// LIVE
INTELCritical Citrix NetScaler memory flaw actively exploited in attacks
INTELTelnyx joins LiteLLM in latest PyPI package poisoning tied to Trivy breach
INTELStorm Brews Over Critical, No-Click Telegram Flaw
INTELFTC Action Against Match and OkCupid for Deceiving Users, Sharing Personal Data
INTELTeamPCP Supply Chain Campaign: Update 004 - Databricks Investigating Alleged Com
INTELHealthcare IT Platform CareCloud Probing Potential Data Breach
INTELSecurity updates for Monday
INTEL'When intelligence and trust move together, AI stops being an experiment and sta
INTELRussian APT Star Blizzard Adopts DarkSword iOS Exploit Kit
INTELDisclosure of Replay Attack Vulnerability in Signed References
INTELHackers now exploit critical F5 BIG-IP flaw in attacks, patch now
INTELTelnyx Targeted in Growing TeamPCP Supply Chain Attack
CVE(Pwn2Own) Canon imageCLASS MF654Cdw TTF Parsing Out-Of-Bounds Write Remote Code
CVEZDI-26-204: Canon imageCLASS MF654Cdw XPS Parser Vulnerability
CVEZDI-26-202: QNAP TS-453E Hyper Data Protector Plugin SQL Injection RCE Vulnerabi
INTELCritical Citrix NetScaler memory flaw actively exploited in attacks
INTELTelnyx joins LiteLLM in latest PyPI package poisoning tied to Trivy breach
INTELStorm Brews Over Critical, No-Click Telegram Flaw
INTELFTC Action Against Match and OkCupid for Deceiving Users, Sharing Personal Data
INTELTeamPCP Supply Chain Campaign: Update 004 - Databricks Investigating Alleged Com
INTELHealthcare IT Platform CareCloud Probing Potential Data Breach
INTELSecurity updates for Monday
INTEL'When intelligence and trust move together, AI stops being an experiment and sta
INTELRussian APT Star Blizzard Adopts DarkSword iOS Exploit Kit
INTELDisclosure of Replay Attack Vulnerability in Signed References
INTELHackers now exploit critical F5 BIG-IP flaw in attacks, patch now
INTELTelnyx Targeted in Growing TeamPCP Supply Chain Attack
CVE(Pwn2Own) Canon imageCLASS MF654Cdw TTF Parsing Out-Of-Bounds Write Remote Code
CVEZDI-26-204: Canon imageCLASS MF654Cdw XPS Parser Vulnerability
CVEZDI-26-202: QNAP TS-453E Hyper Data Protector Plugin SQL Injection RCE Vulnerabi
nsysops@ops-intel:~$ ls -lt --range live

OPS INTEL

266 items · ARIA-monitored · page 8 of 54
266
TOTAL
CRITICAL
HIGH
ACTIONABLE
WALLBOARD ↗
AUTO-APPROVED TODAY
LLM STATUS
CRITICAL (page) 1
HIGH (page) 2
MEDIUM (page) 2
LOW (page) 0
MEDIUM 50% confidence general

CISA Adds One Known Exploited Vulnerability to Catalog

['CISA adds CVE-2026-20963 to its KEV catalog due to evidence of active exploitation affecting Microsoft SharePoint.', 'New entry for KEV catalog highlights.

['This vulnerability allows for deserialization of malicious data, providing an entry point for cyberattacks.', 'Exploitation can lead to unauthorized access and control over affected systems.', 'FCEB agencies must remed

FCEB agenciesOrganizations managing Microsoft SharePoint
action items (3)
  • Review the KEV catalog entry for detailed information on CVE-2026-20963.
  • Remediate affected systems to mitigate potential risks as per BOD 22-01 requirements.
  • Enhance monitoring and logging of SharePoint activity to detect suspicious behaviors early.

CISA Current Activity ·

HIGH 85% confidence outage

CISA Adds One New Exploit to KEV Catalog

['CISA adds CVE-2025-66376 to its Known Exploited Vulnerabilities (KEV) Catalog due to evidence of exploitation, emphasizing the need for prompt remediation.

['Operators need to monitor and remediate this known exploited vulnerability due to the significant risk it poses to systems within federal agencies and beyond.']

federal_agenciescivilian_organizations
action items (1)
  • Update affected systems and monitor for any unusual activity related to this vulnerability.

CISA Current Activity ·

HIGH 90% confidence advisory

CISA Alert on Hardening Endpoint Management Systems

CISA urges organizations to harden endpoint management systems after a cyberattack on Stryker Corporation. Implement best practices for securing Microsoft.

['Improper hardening of EMM systems poses significant risk', 'Attack demonstrates need for robust security controls']

Healthcare organizationsTech firmsAll businesses using EMM software
action items (3)
  • Review and update access control settings
  • Enable MFA for privileged accounts
  • Deploy multi-admin approval mechanisms

CISA Current Activity ·

CRITICAL 95% confidence outage

Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE

['Unpatched critical flaw in GNU InetUtils telnet daemon allows unauthenticated attackers to execute arbitrary code with elevated privileges.'. Read full ops in

['Failure to patch can lead to unauthorized access and system compromise.', 'Exploitation of this flaw could result in complete loss of control over affected systems.']

LinuxUnix-like OS
action items (2)
  • Review systems for any running instances of GNU InetUtils telnet daemon.
  • Update to the latest patched version immediately if vulnerable.

The Hacker News ·

MEDIUM 85% confidence advisory

UK MoD Expands Satellite Monitoring Capabilities with £17.5M Facility in Cyprus

["The UK's Ministry of Defence plans to spend £17.5 million on a satellite monitoring facility in Cyprus, enhancing its secure communications system Skynet and.

['To address vulnerabilities and enhance monitoring capabilities of the Skynet communications network which is vital for national security.']

Military InfrastructureCommunication Networks
action items (2)
  • Review current satellite monitoring capabilities
  • Plan for additional funding to support future security enhancements

The Register ·

ONLINE | ARIA: aria-32b | COMMIT: 32fceff | UPTIME: 45d 13:25 | LAST SCAN: 116H AGO
CORE API: ONLINE TWITCH: OFFLINE --:--:--