Vergleich von 21. April 2026 mit dem Vortag 20. April 2026.
Describes an active ransomware campaign using a SystemBC botnet for command and control, indicating a shift to more resilient, bot-powered attacks against corporate networks.
Keine Änderungen in dieser Kategorie.
Keine Änderungen in dieser Kategorie.
Multiple zero-days (BlueHammer, RedSun, UnDefend) in Microsoft Defender are being actively exploited, requiring immediate patching.
The vulnerability can be triggered by an unprivileged user via the keyrings API, enabling local privilege escalation.
Describes active exploitation of multiple unpatched Windows zero-days (RedSun, UnDefend, BlueHammer) in the wild, indicating immediate risk beyond a standard patch advisory.
Describes an active attack campaign exploiting zero-day vulnerabilities in Windows systems, indicating immediate defensive action is required.
Describes an active campaign where attackers are specifically abusing external Teams access for helpdesk impersonation, a novel social engineering vector.
Highlights emergency, out-of-band updates to resolve critical stability or security issues introduced by a recent patch cycle.
Provides insight into the TTPs of a threat actor using SystemBC malware for C2 and lateral movement within a Windows domain environment.