THREATNOIR
Subscribe
Daily briefs

DAILY BRIEFS

Top stories as punchy one-liners—designed to scan in seconds.

Last updated
5/24/2026, 12:10:03 AM
  1. 01
    Threat actor claims to sell WhatsApp zero-day exploit for malware installation.
    5h agoX / TwitterZero-day
  2. 02
    Chilean Fire Department's VIPER platform allegedly breached; internal records and documents exposed.
    8h agoX / TwitterBreaches
  3. 03
    Nullsec claims breach of South African Revenue Service (SARS) with alleged data exfiltration.
    8h agoX / TwitterBreaches
  4. 04
    WisERP breach exposes 1.5M U.S. ERP customer records in dark web auction.
    8h agoX / TwitterBreaches
  5. 05
    RondoDox botnet exploits 2018 ASUS router vulnerability to hijack over 1 million devices.
    12h agoHackreadMalware
  6. 06
    Malicious postinstall hooks discovered across 700+ GitHub repos targeting PHP and Node.js packages via Packagist.
    1d agoSocketDevSupply Chain
  7. 07
    CISA adds Drupal core SQL injection vulnerability CVE-2026-9082 to KEV catalog
    1d agoX / TwitterVulnerabilities
  8. 08
    AI-generated packages surge exponentially on npm, reshaping open source production and consumption.
    1d agoSocketDevSupply Chain
  9. 09
    Megalodon attack compromises 5,561 GitHub repos via malicious CI workflows in six hours.
    1d agoHackreadSupply Chain
  10. 10
    Drupal SQL injection vulnerability CVE-2026-9082 now actively exploited in attacks.
    1d agoBleepingComputerVulnerabilities
  11. 11
    Researchers used Anthropic's Mythos AI to discover and exploit macOS kernel memory corruption flaw on Apple M5.
    2d agoX / TwitterVulnerabilities
  12. 12
    Deleted Google API keys remain active for up to 23 minutes due to eventual consistency delays.
    2d agoHackreadVulnerabilities
  13. 13
    Hitachi Energy GMS600 versions 1.3.0–1.3.1 vulnerable to OpenSSL timing attack (CVE-2022-4304)
    2d agoCISA AlertsVulnerabilities
  14. 14
    ABB B&R Automation Runtime <6.4 patched for session hijacking, XSS, and CSV injection flaws.
    2d agoCISA AlertsVulnerabilities
  15. 15
    ABB Terra AC Wallbox EV charger has three buffer overflow vulnerabilities affecting firmware versions ≤1.8.33.
    2d agoCISA AlertsVulnerabilities
  16. 16
    Microsoft patches two exploited Defender zero-days allowing privilege escalation and DoS attacks.
    2d agoSecurityWeekZero-day
  17. 17
    GitHub breach of 3,800 repos linked to malicious Nx Console extension in TanStack npm supply-chain attack
    2d agoBleepingComputerSupply Chain
  18. 18
    RetoSwap loses 7,000 XMR ($2.7M) due to Haveno protocol vulnerability.
    3d agoX / TwitterVulnerabilities
  19. 19
    SonicWall Gen6 SSL-VPN devices remain vulnerable to MFA bypass despite patching without manual LDAP reconfiguration.
    3d agoBleepingComputerVulnerabilities
  20. 20
    Perumda Tirta Musi Palembang utility database with 437K+ customer records allegedly for sale.
    3d agoX / TwitterBreaches