Skip to content
Auto-CTI

What has changed?

Comparing 1 June 2026 with the previous day 25 May 2026.

Newly added

19
NEW
97

CVE-2026-47294

The vulnerability requires an authorized user account and enables network-based code execution, not unauthenticated remote exploitation.

Critical CVSS 8.0 EPSS 0%
NEW
20

Unidentified RAT pushes NetSupport RAT

SmartApeSG ClickFix campaign employs multi-stage infection chains: unidentified RAT delivers NetSupport Manager RAT with C2 communication over TCP 443 and daily-changing indicators.

High
NEW
20

Microsoft Edge: Multiple Vulnerabilities

BSI alert on multiple unspecified Edge vulnerabilities without specific CVE numbers or exploit status; likely a patch roundup or generic advisory.

High

Newly KEV-listed

0

No changes in this category.

Score moved

0

No changes in this category.

No longer in report

8
NEW Russia (state-sponsored intelligence agencies via Stark Industries Solutions infrastructure)
90

Netherlands Seizes 800 Servers, Arrests 2 for Aiding Cyberattacks

Dutch authorities dismantled a hosting infrastructure (Stark Industries) used by Russian intelligence for DDoS attacks, influence operations, and disinformation campaigns against EU targets , evidence of enforcement of EU sanctions and ongoing Russian cyber threat to the DACH region.

Critical
NEW
75

25th May , Threat Intelligence Report

Check Point Research documents a 124% surge in hacktivism and ransomware attacks across Germany, Austria, and Switzerland in 2025 , a significant escalation of regional cyber threat to Swiss manufacturing enterprises.

Critical
NEW TeamPCP
58

TeamPCP Supply Chain Campaign: Activity Through 2026-05-24

Active, multi-vector supply-chain campaign targeting the developer ecosystem compromised both open-source repositories and Microsoft-published Python SDKs; GitHub, OpenAI, Grafana, and Mistral AI named as downstream victims.

Critical
NEW TeamPCP
58

TeamPCP Supply Chain Campaign: Activity Through 2026-05-24

TeamPCP compromised three critical supply-chain tiers (VS Code extension, Python SDK, npm packages) in a single week and reached GitHub's internal repositories; downstream victims include OpenAI, Grafana Labs, and Mistral AI.

Critical
ESC