Daily rolling briefs on threat intelligence, ransomware claims, C2 networks, and cybercrime news.
Try checking your spelling or selecting a different threat category filter.
Daily threat intelligence for May 28, 2026: 422 C2 observations, 42 ransomware claims, 179 OSV MAL advisories, and 5 news items.
Daily threat intelligence for May 27, 2026: 345 C2 observations, 11 ransomware claims, 431 OSV MAL advisories, and 5 news items.
Daily threat intelligence for May 26, 2026: 400 C2 observations, 21 ransomware claims, 59 OSV MAL advisories, and 5 news items.
Daily threat intelligence for May 25, 2026: 3,154 C2 observations, 19 ransomware claims, 15 OSV MAL advisories, and 5 news items.
Daily threat intelligence for May 24, 2026: 2,738 C2 observations, 15 ransomware claims, 8 OSV MAL advisories, and 5 news items.
6 news items including a 9-year-old Linux kernel flaw, Cisco CVSS 10.0 patch, Cloudflare CASB-Anthropic integration, First VPN seizure, two actively exploited Microsoft Defender vulnerabilities, and Underminr CDN brand hijacking; 18 ransomware claims across 7 groups and 10 countries; 1,182 C2 observations across 118 families with 297 unique hosts; 304 malware download hosts across 33 countries.
Linux kernel vuln, Defender zero-days, TeamPCP supply-chain spree, 16 ransomware claims, and 769 C2 endpoints across 129 malware families.
YellowKey mitigation, GitHub repo breach, Shai-Hulud npm wave, 14 ransomware claims, and 1,242 C2 family-host pairs across 159 malware families.
Supply chain attacks hit npm, VS Code, and GitHub Actions; 37 ransomware claims from 9 groups; 217 C2 observations across 49 malware families with Quad9 blocking data.
