Oktacron logo
Cyber security aggregate rss news

Cyber security aggregator - feeds history

 Feed

Cybersecurity researchers have discovered a serious security issue that allows leaked Laravel APP_KEYs to be weaponized to gain remote code execution capabilities on hundreds of applications. "Laravel's APP_KEY, essential for encrypting sensitive data, is often leaked publicly (e.g., on GitHub)," GitGuardian said. "If attackers get access to this key, they can exploit a deserialization flaw to

 Feed

NVIDIA is urging customers to enable System-level Error Correction Codes (ECC) as a defense against a variant of a RowHammer attack demonstrated against its graphics processing units (GPUs). "Risk of successful exploitation from RowHammer attacks varies based on DRAM device, platform, design specification, and system settings," the GPU maker said in an advisory released this week. Dubbed

 1 - Cyber Security News Post

Source: hackread.com – Author: Waqas. A new report details how the advanced hacking tool Shellter Elite was leaked and is now being used by cybercriminals. Learn about its evasion techniques and the infostealer campaigns. Shellter Elite, a sophisticated tool for cybersecurity professionals, has fallen into the   show more ...

wrong hands, with its leaked copy being actively used […] La entrada Leaked Shellter Elite Tool Now Fueling Infostealer Attacks Worldwide – Source:hackread.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 1 - Cyber Security News Post

Source: hackread.com – Author: Waqas. The Department of Justice and the FBI’s Atlanta Field Office confirmed today that they have seized and dismantled several notorious online marketplaces distributing pirated video games. The targeted sites had gained popularity for leaking unreleased titles to millions of   show more ...

users worldwide. Visitors who try to reach these domains now see […] La entrada FBI Seizes Major Sites Sharing Unreleased and Pirated Video Games – Source:hackread.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 1 - Cyber Security News Post

Source: hackread.com – Author: Deeba Ahmed. Google and its tracking of user activity is nothing now but a recent study by SafetyDetectives, conducted across the US, UK, Switzerland, and Sweden, reveals the pervasive nature of Google’s tracking mechanisms across the internet. The research, shared with Hackread.   show more ...

com, indicates that while privacy-focused search engines like DuckDuckGo can […] La entrada New Study Shows Google Tracking Persists Even With Privacy Tools – Source:hackread.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 1 - Cyber Security News Post

Source: hackread.com – Author: Deeba Ahmed. A major international operation has led to the arrest of 14 individuals suspected of involvement in a large-scale phishing attack that defrauded UK taxpayers of an estimated £47 million. The arrests, primarily in Romania, were the result of a joint effort between   show more ...

criminal investigators from HMRC (Her Majesty’s Revenue […] La entrada 14 Arrested in Romania for £47 Million UK Tax Phishing Scam – Source:hackread.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 1 - Cyber Security News Post

Source: hackread.com – Author: Owais Sultan. Imagine slashing shipping costs by 30% while speeding up deliveries, and watching 4-star reviews roll in. That is the power of Magento 2 shipping automation. It is reshaping how stores handle logistics and how customers experience fulfillment. For store owners,   show more ...

shipping can be a mess. Too many carriers. Too […] La entrada Magento 2 Shipping Automation: Cut Costs While Enhancing Customer Experience – Source:hackread.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: thehackernews.com – Author: . Fortinet has released fixes for a critical security flaw impacting FortiWeb that could enable an unauthenticated attacker to run arbitrary database commands on susceptible instances. Tracked as CVE-2025-25257, the vulnerability carries a CVSS score of 9.6 out of a maximum   show more ...

of 10.0. “An improper neutralization of special elements used in […] La entrada Fortinet Releases Patch for Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257) – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: thehackernews.com – Author: . Cybersecurity researchers have discovered a set of four security flaws in OpenSynergy’s BlueSDK Bluetooth stack that, if successfully exploited, could allow remote code execution on millions of transport vehicles from different vendors. The vulnerabilities, dubbed   show more ...

PerfektBlue, can be fashioned together as an exploit chain to run arbitrary code on cars […] La entrada PerfektBlue Bluetooth Vulnerabilities Expose Millions of Vehicles to Remote Code Execution – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: thehackernews.com – Author: . The 2025 Data Risk Report: Enterprises face potentially serious data loss risks from AI-fueled tools. Adopting a unified, AI-driven approach to data security can help. As businesses increasingly rely on cloud-driven platforms and AI-powered tools to accelerate digital   show more ...

transformation, the stakes for safeguarding sensitive enterprise data have reached unprecedented levels. […] La entrada Securing Data in the AI Era – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Critical

Source: thehackernews.com – Author: . A recently disclosed maximum-severity security flaw impacting the Wing FTP Server has come under active exploitation in the wild, according to Huntress. The vulnerability, tracked as CVE-2025-47812 (CVSS score: 10.0), is a case of improper handling of null (‘’)   show more ...

bytes in the server’s web interface, which allows for remote code […] La entrada Critical Wing FTP Server Vulnerability (CVE-2025-47812) Actively Being Exploited in the Wild – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: thehackernews.com – Author: . An Iranian-backed ransomware-as-a-service (RaaS) named Pay2Key has resurfaced in the wake of the Israel-Iran-U.S. conflict last month, offering bigger payouts to cybercriminals who launch attacks against Israel and the U.S. The financially motivated scheme, now operating   show more ...

under the moniker Pay2Key.I2P, is assessed to be linked to a hacking group tracked […] La entrada Iranian-Backed Pay2Key Ransomware Resurfaces with 80% Profit Share for Cybercriminals – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: go.theregister.com – Author: Connor Jones Huntress security researchers observed exploitation of the CVSS 10.0 remote code execution (RCE) flaw in Wing FTP Server on July 1, just one day after its public disclosure. Wing FTP Server is a cross-platform file-transfer solution, supporting FTP, FTPS, SFTP,   show more ...

and HTTP/S. It is used by over 10,000 customers […] La entrada CVSS 10 RCE in Wing FTP exploited within 24 hours, security researchers warn – Source: go.theregister.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: go.theregister.com – Author: Lindsay Clark The Online Safety Act fails to tackle online misinformation, leaving the UK in need of further regulation to curb the viral spread of false content, a report from MPs has found. In response, the Science, Innovation and Technology Committee is urging the   show more ...

government to hold social media companies accountable […] La entrada UK Online Safety Act ‘not up to scratch’ on misinformation, warn MPs – Source: go.theregister.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.darkreading.com – Author: Rob Wright Please enable cookies. Sorry, you have been blocked You are unable to access darkreading.com Why have I been blocked? This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution.   show more ...

There are several actions that could trigger this […] La entrada Pay2Key Ransomware Gang Resurfaces With Incentives to Attack US, Israel – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.darkreading.com – Author: Nate Nelson, Contributing Writer Please enable cookies. Sorry, you have been blocked You are unable to access darkreading.com Why have I been blocked? This website is using a security service to protect itself from online attacks. The action you just performed triggered the   show more ...

security solution. There are several actions that could […] La entrada 350M Cars, 1B Devices Exposed to 1-Click Bluetooth RCE – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.darkreading.com – Author: Robert Lemos, Contributing Writer Please enable cookies. Sorry, you have been blocked You are unable to access darkreading.com Why have I been blocked? This website is using a security service to protect itself from online attacks. The action you just performed triggered   show more ...

the security solution. There are several actions that could […] La entrada As Cyber-Insurance Premiums Drop, Coverage Is Key to Resilience – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.darkreading.com – Author: Jeff Prelle Please enable cookies. Sorry, you have been blocked You are unable to access darkreading.com Why have I been blocked? This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution.   show more ...

There are several actions that could trigger this […] La entrada Factoring Cybersecurity Into Finance’s Digital Strategy – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.darkreading.com – Author: Stephen Lawton Please enable cookies. Sorry, you have been blocked You are unable to access darkreading.com Why have I been blocked? This website is using a security service to protect itself from online attacks. The action you just performed triggered the security solution.   show more ...

There are several actions that could trigger this […] La entrada Digital Fingerprints Test Privacy Concerns in 2025 – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.infosecurity-magazine.com – Author: ISACA has launched the Certified Information Systems Auditor (CISA) Associate designation, enabling CISA exam passers without the required experience to kickstart their careers in IT audit. The new CISA Associate will help students and graduates make their first   show more ...

step into the IT audit profession. One of the biggest challenges for those […] La entrada ISACA Addresses Experience Gap with CISA Associate Designation – Source: www.infosecurity-magazine.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 British

Source: www.infosecurity-magazine.com – Author: A British man has been sentenced for the hack of Network Rail public Wi-Fi last year which resulted in customers being exposed to Islamophobic messaging. John Andreas Wik, aged 37, from Greater London, pleaded guilty to publishing or distributing material intended   show more ...

to stir up religious hatred. He was sentenced on July […] La entrada British Man Sentenced for Network Rail Wi-Fi Hack – Source: www.infosecurity-magazine.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.infosecurity-magazine.com – Author: The DoNot APT group has recently conducted a multi-stage cyber espionage campaign targeting the Italian Ministry of Foreign Affairs, according to Trellix. The group, attributed by several cyber threat intelligence companies to India, impersonated European defense   show more ...

officials, mentioning their visit to Bangladesh, and lured their targets to click on a malicious […] La entrada Indian Cyber Espionage Group Targets Italian Government – Source: www.infosecurity-magazine.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: securityaffairs.com – Author: Pierluigi Paganini Russian basketball player arrested in France over alleged ties to a ransomware group accused of targeting U.S. firms and federal institutions. Russian basketball player Daniil Kasatkin (26) was arrested in France in June at the request of the U.S. over   show more ...

alleged ties to a ransomware group targeting hundreds of […] La entrada Athlete or Hacker? Russian basketball player accused in U.S. ransomware case – Source: securityaffairs.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.schneier.com – Author: Bruce Schneier New research: One reason the early years of squids has been such a mystery is because squids’ lack of hard shells made their fossils hard to come by. Undeterred, the team instead focused on finding ancient squid beaks—hard mouthparts with high fossilization   show more ...

potential that could help the team figure […] La entrada Squid Dominated the Oceans in the Late Cretaceous – Source: www.schneier.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 CSOonline

Source: www.csoonline.com – Author: A security flaw in McHire allowed access to sensitive applicant data via default admin credentials and a vulnerable API. The issue was patched swiftly after disclosure. A security oversight in McDonald’s AI-powered hiring platform “McHire” was found exposing sensitive   show more ...

applicant data belonging to as many as 64 million job seekers. Discovered […] La entrada McDonald’s AI hiring tool’s password ‘123456’ exposed data of 64M applicants – Source: www.csoonline.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 1 - Cyber Security News Post

Source: hackread.com – Author: Deeba Ahmed. Trellix reveals how the India-linked DoNot APT group launched a sophisticated spear-phishing attack on a European foreign affairs ministry. Learn about their tactics, the LoptikMod malware, and why this cyber espionage campaign matters for global diplomacy. A   show more ...

sophisticated campaign by the notorious DoNot APT group, also known by names […] La entrada DoNot APT Hits European Ministry with New LoptikMod Malware – Source:hackread.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 1 - Cyber Security News Post

Source: hackread.com – Author: Deeba Ahmed. McHire’s AI system vulnerability briefly exposed limited candidate chat information. Learn how Paradox promptly fixed the issue, confirming data for only five individuals was viewed by researchers, with no public leak. A vulnerability in McHire, the AI-powered   show more ...

recruitment platform used by a vast majority of McDonald’s franchisees, exposed sensitive […] La entrada McDonald’s AI Hiring Tool McHire Security Flaw Exposed Candidate Chat Data – Source:hackread.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

2025-07
Aggregator history
Saturday, July 12
TUE
WED
THU
FRI
SAT
SUN
MON
JulyAugustSeptember