Oktacron logo
Cyber security aggregate rss news

Cyber security aggregator - feeds history
image for Patch Tuesday August ...

 Cyber News

Microsoft’s Patch Tuesday update for August 2025 includes fixes for 110 Microsoft vulnerabilities, including nine at higher risk for exploitation and an additional five vulnerabilities carrying 9+ severity ratings. The update, down from 130 vulnerabilities in July’s update, also included eight Chrome   show more ...

vulnerabilities in the Chromium-based Microsoft Edge. Highest-Rated Vulnerabilities: Fixed or at Lower Risk The highest-rated vulnerability – CVE-2025-53767, a 10.0-severity Azure OpenAI Elevation of Privilege vulnerability – has already been fully mitigated by Microsoft, as has CVE-2025-53792, a 9.1-rated Azure Portal Elevation of Privilege vulnerability. Three other 9+ rated vulnerabilities – CVE-2025-50171, a Remote Desktop Spoofing vulnerability, CVE-2025-50165, a Windows Graphics Component Remote Code Execution vulnerability, and CVE-2025-53766, a GDI+ Remote Code Execution vulnerability – were judged by Microsoft to be at lower risk of exploitation. The Patch Tuesday August 2025 update also includes 13 8.8-rated vulnerabilities - found in SQL Server, SharePoint, Windows Routing and Remote Access Service (RRAS), Windows Media, Windows Message Queuing, and Web Deploy - that Microsoft judged to be at lower risk of exploitation. One 8.8-severity vulnerability - in NTLM - was judged to be at higher risk. Patch Tuesday August 2025: High-risk Vulnerabilities Among the 10 vulnerabilities judged to be at higher risk of exploitation, CVE-2025-53786 is an 8.0-severity Exchange Server Hybrid Deployment Elevation of Privilege vulnerability that Microsoft warned about last week. About 28,000 Exchange instances remain unpatched, according to the Shadowserver foundation. Other high-risk vulnerabilities in the Patch Tuesday August 2025 update include: CVE-2025-53778, an 8.8-rated Windows NTLM Elevation of Privilege vulnerability CVE-2025-53156, a 5.5-severity Windows Storage Port Driver Information Disclosure vulnerability CVE-2025-53147, a 7.0-rated Windows Ancillary Function Driver for WinSock Elevation of Privilege vulnerability CVE-2025-53132, an 8.0-severity Win32k Elevation of Privilege vulnerability CVE-2025-50177, an 8.1-rated Microsoft Message Queuing (MSMQ) Remote Code Execution vulnerability CVE-2025-50168, a 7.8-rated Win32k Elevation of Privilege vulnerability CVE-2025-50167, a 7.0-severity Windows Hyper-V Elevation of Privilege vulnerability CVE-2025-49743, a 6.7-severity Windows Graphics Component Elevation of Privilege vulnerability Fortinet and SAP were also among the vendors releasing Patch Tuesday updates today.

image for FBI, Ghana Authoriti ...

 Cyber News

The U.S. authorities have secured the extradition of three Ghanaian nationals accused of running a fraud operation that stole over $100 million from victims through romance scams and business email compromise (BEC) attacks. United States Attorney for the Southern District of New York, Jay Clayton, and FBI New York   show more ...

Field Office Assistant Director in Charge, Christopher G. Raia, announced the unsealing of an indictment against Isaac Oduro Boateng (36), also known as “Kofi Boat”; Inusah Ahmed (40), known as “Pascal”; Derrick Van Yeboah (40), known as “Van”; and Patrick Kwame Asare (39), known as “Borgar.” Boateng, Ahmed, and Van Yeboah arrived in the United States on August 7, 2025, after being extradited from Ghana, and are scheduled to appear before U.S. Magistrate Judge Robert W. Lehrburger. Asare remains at large. The case is assigned to U.S. District Judge Arun Subramanian. Romance Scams Targeting the Vulnerable Prosecutors allege that the four men were senior figures in a Ghana-based criminal organization operating between 2016 and May 2023. The group allegedly conducted romance scams to exploit vulnerable, often elderly, Americans and conducted elaborate business email compromise schemes to siphon funds from U.S. companies. Victims were contacted via social media, text messages, and online dating platforms. In romance scams, conspirators built fake romantic relationships to gain trust before requesting large sums of money under false pretenses. Many victims lived alone and were persuaded not only to send money but also to assist in laundering funds from other victims. In BEC schemes, the group allegedly hacked or spoofed legitimate business emails to trick companies into wiring payments to bank accounts controlled by the fraud ring. These accounts were often held by “money mules” or shell companies in industries ranging from auto sales to freight trucking. FBI Assistant Director Christopher G. Raia said: “Deceiving businesses using email compromise campaigns and tricking innocent elderly victims through fraudulent companionship to exploit their trust and finances is not merely appalling but illegal. The FBI will continue to ensure anyone who preys on companies and vulnerable Americans online is made to face the criminal justice system.” Laundering Millions to West Africa Once stolen, the funds were allegedly channelled through layers of middlemen who took a cut before transferring the rest to West Africa. Large portions of the proceeds were directed to “chairmen” — high-ranking leaders in the network — a role prosecutors say was held by both Boateng and Ahmed. According to the Department of Justice, individual transfers often exceeded several hundred thousand dollars. The scale of the operation reflects the growing global reach of cyber-enabled fraud, with networks capable of moving vast sums across continents while evading detection for years. Charges and Potential Sentences All four defendants face multiple federal charges: Wire fraud conspiracy (maximum 20 years) Wire fraud (maximum 20 years) Money laundering conspiracy (maximum 20 years) Conspiracy to receive stolen money (maximum 5 years) Receipt of stolen money (maximum 10 years) If convicted on all counts, each defendant could face up to 75 years in prison. The charges are currently allegations, and the defendants are presumed innocent unless proven guilty. U.S. and Ghana Law Enforcement Cooperation The extradition was the result of extensive collaboration between U.S. and Ghanaian authorities, including Ghana’s Economic and Organized Crime Office, the Ghana Police Service – INTERPOL, the Cyber Security Authority, and the National Intelligence Bureau. The U.S. Department of Justice’s Office of International Affairs and Ghana’s Attorney-General’s Office International Cooperation Unit played key roles in securing the extradition. U.S. Attorney Jay Clayton commended the joint effort, stating: “Offshore scammers should know that we, the FBI, and our law enforcement partners will work around the world to combat online fraud and bring perpetrators to justice.” The Growing Threat of Romance Scams and BEC Fraud Case  This case comes amid rising trends in cybercrime, particularly in romance scams and BEC fraud, both of which have been identified as high-impact crimes by the FBI’s Internet Crime Complaint Center (IC3). According to the FBI’s 2024 Internet Crime Report, losses from internet-enabled crimes reached $16 billion last year, a 33% increase from 2023. Romance scams continue to disproportionately target older Americans, often leading to devastating financial and emotional consequences. BEC schemes remain one of the most financially damaging cybercrimes, as attackers exploit human trust and business communication vulnerabilities to reroute legitimate payments. The FBI report highlights that in the past five years, IC3 recorded 4.2 million complaints with over $50.5 billion in total losses. Since its inception in 2000, IC3 has received more than 9 million complaints, illustrating the scale and persistence of online fraud. A Global Problem with Local Impact While this fraud ring was based in Ghana, its reach extended deep into U.S. communities, draining life savings from elderly individuals and disrupting legitimate business operations. Prosecutors say the extradition underlines a critical message: international borders are no protection for cybercriminals. This high-profile prosecution also signals a growing willingness among nations to cooperate in tackling cybercrime. Ghana’s decision to extradite its nationals reflects strengthening law enforcement ties and the recognition that cyber fraud is a global threat requiring a unified response. What Happens Next Boateng, Ahmed, and Van Yeboah will face federal court proceedings in New York, where prosecutors from the U.S. Attorney’s Office’s Complex Frauds and Cybercrime Unit will lead the case. Assistant U.S. Attorneys Kevin Mead and Mitzi Steiner are handling the prosecution. Asare, still at large, is the subject of an ongoing international manhunt, with law enforcement urging anyone with information on his whereabouts to come forward. Protecting Against Similar Cyber Scams Authorities continue to advise the public to exercise caution in online interactions, especially with individuals they have never met in person. Key preventive measures include: Verifying email requests for payments or sensitive data. Being cautious of unsolicited online relationships that escalate quickly. Avoiding sending money or personal information to unknown parties. Consulting trusted friends or family before making financial commitments. The FBI encourages victims of romance scams or BEC attacks to file a report through the IC3.gov portal as quickly as possible to increase the chances of recovering lost funds.

image for APT-Style Attacks Ex ...

 Firewall Daily

The Dutch National Cyber Security Centre (NCSC) has confirmed that a serious vulnerability in Citrix NetScaler systems, identified as CVE-2025-6543, has been exploited in targeted attacks against multiple critical organizations in the Netherlands. The exploitation began months before the vulnerability was publicly   show more ...

disclosed, and investigations indicate that attackers used advanced methods to evade detection.  Background and Timeline  According to the NCSC, exploitation of CVE-2025-6543 began as early as May 2025, rendering it a zero-day vulnerability at the time. On June 25, Citrix officially disclosed the vulnerability and released a patch; however, signs of compromise were already present in several systems prior to this date.  On July 16, the NCSC identified active exploitation of the vulnerability and launched a wider investigation. Findings have since confirmed that multiple Dutch organizations were affected.  Scope and Technical Details of CVE-2025-6543  The attacks targeted Citrix NetScaler ADC and NetScaler Gateway products. These are widely used to manage secure access to applications and internal networks, including remote work environments. The vulnerability allowed attackers to place malicious web shells on exposed systems, giving them remote control and persistent access even after the vulnerability was patched.  Three vulnerabilities are under investigation:  CVE-2025-6543 (confirmed exploited)  CVE-2025-5349  CVE-2025-5777  The latter two have not been confirmed as exploited in all environments but remain under scrutiny. Patching affected systems does not guarantee removal of the attacker, as access may have already been established.  Attack Methods  The actors behind the attacks used techniques to erase forensic traces from compromised systems. This has made post-incident investigations difficult. In many cases, there is uncertainty about whether the threat actor is still active or what data may have been accessed or exfiltrated.  Indicators of Compromise (IOCs) have been found, but the NCSC notes that each case requires deeper investigation to determine the extent of compromise. Organizations are expected to conduct their forensic analysis if suspicious activity is detected.  Risk and Response  The NCSC states that updating Citrix devices is not enough to remove the threat if a system has already been compromised. The attacker can retain access even after a patch is applied. As such, organizations should not assume that patching closes the incident.  Recommended actions include:  Conducting full forensic investigations if a compromise is suspected.  Implementing defense-in-depth security strategies.  Monitoring for new IOCs related to the Citrix vulnerability.  Reaching out to cert@ncsc.nl for technical assistance if compromise is confirmed.  Organizations that have not already done so should apply the security updates provided by Citrix and inspect their systems for signs of exploitation, including unauthorized access or web shells.  Conclusion   The exploitation of CVE-2025-6543 in Citrix NetScaler devices remains an active threat, with investigations continuing in collaboration with affected organizations, security firms, and response teams.   The full scope and impact are still unknown, as is the identity of those responsible, and it is likely that additional systems may have been compromised without detection.   Given the stealth and persistence demonstrated in these attacks, organizations should not assume that patching alone is sufficient and must take further steps to verify the security and integrity of their systems. 

image for BlackSuit Ransomware ...

 Ransomware News

The Department of Justice—backed by the FBI, U.S. Secret Service, Homeland Security Investigations (HSI), IRS Criminal Investigation, and a web of international partners—took decisive action on July 24, executing a coordinated takedown of the BlackSuit ransomware network. This included seizing four servers,   show more ...

shutting down nine domains, and confiscating over $1 million in cryptocurrency, according to a press release published on August 11. BlackSuit, previously known as Royal, rose from the ashes of Conti and quickly became one of the most aggressive double-extortion gangs. Analysts believe it has compromised over 450 organizations across the U.S.—spanning sectors such as healthcare, education, energy, and public safety—extorting upwards of $370 million in ransom payments. Labelled Operation Checkmate, the takedown extended beyond U.S. borders, with coordinated efforts involving law enforcement from the U.K., Germany, France, the Netherlands, Canada, Ukraine, Lithuania, and more. Europol helped orchestrate the broader campaign under its Joint Cyber Action Task Force. Also read: How BlackSuit Ransomware is Crippling Businesses: FBI, CISA Sound Alarm “The BlackSuit ransomware gang’s persistent targeting of U.S. critical infrastructure represents a serious threat to public safety,” said DOJ officials, underscoring that this disruption reflects a shift toward a “disruption-first” strategy in combating cybercrime. Private sector collaboration also played a pivotal role. The American Hospital Association issued praise, noting that while BlackSuit had wreaked havoc on hospitals and health systems, this takedown demonstrates the power of public–private alliances to stem such threats. This asset seizure is far more than a symbolic victory. It demonstrates that while cryptocurrencies may offer anonymity, they are not impregnable shields for cybercriminals. Still, the operation is not a knockout blow. Experts caution that without arrests or dismantling of the leadership, ransomware groups like BlackSuit can and often do rebound—leveraging their remaining financial assets to reconstitute infrastructure.

image for Sleepwalk: a sophist ...

 Business

Information security has multiple layers of complexity. Effective yet technically simple attacks through phishing emails and social engineering are well known about. We also often post about sophisticated targeted attacks that exploit vulnerabilities in enterprise software and services. And among the most   show more ...

sophisticated are attacks that exploit fundamental hardware features. Although such attacks arent cheap, the cost doesnt deter all threat actors. Or at least researchers. Researchers at two US universities recently published a paper with a fascinating example of an attack on hardware. Using the standard operating system feature for switching between tasks, the researchers developed an attack they named Sleepwalk, which can crack a cutting-edge data encryption algorithm. Side-channeling — sleep-walking Sleepwalk is a type of side-channel attack. In this context, side channel typically refers to any method of stealing secret information by indirect observation. For example, imagine someone is typing a password on a keyboard. You cant see the letters/symbols, but you can hear the keys being pressed. This is a feasible attack in which the sound of the keystrokes — the side channel — reveals what text is being typed. A classic example of a side channel is monitoring changes in the power consumption of a computer system. Why does power consumption vary? Simple: different computing tasks require different resources. Serious number crunching will max out the load on the CPU and RAM, while typing in a text editor will see the computer mostly idle. In some cases, changes in power consumption give away sensitive information, such as private keys for data encryption. This is similar to how a few barely audible clicks can reveal the correct rotor positions to pick the combination lock on a safe. Why are these attacks sophisticated? Because a computer performs multiple tasks simultaneously. And all of them affect power consumption in one way or another. Extracting useful information from this noise is a highly complex job. Even when analyzing the simplest devices such as smart card readers, researchers take hundreds of thousands of measurements in a short period, repeating them tens or hundreds of times, then apply sophisticated signal-processing methods to confirm or refute the possibility of a side-channel attack. Sleepwalk in a sense simplifies this work: the researchers were able to extract useful information by measuring the pattern of power consumption just once, during a so-called context switch. Voltage fluctuations during CPU context switching. Source Context switching Were all used to switching between programs on a computer or smartphone. At a deeper level, such multitasking is enabled by various mechanisms behind the scenes, one of which is context switching. The state of one program is saved, while data from another is loaded into the CPU. The decision on which program to give priority to, and when, is made by the operating system. That said, theres a simple way for a programmer to force a context switch by adding a sleep instruction to the program code. The operating system then sees that the program doesnt require CPU power for the time being, and switches to another task. Context switching, especially when the sleep function is called, is an energy-consuming activity that requires saving the state of one program and loading data from another into the CPU. The screenshot above shows a spike in the measured voltage during such a switch. As it turns out, the nature of this power spike is determined both by the task that was running before and by the data being processed. Essentially, the researchers hugely simplified implementing a side-channel attack in which the systems energy consumption is measured. Instead of measuring over a long period, a single spike is analyzed at a predetermined time. This serves up indirect data of two types: what program was running before the switch, and what data was being processed. All that remains is to carry out the attack according to the scheme below: Outline of the Sleepwalk attack Source Sleepwalk attack in the real world The researchers did their experiments on a single-board Raspberry Pi 4, demonstrating first of all that the power spike produced by different computing tasks during context switching has a unique fingerprint. Lets suppose that this computer is performing data encryption. We can feed any text to the encryption algorithm as input, but we dont know the key for encrypting the data. What if we trigger a context switch at a specific point in the encryption algorithms operation? The operating system will save the state of the program, causing a spike in power consumption. Using an oscilloscope to repeatedly measure the nature of this spike, the researchers were able to extract the secret key! That was just one of many important things learned in the experiment. They also succeeded in fully reconstructing a SIKE private key. The fairly new encryption algorithm SIKE is proposed as a replacement for traditional algorithms to protect data even in the quantum age. Yet despite its apparent innovativeness, questions are already being asked about the algorithms strength. Moreover, to extract the secret key, the researchers didnt just carry out a Sleepwalk attack, but also exploited a weakness in the algorithm itself. The Sleepwalk attack was unable to fully crack the traditional and reliable (but not post-quantum) AES-128 algorithm. But the team was able to reconstruct 10 of the 16 bytes of the private key — and this in itself is an achievement since Sleepwalk is somewhat simpler than other side-channel attack methods. Sure, theres no talk yet of deploying Sleepwalk in practice. The researchers merely wanted to demonstrate that power spikes during context switching can reveal secret information. Which they did. But bad guys one day might be able to develop the attack so as to steal real secrets — be they from a computer, secure flash drive, or crypto wallet. As result of this research, existing and in-development encryption algorithms should become a little more reliable. Not only that, the Sleepwalk attack indirectly points up a key aspect in the implementation of cryptographic systems. Future algorithms will need to be resistant to analysis using quantum computing (so-called post-quantum cryptography); but no less vitally, this will need to be done correctly. Otherwise, a new, theoretically more secure algorithm may turn out to be more vulnerable to traditional attacks than a pre-quantum one.

 Feed

The Dutch National Cyber Security Centre (NCSC-NL) has warned of cyber attacks exploiting a recently disclosed critical security flaw impacting Citrix NetScaler ADC products to breach organizations in the country. The NCSC-NL said it discovered the exploitation of CVE-2025-6543 targeting several critical organizations within the Netherlands, and that investigations are ongoing to determine the

 Feed

A previously undocumented threat actor dubbed Curly COMrades has been observed targeting entities in Georgia and Moldova as part of a cyber espionage campaign designed to facilitate long-term access to target networks. "They repeatedly tried to extract the NTDS database from domain controllers -- the primary repository for user password hashes and authentication data in a Windows network,"

 Feed

Most security tools can’t see what happens inside the browser, but that’s where the majority of work, and risk, now lives. Security leaders deciding how to close that gap often face a choice: deploy a dedicated Enterprise Browser or add an enterprise-grade control layer to the browsers employees already use and trust. The Ultimate Battle: Enterprise Browsers vs. Enterprise Browser Extensions

 Feed

New research has uncovered Docker images on Docker Hub that contain the infamous XZ Utils backdoor, more than a year after the discovery of the incident. More troubling is the fact that other images have been built on top of these infected base images, effectively propagating the infection further in a transitive manner, Binarly REsearch said in a report shared with The Hacker News. The firmware

 Feed

Cybersecurity researchers are warning of a "significant spike" in brute-force traffic aimed at Fortinet SSL VPN devices. The coordinated activity, per threat intelligence firm GreyNoise, was observed on August 3, 2025, with over 780 unique IP addresses participating in the effort. As many as 56 unique IP addresses have been detected over the past 24 hours. All the IP addresses have been

 Feed

An ongoing data extortion campaign targeting Salesforce customers may soon turn its attention to financial services and technology service providers, as ShinyHunters and Scattered Spider appear to be working hand in hand, new findings show. "This latest wave of ShinyHunters-attributed attacks reveals a dramatic shift in tactics, moving beyond the group's previous credential theft and database

 AI

In episode 63 of The AI Fix, Unitree Robotics looks to Black Mirror episode “Metalhead” for tips on marketing its new robot dog, ChatGPT is secretly running Sweden, OpenAI introduces its first open weight model since GPT-2, and your private and personal ChatGPT conversations could be all over Google. Plus, Mark   show more ...

cuts through the GPT-5 hype and asks - is it AGI or just a fancy purple background, and Graham looks at “deadbots” and a disturbing interview between Jim Acosta and an AI version of a teenager killed in a school shooting. All this and much more is discussed in the latest edition of "The AI Fix" podcast by Graham Cluley and Mark Stockley.

 Cyber Security News

Source: thehackernews.com – Author: . Cybersecurity researchers have discovered a fresh set of security issues in the Terrestrial Trunked Radio (TETRA) communications protocol, including in its proprietary end-to-end encryption (E2EE) mechanism that exposes the system to replay and brute-force attacks, and even   show more ...

decrypt encrypted traffic. Details of the vulnerabilities – dubbed 2TETRA:2BURST – were presented […] La entrada New TETRA Radio Encryption Flaws Expose Law Enforcement Communications – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: thehackernews.com – Author: . Malicious actors have been observed exploiting a now-patched critical security flaw impacting Erlang/Open Telecom Platform (OTP) SSH as early as beginning of May 2025, with about 70% of detections originating from firewalls protecting operational technology (OT) networks.   show more ...

The vulnerability in question is CVE-2025-32433 (CVSS score: 10.0), a missing authentication issue […] La entrada Researchers Spot Surge in Erlang/OTP SSH RCE Exploits, 70% Target OT Firewalls – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: thehackernews.com – Author: . This week, cyber attackers are moving quickly, and businesses need to stay alert. They’re finding new weaknesses in popular software and coming up with clever ways to get around security. Even one unpatched flaw could let attackers in, leading to data theft or even taking   show more ...

control of your systems. The […] La entrada ⚡ Weekly Recap: BadCam Attack, WinRAR 0-Day, EDR Killer, NVIDIA Flaws, Ransomware Attacks & More – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: thehackernews.com – Author: . The Evolution of Exposure Management Most security teams have a good sense of what’s critical in their environment. What’s harder to pin down is what’s business-critical. These are the assets that support the processes the business can’t function without. They’re   show more ...

not always the loudest or most exposed. They’re the ones […] La entrada 6 Lessons Learned: Focusing Security Where Business Value Lives – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Connex

Source: www.infosecurity-magazine.com – Author: A cyber-attack has compromised the personal and financial data of 172,000 individuals, Connex Credit Union confirmed last week. The intrusion took place between June 2 and 3 2025, and was detected on June 3. An investigation found that attackers may have accessed   show more ...

or downloaded sensitive files. Founded in 1940, Connex is one […] La entrada Connex Credit Union Breach Exposes 172,000 Members’ Data – Source: www.infosecurity-magazine.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.infosecurity-magazine.com – Author: A newly discovered vulnerability in WinRAR has been exploited in the wild by the Russia-aligned cyber group RomCom. According to an advisory published by ESET researchers earlier today, the flaw, tracked as CVE-2025-8088, allows attackers to conceal malicious   show more ...

files in an archive that are silently deployed during extraction. A patch was […] La entrada New WinRAR Zero-Day Exploited by RomCom Hackers – Source: www.infosecurity-magazine.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.lastwatchdog.com – Author: cybernewswire London, Aug. 11, 2025, CyberNewswire—A survey of 80 North American MSPs shows fragmented security stacks drive fatigue, missed threats, and business inefficiency Security tools meant to protect managed service providers are instead overwhelming them. A new   show more ...

study from Heimdal and FutureSafe reveals that 89% of MSPs struggle with tool integration […] La entrada News alert: New Heimdal study reveals tool overload is driving fatigue, missed threats in MSPs – Source: www.lastwatchdog.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.lastwatchdog.com – Author: cybernewswire Cary, NC, Aug. 11, 2025, CyberNewswire—INE has been selected for Training Industry’s 2025 Top 20 Online Learning Library Companies list, recognizing the company’s leadership in cybersecurity training, cybersecurity certifications, and IT training that   show more ...

emphasizes hands-on, practical learning experiences. Training Industry evaluated companies based on course quality and scope, market presence […] La entrada News alert: INE named among top providers of practical, career-ready cybersecurity training in 2025 – Source: www.lastwatchdog.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 black hat

Source: www.lastwatchdog.com – Author: bacohido By Byron V. Acohido Black Hat USA 2025 concluded amid a noticeable shift in tone. Compared to prior years, the discussions were more grounded, and the stakes more clearly defined. Related: GenAI security gaps few see While generative AI remained the central theme,   show more ...

what stood out was the growing consensus […] La entrada MY TAKE: Black Hat 2025 vendors define early contours for a hard pivot to AI security architecture – Source: www.lastwatchdog.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 cars

Source: www.schneier.com – Author: Bruce Schneier HomeBlog Comments Safety first • August 11, 2025 7:28 AM If they want to keep children safe, lower the speed limits around schools and make those automatic license place readers part of a speed camera system. One of the major threats school children face is   show more ...

stressed parents driving their […] La entrada Automatic License Plate Readers Are Coming to Schools – Source: www.schneier.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: securityboulevard.com – Author: Marc Handelman via the cosmic humor & dry-as-the-desert wit of Randall Munroe, creator of XKCD Permalink The post Randall Munroe’s XKCD ‘Kite Incident’ appeared first on Security Boulevard. Original Post URL: https://securityboulevard.   show more ...

com/2025/08/randall-munroes-xkcd-kite-incident/?utm_source=rss&utm_medium=rss&utm_campaign=randall-munroes-xkcd-kite-incident Category & Tags: Humor,Security Bloggers Network,Randall Munroe,Sarcasm,satire,XKCD – Humor,Security Bloggers Network,Randall Munroe,Sarcasm,satire,XKCD Views: 1 La entrada Randall Munroe’s XKCD ‘Kite Incident’ – Source: securityboulevard.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 2025

Source: securityboulevard.com – Author: Jenna Knoblauch  IRONSCALES is thrilled to announce that it has once again been recognized by G2, earning multiple Summer 2025 badges that reflect customers’ satisfaction and the platform’s market impact.  The post IRONSCALES Scores Big in G2 Summer 2025 Awards   show more ...

appeared first on Security Boulevard. Original Post URL: https://securityboulevard.com/2025/08/ironscales-scores-big-in-g2-summer-2025-awards/?utm_source=rss&utm_medium=rss&utm_campaign=ironscales-scores-big-in-g2-summer-2025-awards Category & […] La entrada IRONSCALES Scores Big in G2 Summer 2025 Awards – Source: securityboulevard.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: securityboulevard.com – Author: Tiexin Guo Discover EKS Pod Identity Association—the modern, secure way to grant AWS permissions without the operational overhead of OIDC providers. No more duplicated IAM roles across clusters, no more trust policy updates every time you scale. The post How to Securely   show more ...

Access AWS from your EKS Cluster appeared first on […] La entrada How to Securely Access AWS from your EKS Cluster – Source: securityboulevard.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 All things Heimdal

Source: heimdalsecurity.com – Author: Madalina Popovici COPENHAGEN, Denmark  – August 11, 2025 – Security tools meant to protect managed service providers are instead overwhelming them. A new study from Heimdal and FutureSafe reveals that 89% of MSPs struggle with tool integration while 56% experience   show more ...

alert fatigue daily or weekly. The research exposes a dangerous paradox. […] La entrada Agent Fatigue Crisis Hits 89% of MSPs as Security Tools Backfire – Source: heimdalsecurity.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 1 - Cyber Security News Post

Source: hackread.com – Author: Deeba Ahmed. A security vulnerability in a major carmaker’s online portal exposed customer data and could have let hackers remotely unlock vehicles. Read about the “security nightmare” and get tips to protect your car from tracking. A new security vulnerability in a major   show more ...

car manufacturer’s online system has been discovered, exposing […] La entrada Carmaker Portal Flaw Could Let Hackers Unlock Cars, Steal Data – Source:hackread.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 1 - Cyber Security News Post

Source: hackread.com – Author: Deeba Ahmed. Three Ghanaian men have been extradited to the US over $100 million fraud involving romance scams and business email compromise targeting individuals and companies. The FBI and the Department of Justice (DoJ) have announced the extradition of three Ghanaian nationals   show more ...

accused of being part of a large-scale criminal operation. […] La entrada Ghanaian Nationals Extradited to US Over $100M, BEC, Romance Scams – Source:hackread.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: thehackernews.com – Author: . The Dutch National Cyber Security Centre (NCSC-NL) has warned of cyber attacks exploiting a recently disclosed critical security flaw impacting Citrix NetScaler ADC products to breach organizations in the country. The NCSC-NL said it discovered the exploitation of   show more ...

CVE-2025-6543 targeting several critical organizations within the Netherlands, and that investigations are […] La entrada Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 'Cyber

Source: levelblue.com – Author: hello@alienvault.com. In 2024, the average cost of an insider threat incident reached $17.4 million.[1] When you consider that these types of incidents happen daily, it becomes clear that we’re facing a frequent and expensive danger. So, what is an insider threat? Today, it   show more ...

means much more than a data leak; it’s […] La entrada What Is an Insider Threat? – Source:levelblue.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.infosecurity-magazine.com – Author: A hacker involved in the supply chain attack that targeted IT service provider Kaseya in July 2021 has claimed that he was coerced by the Russian government. Yaroslav Vasinskyi, a former affiliate of the REvil ransomware syndicate known as ‘Rabotnik,’ serves a   show more ...

sentence of over 13 years in US federal prison […] La entrada Hacker Alleges Russian Government Role in Kaseya Cyber-Attack – Source: www.infosecurity-magazine.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.infosecurity-magazine.com – Author: A new technique has been documented that can bypass GPT-5’s safety systems, demonstrating that the model can be led toward harmful outputs without receiving overtly malicious prompts. The method, tested by security researchers at NeuralTrust, combines the Echo   show more ...

Chamber attack with narrative-driven steering to gradually guide responses while avoiding detection. The approach […] La entrada GPT-5 Safeguards Bypassed Using Storytelling-Driven Jailbreak – Source: www.infosecurity-magazine.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.infosecurity-magazine.com – Author: More than 29,000 Microsoft Exchange servers exposed to the internet have remained unpatched against a high-severity vulnerability that could allow attackers to seize control of entire domains in hybrid cloud environments. The flaw, tracked as CVE-2025-53786,   show more ...

affects Exchange Server 2016, Exchange Server 2019 and Microsoft Exchange Server Subscription Edition. It enables […] La entrada 29,000 Servers Remain Unpatched Against Microsoft Exchange Flaw – Source: www.infosecurity-magazine.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.infosecurity-magazine.com – Author: An active phishing campaign is impersonating the Home Office to compromise UK organizations licensed to sponsor foreign workers and students. The sophisticated campaign, which closely mimics official UK Home Office communications and web pages, aims to compromise   show more ...

sponsor license holders’ Sponsorship Management System (SMS) credentials. The compromised credentials are used to […] La entrada Home Office Phishing Scam Targets UK Immigration Sponsors – Source: www.infosecurity-magazine.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.infosecurity-magazine.com – Author: Initial access broker services are a booming dark web market, with threat actors able to purchase a variety of options at low cost, according to a new Rapid7 report. Over a third (39%) of sales of these services, which provide customers with access to already   show more ...

compromised networks, are grouped in the […] La entrada Cybercriminals Exploit Low-Cost Initial Access Broker Market – Source: www.infosecurity-magazine.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

2025-08
Aggregator history
Tuesday, August 12
FRI
SAT
SUN
MON
TUE
WED
THU
AugustSeptember