Oktacron logo
Cyber security aggregate rss news

Cyber security aggregator - feeds history

 Feed

Cybersecurity researchers have presented new findings related to a now-patched security issue in Microsoft's Windows Remote Procedure Call (RPC) communication protocol that could be abused by an attacker to conduct spoofing attacks and impersonate a known server. The vulnerability, tracked as CVE-2025-49760 (CVSS score: 3.5), has been described by the tech giant as a Windows Storage spoofing bug

 Feed

A novel attack technique could be weaponized to rope thousands of public domain controllers (DCs) around the world to create a malicious botnet and use it to conduct power distributed denial-of-service (DDoS) attacks. The approach has been codenamed Win-DDoS by SafeBreach researchers Or Yair and Shahak Morag, who presented their findings at the DEF CON 33 security conference today. "As we

 0CISO2CISO

Source: thehackernews.com – Author: . Cybersecurity researchers have disclosed vulnerabilities in select model webcams from Lenovo that could turn them into BadUSB attack devices. “This allows remote attackers to inject keystrokes covertly and launch attacks independent of the host operating   show more ...

system,” Eclypsium researchers Paul Asadoorian, Mickey Shkatov, and Jesse Michael said in a report shared […] La entrada Linux-Based Lenovo Webcams’ Flaw Can Be Remotely Exploited for BadUSB Attacks – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: thehackernews.com – Author: . Cybersecurity researchers have uncovered a jailbreak technique to bypass ethical guardrails erected by OpenAI in its latest large language model (LLM) GPT-5 and produce illicit instructions. Generative artificial intelligence (AI) security platform NeuralTrust said it   show more ...

combined a known technique called Echo Chamber with narrative-driven steering to trick the model into […] La entrada Researchers Uncover GPT-5 Jailbreak and Zero-Click AI Agent Attacks Exposing Cloud and IoT Systems – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.cyberdefensemagazine.com – Author: News team As organizations increasingly rely on application programming interfaces (APIs) to facilitate communication and data exchange between software systems, these “gates” become primary targets for attackers. Businesses that fail to put API security at or   show more ...

near the top of their priority list risk suffering costly data breaches, service interruptions, reputational […] La entrada The Future of API Security Reviews – Source: www.cyberdefensemagazine.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.cyberdefensemagazine.com – Author: News team Cybercriminals are no longer primarily focused on large enterprises. They now see small- and medium-sized businesses (SMBs) as prime targets because they lack the resources, expertise, and robust security measures that larger businesses can afford. As a   show more ...

result, cybersecurity is now a matter of survival for SMBs. In fact, new […] La entrada SMBs Know the Risks, So Why Are Cybercriminals Still Winning? – Source: www.cyberdefensemagazine.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: securityboulevard.com – Author: Matt Weir “If I had an hour to solve a problem, I would spend 55 minutes thinking about the problem and five minutes finding the solution.” – Albert Einstein Introduction: I’m a big fan of graphing password cracking sessions. It’s a good way to   show more ...

figure out what’s working and what isn’t by […] La entrada OMEN Improvements – Source: securityboulevard.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Behavior

Source: securityboulevard.com – Author: Matthew Rosenquist   LinkedIn is a great communication tool for business professionals that informs, provides opportunities, and fosters collaboration — which is exactly why it is attractive to sophisticated cyber adversaries, including aggressive nation state   show more ...

actors, who use LinkedIn for nefarious activities such as information gathering, target profiling, human-asset engagement, fraud, social engineering, […] La entrada Tips to Protect Yourself on LinkedIn from Fraud, Social Engineering, and Espionage – Source: securityboulevard.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.schneier.com – Author: Bruce Schneier HomeBlog Comments finagle • August 9, 2025 6:47 AM I was asked recently to do a security audit on a website by a friend. Although they didn’t specify their concerns, the URL they sent me was the start of the payment flow. FYI TL;DR version The site is for   show more ...

[…] La entrada Friday Squid Blogging: New Vulnerability in Squid HTTP Proxy Server – Source: www.schneier.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.schneier.com – Author: Bruce Schneier Google’s vulnerability finding team is again pushing the envelope of responsible disclosure: Google’s Project Zero team will retain its existing 90+30 policy regarding vulnerability disclosures, in which it provides vendors with 90 days before full   show more ...

disclosure takes place, with a 30-day period allowed for patch adoption if the bug […] La entrada Google Project Zero Changes Its Disclosure Policy – Source: www.schneier.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.infosecurity-magazine.com – Author: After two years of competition, the winners of the AI Cybersecurity Challenge (AIxCC) were revealed at the DEFCON 33 hacking event on August 9. Team Atlanta was revealed as the winning team. The group is a powerhouse collaboration of experts from the Georgia   show more ...

Institute of Technology (Georgia Tech), Samsung Research, the […] La entrada #DEFCON: AI Cyber Challenge Winners Revealed in DARPA’s $4M Cybersecurity Showdown – Source: www.infosecurity-magazine.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: thehackernews.com – Author: . Cybersecurity researchers have uncovered multiple security flaws in Dell’s ControlVault3 firmware and its associated Windows APIs that could have been abused by attackers to bypass Windows login, extract cryptographic keys, as well as maintain access even after a   show more ...

fresh operating system install by deploying undetectable malicious implants into the firmware. […] La entrada Researchers Reveal ReVault Attack Targeting Dell ControlVault3 Firmware in 100+ Laptop Models – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 bus

Source: www.securityweek.com – Author: Eduard Kovacs Researchers demonstrated that smart buses, the transportation vehicles that incorporate various systems to improve safety, efficiency, and passenger experience, can be remotely hacked.  The findings were described on Friday at the DEF CON hacker convention   show more ...

by Chiao-Lin ‘Steven Meow’ Yu of Trend Micro Taiwan and Kai-Ching ‘Keniver’ Wang of […] La entrada Free Wi-Fi Leaves Buses Vulnerable to Remote Hacking – Source: www.securityweek.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: go.theregister.com – Author: Jessica Lyons def con A DEF CON hacker walks into a small-town water facility…no, this is not the setup for a joke or a (super-geeky) odd-couple rom-com. It’s a true story that happened at five utilities across four states. And now, nine months into providing free   show more ...

cybersecurity services to a handful […] La entrada DEF CON hackers plug security holes in US water systems amid tsunami of threats – Source: go.theregister.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: go.theregister.com – Author: Iain Thomson DEF CON On Saturday at DEF CON, security boffin Micah Lee explained just how he hacked into TeleMessage, the supposedly secure messaging app used by White House officials, which in turn led to a massive database dump of their communications. As possibly the most   show more ...

secure end-to-end encrypted messaging app, […] La entrada The inside story of the Telemessage saga, and how you can view the data – Source: go.theregister.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 BadCam

Source: securityaffairs.com – Author: Pierluigi Paganini Lenovo webcam flaws, dubbed BadCam, let attackers turn them into BadUSB devices to inject keystrokes and launch OS-independent attacks. Eclypsium researchers found vulnerabilities in some Lenovo webcams, collectively dubbed BadCam, that could let   show more ...

attackers turn them into BadUSB devices to inject keystrokes and launch OS-independent attacks. Principal security researchers […] La entrada BadCam: Linux-based Lenovo webcam bugs enable BadUSB attacks – Source: securityaffairs.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Breaking News

Source: securityaffairs.com – Author: Pierluigi Paganini We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept All”, you consent to the use of ALL the cookies. However, you may visit “Cookie Settings” to   show more ...

provide a controlled consent. Cookie SettingsAccept All Original Post […] La entrada SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 57 – Source: securityaffairs.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Breaking News

Source: securityaffairs.com – Author: Pierluigi Paganini A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.   show more ...

Embargo Ransomware nets $34.2M in crypto since April 2024 Germany […] La entrada Security Affairs newsletter Round 536 by Pierluigi Paganini – INTERNATIONAL EDITION – Source: securityaffairs.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Breaking News

Source: securityaffairs.com – Author: Pierluigi Paganini Embargo ransomware, likely a BlackCat/Alphv successor, has netted $34.2M in crypto since mid-2024, researchers say. The Embargo ransomware group has processed $34.2M in crypto since emerging in April 2024, researchers from Blockchain intelligence company   show more ...

TRM Labs report. “TRM Labs has identified approximately USD 34.2 million in incoming transaction volume […] La entrada Embargo Ransomware nets $34.2M in crypto since April 2024 – Source: securityaffairs.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

2025-08
Aggregator history
Sunday, August 10
FRI
SAT
SUN
MON
TUE
WED
THU
AugustSeptember