<?xml version="1.0" encoding="UTF-8"?>
<!--generator='jetpack-16.1-a.1'-->
<!--Jetpack_Sitemap_Buffer_News_XMLWriter-->
<?xml-stylesheet type="text/xsl" href="//sra.io/news-sitemap.xsl"?>
<urlset xmlns="http://www.sitemaps.org/schemas/sitemap/0.9" xmlns:news="http://www.google.com/schemas/sitemap-news/0.9" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://www.sitemaps.org/schemas/sitemap/0.9 http://www.sitemaps.org/schemas/sitemap/0.9/sitemap.xsd">
 <url>
  <loc>https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.security.com%2Fthreat-intelligence%2Fdaxin-returns-stupig&amp;#038;data=05%7C02%7Ckimberly.kaleta%40sra.io%7Ca9663d4066ae43fe37d708dee2a5abfa%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639197398369323948%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&amp;#038;sdata=wJfpIAmqBkr1AnU9s%2BIFMsX9JD9nKUK3gOwv76IXAiI%3D&amp;#038;reserved=0#new_tab</loc>
  <lastmod>2026-07-15T20:11:19Z</lastmod>
  <news:news>
   <news:publication>
    <news:name>Security Risk Advisors</news:name>
    <news:language>en</news:language>
   </news:publication>
   <news:title>🚩 Symantec finds resurfaced Daxin rootkit and new Stupig backdoor on Taiwan manufacturing network</news:title>
   <news:publication_date>2026-07-15T20:11:19Z</news:publication_date>
   <news:genres>Blog</news:genres>
  </news:news>
 </url>
 <url>
  <loc>https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.infostealers.com%2Farticle%2Fhow-an-infostealer-infection-led-to-a-sophisticated-clickfix-campaign-at-artlist%2F&amp;#038;data=05%7C02%7Ckimberly.kaleta%40sra.io%7C3dd85a60d0064fcd930608dee2a5aced%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639197398359362922%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&amp;#038;sdata=wy1Q7tDTfNb0azBYWTpV56eM7QAtMbBh%2FvMAGMI20%2Fw%3D&amp;#038;reserved=0#new_tab</loc>
  <lastmod>2026-07-15T20:09:44Z</lastmod>
  <news:news>
   <news:publication>
    <news:name>Security Risk Advisors</news:name>
    <news:language>en</news:language>
   </news:publication>
   <news:title>🚩 ClickFix campaign compromises Artlist subdomain after years-old infostealer infection exposes privileged WordPress credentials.</news:title>
   <news:publication_date>2026-07-15T20:09:44Z</news:publication_date>
   <news:genres>Blog</news:genres>
  </news:news>
 </url>
 <url>
  <loc>https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.cisa.gov%2Fnews-events%2Falerts%2F2026%2F07%2F14%2Fcisa-urges-sharepoint-hardening-after-new-exploitations&amp;#038;data=05%7C02%7Ckimberly.kaleta%40sra.io%7C0fa8618311b9450427af08dee2a5acaa%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639197398359401099%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&amp;#038;sdata=UPTz29gIU0vXFxtho4uNCcbvO%2B32Ho9oJ4YetOa1b90%3D&amp;#038;reserved=0#new_tab</loc>
  <lastmod>2026-07-15T20:08:36Z</lastmod>
  <news:news>
   <news:publication>
    <news:name>Security Risk Advisors</news:name>
    <news:language>en</news:language>
   </news:publication>
   <news:title>CISA Warns of Active Exploitation of Multiple SharePoint Server Vulnerabilities Enabling Remote Code Execution and Persistence Across On-Premises Instances.</news:title>
   <news:publication_date>2026-07-15T20:08:36Z</news:publication_date>
   <news:genres>Blog</news:genres>
  </news:news>
 </url>
 <url>
  <loc>https://sra.io/wp-content/uploads/2026/07/TB20260714-July-2026-Microsoft-Patch-Tuesday.pdf#new_tab</loc>
  <lastmod>2026-07-14T20:34:59Z</lastmod>
  <news:news>
   <news:publication>
    <news:name>Security Risk Advisors</news:name>
    <news:language>en</news:language>
   </news:publication>
   <news:title>TB20260714 - Microsoft Patch Tuesday</news:title>
   <news:publication_date>2026-07-14T20:34:39Z</news:publication_date>
   <news:genres>Blog</news:genres>
  </news:news>
 </url>
 <url>
  <loc>https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.cisa.gov%2Fnews-events%2Fcybersecurity-advisories%2Faa26-194a&amp;#038;data=05%7C02%7Ckimberly.kaleta%40sra.io%7Ce21b34aef979405a2f9208dee1db4234%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639196528991130637%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&amp;#038;sdata=Ah0IYUY3pxTKfekX8rqSLv%2BFX0juld2kqdRTgeDzFjk%3D&amp;#038;reserved=0#new_tab</loc>
  <lastmod>2026-07-14T20:24:15Z</lastmod>
  <news:news>
   <news:publication>
    <news:name>Security Risk Advisors</news:name>
    <news:language>en</news:language>
   </news:publication>
   <news:title>CISA warns Russian FSB hackers continue exploiting poorly secured routers to compromise global critical infrastructure.</news:title>
   <news:publication_date>2026-07-14T20:24:15Z</news:publication_date>
   <news:genres>Blog</news:genres>
  </news:news>
 </url>
 <url>
  <loc>https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.wiz.io%2Fblog%2Fm-red-team-asyncapi-supply-chain-compromise-via-github-actions%23what-happened-3&amp;#038;data=05%7C02%7Ckimberly.kaleta%40sra.io%7C79baec255c6e44ab281c08dee1db40bc%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639196528976665508%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&amp;#038;sdata=xbtGdErQxTBo09k3GpljtevqSVp14b6uxgwk9V8nndk%3D&amp;#038;reserved=0#new_tab</loc>
  <lastmod>2026-07-14T20:23:29Z</lastmod>
  <news:news>
   <news:publication>
    <news:name>Security Risk Advisors</news:name>
    <news:language>en</news:language>
   </news:publication>
   <news:title>🚩 AsyncAPI GitHub Actions compromise publishes malicious npm packages that deploy multi-stage malware targeting developer credentials.</news:title>
   <news:publication_date>2026-07-14T20:23:29Z</news:publication_date>
   <news:genres>Blog</news:genres>
  </news:news>
 </url>
 <url>
  <loc>https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fany.run%2Fcybersecurity-blog%2Fkratos-phaas-account-takeover%2F&amp;#038;data=05%7C02%7Ckimberly.kaleta%40sra.io%7Cc8006a0c998449a1494c08dee1db4173%7C9bdee6ea21c54c1ca6c941dc3d08c310%7C0%7C0%7C639196528976439774%7CUnknown%7CTWFpbGZsb3d8eyJFbXB0eU1hcGkiOnRydWUsIlYiOiIwLjAuMDAwMCIsIlAiOiJXaW4zMiIsIkFOIjoiTWFpbCIsIldUIjoyfQ%3D%3D%7C0%7C%7C%7C&amp;#038;sdata=qe7mr7bL9luwZJQdqZITksL0W%2B%2BEkMN%2B9XK57tS%2F8BI%3D&amp;#038;reserved=0#new_tab</loc>
  <lastmod>2026-07-14T20:22:38Z</lastmod>
  <news:news>
   <news:publication>
    <news:name>Security Risk Advisors</news:name>
    <news:language>en</news:language>
   </news:publication>
   <news:title>🚩 Kratos phishing-as-a-service targets Microsoft 365 users across the United States and Europe to steal credentials and enable account takeover.</news:title>
   <news:publication_date>2026-07-14T20:22:38Z</news:publication_date>
   <news:genres>Blog</news:genres>
  </news:news>
 </url>
</urlset>
