Skip to main content
VIISeven Vector
LOCAL--:--
CT--:--
PT--:--
UTC--:--

Live · refresh 30m164 signals in windowCISA · NVD · Krebs · BleepingComputer · Dark Reading Print briefing

On KEV · 7D

7

Actively exploited

Critical CVEs · 24H

0

CVSS ≥ 9.0

Threats · 24H

514

Industry feeds

Advisories · 7D

202

Government guidance

Needs eyes now

4 items · click to open

Why · Top of mind

  1. 01

    Actively exploited:

    The ShinyHunters threat group is currently exploiting an unpatched Oracle ERP zero-day vulnerability to exfiltrate sensitive student and institutional data from U.S. higher education institutions.

  2. 02

    Supply chain attack:

    Over 400 Arch Linux User Repository (AUR) packages were hijacked to deploy credential stealers and eBPF rootkits, specifically targeting developer environments via malicious build scripts.

  3. 03

    Nation-state persistence:

    The China-linked actor Velvet Ant has been identified using a backdoor in Linux authentication software to maintain undetected access and bypass login protocols on enterprise servers for nearly a decade.

  4. 04

    Regulatory intervention:

    Following a U.S. government order, Anthropic is suspending access to its Fable 5 and Mythos 5 models for all users to prevent foreign nationals from accessing advanced AI capabilities.