VMware is a tool tracked across 50 threat clusters and 93 intelligence report mentions on ThreatCluster. First observed October 24, 2025; most recent activity July 18, 2026.
The Russian Foreign Intelligence Service (SVR) has been exploiting multiple vulnerabilities, including the SolarWinds breach, to compromise U.S. and allied networks. The SolarWinds attack, which began in September 2019,…
A China-linked threat actor known as Red Menshen has been conducting a long-term espionage campaign targeting global telecommunications networks using a stealthy Linux kernel backdoor called BPFdoor. This malware…
The Chinese espionage group UNC5221, also known as VerdantBamboo, has been using the Brickstorm backdoor and new malware variants Plenet and AgentPSD to maintain access to compromised Microsoft 365 environments.…
GreyNoise Intelligence has released a report indicating that spikes in malicious activity often precede the disclosure of new vulnerabilities in edge devices. The study tracked 147.8 million sessions over 103 days,…
Broadcom has disclosed multiple vulnerabilities in VMware's Avi Load Balancer, including critical flaws that allow attackers to bypass authentication. The most severe vulnerability, CVE-2026-47865, has a CVSS score of…
Dell has released two security updates (DSA-2025-434 and DSA-2025-435) addressing multiple vulnerabilities in PowerFlex Rack and Appliance systems. The updates cover numerous CVEs, including critical vulnerabilities in…
On April 9, 2026, the pro-Iranian hacking group Ababil of Minab claimed responsibility for a cyberattack on the Los Angeles County Metropolitan Transportation Authority (LACMTA). The group alleged access to critical…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding the active exploitation of three vulnerabilities in Cisco's Catalyst SD-WAN Manager, specifically CVE-2026-20122,…
Broadcom has released a critical security update for VMware Fusion to address CVE-2026-41702, a high-severity vulnerability that allows local attackers to escalate privileges to root on affected macOS systems. This…
Google's Threat Intelligence Group tracked 90 zero-day vulnerabilities exploited in 2025, a rise from 78 in 2024. Less than half of these vulnerabilities were attributed to specific threat actors, with spyware vendors…