Skip to content
Auto-CTI

What has changed?

Comparing 1 July 2026 with the previous day 24 June 2026.

Newly added

111
NEW A2
98

CVE-2026-50521

The vulnerability requires prior network authorization and is covered by standard NVD reporting without active exploitation or geopolitical dimension.

Critical CVSS 8.3 EPSS 0%
B3
75

25th May , Threat Intelligence Report

Check Point documents a 124% surge in hacktivism and ransomware across Germany, Austria, and Switzerland in 2025,a strategically significant shift in the DACH threat landscape for manufacturing organizations.

Critical
A3
20

[UPDATE] GNU libc: Multiple Vulnerabilities

BSI alert on multiple GNU libc vulnerabilities with broad impact on all Linux systems in production environments; urgency and details depend on the severity level of the underlying CVEs.

High
A3
20

Ubiquiti UniFi OS Server: Multiple Vulnerabilities

BSI warns of multiple critical vulnerabilities in Ubiquiti UniFi OS Server enabling remote code execution and data compromise , a direct threat to network infrastructure requiring urgent patching.

High
NEW C3
20

Massive Password Spray Campaign Targeting Azure CLI

Massive credential-spraying attack with 81 million login attempts against Azure CLI indicates coordinated attacks on cloud infrastructure; LSHIY hosting provider as attack infrastructure suggests organized threat actors.

High
A3
20

[UPDATE] OpenSSL: Multiple Vulnerabilities

The BSI warning describes multiple OpenSSL vulnerabilities without specific CVE designations or severity levels , a typical aggregated security alert for critical infrastructure, but requires clarification for prioritization.

High
A3
20

7-Zip: Vulnerability Enables Code Execution

A newly discovered RCE vulnerability in 7-Zip when processing NTFS archives requires user interaction but poses significant risk in manufacturing environments where archives are frequently exchanged.

High
NEW B3
12

ARToken: Inside an EvilTokens affiliate panel targeting Microsoft 365

ARToken is a fully automated PhaaS panel with 80+ API endpoints for targeted Microsoft 365 phishing, including persistent token acquisition via Microsoft Authentication Broker and SharePoint exfiltration , an escalated threat model compared to earlier EvilTokens reporting.

High
A3
0

Microsoft Edge: Multiple Vulnerabilities

The advisory contains no CVE numbers or specific vulnerability details; this is a generic precautionary notice without current exploitation evidence.

Medium

Newly KEV-listed

0

No changes in this category.

Score moved

0

No changes in this category.

No longer in report

54
NEW C3
75

Traces of cyberattacks often lead to Russia

Germany is identified as Europe's focal point for ransomware attacks, while Russia serves as a safe haven for cybercriminals,a geopolitical pattern with direct relevance for DACH organizations.

Critical
NEW C3
70

Ubiquiti UniFi OS Security Vulnerabilities Under Active Attack

Critical Ubiquiti UniFi OS vulnerabilities are already being actively exploited in the wild despite patches being available since late May 2026; administrators who have not yet updated to version 5.1.12 or 5.0.8 are at immediate risk.

Critical
NEW C3
70

Critical Ubiquiti Vulnerabilities in Attackers' Crosshairs

Multiple critical Ubiquiti vulnerabilities (CVE-2026-34908, -34909, -34910 with CVSS 10/10 and CVE-2025-67038 with CVSS 9.8) were already exploited in the wild as zero-days despite patches, to create rogue administrator accounts and conduct automated reconnaissance attacks.

Critical
A3
20

Mozilla Firefox: Multiple Vulnerabilities

The BSI alert does not specify CVE numbers or affected versions, indicating a generic vulnerability announcement without concrete threat intensity.

High
A3
20

[UPDATE] OpenSSL: Multiple Vulnerabilities

The BSI warns of multiple critical-severity vulnerabilities in OpenSSL (RCE, DoS, information disclosure); timely patching and specific CVE identification are required to prioritize affected systems.

High
A3
20

Ubiquiti UniFi OS: Multiple Vulnerabilities

BSI warns of multiple vulnerabilities in Ubiquiti UniFi OS without specific CVE numbers; technical detail level and exploitation status are currently unclear.

High
A3
20

7-Zip: Multiple Vulnerabilities

The BSI warns of multiple vulnerabilities in 7-Zip that can be exploited by simply opening manipulated archives and enable code execution.

High
NEW Woodgnat C3
17

New 'Mistic' RAT Opens Door to Several Ransomware Families

Woodgnat group actively uses the new Mistic RAT to distribute multiple ransomware families (Qilin, Rhysida, Akira, Black Basta), combining technical exploits with social engineering techniques like ClickFix.

High
NEW A3
0

[UPDATE] Linux Kernel: Multiple Vulnerabilities

BSI alert on multiple unspecified Linux Kernel vulnerabilities without CVE details complicates prioritisation; details and affected versions must be retrieved from the full BSI advisory.

Medium
A3
0

Microsoft Patch Day May 2026

Monthly patch summary without specification of individual CVEs or active exploits , routine update announcement.

Medium
ESC