Every Old Vulnerability Is Now an AI Exploitability
Live threat intelligence feed

Targeted
Threat Intelligence

Aggregated threat intelligence from CISA, NVD, and leading security publications. AI-curated. Updated every 30 minutes.

Threat Matrix — All Time
Vuln
Malware
Intel
Advisory
Breach
APT
Critical
237
75
32
11
14
1
High
145
184
63
21
44
4
Medium
78
82
49
13
44
11
Low
16
21
14
10
Hover to preview · click to filter
All-time · 2295 totalintensity = volume
LIVE
Critical Vulnerabilities Patched in Fortinet, Ivanti Products·Hackers Deploy MLTBackdoor Malware via Multi-Stage ClickFix Infection Chain·Hackers Abuse TikTok and Instagram Reels to Spread Malware via Fake Free Software Tutorials·ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Phoenix Contact·Anthropic Releases Claude Fable 5, Its Most Powerful AI Yet, With Cyber Safeguards·ServiceNow Flaw Exploited to Gain Unauthorized Access to Customer Instances·No Patch Planned for Exploited Arista EOS Vulnerability·Ivanti: Max severity Sentry flaw allows code execution as root·Windows BitLocker 0-Day Vulnerability Allows Attackers to Bypass Security Feature·Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows·Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS·Anthropic Released Claude Fable 5, the First Model in the Mythos Class·Anthropic Released Claude Fable 5, the First Model in Mythos Class·New Windows Defender 0-Day Exploit “RoguePlanet” Lets Attackers Gain SYSTEM-level Access·New Windows Defender 0-Day Exploit “RoguePlanet” Grants SYSTEM Access to Attackers·Critical Vulnerabilities Patched in Fortinet, Ivanti Products·Hackers Deploy MLTBackdoor Malware via Multi-Stage ClickFix Infection Chain·Hackers Abuse TikTok and Instagram Reels to Spread Malware via Fake Free Software Tutorials·ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Phoenix Contact·Anthropic Releases Claude Fable 5, Its Most Powerful AI Yet, With Cyber Safeguards·ServiceNow Flaw Exploited to Gain Unauthorized Access to Customer Instances·No Patch Planned for Exploited Arista EOS Vulnerability·Ivanti: Max severity Sentry flaw allows code execution as root·Windows BitLocker 0-Day Vulnerability Allows Attackers to Bypass Security Feature·Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows·Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS·Anthropic Released Claude Fable 5, the First Model in the Mythos Class·Anthropic Released Claude Fable 5, the First Model in Mythos Class·New Windows Defender 0-Day Exploit “RoguePlanet” Lets Attackers Gain SYSTEM-level Access·New Windows Defender 0-Day Exploit “RoguePlanet” Grants SYSTEM Access to Attackers·
✦ All🔴Vulnerabilities☣️Malware💾Data Breaches🎯APT & Nation-State📋Advisories🖥️Application Security⚙️OS Security🌐Network & Infra☁️Cloud Security📱Mobile Threats🎣Social Engineering🔍Threat Intelligence

Latest IntelligenceVulnerabilitiesPage 13

Search by keyword →
They don’t hack, they borrow: How fraudsters target credit unions
TI
Bleeping Computer

They don’t hack, they borrow: How fraudsters target credit unions

Fraudsters aren't hacking credit unions, they are exploiting normal business processes. Flare reveals how structured loan fraud methods use stolen identities to...

4 May 2026
Progress warns of critical MOVEit Automation auth bypass flaw
TI
Bleeping Computer

Progress warns of critical MOVEit Automation auth bypass flaw

Progress Software warned customers to patch a critical authentication bypass vulnerability in its MOVEit Automation enterprise-grade managed file transfer (MFT)...

4 May 2026
CISA Warns of Linux “Copy Fail” 0-Day Vulnerability Exploited to Root Systems
TI
Cyber Security News

CISA Warns of Linux “Copy Fail” 0-Day Vulnerability Exploited to Root Systems

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Linux kernel zero-day vulnerability to its Known Exploited Vulnerabilities...

4 May 2026
CISA Warns of Linux Kernel 0-Day Vulnerability Exploited in Attacks
TI
Cyber Security News

CISA Warns of Linux Kernel 0-Day Vulnerability Exploited in Attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Linux kernel zero-day vulnerability to its Known Exploited Vulnerabilities...

4 May 2026
CISA says ‘Copy Fail’ flaw now exploited to root Linux systems
TI
Bleeping Computer

CISA says ‘Copy Fail’ flaw now exploited to root Linux systems

CISA has warned that threat actors have started exploiting the "Copy Fail" Linux security vulnerability in the wild, one day after Theori researchers disclosed ...

4 May 2026
Apache MINA Vulnerabilities Enables Remote Code Execution Attacks
TI
Cyber Security News

Apache MINA Vulnerabilities Enables Remote Code Execution Attacks

The Apache MINA project has issued urgent security updates to address two critical vulnerabilities that could allow attackers to execute arbitrary code on affec...

4 May 2026
Exploitation of ‘Copy Fail’ Linux Vulnerability Begins
TI
Security Week

Exploitation of ‘Copy Fail’ Linux Vulnerability Begins

CISA has added the bug to its KEV list, and Microsoft has observed limited exploitation, mainly associated with PoC testing. The post Exploitation of ‘Cop...

4 May 2026
CISA Warns of cPanel & WHM Vulnerability Exploited in Attacks
TI
Cyber Security News

CISA Warns of cPanel & WHM Vulnerability Exploited in Attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning regarding a critical security flaw affecting widely used web hosti...

4 May 2026
Over 40,000 Servers Compromised in Ongoing cPanel Exploitation
TI
Security Week

Over 40,000 Servers Compromised in Ongoing cPanel Exploitation

The attacks likely target CVE-2026-41940, a recently patched zero-day leading to administrative access. The post Over 40,000 Servers Compromised in Ongoing cPan...

4 May 2026
FreeBSD DHCP Client Vulnerability Enables Remote Code Execution as Root
TI
Cyber Security News

FreeBSD DHCP Client Vulnerability Enables Remote Code Execution as Root

The FreeBSD Project has released a critical security advisory addressing a severe flaw in its default IPv4 DHCP client. Tracked as CVE-2026-42511, this vul...

4 May 2026
US Military Reaches Deals With 7 Tech Companies to Use Their AI on Classified Systems
TI
Security Week

US Military Reaches Deals With 7 Tech Companies to Use Their AI on Classified Systems

Google, Microsoft, Amazon Web Services, Nvidia, OpenAI, Reflection and SpaceX will provide resources to help augment warfighter decision-making in complex opera...

3 May 2026
Critrical cPanel flaw mass-exploited in "Sorry" ransomware attacks
TI
Bleeping Computer

Critrical cPanel flaw mass-exploited in "Sorry" ransomware attacks

A new disclosed cPanel flaw tracked as CVE-2026-41940 is being mass-exploited to breach websites and encrypt data in "Sorry" ransomware attacks. [...]...

2 May 2026
Massive cPanel campaign compromised 44,000 servers worldwide
TI
Cyber Insider

Massive cPanel campaign compromised 44,000 servers worldwide

A surge in attacks exploiting the critical cPanel & WHM vulnerability CVE-2026-41940 has resulted in at least 44,000 compromised systems now actively scann...

2 May 2026
Hackers Breach Government and Military Servers by Exploiting cPanel Vulnerability
TI
Cyber Security News

Hackers Breach Government and Military Servers by Exploiting cPanel Vulnerability

A sophisticated adversarial campaign targeting South-East Asian government and military infrastructure, combining rapid exploitation of a critical cPanel authen...

2 May 2026
cPanelSniper – PoC Exploit Disclosed for cPanel Vulnerability, 44,000 Servers Compromised
TI
Cyber Security News

cPanelSniper – PoC Exploit Disclosed for cPanel Vulnerability, 44,000 Servers Compromised

A weaponized proof-of-concept (PoC) exploit framework dubbed “cPanelSniper” has been publicly released for CVE-2026-41940, a maximum-severity authen...

2 May 2026
TI
Bleeping Computer

Edtech firm Instructure confirms data breach after Salesforce instance hack

Instructure, the company behind the widely used Canvas learning platform, has disclosed a security incident after a social engineering attack allowed hackers to...

1 May 2026
The Agency Mirage: Why AI Needs Real Engineering, Not Just Hype
TI
Cyber Security News

The Agency Mirage: Why AI Needs Real Engineering, Not Just Hype

By Marceu Martins De Souza Filho, M.Sc. I. The 1999 Mirror: We’ve Been Here Before In 1999, the world was obsessed with “eyeballs.” The goal was to ...

1 May 2026
In Other News: Scattered Spider Hacker Arrested, SOC Effectiveness Metrics, NSA Tool Vulnerability
TI
Security Week

In Other News: Scattered Spider Hacker Arrested, SOC Effectiveness Metrics, NSA Tool Vulnerability

Other noteworthy stories that might have slipped under the radar: OFAC hits Iranian central bank crypto reserves, ADT data leak, CISA guidance for zero trust in...

1 May 2026
Google Adjusts Bug Bounties: Chrome Payouts Drop as Android Rewards Rise Amid AI Surge
TI
Security Week

Google Adjusts Bug Bounties: Chrome Payouts Drop as Android Rewards Rise Amid AI Surge

The maximum reward for a zero-click Pixel Titan M exploit with persistence has increased to $1.5 million. The post Google Adjusts Bug Bounties: Chrome Payouts D...

1 May 2026
New DDoS Malware Exploits Jenkins to Attack Valve Source Engine Game Servers
TI
Cyber Security News

New DDoS Malware Exploits Jenkins to Attack Valve Source Engine Game Servers

A newly discovered DDoS botnet is exploiting exposed Jenkins servers to launch powerful attacks against Valve Source Engine game infrastructure. Security resear...

1 May 2026
← PreviousNext →