Daily Central Threat Intelligence. Clear Risk. Clear Action.
Joined April 2026
- Tweets 44
- Following 50
- Followers 21
- Likes 16
37 Photos and videos
85% of AI coding agents execute attacker code via fake Sentry errors. Tenet Security confirmed 2,388 orgs exposed. Disable Sentry MCP now. decryptiondigest.com #AgentJacking #AISecurity #MCPSecurity #DeveloperSecurity #CyberSecurity #InfoSec
1
1
20
CVSS 9.8 PeopleSoft zero-day. ShinyHunters breached 100 orgs in 14 days before Oracle patched. No auth needed. University of Nottingham: 455K records stolen.
decryptiondigest.com
#CVE202635273 #OraclePeopleSoft #ShinyHunters #ZeroDay #Cybersecurity
55
Exchange OWA exploited 28 days before today's patch. 200 CVEs in June Patch Tuesday. RoguePlanet CVSS 9.6 drops same day. Patch now. decryptiondigest.com #PatchTuesday #ZeroDay #CVE202642897 #InfoSec #WindowsSecurity
1
22
Zero credentials needed to read ServiceNow IT tickets. Unauthenticated API exposed passwords, employee records & API keys June 2-3. Patch June 5. Disclosed June 9. Check your logs now. decryptiondigest.com #ServiceNow #DataBreach #CyberSecurity #InfoSec #ITSM #ZeroTrust
261
CVSS 9.3: Check Point VPN CVE-2026-50751 lets attackers bypass authentication with no credentials. Qilin ransomware exploited it for 33 days. CISA: patch by June 12. decryptiondigest.com #CheckPoint #ZeroDay #CVE202650751 #Ransomware #CISAKEV
2
106
44,000 cPanel servers compromised. CVE-2026-41940 CVSS 9.8: no credentials needed. Sorry ransomware deployed, backups deleted. 1.5M instances still exposed.
decryptiondigest.com
#cPanel #Ransomware #CyberSecurity #CVE #InfoSec #PatchNow #CISAKEV
1
3
497
APT28 deployed LAMEHUG: the first malware using a live LLM to write attack commands in real time. 89% surge in AI-enabled attacks. 27-second breakout time. Full IOC list at decryptiondigest.com #CyberSecurity #APT28 #AIThreat #InfoSec #LAMEHUG
1
1
32
No patch for Cisco SD-WAN zero-day CVE-2026-20245. Mandiant confirmed root exploitation on all deployments. UAT-8616 chains 3 CVEs to own your network control plane. decryptiondigest.com #CiscoSDWAN #ZeroDay #CVE202620245 #NetworkSecurity #CyberSecurity
132
15M Grindr records on the dark web for $400, including HIV status, GPS coordinates, and password hashes from May 2026. Check your exposure now.
decryptiondigest.com
#DataBreach #DarkWeb #Grindr #CyberSecurity #PrivacySecurity
1
1
365
80 AI-built modules bypass Sophos, CrowdStrike & Defender in a live ransomware campaign. Sophos CTU: confirmed victims on leak sites. Enable behavioral EDR. Block Telegram API from endpoints. decryptiondigest.com #cybersecurity #ransomware #EDR #infosec
87
CVE-2026-41089: CVSS 9.8 Windows Netlogon RCE now exploited in wild. Zero auth needed. Patch every domain controller now with KB5058411/KB5058385. Full breakdown: decryptiondigest.com #CyberSecurity #CVE202641089 #WindowsServer #ActiveDirectory #PatchNow #CISA #InfoSec
1
1
105
4 CISA patch deadlines expire June 1-4. PAN-OS GlobalProtect deadline is TODAY. Attackers inside networks since May 17. Defender zero-days June 3. MuddyWater Langflow CVSS 9.4 June 4. Full IOC guide at decryptiondigest.com #CISA #PatchNow #CyberSecurity #InfoSec #ZeroDay
34
56% of SaaS incidents come from misconfigs, not exploits.
Grip vs Adaptive Shield vs AppOmni vs Obsidian: 2026 SSPM comparison covering shadow SaaS discovery, OAuth governance, and threat detection.
decryptiondigest.com/blog/be…
#SSPM #SaaSSecurity
10
80% of enterprise breaches involve identity attacks. 24-day average dwell time before detection.
Microsoft Defender for Identity vs CrowdStrike vs SentinelOne vs Semperis: independent 2026 ITDR comparison.
decryptiondigest.com/blog/be…
#ITDR #ActiveDirectory #IdentitySecurity
1
2
91
74% of enterprise breaches involve privileged credentials.
CyberArk, BeyondTrust, Delinea, or Saviynt? Independent 2026 comparison: vault security, JIT provisioning, cloud PAM, and real TCO.
decryptiondigest.com/blog/be…
#PAM #IdentitySecurity
1
1
50
AI agent drained a full DB in 113 sec via marimo CVE-2026-39987. No human operator. RCE → AWS creds → SSH bastion → PostgreSQL dump, all in 68 min. CISA KEV. Update to 0.23.0 now. decryptiondigest.com #CyberSecurity #LLMAgent #OffensiveAI #CISAKEV #ThreatIntel
52
CVSS 10.0: any cPanel tenant becomes root via CVE-2026-48172. CISA deadline is today. LiteSpeed WHM Plugin v5.3.1.0 closes the gap. Scan logs for cpanel_jsonapi_func=redisAble now. Full IOCs at decryptiondigest.com #CVE202648172 #cPanel #LiteSpeed #CISA #PatchNow #WebSecurity
1
1
161
JINX-0164 steals 51 crypto wallet extensions via fake LinkedIn recruiter lures on macOS. @velora-dex/sdk npm v4.9.1 was trojanized April 7. Full IOCs: decryptiondigest.com #JINX0164 #CryptoCurrency #NorthKorea #CyberSecurity #AUDIOFIX
25
40M Charter records stolen in one phone call.
ShinyHunters vishing hit 400 orgs in 2026: telecom, education, healthcare. Every breach started with an employee who picked up.
Full breakdown: decryptiondigest.com
#ShinyHunters #vishing #cybersecurity #databreach #FIDO2
1
2
124
SonicWall Gen6 SSL-VPN: firmware patch alone does not fix CVE-2024-12802 (CVSS 9.1). Akira operators reach file servers in 30 min. 6 LDAP steps required.
decryptiondigest.com
#SonicWall #CVE202412802 #Akira #MFABypass #PatchNow #CyberSecurity #InfoSec
1
68