1. The ShinyHunters threat group claims to have stolen 275 million records from Canvas LMS affecting 9000 schools with a ransom deadline set for May 12 (Reddit). 2. Instructure reported a second security incident involving its Canvas platform following the massive data breach (Reddit). 3. The official JDownloader website was compromised to distribute malicious installers containing a Python based remote access trojan (BleepingComputer). 4. A…
Posts tagged as “APT”
1. Ukraine: Russian forces launched 27 strike drones against Ukraine overnight despite a ceasefire, with Ukrainian air defenses reporting all drones were downed or suppressed. Source: Noel Reports. 2. Ukraine: A reconnaissance drone with Cyrillic markings crashed in Poland near the border with the Kaliningrad region. Source: RMF FM. 3. Ukraine: President Vladimir Putin stated on May 10 that the conflict in Ukraine is nearing…
1. Palo Alto Networks warns that a critical buffer overflow vulnerability in PAN-OS tracked as CVE-2026-0300 is being actively exploited for unauthenticated remote code execution (thehackernews.com). 2. A critical Linux kernel local privilege escalation vulnerability known as Copy Fail or CVE-2026-31431 allows for stealthy root access on millions of systems (unit42.paloaltonetworks.com). 3. The Apache Software Foundation released updates for a critical HTTP/2 flaw tracked as…
1. Region: Middle East. President Trump notified Congress that the war with Iran has ended, though he retains the authority to restart the 60-day War Powers Resolution clock if hostilities resume. Source: Associated Press. 2. Region: NATO. The Pentagon confirmed plans to withdraw 5,000 U.S. troops from Germany over the next 6 to 12 months, citing tensions with European allies over the Iran conflict. Source:…
1. Ukraine: Ukrainian forces successfully utilized a new air defense system nicknamed STASH, equipped with AGM-114 Hellfire missiles, to intercept a Russian Shahed drone. Source: Telegram (UkraineNow). 2. Ukraine: Satellite imagery confirmed damage to Russian Su-57 and Su-34 aircraft following a Ukrainian strike on the Shagol airfield in the Chelyabinsk region on April 25. Source: Telegram (WarTranslated). 3. Ukraine: Ukrainian drone strikes targeted oil facilities…
1. Region: Ukraine. Ukrainian forces successfully struck a Russian Kasta-2E radar station in Belgorod Oblast using a RAM-2 loitering munition from 80 km away. Source: front_ukrainian. 2. Region: Middle East. The IDF conducted strikes on over 20 Hezbollah targets in southern Lebanon and the Beqaa Valley, focusing on weapons manufacturing and storage infrastructure. Source: sentdefender. 3. Region: Middle East. The USS Rafael Peralta (DDG 115)…
1. CISA added four actively exploited vulnerabilities to its Known Exploited Vulnerabilities catalog affecting SimpleHelp, Samsung MagicINFO 9 Server, and D-Link DIR-823X routers (The Hacker News). 2. Home security company ADT confirmed a data breach following extortion threats from the ShinyHunters group (BleepingComputer). 3. The Lazarus APT group is conducting a new campaign using the Mach-O Man malware kit to target businesses on macOS (Reddit).…
1. A high severity SSRF vulnerability in LMDeploy tracked as CVE 2026 33626 is being actively exploited in the wild within 13 hours of its disclosure (thehackernews.com). 2. The Bitwarden CLI npm package was compromised as part of an ongoing supply chain attack involving malicious code in the bw1.js file (thehackernews.com). 3. The threat group UNC6692 is conducting a campaign by impersonating IT helpdesk staff…
1. Middle East: The USS George H.W. Bush carrier strike group has entered the US Central Command area of responsibility, joining other naval assets in the region. Source: Reuters. 2. Middle East: Iranian air defense systems were activated over Tehran and other cities, with officials claiming they engaged hostile micro-drones. Source: Reuters. 3. Middle East: The IRGC Navy reportedly seized the container ships MSC Francesca…
1. Over 1300 Microsoft SharePoint servers remain vulnerable to a spoofing zero day exploit that is currently being used in active attacks (BleepingComputer). 2. Microsoft released emergency out of band security updates to address a critical privilege escalation vulnerability in ASP.NET Core (BleepingComputer). 3. CISA has flagged a new SD WAN vulnerability that is currently being exploited in the wild (Reddit). 4. Researchers discovered a…