SecOps News
Get this as an RSS feed
- County Government Reportedly Paid $1 Million to Cyber Extortion Group (4 minutes ago)
- Hidden backdoor in Tenda router firmware grants admin access (9 minutes ago)
- Critical Gitea Flaw Under Active Exploitation, Researchers Warn (19 minutes ago)
- CAI cloud worm gives competitors’ malware the boot, then steals secrets and mines for coin (21 minutes ago)
- Actions and Codespaces APIs experiencing partial failures (1 hours ago)
- Predatorgate snoopfest victims launch €8M sueball at spyware maker (1 hours ago)
- Spain arrests suspected member of pro-Russian hacktivist groups (2 hours ago)
- DEBULL Tooling Abuses Microsoft Device-Code Flow to Target M365 Accounts (2 hours ago)
- Public GitHub Issue Could Trick GitHub Agentic Workflows Into Leaking Private Repo Data (3 hours ago)
- The GitHub Actions Attack Pattern Your CI Security Scanners Miss (3 hours ago)
- Court Filing Reveals Windows Device ID Helped FBI Trace Alleged Scattered Spider Hacker (4 hours ago)
- Writer AI Flaw Could Let Agent Previews Leak Session Tokens Across Tenants (4 hours ago)
- CISA Reportedly Using Anthropic’s Mythos to Scan Government Software for Flaws (4 hours ago)
- Enterprise AI still smarting from leaping before looking (4 hours ago)
- Two arrested over credit card phishing – as the Netherlands is named Europe’s worst for payment fraud (4 hours ago)
- Critical Adobe ColdFusion Vulnerability Exploited in Attacks (4 hours ago)
- Iran-Linked Hackers Using Modular C&C Framework in Cyberattacks (5 hours ago)
- Webinar tomorrow: Why modern email attacks require a new approach to defense (5 hours ago)
- New Januscape Linux flaw allows VM escape on Intel, AMD devices (5 hours ago)
- CISO Conversations: Tarah Wheeler, Cybersecurity Leader, Thought Leader and Original Thinker (5 hours ago)
- What Changes When Your Software Supply Chain Includes AI Writing Your Code? (6 hours ago)
- Fake IT bods on Microsoft Teams coax workers into installing malware (6 hours ago)
- Spain collars alleged pro-Russia hacktivist after FBI tip-off (7 hours ago)
- Government’s cyber pledge lands 60 signatories, including M&S and, somehow, Capita (7 hours ago)
- Linux Kernel Vulnerability Allows VM Escape on Intel and AMD Systems (7 hours ago)
- Microsoft to enable Windows settings backup by default for orgs (7 hours ago)
- Keyfactor Scores $1 Billion+ Investment for AI, Post-Quantum Security (8 hours ago)
- Suspected China-Aligned Hackers Exploit Roundcube Flaws Against Universities (8 hours ago)
- BeyondTrust warns of critical flaws in remote access software (9 hours ago)
- Microsoft testing new Cloud Rebuild Windows 11 recovery feature (9 hours ago)
- CERT/CC Warns of Hidden Admin Backdoor in Tenda Router Firmware (10 hours ago)
- OPNsense XPATH Injection (CVE-2026-53582) (10 hours ago)
- SCHUTZWERK-SA-2025-001: Authentication Bypass for SafeLine SL6 and SL6+ (10 hours ago)
- BeyondTrust Patches Critical Auth Bypass Flaws in Remote Support and PRA (12 hours ago)
- Phishing poses as big-brand job interview to steal Google accounts (21 hours ago)
- Fake IT support calls on Microsoft Teams push EtherRAT malware (21 hours ago)
- Blogspot-Hosted Payloads Delivered in ‘Veil#Drop’ Attacks (22 hours ago)
- Iran-Linked Hackers Use New Cavern C2 Framework to Target Israeli Organizations (23 hours ago)
- Vietnam arrests suspects behind HiAnime anime piracy service (23 hours ago)
- 16-Year-Old Linux KVM Flaw Lets Guest VMs Escape to Host on Intel and AMD x86 Systems (23 hours ago)
- EU urged to act after Pegasus infects phone of spyware inquiry MEP (1 days ago)
- Threat Actors Probe Gitea Docker Flaw CVE-2026-20896 13 Days After Disclosure (1 days ago)
- The Shift Toward Business-Aligned Risk Management (1 days ago)
- Software Is Now Written at the Speed of Thought. Security Isn’t. (1 days ago)
- Max severity Adobe ColdFusion flaw now exploited in attacks (1 days ago)
- ⚡ Weekly Recap: Proxy Botnets, Browser Ransomware, AI Agent Tricks, Fake PoC Malware and More (1 days ago)
- Brit supermarket giant triples down on facial recog to nab shoplifters (1 days ago)
- How to Evaluate an AI SOC Platform in 2026: 6 Capabilities That Separate Leaders from Bolt-On AI solutions (1 days ago)
- Suspected China-Nexus Hackers Use Fake Indian Tax Filing Utility to Deploy DcRAT (1 days ago)
- Moody Bible Institute breach leaves 2.3M accounts needing salvation, says cyber expert (1 days ago)
- Secure Unix ancestor KSOS did type safety before Rust made it cool (1 days ago)
- New TrojPix Attack Leaks Data From Air-Gapped Systems via Video Cable Emissions (1 days ago)
- New Java-Based QuimaRAT MaaS Built to Run on Windows, Linux, and macOS (1 days ago)
- Opera GX Flaw Let Malicious Sites Auto-Install Mods to Steal Data From Visited Pages (1 days ago)
- SkillCloak Lets Malicious AI Agent Skills Evade Static Scanners with Self-Extracting Packing (1 days ago)
- MFA-optional banks leave safe doors (and accounts) wide open for thieves to pillage (2 days ago)
- Flipper Zero firmware development continues with community help (2 days ago)
- JadePuffer ransomware used AI agent to automate entire attack (3 days ago)
- U.S. Government Entity Paid Kairos $1 Million in Data-Theft Extortion Case (3 days ago)
- North Korean Hackers Publish 108 Malicious Packages and Extensions in PolinRider Campaign (3 days ago)
- Confidential computing’s core trust mechanism is broken. The fix may not exist (3 days ago)
- Unpatched Flaws Disclosed in Filesystem Bundled Into Millions of Embedded Devices (3 days ago)
- New “Bad Epoll” Linux Kernel Flaw Lets Unprivileged Users Gain Root, Hits Android (3 days ago)
- New Avalon Malware Framework Packs CrownX Ransomware Capabilities (3 days ago)
- North Korea-Linked npm Packages Mimic Rollup Polyfills to Steal Developer Secrets (4 days ago)
- Moody Bible Institute - 2,303,416 breached accounts (4 days ago)
- AdaptHealth says attackers sweet-talked their way into cloud systems and stole patient data (4 days ago)
- Armored Likho Targets Government Agencies, Power Sector with BusySnake Stealer (4 days ago)
- NetNut cracked as Google and FBI target 2 million-device botnet (4 days ago)
- Swimming Pools, Pee, and Trying to Delete Your Data From the Internet (4 days ago)
- User swore hacker called General Failure had invaded his PC (4 days ago)
- Dev says Google warned him about account hijack – then charged him $11,000 anyway (4 days ago)
- Startup sues Palo Alto Networks’ Koi Security, saying an AI-hallucinated report falsely linked it to Chinese espionage (4 days ago)
- FBI Seizes NetNut Proxy Platform, Popa Botnet (4 days ago)
- Whistleblowersoftware.com: confidentiality and anonymity leakage to third parties (4 days ago)
- OpenBlow Multiple Deanonymization Vulnerabilities (4 days ago)
- Whistlelink: Site-access password exposed in web server access logs via GET query string (4 days ago)
- APPLE-SA-06-29-2026-3 Safari 26.5.2 (4 days ago)
- APPLE-SA-06-29-2026-2 macOS Tahoe 26.5.2 (4 days ago)
- APPLE-SA-06-29-2026-1 iOS 26.5.2 and iPadOS 26.5.2 (4 days ago)
- Incident with Pages (4 days ago)
- pwnlift: symlink following and TOCTOU in privileged upload handler allow arbitrary file write as root (4 days ago)
- [KIS-2026-12] Control Web Panel <= 0.9.8.1224 (userRes) SQL Injection Vulnerability (4 days ago)
- [fulldis] CVE-2026-58451 - Horde Groupware IMP path traversal vuln (4 days ago)
- Samsung Galaxy Buds – Zero-Click HFP/A2DP Takeover via L2CAP Session Preemption (Vendor Response: Working as Intended) (4 days ago)
- Asterisk Security Release 23.4.1 (4 days ago)
- Asterisk Security Release 22.10.1 (4 days ago)
- Asterisk Security Release 21.12.3 (4 days ago)
- Smooth AI criminal drives ‘first’ end-to-end agentic ransomware attack (4 days ago)
- The Gentlemen ransomware: what you need to know (5 days ago)
- Ctrl+Alt+Oops: FortiBleed criminal’s logins stitch two gangs together (5 days ago)
- Microsoft said exploitation was ‘less likely’ … but CISA just added SharePoint RCE to KEV list (5 days ago)
- Pacemaker manufacturer Medtronic warns patients cybercrooks may have swiped health data (5 days ago)
- India gives WhatsApp three days to defend username rollout amid security fears (5 days ago)
- Oracle E-Business Suite was under attack via critical flaw before the public exploit code was even released (5 days ago)
- Hackers shoveled snow for company, were rewarded with network admin access (5 days ago)
- Smashing Security podcast #474: Polymarket can predict the future. So how did it miss this hack? (5 days ago)
- EvilTokens device-code phishing kit totally more evil than we all thought (5 days ago)
- Delays in copilot budget limits resets for some users (6 days ago)
- Top 1 Million Analysis – June 2026: The State of Crypto (6 days ago)
- Scammers race to cash in on Venezuelan earthquake disaster (6 days ago)
- Disruption with some GitHub services - Signup Flow (7 days ago)
- Weekly Update 510: Live From Mallorca with Scott Helme (7 days ago)
- USB drives carrying China-linked malware infected Japanese military networks for nearly a year (7 days ago)
- Top 1 Million Analysis – June 2026: Ten Years of Web Security (8 days ago)
- Disruption with some GitHub services (8 days ago)
- Sysco - 2,691,852 breached accounts (9 days ago)
- Disruption with some GitHub services (9 days ago)
- American Tower - 216,601 breached accounts (11 days ago)
- Degradation with Webhooks, Pull Requests and Actions (11 days ago)
- Ping32 RMM and ValleyRAT (12 days ago)
- Smashing Security podcast #473: How a hacker could have Rickrolled the entire World Cup (12 days ago)
- A dead CDN, a wildcard, and an attack waiting to happen: the netdna-ssl.com takeover (13 days ago)
- Madison Square Garden Sports - 9,796,738 breached accounts (13 days ago)
- Weekly Update 509 (13 days ago)
- We are seeing elevated errors with Next Edit Suggestions and Completions (13 days ago)
- Scattered Spider Hackers Plead Guilty on Day 1 of Trial (14 days ago)
- Hacker hijacks Brazil’s national alert system, sending “misanthropy” to millions of phones (14 days ago)
- GDPR Article 17: What Is the Right to Erasure? (14 days ago)
- OH SH!T, I’ve Got Bowel Cancer — Part Two: In the Fog of Chemotherapy (14 days ago)
- What Makes a Pen Test Fail? Common Penetration Testing Mistakes to Avoid (15 days ago)
- Why No Passkeys? Naming the Top Sites That Still Don’t Support Them (15 days ago)
- JCPenney - 368,418 breached accounts (17 days ago)
- Apple’s Hide My Email tweak leaves privacy fans fuming (18 days ago)
- Imposter scams cost Americans $3.5 billion in 2025 – and it’s getting worse (18 days ago)
- Ralph Lauren - 139,903 breached accounts (18 days ago)
- Operation Endgame 4.0 - 4,160,519 breached accounts (18 days ago)
- ‘Popa’ Botnet Linked to Publicly-Traded Israeli Firm (18 days ago)
- CFGI - 248,235 breached accounts (19 days ago)
- Smashing Security podcast #472: AI gets hacked, and BitLocker gets bypassed (19 days ago)
- Disruption with Copilot next edit suggestions (19 days ago)
- Incident With Webhooks (19 days ago)
- Incident with Copilot Availability (20 days ago)
- Disruption with some GitHub services (20 days ago)
- June 2026 Stealer Logs - 56,278,397 breached accounts (21 days ago)
- Multiple services have elevated errors and endpoint failures when checking feature flags (21 days ago)
- Increased latency with webhooks (21 days ago)
- How to Proactively Overcome the Client Questionnaire Burden (22 days ago)
- Maine forced to take down data breach portal after fake notices filed with authorities (22 days ago)
- The Instructure Canvas Breach (2026): How XSS in a Support Ticket Compromised 275 Million Students (22 days ago)
- Weekly Update 508 (22 days ago)
- Berkadia - 305,216 breached accounts (22 days ago)
- Infinite Campus - 137,123 breached accounts (22 days ago)
- Privacy own-goal: World Cup blunder leaks Lionel Messi’s passport details (24 days ago)
- Incident with Webhooks (25 days ago)
- Silent Ransom Group: what you need to know (26 days ago)
- Webinar: The New Rules of Supplier Security – What Buyers Want in 2026 (26 days ago)
- Smashing Security podcast #471: This AI worm just rewrote its own rules (26 days ago)
- University of Nottingham - 454,635 breached accounts (26 days ago)
- Authentication issues related to API requests (27 days ago)
- Who Runs the Ransomware Group ‘The Gentlemen?’ (27 days ago)
- Why schools remain one of cybercriminals’ favourite targets (27 days ago)
- Weekly Update 507 (27 days ago)
- A Record-Breaking Patch Tuesday for June 2026 (27 days ago)
- Degraded availability for GitHub.com, GraphQL API, and Webhooks UI/API (29 days ago)
- Open-Sourcing dbsc-php: a Server Library for Device Bound Session Credentials in PHP (29 days ago)
- Disruption with Claude Opus 4.7 (29 days ago)
- Pull Requests and Issues unavailable for signed-out users (29 days ago)
- Maximizing IOC Impact (29 days ago)