2026-07-10T2009Z-intel
One pipeline fire, in full · intel run of 2026-07-10 · sub-agent allocation and telemetry, per-iteration verification verdicts and findings, source-list edits, coverage gaps, bridge invocations — and the run's own verification & coverage notes: what was published, what was dropped at the borderline or judged not relevant (and why), single-source carve-outs, and contradictions. Rendered from runs/2026-07-10/2026-07-10T2009Z-intel.md.
Run telemetry
- Items returned
- 1
- Duration
- 6m 58s
- Tool calls
- 8 WebFetch4 WebSearch18 bridge
- Cited sources
- 3 of 24 in slice
- Items returned
- 2
- Duration
- 11m 21s
- Tool calls
- 20 WebFetch20 WebSearch12 bridge
- Cited sources
- 3 of 26 in slice
- Items returned
- 5
- Duration
- 12m 58s
- Tool calls
- 21 WebFetch16 WebSearch13 bridge
- Cited sources
- 6 of 13 in slice
- Items returned
- 2
- Duration
- 11m 58s
- Tool calls
- 11 WebFetch9 WebSearch18 bridge
- Cited sources
- 0 of 15 in slice
Verification
Deep dive
—
Entries published (this run)
- CVE-2026-48939 — iCagenda for Joomla: unauthenticated file-upload-to-RCE, exploited as a zero-day, added to CISA KEV (CVSS 4.0 10.0) vulnerability high
- Forg365: a commercial Microsoft 365 phishing-as-a-service kit bundling device-code + AiTM phishing, in-panel AI lure drafting, and a browser extension for SSO-cookie persistence threat notable
- Open WebUI's six broken-access-control CVEs are one recurring authorization-architecture defect, not six isolated bugs research notable
- Siemens SICAM 8 (A8000/EGS/S8000) grid RTUs: firmware-signature-validation bypass + OPC-UA-off-by-default among four CVEs (SSA-229470) vulnerability notable
- WP-SHELLSTORM: an exposed webshell-brokerage toolkit reveals 27 weaponized CVEs fired at 1.4M WordPress/Joomla sites plus a parallel Nacos/Spring Boot credential-theft track threat notable
- Zimbra Classic Web Client: crafted-email code execution fixed in ZCS 10.1.19, surfaced by NCSC-CH (no CVE, exploitation unknown) vulnerability notable
Sources changed (this run)
Edits this run made to sources/sources.json · promotions, demotions, new candidates, and fetch-method / category / reliability / url corrections (the run record's sources_changed[]). Paginated; 10 per page.
1 last_successful_fetch=2026-07-10 (used — CVE-2026-48939 iCagenda KEV addition); counters reset · 1 ADDED as candidate (one new candidate this run) — mySites.guru, cited as published primary for the iCagenda entry (original disclosing party for the mid-2026 Joomla file-upload RCE wave); fetch_method jina; promote after 3 contributing runs · 1 last_successful_fetch=2026-07-10 (used via RSS all.xml — KEV alert); counters reset; note appended to prefer RSS feed over the page URL · 1 last_successful_fetch=2026-07-10 (used — CERT-FR AVI-0860 republishing Siemens SSA-229470); counters reset · 1 last_successful_fetch=2026-07-10 (used — Zimbra Classic Web Client advisory, post 12757); counters reset · 1 last_successful_fetch=2026-07-10 (used — Zimbra stored-XSS corroboration); counters reset · 1 last_successful_fetch=2026-07-10 (used — Forg365 and Open WebUI research notes); counters reset · 1 last_successful_fetch=2026-07-10 (used — Forg365 corroboration); counters reset · 1 last_successful_fetch=2026-07-10 (used — WP-SHELLSTORM corroboration citing Ctrl-Alt-Intel); counters reset · 1 last_successful_fetch=2026-07-10 (used — WP-SHELLSTORM exposed-toolkit investigation, primary); counters reset · 1 last_successful_fetch=2026-07-10 (used — two Open WebUI GHSA advisories confirmed; S1 separately found the /advisories listing is a client-rendered SPA with no structured endpoint — recipe gap flagged, recommend a GitHub Advisory API subcommand); counters reset · 1 consecutive_failures++ (article pages 403 across transports for S3+S4; /feed/ RSS reachable via jina); note appended; NOT demoted (403 transport block).
| Source | Change | From → To | Reason |
|---|---|---|---|
| cisa-kev | last_successful_fetch=2026-07-10 (used — CVE-2026-48939 iCagenda KEV addition); counters reset | — → — | |
| mysites-guru | ADDED as candidate (one new candidate this run) — mySites.guru, cited as published primary for the iCagenda entry (original disclosing party for the mid-2026 Joomla file-upload RCE wave); fetch_method jina; promote after 3 contributing runs | — → — | |
| cisa-advisories | last_successful_fetch=2026-07-10 (used via RSS all.xml — KEV alert); counters reset; note appended to prefer RSS feed over the page URL | — → — | |
| anssi-fr | last_successful_fetch=2026-07-10 (used — CERT-FR AVI-0860 republishing Siemens SSA-229470); counters reset | — → — | |
| ncsc-ch-security-hub | last_successful_fetch=2026-07-10 (used — Zimbra Classic Web Client advisory, post 12757); counters reset | — → — | |
| heise-sec | last_successful_fetch=2026-07-10 (used — Zimbra stored-XSS corroboration); counters reset | — → — | |
| csa-labs | last_successful_fetch=2026-07-10 (used — Forg365 and Open WebUI research notes); counters reset | — → — | |
| bleepingcomputer | last_successful_fetch=2026-07-10 (used — Forg365 corroboration); counters reset | — → — | |
| hackernews | last_successful_fetch=2026-07-10 (used — WP-SHELLSTORM corroboration citing Ctrl-Alt-Intel); counters reset | — → — | |
| socradar | last_successful_fetch=2026-07-10 (used — WP-SHELLSTORM exposed-toolkit investigation, primary); counters reset | — → — | |
| github-advisory | last_successful_fetch=2026-07-10 (used — two Open WebUI GHSA advisories confirmed; S1 separately found the /advisories listing is a client-rendered SPA with no structured endpoint — recipe gap flagged, recommend a GitHub Advisory API subcommand); counters reset | — → — | |
| industrialcyber-co | consecutive_failures++ (article pages 403 across transports for S3+S4; /feed/ RSS reachable via jina); note appended; NOT demoted (403 transport block) | — → — |
Coverage gaps (this run)
Sources this run's brief needed that returned no usable content via any documented recipe. Bridge-recovered or quiet-day sources do NOT appear here. (Distinct from the independent source-accessibility probe at the foot of this section, which probes all active sources regardless of what any run needed.)
| Source (uncovered) | URL tried | Method chain | Status / class | What the agent did instead |
|---|---|---|---|---|
| industrialcyber-co | https://industrialcyber.co/ransomware/healthcare-ransomware-attacks-remain-resil | webfetch → bridge:jina → bridge:url → websearch | 403 transport-403 Article pages 403 across direct WebFetch, jina reader and bridge url for both S3 and S4 (persistent anti-bot/WAF block, not source death). The /feed/ RSS path r | No substitute in-window OT/ICS lead lost that another source covered; article content was vendor-report roll-up (ZeroFox/CYFIRMA style), low-value. 403 never de |
Bridge invocations (this run)
3 bridge calls this run · these are successful bridge fetches (separate from "Coverage gaps" above).
- ×3
Verification findings · all iterations
Per-iteration finding detail. Each table is one verifier pass · what was flagged, how the main agent remediated it, and the outcome. Walking the tables top-to-bottom shows the verifier's debugging trail across iterations.
Iteration #? NEEDS_FIXES · 4 findings (truth=3, editorial=1, advisory=0) · Claude Opus 4.8 · 6m 16s
| F-code | Section | Item · URL/quote | Verifier summary | Remediation · outcome |
|---|---|---|---|---|
| F4 hallucinated-fact | — | evidence[] THN quote used an ellipsis in place of ', counting active webshells,' — not a contiguous verbatim substring. | Re-fetched the THN article and replaced the quote with the contiguous verbatim sentence 'Ctrl-Alt-Intel's deduplicated count found 25,195 sites with confirmed o | |
| F4 hallucinated-fact | — | evidence[] CSA quote spliced an ellipsis + semicolon around CVE-2025-63681 — not contiguous verbatim. | Replaced with the contiguous Key-Takeaways substring 'CVE-2025-63681 (the task-cancellation IDOR, CVSS 2.1), has no released patch as of this writing; upgrading | |
| F4 hallucinated-fact | — | body said the two research teams 'both agreeing' the crew is financially-motivated/non-state; the cited THN article makes that assessment for SOCRadar only. | Rewrote the sentence to attribute the financially-motivated-rather-than-state-directed read to SOCRadar (matching the THN wording 'SOCRadar goes a step further, | |
| F17 ? | — | classification reliability A rested on mySites.guru, a research-blog primary the run otherwise rates B; inconsistent with the run's own calibration. | Downgraded reliability A→B (the role:primary source is the mySites.guru research blog, matching its new sources.json B rating); credibility stays 1 (CISA KEV + |
Iteration #? NEEDS_FIXES · 3 findings (truth=2, editorial=1, advisory=0) · Claude Sonnet 5 · 7m 16s
| F-code | Section | Item · URL/quote | Verifier summary | Remediation · outcome |
|---|---|---|---|---|
| F4 hallucinated-fact | — | entities[] linked trend:joomla-extension-file-upload-rce-wave — that trend is specifically the mySites.guru-discovered Joomla-extension zero-day cluster; WP-SHELLSTORM is a distinct financially-motiva | Dropped trend:joomla-extension-file-upload-rce-wave; entities now [actor:wp-shellstorm] only. (Also clears the earlier dedup WARN on that shared tag for this en | |
| F3 claim-not-supported | — | body attributed the cloud-credential/DB-connection-string haul to 'Java heap dumps', but SOCRadar ties that haul to exfiltrated Nacos configuration files; the JDumpSpider/Spring-Boot-heap-dump path is | Rewrote the sentence to separate the two techniques: the Nacos auth-bypass exfiltrated hundreds of Nacos config files (the credential haul), while a separate Sp | |
| F17 ? | — | classification reliability B not supported — both cited sources (socradar, hackernews) are rated C in sources/sources.json. | Downgraded to C2 (reliability C tracks the sources' own letter; credibility 2 — the operation and scale are corroborated by two independent teams, but the paral |
Verification & coverage notes
The run record's narrative body, verbatim. This is where the run accounts for its own judgement calls — every borderline drop and judged-not-relevant item with its reason, dedup decisions, single-source items and their carve-outs, contradictions, and per-source coverage gaps — so nothing the run considered disappears silently.
Verification & coverage notesrun record body
2026-07-10T2009Z-intel · Claude Opus 4.8 · window 24 h · 6 entries published
Verification & coverage notes
An intraday fire — gap ~7.7 h from the previous run 2026-07-10T1228Z-intel (24 h floor applied, so the research window was a full day even though the morning's two runs had already swept most of it). S1–S4 all returned (Sonnet 5, per each agent's harness-injected model line); no S5 (no in-window intel/ drops). Six items cleared the gate against a window earlier runs had largely covered — the delta this fire is genuinely new signal that landed since ~12:53Z: one high vulnerability (actively-exploited iCagenda KEV addition), two notable vulnerabilities (Siemens SICAM OT, Zimbra/NCSC-CH), two notable threats (Forg365 M365 PhaaS, WP-SHELLSTORM webshell brokerage), and one notable research synthesis (Open WebUI access-control cluster). Zero critical. No deep dive: the earlier run already published today's deep dive and no candidate here independently earned a second with materially higher urgency (iCagenda is a focused vuln; the two threats are strong-notable but not deep-dive-grade this window). Four S3/S4 candidates were dropped at the gate (below).
- New vs update — CVE-2026-48939 (iCagenda). New CVE, not in prior coverage or the store-wide index. It is the fourth Joomla third-party extension in ~a month to ship the same unauthenticated-upload class, surfaced by the same researcher (mySites.guru) as the SP Page Builder / Page Builder CK / Balbooa cluster already covered — published as a distinct new entry (distinct product and CVE) linking
trend:joomla-extension-file-upload-rce-wave, not an update. Priorityhighnotcritical: the vendor patch is ~3.5 weeks old (2026-06-15/16) and the in-the-wild exploitation evidence is from the pre-patch June window; the in-window trigger is CISA's KEV listing today, which formalises rather than newly weaponises. Key technical nuance carried from the primary: the upload-to-RCE fires on Joomla 6 only (earlier Joomla blocks unsafe uploads in core), while the access-control bypass affects all versions. - Siemens SICAM 8 (SSA-229470) — included at
notable, honestly framed. Four CVEs, no in-the-wild exploitation, none a remote pre-auth vector (firmware-signing bypass CVE-2026-54799 is local + high-privilege; the admin-API and debug flaws require authentication; the OPC-UA-off default CVE-2026-54800 is network but high-complexity and config-mitigable). It clears the bar on the energy-CI nexus (a core additional sector), a home-region authority (CERT-FR/ANSSI) republishing it in-window, and OT firmware updates being inherently out-of-band rather than routine patch-cycle work — framed as a prioritised OT hardening/patch action, with the OPC UA config default called out as the exposure closable immediately without a patch. Nothigh: no exploitation and no remote pre-auth path. - Zimbra Classic Web Client (NCSC-CH) — the weakest include, kept for constituency completeness. No CVE assigned, exploitation status explicitly "unknown", legacy client Zimbra is steering users away from. Included because the deployment's own national authority (NCSC-CH, Admiralty A) published an advisory for the constituency about an unauthenticated, on-message-open mailbox-compromise path in a webmail platform still used across European public-sector and telecom orgs — a concrete "identify Classic Web Client use, switch to Modern, patch 10.1.19" decision.
notablewithconfidence: mediumand the unknown-exploitation caveat stated in the body; dropping it would have left a real (if minor) blind spot for a Swiss public-sector reader relying on this feed. - Distinct-entry vs update — Forg365. The device-authorization-grant phishing primitive was covered this morning (M365 Conditional-Access / Railway-LSHIY research entry). Forg365 is a distinct commercial PhaaS product and operator (ZeroBEC), shipped as a standalone
threatentry framed on the deltas — in-panel AI lure drafting and the ForgCookie browser-extension SSO-cookie-refresh persistence — and cross-linking the morning's entry viareferences[]so the shared primitive is not re-taught. Attribution (Kali365-class, Sneaky2FA overlap) reported as ZeroBEC's assessment, no asserted common ownership (classification B2). - WP-SHELLSTORM — active mass exploitation,
notable. Multi-source (SOCRadar primary; The Hacker News independently citing Ctrl-Alt-Intel's separate analysis of the same exposed directory). Included on the breadth-first FOFA targeting that puts any exposed Swiss/EU CMS or Nacos/Spring Boot estate in scope plus transferable detection.cves[]left empty deliberately: the operationally-named CVEs (Breeze CVE-2026-3844, ThemeREX CVE-2026-1969, Nacos CVE-2021-29441) are described in prose with the actions, but the source did not give verified vector/auth for the plugin CVEs, so they are not fabricated into frontmatter records. china-nexus tag reflects the sources' "Chinese-speaking/Chinese-linked" language-and-tooling attribution of a financially-motivated (non-state) crew. - Open WebUI access-control cluster —
research,notable. CSA Labs synthesis of six access-control CVEs, two independently confirmed against the GitHub Security Advisory Database this run. Included as substantive technical analysis (the per-endpoint-authorization architectural pattern + the client-sidenew Function()→ server-sideexec()RCE chain) relevant to the public-sector/research teams self-hosting LLM front-ends; one CVE (CVE-2025-63681) is unpatched, so a compensating control is the only mitigation. CVSS for CVE-2025-64496 recorded as the advisory's 7.3 with the body noting NVD's later 8.0 reassessment. - borderline-drop: MODBEACON / Silver Fox Rust RAT (S3) — the only reachable source was an aggregator (The Hacker News) relaying a QiAnXin primary that could not be located this run; APAC-only targeting, no Swiss/EU nexus. The gRPC-over-Xray/V2Ray C2-transport tradecraft is genuinely transferable, but aggregator-only sourcing with an unreachable primary plus no nexus is too thin to publish as fact.
- borderline-drop: Wiz Red Agent / XBOW autonomous AI pentesting (S3) — largely a vendor (Wiz) product case study plus aggregate percentages; the vulnerability classes found (BOLA/SSRF/JWT
alg:none) are commodity misconfigurations with generic API-hygiene remediations, and the "AI compresses time-to-exploit" observation is a strategic/weekly-horizon point, not operational detection intel. - borderline-drop: CISA GovCloud key-leak post-mortem (S4) — a national authority's candid lessons-learned document (secret sprawl, EDR-gated repo uploads, key-rotation agility) with directly transferable DevSecOps value, but no fresh TTP or operational detection surface; a weekly-strategic candidate rather than an operational-run entry. Underlying May incident already in the registry (
incident:cisa-nightwing-contractor-aws-govcloud-keys-exposed-github), outside the 14-day window; no prior entry to hang anupdate_ofon. - borderline-drop: DigitalMint DOJ ransomware-negotiator sentencing (S4) — already borderline-dropped in the 12:28Z run; US-only adjudicated insider-corruption case, a third-party-IR-vendor-trust governance lesson with no operational detection surface and no home-region nexus. The proposed
actor:blackcat-alphv/incident:digitalmint-...entities were not registered (item dropped). - Cited-but-untracked sources (for a future run): Siemens ProductCERT (
cert-portal.siemens.com) and ZeroBEC (zerobec.com) both served as published primaries this run but are not insources.json; only one new candidate is allowed per run (mySites.guru taken), so these are flagged for addition on a later fire. Zimbra's vendor blog similarly cited but untracked. - Coverage gaps: industrialcyber-co (article pages 403 across transports for S3+S4; /feed/ RSS reachable — prefer the feed); github-advisory (the /advisories web listing is a client-rendered SPA with no structured endpoint — recommend adding a GitHub Advisory GraphQL/REST subcommand to
tools/fetch_source.py; per-GHSA pages were reachable directly for the Open WebUI cluster); rapid7-research (both candidate RSS paths 404 via direct + jina); ncsc-uk (highlights page has no reliable date discriminator — items appeared stale); numerous CH/EU authority and research sources (BSI/CERT-EU/CERT-AT/CERT-PL/ENISA/NCSC-IE/CNIL/ICO/OFAC/JPCERT and the research slice) reached but quiet — newest items predate the intraday cutoff. No essential source missed this run. - Essential-coverage: all essential sources attempted and reachable this run (NCSC-CH, CISA-KEV, CISA-advisories via RSS, ENISA-EUVD, ANSSI, BSI, NCSC-NL, CERT-EU, CERT-PL, CERT-AT, NCSC-UK all reached).
- Watchlist: no product or supplier watchlist configured in
config/org-profile.yaml— the sweeps are no-ops (S1 products checked=0/0, S4 suppliers checked=0/0); noWatchlist:line emitted per policy.
← Operations dashboard · day page 2026-07-10 · run-record contract: docs/pipeline.md