Publishing Details
Contact & Outreach
About This Podcast
Social Media
Explore Statistics
Recent Episodes
1024 - ShinyHunters explora zero-day no Oracle PeopleSoft e mira setor de educação
Referências do EpisódioShinyHunters Targets Education Sector with Oracle PeopleSoft ExploitOracle Security Alert Advisory - CVE-2026-35273Oracle mitigates PeopleSoft zero-day exploited in data theft…
1023 - Langflow sob ataque: falha sem patch expõe 7 mil instâncias de IA a execução remota de código
Referências do EpisódioUnpatched Langflow Flaw CVE-2026-5027 Exploited for Unauthenticated RCEExpanded JDY IoT and SOHO botnet enables rapid vulnerability exploitationCVE-2026-0274 Cortex XSOAR:…
1022 - Microsoft tem o maior Patch Tuesday da história
Referências do EpisódioMSRC - June 2026 Security UpdatesCVE-2026-45586 - Windows Collaborative Translation Framework (CTFMON) Elevation of Privilege Vulnerability CVE-2026-49160 - HTTP.sys Denial of…
1021 - Google corrige o quinto zero-day do Chrome explorado em ataques neste ano
Referências do EpisódioGoogle patches new Chrome zero-day flaw exploited in the wildChrome Releases - Stable Channel Update for Desktop - Monday, June 8, 2026Security Advisory – Action Required –…
1020 - Zero-day no VSCode tem exploit publicado
Referências do Episódio1-Click GitHub Token Stealing via a VSCode BugError 524 Decoy: Unmasking a Global Smishing Operation Hiding Behind Error PagesOperation FlutterBridge: macOS Malvertising…
1019 - Ataque de Supply Chain afeta Red Hat
Referências do Episódio32 Red Hat npm packages backdoored in 72 secondsMiasma: Supply Chain Attack Targeting RedHat npm PackagesMeet DriveSurge: A New Threat Actor Using ClickFix and Fake Update…
1018 - Palo Alto Networks: bypass de autenticação no GlobalProtect está sob exploração
Referências do EpisódioRapid7 Observed Exploitation of PAN-OS GlobalProtect Authentication Bypass Vulnerability (CVE-2026-0257)FSB’s matryoshka #1/3 – Gamaredon’s gifts that keeps unpacking –…
1017 - Gogs: falha, ainda sem patch, permite tomar o controle do servidor
Referências do EpisódioAuthenticated RCE via Argument Injection in Gogs (NOT FIXED)Typosquatted npm packages used to steal cloud and CI/CD secretsDownload pumping: New npm deception technique for…
1016 - Ataques abusam de instalações FortiClient EMS desatualizadas para disseminar malware
Referências do EpisódioFortiClient EMS Exploited via CVE-2026-35616 to Deliver EKZ Infostealer Disguised as a Fortinet PatchPirates in the crosshairs: how one cybercrime gang has been infecting book,…
1015 - BTMOB mira Brasil com trojan Android vendido como serviço
Referências do EpisódioBTMOB: A stealthy RAT burrowing deep into Android devicesDetecting Tycoon 2FA AiTM attacks across Entra ID and Google WorkspaceMicrosoft SharePoint Has a New RCE Flaw. If You…
1014 - ClearFake esconde malware em smart contracts
Referências do EpisódioSmart Contracts for C&C: How ClearFake Hid in Plain Sight on BSC TestnetExploitation of KnowledgeDeliver via ViewState Deserialization VulnerabilityRoteiro e apresentação:…
1013 - TrapDoor: novo ataque afeta npm, PyPI e crates.io
Referências do EpisódioTrapDoor Crypto Stealer Supply Chain Attack Hits 34 Packages and Hundreds of Versions Across npm, PyPI, and Crates.io2 PhaaS 2 Furious: The Evolution of Chinese-language…
1012 - Falhas no Defender e Apex One estão sob exploração
Referências do EpisódioCVE-2026-41091 - Microsoft Defender Elevation of Privilege VulnerabilityCVE-2026-45498 - Microsoft Defender Denial of Service VulnerabilityITW SECURITY BULLETIN: Apex One and…
1011 - Drupal corrige falha “highly critical” de SQL injection
Referências do EpisódioDrupal core - Highly critical - SQL injection - SA-CORE-2026-004Logic bug in the Linux kernel's __ptrace_may_access() function (CVE-2026-46333)PinTheft: Another Linux Privilege…
1010 - Mais uma falha séria no kernel do Linux. Agora, a DirtyDecrypt
Referências do EpisódioDirtyDecrypt: Linux kernel LPE in the RxGK subsystem (CVE-2026-31635) with public PoCDirtyDecrypt / DirtyCBCExposing Fox Tempest: A malware-signing service operationFrom PDB…
1009 - Mini Shai-Hulud afeta pacotes @antv
Referências do EpisódioActive Supply Chain Attack Compromises @antv Packages on npmShai-Hulud Goes Open Source: Malware Creators Leak Their Own Code to GitHubHow Storm-2949 turned a compromised…
1008 - 0-day no Cisco Catalyst é usado em ataques recentes
Referências do EpisódioCVE-2026-20182 - Cisco Catalyst SD-WAN Controller Authentication Bypass VulnerabilityFrequently asked questions about the continued exploitation of Cisco Catalyst SD-WAN…
1007 - Falha crítica, escondida há 18 anos, é encontrada no nginx
Referências do EpisódioNGINX Rift: Achieving NGINX Remote Code Execution via an 18-Year-Old VulnerabilityK000161019: NGINX ngx_http_rewrite_module vulnerability CVE-2026-42945NGINX Rift: An…
1006 - Mini Shai-Hulud: Novo ataque afeta pacotes populares no npm e PyPI
Referências do EpisódioMini Shai-Hulud Strikes Again: TanStack + more npm Packages CompromisedMini Shai-Hulud Worm Compromises TanStack, Mistral AI, Guardrails AI & More Packages“Shai-Hulud,…
1005 - Dois grupos usam IA para invadir governos e bancos na América Latina
Referências do EpisódioVibe Hacking: Two AI-Augmented Campaigns Target Government and Financial Sectors in Latin AmericaGTIG AI Threat Tracker: Adversaries Leverage AI for Vulnerability Exploitation,…
Frequently Asked Questions
Cyber Morning Call has published 1027 episodes since January 2022, covering topics in Technology.
Cyber Morning Call is currently active with new episodes daily. Average episode length is 5m.
Sign up on Grep.FM to access contact details for Cyber Morning Call, including email and social media links.
