Weekly Threat Roundup
For security leaders
A weekly practitioner-grade brief across ThreatNoir's approved intelligence. Drafted by AI, reviewed before publishing.
2026-W26
Roundup 2026-W26
2026-06-22 to 2026-06-28 80 articles
β’ π Russian intelligence escalated messaging app attacks, now targeting Signal Backup Recovery Keys to access historical message archives. β’ π PTC Windchill (...
2026-W25
Roundup 2026-W25
2026-06-15 to 2026-06-21 80 articles
π₯ FortiBleed exposes 86,000+ Fortinet credentials as CISA issues urgent hardening guidance for internet-facing devices. πΈοΈ Operation Endgame dismantles Evil C...
2026-W24
Roundup 2026-W24
2026-06-08 to 2026-06-14 80 articles
π― Chinese hackers ran decade-long espionage using backdoored Linux authentication π« Oracle zero-day CVE-2026-35273 exploited by ShinyHunters to ransack univer...
2026-W23
Roundup 2026-W23
2026-06-01 to 2026-06-07 80 articles
π¨ Supply chain attacks dominated with IronWorm and Miasma worms hitting npm/GitHub, while compromising 100+ packages π― Critical infrastructure under siege wit...
2026-W22
Roundup 2026-W22
2026-05-25 to 2026-05-31 80 articles
π Critical authentication bypass vulnerabilities dominated headlines with Fortinet FortiClient EMS and Palo Alto PAN-OS under active exploitation π¦ Major brea...
2026-W21
Roundup 2026-W21
2026-05-18 to 2026-05-24 52 articles
π₯ Supply chain attacks surge as AI accelerates both attack and defense capabilities π¦ Critical infrastructure faces elevated risks from NGINX RCE and power gr...
2026-W20
Roundup 2026-W20
2026-05-11 to 2026-05-17 80 articles
π Supply chain attacks hit new heights as TeamPCP weaponizes 400+ npm/PyPI packages with self-propagating Shai-Hulud worm π± Zero-day disclosures accelerate wi...
2026-W19
Roundup 2026-W19
2026-05-04 to 2026-05-10 80 articles
π **Canvas Crisis**: ShinyHunters breached Instructure's Canvas LMS affecting 9,000+ schools and 275M users during finals season π₯ **Firewall Zero-Day**: Chin...
2026-W18
Roundup 2026-W18
2026-04-27 to 2026-05-03 80 articles
π¨ Critical cPanel authentication bypass (CVE-2026-41940) under mass exploitation for ransomware deployment π Supply chain attacks hit SAP packages and PyTorch...
2026-W17
Roundup 2026-W17
2026-04-20 to 2026-04-26 80 articles
π₯ Supply chain attacks evolved with wormable npm malware targeting developer toolchains π‘οΈ Cisco firewalls compromised with persistent backdoors surviving fir...
2026-W16
Roundup 2026-W16
2026-04-13 to 2026-04-19 80 articles
π₯ Critical infrastructure under fire as water treatment malware surfaces, 13-year-old Apache bug exploits go wild, and North Korean infiltration schemes contin...
2026-W15
Roundup 2026-W15
2026-04-06 to 2026-04-12 80 articles
π¨ Mexican government breached at scale using Claude AI and ChatGPT to exfiltrate 195M tax records π― Adobe patches critical Reader zero-day exploited since Nov...
2026-W14
Roundup 2026-W14
2026-03-30 to 2026-04-05 80 articles
π₯ Critical week for supply chain attacks with React2Shell (CVE-2025-55182) exploited to harvest credentials from 766+ Next.js hosts π― North Korean UNC1069 com...
2026-W13
Roundup 2026-W13
2026-03-23 to 2026-03-29 80 articles
π¨ FBI Director Kash Patel's personal Gmail breached by Iran-linked Handala hackers in major retaliation operation ποΈ European Commission investigating 350GB d...