| CVE | Vendor / Product | Vulnerability | Added | Due |
|---|---|---|---|---|
CVE-2026-58644 | Microsoft SharePoint | Microsoft SharePoint Deserialization of Untrusted Data Vulnerability | 2026-07-16 | 2026-07-19 |
CVE-2026-25089 | Fortinet FortiSandbox | Fortinet FortiSandbox OS Command Injection Vulnerability | 2026-07-16 | 2026-07-19 |
CVE-2026-39808 | Fortinet FortiSandbox | Fortinet FortiSandbox OS Command Injection Vulnerability | 2026-07-16 | 2026-07-19 |
CVE-2026-46817 | Oracle E-Business Suite | Oracle E-Business Suite Improper Privilege Management Vulnerability | 2026-07-15 | 2026-07-18 |
CVE-2023-4346 | KNX Association KNX Protocol Connection Authorization Option 1 | KNX Association KNX Protocol Connection Authorization Option 1 Overly Restrictive Account Lockout Mechanism Vulnerability | 2026-07-15 | 2026-07-29 |
CVE-2026-56155 | Microsoft Active Directory Federation Services | Microsoft Active Directory Federation Services Insufficient Granularity of Access Control Vulnerability | 2026-07-14 | 2026-07-28 |
CVE-2026-56164 | Microsoft SharePoint Server | Microsoft SharePoint Server Missing Authentication for Critical Function Vulnerability | 2026-07-14 | 2026-07-17 |
CVE-2026-15409 | SonicWall SMA1000 Appliances | SonicWall SMA1000 Appliances Server-Side Request Forgery Vulnerability | 2026-07-14 | 2026-07-17 |
CVE-2026-15410 | SonicWall SMA1000 Appliances | SonicWall SMA1000 Appliances Code Injection Vulnerability | 2026-07-14 | 2026-07-17 |
CVE-2008-4128 | Cisco IOS | Cisco IOS Cross-Site Request Forgery Vulnerability | 2026-07-13 | 2026-07-16 |
CVE-2026-56291 | Balbooa Forms | Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability | 2026-07-10 | 2026-07-13 |
CVE-2026-48939 | iCagenda iCagenda | iCagenda Unrestricted Upload of File with Dangerous Type Vulnerability | 2026-07-10 | 2026-07-13 |
CVE-2026-48908 | JoomShaper SP Page Builder | JoomShaper SP Page Builder Unrestricted Upload of File with Dangerous Type Vulnerability | 2026-07-07 | 2026-07-10 |
CVE-2026-55255 | Langflow Langflow | Langflow Authorization Bypass Through User-Controlled Key Vulnerability | 2026-07-07 | 2026-07-10 |
CVE-2026-56290 | Joomlack Page Builder | Joomlack Page Builder Improper Access Control Vulnerability | 2026-07-07 | 2026-07-10 |
CVE-2026-48282 | Adobe ColdFusion | Adobe ColdFusion Path Traversal Vulnerability | 2026-07-07 | 2026-07-10 |
CVE-2026-45659 | Microsoft SharePoint Server | Microsoft SharePoint Server Deserialization of Untrusted Data Vulnerability | 2026-07-01 | 2026-07-04 |
CVE-2026-48558 | SimpleHelp SimpleHelp | SimpleHelp Authentication Bypass Vulnerability | 2026-06-29 | 2026-07-02 |
CVE-2026-12569 | PTC Windchill and FlexPLM | PTC Windchill and FlexPLM Improper Input Validation Vulnerability | 2026-06-25 | 2026-06-28 |
CVE-2026-20230 | Cisco Unified Communications Manager | Cisco Unified Communications Manager Server-Side Request Forgery (SSRF) Vulnerability | 2026-06-25 | 2026-06-28 |
CVE-2025-67038 | Lantronix EDS5000 | Lantronix EDS5000 Code Injection Vulnerability | 2026-06-23 | 2026-06-26 |
CVE-2026-34910 | Ubiquiti UniFi OS | Ubiquiti UniFi OS Improper Input Validation Vulnerability | 2026-06-23 | 2026-06-26 |
CVE-2026-34909 | Ubiquiti UniFi OS | Ubiquiti UniFi OS Path Traversal Vulnerability | 2026-06-23 | 2026-06-26 |
CVE-2026-34908 | Ubiquiti UniFi OS | Ubiquiti UniFi OS Improper Access Control Vulnerability | 2026-06-23 | 2026-06-26 |
CVE-2026-20253 | Splunk Enterprise | Splunk Enterprise Missing Authentication for Critical Function Vulnerability | 2026-06-18 | 2026-06-21 |
| Indicator | Type | Malware | Threat | Conf. | First seen |
|---|---|---|---|---|---|
koin99.link | domain | ClearFake | payload_delivery | 100% | 2026-07-19 19:19:43 UTC |
istudiosgl.com | domain | ClearFake | payload_delivery | 100% | 2026-07-19 19:14:32 UTC |
cydm.domirunway.com | domain | ClearFake | payload_delivery | 100% | 2026-07-19 19:10:56 UTC |
domirunway.com | domain | ClearFake | payload_delivery | 100% | 2026-07-19 19:09:30 UTC |
divoraworld.com | domain | ClearFake | payload_delivery | 100% | 2026-07-19 19:08:21 UTC |
1.92.135.168:8080 | ip:port | AdaptixC2 | botnet_cc | 100% | 2026-07-19 19:05:06 UTC |
154.219.115.123:8080 | ip:port | AdaptixC2 | botnet_cc | 100% | 2026-07-19 19:05:05 UTC |
154.219.115.123:443 | ip:port | AdaptixC2 | botnet_cc | 100% | 2026-07-19 19:05:04 UTC |
radiozona94fm.com | domain | Vidar | payload_delivery | 100% | 2026-07-19 18:50:21 UTC |
reelwalestudio.com | domain | Vidar | payload_delivery | 100% | 2026-07-19 18:50:21 UTC |
rolems.com | domain | Vidar | payload_delivery | 100% | 2026-07-19 18:50:21 UTC |
roofing-clearwater.com | domain | Vidar | payload_delivery | 100% | 2026-07-19 18:50:21 UTC |
rumahlift.com | domain | Vidar | payload_delivery | 100% | 2026-07-19 18:50:21 UTC |
salariadvogados.com.br | domain | Vidar | payload_delivery | 100% | 2026-07-19 18:50:21 UTC |
soccerpunter.org | domain | Vidar | payload_delivery | 100% | 2026-07-19 18:50:21 UTC |
toufafashion.com | domain | Vidar | payload_delivery | 100% | 2026-07-19 18:50:21 UTC |
yourhomeguide.co.uk | domain | Vidar | payload_delivery | 100% | 2026-07-19 18:50:21 UTC |
euregio-camper.de | domain | Vidar | payload_delivery | 100% | 2026-07-19 18:50:20 UTC |
guiasantosdumont.com.br | domain | Vidar | payload_delivery | 100% | 2026-07-19 18:50:20 UTC |
instantfixservices.com | domain | Vidar | payload_delivery | 100% | 2026-07-19 18:50:20 UTC |
lagrandefm.com | domain | Vidar | payload_delivery | 100% | 2026-07-19 18:50:20 UTC |
lucianasalomao.com.br | domain | Vidar | payload_delivery | 100% | 2026-07-19 18:50:20 UTC |
mazradioaurora.com | domain | Vidar | payload_delivery | 100% | 2026-07-19 18:50:20 UTC |
mobilitate.primariapetrosani.ro | domain | Vidar | payload_delivery | 100% | 2026-07-19 18:50:20 UTC |
moroneyaccountants.ie | domain | Vidar | payload_delivery | 100% | 2026-07-19 18:50:20 UTC |
| Pulse | Author | Tags | IOCs | Created |
|---|---|---|---|---|
| Inside the FortiBleed Open Directory: A Technical Analysis of What the Attacker Left Behind | AlienVault | vpn compromise, hash cracking, fortibleed, hashtopolis, fortigate, initial access broker, fortinet, credential harvesting | 0 | 2026-06-19 |
| Operation Poisson – Analyzing a Cybercriminal’s Entire Operation | AlienVault | tailscale, rustdesk, poisson, credential-theft, france, keylogger, fileless-attack, openssh | 11 | 2026-06-19 |
| Popa: From Sourcing to Distribution | AlienVault | residential proxy, netnut, neupop, sdk, moneytiser, hopanet, popa, loopop | 211 | 2026-06-18 |
| Klue Integration Abused in Salesforce Data Theft | Threat Spotlight | AlienVault | salesforce, unc6395, oauth abuse, api exfiltration, third-party integration, klue integration, shinyhunters, crm data theft | 0 | 2026-06-18 |
| Botnet Analysis: A Product-Grade Threat for the AI Service Era | AlienVault | shodan intelligence, credential harvesting, polymorphic, ai infrastructure targeting, mcp exploitation, botnet, autonomous scanning, go-based | 6 | 2026-07-17 |
| Contagious Interview malware in SVG images: DPRK campaign | AlienVault | developer targeting, cryptocurrency wallet theft, supply chain attack, svg, ottercookie, steganography, fake job interviews, beavertail | 13 | 2026-07-17 |
| Behind the Refund: From GST Phishing to Remcos RAT Through a Multi-Stage .NET Infection Chain | AlienVault | bitmap steganography, fileless execution, multi-stage loader, dynamic dns, india targeting, credential theft, gst phishing, remcos rat | 6 | 2026-07-17 |
| ClickFix Campaign Generated Via AI Delivers SmartRAT | AlienVault | banana rat, fake captcha, smartrat, powershell, typosquatting, ghostloader, brazil, clickfix | 11 | 2026-06-17 |
| ACR Stealer: Two observed intrusion chains amid increased threat activity | AlienVault | blockchain c2, webdav, steganography, amatera stealer, clickfix, acr stealer | 16 | 2026-07-17 |
| Novel Starland RAT and bespoke WLDR C2 implant deployed in financially motivated campaign | AlienVault | credential harvesting, trojanized installers, python rat, powershell implant, starland rat, clickfix, wldr agent, castlestealer | 49 | 2026-07-16 |