logo

SOCRadar Blog

ID: cb7f84f5-f21b-54ab-855e-579d8f3f3d40

STIX ID: identity--cb7f84f5-f21b-54ab-855e-579d8f3f3d40

Feed Type: rss

Earliest post: 2024-01-17

Latest post: 2026-07-10

Threat intelligence insights, cybercrime research, vulnerability analysis, and security trend coverage from the SOCRadar team — helping defenders stay ahead of emerging threats and adversary activity.

01/01/2020
07/14/2026
Title Date Published Describes IncidentAuthorVisible
CISA Flags SharePoint RCE (CVE-2026-45659) for Active Exploitation2026-07-02TrueameerTrue
CVE-2026-8037: Progress Kemp LoadMaster RCE Exploited in the Wild2026-07-02TrueameerTrue
SOCRadar Links FortiBleed Campaign to INC and Lynx Ransomware Operations2026-07-01TrueameerTrue
Adobe ColdFusion and Campaign Classic: Critical RCE Flaws Among Multiple CVSS 10.0 Issues2026-07-01TrueameerTrue
CVE-2026-8451 Adds a New NetScaler Memory Overread to the CitrixBleed Pattern2026-07-01TrueameerTrue
CVE-2026-48558: SimpleHelp OIDC Auth Bypass Used to Deploy Infostealer Payloads2026-06-30TrueameerTrue
Oracle EBS Flaw CVE-2026-46817 Exposes Oracle Payments to Takeover2026-06-30TrueameerTrue
Alleged Okta Leak, MTS Bank Data Sale, Naucalpan, SSH Access, and Flawireless Claims2026-06-29TrueAmeer OwdaTrue
Klue Breach: What You Need to Know2026-06-24TrueAmeer OwdaTrue
WhatsApp VBScript Campaign Installs ManageEngine Endpoint Central for Persistent Remote Access2026-06-23TrueAmeer OwdaTrue
Top Dark Web Telegram Groups & Channels 20262026-06-23TrueCem SarıTrue
Top 10 Dark Web Markets in 2026: List & Threat Analysis2026-06-22TrueAmeer OwdaTrue
Alleged FortiBleed Access Auction, Sens Unique Paris Data Sale, and libsodium DoS Claims2026-06-22TrueAmeer OwdaTrue
CVE-2026-20253: CISA Warns of Actively Exploited Splunk Enterprise RCE2026-06-19TrueYağmur ErnalbantTrue
FortiBleed: Everything You Need to Know2026-06-19TrueYağmur ErnalbantTrue
CVE-2026-42530 & CVE-2026-42055: F5 Patches NGINX Vulnerabilities2026-06-19TrueAmeer OwdaTrue
SOCRadar Launches Free FortiBleed Exposure Checker and Publishes the Most Extensive Dataset on the Fortinet Credential Leak2026-06-17TrueYağmur ErnalbantTrue
FortiSandbox Vulnerabilities Expose Systems to Auth Bypass and Command Execution2026-06-17TrueAmeer OwdaTrue
May 2026: TeamPCP’s Supply Chain Blitz Hits Checkmarx, GitHub, and npm2026-06-16TrueAmeer OwdaTrue
The Compromise of 30,000 Fortinet Firewalls2026-06-16TrueAmeer OwdaTrue
Top 5 Phishing Domain Takedown Service2026-06-16TrueAmeer OwdaTrue
CVE-2026-20262: Cisco Catalyst SD-WAN Manager Zero-Day Leads to Root2026-06-16TrueAmeer OwdaTrue
The Quarry: Inside the PhaaS Operation Behind Hundreds of IRS and SSA Phishing Campaigns2026-06-15TrueAmeer OwdaTrue
Dark Web Profile: Fox Kitten2026-06-15TrueAmeer OwdaTrue
Iran Hajj Organization Data Claim, Crypto Leads Sale, APT43 Tooling Claim, Sweden User Data, and Chrysler Breach Claim2026-06-15TrueAmeer OwdaTrue
Dark Web Profile: Rock2026-06-12TrueAmeer OwdaTrue
CVE-2026-35273 in Oracle PeopleSoft PeopleTools EMHub Under Active Exploitation2026-06-12TrueAmeer OwdaTrue
New Data Extortion Group “Pink” Goes Big Game Hunting With Evasive Phishing Kits2026-06-12TrueAmeer OwdaTrue
Dark Web Profile: Tengu Ransomware (Shisa)2026-06-11TrueAmeer OwdaTrue
ServiceNow Breach: Customer Data Exposed Through Unauthenticated API Access2026-06-10TrueAmeer OwdaTrue
Ivanti Sentry’s CVE-2026-10520 Enables Root RCE2026-06-10TrueAmeer OwdaTrue
June 2026 Patch Tuesday: 206 Vulnerabilities, Three Zero-Days Including HTTP/2 Bomb Flaw (CVE-2026-49160)2026-06-10TrueAmeer OwdaTrue
SAP Security Patch Day June 2026: Critical CVE-2026-44748 SAML Flaw Could Allow Full Authentication Bypass2026-06-10TrueAmeer OwdaTrue
CVE-2026-11645: Exploited Chrome V8 Bug Enables In-Browser Code Execution2026-06-09TrueAmeer OwdaTrue
CISA KEV Highlights LiteLLM RCE (CVE-2026-42271) & Check Point VPN Auth Bypass (CVE-2026-50751)2026-06-09TrueAmeer OwdaTrue
Shai-Hulud Hades PyPI Campaign: 19 Packages Trojanized via Wheel Startup Hooks2026-06-09TrueAmeer OwdaTrue
Handala Claims It Disrupted Israeli Radar Systems: Here’s What We Actually Know2026-06-08TrueAmeer OwdaTrue
2026 FIFA World Cup Threat Landscape: The Kickoff for Cybercriminals2026-06-05TrueAmeer OwdaTrue
CVE-2026-20230: Cisco Unified CM WebDialer SSRF Can Lead to Root-Level Compromise2026-06-05TrueAmeer OwdaTrue
Dark Web Profile: Vect Ransomware2026-06-05TrueAmeer OwdaTrue
HTTP/2 Bomb: How Default Configurations Open a New DoS Vector2026-06-04TrueAmeer OwdaTrue
CVE-2025-48595: June 2026 Android Security Update Fixes Framework Zero-Day2026-06-03TrueAmeer OwdaTrue
Top 10 Cyber Threat Actors Targeting Brazil2026-06-03TrueAmeer OwdaTrue
Dark Web Profile: BlindEagle2026-06-02TrueAmeer OwdaTrue
Charter Data Breach: ShinyHunters Claims 42 Million Records Stolen on the Dark Web2026-05-29TrueYağmur ErnalbantTrue
April 2026: ShinyHunters Hits Medtronic and ADT as North Korean Hackers Drain DeFi Protocols2026-05-29TrueYağmur ErnalbantTrue
Top 10 Identity Attack Techniques Used by Hackers2026-05-27TrueMert ÖbekTrue
WhatsApp 3B Dump, OnlyFans 340M Records Sale, BlockFi Email Leak, Ramen Kuroda Data Leak, and VSP Security Wholesale Breach2026-05-25TrueYağmur ErnalbantTrue
TrapDoor: Malicious npm, PyPI, Crates.io Packages Target Developer Secrets & AI Tooling2026-05-25TrueYağmur ErnalbantTrue
Dark Web Profile: CoinbaseCartel2026-05-22TrueAmeer OwdaTrue

1–50 of 283