SecurityWeek2d
Oracle Confirms Cloud Hack
Oracle has confirmed suffering a data breach but the tech giant is apparently trying to downplay the impact of the incident.
SecurityWeek3d
Chinese APT Pounces on Misdiagnosed RCE in Ivanti VPN Appliances
Ivanti misdiagnoses a remote code execution vulnerability and Mandiant reports that Chinese hackers are launching in-the-wild ...
SecurityWeek6d
Hacker Leaks Samsung Customer Data
Hacker leaks 270,000 customer tickets allegedly stolen from Samsung Germany using long-compromised credentials.
SecurityWeek3d
Vulnerabilities Expose Cisco Meraki and ECE Products to DoS Attacks
Cisco fixes two high-severity denial-of-service vulnerabilities in Meraki devices and Enterprise Chat and Email.
SecurityWeek3d
Two CVEs, One Critical Flaw: Inside the CrushFTP Vulnerability Controversy
Two CVEs now exist for an actively exploited CrushFTP vulnerability and much of the security industry is using the ‘wrong one ...
SecurityWeek5d
CrushFTP Blames Security Firms for Fast Exploitation of Vulnerability
Shadowserver has started seeing exploitation attempts aimed at a CrushFTP vulnerability tracked as CVE-2025-2825 and CVE-2025 ...
SecurityWeek6d
Zero to Hero – A “Measured” Approach to Building a World-Class Offensive Security Program
How organizations can gauge the readiness and maturity of their security programs to make testing of all types as impactful ...
SecurityWeek12d
Hacker Conversations: Frank Trezza – From Phreaker to Pentester
Interview with Frank Trezza, who is fairly typical of most hackers. Early pranks sometimes leading to something more serious.
SecurityWeek3d
Hunters International Ransomware Gang Rebranding, Shifting Focus
The notorious cybercrime group Hunters International is dropping ransomware to focus on data theft and extortion.
SecurityWeek5d
Hackers Could Unleash Chaos Through Backdoor in China-Made Robot Dogs
The undocumented tunnel allows remote control all robot dogs on the tunnel network and use the vision cameras to see through ...
SecurityWeek4d
North Korea’s IT Operatives Are Exploiting Remote Work Globally
North Korean IT workers expand operations in Europe, using fake identities, freelance platforms, and extortion to infiltrate ...
SecurityWeek5d
Microsoft Using AI to Uncover Critical Bootloader Vulnerabilities
Using the Security Copilot tool, Microsoft discovered 20 critical vulnerabilities in widely deployed open-source bootloaders.