Rescana Blog
1168 posts | Page 1 of 49

Active Exploitation Alert
Active Exploitation Alert: AsyncAPI npm Supply Chain Attack Delivers Multi-Stage Miasma Botnet via Compromised GitHub Actions

Service Disruption Analysis
Critical Service Disruption Analysis: Zero-Day Vulnerabilities (CVE-2026-2699 & CVE-2026-2701) Impacting Progress ShareFile Storage Zones Controller v5.x

Technology
Gold Eagle Initiative: How AI Is Transforming Vulnerability Coordination and Cybersecurity Across Government and Industry

General News
U.S. Sanctions First VPN Service (1VPNS) and Belarusian Cryptor Provider for Enabling Ransomware Attacks

Cybersecurity Incident Analysis
Nihon Kotsu Cyberattack Analysis: Malware Disruption of Japan’s Largest Taxi Dispatch and Reservation Systems in July 2026

Active Exploitation Alert
Active Exploitation Alert: ShinyHunters Abuse OAuth and Vendor Integrations to Breach Salesforce and SaaS Environments

Active Exploitation Alert
Active Exploitation Alert: Jscrambler npm Packages Compromised in Coordinated Supply Chain Attack (July 2026)

Active Exploitation Alert
Active Exploitation Alert: 148 Malicious npm Packages Masquerading as Student Proxies Turn Browsers Into DDoS Botnet

Email Security
Misconfigured Server Exposes Evilginx Phishing Campaigns Bypassing MFA to Target Microsoft 365 Accounts

Cybersecurity Incident Analysis
Centers Laboratory Data Breach Analysis: 540,000 Patient Records Exposed by Worldleaks in 2025 Cyberattack

Active Exploitation Alert
Active Exploitation Alert: Critical Joomla Extension Vulnerabilities Enable Remote Code Execution and Server Compromise

Technology
Unpatched XRING Vulnerability in XQUIC Exposes HTTP/3 Servers to Remote Crash Risk

Technology
Ghostcommit: Multimodal Prompt Injection Attack Exposes AI Code Review Tools to Supply Chain Risks

CVE Analysis Center
Critical U-Boot FIT Signature Verification Vulnerabilities (CVE-2026-46728) Expose Embedded Linux Devices to Stealthy Firmware Attacks

CVE Analysis Center
Critical CVE-2026-2699 and CVE-2026-2701 Vulnerabilities Force Immediate Shutdown of Progress ShareFile Storage Zone Controller v5.x

Active Exploitation Alert
Active Exploitation Alert: WP-SHELLSTORM Campaign Mass-Compromises WordPress Sites via Plugin Vulnerabilities

Active Exploitation Alert
Active Exploitation Alert: Critical CVE-2026-20896 Authentication Bypass in Gitea Docker Image Exposes Repositories and Secrets

Cybersecurity Incident Analysis
Union County, Ohio Government Pays $1 Million Bitcoin Ransom to Kairos Cyber Extortion Group After Data-Only Attack

CVE Analysis Center
Rogue Agent Vulnerability in Google Dialogflow CX Playbooks Exposes AI Agents to Code Injection and Data Exfiltration

Cybersecurity Incident Analysis
KDDI Email System Data Breach Exposes Over 12 Million Credentials Across Six Major Japanese ISPs

Active Exploitation Alert
Active Exploitation Alert: Prompt Injection Vulnerability in GitHub Agentic Workflows Threatens Software Supply Chain Security

Cybersecurity Incident Analysis
Accenture Azure DevOps Data Breach Analysis: Source Code and Credentials Exposed in July 2026 Cyberattack

Active Exploitation Alert
Active Exploitation Alert: Iranian Cavern Manticore APT Deploys Modular Cavern C2 Malware Targeting Israeli Organizations

Active Exploitation Alert