI-developed zero-day before mass exploitation
|
May 11, 2026 |
|
2026-05-09: Palo Alto Networks is patching CVE-2026-0300, a critical zero-day in PAN-OS being actively
|
May 09, 2026 |
|
2026-05-08: Ivanti ships its third EPMM zero-day patch of 2026 (CVE-2026-6973, active exploitation confirmed)
|
May 08, 2026 |
|
2026-05-07: Iranian state-sponsored actors are masquerading ransomware attacks to hide espionage operations
|
May 07, 2026 |
|
2026-05-06: Palo Alto Networks firewalls face active zero-day exploitation targeting exposed authentication
|
May 06, 2026 |
|
2026-05-05: cPanel exploitation reaches thousands of servers with Mirai and ransomware payloads
|
May 05, 2026 |
|
2026-05-04: cPanel zero-day exploitation hits over 40,000 servers with CISA KEV deadline this week
|
May 04, 2026 |
|
2026-05-02: Linux kernel privilege escalation vulnerability CVE-2026-31431 hits CISA's KEV catalog with a May
|
May 02, 2026 |
|
2026-05-01: cPanel's CVE-2026-41940 authentication bypass is being actively exploited after months as a
|
May 01, 2026 |
|
2026-04-30: Microsoft's February patch for a Russian zero-day fell short
|
Apr 30, 2026 |
|
2026-04-29: CISA adds exploited ConnectWise and Windows flaws to KEV catalog
|
Apr 29, 2026 |
|
2026-04-28: Supply chain attacks accelerate with a 26-day pause ending in coordinated compromises across npm
|
Apr 28, 2026 |
|
2026-04-27: Firefox and Tor Browser patched a tracking vulnerability that defeats anonymity features
|
Apr 27, 2026 |
|
2026-04-26: UNC6692 deploys custom "Snow" malware suite via Microsoft Teams social engineering
|
Apr 26, 2026 |
|
2026-04-25: CISA warns federal agencies that Cisco Firestarter backdoor survives patches and firmware updates
|
Apr 25, 2026 |
|
2026-04-24: CISA orders federal agencies to patch Microsoft Defender BlueHammer zero-day within two weeks
|
Apr 24, 2026 |
|
2026-04-23: Microsoft Defender zero-day (CVE-2026-33825) added to CISA KEV allows NTLM hash extraction and
|
Apr 23, 2026 |
|
2026-04-22: CISA added four Cisco SD-WAN flaws to its KEV catalog with a Friday patch deadline
|
Apr 22, 2026 |
|
2026-04-21: CISA added eight exploited vulnerabilities to its KEV catalog with federal patch deadlines ranging
|
Apr 21, 2026 |
|
2026-04-20: Microsoft pushes emergency updates to stop Windows Server domain controllers from crashing in
|
Apr 20, 2026 |
|
2026-04-19: A critical RCE flaw in protobuf.js (50M weekly downloads) has proof-of-concept exploit code
|
Apr 19, 2026 |
|
2026-04-18: Microsoft Defender zero-days are being actively exploited with two still unpatched
|
Apr 18, 2026 |
|
2026-04-17: Apache ActiveMQ flaw now under active exploitation with CISA KEV deadline April 30
|
Apr 17, 2026 |
|
2026-04-16: Critical Alerts
|
Apr 16, 2026 |
|
2026-04-15: Microsoft patched 167 vulnerabilities including an actively exploited SharePoint spoofing flaw
|
Apr 15, 2026 |
|
2026-04-14: CISA added 7 actively exploited vulnerabilities to the KEV catalog
|
Apr 14, 2026 |
|
2026-04-13: Critical Marimo RCE exploited within 10 hours of disclosure
|
Apr 13, 2026 |
|
2026-04-12: Adobe patches actively exploited Acrobat Reader zero-day CVE-2026-34621 with evidence of
|
Apr 12, 2026 |
|
2026-04-11: Marimo Python notebook flaw CVE-2026-39987 exploited within 10 hours of disclosure
|
Apr 11, 2026 |
|
2026-04-10: Adobe Reader zero-day active since December delivers targeted payloads through malicious PDFs
|
Apr 10, 2026 |
|
2026-04-09: CISA adds actively exploited Ivanti EPMM flaw to KEV catalog with today's deadline
|
Apr 09, 2026 |
|
2026-04-08: Russian military intelligence exploited 18,000 routers worldwide to steal Microsoft credentials
|
Apr 08, 2026 |
|
2026-04-07: China-backed Storm-1175 is weaponizing zero-days to deploy Medusa ransomware against healthcare and
|
Apr 07, 2026 |
|
2026-04-06: Fortinet pushed an emergency weekend patch for CVE-2026-35616
|
Apr 06, 2026 |
|
2026-04-05: Fortinet's FortiClient EMS faces its second critical zero-day in weeks (CVE-2026-35616
|
Apr 05, 2026 |
|
2026-04-04: TeamPCP supply chain campaign hits European Commission AWS infrastructure with 340GB data theft via
|
Apr 04, 2026 |
|
2026-04-03: Akira ransomware reaches encryption in under an hour
|
Apr 03, 2026 |
|
2026-04-02: Google patches the fourth Chrome zero-day of 2026 (CVE-2026-5281, CISA KEV deadline April 15)
|
Apr 02, 2026 |
|
2026-04-01: TeamPCP's multi-stage supply chain attack on Trivy, LiteLLM
|
Apr 01, 2026 |
|
2026-03-31: CISA orders federal agencies to patch actively exploited Citrix NetScaler CVE-2026-3055 by Thursday
|
Mar 31, 2026 |
|
2026-03-30: Fortinet FortiClient EMS is under active attack through CVE-2026-21643
|
Mar 30, 2026 |
|
2026-03-29: Citrix NetScaler CVE-2026-3055 seeing active reconnaissance with CVSS 9.3 memory overread requiring
|
Mar 29, 2026 |
|
2026-03-28: F5 BIG-IP vulnerability CVE-2025-53521 added to CISA KEV after active exploitation
|
Mar 28, 2026 |
|
2026-03-27: CISA adds actively exploited Langflow and Trivy vulnerabilities to KEV catalog with April deadlines
|
Mar 27, 2026 |
|
2026-03-26: Citrix warns of a critical NetScaler vulnerability similar to CitrixBleed with 30,000+ instances
|
Mar 26, 2026 |
|
2026-03-25: Two Russian cybercriminals sentenced to prison for ransomware enabling
|
Mar 25, 2026 |
|
2026-03-24: ConnectWise and Citrix patch critical remote access flaws while attackers weaponize Trivy scanner
|
Mar 24, 2026 |
|
2026-03-23: CISA orders federal agencies to patch DarkSword iOS exploits by April 3rd
|
Mar 23, 2026 |
|
2026-03-22: Microsoft Azure Monitor alerts exploited for callback phishing with legitimate Microsoft headers
|
Mar 22, 2026 |
|
2026-03-21: CISA adds five actively exploited CVEs to KEV with a two-week patching deadline
|
Mar 21, 2026 |
|
2026-03-20: SharePoint CVE-2026-20963 under active exploitation with federal patch deadline Saturday
|
Mar 20, 2026 |
|
2026-03-19: Interlock ransomware exploited a Cisco firewall zero-day for five weeks before disclosure
|
Mar 19, 2026 |
|
2026-03-18: LeakNet ransomware adopts ClickFix social engineering to bypass traditional initial access methods
|
Mar 18, 2026 |
|
2026-03-17: CISA adds actively exploited Wing FTP flaw to KEV catalog with March 30 deadline
|
Mar 17, 2026 |
|
2026-03-16: Telus Digital admits to breach with up to a petabyte stolen by ShinyHunters
|
Mar 16, 2026 |
|
2026-03-15: Microsoft released an out-of-band hotpatch fixing three RCE vulnerabilities in Windows 11 RRAS
|
Mar 15, 2026 |
|
2026-03-14: Threat actors are mass-distributing fake VPN clients via SEO poisoning to steal credentials
|
Mar 14, 2026 |
|
2026-03-13: Google patches two Chrome zero-days actively exploited in the wild
|
Mar 13, 2026 |
|
2026-03-12: CISA adds actively exploited n8n RCE flaw to KEV catalog with 24,700+ instances still exposed online
|
Mar 12, 2026 |
|
2026-03-11: Microsoft patches 79 flaws including Excel bug that weaponizes Copilot for zero-click data theft
|
Mar 11, 2026 |
|
2026-03-10: CISA adds three actively exploited vulnerabilities (SolarWinds, Ivanti, VMware)
|
Mar 10, 2026 |
|
2026-03-09: FBI wiretapping systems breached in suspected China-linked intrusion
|
Mar 09, 2026 |
|
2026-03-08: Velvet Tempest is linking ClickFix social engineering to Termite ransomware deployments through
|
Mar 08, 2026 |
|
2026-03-07: Cisco confirms active exploitation of two more SD-WAN flaws while federal agencies face a March 26
|
Mar 07, 2026 |
|
2026-03-06: CISA adds five actively exploited vulnerabilities to the KEV catalog with a March 26 remediation
|
Mar 06, 2026 |
|
2026-03-05: Cisco confirms active exploitation of two more SD-WAN vulnerabilities as federal agencies face
|
Mar 05, 2026 |
|
2026-03-04: CISA adds two actively exploited vulnerabilities to the KEV catalog
|
Mar 04, 2026 |
|
2026-03-03: Hackers are exploiting a critical Fortinet VPN bug disclosed Friday to execute remote code on
|
Mar 03, 2026 |
|
2026-03-02: A CVSS 10 authentication bypass in Cisco SD-WAN (CVE-2026-20127) has been exploited since 2023
|
Mar 02, 2026 |