Every Old Vulnerability Is Now an AI Exploitability
Live threat intelligence feed

Targeted
Threat Intelligence

Aggregated threat intelligence from CISA, NVD, and leading security publications. AI-curated. Updated every 30 minutes.

Threat Matrix — All Time
Vuln
Malware
Intel
Advisory
Breach
APT
Critical
237
75
32
11
14
1
High
145
184
63
21
44
4
Medium
78
82
49
13
44
11
Low
16
21
14
10
Hover to preview · click to filter
All-time · 2295 totalintensity = volume
LIVE
Critical Vulnerabilities Patched in Fortinet, Ivanti Products·Hackers Deploy MLTBackdoor Malware via Multi-Stage ClickFix Infection Chain·Hackers Abuse TikTok and Instagram Reels to Spread Malware via Fake Free Software Tutorials·ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Phoenix Contact·Anthropic Releases Claude Fable 5, Its Most Powerful AI Yet, With Cyber Safeguards·ServiceNow Flaw Exploited to Gain Unauthorized Access to Customer Instances·No Patch Planned for Exploited Arista EOS Vulnerability·Ivanti: Max severity Sentry flaw allows code execution as root·Windows BitLocker 0-Day Vulnerability Allows Attackers to Bypass Security Feature·Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows·Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS·Anthropic Released Claude Fable 5, the First Model in the Mythos Class·Anthropic Released Claude Fable 5, the First Model in Mythos Class·New Windows Defender 0-Day Exploit “RoguePlanet” Lets Attackers Gain SYSTEM-level Access·New Windows Defender 0-Day Exploit “RoguePlanet” Grants SYSTEM Access to Attackers·Critical Vulnerabilities Patched in Fortinet, Ivanti Products·Hackers Deploy MLTBackdoor Malware via Multi-Stage ClickFix Infection Chain·Hackers Abuse TikTok and Instagram Reels to Spread Malware via Fake Free Software Tutorials·ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Phoenix Contact·Anthropic Releases Claude Fable 5, Its Most Powerful AI Yet, With Cyber Safeguards·ServiceNow Flaw Exploited to Gain Unauthorized Access to Customer Instances·No Patch Planned for Exploited Arista EOS Vulnerability·Ivanti: Max severity Sentry flaw allows code execution as root·Windows BitLocker 0-Day Vulnerability Allows Attackers to Bypass Security Feature·Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows·Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS·Anthropic Released Claude Fable 5, the First Model in the Mythos Class·Anthropic Released Claude Fable 5, the First Model in Mythos Class·New Windows Defender 0-Day Exploit “RoguePlanet” Lets Attackers Gain SYSTEM-level Access·New Windows Defender 0-Day Exploit “RoguePlanet” Grants SYSTEM Access to Attackers·
✦ All🔴Vulnerabilities☣️Malware💾Data Breaches🎯APT & Nation-State📋Advisories🖥️Application Security⚙️OS Security🌐Network & Infra☁️Cloud Security📱Mobile Threats🎣Social Engineering🔍Threat Intelligence

Latest IntelligenceVulnerabilitiesPage 3

Search by keyword →
CISA orders federal agencies to patch actively exploited cPanel plugin flaw within 4 days
TI
Cyber Insider

CISA orders federal agencies to patch actively exploited cPanel plugin flaw within 4 days

The US Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to patch a critical vulnerability in the LiteSpeed cPanel plugin tha...

27 May 2026
CISA orders federal agencies to patch actively exploited cPanel plugin flaw within 4 days
TI
Cyber Insider

CISA orders federal agencies to patch actively exploited cPanel plugin flaw within 4 days

The US Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to patch a critical vulnerability in the LiteSpeed cPanel plugin tha...

27 May 2026
Can you enforce strong Active Directory password rules without frustrating users?
TI
Bleeping Computer

Can you enforce strong Active Directory password rules without frustrating users?

Strong Active Directory passwords don't have to come at the expense of usability. Specops Software explains how passphrases, breached password protection, and s...

27 May 2026
CISA gives feds 4 days to patch actively exploited cPanel plugin flaw
TI
Bleeping Computer

CISA gives feds 4 days to patch actively exploited cPanel plugin flaw

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has given U.S. federal agencies four days to secure their servers against a critical vulnerabil...

27 May 2026
Fake GTA 6 pre-orders and beta scams spread malware ahead of game launch
TI
Cyber Insider

Fake GTA 6 pre-orders and beta scams spread malware ahead of game launch

Cybercriminals are exploiting excitement around Grand Theft Auto 6 to spread malware, phishing pages, and fake pre-order scams ahead of the game’s official rele...

26 May 2026
KnowledgeDeliver flaw exploited as a zero-day to install web shells
TI
Bleeping Computer

KnowledgeDeliver flaw exploited as a zero-day to install web shells

Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell. ...

26 May 2026
CISA orders feds to patch actively exploited Drupal vulnerability
TI
Bleeping Computer

CISA orders feds to patch actively exploited Drupal vulnerability

CISA has given U.S. government agencies until Wednesday evening to secure their servers against an SQL injection vulnerability in the Drupal content management ...

26 May 2026
Drupal warns of active exploitation attempts targeting critical SQL injection flaw
TI
Cyber Insider

Drupal warns of active exploitation attempts targeting critical SQL injection flaw

Drupal is warning administrators that attackers are already attempting to exploit a newly disclosed SQL injection vulnerability affecting the open-source conten...

25 May 2026
Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign
TI
Bleeping Computer

Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign

A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious JavaScript code that triggers Clic...

24 May 2026
Trend Micro warns of Apex One zero-day exploited in the wild
TI
Bleeping Computer

Trend Micro warns of Apex One zero-day exploited in the wild

Japanese cybersecurity software company Trend Micro has addressed an Apex One zero-day vulnerability exploited in attacks targeting Windows systems. [...]...

22 May 2026
Drupal: Critical SQL injection flaw now targeted in attacks
TI
Bleeping Computer

Drupal: Critical SQL injection flaw now targeted in attacks

Drupal is warning that hackers are attempting to exploit a "highly critical" SQL injection vulnerability announced earlier this week. [...]...

22 May 2026
Ubiquiti patches three max severity UniFi OS vulnerabilities
TI
Bleeping Computer

Ubiquiti patches three max severity UniFi OS vulnerabilities

Ubiquiti has released security updates to patch three maximum severity vulnerabilities in Unify OS that can be exploited by remote attackers without privileges....

22 May 2026
Trump Mobile exposes data of customers who ordered the T1 phone
TI
Cyber Insider

Trump Mobile exposes data of customers who ordered the T1 phone

Trump Mobile, the wireless carrier and smartphone brand tied to US President Donald Trump, is reportedly exposing sensitive customer information through an easi...

21 May 2026
Max severity Cisco Secure Workload flaw gives Site Admin privileges
TI
Bleeping Computer

Max severity Cisco Secure Workload flaw gives Site Admin privileges

Cisco has released security updates to address a maximum-severity vulnerability in Secure Workload that allows attackers to gain Site Admin privileges. [...]...

21 May 2026
Microsoft warns of new Defender zero-days exploited in attacks
TI
Bleeping Computer

Microsoft warns of new Defender zero-days exploited in attacks

On Wednesday, Microsoft started rolling out security patches for two Defender vulnerabilities that have been exploited in zero-day attacks. [...]...

21 May 2026
Hackers bypass SonicWall VPN MFA due to incomplete patching
TI
Bleeping Computer

Hackers bypass SonicWall VPN MFA due to incomplete patching

Threat actors brute-forced VPN credentials and bypassed multi-factor authentication (MFA) on SonicWall Gen6 SSL-VPN appliances to deploy tools used in ransomwar...

20 May 2026
Drupal critical update to fix bug with high exploitation risk
TI
Bleeping Computer

Drupal critical update to fix bug with high exploitation risk

Drupal has announced a "core security release" scheduled for later today, warning that threat actors might develop exploits within hours of the update disclosur...

20 May 2026
Exploit released for new PinTheft Arch Linux root escalation flaw
TI
Bleeping Computer

Exploit released for new PinTheft Arch Linux root escalation flaw

PinTheft, a recently patched Linux privilege escalation vulnerability, now has a publicly available proof-of-concept (PoC) exploit that allows local attackers t...

20 May 2026
Microsoft shares mitigation for YellowKey Windows zero-day
TI
Bleeping Computer

Microsoft shares mitigation for YellowKey Windows zero-day

Microsoft has shared mitigations for YellowKey, a recently disclosed Windows BitLocker zero-day vulnerability that grants access to protected drives. [...]...

20 May 2026
TI
CIS Advisories

Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution

Multiple vulnerabilities have been discovered in Mozilla products, the most severe of which could allow for arbitrary code execution. Mozilla Firefox is a web b...

20 May 2026
← PreviousNext →