SecurityWeek2d
Oracle Confirms Cloud Hack
Oracle has confirmed suffering a data breach but the tech giant is apparently trying to downplay the impact of the incident.
SecurityWeek3d
Chinese APT Pounces on Misdiagnosed RCE in Ivanti VPN Appliances
Ivanti misdiagnoses a remote code execution vulnerability and Mandiant reports that Chinese hackers are launching in-the-wild ...
SecurityWeek3d
Vulnerabilities Expose Cisco Meraki and ECE Products to DoS Attacks
Cisco fixes two high-severity denial-of-service vulnerabilities in Meraki devices and Enterprise Chat and Email.
SecurityWeek3d
Two CVEs, One Critical Flaw: Inside the CrushFTP Vulnerability Controversy
Two CVEs now exist for an actively exploited CrushFTP vulnerability and much of the security industry is using the ‘wrong one ...
SecurityWeek6d
Hacker Leaks Samsung Customer Data
Hacker leaks 270,000 customer tickets allegedly stolen from Samsung Germany using long-compromised credentials.
SecurityWeek6d
Zero to Hero – A “Measured” Approach to Building a World-Class Offensive Security Program
How organizations can gauge the readiness and maturity of their security programs to make testing of all types as impactful ...
SecurityWeek5d
CrushFTP Blames Security Firms for Fast Exploitation of Vulnerability
Shadowserver has started seeing exploitation attempts aimed at a CrushFTP vulnerability tracked as CVE-2025-2825 and CVE-2025 ...
SecurityWeek3d
Hunters International Ransomware Gang Rebranding, Shifting Focus
The notorious cybercrime group Hunters International is dropping ransomware to focus on data theft and extortion.
SecurityWeek4d
North Korea’s IT Operatives Are Exploiting Remote Work Globally
North Korean IT workers expand operations in Europe, using fake identities, freelance platforms, and extortion to infiltrate ...
SecurityWeek5d
Hackers Could Unleash Chaos Through Backdoor in China-Made Robot Dogs
The undocumented tunnel allows remote control all robot dogs on the tunnel network and use the vision cameras to see through ...
SecurityWeek3d
39 Million Secrets Leaked on GitHub in 2024
GitHub has announced new capabilities to help organizations and developers keep secrets in their code protected.
SecurityWeek4d
Google Brings End-to-End Encrypted Emails to All Enterprise Gmail Users
Gmail now allows enterprise users to send end-to-end encrypted emails to colleagues, and will soon allow sending to any inbox ...