Get Your Free Report
Start for Free
Jun 19, 2026
CVE-2026-20253: CISA Warns of Actively Exploited Splunk Enterprise RCE

CVE-2026-20253: CISA Warns of Actively Exploited Splunk Enterprise RCE Splunk Enterprise admins should prioritize patching CVE-2026-20253, a critical vulnerability that allows a network-reachable, una...

Learn More
Jun 19, 2026
What Is FortiBleed? Your Questions Answered

What Is FortiBleed? Your Questions Answered This is a developing story. Figures and findings are updated as the investigation continues. ...

Learn More
Jun 19, 2026
CVE-2026-42530 & CVE-2026-42055: F5 Patches NGINX Vulnerabilities

CVE-2026-42530 & CVE-2026-42055: F5 Patches NGINX Vulnerabilities F5 has released out-of-band security updates for two NGINX vulnerabilities that can affect exposed web infrastructure: CVE-2026-42...

Learn More
Jun 17, 2026
SOCRadar Launches Free FortiBleed Exposure Checker and Publishes the M...

SOCRadar Launches Free FortiBleed Exposure Checker and Publishes the Most Extensive Dataset on the Fortinet Credential Leak The team that first analyzed the FortiBleed leak now opens its research to t...

Learn More
Jun 17, 2026
FortiSandbox Vulnerabilities Expose Systems to Auth Bypass and Command...

FortiSandbox Vulnerabilities Expose Systems to Auth Bypass and Command Execution Fortinet FortiSandbox administrators should review their environments after several critical vulnerabilities raised con...

Learn More
Jun 16, 2026
May 2026: TeamPCP's Supply Chain Blitz Hits Checkmarx, GitHub, and npm

May 2026: TeamPCP’s Supply Chain Blitz Hits Checkmarx, GitHub, and npm May 2026 was defined by two threat actors operating at full intensity in parallel. ShinyHunters executed a major education-sector...

Learn More
Jun 16, 2026
FortiBleed: SOCRadar's Investigation into 86,644 Compromised Fortinet ...

FortiBleed: SOCRadar’s Investigation into 86,644 Compromised Fortinet Firewalls [Updated: June 29th 9 AM EST] SOCRadar has attributed FortiBleed to the Lynx / INC ransomware group. Full technical repo...

Learn More
Jun 16, 2026
Top 5 Phishing Domain Takedown Service

Top 5 Phishing Domain Takedown Service Phishing attacks remain one of the most persistent and scalable threats facing organizations today. In Q1 2026 alone, approximately 8.3 billion email-based phish...

Learn More
Jun 16, 2026
CVE-2026-20262: Cisco Catalyst SD-WAN Manager Zero-Day Leads to Root

CVE-2026-20262: Cisco Catalyst SD-WAN Manager Zero-Day Leads to Root CVE-2026-20262 is a zero-day vulnerability in Cisco Catalyst SD-WAN Manager (formerly SD-WAN vManage) that lets an authenticated at...

Learn More
Jun 15, 2026
The Quarry: Inside the PhaaS Operation Behind Hundreds of IRS and SSA ...

The Quarry: Inside the PhaaS Operation Behind Hundreds of IRS and SSA Phishing Campaigns What looks like a wave of disconnected phishing incidents – some impersonating the IRS, others mimicking the So...

Learn More
Jun 15, 2026
Dark Web Profile: Fox Kitten

Dark Web Profile: Fox Kitten Fox Kitten stands out among Iranian Advanced Persistent Threat (APT) groups for operating on two tracks simultaneously: collecting intelligence for the Iranian regime whil...

Learn More
Jun 15, 2026
Iran Hajj Organization Data Claim, Crypto Leads Sale, APT43 Tooling Cl...

Iran Hajj Organization Data Claim, Crypto Leads Sale, APT43 Tooling Claim, Sweden User Data, and Chrysler Breach Claim SOCRadar’s Dark Web Team identified several new underground posts, including an a...

Learn More
Jun 12, 2026
What the EU AI Act Actually Requires for Cybersecurity (And Where Ente...

What the EU AI Act Actually Requires for Cybersecurity (And Where Enterprises Are Exposed) The EU AI Act contains specific cybersecurity requirements. Article 15 names the threats. Article 73 sets rep...

Learn More
Jun 12, 2026
Dark Web Profile: Rock

Dark Web Profile: Rock Most Phishing-as-a-Service operations are run by a faceless brand. Rock is the opposite: a single developer who builds, maintains, and sells an entire phishing and remote access...

Learn More
Jun 12, 2026
CVE-2026-35273 in Oracle PeopleSoft PeopleTools EMHub Under Active Exp...

CVE-2026-35273 in Oracle PeopleSoft PeopleTools EMHub Under Active Exploitation Oracle has disclosed CVE-2026-35273, a critical Remote Code Execution (RCE) zero-day vulnerability in Oracle PeopleSoft ...

Learn More
Jun 12, 2026
New Data Extortion Group “Pink” Goes Big Game Hunting With Evasive Phi...

New Data Extortion Group “Pink” Goes Big Game Hunting With Evasive Phishing Kits Pink Data Extortion Group is emerging as one of the latest examples of how voice phishing and data extortion continue t...

Learn More
Jun 11, 2026
Electronic Warfare, Drones, and Cyber: Inside Modern Hybrid Warfare

Electronic Warfare, Drones, and Cyber: Inside Modern Hybrid Warfare Electronic warfare, drone warfare, and cyber operations all depend on the same foundation, the electromagnetic spectrum and the digi...

Learn More
Jun 11, 2026
Dark Web Profile: Tengu Ransomware (Shisa)

Dark Web Profile: Tengu Ransomware (Shisa) Despite a measured public persona, Tengu Ransomware operates as a financially motivated, well-organized threat. First observed in late 2025, the group emerge...

Learn More
Jun 10, 2026
ServiceNow Breach: Customer Data Exposed Through Unauthenticated API A...

ServiceNow Breach: Customer Data Exposed Through Unauthenticated API Access In early June 2026, ServiceNow notified impacted customers about malicious activity involving unauthorized access to custome...

Learn More
Jun 10, 2026
Ivanti Sentry’s CVE-2026-10520 Enables Root RCE

Ivanti Sentry’s CVE-2026-10520 Enables Root RCE CVE-2026-10520 is a critical OS command injection vulnerability in Ivanti Sentry that can allow a remote, unauthenticated attacker to execute commands a...

Learn More