Show Notes - 2026-05-22
Stories Covered
- 2026-05-22
- Today:
- Microsoft Defender Actively Exploited Zero-Days (CVE-2026-41091, CVE-2026-45498) [Critical Alerts]
- Trend Micro Apex One Zero-Day Exploitation (CVE-2026-34926) [Critical Alerts]
- Drupal Highly Critical SQL Injection (CVE-2026-9082) [Critical Alerts]
- Langflow Code Execution Vulnerability Exploited by MuddyWater (CVE-2025-34291) [Critical Alerts]
- CISA Adds Legacy Microsoft Vulnerabilities to KEV [Critical Alerts]
- The Gentlemen Ransomware Defense Evasion TTPs [Ransomware & Extortion]
- First VPN Cybercrime Service Dismantled [Ransomware & Extortion]
- Cloud Atlas APT Returns with New Tools and SSH Tunnels [Business & Infrastructure Threats]
- GitHub Breached via Compromised VS Code Extension [Business & Infrastructure Threats]
- Cross-Platform NPM Stealer Targets Windows, macOS, Linux [Business & Infrastructure Threats]
- ABB Industrial Control Systems Vulnerabilities [Vulnerability Disclosures]
- Hitachi Energy GMS600 OpenSSL Timing Attack (CVE-2022-4304) [Vulnerability Disclosures]
- Microsoft Linux Kernel CVEs in MSRC Update Guide [Vulnerability Disclosures]
- Pwn2Own Berlin 2026: 47 Zero-Days Exploited [Vulnerability Disclosures]
- Microsoft Ends SMS MFA for Personal Accounts [General Security News]
- UK NCSC Issues Agentic AI Security Guidance [General Security News]
- Poland Urges Officials to Switch from Signal to mSzyfr [General Security News]
- Dutch Police Unmasked 74 Fraud Suspects via Game Over?! Campaign [General Security News]
- Trump Postpones AI Security Executive Order [General Security News]
- US-China Cyber Espionage Acknowledgment [General Security News]
CVEs Referenced
CVE-2008-4250, CVE-2009-1537, CVE-2009-3459, CVE-2010-0249, CVE-2010-0806, CVE-2018-0802, CVE-2022-35737, CVE-2022-4304, CVE-2023-7104, CVE-2024-26944, CVE-2024-55591, CVE-2025-10504, CVE-2025-12142, CVE-2025-12143, CVE-2025-3277, CVE-2025-34291, CVE-2025-6965, CVE-2026-0968, CVE-2026-33825, CVE-2026-34926, CVE-2026-41091, CVE-2026-43303, CVE-2026-43331, CVE-2026-43465, CVE-2026-43494, CVE-2026-43495, CVE-2026-43496, CVE-2026-43497, CVE-2026-43499, CVE-2026-43501, CVE-2026-43502, CVE-2026-45498, CVE-2026-45584, CVE-2026-9082
Indicators of Compromise
Hashes:
049300aa5dd774d6c984779a0570f59610399c71864b5d5c2605906db46ddeb9
Fler avsnitt av Cyber Threat Brief
Visa alla avsnitt av Cyber Threat BriefCyber Threat Brief med Carolina Clear Tech, LLC finns tillgänglig på flera plattformar. Informationen på denna sida kommer från offentliga podd-flöden.
