Every Old Vulnerability Is Now an AI Exploitability
Live threat intelligence feed

Targeted
Threat Intelligence

Aggregated threat intelligence from CISA, NVD, and leading security publications. AI-curated. Updated every 30 minutes.

Threat Matrix — All Time
Vuln
Malware
Intel
Advisory
Breach
APT
Critical
237
75
32
11
14
1
High
145
184
63
21
44
4
Medium
78
82
49
13
44
11
Low
16
21
14
10
Hover to preview · click to filter
All-time · 2295 totalintensity = volume
LIVE
Critical Vulnerabilities Patched in Fortinet, Ivanti Products·Hackers Deploy MLTBackdoor Malware via Multi-Stage ClickFix Infection Chain·Hackers Abuse TikTok and Instagram Reels to Spread Malware via Fake Free Software Tutorials·ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Phoenix Contact·Anthropic Releases Claude Fable 5, Its Most Powerful AI Yet, With Cyber Safeguards·ServiceNow Flaw Exploited to Gain Unauthorized Access to Customer Instances·No Patch Planned for Exploited Arista EOS Vulnerability·Ivanti: Max severity Sentry flaw allows code execution as root·Windows BitLocker 0-Day Vulnerability Allows Attackers to Bypass Security Feature·Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows·Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS·Anthropic Released Claude Fable 5, the First Model in the Mythos Class·Anthropic Released Claude Fable 5, the First Model in Mythos Class·New Windows Defender 0-Day Exploit “RoguePlanet” Lets Attackers Gain SYSTEM-level Access·New Windows Defender 0-Day Exploit “RoguePlanet” Grants SYSTEM Access to Attackers·Critical Vulnerabilities Patched in Fortinet, Ivanti Products·Hackers Deploy MLTBackdoor Malware via Multi-Stage ClickFix Infection Chain·Hackers Abuse TikTok and Instagram Reels to Spread Malware via Fake Free Software Tutorials·ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Phoenix Contact·Anthropic Releases Claude Fable 5, Its Most Powerful AI Yet, With Cyber Safeguards·ServiceNow Flaw Exploited to Gain Unauthorized Access to Customer Instances·No Patch Planned for Exploited Arista EOS Vulnerability·Ivanti: Max severity Sentry flaw allows code execution as root·Windows BitLocker 0-Day Vulnerability Allows Attackers to Bypass Security Feature·Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows·Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS·Anthropic Released Claude Fable 5, the First Model in the Mythos Class·Anthropic Released Claude Fable 5, the First Model in Mythos Class·New Windows Defender 0-Day Exploit “RoguePlanet” Lets Attackers Gain SYSTEM-level Access·New Windows Defender 0-Day Exploit “RoguePlanet” Grants SYSTEM Access to Attackers·
✦ All🔴Vulnerabilities☣️Malware💾Data Breaches🎯APT & Nation-State📋Advisories🖥️Application Security⚙️OS Security🌐Network & Infra☁️Cloud Security📱Mobile Threats🎣Social Engineering🔍Threat Intelligence

Latest IntelligenceVulnerabilitiesPage 12

Search by keyword →
China-Aligned SHADOW-EARTH-053 Exploits Exchange Servers to Deploy ShadowPad Malware
TI
Cyber Security News

China-Aligned SHADOW-EARTH-053 Exploits Exchange Servers to Deploy ShadowPad Malware

A China-aligned threat group tracked as SHADOW-EARTH-053 has been exploiting unpatched Microsoft Exchange Server vulnerabilities to conduct cyberespionage again...

5 May 2026
TI
Dark Reading

Microsoft Edge Stores Passwords in Process Memory, Posing Enterprise Risk

A proof-of-concept exploit (PoC) shows how someone with admin privileges can exploit the issue to steal passwords, and thus use them to engage in further malici...

5 May 2026
The EOL Blind Spot in Your CVE Feed: What SCA Tools Don't Check.
TI
Bleeping Computer

The EOL Blind Spot in Your CVE Feed: What SCA Tools Don't Check.

Critical vulnerabilities can exist in open source software your scanners don't check. HeroDevs reveals how EOL software creates blind spots in CVE feeds and SCA...

5 May 2026
The EOL Blind Spot in Your CVE Feed: What SCA Tools Miss
TI
Bleeping Computer

The EOL Blind Spot in Your CVE Feed: What SCA Tools Miss

Critical vulnerabilities can exist in open source software your scanners don't check. HeroDevs reveals how EOL software creates blind spots in CVE feeds and SCA...

5 May 2026
Critical Bug Could Expose 300,000 Ollama Deployments to Information Theft
TI
Security Week

Critical Bug Could Expose 300,000 Ollama Deployments to Information Theft

Dubbed Bleeding Llama, the heap out-of-bounds read issue can be exploited remotely, without authentication. The post Critical Bug Could Expose 300,000 Ollama De...

5 May 2026
Critical Remote Code Execution Vulnerability Patched in Android
TI
Security Week

Critical Remote Code Execution Vulnerability Patched in Android

CVE-2026-0073 affects Android’s System component and it can be exploited without any user interaction.  The post Critical Remote Code Execution Vulnerability Pa...

5 May 2026
Google now offers up to $1.5 million for some Android exploits
TI
Bleeping Computer

Google now offers up to $1.5 million for some Android exploits

Google overhauls its Android and Chrome vulnerability rewards programs, offering bounties of up to $1.5 million for the most difficult exploits while scaling ba...

5 May 2026
Critical, High-Severity Vulnerabilities Patched in Apache MINA, HTTP Server
TI
Security Week

Critical, High-Severity Vulnerabilities Patched in Apache MINA, HTTP Server

The most severe of these security defects could allow remote attackers to execute arbitrary code. The post Critical, High-Severity Vulnerabilities Patched in Ap...

5 May 2026
WhatsApp Vulnerability Lets Attackers Leverage Instagram Reels to Execute Malicious URLs
TI
Cyber Security News

WhatsApp Vulnerability Lets Attackers Leverage Instagram Reels to Execute Malicious URLs

Meta has disclosed a medium-severity security vulnerability in WhatsApp that could allow threat actors to exploit Instagram Reels integration to trigger arbitra...

5 May 2026
WhatsApp Discloses File Spoofing, Arbitrary URL Scheme Vulnerabilities
TI
Security Week

WhatsApp Discloses File Spoofing, Arbitrary URL Scheme Vulnerabilities

The vulnerabilities were reported to Meta through its bug bounty program and were patched with updates released earlier this year. The post WhatsApp Discloses F...

5 May 2026
Critical Android Zero-Click Vulnerability Grants Remote Shell Access
TI
Cyber Security News

Critical Android Zero-Click Vulnerability Grants Remote Shell Access

Google has published the May 2026 Android Security Bulletin, alerting the ecosystem to a highly severe remote code execution (RCE) flaw. Tracked as CVE-2026-007...

5 May 2026
Apache HTTP Server Exposes Millions of Servers to Remote Code Execution Attacks
TI
Cyber Security News

Apache HTTP Server Exposes Millions of Servers to Remote Code Execution Attacks

The Apache Software Foundation has released a critical security update for Apache HTTP Server, patching five vulnerabilities, including a dangerous double-free ...

5 May 2026
Critical Apache HTTP Server Flaw Exposes Millions of Servers to RCE Attacks
TI
Cyber Security News

Critical Apache HTTP Server Flaw Exposes Millions of Servers to RCE Attacks

The Apache Software Foundation has released a critical security update for Apache HTTP Server, patching five vulnerabilities, including a dangerous double-free ...

5 May 2026
Weaver E-cology critical bug exploited in attacks since March
TI
Bleeping Computer

Weaver E-cology critical bug exploited in attacks since March

Hackers have been exploiting a critical vulnerability (CVE-2026-22679) in the Weaver E-cology office automation since mid-March to run discovery commands. [...]...

4 May 2026
TI
Dark Reading

Exploit Cyber-Frenzy Threatens Millions via Critical cPanel Vulnerability

Shortly after the authentication-bypass flaw was disclosed multiple proof-of-concept exploits appeared, and one researcher claims there's been zero-day activity...

4 May 2026
Trellix Source Code Repository Breached
TI
Security Week

Trellix Source Code Repository Breached

The cybersecurity firm’s investigation has not found any impact on its source code release or distribution process.  The post Trellix Source Code Repository Bre...

4 May 2026
Trellix discloses data breach after source code repository hack
TI
Bleeping Computer

Trellix discloses data breach after source code repository hack

Cybersecurity firm Trellix disclosed a data breach after attackers gained access to "a portion" of its source code repository. [...]...

4 May 2026
TI
CIS Advisories

A Vulnerability in WHM cPanel and WP Squared Could Allow for Remote Code Execution

A vulnerability has been discovered in WHM, cPanel, and WP Squared that could allow for remote code execution. WHM, cPanel, and WP Squared are Linux-based web h...

4 May 2026
Bluekit Phishing Kit Automates Domains, 2FA Lures, and Session Hijacking in One Panel
TI
Cyber Security News

Bluekit Phishing Kit Automates Domains, 2FA Lures, and Session Hijacking in One Panel

A newly identified phishing kit called Bluekit is changing how cybercriminals carry out phishing attacks by packing multiple attack capabilities into a single, ...

4 May 2026
CISA warns “Copy Fail” Linux flaw is already actively exploited
TI
Cyber Insider

CISA warns “Copy Fail” Linux flaw is already actively exploited

The US Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Linux kernel flaw known as “Copy Fail” to its Known Exploited Vulnerabilitie...

4 May 2026
← PreviousNext →