LIVE NEWSROOM · --:-- · June 2, 2026
A LIBRARY FOR SECURITY RESEARCHERS

Threat intel,
decoded &
skills sharpened.

Daily breach reporting, CVE deep-dives, and hands-on hacking tutorials — written by practitioners for the analysts, defenders, and learners who actually do the work.

Read today’s intel Start learning
405+ARTICLES PUBLISHED
DailyTHREAT UPDATES
2021TRUSTED SINCE
BREAKING

NEWS · June 2, 2026 · 8 MIN READ

CVE-2026-46840: Oracle REST Data Services CVSS 10.0 in First Monthly CSPU

CVE-2026-46840, a CVSS 10.0 flaw in Oracle REST Data Services, is actively exploited and on CISA KEV.

EXPLORENews 235Blog 108THM Walkthrough 28Information Gathering 13Tools 11Scanning Network 6Programming 6Cryptography 4

Latest News

View all →

CVE-2026-46840: Oracle REST Data Services CVSS 10.0 in First Monthly CSPU

Critical·Jun 2, 2026·1 views·8 min readCVE-2026-46840, a CVSS 10.0 flaw in Oracle REST Data Services, is actively exploited and on CISA KEV.

Microsoft Threatens Researcher Nightmare Eclipse Over Windows Zero-Days

Critical·Jun 2, 2026·2 views·8 min readMicrosoft threatened criminal prosecution of anonymous researcher Nightmare Eclipse after six Windows zero-days were published.

5,000+ Election Phishing Domains Target 2026 US Midterm Voters

High·Jun 2, 2026·1 views·7 min readCheck Point identified 5,150+ election phishing domains registered since April 2026, targeting US midterm voters with fake donation sites, voter portals…

DriveSurge Hijacks 700+ Sites to Spread LummaC2 via ClickFix

High·Jun 2, 2026·1 views·9 min readDriveSurge exploited CVE-2026-26980 in Ghost CMS to hijack 700+ education and tech sites, spreading LummaC2 via fake Cloudflare dialogs and FakeUpdate…

Dashlane Users Locked Out in Brute Force Attack Campaign

Critical·Jun 2, 2026·1 views·6 min readBrute force attacks against Dashlane locked out users on May 31–June 1, 2026. No data breach confirmed, but affected users should audit accounts and…

Fake BlueWallet Download Installs macOS Stealer Targeting Crypto Wallets

High·Jun 2, 2026·1 views·8 min readA fake BlueWallet site at update-bluewallet[.]com delivers AppleScript malware that steals macOS Keychain, crypto wallets, and hijacks BTC/ETH/SOL…

LLMShare: Attackers Host Malware on chatgpt.com via Shared Chats

High·Jun 2, 2026·1 views·8 min readLLMShare attack abuses ChatGPT shared conversation URLs to host fake outage pages that deliver Odyssey Stealer malware.

Gamaredon Hides GammaWorm in NTFS Data Streams to Spy on Ukraine

High·Jun 1, 2026·5 views·9 min readFSB-linked Gamaredon conceals GammaWorm in NTFS alternate data streams using CVE-2025-8088 WinRAR exploit.

Research Work

All guides →

DORA Compliance for US Banks with EU Branches: ICT Risk Mandate

Medium·1·15 min

CMMC 2.0 Level 2 Certification Cost: C3PAO Guide & 90-Day Sprint

Medium·2·15 min

NIS2 Compliance for US Companies with EU Operations: 2026 Guide

Medium·1·17 min

ISO 27001:2022 Certification Cost: 12-Month Roadmap and Auditor Guide

Medium·1·16 min

PCI DSS 4.0.1 Compliance Cost 2026: 18-Month Budget for Mid-Market

Medium·1·12 min

How to Reduce Cyber Insurance Premiums: 7 Underwriter Controls (2026)

Medium·1·16 min

Cyber Insurance for Manufacturing 2026: The OT/ICS Coverage Gaps

High·2·17 min

Cyber Insurance for Law Firms 2026: ABA Rule 1.6, Premiums, and Claims

High·1·14 min

Cyber Insurance for Healthcare Providers: 2026 Premiums & HIPAA Riders

Medium·3·17 min

Dutch Police Arrest Man Over Ajax Hack Exposing 300,000 Fan Records

Medium·1·9 min

Trending This Week

  1. 01What is Information GatheringInformation Gathering·Dec 9·7 min
  2. 02Best Information Gathering ToolsInformation Gathering·Dec 13·12 min
  3. 03How to install knockpy on Linux for information gatheringTools·Dec 13·5 min

Popular Tags

Browse by topic · auto-updates daily
#patch 40#supply chain 35#network 32#ethical hacking 30#RCE 30#linux 28#malware 27#phishing 27#tool 26#thm walkthrough 24#ip address 22#walkthrough 22#footprinting 20#Passive Information Gathering 19#credential theft 19#ransomware 18#zero-day 17#data breach 16#exploit 15#AI security 14#patch 40#supply chain 35#network 32#ethical hacking 30#RCE 30#linux 28#malware 27#phishing 27#tool 26#thm walkthrough 24#ip address 22#walkthrough 22#footprinting 20#Passive Information Gathering 19#credential theft 19#ransomware 18#zero-day 17#data breach 16#exploit 15#AI security 14
#ShinyHunters 14#threat-intelligence 14#information gathering 13#CISA 12#critical infrastructure 12#extortion 10#infostealer 10#threat intelligence 10#Google 9#AI-security 9#security news 8#supply chain attack 8#backdoor 8#HIPAA 8#Chrome 8#cloud security 8#nmap 7#network security 7#THM 7#OT security 7#ShinyHunters 14#threat-intelligence 14#information gathering 13#CISA 12#critical infrastructure 12#extortion 10#infostealer 10#threat intelligence 10#Google 9#AI-security 9#security news 8#supply chain attack 8#backdoor 8#HIPAA 8#Chrome 8#cloud security 8#nmap 7#network security 7#THM 7#OT security 7

    Actively exploited · CISA KEV

    Recently added to the KEV catalog

    VIEW FULL CATALOG →
    CVE-2024-21182

    Oracle WebLogic Server Unspecified Vulnerability

    Oracle WebLogic Server

    added 2026-06-01 · due 2026-06-04
    CVE-2026-0257

    Palo Alto Networks PAN-OS Authentication Bypass Vulnerability

    Palo Alto Networks PAN-OS

    added 2026-05-29 · due 2026-06-01
    CVE-2026-48027 RANSOMWARE

    Nx Console Embedded Malicious Code Vulnerability

    Nx Nx Console

    added 2026-05-27 · due 2026-06-10
    CVE-2026-45321 RANSOMWARE

    TanStack Unspecified Vulnerability

    TanStack TanStack

    added 2026-05-27 · due 2026-06-10
    CVE-2026-8398

    Daemon Tools Lite Embedded Malicious Code Vulnerability

    Daemon Daemon Tools Lite

    added 2026-05-27 · due 2026-05-30
    CVE-2026-48172

    LiteSpeed cPanel Plugin Privilege Escalation Vulnerability

    LiteSpeed cPanel Plugin

    added 2026-05-26 · due 2026-05-29
    CVE-2026-9082

    Drupal Core SQL Injection Vulnerability

    Drupal Core

    added 2026-05-22 · due 2026-05-27
    CVE-2025-34291

    Langflow Origin Validation Error Vulnerability

    Langflow Langflow

    added 2026-05-21 · due 2026-06-04

    Sponsored
    Scroll to Top
    Ad