Skip to content
Auto-CTI

What has changed?

Comparing 2 July 2026 with the previous day 25 June 2026.

Newly added

28
APT29 (Cloaked Ursa, Cozy Bear, Midnight Blizzard), UNC6692 B3
85

When "Hi, This Is IT" Comes Through Microsoft Teams

State-sponsored threat actors (APT29/Cloaked Ursa, UNC6692) are actively using compromised Microsoft Teams accounts to impersonate IT support and harvest credentials with documented success against targeted organizations.

Critical
A3
0

Google Chrome: Multiple Vulnerabilities

The BSI warns of multiple undisclosed vulnerabilities in Google Chrome; details are not yet published, complicating timely patch monitoring.

Medium

Newly KEV-listed

0

No changes in this category.

Score moved

0

No changes in this category.

No longer in report

16
KEV NEW C1
100

Cisco SD-WAN Zero-Day Exploited Months Before Patching

A Cisco SD-WAN zero-day was actively exploited for months prior to disclosure, with evidence of file deletion and system configuration restoration by the attacker to evade detection.

Critical CVSS 7.8 EPSS 10%
NEW Russia A3
90

«Security Switzerland 2026»: No All-Clear for Switzerland

The official Swiss security report 2026 designates Russia as Europe's greatest threat with aggressive hybrid warfare directly targeting Switzerland in cyberspace, critical infrastructure, and espionage , a strategic signal for Swiss manufacturing SMEs.

Critical
NEW C3
80

Europe Evolves Into Ransomware's Favorite Region

After a global lull in 2024,2025, ransomware gangs have actively refocused on Europe and are deliberately targeting EU organizations and their supply chains,a strategic risk for Swiss and European manufacturing enterprises.

Critical
NEW A3
20

CVE-2026-53153

Race-condition vulnerability in Linux kernel memory management with potential for memory corruption under concurrent access to memcg lists.

High EPSS 0%
NEW B3
20

Introduction to COM usage by Windows threats

Cisco Talos documents systematically how malware exploits COM interfaces for lateral movement, persistence, and evasion , a fundamental defensive competency for Windows-heavy infrastructure defenders.

High
NEW A3
20

[UPDATE] Adobe Acrobat DC: Multiple Vulnerabilities

The BSI has issued a security advisory on multiple vulnerabilities in Adobe Acrobat DC and Adobe Acrobat Reader DC enabling remote code execution and privilege escalation, though specific CVE identifiers are not named in this notice.

High
NEW C3
17

Update Chrome to patch critical browser security flaws

Chrome 149.0.7827.196/197 patches 18 vulnerabilities including four critical flaws; no indication of active in-the-wild exploitation yet, but Chrome zero-days have been exploited multiple times this year.

High
ESC