Weekly Threat Roundup

For security leaders

A weekly practitioner-grade brief across ThreatNoir's approved intelligence. Drafted by AI, reviewed before publishing.

2026-W26
Roundup 2026-W26
2026-06-22 to 2026-06-28 80 articles
β€’ πŸ” Russian intelligence escalated messaging app attacks, now targeting Signal Backup Recovery Keys to access historical message archives. β€’ 🏭 PTC Windchill (...
2026-W25
Roundup 2026-W25
2026-06-15 to 2026-06-21 80 articles
πŸ”₯ FortiBleed exposes 86,000+ Fortinet credentials as CISA issues urgent hardening guidance for internet-facing devices. πŸ•ΈοΈ Operation Endgame dismantles Evil C...
2026-W24
Roundup 2026-W24
2026-06-08 to 2026-06-14 80 articles
🎯 Chinese hackers ran decade-long espionage using backdoored Linux authentication 🏫 Oracle zero-day CVE-2026-35273 exploited by ShinyHunters to ransack univer...
2026-W23
Roundup 2026-W23
2026-06-01 to 2026-06-07 80 articles
🚨 Supply chain attacks dominated with IronWorm and Miasma worms hitting npm/GitHub, while compromising 100+ packages 🎯 Critical infrastructure under siege wit...
2026-W22
Roundup 2026-W22
2026-05-25 to 2026-05-31 80 articles
πŸ”’ Critical authentication bypass vulnerabilities dominated headlines with Fortinet FortiClient EMS and Palo Alto PAN-OS under active exploitation 🏦 Major brea...
2026-W21
Roundup 2026-W21
2026-05-18 to 2026-05-24 52 articles
πŸ”₯ Supply chain attacks surge as AI accelerates both attack and defense capabilities 🏦 Critical infrastructure faces elevated risks from NGINX RCE and power gr...
2026-W20
Roundup 2026-W20
2026-05-11 to 2026-05-17 80 articles
πŸ”— Supply chain attacks hit new heights as TeamPCP weaponizes 400+ npm/PyPI packages with self-propagating Shai-Hulud worm πŸ“± Zero-day disclosures accelerate wi...
2026-W19
Roundup 2026-W19
2026-05-04 to 2026-05-10 80 articles
πŸŽ“ **Canvas Crisis**: ShinyHunters breached Instructure's Canvas LMS affecting 9,000+ schools and 275M users during finals season πŸ”₯ **Firewall Zero-Day**: Chin...
2026-W18
Roundup 2026-W18
2026-04-27 to 2026-05-03 80 articles
🚨 Critical cPanel authentication bypass (CVE-2026-41940) under mass exploitation for ransomware deployment πŸ”— Supply chain attacks hit SAP packages and PyTorch...
2026-W17
Roundup 2026-W17
2026-04-20 to 2026-04-26 80 articles
πŸ”₯ Supply chain attacks evolved with wormable npm malware targeting developer toolchains πŸ›‘οΈ Cisco firewalls compromised with persistent backdoors surviving fir...
2026-W16
Roundup 2026-W16
2026-04-13 to 2026-04-19 80 articles
πŸ”₯ Critical infrastructure under fire as water treatment malware surfaces, 13-year-old Apache bug exploits go wild, and North Korean infiltration schemes contin...
2026-W15
Roundup 2026-W15
2026-04-06 to 2026-04-12 80 articles
🚨 Mexican government breached at scale using Claude AI and ChatGPT to exfiltrate 195M tax records 🎯 Adobe patches critical Reader zero-day exploited since Nov...
2026-W14
Roundup 2026-W14
2026-03-30 to 2026-04-05 80 articles
πŸ”₯ Critical week for supply chain attacks with React2Shell (CVE-2025-55182) exploited to harvest credentials from 766+ Next.js hosts 🎯 North Korean UNC1069 com...
2026-W13
Roundup 2026-W13
2026-03-23 to 2026-03-29 80 articles
🚨 FBI Director Kash Patel's personal Gmail breached by Iran-linked Handala hackers in major retaliation operation πŸ›οΈ European Commission investigating 350GB d...