Oktacron logo
Cyber security aggregate rss news

Cyber security aggregator - feeds history

 Feed

Taiwan's National Security Bureau (NSB) has warned that China-developed applications like RedNote (aka Xiaohongshu), Weibo, TikTok, WeChat, and Baidu Cloud pose security risks due to excessive data collection and data transfer to China. The alert comes following an inspection of these apps carried out in coordination with the Ministry of Justice Investigation Bureau (MJIB) and the Criminal

 Feed

Threat actors are weaponizing exposed Java Debug Wire Protocol (JDWP) interfaces to obtain code execution capabilities and deploy cryptocurrency miners on compromised hosts. "The attacker used a modified version of XMRig with a hard-"coded configuration, allowing them to avoid suspicious command-line arguments that are often flagged by defenders," Wiz researchers Yaara Shriki and Gili

 Cyber Security News

Source: thehackernews.com – Author: . Cybersecurity researchers have shed light on a previously undocumented threat actor called NightEagle (aka APT-Q-95) that has been observed targeting Microsoft Exchange servers as a part of a zero-day exploit chain designed to target government, defense, and technology   show more ...

sectors in China. According to QiAnXin’s RedDrip Team, the threat actor has […] La entrada NightEagle APT Exploits Microsoft Exchange Flaw to Target China’s Military and Tech Sectors – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: grahamcluley.com – Author: Graham Cluley Skip to content There’s no official word on what the problem is, but Ingram Micro’s website has been down since Thursday morning. They claim to be “currently experiencing technical difficulties…” Are you thinking what I’m thinking? I really hope I’m   show more ...

wrong, but it’s not at all unusual for a […] La entrada Technical difficulties or cyber attack? Ingram Micro’s website goes down just in time for the holiday weekend – Source: grahamcluley.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Android

Source: grahamcluley.com – Author: Graham Cluley Skip to content Another scummy stalkerware app has spilled its guts, revealing the details of its 62,000 users – and data from thousands of victims’ infected devices. Security researcher Eric Daigle found a vulnerability in the Android spyware app   show more ...

Catwatchful, which allows non-consensual surveillance of others. Users’ email addresses […] La entrada Catwatchful stalkerware app spills secrets of 62,000 users – including its own admin – Source: grahamcluley.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.bitdefender.com – Author: Graham Cluley The notorious Hunters International ransomware-as-a-service operation has announced that it has shut down, in a message posted on its dark web leak site. In a statement on its extortion site, the ransomware group says that it has not only “decided to   show more ...

close the Hunters International project” but is also […] La entrada Hunters International ransomware group shuts down – but will it regroup under a new guise? – Source: www.bitdefender.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 'Cyber

Source: sec.cloudapps.cisco.com – Author: . Cisco Catalyst Center Unauthenticated API Access Vulnerability High CVE-2025-20210 CWE-306 Download CSAF Email Summary A vulnerability in the management API of Cisco Catalyst Center, formerly Cisco DNA Center, could allow an unauthenticated, remote attacker to read   show more ...

and modify the outgoing proxy configuration settings. This vulnerability is due to the lack […] La entrada Cisco Catalyst Center Unauthenticated API Access Vulnerability – Source:sec.cloudapps.cisco.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 'Cyber

Source: sec.cloudapps.cisco.com – Author: . Cisco IOS XE Wireless Controller Software Cisco Discovery Protocol Denial of Service Vulnerability High CVE-2025-20202 CWE-805 Download CSAF Email Summary A vulnerability in Cisco IOS XE Wireless Controller Software could allow an unauthenticated, adjacent attacker to   show more ...

cause a denial of service (DoS) condition on an affected device. This vulnerability is […] La entrada Cisco IOS XE Wireless Controller Software Cisco Discovery Protocol Denial of Service Vulnerability – Source:sec.cloudapps.cisco.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: securityboulevard.com – Author: Grant Shapiro The move to 47-day SSL certificates is a major step toward a more secure, automated internet. While it introduces new challenges, especially for organizations relying on manual processes, it ultimately pushes the ecosystem toward greater resilience and trust.   show more ...

  The post The 47-Day SSL Certificate Era: What It Means for […] La entrada The 47-Day SSL Certificate Era: What It Means for Site Owners and IT Teams – Source: securityboulevard.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 android spyware

Source: securityboulevard.com – Author: Richi Jennings Content warning: Domestic abuse, stalking, controlling behavior, Schadenfreude, irony. The post Yet More Stalkerware Leaks Secret Data: ‘Catwatchful’ is Latest Nasty App appeared first on Security Boulevard. Original Post URL: https://securityboulevard.   show more ...

com/2025/07/catwatchful-stalkerware-data-breach-richixbw/?utm_source=rss&utm_medium=rss&utm_campaign=catwatchful-stalkerware-data-breach-richixbw Category & Tags: Application Security,Cloud Security,Cyberlaw,Cybersecurity,Data Privacy,Data Security,DevOps,Featured,Governance, Risk & Compliance,Humor,Identity & Access,Incident Response,Industry Spotlight,Malware,Mobile Security,Most Read This […] La entrada Yet More Stalkerware Leaks Secret Data: ‘Catwatchful’ is Latest Nasty App – Source: securityboulevard.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 cloud environments

Source: securityboulevard.com – Author: David Kellerman Cloud security isn’t just about having the right solutions in place — it’s about determining whether they are functioning correctly. The post Validation is an Increasingly Critical Element of Cloud Security   appeared first on Security Boulevard.   show more ...

Original Post URL: https://securityboulevard.com/2025/07/validation-is-an-increasingly-critical-element-of-cloud-security/?utm_source=rss&utm_medium=rss&utm_campaign=validation-is-an-increasingly-critical-element-of-cloud-security Category & Tags: Cloud Security,Cybersecurity,Security Boulevard (Original),Social – Facebook,Social […] La entrada Validation is an Increasingly Critical Element of Cloud Security   – Source: securityboulevard.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 anomaly detection

Source: securityboulevard.com – Author: Karthik Reddy Real-time data governance provides security and privacy teams with immediate visibility into what is happening, allowing them to stop a problem before it becomes a crisis. The post Mastering Real-Time Cloud Data Governance Amid Evolving Threats and   show more ...

Regulations appeared first on Security Boulevard. Original Post URL: https://securityboulevard.com/2025/07/mastering-real-time-cloud-data-governance-amid-evolving-threats-and-regulations/?utm_source=rss&utm_medium=rss&utm_campaign=mastering-real-time-cloud-data-governance-amid-evolving-threats-and-regulations Category & […] La entrada Mastering Real-Time Cloud Data Governance Amid Evolving Threats and Regulations – Source: securityboulevard.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 critical thinking

Source: securityboulevard.com – Author: Perry Carpenter Empowering employees with critical thinking and transparency to combat synthetic media impersonations and fortify organizational defenses.  The post The Role Culture and Trust Play in Countering Deepfakes appeared first on Security Boulevard. Original   show more ...

Post URL: https://securityboulevard.com/2025/07/the-role-culture-and-trust-play-in-countering-deepfakes/?utm_source=rss&utm_medium=rss&utm_campaign=the-role-culture-and-trust-play-in-countering-deepfakes Category & Tags: Cybersecurity,Security Awareness,Security Boulevard (Original),Security Operations,Social – Facebook,Social – LinkedIn,Social – […] La entrada The Role Culture and Trust Play in Countering Deepfakes – Source: securityboulevard.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: thehackernews.com – Author: . Taiwan’s National Security Bureau (NSB) has warned that China-developed applications like RedNote (aka Xiaohongshu), Weibo, TikTok, WeChat, and Baidu Cloud pose security risks due to excessive data collection and data transfer to China. The alert comes following an   show more ...

inspection of these apps carried out in coordination with the Ministry of […] La entrada Taiwan NSB Alerts Public on Data Risks from TikTok, Weibo, and RedNote Over China Ties – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Alert

Source: thehackernews.com – Author: . Threat actors are weaponizing exposed Java Debug Wire Protocol (JDWP) interfaces to obtain code execution capabilities and deploy cryptocurrency miners on compromised hosts. “The attacker used a modified version of XMRig with a hard-“coded configuration,   show more ...

allowing them to avoid suspicious command-line arguments that are often flagged by defenders,” Wiz researchers […] La entrada Alert: Exposed JDWP Interfaces Lead to Crypto Mining, Hpingbot Targets SSH for DDoS – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 'Cyber

Source: sec.cloudapps.cisco.com – Author: . Cisco IOS XE Wireless Controller Software Unauthorized User Deletion Vulnerability Medium CVE-2025-20190 CWE-284 Download CSAF Email Summary A vulnerability in the lobby ambassador web interface of Cisco IOS XE Wireless Controller Software could allow an   show more ...

authenticated, remote attacker to remove arbitrary users that are defined on an affected device. This […] La entrada Cisco IOS XE Wireless Controller Software Unauthorized User Deletion Vulnerability – Source:sec.cloudapps.cisco.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 'Cyber

Source: sec.cloudapps.cisco.com – Author: . Cisco IOS Software Industrial Ethernet Switch Device Manager Privilege Escalation Vulnerability High CVE-2025-20164 CWE-862 Download CSAF Email Summary A vulnerability in the Cisco Industrial Ethernet Switch Device Manager (DM) of Cisco IOS Software could allow an   show more ...

authenticated, remote attacker to elevate privileges. This vulnerability is due to insufficient validation of […] La entrada Cisco IOS Software Industrial Ethernet Switch Device Manager Privilege Escalation Vulnerability – Source:sec.cloudapps.cisco.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

2025-07
Aggregator history
Saturday, July 05
TUE
WED
THU
FRI
SAT
SUN
MON
JulyAugustSeptember