{"data":[{"id":1734815,"title":"Avada Builder WordPress plugin flaws allow site credential theft","link":"https://www.bleepingcomputer.com/news/security/avada-builder-wordpress-plugin-flaws-allow-site-credential-theft/","summary":"Two vulnerabilities in the Avada Builder plugin for WordPress, with an estimated one million active installations, allow hackers to read arbitrary files and ...","source":"BleepingComputer","category":"General","vendor":"Amazon","published_at":"2026-05-15T15:56:56.000Z","created_at":"2026-05-15 15:59:48","sector":null,"mitre_techniques":[{"id":"T1078","name":"Valid Accounts","tactic":"Initial Access"}],"iocs":null,"vendors_all":["Amazon","WordPress"],"dedup_hash":"3ab2ce4e8ae39bdb","entities_processed":1,"tlp":"WHITE"},{"id":1725255,"title":"In Other News: Big Tech vs Canada Encryption Bill, Cisco’s Free AI Security Spec, Audi App Flaws","link":"https://www.securityweek.com/in-other-news-big-tech-vs-canada-encryption-bill-ciscos-free-ai-security-spec-audi-app-flaws/","summary":"Other noteworthy stories that might have slipped under the radar: Nvidia cloud gaming data breach, Android 17 security upgrades, FBI warning after ShinyHunte...","source":"SecurityWeek","category":"Data Breach","vendor":"Google","published_at":"2026-05-15T14:52:16.000Z","created_at":"2026-05-15 14:58:45","sector":null,"mitre_techniques":null,"iocs":null,"vendors_all":["Google","Amazon","Cisco","NVIDIA"],"dedup_hash":"c6841c3211517e35","entities_processed":1,"tlp":"WHITE"},{"id":1723639,"title":"Microsoft caves in: Edge to stop loading passwords in memory on startup","link":"https://www.bleepingcomputer.com/news/microsoft/microsoft-caves-in-edge-to-stop-loading-passwords-in-memory-on-startup/","summary":"Microsoft is updating the Edge web browser to ensure it no longer loads saved passwords into process memory in clear text at startup. [.","source":"BleepingComputer","category":"General","vendor":"Microsoft","published_at":"2026-05-15T14:49:39.000Z","created_at":"2026-05-15 14:50:24","sector":null,"mitre_techniques":null,"iocs":null,"vendors_all":["Microsoft"],"dedup_hash":"f97e3adbfa3c5fec","entities_processed":1,"tlp":"WHITE"},{"id":1725036,"title":"Microsoft Edge to stop loading cleartext passwords in memory on startup","link":"https://www.bleepingcomputer.com/news/microsoft/microsoft-edge-to-stop-loading-cleartext-passwords-in-memory-on-startup/","summary":"Microsoft is updating the Edge web browser to ensure it no longer loads saved passwords into process memory in clear text at startup. [.","source":"BleepingComputer","category":"General","vendor":"Microsoft","published_at":"2026-05-15T14:49:39.000Z","created_at":"2026-05-15 14:58:44","sector":null,"mitre_techniques":null,"iocs":null,"vendors_all":["Microsoft"],"dedup_hash":"d8b74eea0ec42a6a","entities_processed":1,"tlp":"WHITE"},{"id":1723232,"title":"When compliance isn’t continuous, that’s a security risk","link":"https://www.scworld.com/perspective/when-compliance-isnt-continuous-thats-a-security-risk","summary":"Companies need to treat compliance as a service that helps the business compete.","source":"SC Media","category":"General","vendor":null,"published_at":"2026-05-15T14:32:07.000Z","created_at":"2026-05-15 14:43:45","sector":null,"mitre_techniques":null,"iocs":null,"vendors_all":null,"dedup_hash":"12461d80f7898c1d","entities_processed":1,"tlp":"WHITE"},{"id":1718470,"title":"Gremlin Stealer Evolves into Modular Threat with Advanced Evasion Capabilities ","link":"https://www.infosecurity-magazine.com/news/gremlin-stealer-evolves-into/","summary":"A new Gremlin stealer variant has evolved into a modular toolkit with advanced evasion and data theft capabilities, according to new Unit 42 research","source":"Infosecurity Magazine","category":"General","vendor":null,"published_at":"2026-05-15T14:19:00.000Z","created_at":"2026-05-15 14:26:44","sector":null,"mitre_techniques":[{"id":"T1041","name":"Exfiltration Over C2 Channel","tactic":"Exfiltration"}],"iocs":null,"vendors_all":null,"dedup_hash":"525122d8ececdfdf","entities_processed":1,"tlp":"WHITE"},{"id":1716913,"title":"Cisco zero-day under ongoing attack by persistent threat group","link":"https://cyberscoop.com/cisco-sd-wan-zero-day-exploited/","summary":"The threat group behind the attacks is also linked to a series of recently disclosed vulnerabilities in the vendor’s firewalls and SD-WAN systems. The post C...","source":"Cyberscoop","category":"Zero-Day","vendor":"Cisco","published_at":"2026-05-15T14:11:59.000Z","created_at":"2026-05-15 14:20:24","sector":null,"mitre_techniques":null,"iocs":null,"vendors_all":["Cisco"],"dedup_hash":"70079dff301899a0","entities_processed":1,"tlp":"WHITE"},{"id":1715427,"title":"CVE-2026-42897: Microsoft confirms active exploitation of Exchange Server zero-day","link":"https://securityaffairs.com/192204/security/cve-2026-42897-microsoft-confirms-active-exploitation-of-exchange-server-zero-day.html","summary":"Microsoft warned that attackers are exploiting a new Exchange Server zero-day vulnerability, tracked as CVE-2026-42897, in the wild. Microsoft warned that th...","source":"Security Affairs","category":"Zero-Day","vendor":"Microsoft","published_at":"2026-05-15T14:03:58.000Z","created_at":"2026-05-15 14:11:44","sector":null,"mitre_techniques":null,"iocs":{"cves":["CVE-2026-42897"]},"vendors_all":["Microsoft"],"dedup_hash":"b6ab1d379cbc76c5","entities_processed":1,"tlp":"WHITE"},{"id":1715287,"title":"Inside the REMUS Infostealer: Session Theft, MaaS, and Rapid Evolution","link":"https://www.bleepingcomputer.com/news/security/inside-the-remus-infostealer-session-theft-maas-and-rapid-evolution/","summary":"Stolen browser sessions and authentication tokens are becoming more valuable than stolen passwords. Flare explains how the REMUS infostealer evolved around s...","source":"BleepingComputer","category":"Malware","vendor":null,"published_at":"2026-05-15T14:02:12.000Z","created_at":"2026-05-15 14:11:44","sector":null,"mitre_techniques":[{"id":"T1598","name":"Phishing for Information","tactic":"Reconnaissance"}],"iocs":null,"vendors_all":null,"dedup_hash":"13e804743eaeee86","entities_processed":1,"tlp":"WHITE"},{"id":1733473,"title":"Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistence","link":"https://thehackernews.com/2026/05/four-openclaw-flaws-enable-data-theft.html","summary":"Cybersecurity researchers have disclosed a set of four security flaws in OpenClaw that could be chained to achieve data theft, privilege escalation, and pers...","source":"The Hacker News","category":"Vulnerability Disclosure","vendor":"Amazon","published_at":"2026-05-15T13:35:04.000Z","created_at":"2026-05-15 15:51:34","sector":null,"mitre_techniques":[{"id":"T1548","name":"Abuse Elevation Control Mechanism","tactic":"Privilege Escalation"},{"id":"T1041","name":"Exfiltration Over C2 Channel","tactic":"Exfiltration"}],"iocs":null,"vendors_all":["Amazon"],"dedup_hash":"b9d237b09c93daf2","entities_processed":1,"tlp":"WHITE"},{"id":1710639,"title":"Gunra Ransomware Expands RaaS After Conti Locker Shift","link":"https://gbhackers.com/gunra-ransomware-2/","summary":"Gunra ransomware is rapidly evolving into a more structured and dangerous cybercrime operation after shifting from a Conti-based locker to its own Ransomware...","source":"GBHackers","category":"Ransomware","vendor":null,"published_at":"2026-05-15T13:23:49.000Z","created_at":"2026-05-15 13:26:47","sector":null,"mitre_techniques":[{"id":"T1588","name":"Obtain Capabilities","tactic":"Resource Development"}],"iocs":null,"vendors_all":null,"dedup_hash":"d87d97eebe6c97d6","entities_processed":1,"tlp":"WHITE"},{"id":1710502,"title":"CISA orders all federal agencies to patch exploited bug in Cisco SD-WAN systems by Sunday","link":"https://therecord.media/cisa-orders-all-federal-agencies-to-patch-cisco-sd-wan-bug","summary":"Cisco released a patch for the vulnerability on Thursday, writing in an advisory that it could “allow an unauthenticated, remote attacker to bypass authentic...","source":"The Record","category":"Vulnerability Disclosure","vendor":"Cisco","published_at":"2026-05-15T13:16:00.000Z","created_at":"2026-05-15 13:26:47","sector":"Government","mitre_techniques":null,"iocs":null,"vendors_all":["Cisco"],"dedup_hash":"2e647e3b2b102bb5","entities_processed":1,"tlp":"WHITE"},{"id":1707154,"title":"The Good, the Bad and the Ugly in Cybersecurity – Week 20","link":"https://www.sentinelone.com/blog/the-good-the-bad-and-the-ugly-in-cybersecurity-week-20-7/","summary":"Police dismantle dark web markets, threat actors weaponize AI for zero-day exploits, and ShinyHunters extorts an edutech giant via XSS flaws.","source":"SentinelOne Blog","category":"Zero-Day","vendor":"Amazon","published_at":"2026-05-15T13:00:14.000Z","created_at":"2026-05-15 13:00:19","sector":null,"mitre_techniques":null,"iocs":null,"vendors_all":["Amazon"],"dedup_hash":"947da54843b1e78b","entities_processed":1,"tlp":"WHITE"},{"id":1740056,"title":"PureLogs: Delivery via PawsRunner Steganography","link":"https://feeds.fortinet.com/~/956103044/0/fortinet/blog/threat-research~PureLogs-Delivery-via-PawsRunner-Steganography","summary":"FortiGuard Labs has analyzed a steganography-based malware campaign that uses PawsRunner to deliver the PureLogs infostealer, highlighting evolving delivery ...","source":"Fortinet Blog","category":"Campaigns","vendor":"Amazon","published_at":"2026-05-15T13:00:00.000Z","created_at":"2026-05-15 16:21:33","sector":null,"mitre_techniques":null,"iocs":null,"vendors_all":["Amazon"],"dedup_hash":"846ec84b4f65acab","entities_processed":1,"tlp":"WHITE"},{"id":1707965,"title":"VMware Fusion Flaw Could Allow Attackers to Gain Root Privileges","link":"https://gbhackers.com/vmware-fusion-flaw-gain-root-privileges/","summary":"A newly disclosed vulnerability in VMware Fusion has raised serious security concerns after researchers confirmed it could allow attackers to escalate privil...","source":"GBHackers","category":"CVE","vendor":"VMware","published_at":"2026-05-15T12:47:02.000Z","created_at":"2026-05-15 13:00:20","sector":null,"mitre_techniques":null,"iocs":{"cves":["CVE-2026-41702"]},"vendors_all":["VMware","Broadcom"],"dedup_hash":"af5e57e63bd348b5","entities_processed":1,"tlp":"WHITE"},{"id":1706940,"title":"Google lets Workspace admins apply one policy across all SAML apps","link":"https://www.helpnetsecurity.com/2026/05/15/google-workspace-caa-default-policy-saml-applications/","summary":"Google has updated Context-Aware Access (CAA) in Google Workspace to introduce a default policy assignment for SAML applications. SAML applications are third...","source":"Help Net Security","category":"General","vendor":"Google","published_at":"2026-05-15T12:44:49.000Z","created_at":"2026-05-15 13:00:19","sector":null,"mitre_techniques":null,"iocs":null,"vendors_all":["Google"],"dedup_hash":"951d85b9ec41f238","entities_processed":1,"tlp":"WHITE"},{"id":1706941,"title":"Cisco patches another actively exploited SD-WAN zero-day (CVE-2026-20182)","link":"https://www.helpnetsecurity.com/2026/05/15/cisco-sd-wan-zero-day-cve-2026-20182/","summary":"Cisco has patched yet another Catalyst SD-WAN Controller authentication bypass vulnerability (CVE-2026-20182) that has been exploited as a zero-day by “a hig...","source":"Help Net Security","category":"Zero-Day","vendor":"Cisco","published_at":"2026-05-15T12:43:27.000Z","created_at":"2026-05-15 13:00:19","sector":null,"mitre_techniques":[{"id":"T1556","name":"Modify Authentication Process","tactic":"Credential Access"}],"iocs":{"cves":["CVE-2026-20182"]},"vendors_all":["Cisco"],"dedup_hash":"3096a6d6091d802c","entities_processed":1,"tlp":"WHITE"},{"id":1706252,"title":"Shai-Hulud Worm Steals Dev Secrets Across npm, GitHub, AWS & Kubernetes","link":"https://gbhackers.com/shai-hulud-worm-steals-dev-secrets/","summary":"Shai-Hulud is a major cybersecurity threat targeting the open-source software supply chain. Security researchers are raising alarms over “Shai-Hulud,” a self...","source":"GBHackers","category":"Campaigns","vendor":"Amazon","published_at":"2026-05-15T12:39:48.000Z","created_at":"2026-05-15 12:45:19","sector":"Manufacturing","mitre_techniques":[{"id":"T1195","name":"Supply Chain Compromise","tactic":"Initial Access"}],"iocs":null,"vendors_all":["Amazon","GitHub","Intel","Kubernetes"],"dedup_hash":"0fb1b85c866ec800","entities_processed":1,"tlp":"WHITE"},{"id":1705738,"title":"Microsoft Reports Severe Zero-Day Flaw in On-Prem Exchange Servers","link":"https://www.infosecurity-magazine.com/news/microsoft-zeroday-exchange-servers/","summary":"The zero-day vulnerability affects on-premises installations for all versions of Exchange Server 2016, 2019 and Subscription Edition","source":"Infosecurity Magazine","category":"Zero-Day","vendor":"Microsoft","published_at":"2026-05-15T12:35:00.000Z","created_at":"2026-05-15 12:45:19","sector":"Transportation","mitre_techniques":null,"iocs":null,"vendors_all":["Microsoft"],"dedup_hash":"057dda8d32cd906e","entities_processed":1,"tlp":"WHITE"},{"id":1704131,"title":"Microsoft to automatically roll back faulty Windows drivers","link":"https://www.bleepingcomputer.com/news/microsoft/microsoft-to-automatically-roll-back-faulty-windows-drivers/","summary":"Microsoft is introducing a new Windows Update capability that will allow it to remotely roll back problematic Windows drivers delivered through Windows Updat...","source":"BleepingComputer","category":"General","vendor":"Microsoft","published_at":"2026-05-15T12:29:48.000Z","created_at":"2026-05-15 12:30:19","sector":null,"mitre_techniques":null,"iocs":null,"vendors_all":["Microsoft"],"dedup_hash":"3c36bc50946ca3ce","entities_processed":1,"tlp":"WHITE"}],"pagination":{"page":1,"limit":20,"total":2259,"pages":113}}