SecOps News

Get this as an RSS feed

  • Funnel Builder WordPress plugin bug exploited to steal credit cards (8 hours ago)
  • Microsoft Exchange, Windows 11 hacked on second day of Pwn2Own (10 hours ago)
  • Popular node-ipc npm package compromised to steal credentials (11 hours ago)
  • Turla Turns Kazuar Backdoor Into Modular P2P Botnet for Persistent Access (11 hours ago)
  • Avada Builder WordPress plugin flaws allow site credential theft (12 hours ago)
  • In Other News: Big Tech vs Canada Encryption Bill, Cisco’s Free AI Security Spec, Audi App Flaws (13 hours ago)
  • Microsoft backpedals: Edge to stop loading passwords into memory (13 hours ago)
  • Anatomy of a WooCommerce Skimmer: A Technical Deep-Dive (13 hours ago)
  • Inside the REMUS Infostealer: Session Theft, MaaS, and Rapid Evolution (14 hours ago)
  • Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistence (14 hours ago)
  • Microsoft to automatically roll back faulty Windows drivers (15 hours ago)
  • Microsoft Warns of Exchange Server Zero-Day Exploited in the Wild (16 hours ago)
  • American Lending Center Data Breach Affects 123,000 Individuals (17 hours ago)
  • What 45 Days of Watching Your Own Tools Will Tell You About Your Real Attack Surface (17 hours ago)
  • TanStack Supply Chain Attack Hits Two OpenAI Employee Devices, Forces macOS Updates (17 hours ago)
  • OpenAI Hit by TanStack Supply Chain Attack (17 hours ago)
  • OpenAI caught in TanStack npm supply chain chaos after employee devices compromised (18 hours ago)
  • TeamPCP Ups the Game, Releases Shai-Hulud Worm’s Source Code (18 hours ago)
  • Microsoft warns of Exchange zero-day flaw exploited in attacks (18 hours ago)
  • Actions is experiencing degraded availability (19 hours ago)
  • MPs want social media treated more like unsafe toys than harmless apps (19 hours ago)
  • Chrome 148 Update Patches Critical Vulnerabilities (20 hours ago)
  • Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026 (21 hours ago)
  • On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email (21 hours ago)
  • CISA Adds Cisco SD-WAN CVE-2026-20182 to KEV After Admin Access Exploits (22 hours ago)
  • [Retroactive] Incident with GitHub.com (1 days ago)
  • TeamPCP hackers advertise Mistral AI code repos for sale (1 days ago)
  • Nobody believes the ‘criminals and scumbags’ who hacked Canvas really deleted stolen student data (1 days ago)
  • Hackers exploit auth bypass flaw in Burst Statistics WordPress plugin (1 days ago)
  • Sick and wrong: Ontario auditors find doctors’ AI note takers routinely blow basic facts (1 days ago)
  • Cisco warns of new critical SD-WAN flaw exploited in zero-day attacks (1 days ago)
  • Suspected Dream Market kingpin arrested after gold bars sent to his home address (1 days ago)
  • OpenAI confirms security breach in TanStack supply chain attack (1 days ago)
  • Windows 11 and Microsoft Edge hacked at Pwn2Own Berlin 2026 (1 days ago)
  • Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited to Gain Admin Access (1 days ago)
  • Stealer Backdoor Found in 3 Node-IPC Versions Targeting Developer Secrets (1 days ago)
  • ThreatsDay Bulletin: PAN-OS RCE, Mythos cURL Bug, AI Tokenizer Attacks, and 10+ Stories (1 days ago)
  • 18-year-old NGINX vulnerability allows DoS, potential RCE (1 days ago)
  • Cyber-Enabled Cargo Crime: How Cybercrime Tradecraft is Used to Steal Freight (1 days ago)
  • Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike (1 days ago)
  • Enhancing Data Center Security Without Sacrificing Performance (1 days ago)
  • ROCs and SAQs: Which PCI DSS Compliance Validation Route Applies to Your Business? (1 days ago)
  • New Linux Kernel Vulnerability Fragnesia Allows Root Privilege Escalation (1 days ago)
  • Mythos Proves Potent in Vulnerability Discovery, Less Convincing Elsewhere (1 days ago)
  • PraisonAI CVE-2026-44338 Auth Bypass Targeted Within Hours of Disclosure (1 days ago)
  • How AI Hallucinations Are Creating Real Security Risks (1 days ago)
  • Cops arrest man suspected of being Dream Market kingpin (1 days ago)
  • Dirty Frag gets a sequel as Fragnesia hands Linux attackers root-level access (1 days ago)
  • When ransomware gets physical: cybercriminals turn to threats of violence (1 days ago)
  • Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation (1 days ago)
  • New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption (1 days ago)
  • To gain root access at this company, all an intruder had to do was ask nicely (1 days ago)
  • AI models are getting better at replacing cybersecurity pros on certain tasks (1 days ago)
  • 18-Year-Old NGINX Rewrite Module Flaw Enables Unauthenticated RCE (1 days ago)
  • Welcoming the Bahamian Government to Have I Been Pwned (2 days ago)
  • Abrigo - 711,099 breached accounts (2 days ago)
  • Cisco to fire 4,000 staff and generously give them free training – on Cisco (2 days ago)
  • Welcome to the vulnpocalypse, as vendors use AI to find bugs and patches multiply like rabbits (2 days ago)
  • Smashing Security podcast #467: How ShinyHunters hacked the world’s biggest universities (2 days ago)
  • AWS to Quick admins: The access control didn’t work, but you weren’t using it anyway, so what’s the problem? (2 days ago)
  • Google’s AI-enabled mouse pointer understands ‘this’ and ‘that’ (2 days ago)
  • Anthropic butts in to small business, promises help with payroll and other core tasks (2 days ago)
  • Bug hunter tracks down three massive MCP flaws and one vendor won’t fix theirs (2 days ago)
  • Mystery Microsoft bug leaker keeps the zero-days coming (2 days ago)
  • Incident with CodeQL (2 days ago)
  • South Staffordshire Water Fined Nearly £1 Million for Data Breach (2 days ago)
  • Microsoft’s MDASH AI System Finds 16 Windows Flaws Fixed in Patch Tuesday (2 days ago)
  • Azerbaijani Energy Firm Hit by Repeated Microsoft Exchange Exploitation (2 days ago)
  • [Webinar] How Modern Attack Paths Cross Code, Pipelines, and Cloud (2 days ago)
  • Most Remediation Programs Never Confirm the Fix Actually Worked (2 days ago)
  • dBase debased: Database titan fades to black after 47 years (2 days ago)
  • Microsoft Patches 138 Vulnerabilities, Including DNS and Netlogon RCE Flaws (2 days ago)
  • GemStuffer Abuses 150+ RubyGems to Exfiltrate Scraped U.K. Council Portal Data (2 days ago)
  • Android Adds Intrusion Logging for Sophisticated Spyware Forensics (2 days ago)
  • Canada Life - 237,810 breached accounts (2 days ago)
  • Malware crew TeamPCP open-sources its Shai-Hulud worm on GitHub (2 days ago)
  • Vietnam to develop domestic cloud so it can ditch risky overseas operators for government workloads (3 days ago)
  • Doozy of a Patch Tuesday includes 30 critical Microsoft CVEs (3 days ago)
  • Foxconn confirms cyberattack after ransomware crew claims it stole confidential Apple, Nvidia files (3 days ago)
  • Patch Tuesday, May 2026 Edition (3 days ago)
  • Incident with CodeQL, Webhooks, Notifications, and Slack Integration (3 days ago)
  • New Exim BDAT Vulnerability Exposes GnuTLS Builds to Potential Code Execution (3 days ago)
  • US bank reports itself after slinging customer data at ‘unauthorized AI app’ (3 days ago)
  • RubyGems Suspends New Signups After Hundreds of Malicious Packages Are Uploaded (3 days ago)
  • New TrickMo Variant Uses TON C2 and SOCKS5 to Create Android Network Pivots (3 days ago)
  • Cache-poisoning caper turns TanStack npm packages toxic (3 days ago)
  • EU browser choice rules send millions more users Firefox’s way (3 days ago)
  • Apple, Google drag cross-platform texting into the encrypted age (3 days ago)
  • GDPR FAQ (3 days ago)
  • Cushman & Wakefield - 310,431 breached accounts (3 days ago)
  • Japan’s PM orders cybersecurity review to stop Mythos going full CyberZilla (3 days ago)
  • Double Canvas breach acknowledged as ShinyHunters sets new pay-or-leak deadline (4 days ago)
  • Welcoming the Bangladesh Government to Have I Been Pwned (4 days ago)
  • Rodent-obsessed developer creates Ratty to bring 3D graphics to the command line (4 days ago)
  • Cookie thieves caught stealing dev secrets via fake Claude Code installers (4 days ago)
  • Anthropic’s bug-hunting Mythos was greatest marketing stunt ever, says cURL creator (4 days ago)
  • Anthropic’s bug-hunting Mythos was greatest marketing stunt ever, says cURL creator (4 days ago)
  • ISO 42001 and AI Governance FAQ (4 days ago)
  • BWH Hotels guests warned after reservation data checks out with cybercrooks (4 days ago)
  • PCI DSS FAQ (4 days ago)
  • Incident with high errors on Git Operations (4 days ago)
  • SOC 2 FAQ (4 days ago)
  • ISO 27001 FAQ (4 days ago)
  • Under Attack: Responding to the Rise of Info-Stealer Threats (4 days ago)
  • Checkmarx tackles another TeamPCP intrusion as Jenkins plugin sabotaged (4 days ago)
  • Data Retention for Regulated Industries: Why it Requires More Than a Blanket Approach (4 days ago)
  • Classic Outlook’s Quick Steps trip over Microsoft bug (4 days ago)
  • Welcoming the Costa Rican Government to Have I Been Pwned (5 days ago)
  • Weekly Update 503 (5 days ago)
  • macOS 27 threatens to bury Time Capsule, FOSS brings a shovel (6 days ago)
  • One in eight UK workers has sold their company passwords, and bosses think it’s fine (7 days ago)
  • Inside Department 4: Russia’s secret school for hackers (7 days ago)
  • The Case for ISO 27001 – A board’s-eye view (7 days ago)
  • Remcos Alerts from FlowCarp in EveBox (7 days ago)
  • What Happens if You Get PCI DSS Compliance Wrong? (7 days ago)
  • Sri Lanka makes 37 arrests as it raids another scam centre (7 days ago)
  • Zara - 197,376 breached accounts (7 days ago)
  • Canvas Breach Disrupts Schools & Colleges Nationwide (8 days ago)
  • NHS code clampdown draws open source backlash (8 days ago)
  • CCR and CCA failing to start for PR comments (8 days ago)
  • Woflow - 447,593 breached accounts (8 days ago)
  • Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired (9 days ago)
  • Incident with Pull Requests (9 days ago)
  • Disruption with some GitHub services (9 days ago)
  • Firefox integrates an ad-blocker, but not to block ads (9 days ago)
  • LegionProxy - 10,144 breached accounts (9 days ago)
  • Incident with Actions, we are investigating reports of degraded availability (9 days ago)
  • Weekly Update 502 (10 days ago)
  • OpenAI exec says company hopes to burn $50B of somebody else’s money on compute this year (10 days ago)
  • Astera speaks softly and carries a big switch (10 days ago)
  • Anthropic wants Claude to play with money, unleashes finance agents (10 days ago)
  • Increased Latency and Failures for SSH Git Operations (10 days ago)
  • IBM asks DBAs to trust AI to act on their behalf (10 days ago)
  • Incident with Actions (10 days ago)
  • ServiceNow clears agents for landing with new AI control tower (10 days ago)
  • Bun posts Rust porting guide, says rewrite is still half-baked (10 days ago)
  • SAP dives deeper into Iceberg with Dremio acquisition (10 days ago)
  • Brit mathematician lets AI agent loose with credit card – cue password leaks, CAPTCHA chaos and more (10 days ago)
  • NHS to close-source hundreds of GitHub repos over AI, security concerns (10 days ago)
  • Classic ASCII game NetHack debuts version 5.0 just 11 years after last major release (10 days ago)
  • Vimeo - 119,167 breached accounts (11 days ago)
  • Microsoft fixes VS Code after app gives Copilot credit for human’s work (11 days ago)
  • Incident with Issues and Webhooks (11 days ago)
  • Hands off my trademark! Notepad++ dev threatens legal action against macOS port (11 days ago)
  • AI inference just plays by different rules (11 days ago)
  • FlowCarp Identifies Protocols (11 days ago)
  • Teenager alleged to be Scattered Spider hacker arrested in Finland, faces US extradition (11 days ago)
  • How TeamViewer ONE transforms IT operations from firefighting to autopilot (11 days ago)
  • Reborn Gaming - 126 breached accounts (12 days ago)
  • Marcus & Millichap - 1,837,078 breached accounts (12 days ago)
  • ZenBusiness - 5,118,184 breached accounts (13 days ago)
  • Incomplete pull request results in repositories (15 days ago)
  • Aman - 215,563 breached accounts (15 days ago)
  • Anti-DDoS Firm Heaped Attacks on Brazilian ISPs (15 days ago)
  • Iran-linked Handala hackers leak US Marines data, send chilling WhatsApp threats (15 days ago)
  • Smashing Security podcast #465: This developer wanted to cheat at Roblox. It cost millions (16 days ago)
  • ESP-RFID-Tool v2 PRO — Full Public Disclosure (16 days ago)
  • Re: SEC Consult SA-20260427-0 :: Missing TLS Certificate Validation leading to RCE in DeskTime Time Tracking App (16 days ago)
  • SEC Consult SA-20260427-0 :: Missing TLS Certificate Validation leading to RCE in DeskTime Time Tracking App (16 days ago)
  • SEC Consult SA-20260423-0 :: DLL Hijacking in EfficientLab Controlio (cloud-based employee monitoring service) (16 days ago)
  • SEC Consult SA-20260421-0 :: Broken Access Control in Config Endpoint in LiteLLM (16 days ago)
  • SEC Consult SA-20260415-0 :: Exposed Private Key of X.509 Certificate in SAP HANA Cockpit & SAP HANA Database Explorer (16 days ago)
  • APPLE-SA-04-22-2026-2 iOS 18.7.8 and iPadOS 18.7.8 (16 days ago)
  • APPLE-SA-04-22-2026-1 iOS 26.4.2 and iPadOS 26.4.2 (16 days ago)
  • Research: When Trusted Tools Become Attack Primitives (16 days ago)
  • [KIS-2026-08] SocialEngine <= 7.8.0 (get-memberall) SQL Injection Vulnerability (16 days ago)
  • [KIS-2026-07] SocialEngine <= 7.8.0 Blind Server-Side Request Forgery Vulnerability (16 days ago)
  • Trojan-Spy.Win32.Small / Remote Command Execution (16 days ago)
  • [IWCC 2026] CfP: 15th International Workshop on Cyber Crime - Linköping, Sweden, Aug 24-27, 2026 (16 days ago)
  • [SBA-ADV-20251120-01] CVE-2026-0972: GoAnywhere MFT Email HTML Injection (16 days ago)
  • Alleged Silk Typhoon hacker extradited to the United States to face charges (16 days ago)
  • Disruption with some GitHub services (17 days ago)
  • French police arrest 21-year-old “HexDex” hacker over 100 alleged data breaches (17 days ago)
  • Weekly Update 501 (17 days ago)
  • Pitney Bowes - 8,243,989 breached accounts (18 days ago)
  • GitHub search is degraded (18 days ago)
  • Disruption with some GitHub services (18 days ago)
  • ADT - 5,488,888 breached accounts (18 days ago)
  • Udemy - 1,401,259 breached accounts (19 days ago)
  • Delays with Actions Jobs for Larger Runners using VNet Injection in the East US region (21 days ago)
  • Carnival - 7,531,359 breached accounts (22 days ago)
  • Incident with Pull Requests (22 days ago)
  • Disruption with users unable to start Claude and Codex agent task from the web (22 days ago)
  • Incident with multiple GitHub services (22 days ago)
  • Investigating errors on GitHub (22 days ago)
  • Disruption with some GitHub services (23 days ago)
  • Smashing Security podcast #464: Rockstar got hacked. The data was junk. The secrets it revealed were not (23 days ago)
  • Disruption with Copilot chat and Copilot Coding Agent (23 days ago)
  • Security considerations when using Passkeys on your website (23 days ago)
  • Disruption with projects service (24 days ago)
  • Weekly Update 500 (24 days ago)
  • Defending Against China-Nexus Covert Networks of Compromised Devices (24 days ago)
  • ‘Scattered Spider’ Member ‘Tylerb’ Pleads Guilty (24 days ago)
  • Partial degradation for code scanning default setup and for code quality (24 days ago)
  • Singer loses life savings to fake wallet downloaded from the Apple App Store (28 days ago)
  • Amtrak - 2,147,679 breached accounts (28 days ago)
  • Here’s What Agentic AI Can Do With Have I Been Pwned’s APIs (29 days ago)
  • Sometimes changing the password on your email mailbox isn’t enough (29 days ago)