cyber
Years-old bugs in open source took out major clouds at risk • The Register
https://www.theregister.com/2025/11/24/fluent_bit_cves/
Added 3 weeks ago
Shai-Hulud Returns: Over 300 NPM Packages Infected
https://helixguard.ai/blog/malicious-sha1hulud-2025-11-24
Added 3 weeks ago
Researchers discover security vulnerability in WhatsApp
https://www.univie.ac.at/en/news/detail/forscherinnen-entdecken-grosse-sicherheitsluecke-in-whatsapp
Added 3 weeks ago
Azure hit by 15 Tbps DDoS attack using 500k IP addresses
https://www.bleepingcomputer.com/news/microsoft/microsoft-aisuru-botnet-used-500-000-ips-in-15-tbps-azure-ddos-attack/
Added 4 weeks ago
Azure hit by 15 Tbps DDoS attack using 500k IP addresses
https://techcommunity.microsoft.com/blog/azureinfrastructureblog/defending-the-cloud-azure-neutralized-a-record-breaking-15-tbps-ddos-attack/4470422
Added 4 weeks ago
sudo-rs Affected By Multiple Security Vulnerabilities - Impacting Ubuntu 25.10 - Phoronix
https://www.phoronix.com/news/sudo-rs-security-ubuntu-25.10
Added 1 month ago
FFmpeg to Google: Fund us or stop sending bugs
https://thenewstack.io/ffmpeg-to-google-fund-us-or-stop-sending-bugs/
Added 1 month ago
Inside the breach that broke the internet: The untold story of Log4Shell - The GitHub Blog
https://github.blog/open-source/inside-the-breach-that-broke-the-internet-the-untold-story-of-log4shell/
Added 1 month ago
MCP-Scanner – Scan MCP Servers for vulnerabilities
https://github.com/cisco-ai-defense/mcp-scanner
Added 1 month ago
OpenSSH Vulnerability Exploited Via ProxyCommand to Execute Remote Code
https://cybersecuritynews.com/openssh-vulnerability-proxycommand/
Added 2 months ago
Introducing CodeMender: an AI agent for code security - Google DeepMind
https://deepmind.google/discover/blog/introducing-codemender-an-ai-agent-for-code-security/
Added 2 months ago
Red Hat data breach escalates as ShinyHunters joins extortion
https://www.bleepingcomputer.com/news/security/red-hat-data-breach-escalates-as-shinyhunters-joins-extortion/
Added 2 months ago
Almost 1 billion Salesforce records stolen, hacker group claims
https://www.reuters.com/sustainability/boards-policy-regulation/almost-1-billion-salesforce-records-stolen-hacker-group-claims-2025-10-03/
Added 2 months ago
Discord customer service data breach leaks user info and scanned photo IDs | The Verge
https://www.theverge.com/news/792032/discord-customer-service-data-breach-hack
Added 2 months ago
From MCP to shell: MCP auth flaws enable RCE in Claude Code, Gemini CLI and more
https://verialabs.com/blog/from-mcp-to-shell/
Added 2 months ago
One Token to rule them all - obtaining Global Admin in every Entra ID tenant via Actor tokens - dirkjanm.io
https://dirkjanm.io/obtaining-global-admin-in-every-entra-id-tenant-with-actor-tokens/
Added 2 months ago
The Critical Flaw in CVE Scoring
https://www.darkreading.com/vulnerabilities-threats/critical-flaw-cve-scoring
Added 4 months ago
Poor Passwords Tattle on AI Hiring Bot Maker Paradox.ai – Krebs on Security
https://krebsonsecurity.com/2025/07/poor-passwords-tattle-on-ai-hiring-bot-maker-paradox-ai/
Added 4 months ago
@bagder.mastodon.social.ap.brid.gy on Bluesky
https://bsky.app/profile/bagder.mastodon.social.ap.brid.gy/post/3ltodxecunfy2
Added 5 months ago
China breaks RSA encryption with a quantum computer - Earth.com
https://www.earth.com/news/china-breaks-rsa-encryption-with-a-quantum-computer-threatening-global-data-security/
Added 5 months ago
Defending the Internet: how Cloudflare blocked a monumental 7.3 Tbps DDoS attack
https://blog.cloudflare.com/defending-the-internet-how-cloudflare-blocked-a-monumental-7-3-tbps-ddos/
Added 5 months ago
Scammers impersonating the ASD's ACSC | Cyber.gov.au
https://www.cyber.gov.au/about-us/view-all-content/alerts-and-advisories/email-scammers-impersonating-asds-acsc
Added 6 months ago
Designing Blue Team playbooks with Wazuh for proactive incident response
https://www.bleepingcomputer.com/news/security/designing-blue-team-playbooks-with-wazuh-for-proactive-incident-response/
Added 6 months ago