SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

Microsoft's Coreutils for Windows

https://isc.sans.edu/diary/Microsoft%27s%20Coreutils%20for%20Windows/33048

Cisco Unified Communications Manager Server-Side Request Forgery Vulnerability CVE-2026-20230

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cucm-ssrf-cXPnHcW

Firmware Update for Acer Connect W6x Router

https://community.acer.com/en/kb/articles/19672

OAuth marketplace apps keep access after publishers vanish

https://www.helpnetsecurity.com/2026/06/04/oauth-marketplace-apps-audit/

My Upcoming Classes

https://www.sans.org/profiles/dr-johannes-ullrich

Continuing Scans for swagger.json

https://isc.sans.edu/diary/Continuing+Scans+for+swaggerjson/33044/#comments

Fake call detection on Android

https://blog.google/security/android-fake-call-detection/

Anthropic's coordinated vulnerability disclosure dashboard

https://red.anthropic.com/2026/cvd/

My Upcoming Classes

https://www.sans.org/profiles/dr-johannes-ullrich

New Wave Of Phishing Emails with SVG Files

https://isc.sans.edu/diary/New%20Wave%20Of%20Phishing%20Emails%20with%20SVG%20Files/33040

Android 2026-06-01 security patch level vulnerability details

https://source.android.com/docs/security/bulletin/2026/2026-06-01

Poly Voice Possible Remote Control of Certain Poly Devices CVE-2026-0826

https://support.hp.com/us-en/document/ish_15052661-15052687-16/hpsbpy04083

https://www.rapid7.com/blog/post/ve-cve-2026-0826-critical-unauthenticated-stack-buffer-overflow-hp-poly-vvx-trio-voip-phones-fixed/

Security Advisory Ivanti Neurons for ITSM (CVE-2026-9614)

https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-Neurons-for-ITSM-CVE-2026-9614?language=en_US

My Upcoming Classes

https://www.sans.org/profiles/dr-johannes-ullrich

Unidentified RAT pushes NetSupport RAT

https://isc.sans.edu/diary/Unidentified%20RAT%20pushes%20NetSupport%20RAT/33034

CVE-2026-41089: Windows Netlogon Vulnerability Exploited

https://ccb.belgium.be/advisories/warning-microsoft-patch-tuesday-may-2026-patches-118-vulnerabilities-16-critical-102

RedHat npm Packages Affected

https://www.aikido.dev/blog/red-hat-npm-packages-compromised-credential-stealing-worm

Dashlane Locking Accounts after Brute Force

https://status.dashlane.com/pages/5aabcb89fccc4b04d3774443

My Upcoming Classes

https://www.sans.org/profiles/dr-johannes-ullrich

Announcing Bitskrieg

https://deadeclipse666.blogspot.com/2026/05/announcing-bitskrieg.html

Vulnerability in Gogs

https://www.rapid7.com/blog/post/ve-authenticated-rce-via-argument-injection-gogs-unfixed/

Oracle Critical Security Patch Update Advisory - May 2026

https://www.oracle.com/security-alerts/cspumay2026.html

GlobalProtect Authentication Bypass Vulnerabilities CVE-2026-0257

https://security.paloaltonetworks.com/CVE-2026-0257