SecOps News

Get this as an RSS feed

  • County Government Reportedly Paid $1 Million to Cyber Extortion Group (4 minutes ago)
  • Hidden backdoor in Tenda router firmware grants admin access (9 minutes ago)
  • Critical Gitea Flaw Under Active Exploitation, Researchers Warn (19 minutes ago)
  • CAI cloud worm gives competitors’ malware the boot, then steals secrets and mines for coin (21 minutes ago)
  • Actions and Codespaces APIs experiencing partial failures (1 hours ago)
  • Predatorgate snoopfest victims launch €8M sueball at spyware maker (1 hours ago)
  • Spain arrests suspected member of pro-Russian hacktivist groups (2 hours ago)
  • DEBULL Tooling Abuses Microsoft Device-Code Flow to Target M365 Accounts (2 hours ago)
  • Public GitHub Issue Could Trick GitHub Agentic Workflows Into Leaking Private Repo Data (3 hours ago)
  • The GitHub Actions Attack Pattern Your CI Security Scanners Miss (3 hours ago)
  • Court Filing Reveals Windows Device ID Helped FBI Trace Alleged Scattered Spider Hacker (4 hours ago)
  • Writer AI Flaw Could Let Agent Previews Leak Session Tokens Across Tenants (4 hours ago)
  • CISA Reportedly Using Anthropic’s Mythos to Scan Government Software for Flaws (4 hours ago)
  • Enterprise AI still smarting from leaping before looking (4 hours ago)
  • Two arrested over credit card phishing – as the Netherlands is named Europe’s worst for payment fraud (4 hours ago)
  • Critical Adobe ColdFusion Vulnerability Exploited in Attacks (4 hours ago)
  • Iran-Linked Hackers Using Modular C&C Framework in Cyberattacks (5 hours ago)
  • Webinar tomorrow: Why modern email attacks require a new approach to defense (5 hours ago)
  • New Januscape Linux flaw allows VM escape on Intel, AMD devices (5 hours ago)
  • CISO Conversations: Tarah Wheeler, Cybersecurity Leader, Thought Leader and Original Thinker (5 hours ago)
  • What Changes When Your Software Supply Chain Includes AI Writing Your Code? (6 hours ago)
  • Fake IT bods on Microsoft Teams coax workers into installing malware (6 hours ago)
  • Spain collars alleged pro-Russia hacktivist after FBI tip-off (7 hours ago)
  • Government’s cyber pledge lands 60 signatories, including M&S and, somehow, Capita (7 hours ago)
  • Linux Kernel Vulnerability Allows VM Escape on Intel and AMD Systems (7 hours ago)
  • Microsoft to enable Windows settings backup by default for orgs (7 hours ago)
  • Keyfactor Scores $1 Billion+ Investment for AI, Post-Quantum Security (8 hours ago)
  • Suspected China-Aligned Hackers Exploit Roundcube Flaws Against Universities (8 hours ago)
  • BeyondTrust warns of critical flaws in remote access software (9 hours ago)
  • Microsoft testing new Cloud Rebuild Windows 11 recovery feature (9 hours ago)
  • CERT/CC Warns of Hidden Admin Backdoor in Tenda Router Firmware (10 hours ago)
  • OPNsense XPATH Injection (CVE-2026-53582) (10 hours ago)
  • SCHUTZWERK-SA-2025-001: Authentication Bypass for SafeLine SL6 and SL6+ (10 hours ago)
  • BeyondTrust Patches Critical Auth Bypass Flaws in Remote Support and PRA (12 hours ago)
  • Phishing poses as big-brand job interview to steal Google accounts (21 hours ago)
  • Fake IT support calls on Microsoft Teams push EtherRAT malware (21 hours ago)
  • Blogspot-Hosted Payloads Delivered in ‘Veil#Drop’ Attacks (22 hours ago)
  • Iran-Linked Hackers Use New Cavern C2 Framework to Target Israeli Organizations (23 hours ago)
  • Vietnam arrests suspects behind HiAnime anime piracy service (23 hours ago)
  • 16-Year-Old Linux KVM Flaw Lets Guest VMs Escape to Host on Intel and AMD x86 Systems (23 hours ago)
  • EU urged to act after Pegasus infects phone of spyware inquiry MEP (1 days ago)
  • Threat Actors Probe Gitea Docker Flaw CVE-2026-20896 13 Days After Disclosure (1 days ago)
  • The Shift Toward Business-Aligned Risk Management (1 days ago)
  • Software Is Now Written at the Speed of Thought. Security Isn’t. (1 days ago)
  • Max severity Adobe ColdFusion flaw now exploited in attacks (1 days ago)
  • ⚡ Weekly Recap: Proxy Botnets, Browser Ransomware, AI Agent Tricks, Fake PoC Malware and More (1 days ago)
  • Brit supermarket giant triples down on facial recog to nab shoplifters (1 days ago)
  • How to Evaluate an AI SOC Platform in 2026: 6 Capabilities That Separate Leaders from Bolt-On AI solutions (1 days ago)
  • Suspected China-Nexus Hackers Use Fake Indian Tax Filing Utility to Deploy DcRAT (1 days ago)
  • Moody Bible Institute breach leaves 2.3M accounts needing salvation, says cyber expert (1 days ago)
  • Secure Unix ancestor KSOS did type safety before Rust made it cool (1 days ago)
  • New TrojPix Attack Leaks Data From Air-Gapped Systems via Video Cable Emissions (1 days ago)
  • New Java-Based QuimaRAT MaaS Built to Run on Windows, Linux, and macOS (1 days ago)
  • Opera GX Flaw Let Malicious Sites Auto-Install Mods to Steal Data From Visited Pages (1 days ago)
  • SkillCloak Lets Malicious AI Agent Skills Evade Static Scanners with Self-Extracting Packing (1 days ago)
  • MFA-optional banks leave safe doors (and accounts) wide open for thieves to pillage (2 days ago)
  • Flipper Zero firmware development continues with community help (2 days ago)
  • JadePuffer ransomware used AI agent to automate entire attack (3 days ago)
  • U.S. Government Entity Paid Kairos $1 Million in Data-Theft Extortion Case (3 days ago)
  • North Korean Hackers Publish 108 Malicious Packages and Extensions in PolinRider Campaign (3 days ago)
  • Confidential computing’s core trust mechanism is broken. The fix may not exist (3 days ago)
  • Unpatched Flaws Disclosed in Filesystem Bundled Into Millions of Embedded Devices (3 days ago)
  • New “Bad Epoll” Linux Kernel Flaw Lets Unprivileged Users Gain Root, Hits Android (3 days ago)
  • New Avalon Malware Framework Packs CrownX Ransomware Capabilities (3 days ago)
  • North Korea-Linked npm Packages Mimic Rollup Polyfills to Steal Developer Secrets (4 days ago)
  • Moody Bible Institute - 2,303,416 breached accounts (4 days ago)
  • AdaptHealth says attackers sweet-talked their way into cloud systems and stole patient data (4 days ago)
  • Armored Likho Targets Government Agencies, Power Sector with BusySnake Stealer (4 days ago)
  • NetNut cracked as Google and FBI target 2 million-device botnet (4 days ago)
  • Swimming Pools, Pee, and Trying to Delete Your Data From the Internet (4 days ago)
  • User swore hacker called General Failure had invaded his PC (4 days ago)
  • Dev says Google warned him about account hijack – then charged him $11,000 anyway (4 days ago)
  • Startup sues Palo Alto Networks’ Koi Security, saying an AI-hallucinated report falsely linked it to Chinese espionage (4 days ago)
  • FBI Seizes NetNut Proxy Platform, Popa Botnet (4 days ago)
  • Whistleblowersoftware.com: confidentiality and anonymity leakage to third parties (4 days ago)
  • OpenBlow Multiple Deanonymization Vulnerabilities (4 days ago)
  • Whistlelink: Site-access password exposed in web server access logs via GET query string (4 days ago)
  • APPLE-SA-06-29-2026-3 Safari 26.5.2 (4 days ago)
  • APPLE-SA-06-29-2026-2 macOS Tahoe 26.5.2 (4 days ago)
  • APPLE-SA-06-29-2026-1 iOS 26.5.2 and iPadOS 26.5.2 (4 days ago)
  • Incident with Pages (4 days ago)
  • pwnlift: symlink following and TOCTOU in privileged upload handler allow arbitrary file write as root (4 days ago)
  • [KIS-2026-12] Control Web Panel <= 0.9.8.1224 (userRes) SQL Injection Vulnerability (4 days ago)
  • [fulldis] CVE-2026-58451 - Horde Groupware IMP path traversal vuln (4 days ago)
  • Samsung Galaxy Buds – Zero-Click HFP/A2DP Takeover via L2CAP Session Preemption (Vendor Response: Working as Intended) (4 days ago)
  • Asterisk Security Release 23.4.1 (4 days ago)
  • Asterisk Security Release 22.10.1 (4 days ago)
  • Asterisk Security Release 21.12.3 (4 days ago)
  • Smooth AI criminal drives ‘first’ end-to-end agentic ransomware attack (4 days ago)
  • The Gentlemen ransomware: what you need to know (5 days ago)
  • Ctrl+Alt+Oops: FortiBleed criminal’s logins stitch two gangs together (5 days ago)
  • Microsoft said exploitation was ‘less likely’ … but CISA just added SharePoint RCE to KEV list (5 days ago)
  • Pacemaker manufacturer Medtronic warns patients cybercrooks may have swiped health data (5 days ago)
  • India gives WhatsApp three days to defend username rollout amid security fears (5 days ago)
  • Oracle E-Business Suite was under attack via critical flaw before the public exploit code was even released (5 days ago)
  • Hackers shoveled snow for company, were rewarded with network admin access (5 days ago)
  • Smashing Security podcast #474: Polymarket can predict the future. So how did it miss this hack? (5 days ago)
  • EvilTokens device-code phishing kit totally more evil than we all thought (5 days ago)
  • Delays in copilot budget limits resets for some users (6 days ago)
  • Top 1 Million Analysis – June 2026: The State of Crypto (6 days ago)
  • Scammers race to cash in on Venezuelan earthquake disaster (6 days ago)
  • Disruption with some GitHub services - Signup Flow (7 days ago)
  • Weekly Update 510: Live From Mallorca with Scott Helme (7 days ago)
  • USB drives carrying China-linked malware infected Japanese military networks for nearly a year (7 days ago)
  • Top 1 Million Analysis – June 2026: Ten Years of Web Security (8 days ago)
  • Disruption with some GitHub services (8 days ago)
  • Sysco - 2,691,852 breached accounts (9 days ago)
  • Disruption with some GitHub services (9 days ago)
  • American Tower - 216,601 breached accounts (11 days ago)
  • Degradation with Webhooks, Pull Requests and Actions (11 days ago)
  • Ping32 RMM and ValleyRAT (12 days ago)
  • Smashing Security podcast #473: How a hacker could have Rickrolled the entire World Cup (12 days ago)
  • A dead CDN, a wildcard, and an attack waiting to happen: the netdna-ssl.com takeover (13 days ago)
  • Madison Square Garden Sports - 9,796,738 breached accounts (13 days ago)
  • Weekly Update 509 (13 days ago)
  • We are seeing elevated errors with Next Edit Suggestions and Completions (13 days ago)
  • Scattered Spider Hackers Plead Guilty on Day 1 of Trial (14 days ago)
  • Hacker hijacks Brazil’s national alert system, sending “misanthropy” to millions of phones (14 days ago)
  • GDPR Article 17: What Is the Right to Erasure? (14 days ago)
  • OH SH!T, I’ve Got Bowel Cancer — Part Two: In the Fog of Chemotherapy (14 days ago)
  • What Makes a Pen Test Fail? Common Penetration Testing Mistakes to Avoid (15 days ago)
  • Why No Passkeys? Naming the Top Sites That Still Don’t Support Them (15 days ago)
  • JCPenney - 368,418 breached accounts (17 days ago)
  • Apple’s Hide My Email tweak leaves privacy fans fuming (18 days ago)
  • Imposter scams cost Americans $3.5 billion in 2025 – and it’s getting worse (18 days ago)
  • Ralph Lauren - 139,903 breached accounts (18 days ago)
  • Operation Endgame 4.0 - 4,160,519 breached accounts (18 days ago)
  • ‘Popa’ Botnet Linked to Publicly-Traded Israeli Firm (18 days ago)
  • CFGI - 248,235 breached accounts (19 days ago)
  • Smashing Security podcast #472: AI gets hacked, and BitLocker gets bypassed (19 days ago)
  • Disruption with Copilot next edit suggestions (19 days ago)
  • Incident With Webhooks (19 days ago)
  • Incident with Copilot Availability (20 days ago)
  • Disruption with some GitHub services (20 days ago)
  • June 2026 Stealer Logs - 56,278,397 breached accounts (21 days ago)
  • Multiple services have elevated errors and endpoint failures when checking feature flags (21 days ago)
  • Increased latency with webhooks (21 days ago)
  • How to Proactively Overcome the Client Questionnaire Burden (22 days ago)
  • Maine forced to take down data breach portal after fake notices filed with authorities (22 days ago)
  • The Instructure Canvas Breach (2026): How XSS in a Support Ticket Compromised 275 Million Students (22 days ago)
  • Weekly Update 508 (22 days ago)
  • Berkadia - 305,216 breached accounts (22 days ago)
  • Infinite Campus - 137,123 breached accounts (22 days ago)
  • Privacy own-goal: World Cup blunder leaks Lionel Messi’s passport details (24 days ago)
  • Incident with Webhooks (25 days ago)
  • Silent Ransom Group: what you need to know (26 days ago)
  • Webinar: The New Rules of Supplier Security – What Buyers Want in 2026 (26 days ago)
  • Smashing Security podcast #471: This AI worm just rewrote its own rules (26 days ago)
  • University of Nottingham - 454,635 breached accounts (26 days ago)
  • Authentication issues related to API requests (27 days ago)
  • Who Runs the Ransomware Group ‘The Gentlemen?’ (27 days ago)
  • Why schools remain one of cybercriminals’ favourite targets (27 days ago)
  • Weekly Update 507 (27 days ago)
  • A Record-Breaking Patch Tuesday for June 2026 (27 days ago)
  • Degraded availability for GitHub.com, GraphQL API, and Webhooks UI/API (29 days ago)
  • Open-Sourcing dbsc-php: a Server Library for Device Bound Session Credentials in PHP (29 days ago)
  • Disruption with Claude Opus 4.7 (29 days ago)
  • Pull Requests and Issues unavailable for signed-out users (29 days ago)
  • Maximizing IOC Impact (29 days ago)