Skip to main content
Public website
Public website surface Marketing and explanation content. This is not the canonical authenticated runtime.
Canonical runtime: app.identityfirst.net
Threat Intelligence

Identity Security News

Live advisories from NCSC, CISA KEV, Microsoft, Krebs, and BleepingComputer — filtered for identity relevance.

Official Advisories

Government and federal vulnerability intelligence.

NCSC Alerts

NCSC

Content sourced from National Cyber Security Centre. IdentityFirst is not affiliated with this source.

CISA Known Exploited Vulnerabilities

CISA KEV
  • CVE-2026-45659 — SharePoint Server

    Microsoft SharePoint Server contains a deserialization of untrusted data vulnerability which allows an authorized attacker to execute code over a network.

  • CVE-2026-10520 — Sentry

    Ivanti Sentry (formerly known as MobileIron Sentry) contains an OS command injection vulnerability which could allow a remote unauthenticated user to achieve root-level remote code

  • CVE-2026-11645 — Chromium V8

    Google Chromium V8 out-of-bounds read and write vulnerability that could allow a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. This vulnerabil

  • CVE-2026-28318 — Serv-U

    SolarWinds Serv-U contains an uncontrolled resource consumption vulnerability that allows specially crafted POST requests using the Content-Encoding: deflate header to crash the Se

  • CVE-2026-0257 — PAN-OS

    Palo Alto Networks PAN-OS contains an authentication bypass vulnerability that allows attackers to bypass security restrictions and establish an unauthorized VPN connection.

  • CVE-2008-4250 — Windows

    Microsoft Windows contains a buffer overflow vulnerability in the Windows Server Service that allows remote attackers to execute arbitrary code via a crafted RPC request that trigg

Content sourced from CISA Known Exploited Vulnerabilities Catalog. IdentityFirst is not affiliated with this source.

Security Research & Analysis

Vendor intelligence and investigative reporting.

Microsoft Security

Microsoft

Content sourced from Microsoft Security Blog. IdentityFirst is not affiliated with this source.

Krebs on Security

Krebs

Content sourced from Krebs on Security. IdentityFirst is not affiliated with this source.

Threat News & Breach Intelligence

Breaking incidents and publicly disclosed breaches.

BleepingComputer

BleepingComputer

Content sourced from BleepingComputer. IdentityFirst is not affiliated with this source.

Recent Breaches (HIBP)

HIBP
  • Glendale Community College (793,925 accounts)

    In June 2026, Glendale Community College was the target of a ShinyHunters "pay or leak" extortion campaign. Data allegedly obtained from Glendale was later published online and inc

  • Moody Bible Institute (2,303,416 accounts)

    In June 2026, Moody Bible Institute was targeted by a ShinyHunters "pay or leak" extortion campaign. Over 2.3M unique email addresses and other personal data were later published p

  • Sysco (2,691,852 accounts)

    In June 2026, the food distribution company Sysco was targeted by a ShinyHunters "pay or leak" extortion campaign. Data was subsequently published containing 2.7M unique email addr

  • American Tower (216,601 accounts)

    In June 2026, telecommunications tower infrastructure company American Tower was the target of a ShinyHunters "pay or leak" extortion campaign. The group subsequently published dat

  • Madison Square Garden Sports (9,796,738 accounts)

    In June 2026, the sports and entertainment company Madison Square Garden Sports was the target of a ShinyHunters "pay or leak" extortion campaign. The group later published the all

Content sourced from Have I Been Pwned. IdentityFirst is not affiliated with this source.

Turn Alerts Into Action

IdentityFirstMRI™ surfaces identity-relevant findings from your own environment — not just the news.

Read-only. No changes made to your environment.