https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ic3.gov%2FPSA%2F2026%2FPSA260521&data=05%7C02%7Ckimberly.kaleta%40sra.io%7C449b410a12a841e7580b08debc1be8ca%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639155025252497374%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=S80wREnoTlRk0T5SnrUJ6wrE8bOdklpABtmSMtO5guA%3D&reserved=0#new_tab 2026-05-27T19:00:46Z Security Risk Advisors en 🚩 Kali365 Phishing Platform Enables OAuth Token Theft to Bypass MFA in Microsoft 365 2026-05-27T19:00:46Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fcloud.google.com%2Fblog%2Ftopics%2Fthreat-intelligence%2Fknowledgedeliver-viewstate-deserialization-vulnerability&data=05%7C02%7Ckimberly.kaleta%40sra.io%7C63890175ea8c4d77733a08debc1be7d6%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639155025235250237%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=5xISElCH6Kt3En3qiVHvwrTFVsjLHBtDUNb2dGV98Wk%3D&reserved=0#new_tab 2026-05-27T18:59:43Z Security Risk Advisors en 🚩 Critical KnowledgeDeliver RCE (CVE-2026-5426) abused via shared ASP.NET machine keys to deliver web shells and Cobalt Strike 2026-05-27T18:59:43Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.watchguard.com%2Fwgrd-security-hub%2Fsecplicity-blog%2Fgrandoreiro-malware-campaign-targets-europe-and-latin-america&data=05%7C02%7Ckimberly.kaleta%40sra.io%7C3e505c449af148763c1608debc1be6d8%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639155025235160315%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=YBV82aWZMVpOVLZWCKD4eJbttjs8hBPKAJ4O1mfURZw%3D&reserved=0#new_tab 2026-05-27T18:58:35Z Security Risk Advisors en 🚩Grandoreiro banking trojan continues active campaigns targeting financial institutions and customers across Portugal, Spain, Mexico, and Latin America 2026-05-27T18:58:35Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fsocket.dev%2Fblog%2Flaravel-lang-compromise&data=05%7C02%7Ckimberly.kaleta%40sra.io%7C04c3af8c56324a26510908debb516e5b%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639154155569178638%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=9ccqAkIuBU6GV6BK9K8vEjfuAeH1jcQSwqMKTXUfBE8%3D&reserved=0#new_tab 2026-05-26T18:32:12Z Security Risk Advisors en 🚩 Laravel-Lang supply chain compromise rewrites 700+ package versions to silently deliver RCE and mass credential theft. 2026-05-26T18:32:12Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Ffalconfeeds.io%2Fblogs%2Fgithub-under-siege-teampcp-lapsus-lazarus-developer-ecosystem-abuse%2F&data=05%7C02%7Ckimberly.kaleta%40sra.io%7C2f873f15510044745e1608debb516d40%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639154155551399392%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=iDDjMJDgR%2BdsvQZdOOQyQNkD09m%2BZfrnQ04FQn7WG0M%3D&reserved=0#new_tab 2026-05-26T18:31:09Z Security Risk Advisors en 🚩 TeamPCP and LAPSUS$ weaponize VS Code extensions to breach GitHub and steal thousands of internal repositories. 2026-05-26T18:31:09Z Blog https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.sentinelone.com%2Fvulnerability-database%2Fcve-2026-26980%2F&data=05%7C02%7Ckimberly.kaleta%40sra.io%7C2bcb72536ea8499e350308debb516c2b%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639154155552046634%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&sdata=rSpGxUbmJDLgzfhIPLTYrC94qUTLuDGcWe%2BI6Mu%2BC%2Fw%3D&reserved=0#new_tab 2026-05-26T18:29:37Z Security Risk Advisors en 🚩 Ghost CMS vulnerability fuels mass ClickFix campaign compromising 700+ websites with fake Cloudflare verification lures. 2026-05-26T18:29:37Z Blog