Public service
Intelligence Feed
TeliApp consolidates information from multiple cybersecurity threat intelligence feeds — commercial, open-source, and government — and publishes anything we believe is useful to the public right here. No login. No paywall. No tracking pixels.
Free for everyone.
What we ingest
CISA KEV, MS-ISAC advisories, vendor PSIRT bulletins, open-source threat feeds, and our own field telemetry from defending New Jersey agencies.
What we publish
Plain-English summaries of active threats, scams targeting municipalities and residents, and patch guidance that anyone can act on.
Who it's for
Local government staff, small business owners, school administrators, and residents who want a trustworthy signal without the marketing noise.
Archive
709 advisories
Jun 26, 2026ScamsSEC Impersonation Fraud Alert
The SEC Office of Inspector General published a Fraud Alert regarding fraudsters purporting to be SEC officials. Recently an individual posing as an SEC Investigative Officer attempted to obtain personally identifiable and financial information from a victim via telephone and email.
May 28, 2026HackersThreat Actors Spoofing FIFA Websites
When is creative too creative? The Federal Bureau of Investigation ( FBI ) issued this Public Service Announcement ( PSA ) to warn the public that cyber threat actors are conducting spoofing attacks against the Fédération Internationale de Football Association ( FIFA ) website in advance of the 2026
May 28, 2026Gov. ProgramsGarden State CTF Finals and Summit
When is creative too creative? On May 27, Garden State Cyber and the NJCCIC hosted the second annual Garden State CTF Finals and Summit at The College of New Jersey (TCNJ). Over 1,700 students, 500 teams, and 86 schools from around New Jersey competed in the capture the flag (CTF) competition this y
May 28, 2026ScamsThe Ever-Evolving NJ MVC Messages
When is creative too creative? The NJCCIC received a new wave of reports about SMS phishing (SMiShing) scams. In this campaign, threat actors impersonated both the New Jersey State Police and the NJ Motor Vehicle Commission (MVC). These urgent-sounding messages claim to be vehicle enforcement adviso
May 28, 2026ScamsUptick in Kali365 Phishing Campaigns
When is creative too creative? OAuth device code phishing campaigns harvest access tokens without requiring targets to enter their credentials, enabling cyber threat actors to bypass multi-factor authentication (MFA). In early 2026, the EvilTokens Phishing-as-a-Service (PhaaS) platform launched OAut
May 26, 2026RansomwareVPN Service Used by Ransomware
When is creative too creative? The Federal Bureau of Investigation (FBI) released this FBI Liaison Alert System (FLASH) to disseminate indicators of compromise (IOCs) and identified tactics, techniques, and procedures (TTPs) associated with the First VPN Service. The service has been active since ap
May 21, 2026MalwareOdyssey Stealer Malware
When is creative too creative? Odyssey Stealer is an advanced information-stealing malware designed specifically for macOS devices. Threat actors use a ClickFix social engineering technique through software malvertising, phishing campaigns, or fake software update prompts to lure potential victims i
May 21, 2026ScamsBusiness Email Compromise
When is creative too creative? The NJCCIC observed several business email compromise (BEC) campaigns featuring a message chain targeting Accounts Payable departments. The messages appear to be a previous conversation thread from an impersonated executive at the targeted organization regarding an ove
May 21, 2026Gov. ProgramsSummer Internship Programs
When is creative too creative? The NJCCIC is happy to announce that the application window for the following summer internship programs is open: Cyber Safety Cadet - Grades 6, 7, 8 Cyber Safety Patrol - Grades 3, 4, 5 Cyber Safety Watch - Grades K, 1, 2 Please see the summer internship webpage for m
May 19, 2026VulnerabilityMultiple Vulnerabilities in NGINX
When is creative too creative? This Multi-State Information Sharing and Analysis Center (MS-ISAC) Advisory is being provided to assist agencies and organizations in guarding against the persistent malicious actions of cybercriminals. Multiple vulnerabilities have been discovered in NGINX. NGINX is a
May 19, 2026VulnerabilityMultiple Vulnerabilities in Mozilla Products
When is creative too creative? Multiple vulnerabilities have been discovered in Mozilla products, the most severe of which could allow for arbitrary code execution. Mozilla Firefox is a web browser used to access the Internet. Mozilla Firefox ESR is a version of the web browser intended to be deploy
May 15, 2026VulnerabilityVulnerability in Microsoft Server
When is creative too creative? A vulnerability has been discovered in Microsoft Exchange Server that could allow for arbitrary code execution. Microsoft Exchange Server is an enterprise-level email and collaboration platform developed by Microsoft that runs on Windows Server. Successful exploitation
May 14, 2026ScamsCompromised Airline Accounts
When is creative too creative? Airline accounts contain a wealth of sensitive data, including passenger names, contact information, passport numbers, and financial information. These accounts may be linked to loyalty programs that allow passengers to earn miles or points that serve as a form of curr
May 14, 2026ScamsWatch Out for These Phone-y Scams
When is creative too creative? The NJCCIC received an incident report about a phone scam in which threat actors alleged that the victim would be held in contempt and arrested for failing to report for jury duty unless fines were paid to the state and federal governments. The threat actors also claim
May 12, 2026VulnerabilityVulnerabilities in Adobe Products
When is creative too creative? Multiple vulnerabilities have been discovered in Adobe products, the most severe of which could allow for arbitrary code execution. Adobe After Effects is a digital effects, motion graphics, and compositing application. Adobe Commerce is a composable ecommerce solution
May 12, 2026VulnerabilityVulnerabilities in Apple Products
When is creative too creative? Multiple vulnerabilities have been discovered in Apple products, the most severe of which could allow for arbitrary code execution. Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution. Depending on the privileges
May 12, 2026VulnerabilityCritical Patches Issued for Microsoft Products
When is creative too creative? Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution. Successful exploitation of the most severe of these vulnerabilities could result in an attacker gaining the same privileges as the logge
May 12, 2026VulnerabilityVulnerabilities in Fortinet Products
When is creative too creative? Multiple vulnerabilities have been discovered in Fortinet products, the most severe of which could allow for remote code execution. FortiAuthenticator is a centralized identity and access management (IAM) solution that secures network access by managing user identities
May 7, 2026ScamsThe Rise of Botnets and DDoS Attacks
When is creative too creative? A botnet is a network or collection of internet-connected devices that have been infected with malware and are controlled remotely by threat actors. These devices include servers, routers, webcams, DVRs, smart TVs, set-top boxes, smart light bulbs, and other internet-c
May 7, 2026ScamsThere’s Nothing Legal About These Notices
When is creative too creative? Ahe NJCCIC observed a campaign sending multiple messages impersonating legal notices. These messages make claims such as a fine will be issued, identity needs to be verified, or compliance has failed. When users click the message's “Open” button, they are directed to a
May 7, 2026VulnerabilityVulnerabilities in Mozilla Products
When is creative too creative? Multiple vulnerabilities have been discovered in Mozilla products, the most severe of which could allow for arbitrary code execution. Mozilla Firefox is a web browser used to access the Internet. Mozilla Firefox ESR is a version of the web browser intended to be deploy
May 6, 2026VulnerabilityA Vulnerability in PAN-OS
When is creative too creative? A vulnerability has been discovered in the PAN-OS Authentication Portal (aka Captive Portal) service that could allow for remote code execution. PAN-OS is the operating system that runs Palo Alto Networks next-generation firewalls. Successful exploitation could allow a
May 6, 2026VulnerabilityVulnerability in Apache HTTP Server
When is creative too creative? A vulnerability has been discovered in Apache HTTP Server with the HTTP/2 protocol that could allow for remote code execution. Apache is a free, open-source web server software that enables the delivery of web content over the internet. Successful exploitation could re
May 4, 2026VulnerabilityVulnerability in WHM cPanel, WP Squared
When is creative too creative? A vulnerability has been discovered in WHM, cPanel, and WP Squared that could allow for remote code execution. WHM, cPanel, and WP Squared are Linux-based web hosting control panels for server and website management. While WHM provides server-level control, cPanel prov