Google warns of Cl0p extortion campaign against Oracle E-Business users
Google warns of Cl0p extortion campaign against Oracle E-Business users Pierluigi Paganini October 03, 2025 Google observed Cl0p ransomware group...
Security
Oracle Extortion Case: $50M Demand From ‘Notorious’ Hacking Group
Image: Adobe Stock A recent incident involving Oracle’s E-Business Suite has led to extortion attempts against executives at multiple large...
Microsoft Unveils 365 Premium, Its New Top-Tier AI and Productivity Bundle
Image: Microsoft Microsoft has launched Microsoft 365 Premium, a new subscription plan that blends its well-known Office apps with advanced...
CERT-UA warns UAC-0245 targets Ukraine with CABINETRAT backdoor
CERT-UA warns UAC-0245 targets Ukraine with CABINETRAT backdoor Pierluigi Paganini October 02, 2025 CERT-UA warns UAC-0245 targets Ukraine with CABINETRAT...
Allianz Life data breach impacted 1.5 Million people
Allianz Life data breach impacted 1.5 Million people Pierluigi Paganini October 02, 2025 Allianz Life breach exposed data of 1.5M...
Humanoid Robots are Walking Trojan Horses — And They’re Already in the Workplace
A new study reveals severe security flaws in the Unitree G1 humanoid robot, exposing risks from Bluetooth backdoors to hidden...
Survey Surfaces Extent to Which Cybersecurity Teams Are Drowning in Alerts
A new Illumio survey shows 67% of security teams face 2,000+ daily alerts, fueling fatigue and missed threats. AI/ML seen...
Microsoft Launches Security Store to Unify AI-Powered Defense Tools
Microsoft Security Store Source: Microsoft Microsoft has introduced its Security Store, a new commercial marketplace for security solutions and AI...
DeepSeek AI Models Are Easier to Hack Than US Rivals, Warn Researchers
Image: Solen Feyissa/Unsplash China’s DeepSeek AI has come under fire after a U.S. government-backed evaluation found the models struggling on...
Automating Pentest Delivery: 7 Key Workflows for Maximum Impact
Penetration testing is critical to uncovering real-world security weaknesses. With the shift into continuous testing and validation, it is time...
OpenSSL patches 3 vulnerabilities, urging immediate updates
OpenSSL patches 3 vulnerabilities, urging immediate updates Pierluigi Paganini October 01, 2025 OpenSSL updates addressed 3 flaws enabling key recovery,...
Smashing Security podcast #437: Salesforce’s trusted domain of doom
Researchers uncovered a security flaw in Salesforce’s shiny new Agentforce. The vulnerability, dubbed “ForcedLeak”, let them smuggle AI-read instructions in...
What Does the Government Shutdown Mean for Cybersecurity?
Image: Bill Chizek/Adobe Stock On Oct. 1, the US federal government shut down after Congress failed to pass funding for...
The AI Exchange: Innovators in Payment Security Featuring Elavon Inc.
Welcome to the PCI Security Standards Council’s blog series, The AI Exchange: Innovators in Payment Security. This special, ongoing feature...
OneLogin Bug Let Attackers Use API Keys to Steal OIDC Secrets and Impersonate Apps
Oct 01, 2025Ravie LakshmananVulnerability / API Security A high-severity security flaw has been disclosed in the One Identity OneLogin Identity...
