Threat Intelligence
Recent CVEs, active exploitation campaigns, threat actor TTPs, IOC analysis.
Apache HTTP/2 CVE-2026-23918: Double-Free RCE
–
NewsCisco SD-WAN CVE-2026-20182 Zero-Day (10.0)
–
NewsCanvas LMS Breach 2026: ShinyHunters, 275M Records
–
NewsThe SharePoint Zero-Day (CVE-2026-32201): Detection, Patching, and Hunt Guide
An actively-exploited SharePoint RCE hit 1,300+ servers. If you run on-prem SharePoint, act today.
AI SecurityThe First AI-Developed Exploit: What an AI-Built 2FA Bypass Means for Defenders
AI just wrote a working exploit to bypass 2FA. The bar for exploit development dropped — here is the realistic threat picture.
NewsInitial Access Brokers: The Hidden Economy Behind Almost Every Breach
Ransomware crews rarely break in themselves — they buy the access. Meet the Initial Access Broker economy.
NewsPost-Quantum Ransomware and Harvest-Now-Decrypt-Later: The 2026 Crypto Clock
Attackers are adopting post-quantum crypto faster than defenders. Here is why the migration clock is already running.
NewsEncryptionless Extortion: Why Ransomware Stopped Encrypting and Started Leaking
More crews now steal and threaten to leak instead of encrypting. Your backups will not save you from this one.
NewsEDR Killers and BYOVD: How 2026 Ransomware Disables Your Defences First
Before the ransomware fires, the operator kills your EDR. Here is how BYOVD works and how to block it.
Incident ResponseScenario Brief: Ransomware Tradecraft Against Indian Hospitals via Unpatched Backups
Tabletop-ready scenario: ransomware affiliates targeting Veeam backup servers as initial access. ABDM propagation risk and the hospital defender checklist.