that

Defend what matters: Introducing Sophos Endpoint for Legacy Platforms

AndyC 5 September 2025

Legacy operating systems that have reached end-of-support often lack security features and updates that are present in newer systems, making...

Hacking

New HTTPBot Botnet Launches 200+ Precision DDoS Attacks on Gaming and Tech Sectors

AndyC 17 May 2025

Cybersecurity researchers are calling attention to a new botnet malware called HTTPBot that has been used to primarily single out...

Hacking

Researchers Expose New Intel CPU Flaws Enabling Memory Leaks and Spectre v2 Attacks

AndyC 17 May 2025

Researchers at ETH Zürich have discovered yet another security flaw that they say impacts all modern Intel CPUs and causes...

Hacking

Fileless Remcos RAT Delivered via LNK Files and MSHTA in PowerShell-Based Attacks

AndyC 17 May 2025

Cybersecurity researchers have shed light on a new malware campaign that makes use of a PowerShell-based shellcode loader to deploy...

Operation RoundPress

AndyC 16 May 2025

This blogpost introduces an operation that we named RoundPress, targeting high-value webmail servers with XSS vulnerabilities, and that we assess...

Amazon invents another robot — this time with feeling!

Ivanti Endpoint Manager Mobile Authentication Bypass and Remote Code Execution Vulnerability (CVE-2025-4427/CVE-2025-4428)

AndyC 16 May 2025

Recently, NSFOCUS CERT detected that Ivanti issued a security advisory to fix the authentication bypass and remote code execution vulnerabilities...

Google fixed a Chrome vulnerability that could lead to full account takeover

AndyC 16 May 2025

Google fixed a Chrome vulnerability that could lead to full account takeover Pierluigi Paganini May 16, 2025 Google released emergency...

RSA 2025: AI’s Promise vs. Security’s Past — A Reality Check”

AndyC 16 May 2025

RSA 2025: AI’s Promise vs. Security’s Past — A Reality Check Ah, RSA. That yearly theater (Carnival? Circus? Orgy? Got any better synonyms,...

Hacking

Coinbase Agents Bribed, Data of ~1% Users Leaked; $20M Extortion Attempt Fails

AndyC 16 May 2025

Cryptocurrency exchange Coinbase has disclosed that unknown cyber actors broke into its systems and stole account data for a small...

Google DeepMind’s AlphaEvolve: AI That Writes Code and Saves Costs

AndyC 15 May 2025

AlphaEvolve: Google’s AI for Algorithm Discovery Google DeepMind has introduced AlphaEvolve, an innovative AI that creates new algorithms. This agent...

CDAOs might be key to genAI success now — but that could change

LegoGPT: AI Transforms Text Prompts into Stable LEGO Structures

AndyC 15 May 2025

Researchers at Carnegie Mellon University have developed LegoGPT, an AI system that generates physically stable and buildable LEGO structures from...

89 Million Steam Accounts Compromised: Change Your Password Now

AndyC 15 May 2025

Data Breach Impacting 89 Million Steam Accounts A recent report indicates that the details of 89 million Steam accounts may...

Keep It Real: How McAfee Is Using AI to Fight AI—and End Scam Stigma

AndyC 15 May 2025

Was that spinning head a mistake—or the whole point? When McAfee dropped a new digital ad showing a woman lounging...

Hacking

Fortinet Patches CVE-2025-32756 Zero-Day RCE Flaw Exploited in FortiVoice Systems

AndyC 14 May 2025

Fortinet has patched a critical security flaw that it said has been exploited as a zero-day in attacks targeting FortiVoice...

NHIs Solutions Tailored to Handle Your Needs

AndyC 14 May 2025

Why is the Strategic Management of NHIs Essential? How do we ensure that our cybersecurity measures keep pace? Non-Human Identities...

that

Defend what matters: Introducing Sophos Endpoint for Legacy Platforms

New HTTPBot Botnet Launches 200+ Precision DDoS Attacks on Gaming and Tech Sectors

Researchers Expose New Intel CPU Flaws Enabling Memory Leaks and Spectre v2 Attacks

Fileless Remcos RAT Delivered via LNK Files and MSHTA in PowerShell-Based Attacks

Ivanti Endpoint Manager Mobile Authentication Bypass and Remote Code Execution Vulnerability (CVE-2025-4427/CVE-2025-4428)

Google fixed a Chrome vulnerability that could lead to full account takeover

RSA 2025: AI’s Promise vs. Security’s Past — A Reality Check”

Coinbase Agents Bribed, Data of ~1% Users Leaked; $20M Extortion Attempt Fails

Google DeepMind’s AlphaEvolve: AI That Writes Code and Saves Costs

LegoGPT: AI Transforms Text Prompts into Stable LEGO Structures

89 Million Steam Accounts Compromised: Change Your Password Now

Keep It Real: How McAfee Is Using AI to Fight AI—and End Scam Stigma

Fortinet Patches CVE-2025-32756 Zero-Day RCE Flaw Exploited in FortiVoice Systems

LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan

ESET Threat Report H2 2025

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Black Hat Europe 2025: Was that device designed to be on the internet at all?

Donate Bitcoin to this address

Donate Ethereum to this address

Weekly Update 483

Russia was behind a destructive cyber attack on a water utility in 2024, Denmark says

Russia-Linked Hackers Use Microsoft 365 Device Code Phishing for Account Takeovers

Microsoft 365 accounts targeted in wave of OAuth phishing attacks

State-linked and criminal hackers use device code phishing against M365 users

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed