Whats The Hax?

FB

For [Blue|Purple] Teams in Cyber Defence

1h ago · 20 items

Why Data From So Many Breaches Never Sees the Light of Day 1h ago Two Americans Who Attacked Multiple U.S. Victims Using ALPHV BlackCat Ransomware Sentenced to Prison 1h ago Qilin Ransomware Enumerates RDP Authentication History on a Compromised Server 1h ago Agentic Malware Analysis: From Task Automation to Deep Analysis 1h ago pydep-vector-runner: A lightweight runner that guards against weird startup behaviors in python. Lightweight version of PyDepGuard's coderunner. 1h ago month-of-bypasses: Proof-of-Concepts for Detection Engineering Purposes Only 1h ago How to block CVE-2026-31431 (Copy Fail) 1h ago Auditing Application Permissions in Microsoft Entra ID: Hidden Risks, Pitfalls, and Quarkslab's QAZPT Tool 1h ago CVE-2026-31431 eBPF fix - Copy.fail 2h ago From APT29 Logs to Real Detection Rules 3h ago Making Vulnerable Drivers Exploitable Without Hardware - The BYOVD Perspective 4h ago Beyond CVEs: Untracked Vulnerabilities in Public Issue Trackers 4h ago The cPanel Situation Is… 11h ago Komari Red: The Monitoring Tool with a Built-in Reverse Shell 15h ago GitHub Actions script injection in oxsecurity/megalinter — 5 confirmed vulnerabilities via untrusted PR context interpolation 15h ago Mini Shai-Hulud (TeamPCP) — same attack pattern, fifth time this year. The detection-after-publish model is broken. 18h ago Careful adoption of agentic AI services 22h ago Preparing for a ‘vulnerability patch wave’ 1d ago Analyzing the Silver Fox tax campaign and the new ABCDoor backdoor 1d ago CVE-2026-42167 Allows Auth Bypass And RCE In ProFTPD - in an extension, not core 1d ago

20 loaded Show 10 more

HS

hacking: security in practice

1h ago · 20 items

Built a private chat that self-destructs in 24h — no accounts, no logs 1h ago Small models are better at cost-to-recall than large models like Mythos for vulnerability research 10h ago Bluetooth Spoofed Disconnect? 14h ago wM-Buster - Flipper Zero app to analyze smart meters for gas, electricity, water. ... 23h ago 🚀🔥 Evil-Cardputer v1.5.3 - TagTinker ESL 🔥🚀 1d ago I made a lightweight breach intelligence search engine (fully client-side) looking for feedback 1d ago Bringing back the 80s terminal aesthetic: GLYPHIS_IO BBS, a cyberpunk hacking sim set in alternate 1989 Japan... 1d ago Short and easy to understand: "Copy-Fail CVE-2026-31431" What is it and how do I mitigate it with an Open Source Tool 1d ago Copy Fail — 732 Bytes to Root 2d ago GitHub fixes RCE flaw that gave access to millions of private repos 2d ago How to download Kaggle dataset safely...? 2d ago VECT Ransomware Is Actually a Wiper 3d ago Flipper Blackhat April Roundup! 3d ago [VulnPath Update] Automated Email Alerting & CISA KEV Feed 3d ago Ikeja Electric Distribution Ransomware 3d ago VoiceGoat – A vulnerable voice agent for practicing LLM attack techniques 3d ago HTB Forest Machine Walkthrough | CPTS Preparation 3d ago Microsoft's AI Agent Role Had a Scoping Bug 4d ago Cybersecurity researchers have discovered a Lua-based malware created years before Stuxnet 4d ago Onde é esse forum? 4d ago

20 loaded Show 10 more

CY

cybersecurity

1h ago · 20 items

Hi everyone 1h ago CVE-2026-31431: Copy Fail vulnerability enables Linux root privilege escalation across cloud environments | Microsoft Security Blog 1h ago CVE-2026-41940 cPanel Exploitation From a Honeypot Perspective 1h ago CTO at NCSC Summary: week ending May 3rd 1h ago Which certification should i do?(cybersecurity student) 2h ago How the AI is changing the landscape of penetration testing? 2h ago CVE-2026-31431 (Copy Fail) PHP PoC 2h ago Share me brutal reality of remote cybersecurity jobs 4h ago Few years but looking to learn more. Building a lab 5h ago Every cyber incident that public companies have disclosed to the SEC, in one searchable database 11h ago Networking on LinkedIn 11h ago Why do so many beginners chase tools instead of fundamentals? 13h ago Nearly half of UK businesses pwned last year as phishing keeps doing the job like it's 2005 13h ago Security Advisory: Unauthorised Access to Trellix Internal Source Code 14h ago 15-year-old detained over French govt agency data breach 15h ago Job Placement 15h ago Which LLM gives you the best accuracy with the least refusals for cybersecurity work? 17h ago I almost wired $100k to a fake company because of a deepfaked CFO. 17h ago Claude Security, Cursor Security, and GPT-5.5 Cyber all dropped in 7 days. We’re cooked (in the best way) 19h ago Useful AI Cybersec Certs? 19h ago

20 loaded Show 10 more

MS

MSRC Security Update Guide

1h ago · 20 items

CVE-2026-31608 smb: server: avoid double-free in smb_direct_free_sendmsg after smb_direct_flush_send_list() 1h ago CVE-2026-31598 ocfs2: fix possible deadlock between unlink and dio_end_io_write 1h ago CVE-2026-31602 ALSA: ctxfi: Limit PTP to a single page 1h ago CVE-2026-41080 1h ago CVE-2026-28532 FRRouting < 10.5.3 Integer Overflow in OSPF TLV Parser Functions 2h ago CVE-2026-4948 Firewalld: firewalld: local unprivileged user can modify firewall state due to d-bus setter mis-authorization 2h ago CVE-2026-3184 Util-linux: util-linux: access control bypass due to improper hostname canonicalization 1d ago CVE-2026-27456 util-linux: TOCTOU Race Condition in util-linux mount(8) - Loop Device Setup 1d ago CVE-2026-31478 ksmbd: replace hardcoded hdr2_len with offsetof() in smb2_calc_max_out_buf_len() 1d ago CVE-2026-0964 Libssh: improper sanitation of paths received from scp servers 1d ago CVE-2026-0966 Libssh: buffer underflow in ssh_get_hexa() on invalid input 1d ago CVE-2026-0967 Libssh: libssh: denial of service via inefficient regular expression processing 1d ago CVE-2026-0965 Libssh: libssh: denial of service via improper configuration file handling 1d ago CVE-2026-25645 Requests has Insecure Temp File Reuse in its extract_zipped_paths() utility function 1d ago CVE-2026-3731 libssh SFTP Extension Name sftp.c sftp_extensions_get_data out-of-bounds 1d ago CVE-2026-3087 shutil.unpack_archive() doesn't check for Windows absolute paths in ZIPs 1d ago CVE-2026-6357 pip self-update functionality can import newly installed modules after wheel installation 1d ago CVE-2026-41605 Apache Thrift: Swift Compact Protocol integer overflow 1d ago CVE-2026-41607 Apache Thrift: C++ JSON OOB read 1d ago CVE-2025-48431 Apache Thrift: Specially crafted input can crash a c_glib Thrift server with invalid pointer error. 1d ago

20 loaded Show 10 more

TH

The Hacker News

3h ago · 20 items

Trellix Confirms Source Code Breach With Unauthorized Repository Access 3h ago 30,000 Facebook Accounts Hacked via Google AppSheet Phishing Campaign 15h ago Cybercrime Groups Using Vishing and SSO Abuse in Rapid SaaS Extortion Attacks 19h ago China-Linked Hackers Target Asian Governments, NATO State, Journalists, and Activists 20h ago Top Five Sales Challenges Costing MSPs Cybersecurity Revenue 23h ago Two Cybersecurity Professionals Get 4-Year Sentences in BlackCat Ransomware Attacks 1d ago Poisoned Ruby Gems and Go Modules Exploit CI Pipelines for Credential Theft 1d ago PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials 1d ago ThreatsDay Bulletin: SMS Blaster Busts, OpenEMR Flaws, 600K Roblox Hacks and 25 More Stories 1d ago New Python Backdoor Uses Tunneling Service to Steal Browser and Cloud Credentials 1d ago EtherRAT Distribution Spoofing Administrative Tools via GitHub Facades 1d ago New Linux 'Copy Fail' Vulnerability Enables Root Access on Major Distributions 2d ago Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution 2d ago SAP-Related npm Packages Compromised in Credential-Stealing Supply Chain Attack 2d ago New Wave of DPRK Attacks Uses AI-Inserted npm Malware, Fake Firms, and RATs 2d ago Webinar: How to Automate Exposure Validation to Match the Speed of AI Attacks 2d ago What to Look for in an Exposure Management Platform (And What Most of Them Get Wrong) 2d ago Critical cPanel Authentication Vulnerability Identified — Update Your Server Immediately 3d ago CISA Adds Actively Exploited ConnectWise and Windows Flaws to KEV 3d ago LiteLLM CVE-2026-42208 SQL Injection Exploited within 36 Hours of Disclosure 3d ago

20 loaded Show 10 more

MS

Microsoft Security Blog

7h ago · 10 items

CVE-2026-31431: Copy Fail vulnerability enables Linux root privilege escalation across cloud environments 7h ago A high-severity Linux vulnerability, “Copy Fail” (CVE-2026-31431), enables root privilege escalation across cloud environments and Kubernetes workloads. With a working exploit already in the wild, organizations should act quickly to detect,... Microsoft Agent 365, now generally available, expands capabilities and integrations 19h ago ​We’re announcing the general availability of Agent 365, plus previews of new capabilities to discover and manage shadow AI agents. Learn more. What’s new, updated, or recently released in Microsoft Security 1d ago Stay ahead of emerging threats with Microsoft’s newest security innovations and updates, delivered through the In the Loop series. Email threat landscape: Q1 2026 trends and insights 1d ago In early 2026, email threats increased with a rise in credential phishing, QR code phishing, and CAPTCHA-gated campaigns, highlighted by Microsoft’s disruption of the Tycoon2FA phishing platform which led to a 15% volume decrease and shifts... 8 best practices for CISOs conducting risk reviews 2d ago Read Microsoft expert tips for CISOs on embracing strong proactive security to mitigate increased exposure to security threats. Simplifying AWS defense with Microsoft Sentinel UEBA 3d ago Learn how Microsoft Sentinel UEBA helps defenders distinguish benign AWS activity from attacker behavior by enriching raw CloudTrail logs with clear, binary behavioral signals derived from baseline user, peer, and device behavior patterns. AI-powered defense for an AI-accelerated threat landscape 9d ago Read how Microsoft is partnering with Anthropic and broader industry to use leading models, paired with our platforms and expertise, to turn AI-driven discovery into protection at scale. Detection strategies across cloud and identities against infiltrating IT workers 10d ago The shift to remote and hybrid work since the pandemic expanded global hiring and accelerated digital onboarding, increasing reliance on online identity verification and remote access. Making opportunistic cyberattacks harder by design 11d ago How Microsoft secures Dynamics 365 and Power Platform by removing credentials, reducing attack surfaces, and using platform engineering to block opportunistic threats. Cross‑tenant helpdesk impersonation to data exfiltration: A human-operated intrusion playbook 13d ago Threat actors are abusing external Microsoft Teams collaboration to impersonate IT helpdesk staff and convince users to grant remote access. Once inside, attackers can abuse legitimate tools and standard admin protocols to move laterally an...

BL

BleepingComputer

9h ago · 15 items

Microsoft tests modern Windows Run, says it's faster than legacy dialog 9h ago Microsoft has confirmed that Windows 11 is getting a new modern Run dialog with dark mode support and faster performance in a new preview build. Edu tech firm Instructure discloses cyber incident, probes impact 10h ago Instructure, the company behind the widely used Canvas learning platform, has disclosed that it recently suffered a cybersecurity incident and is now investigating its impact. 15-year-old detained over French govt agency data breach 16h ago French authorities have detained a 15-year-old suspected of selling data stolen in a cyberattack on France Titres (ANTS), the country's agency for issuing and managing administrative documents. Story retracted 17h ago Criminal IP and Securonix ThreatQ Collaborate to Enhance Threat Intelligence Operations 20h ago Raw threat intel isn't enough without real-world context. Criminal IP has partnered with Securonix to integrate exposure-based intelligence into ThreatQ, automating analysis and speeding up investigations. Microsoft fixes Remote Desktop warnings displaying incorrectly 21h ago Microsoft has fixed a known issue causing newly introduced Windows security warnings to display incorrectly when opening Remote Desktop (.rdp) files. Microsoft now lets admins choose pre-installed Store apps to uninstall 22h ago Microsoft has updated a Windows 11 in-box app removal policy introduced in October to include a dynamic list that lets IT admins choose which preinstalled Store apps to uninstall. Windows 11 KB5083631 update released with 34 changes and fixes 1d ago Microsoft has released the KB5083631 optional cumulative update for Windows 11, which includes 34 changes, such as a new Xbox mode for Windows PCs, enhanced security and performance for batch files, and performance improvements for launchin... US ransomware negotiators get 4 years in prison over BlackCat attacks 1d ago Two former employees of cybersecurity incident response companies Sygnia and DigitalMint were sentenced to four years in prison each for targeting U.S. companies in BlackCat (ALPHV) ransomware attacks. New Bluekit phishing service includes an AI assistant, 40 templates 1d ago A new phishing kit named Bluekit offers more than 40 templates targeting popular services and includes basic AI features for generating campaign drafts. Romanian leader of online swatting ring gets 4 years in prison 1d ago FBI links cybercriminals to sharp surge in cargo theft attacks 1d ago April KB5083769 Windows 11 update causes backup software failures 1d ago What Happens in the First 24 Hours After a New Asset Goes Live 1d ago New Linux ‘Copy Fail’ flaw gives hackers root on major distros 1d ago

15 loaded Show 5 more

TI

Technical Information Security Content & Discussion

10h ago · 20 items

For vulnerability research, smaller models run repeatedly can outperform larger frontier models on cost-to-recall. 10h ago Every incident public companies have disclosed to the SEC, in one searchable database 11h ago r/netsec monthly discussion & tool thread 20h ago Handled, Not Hosted: Administrative Activity Inside a Bulletproof Hoster 1d ago Seventeen vulnerabilities in Omi, fourteen days of silence 1d ago High Fidelity Check for the cPanel Authentication Bypass (CVE-2026-41940) 2d ago Copy Fail exploit lets 732 bytes hijack Linux systems and quietly grab root 2d ago The Internet Is Falling Down, Falling Down, Falling Down (cPanel & WHM Authentication Bypass CVE-2026-41940) - watchTowr Labs 2d ago The Thymeleaf Template Injection That Only Hurts If You Let It 2d ago Set up automated dependency scanning after the recent npm/PyPI supply chain attacks 2d ago A Route to Root in a 4G Industrial Router 3d ago [Research] Full-chain RCE in Microsoft Semantic Kernel & Agent Framework 1.0 (6 Bypasses) 3d ago The Bot Left a Fingerprint: Detecting and Attributing LLM-Generated Passwords 3d ago 89 vulnerabilities in XAPI / Citrix XenServer 4d ago [ Removed by Reddit ] 4d ago Kaspersky recently disclosed PhantomRPC, a privilege escalation technique affecting all Windows versions (tested on Server 2022/2025) 4d ago Why a Decade of Writing Detection Logic Makes the Mythos Exploit Numbers Less Scary 4d ago MCPwned: a Burp Suite extension for auditing MCP servers 5d ago Attempting to evade an AI SOC with offensive agents 6d ago Large-scale security audit of 1,764 "vibe-coded" apps: 7% have wide-open Supabase DBs, 15% of Bolt apps ship hardcoded API keys, plus IDOR and zero-auth APIs 7d ago

20 loaded Show 10 more

LN

Latest news

13h ago · 20 items

T-Mobile is giving 5G customers Hulu and Netflix subscriptions, free - here's how to get them 13h ago If you're a T-Mobile customer on an Experience Beyond or Go5G Next plan, Hulu and Netflix (both with ads) are now included with your service. 5 last-minute gifts your mom will actually like for Mother's Day (and all are on sale) 15h ago Mother's Day is coming up, and we've found the best useful gadgets and cozy items that our moms on staff approve. Samsung will give you a free 32-inch Odyssey monitor right now - how to qualify 15h ago Samsung's BOGO monitor deal is back. Here's what you need to know. Google Maps vs. Waze: I compared the two best navigation apps, and this one wins 16h ago Waze is great for fast reroutes and real-time alerts, while Google Maps delivers deep Gemini integration and more features. Here's my pick after extensive testing. How we test AI at ZDNET 16h ago AI is the hottest topic in tech with new models and products launching daily. Here's how we test the latest AI developments at ZDNET. This portable computer is the Raspberry Pi alternative I didn't know I needed 16h ago The M5Stack Cardputer Adv is a self-contained pocket computer packed with promise. I spent 30 days working without a laptop - here's what it taught me about real productivity 17h ago It turns out, these days, content creation goes beyond PCs. Here are a few devices I rely on. I've tested robot mowers for years - here's my expert advice for every yard type 18h ago I have one golden rule: It's not about the mower, it's about the yard. Here's my checklist for deciding which to buy. Best Buy just slashed up to $2,000 off our favorite TCL Mini LED TV - no strings attached 18h ago The TCL QM8 is an excellent Mini LED TV that offers high-quality picture and audio, and you can save thousands with this Best Buy deal. Mini LED vs. OLED: I've tested dozens of TV with both display types, and this one's better 19h ago OLED is the king of TV tech, but the latest developments in Mini-LED put it in close second. I've broken down the differences to help you decide. Eero Signal keeps your business online during internet outages 20h ago After using the $1,900 Motorola Razr Fold again, I'm doubling down on my buying advice 20h ago How I scan documents with my Android phone and turn them into PDFs for free - it's easy 20h ago I used Photoshop's new AI tool to rotate objects in 3D, and it's pure magic 21h ago I replaced my dad's aging Lenovo desktop with this Dell model - and don't regret it 22h ago My home Wi-Fi was full of dead zones - here are 6 solutions that actually worked 22h ago Best AirPods of 2026: Expert tested and reviewed 23h ago Moving from AI pilots to business-wide value requires a superhighway - how to ramp up 1d ago 4 interior designers told us what smart tech you should actually buy 1d ago Forget productivity: Here are 5 strategic shifts that drive real AI value 1d ago

20 loaded Show 10 more

SL

Security Latest

13h ago · 20 items

Dangerous New Linux Exploit Gives Attackers Root Access to Countless Computers 13h ago OpenAI Rolls Out ‘Advanced’ Security Mode for At-Risk Accounts 1d ago 90,000 Screenshots of One Celebrity's Phone Were Exposed Online 2d ago Why Sharing a Screenshot Can Get You Jailed in the UAE 3d ago The Race Is on to Keep AI Agents From Running Wild With Your Credit Cards 3d ago Cole Allen Charged With Attempting to Assassinate Trump 4d ago California Engineer Identified in Suspected Shooting at White House Correspondents’ Dinner 6d ago Discord Sleuths Gained Unauthorized Access to Anthropic’s Mythos 6d ago The Latest Push to Extend Key US Spy Powers Is Still a Mess 7d ago Newly Deciphered Sabotage Malware May Have Targeted Iran’s Nuclear Program—and Predates Stuxnet 8d ago AI Tools Are Helping Mediocre North Korean Hackers Steal Millions 9d ago Mozilla Used Anthropic’s Mythos to Find and Fix 271 Bugs in Firefox 10d ago Meta Is Sued Over Scam Ads on Facebook and Instagram 10d ago They Built a Legendary Privacy Tool. Now They’re Sworn Enemies 11d ago The Weird, Twisting Tale of How China Spied on Alysa Liu and Her Dad 12d ago It Takes 2 Minutes to Hack the EU’s New Age-Verification App 13d ago Republican Mutiny Sinks Trump's Push to Extend Warrantless Surveillance 14d ago The Shocking Secrets of Madison Square Garden’s Surveillance Machine 15d ago Europe’s Online Age Verification App Is Here 15d ago The Deepfake Nudes Crisis in Schools Is Much Worse Than You Thought 17d ago

20 loaded Show 10 more

SA

Security - Ars Technica

14h ago · 20 items

Ubuntu infrastructure has been down for more than a day 14h ago GPT-5.5 matches heavily hyped Mythos Preview in new cybersecurity tests 18h ago The most severe Linux threat to surface in years catches the world flat-footed 1d ago Why a recent supply-chain attack singled out security firms Checkmarx and Bitwarden 2d ago Open source package with 1 million monthly downloads stole user credentials 4d ago Why are top university websites serving porn? It comes down to shoddy housekeeping. 7d ago In a first, a ransomware family is confirmed to be quantum-safe 8d ago Crypto scam lures ships into Strait of Hormuz, falsely promising safe passage 9d ago Microsoft issues emergency update for macOS and Linux ASP.NET threat 9d ago Mozilla: Anthropic's Mythos found 271 security vulnerabilities in Firefox 150 10d ago Contrary to popular superstition, AES 128 is just fine in a post-quantum world 10d ago US-sanctioned currency exchange says $15 million heist done by "unfriendly states" 14d ago Recent advances push Big Tech closer to the Q-Day danger zone 14d ago "TotalRecall Reloaded" tool finds a side entrance to Windows 11's Recall database 16d ago UK gov's Mythos AI tests help separate cybersecurity threat from hype 17d ago Iran-linked hackers disrupt operations at US critical infrastructure sites 23d ago Thousands of consumer routers hacked by Russia's military 23d ago CBP facility codes sure seem to have leaked via online flashcards 26d ago OpenClaw gives users yet another reason to be freaked out about security 28d ago New Rowhammer attacks give complete control of machines running Nvidia GPUs 29d ago

20 loaded Show 10 more

RE

Reverse Engineering

15h ago · 20 items

Why my macOS Messages badge lied to me (and the one-line fix) 15h ago Running Adobe’s 1991 PostScript Interpreter in the Browser 18h ago Hello! Here is my Oura Ring 4 pure Python driver! Let me know what you think :) 18h ago /r/ReverseEngineering's Triannual Hiring Thread 1d ago In-circuit NAND acquisition for edge devices (Raspberry Pi GPIO, no chip-off) 1d ago Revealing NVIDIA Closed-Source Driver Command Streams for CPU-GPU Runtime Behavior Insight 1d ago HexDig 1.0.0 a lightweight binwalk alternative working both on Windows and Linux, written in C++, give it a try! 2d ago GitHub - iss4cf0ng/CVE-2026-31431-Linux-Copy-Fail: Rust implementation Exploit/PoC of CVE-2026-31431-Linux-Copy-Fail, allow executing customized shellcode (such as Meterpreter). 2d ago I built a free open-source CAN bus reverse engineering workstation in Python — 15 tabs, offline ML, dual AI engines, MitM gateway 2d ago Building a perfect clone of 1993 game SimTower (via RE) 3d ago How I reverse-engineered a SQLite WAL database inside a VS Code extension - custom merge engine, header byte patching, and protobuf decoding without a schema 3d ago AI solved our CTF in 6min 3d ago Example structure for evidence-based vulnerability reports 4d ago rfcat-py3 4d ago Using Google's Gemma 4 E4B local AI model to Reverse Engineer a simple Crackme 4d ago /r/ReverseEngineering's Weekly Questions Thread 5d ago Importing GTA IV texture dictionary natively in Unreal 6d ago [CrackMe] PyVMP v5 : The Wall. I dare you to break it (again). 6d ago Claude APK reverse engineering 7d ago NEC V810 and V830 (V800 family) CPU Definition module for Ghidra 7d ago

20 loaded Show 10 more

CY

CyberScoop

17h ago · 10 items

US government, allies publish guidance on how to safely deploy AI agents 17h ago Former incident responders sentenced to 4 years in prison for committing ransomware attacks 1d ago FCC tightens KYC rules for telecoms, closes loophole for banned foreign services 1d ago The FCC unanimously approved strict new "Know Your Customer" rules to combat illegal robocalls, harden telecom networks against cyberattacks, and vet overseas equipment-testing labs. Congress kicks the can down the road on surveillance law (again) 1d ago cPanel’s authentication bypass bug is being exploited in the wild, CISA warns 1d ago Two new extortion crews are speedrunning the Scattered Spider playbook 1d ago Everyone’s building AI agents. Almost nobody’s ready for what they do to identity. 2d ago Congress, industry ponder government posture for protecting data centers 2d ago Spy agency officials say job loss anxiety, moving fast ‘safely’ among top challenges in AI workforce overhaul 3d ago Federal CIO cautious on Anthropic’s Mythos despite planned rollout 3d ago

MA

Malware Analysis & Reports

17h ago · 20 items

Fake Tailscale site on Google Ads uses ClickFix to get you to execute malware yourself 17h ago Minecraft Malware C2 Tracking 20h ago Minirat malware deployed via NPM targeting macOS machines 2d ago VECT Ransomware Is Actually a Wiper 3d ago The Malware Factory: GLASSWORM Forensics in Open VSX 3d ago Phishing-to-RMM Attacks: The Remote Access Blind Spot Businesses Can't Ignore 3d ago [ Removed by Reddit ] 3d ago Ikeja Electric Distribution Ransomware 3d ago Recently updated a authentic minecraft mod launcher called Modrinth 4d ago This appeared on scan today no downloads Vulnerabledriver:WinNT/Winring0 4d ago Ransomware is getting uglier as cybercriminals fake leaks and skip encryption entirely 4d ago New Lazarus APT Campaign: “Mach-O Man” macOS Malware Kit Hits Businesses 6d ago Save time and use Zig to write your Malware POC 7d ago Cracking CastleLoader’s Inno Setup Password 7d ago I built a C2 framework that uses Discord and Telegram for communication 7d ago fast16 | Mystery ShadowBrokers Reference Reveals High-Precision Software Sabotage 5 Years Before Stuxnet. 8d ago Newly Deciphered Sabotage Malware May Have Targeted Iran’s Nuclear Program—and Predates Stuxnet 8d ago PSA: awstore.cloud is a MALICIOUS fake Claude API provider - warn your fellow devs 8d ago Budgiekit - gdi malware maker (for educational purporses only) 8d ago 19 confirmed repos tied to the same GitHub malware campaign 9d ago

20 loaded Show 10 more

TR

The Record from Recorded Future News

17h ago · 5 items

Senate Judiciary advances bill that would bar minors from interacting with AI companions 17h ago Federal agencies must patch cPanel bug by Sunday, CISA says 17h ago Cyber incident responders who carried out ransomware attacks given 4-year sentences 19h ago British cyber agency warns of looming ‘patch wave’ as AI speeds flaw discovery 20h ago Cyber spies target Russian aviation firms to steal satellite and GPS data 21h ago

SE

SecurityWeek

19h ago · 10 items

In Other News: Scattered Spider Hacker Arrested, SOC Effectiveness Metrics, NSA Tool Vulnerability 19h ago Google Adjusts Bug Bounties: Chrome Payouts Drop as Android Rewards Rise Amid AI Surge 19h ago Two US Security Experts Sentenced to Prison for Helping Ransomware Gang 22h ago Sophisticated Deep#Door Backdoor Enables Espionage, Disruption 22h ago Cisco Releases Open Source Tool for AI Model Provenance 23h ago Hugging Face, ClawHub Abused for Malware Distribution 1d ago FBI Warns of Surge in Hacker-Enabled Cargo Theft 1d ago 1,800 Hit in Mini Shai-Hulud Attack on SAP, Lightning, Intercom 1d ago Anthropic Unveils Claude Security to Counter AI-Powered Exploit Surge 1d ago AI Fuels ‘Industrial’ Cybercrime as Time-to-Exploit Shrinks to Hours 1d ago

HN

Help Net Security

21h ago · 10 items

Download: Automating Pentest Delivery Guide 21h ago Open-source privacy proxy masks PII before prompts reach external AI services 1d ago This open-source PII privacy proxy masks emails, SSNs, and credit cards in prompts before they reach OpenAI, Anthropic, and other AI APIs. Shadow AI risks deepen as 31% of users get no employer training 1d ago Shadow AI risks grow as 1 in 3 employees use AI without IT oversight, Lenovo's survey of 6,000 enterprise workers finds. Identity is the control plane for distributed infrastructure 1d ago Teleport CEO makes the case that distributed infrastructure can’t be secured by layering more tools on top of fragmented identity systems. AI traffic is getting bigger, louder, and less predictable 1d ago AI network traffic trends show shifts in data flow, with neocloud and hyperscaler activity driving changes in global infrastructure patterns. New infosec products of the month: April 2026 1d ago The featured infosec products this month are from Advenica, Aptori, Axonius, Broadcom, GlobalSign, Intruder, IP Fabric, Mallory, and more. cPanel zero-day exploited for months before patch release (CVE-2026-41940) 1d ago A critical vulnerability (CVE-2026-41940) in the cPanel control panel for managing web hosting accounts, is being exploited by attackers. Cisco releases open-source toolkit for verifying AI model lineage 1d ago Cisco has released an open source AI model provenance toolkit that verifies whether two transformer models share a common training origin. Met Police face criticism for using AI to spy on their own officers 1d ago London police officers warned by the Metropolitan Police Federation after AI monitoring was deployed to investigate misconduct. Nine-year-old Linux kernel flaw enables reliable local privilege escalation (CVE-2026-31431) 1d ago Security researchers have disclosed CopyFail, a local privilege escalation (LPE) vulnerability (CVE-2026-31431) in the Linux kernel.

AL

Alerts

22h ago · 20 items

CISA Adds One Known Exploited Vulnerability to Catalog 22h ago CISA Adds One Known Exploited Vulnerability to Catalog 1d ago CISA Adds Two Known Exploited Vulnerabilities to Catalog 3d ago CISA Adds Four Known Exploited Vulnerabilities to Catalog 7d ago CISA Adds One Known Exploited Vulnerability to Catalog 8d ago CISA Adds One Known Exploited Vulnerability to Catalog 9d ago ​​Supply Chain Compromise Impacts Axios Node Package Manager​ 11d ago CISA Adds Eight Known Exploited Vulnerabilities to Catalog 11d ago CISA Adds One Known Exploited Vulnerability to Catalog 15d ago CISA Adds Two Known Exploited Vulnerabilities to Catalog 17d ago CISA Adds Seven Known Exploited Vulnerabilities to Catalog 18d ago CISA Adds One Known Exploited Vulnerability to Catalog 23d ago CISA Adds One Known Exploited Vulnerability to Catalog 25d ago CISA Adds One Known Exploited Vulnerability to Catalog 29d ago CISA Adds One Known Exploited Vulnerability to Catalog 30d ago CISA Adds One Known Exploited Vulnerability to Catalog 32d ago CISA Adds One Known Exploited Vulnerability to Catalog 35d ago CISA Adds One Known Exploited Vulnerability to Catalog 36d ago CISA Adds One Known Exploited Vulnerability to Catalog 37d ago CISA Adds Five Known Exploited Vulnerabilities to Catalog 42d ago

20 loaded Show 10 more

AC

All CISA Advisories

22h ago · 20 items

CISA Adds One Known Exploited Vulnerability to Catalog 22h ago Careful Adoption of Agentic AI Services 22h ago ABB AWIN Gateways 1d ago ABB Ability OPTIMAX 1d ago ABB PCM600 1d ago ABB Edgenius Management Portal 1d ago CISA Adds One Known Exploited Vulnerability to Catalog 1d ago ABB Ability Symphony Plus Engineering 1d ago ABB System 800xA, Symphony Plus IEC 61850 1d ago Adapting Zero Trust Principles to Operational Technology 2d ago NSA GRASSMARLIN 3d ago CISA Adds Two Known Exploited Vulnerabilities to Catalog 3d ago CISA Adds Four Known Exploited Vulnerabilities to Catalog 7d ago SpiceJet Online Booking System 8d ago Carlson Software VASCO-B GNSS Receiver 8d ago Hangzhou Xiongmai Technology Co., Ltd XM530 IP Camera 8d ago Milesight Cameras 8d ago Defending Against China-Nexus Covert Networks of Compromised Devices 8d ago Yadea T5 Electric Bicycle 8d ago Intrado 911 Emergency Gateway (EGW) 8d ago

20 loaded Show 10 more

RF

Recorded Future

1d ago · 20 items

The Iran War: What You Need to Know 1d ago Insikt Group tracks the cyber, physical, and geopolitical components of the US-Israeli strikes on Iran — with continuously updated threat analysis and scenarios. Risk Scenarios for the US’s Strategic Pivot 2d ago The United States (US) is shifting toward a more force-driven security strategy primarily relying on military operations and economic pressure to counter transnational criminal organizations and limit Chinese, Russian, and Iranian influence... Building with AI: Here's What No Briefing Will Tell You 2d ago What building with AI for three months revealed about four leadership blind spots executives can't afford to ignore: the comprehension gap, eroding competitive moats, deployment complexity, and what "senior" really means now. The Money Mule Solution: What Every Scam Has in Common 4d ago Learn how mule account intelligence — not tactic-tracking — is the most effective lever for preventing APP fraud before funds move. Lazarus Doesn't Need AGI 4d ago Explore the 2026 Claude Mythos breach, supply chain risks, and the $2B+ crypto theft pipeline. From Overwhelmed to Autonomous: Rethinking Threat Intelligence in 2026 8d ago For most security teams today, volume and access to intelligence isn’t the problem. It’s the speed at which they can turn that intelligence into action. . Critical minerals and cyber operations 9d ago Learn how critical minerals and rare earth elements (REEs) are evolving from commodities into strategic flashpoints. Explore the geopolitical risks of China’s refining dominance, the race for resources in the Arctic and space, and the risin... Today, trust is the superpower that makes innovation possible 9d ago How better intelligence and collaboration can unlock new opportunities for growth and greater financial health for more people. Evolution of Chinese-Language Guarantee Telegram Marketplaces 10d ago Chinese-language, Telegram-based “guarantee” marketplaces are increasingly popular among Chinese-speaking criminal groups despite the widely publicized shutdown of Huione Guarantee in 2025. AI Hype vs. Reality: Is AI Really Rewriting the Vulnerability Equation? 10d ago AI vulnerability research and discovery capabilities are improving, but they have not changed the fundamentals of vulnerability management. Emerging Enterprise Security Risks of AI 11d ago 4 Essential Integration Workflows for Operationalizing Threat Intelligence Recorded Future 15d ago From Bazooka to Fake Nikes 16d ago Your Supply Chain Breach Is Someone Else's Payday 17d ago Iran War: Future Scenario and Business Implications 18d ago A New Way to Buy Recorded Future: Solutions and Packages Built for the 2026 Threat Landscape 18d ago March 2026 CVE Landscape: 31 High-Impact Vulnerabilities Identified, Interlock Ransomware Group Exploits Cisco FMC Zero-Day 19d ago VIP Credential Monitoring Blog 22d ago Third-Party Risk Is an Intelligence Operation. It's Time We Treated It Like One. 23d ago Understanding and Anticipating Venezuelan Government Actions 24d ago

20 loaded Show 10 more

CS

Cisco Security Advisory

1d ago · 20 items

Continued Evolution of Persistence Mechanism Against Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense 1d ago On April 23, 2026, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued an update to V1: Emergency Directive (ED) 25-03: Identify and Mitigate Potential Compromise of Cisco Devices related to Cisco Secure Firewall Adaptiv... Cisco Identity Services Engine Remote Code Execution and Path Traversal Vulnerabilities 3d ago Multiple vulnerabilities in Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, remote attacker to achieve remote code execution or conduct path traversal attacks on an affec... Cisco ACI Multi-Site CloudSec Encryption Information Disclosure Vulnerability 7d ago A vulnerability in the Cisco ACI Multi-Site CloudSec encryption feature of Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticated, remote attacker to read or modify intersite encrypted traffic. This vulnerability... Cisco Integrated Management Controller Cross-Site Scripting Vulnerabilities 9d ago Multiple vulnerabilities in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow a remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. For more informatio... Cisco Integrated Management Controller Command Injection and Remote Code Execution Vulnerabilities 9d ago Multiple vulnerabilities in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to execute arbitrary code or commands on the underlying operating system of an affe... Cisco Catalyst SD-WAN Vulnerabilities 9d ago Multiple vulnerabilities in Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an attacker to access an affected system, elevate privileges to root, gain access to sensitive information, and overwrite arbitrary files. For m... Cisco Webex Services Certificate Validation Vulnerability 15d ago A vulnerability in the integration of single sign-on (SSO) with Control Hub in Cisco Webex Services could have allowed an unauthenticated, remote attacker to impersonate any user within the service. This vulnerability existed because of imp... Cisco Secure Web Appliance Authentication Bypass Vulnerability 15d ago A vulnerability in the authentication service feature of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote attacker to bypass authentication policy requirements. This vulnerability is due to improp... Cisco Identity Services Engine Remote Code Execution Vulnerabilities 16d ago Multiple vulnerabilities in Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit these vulnerabilities, the att... Cisco Identity Services Engine Authenticated Privilege Escalation Vulnerability 16d ago A vulnerability in the CLI of Cisco Identity Services Engine (ISE) and Cisco ISE Passive Identity Connector (ISE-PIC) could allow an authenticated, local attacker with administrative privileges to perform a command injection attack on the u... Cisco Identity Services Engine Multiple Cross-Site Scripting Vulnerabilities 16d ago Cisco ThousandEyes Enterprise Agent Arbitrary File Overwrite Vulnerability 16d ago Cisco Unity Connection Arbitrary File Download Vulnerabilities 16d ago Cisco Unity Connection Cross-Site Scripting, Open Redirect, and SQL Injection Vulnerabilities 16d ago Cisco Webex Contact Center Cross-Site Scripting Vulnerability 16d ago Cisco IOS XE Software Denial of Service Vulnerability 29d ago Cisco Smart Software Manager On-Prem Arbitrary Command Execution Vulnerability 30d ago Cisco Nexus Dashboard Configuration Backup REST API Unauthorized Access Vulnerability 30d ago Cisco Nexus Dashboard and Nexus Dashboard Insights Server-Side Request Forgery Vulnerability 30d ago Cisco Nexus Dashboard Insights Arbitrary File Write Vulnerability 30d ago

20 loaded Show 10 more

SM

Security | Microsoft Azure Blog | Microsoft Azure

1d ago · 10 items

Enforcing trust and transparency: Open-sourcing the Azure Integrated HSM 1d ago Learn how Microsoft Azure Integrated HSM delivers hardware‑enforced key protection in the cloud, combining FIPS Level 3 assurances with transparency and open‑source collaboration. Azure IaaS: Keep critical applications running with built-in resiliency at scale 30d ago Learn how Azure IaaS helps organizations start from a resilient platform foundation with availability, continuity, and recovery capabilities. Azure IaaS: Explore new resources for building a stronger, more efficient infrastructure 58d ago Learn how Azure IaaS helps you modernize infrastructure, improve performance and resilience, optimize costs, and prepare for AI workloads. Read more. Azure reliability, resiliency, and recoverability: Build continuity by design 73d ago Learn how Azure reliability, resiliency, and recovery capabilities work together to improve cloud continuity. Read more. Microsoft strengthens sovereign cloud capabilities with new services 178d ago Discover new Microsoft digital sovereignty capabilities and upcoming features across AI, security, and productivity, to address sovereign cloud needs. Enhancing software supply chain security with Microsoft’s Signing Transparency 179d ago Microsoft Signing Transparency delivers verifiable code integrity and tamper-evident software releases for stronger supply chain security. Oracle Database@Azure offers new features, regions, and programs to unlock data and AI innovation 199d ago Migrate Oracle solutions to the cloud with a trusted, enterprise-ready platform from Microsoft and Oracle. Learn more. Building secure, scalable AI in the cloud with Microsoft Azure 304d ago Forrester Research shows how Azure helps enterprises scale generative AI securely, unlocking real business value. Learn more. Enhance AI security with Azure Prompt Shields and Azure AI Content Safety 330d ago Learn how Prompt Shields and Azure AI Content Safety can help guard against direct and indirect threats to your LLM-based solution. Navigating the 2024 holiday season: Insights into Azure’s DDoS defense 459d ago Learn more on how Azure DDoS is keeping you prepared for this years trends in advanced attack tactics to keep your data secure.

KO

Krebs on Security

1d ago · 10 items

Anti-DDoS Firm Heaped Attacks on Brazilian ISPs 1d ago A Brazilian tech firm that specializes in protecting networks from distributed denial-of-service (DDoS) attacks has been enabling a botnet responsible for an extended campaign of massive DDoS attacks against other network operators in Brazi... ‘Scattered Spider’ Member ‘Tylerb’ Pleads Guilty 10d ago A 24-year-old British national and senior member of the cybercrime group "Scattered Spider" has pleaded guilty to wire fraud conspiracy and aggravated identity theft. Tyler Robert Buchanan admitted his role in a series of text-message phish... Patch Tuesday, April 2026 Edition 17d ago Microsoft today pushed software updates to fix a staggering 167 security vulnerabilities in its Windows operating systems and related software, including a SharePoint Server zero-day and a publicly disclosed weakness in Windows Defender dub... Russia Hacked Routers to Steal Microsoft Office Tokens 24d ago Hackers linked to Russia's military intelligence units are using known flaws in older Internet routers to mass harvest authentication tokens from Microsoft Office users, security experts warned today. The spying campaign allowed state-backe... Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab 26d ago An elusive hacker who went by the handle "UNKN" and ran the early Russian ransomware groups GandCrab and REvil now has a name and a face. Authorities in Germany say 31-year-old Russian Daniil Maksimovich Shchukin headed both cybercrime gang... ‘CanisterWorm’ Springs Wiper Attack Targeting Iran 39d ago A financially motivated data theft and extortion group is attempting to inject itself into the Iran war, unleashing a worm that spreads through poorly secured cloud services and wipes data on infected systems that use Iran's time zone or ha... Feds Disrupt IoT Botnets Behind Huge DDoS Attacks 43d ago The U.S. Justice Department joined authorities in Canada and Germany in dismantling the online infrastructure behind four highly disruptive botnets that compromised more than three million hacked Internet of Things (IoT) devices, such as ro... Iran-Backed Hackers Claim Wiper Attack on Medtech Firm Stryker 51d ago A hacktivist group with links to Iran's intelligence agencies is claiming responsibility for a data-wiping attack against Stryker, a global medical technology company based in Michigan. News reports out of Ireland, Stryker's largest hub out... Microsoft Patch Tuesday, March 2026 Edition 52d ago Microsoft Corp. today pushed security updates to fix at least 77 vulnerabilities in its Windows operating systems and other software. There are no pressing "zero-day" flaws this month (compared to February's five zero-day treat), but as usu... How AI Assistants are Moving the Security Goalposts 54d ago AI-based assistants or "agents" -- autonomous programs that have access to the user's computer, files, online services and can automate virtually any task -- are growing in popularity with developers and IT workers. But as so many eyebrow-r...

WE

WeLiveSecurity

2d ago · 20 items

This month in security with Tony Anscombe – April 2026 edition 2d ago The calm before the ransom: What you see is not all there is 8d ago GopherWhisper: A burrow full of malware 9d ago New NGate variant hides in a trojanized NFC payment app 11d ago What the ransom note won’t say 12d ago That data breach alert might be a trap 15d ago Supply chain dependencies: Have you checked your blind spot? 15d ago Recovery scammers hit you when you’re down: Here’s how to avoid a second strike 22d ago As breakout time accelerates, prevention-first cybersecurity takes center stage 25d ago Digital assets after death: Managing risks to your loved one’s digital estate 31d ago This month in security with Tony Anscombe – March 2026 edition 32d ago RSAC 2026 wrap-up – Week in security with Tony Anscombe 35d ago A cunning predator: How Silver Fox preys on Japanese firms this tax season 36d ago Virtual machines, virtually everywhere – and with real security gaps 38d ago Cloud workload security: Mind the gaps 39d ago Move fast and save things: A quick guide to recovering a hacked account 43d ago EDR killers explained: Beyond the drivers 44d ago Face value: What it takes to fool facial recognition 50d ago Cyber fallout from the Iran war: What to have on your radar 50d ago Sednit reloaded: Back in the trenches 53d ago

20 loaded Show 10 more

SE

Securelist

2d ago · 10 items

Silver Fox uses the new ABCDoor backdoor to target organizations in Russia and India 2d ago The Silver Fox group is targeting companies in Russia and India by impersonating tax authorities to distribute ValleyRAT and the new ABCDoor backdoor. PhantomRPC: A new privilege escalation technique in Windows RPC 8d ago Kaspersky researcher discovered a vulnerability in RPC architecture that enables an attacker to create a fake RPC server and escalate their privileges. FakeWallet crypto stealer spreading through iOS apps in the App Store 12d ago In March 2026, we uncovered more than twenty phishing apps in the Apple App Store masquerading as popular crypto wallets. Threat landscape for industrial automation systems in Q4 2025 16d ago The report contains industrial threat statistics for Q4 2025. It covers various infection vectors and malware types, as well as regional statistics and statistics by industry. JanelaRAT: a financial threat targeting users in Latin America 19d ago Kaspersky GReAT experts describe the latest JanelaRAT campaign detailing infection chain and malware functionality updates. The long road to your crypto: ClipBanker and its marathon infection chain 23d ago Threat actors are distributing a Trojan disguised as Proxifier software; through a multi-stage infection chain, it delivers ClipBanker – malware that replaces cryptocurrency wallet addresses in the clipboard. Financial cyberthreats in 2025 and the outlook for 2026 24d ago In this report, Kaspersky experts share their insights into the 2025 financial threat landscape, including regional statistics and trends in phishing, PC malware, and infostealers. A laughing RAT: CrystalX combines spyware, stealer, and prankware features 31d ago Kaspersky researchers analyze a new CrystalX RAT distributed as MaaS and featuring extensive spyware, stealer, and prankware capabilities. An AI gateway designed to steal your data 36d ago Dissecting the supply chain attack on LiteLLM, a multifunctional gateway used in many AI agents. Explaining the dangers of the malicious code and how to protect yourself. Coruna: the framework used in Operation Triangulation 37d ago Kaspersky GReAT experts look into the Coruna exploit kit targeting iPhones. We discovered that the kernel exploit for CVE-2023-32434 and CVE-2023-38606 is an updated version of the Operation Triangulation exploit.

ZU

ZDI: Upcoming Advisories

2d ago · 20 items

ZDI-CAN-30796: Docker 2d ago ZDI-CAN-29987: Adobe 2d ago ZDI-CAN-30387: Adobe 2d ago ZDI-CAN-30755: Foxit 2d ago ZDI-CAN-30696: Foxit 2d ago ZDI-CAN-29170: Quest 2d ago ZDI-CAN-29169: Quest 2d ago ZDI-CAN-30689: Adobe 2d ago ZDI-CAN-29216: Quest 2d ago ZDI-CAN-29168: Quest 2d ago ZDI-CAN-30661: Foxit 2d ago ZDI-CAN-29268: Luxion 3d ago ZDI-CAN-29373: KDE 3d ago ZDI-CAN-29459: GIMP 3d ago ZDI-CAN-29611: GIMP 3d ago ZDI-CAN-29612: GIMP 3d ago ZDI-CAN-29493: GIMP 3d ago ZDI-CAN-29400: GIMP 3d ago ZDI-CAN-29944: GIMP 3d ago ZDI-CAN-29143: Apple 9d ago

20 loaded Show 10 more

PN

Proofpoint News Feed

2d ago · 10 items

Claude Mythos Fears Startle Japan's Financial Services Sector 2d ago AI-Era Threats Spread Beyond Email Into SaaS, Collaboration Apps, and AI Assistants 3d ago Proofpoint Research Reveals Half of Global Organizations Experienced AI Incidents Despite Having AI Security Controls in Place 4d ago Inaugural global study finds more than half of organizations are not fully confident their AI security controls would detect compromised AI Clear market trend for software providers to help with AI: Proofpoint CEO 8d ago Sumit Dhawan, Proofpoint CEO, joins 'Closing Bell' to discuss ServiceNow's quarterly earnings results, if Anthropic's Mythos makes incumbent players more important and much more. Proofpoint CEO on AI Security Innovations | Nasdaq at RSAC 2026 9d ago Cargo thieving hackers running sophisticated remote access campaigns, researchers find 15d ago Freight Hacker Wields Code-Signing Service to Evade Defenses 15d ago Sumit Dhawan on NYSE Floor Talk | Proofpoint AI Security 16d ago FIFA World Cup 2026: More than One-Third of Official Partners Expose the Public to the Risk of Email Fraud 18d ago Analysis by cybersecurity company Proofpoint reveals that while most partners have implemented baseline email authentication, many are still not proactively blocking fraudulent emails that Microsoft 365 mailbox rules abused for exfiltration, persistence 18d ago

BF

Blog – Forter

3d ago · 10 items

Toys“R”Us Japan Implements Forter’s Fraud Management and Payment Optimization Solutions 3d ago More of What Matters: Forter’s April Product Release 4d ago If AI Agents Can’t Find You, Do You Even Exist? 4d ago Return Policy Abuse Is Theft. It’s Time to Treat It That Way. 16d ago What Is Return Abuse and Why Is It Getting Harder to Stop? 17d ago Return Abuse Prevention Starts with the Person, Not the Policy 17d ago Shoptalk 2026: Retail in the Age of AI 25d ago Visa’s Updated VAMP Program: What Merchants Need to Know 37d ago New at Forter: Go Live in Days, Not Months 45d ago Forter and VGS Expand Partnership to Power Trusted Agentic Commerce 64d ago

TM

Trend Micro Research, News, Perspectives

3d ago · 20 items

Kuse Web App Abused to Host Phishing Document 3d ago Void Dokkaebi Uses Fake Job Interview Lure to Spread Malware via Code Repositories 11d ago The Vercel Breach: OAuth Supply Chain Attack Exposes the Hidden Risk in Platform Environment Variables 12d ago Identity Protection in the AI Era 19d ago U.S. Public Sector Under Siege: Threat Intelligence for Q1 2026 23d ago Claude Code Packaging Error Remains a Lure in an Active Campaign: What Defenders Should Do 25d ago Weaponizing Trust Signals: Claude Code Lures and GitHub Release Payloads 29d ago TrendAI Insight: New U.S. National Cyber Strategy 31d ago The Real Risk of Vibecoding 32d ago Axios NPM Package Compromised: Supply Chain Attack Hits JavaScript HTTP Client with 100M+ Weekly Downloads 32d ago TrendAI™ Research at RSAC 2026: Advancing Defense Across AI‑Driven and Cyber‑Physical Threats 32d ago TeamPCP’s Telnyx Attack Marks a Shift in Tactics Beyond LiteLLM 33d ago Your AI Gateway Was a Backdoor: Inside the LiteLLM Supply Chain Compromise 37d ago Pawn Storm Campaign Deploys PRISMEX, Targets Government and Critical Infrastructure Entities 37d ago Your AI Stack Just Handed Over Your Root Keys: Inside the litellm PyPI Breach 38d ago Copyright Lures Mask a Multi‑Stage PureLog Stealer Attack on Key Industries 44d ago Why East-West Visibility Matters for Grid Security 45d ago From Misconfigured Spring Boot Actuator to SharePoint Exfiltration: How Stolen Credentials Bypass MFA 45d ago TrendAI™ Supports Global Law Enforcement Efforts 47d ago Web Shells, Tunnels, and Ransomware: Dissecting a Warlock Attack 47d ago

20 loaded Show 10 more

FP

Fraud Prevention – Riskified

8d ago · 1 items

Agentic commerce: harness it, don’t outsource it 8d ago External AI agents fly blind without your data. Learn why native AI, powered by identity intelligence, is the key to owning customer relationships in retail.

M3

Microsoft 365 Blog

9d ago · 10 items

Copilot’s agentic capabilities in Word, Excel, and PowerPoint are generally available 9d ago Copilot's newest features are now generally available as the default experience across all Microsoft 365 subscriptions. Bring your everyday business apps into the flow of work with agents in Microsoft 365 Copilot 18d ago Discover how apps integrate with AI agents to power Copilot experiences, streamline workflows, and turn business context into action. New and improved: Multi-agent orchestration, connected experiences, and faster prompt iteration 30d ago Explore what's new in Copilot Studio: Multi-agent systems now generally available, plus updates to the Prompt Editor and governance controls. Copilot Cowork: Now available in Frontier 32d ago Today, Copilot Cowork—designed for long-running, multi-step work in Microsoft 365—is available via the Frontier program. Copilot Cowork: A new way of getting work done 53d ago Copilot Cowork turns intent into action across Microsoft 365—automating tasks, coordinating workflows, and keeping you in control. See how. Powering Frontier Transformation with Copilot and agents 53d ago Wave 3 of Microsoft 365 Copilot introduces Copilot Cowork, multi‑model intelligence, and enterprise‑ready AI—built to get real work done. SharePoint at 25: How Microsoft is putting knowledge to work in the AI era 60d ago Discover how SharePoint’s 25‑year legacy powers Microsoft 365 Copilot, Work IQ, and AI‑driven knowledge for organizations worldwide. Microsoft Sovereign Cloud adds governance, productivity, and support for large AI models securely running even when completely disconnected 66d ago The ultimate Microsoft 365 community event returns—your front‑row seat to the future of intelligent work 85d ago Join the ultimate Microsoft 365 community event with fresh insights, AI innovations, and a front‑row look at the future of intelligent work. 6 core capabilities to scale agent adoption in 2026 95d ago Learn six capabilities to support agent adoption at scale in 2026 with Microsoft Copilot Studio, from governance and security to operations.

CC

CISA Cybersecurity Advisories

10d ago · 10 items

Defending Against China-Nexus Covert Networks of Compromised Devices 10d ago Iranian-Affiliated Cyber Actors Exploit Programmable Logic Controllers Across US Critical Infrastructure 25d ago Pro-Russia Hacktivists Conduct Opportunistic Attacks Against US and Global Critical Infrastructure 147d ago CISA Shares Lessons Learned from an Incident Response Engagement 221d ago Countering Chinese State-Sponsored Actors Compromise of Networks Worldwide to Feed Global Espionage System 249d ago CISA and USCG Identify Areas for Cyber Hygiene Improvement After Conducting Proactive Threat Hunt at US Critical Infrastructure Organization 276d ago #StopRansomware: Interlock 284d ago Ransomware Actors Exploit Unpatched SimpleHelp Remote Monitoring and Management to Compromise Utility Billing Software Provider 323d ago Threat Actors Deploy LummaC2 Malware to Exfiltrate Sensitive Data from Organizations 346d ago Russian GRU Targeting Western Logistics Entities and Technology Companies 354d ago

HS

Heimdal Security Blog

11d ago · 15 items

Heimdal Expands AI Strategy with AI Wingman and Third-Party AI Containment 11d ago Heimdal today unveiled the next phase of its AI strategy, expanding AI Wingman with three new layers - Assist, Triage and SOC - alongside the introduction of Third-Party AI Containment. You Only Know What You’ve Got When Its Gone 35d ago Prepare for the expected. Rehearse an action plan in case of technology failure or cyberattacks. We all know they can happen. Nordic MSPs Can Now Access Heimdal’s Unified Security and Compliance Platform Through Elovade 45d ago Heimdal has appointed Elovade as its official distributor in the Nordic region. The move gives MSPs and resellers across Sweden, Norway, Denmark, Iceland, and Finland direct access to Heimdal's consolidated cybersecurity platform through a ... OpenClaw Incidents Show Why AI Adoption Pressure Puts Companies at Risk 57d ago The OpenClaw security failures show how hasty AI adoption can expose businesses and supply chains to major cyber risk. Heimdal Claims Industry First With a Cyber Essentials Control Mapping for PEDM to Help Organisations Prove Least Privilege 82d ago Heimdal is the first vendor to publish a dedicated Cyber Essentials control mapping for PEDM, setting out how privilege management supports Cyber Essentials requirements and what evidence can be produced to support assessment and assurance. Five Predictions for Cyber Security Trends in 2026 87d ago Morten Kjaersgaard, Heimdal’s Founder, and Adam Pilton, a former cybercrime investigator, predict five cyber security trends for 2026. Heimdal Achieves OPSWAT Gold Certification for Anti-Malware 107d ago Heimdal today announced that its Next-Gen Antivirus (NGAV) with Extended Threat Protection (XTP) has achieved OPSWAT Gold Certification for Anti-Malware, validating its compatibility and effectiveness within OPSWAT’s industry-leading Access... How to Avoid Holiday Shopping Scams (From a Former Cyber Detective) 141d ago Worried about holiday scams? Ex-cybercrime detective Adam Pilton breaks down the biggest threats and how to shop safely this festive season. ITDR Best Practices: How to Detect, Prevent, and Contain Critical Identity Threats 155d ago Key takeaways: ITDR solutions monitor identity-based threats that traditional security tools miss, like hackers logging in with stolen credentials Effective ITDR requires integration with privileged access management and automated responses... When Buyers Discount MSPs With One Big Customer 155d ago Your biggest customer loves you. Three years together. They trust you, pay on time, and refer others. From where you sit, that’s loyalty. From where a buyer sits, that’s a $$$ discount on your exit. This perception gap kills more MSP deals ... You’re Not Technical? That Excuse Just Expired! 155d ago Tool Sprawl Taxes Your Business More Than You Think 157d ago Heimdal 5.1.0 RC Dashboard: Smarter Automation, Stronger Compliance, and Smoother Control 161d ago Can Generative AI Be Weaponized for Cyberattacks? 164d ago Digital Warfare and the New Geopolitical Frontline 178d ago

15 loaded Show 5 more

BA

Blog Articles - Identity Insights | Trulioo

15d ago · 13 items

Business Fraud at Network Scale: What the $3.5B Medicare Hospice Crisis Reveals About Know Your Business 15d ago What is Customer Due Diligence (CDD) 39d ago Why Legacy Identity Verification Can’t Stop AI-Enabled Fraud 42d ago AML, KYC and Identity Verification in Australia 51d ago When Fraud Becomes Background Noise: The Industrialization of Digital Deception 116d ago The Efficiency Era of KYC: Reverification and Reusable Identity Take Center Stage 116d ago The End of Static KYB: Business Identity in Constant Motion 116d ago Know Your Agent: The Next Chapter in Digital Trust 116d ago When Rules Move Faster Than Readiness: Regulatory Adaptability as a Competitive Advantage 116d ago Digital Identity Trends 2026: AI Fraud, Compliance, and Orchestration 135d ago The World’s Identity Platform 1187d ago KYC: 3 Steps to Achieving Know Your Customer Compliance 1458d ago AML Compliance Checklist: Best Practices for Anti-Money Laundering 1473d ago

13 loaded Show 3 more

TH

Threatpost

1339d ago · 10 items

Student Loan Breach Exposes 2.5M Records 1339d ago 2.5 million people were affected, in a breach that could spell more trouble down the line. Watering Hole Attacks Push ScanBox Keylogger 1340d ago Researchers uncover a watering hole attack likely carried out by APT TA423, which attempts to plant the ScanBox JavaScript-based reconnaissance tool. Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms 1341d ago Over 130 companies tangled in sprawling phishing campaign that spoofed a multi-factor authentication system. Ransomware Attacks are on the Rise 1344d ago Lockbit is by far this summer’s most prolific ransomware group, trailed by two offshoots of the Conti group. Cybercriminals Are Selling Access to Chinese Surveillance Cameras 1345d ago Tens of thousands of cameras have failed to patch a critical, 11-month-old CVE, leaving thousands of organizations exposed. Twitter Whistleblower Complaint: The TL;DR Version 1346d ago Twitter is blasted for security and privacy lapses by the company’s former head of security who alleges the social media giant’s actions amount to a national security risk. Firewall Bug Under Active Attack Triggers CISA Warning 1347d ago CISA is warning that Palo Alto Networks’ PAN-OS is under active attack and needs to be patched ASAP. Fake Reservation Links Prey on Weary Travelers 1348d ago Fake travel reservations are exacting more pain from the travel weary, already dealing with the misery of canceled flights and overbooked hotels. iPhone Users Urged to Update to Patch 2 Zero-Days 1351d ago Separate fixes to macOS and iOS patch respective flaws in the kernel and WebKit that can allow threat actors to take over devices and are under attack. Google Patches Chrome’s Fifth Zero-Day of the Year 1352d ago An insufficient validation input flaw, one of 11 patched in an update this week, could allow for arbitrary code execution and is under active attack.