📡 NEWS PROCESSOR

pub-andromeda.oasis // 10000 artículos // v0.3
total: 10000
mostrando: 150
🥇 gold: 2282
✅ reliable: 5140
⚠️ mixed: 2218
🚫 caution: 360
70
fiabilidad
Krebs on Security GOLD 9.0 ciberseguridad Wed, 10 Jun 2026 14:03:44
A cybercrime group known as The Gentlemen has emerged as the second most active ransomware gang by victim count, rapidly attracting a talented pool of hackers through an aggressive recruitment strategy that promises affiliates 90 percent of any ransom paid by victims. This post examines clues pointi…
96
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad ✓ 5 fuentes Tue, 07 Jul 2026 15:24:30
The flaw allows an unauthenticated attacker to craft a GitHub Issue in an org's public repository and then silently pull data from its private repos, too.
agrupados por: github · private · agentic · gitlost · leaking · workflows
97
fiabilidad
Phoronix RELIABLE 7.0 tecnología ✓ 22 fuentes 📊 datos Sun, 05 Jul 2026 06:42:40
One month ago it was exciting to see the open-source ReactOS operating system running Valve's Half-Life game. Little to realize less than 30 days later it would also be running Half-Life 2...
agrupados por: open · source
87
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes 📊 datos Mon, 06 Jul 2026 17:00:02
Building a shortlist for an AI SOC evaluation can be tough. SIEM, SOAR, and pureplay AI SOC vendors are all saying the same thing. But behind the identical label sit very different products, from chat assistants bolted onto a legacy SIEM to agent platforms that run detection, triage, investigation, …
agrupados por: platform
97
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad ✓ 81 fuentes 📊 datos Thu, 02 Jul 2026 11:01:48
Anthropic said Tuesday night that its AI model called Claude Fable 5 is now widely available. The post Trump Administration Lifts Restrictions on Anthropic’s Claude Models After Cybersecurity Alarm appeared first on SecurityWeek.
agrupados por: administration · lifts · openai · restrictions
96
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad ✓ 9 fuentes 📊 datos Thu, 09 Jul 2026 06:45:22
The Spanish startup has closed an extended pre-seed funding round two months after launching its digital identity protection platform. The post 8Layers Raises $2.9 Million for Identity Security Platform appeared first on SecurityWeek.
85
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad ✓ 3 fuentes 📊 datos Thu, 09 Jul 2026 07:27:59
The security refresh resolves 13 use-after-free bugs, including two critical-severity flaws found by Google. The post Chrome 150 Update Patches 27 Vulnerabilities appeared first on SecurityWeek.
73
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad ✓ 2 fuentes Thu, 09 Jul 2026 08:52:21
Wiz has disclosed the details of a new AI coding assistant attack method it has dubbed GhostApproval. The post AI Coding Tools Tricked Into Hacking Developer Machine via Decades-Old Technique appeared first on SecurityWeek.
95
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad ✓ 11 fuentes Thu, 09 Jul 2026 10:06:18
Hackers accessed the institution’s internal network and deleted two drives containing employee, student, and university data. The post Mount Royal University Confirms Data Stolen in Ransomware Attack appeared first on SecurityWeek.
agrupados por: attack · confirms · mount · royal · university
97
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 9 fuentes 📊 datos Thu, 09 Jul 2026 01:42:49
Microsoft has released a security patch to address a Defender zero-day vulnerability known as "RoguePlanet," disclosed after the June 2026 Patch Tuesday. [...]
agrupados por: microsoft · rogueplanet · defender · patches · vulnerability · zero
96
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad ✓ 7 fuentes 📊 datos Thu, 09 Jul 2026 11:52:35
Affecting every major distribution since 2011, the Linux kernel vulnerability allows attackers to gain root access. The post 15-Year-Old Linux Vulnerability ‘GhostLock’ Earns Researchers $92k From Google appeared first on SecurityWeek.
agrupados por: ghostlock · google · vulnerability
97
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 9 fuentes 📊 datos Thu, 09 Jul 2026 03:47:16
American insurance company AssuranceAmerica has disclosed a data breach impacting nearly 7 million drivers after attackers gained access to its systems earlier this year.  [...]
agrupados por: breach · million · impacted · kddi · telco
95
fiabilidad
The Register RELIABLE 7.5 tecnología ✓ 14 fuentes Fri, 03 Jul 2026 00:47:46
MeetingTV wants to see the evidence
agrupados por: alto · palo · networks · startup
97
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad ✓ 9 fuentes 📊 datos Thu, 09 Jul 2026 14:19:53
Two announcements on July 7, 2026, demonstrate the government’s determination to improve the level of cybersecurity within the UK. The post UK Government Rolls Out Agentic AI Defense Plan Alongside Industry Pledge appeared first on SecurityWeek.
96
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad ✓ 9 fuentes 📊 datos Thu, 09 Jul 2026 15:03:51
The Israeli company has developed a cryptographic posture and post-quantum cryptography management platform. The post QIZ Security Raises $17 Million for Cryptographic Governance Platform appeared first on SecurityWeek.
96
fiabilidad
CyberScoop RELIABLE 7.5 ciberseguridad ✓ 8 fuentes Tue, 07 Jul 2026 09:00:00
Proofpoint researchers said attackers targeted physics and engineering departments, and warn that the campaign is likely ongoing. The post Suspected Chinese espionage group used a Roundcube exploit chain to burrow into universities appeared first on CyberScoop.
agrupados por: chinese · roundcube · suspected · universities
94
fiabilidad
CyberScoop RELIABLE 7.5 ciberseguridad ✓ 6 fuentes Tue, 07 Jul 2026 20:17:55
Two new alleged victims detailed how Grok was used by friends and family to generate sexual images of them as minors. The suit also adds Stability AI as a defendant. The post Deepfake CSAM lawsuit against xAI, Grok expands appeared first on CyberScoop.
95
fiabilidad
CyberScoop RELIABLE 7.5 ciberseguridad ✓ 9 fuentes Tue, 07 Jul 2026 21:57:05
Authorities didn’t name the man or file formal charges, but accuse him of participating in attacks linked to Cyber Army of Russia Reborn and NoName. The post Spain arrests suspected hacker linked to Russian hacktivist campaign appeared first on CyberScoop.
85
fiabilidad
CyberScoop RELIABLE 7.5 ciberseguridad 📎 bien sourced Wed, 08 Jul 2026 09:00:00
The government's new AI clearinghouse risks becoming a committee that discovers more problems than it solves — unless it's designed around patching, not just scanning. The post Found fast, fixed slow: The gap the AI clearinghouse must close appeared first on CyberScoop.
94
fiabilidad
CyberScoop RELIABLE 7.5 ciberseguridad ✓ 6 fuentes Wed, 08 Jul 2026 18:15:29
One of the project’s top goals is stitching together an international, quick response coalition of governments, businesses and civil experts for AI-related threats. The post French nonprofit starts global intelligence and research hub for AI cyber threats  appeared first on CyberScoop.
96
fiabilidad
CyberScoop RELIABLE 7.5 ciberseguridad ✓ 11 fuentes 📊 datos Thu, 09 Jul 2026 14:34:31
Alexis Chavez coerced multiple girls to commit self harm and produce child sexual abuse material for notoriety in a sprawling violent extremist collective affiliated with the Com. The post 764 splinter group leader sentenced to 40 years in jail appeared first on CyberScoop.
84
fiabilidad
CyberScoop RELIABLE 7.5 ciberseguridad ✓ 3 fuentes 📊 datos Thu, 09 Jul 2026 17:22:15
The anti-fraud crackdown, dubbed Operation First Light, identified more than 142,000 victims of various social-engineering scams. The post Interpol cybercrime crackdown nets 5,800 arrests across 97 countries appeared first on CyberScoop.
97
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 55 fuentes 📊 datos Thu, 02 Jul 2026 21:37:09
Anthropic says Claude Fable 5 won't be accessible via Claude subscriptions after July 7, but it's not a permanent change, and the company expects the model to return outside the usage-based plan soon. [...]
agrupados por: anthropic · claude
90
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes Thu, 09 Jul 2026 12:51:06
Meta has announced that its new artificial intelligence (AI) model Muse Image lets people use public Instagram posts and reels to generate AI content, and it's enabled by default. "You can also @-mention Instagram accounts in the Meta AI app to bring specific Instagram profiles right into your imag…
agrupados por: instagram · meta · photos
88
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 5 fuentes Wed, 08 Jul 2026 16:51:07
An AI coding assistant that refuses to answer a dangerous request in its chat box can answer it anyway if the same request is broken into small, ordinary-looking steps inside a code editor. That is the finding of a new study of GitHub Copilot by researchers Abhishek Kumar and Carsten Maple. The mod…
agrupados por: code · copilot · github · harmful
94
fiabilidad
TechCrunch MIXED 6.5 tecnología ✓ 6 fuentes 📊 datos Mon, 06 Jul 2026 15:32:43
Microsoft cut around 4,800 roles, or 2.1% of its global workforce, on Monday — the latest in a series of layoffs that’s stoking fears of AI replacing jobs. The layoffs will hit Xbox and commercial sales the hardest.
agrupados por: microsoft · light · nearly
95
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 26 fuentes Thu, 09 Jul 2026 13:00:00
Microsoft says Windows users should expect to see an increase in security updates as the company increasingly relies on artificial intelligence to discover vulnerabilities in its codebase. [...]
agrupados por: security · updates
74
fiabilidad
Risky Business RELIABLE 8.0 ciberseguridad 📊 datos Wed, 10 Jun 2026 16:35:18
On this week’s show special guest co-host Chris Wade, the founder of Corellium turned Cellebrite CTO, joins Patrick Gray and James Wilson to discuss the week’s cybersecurity news. They cover: Microsoft has repos owned, GitHub tokens popped, and a new 0day dropped on them Meanwhile, researcher…
80
fiabilidad
Risky Business RELIABLE 8.0 ciberseguridad 📎 bien sourced Wed, 08 Jul 2026 14:51:09
In this wholly sponsored Soap Box edition of the podcast Patrick Gray chats with Damien Lewke, the CEO and founder of Nebulock, about the future of threat hunting and detection. Damien spent a decade in the EDR and MDR space before founding Nebulock in 2024. It started off as an AI-powered threat h…
94
fiabilidad
Schneier on Security GOLD 9.0 ciberseguridad ✓ 11 fuentes 🔮 especulativo 2026-07-07T10:43:40Z
Not sure this will have any effect, but I support the effort: According to Google’s legal filing, Outsider Enterprise operates through Telegram. The group offers phishing-as-a-service to individuals who may not be technically savvy enough to set up fraudulent websites and text campaigns on their own…
80
fiabilidad
Schneier on Security GOLD 9.0 ciberseguridad 2026-07-08T11:03:04Z
Last week, national security agencies from the Five Eyes—that’s the rich, English-language-speaking countries club—jointly released a statement warning of the increasing cyber risks of AI models: in particular, their ability to autonomously hack into systems and networks. The statement was more meas…
67
fiabilidad
Schneier on Security GOLD 9.0 ciberseguridad 2026-07-09T11:00:45Z
Because of the way they are trained, large language models capture only a slice of human language. They’re trained on the written word, from textbooks to social media posts, and our speech as captured in movies and on television. These models have minimal access to the unscripted conversations we ha…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 14 fuentes Tue, 07 Jul 2026 17:00:00
Software supply chain security was hard enough. Then AI joined the build pipeline. For five years, "software supply chain security" meant one question: what's in your code? Which open-source packages, which versions, which transitive dependencies three layers deep that nobody chose on purpose? So…
68
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Tue, 07 Jul 2026 18:57:09
Cybersecurity researchers have disclosed details of a now-patched critical session isolation vulnerability in Writer, an enterprise generative artificial intelligence (AI) platform, that could result in cross-tenant compromise. The one-click vulnerability has been codenamed WriteOut by the Sand Sec…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 7 fuentes 📊 datos Tue, 07 Jul 2026 18:57:20
U.S. prosecutors linked an alleged Scattered Spider hacker to a break-in at a luxury jewelry retailer using a persistent Windows device ID, according to a newly unsealed federal complaint. Microsoft records tied that ID first to the account the attackers used to keep access during the May 2025 intr…
agrupados por: alleged · scattered · spider · extradited · hacker
96
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 7 fuentes 📊 datos Thu, 09 Jul 2026 10:39:51
A new phishing-as-a-service (PhaaS) operation called Forg365 focuses on stealing Microsoft 365 accounts by combining adversary-in-the-middle (AiTM) and device code methods with AI-assisted lure generation. [...]
agrupados por: accounts · microsoft · target
96
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad ✓ 11 fuentes 📊 datos Tue, 07 Jul 2026 20:36:43
Varonis reported the flaw to Google in late 2025 and it has been addressed, but it reminds defenders to take a fresh look at their AI Infrastructure security.
agrupados por: agent · dialogflow · flaw · rogue
81
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes Tue, 07 Jul 2026 22:40:15
A new Android malware operation called RedWing is being rented out on Telegram as a ready-made bank-fraud service. It lets even low-skill criminals take over a victim's phone, steal their banking logins, and capture the one-time codes that protect their accounts. Zimperium's zLabs, which found the …
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 8 fuentes 📊 datos Wed, 08 Jul 2026 11:03:12
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerabilities are listed below - CVE-2026-48282 (CVSS score: 10.0) - A path traversal vulnera…
agrupados por: actively · cisa · exploited
70
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes 📊 datos Wed, 08 Jul 2026 14:34:33
A Chinese threat actor tracked as UAT-7810 is actively refining its bespoke malware to expand its Operational Relay Box (ORB) network by breaking into internet-facing networking devices. According to findings from Cisco Talos, UAT-7810 is an advanced persistent threat (APT) actor that's responsible…
76
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Wed, 08 Jul 2026 17:00:00
For years, account takeover (ATO) followed a predictable script. Attackers bought stolen credentials in bulk, ran them through automated tools, and waited for matches. Credential stuffing was cheap, scalable, and for defenders, relatively well understood. That era is ending. Not because attackers g…
52
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Wed, 08 Jul 2026 17:21:24
New research shows that a signed Git commit's hash is not the one-of-a-kind name that much of the software world assumes it to be. Given any signed commit, someone without the signing key can mint a second commit with the same files, author, and date, and a valid signature, GitHub still stamps "Veri…
86
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes Wed, 08 Jul 2026 18:22:15
A new banking fraudulent operation is targeting customers of Mexican banks, fintech, payment processors, and cryptocurrency exchanges using ClickFix lures. The activity cluster, tracked by Elastic Security Labs under the moniker REF6045, involves infecting victims through fake CAPTCHA verification …
82
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes Wed, 08 Jul 2026 18:30:00
A recent EvilTokens campaign targeting businesses across the US and Europe is exposing a new email security blind spot. This “ghost phishing” technique keeps the malicious page hidden until it decrypts and comes to life inside the victim’s browser. For security leaders, the risk is clear: tradition…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 8 fuentes 📊 datos Wed, 08 Jul 2026 20:08:05
Ubiquiti has shipped updates to address multiple critical security flaws impacting UniFi Connect, UniFi Talk, UniFi Access, UniFi Protect, and UniFi OS that could result in privilege escalation and arbitrary command execution. The list of vulnerabilities is as follows - CVE-2026-50746 (CVSS sco…
91
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes Wed, 08 Jul 2026 20:37:24
AI coding assistants have a habit of making things up. Ask one to fetch a popular tool, and it will sometimes hand back a real-sounding name for a project that does not exist. New research, which its authors call HalluSquatting, turns that habit into an attack: work out the fake names an AI reliabl…
94
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 6 fuentes Wed, 08 Jul 2026 22:32:12
Sophos looked at a week of its own endpoint data and found that AI coding agents such as Claude Code, Cursor, and OpenAI Codex are setting off detection rules written to catch human intruders. The agents are not malicious. They just do a lot of things that, to a behavioral engine, look exactly like…
95
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad ✓ 13 fuentes Fri, 03 Jul 2026 08:13:22
NetNut rented access to millions of compromised devices, allowing cybercriminals and nation-state actors to mask their identities during attacks. The post Google, FBI Disrupt NetNut Residential Proxy Network Powered by Millions of Devices appeared first on SecurityWeek.
agrupados por: devices · proxy · residential
95
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 8 fuentes Thu, 09 Jul 2026 09:57:18
Researchers at Wiz found that a flaw in six popular AI coding assistants lets a booby-trapped code project quietly take control of a developer's computer. The assistant asks permission to edit one harmless-looking file, but the write lands on a sensitive one instead. The affected tools are Amazon Q…
agrupados por: agents · code · coding
85
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes Thu, 09 Jul 2026 10:45:02
Ask an AI coding agent to scan open-source code for security holes, and it might run the attacker's code on your own machine instead. That is the finding in a proof-of-concept published Wednesday by the AI Now Institute, an attack it calls "Friendly Fire." It works against Anthropic's Claude Code a…
77
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad ✓ 2 fuentes Thu, 09 Jul 2026 10:00:00
Microsoft signed a malicious kernel driver, and now it's being used to kill security software in ransomware attacks.
agrupados por: goddamn · ransomware · uses
60
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Thu, 09 Jul 2026 16:30:00
Everyone seems to have announced a clearinghouse over the past few weeks. We did too. Ours is called Athena, and the main thing that sets it apart is that it was already real and running when we announced it — built quietly months earlier, heads down, taking findings and shipping fixes, because cust…
84
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 2 fuentes Thu, 09 Jul 2026 17:56:58
AI has changed how fast attacks move. Work that once took an attacker days now takes minutes. Using models like Mythos, attackers write tailored bait, pick targets, test what lands, and jump to the next host before your team clears the first alert. That is the gap, and it is not your fault. The too…
69
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Thu, 09 Jul 2026 20:39:28
Most security mess starts as admin work. A link gets clicked. A tool gets trusted. A bucket name gets reused. A setting stays loose because nobody wants to touch it. This week is full of that kind of damage. Not loud. Not clever. Just small gaps doing big jobs. The worst part is how normal it all l…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 13 fuentes 📊 datos Thu, 09 Jul 2026 22:19:02
GitHub has officially announced the release of npm version 12 with install scripts disabled by default, along with deprecating granular access tokens (GATs) designed to bypass two-factor authentication (2FA). The Microsoft-owned subsidiary noted that the following npm install behaviors that used to…
81
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 2 fuentes Thu, 09 Jul 2026 23:38:07
Microsoft has taken apart a destructive Windows backdoor it calls GigaWiper. What stands out is how it is built: not one tool but three older destructive programs bolted into one, offered as commands the operator can choose from. Each is a different way to break a machine: wipe the whole disk, over…
76
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Fri, 10 Jul 2026 00:08:49
Datadog Security Labs is warning of "several overlapping campaigns" that are systematically enumerating corporate GitHub organizations, repositories, and user accounts through the GitHub API. "Operators rely on automated scraping tooling with custom or legitimate-sounding user agents, leveraging Gi…
96
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad ✓ 12 fuentes Mon, 06 Jul 2026 21:17:42
Attackers wasted little time targeting the latest memory disclosure flaw in Citrix's NetScaler products, after researchers published a proof-of-concept exploit (PoC).
81
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad ✓ 2 fuentes Mon, 06 Jul 2026 21:37:56
A threat group researchers call "Armored Likho" has gained access to government agencies and electrical power entities in Russia, Brazil, and Kazakhstan.
73
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad Tue, 07 Jul 2026 21:02:29
The phishing campaign uses several tactics, including nested redirects, to evade detection and steal credentials from unsuspecting targets.
80
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad ✓ 2 fuentes Wed, 08 Jul 2026 08:01:00
The world's digital testing ground plans to help people use AI agents for government purposes.
65
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad Wed, 08 Jul 2026 16:45:54
A financially motivated operation uses lures of cracked or pirated software to deliver a two-for-one malware combo for data theft and cryptomining.
67
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad 📊 datos Wed, 08 Jul 2026 20:32:22
The attacker exploited AI workflows, chained cloud weaknesses, and stolen credentials to extort a large Amazon customer.
96
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad ✓ 8 fuentes Wed, 08 Jul 2026 21:34:21
The Latin American nation's cybersecurity plan — still in the expansion phase — has to survive its own knockout round during the FIFA World Cup.
86
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad ✓ 2 fuentes Thu, 09 Jul 2026 08:00:00
A new survey shows security leaders have an inflated sense of safety regarding their collaboration tools and platforms.
63
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad Thu, 09 Jul 2026 13:01:00
A cryptomining incident highlights how AI gateways can provide access to AI models, cloud infrastructure, and identity and access management (IAM) data.
82
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad ✓ 3 fuentes Thu, 09 Jul 2026 14:31:20
The fate of a Ukrainian tax software company shows how modern cyberwarfare can claim casualties far beyond the battlefield, and how businesses across the ocean still need to protect themselves.
64
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad Wed, 08 Jul 2026 08:00:00
DuckDuckGo announced that its browser can now block most video ads on YouTube, including those shown before the video starts playing and during playback. [...]
84
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 3 fuentes 📊 datos Wed, 08 Jul 2026 10:01:11
Specops Software explains how AI is making service desk impersonation attacks more convincing, personalized, and scalable, along with practical steps organizations can take to strengthen onboarding and identity verification. [...]
70
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad 📊 datos Wed, 08 Jul 2026 12:47:25
A threat actor has been targeting organizations across multiple sectors with voice-based fake security requests that ask Microsoft 365 users to enroll a new Entra passkey. [...]
88
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 5 fuentes Wed, 08 Jul 2026 14:56:02
A China-linked threat cluster has been exploiting vulnerable Roundcube servers at U.S. and Canadian universities to steal credentials and deploy backdoor malware. [...]
82
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 3 fuentes Wed, 08 Jul 2026 15:54:59
Malicious packages on the Node Package Manager (npm) and the Python Package Index (PyPI) delivered stealer malware to developers and users of Paysafe, Skrill, and Neteller payment applications. [...]
97
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 12 fuentes 📊 datos Thu, 09 Jul 2026 05:47:28
Law enforcement agencies have arrested 5,811 suspects and seized $293 million in illicit assets in a global anti-fraud operation spanning 97 countries. [...]
92
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 5 fuentes Thu, 09 Jul 2026 10:02:12
Security operations don't slow down when IT teams take vacation, but staffing levels often do. Kaseya explains how AI-driven automation can help organizations maintain consistent security operations and reduce reliance on manual processes year-round. [...]
91
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 4 fuentes Thu, 09 Jul 2026 13:08:29
A new data-extortion group called Helix is using identity-focused tactics such as voice phishing (vishing), device code phishing, and multi-factor authentication (MFA) abuse to steal data from SharePoint environments. [...]
89
fiabilidad
Krebs on Security GOLD 9.0 ciberseguridad ✓ 4 fuentes Fri, 22 May 2026 16:34:24
Lawmakers in both houses of Congress are demanding answers from the U.S. Cybersecurity & Infrastructure Security Agency (CISA) after KrebsOnSecurity reported this week that a CISA contractor intentionally published AWS GovCloud keys and a vast trove of other agency secrets on a public GitHub account…
96
fiabilidad
Krebs on Security GOLD 9.0 ciberseguridad ✓ 49 fuentes 📊 datos Tue, 09 Jun 2026 22:07:28
Microsoft today released software updates to plug nearly 200 security holes across its Windows operating systems and supported software, a record number of fixes for the company's monthly Patch Tuesday cycle. Nearly three dozen of those bugs earned Microsoft's most dire "critical" rating, and exploi…
70
fiabilidad
Krebs on Security GOLD 9.0 ciberseguridad Wed, 08 Jul 2026 12:31:39
A cybersecurity startup dangling millions of dollars to acquire zero-day security vulnerabilities in popular software is run by a pair of far-right conspiracy theorists and convicted felons whose most recent ventures included fake intelligence companies and a now-defunct AI-based lobbying platform t…
82
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 3 fuentes Sun, 05 Jul 2026 10:14:52
Flipper Devices says development of the Flipper Zero firmware will continue, albeit with a smaller internal team and greater reliance on community contributions. [...]
agrupados por: development · flipper · zero
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 15 fuentes 📊 datos Mon, 06 Jul 2026 23:07:01
A use-after-free bug in Linux's KVM hypervisor can be triggered from a guest virtual machine to corrupt the shadow-page state of the host kernel that runs it. Dubbed 'Januscape' and tracked as CVE-2026-53359, the flaw sits in the shadow MMU code that KVM shares across both Intel and AMD. The public…
agrupados por: escape · guest · host
95
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad ✓ 15 fuentes Mon, 06 Jul 2026 12:48:01
Organizations are urged to patch after proof-of-concept code makes the Linux root escalation flaw easier to exploit. The post Proof-of-Concept Exploit Released for Linux ‘Bad Epoll’ Root Access Vulnerability appeared first on SecurityWeek.
agrupados por: released
95
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad ✓ 9 fuentes Mon, 06 Jul 2026 11:19:47
Researchers uncovered two campaigns embedding indirect prompt injections in malicious websites to exploit autonomous AI agents browsing the web. The post Prompt Injection Attacks Trick AI Agents Into Making Crypto Payments appeared first on SecurityWeek.
92
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes 📎 bien sourced Fri, 03 Jul 2026 19:06:33
A previously undocumented threat actor known as Armored Likho has been attributed to cyber attacks targeting government agencies and the electric power sector across Russia, Brazil, and Kazakhstan. "Armored Likho blends financially motivated campaigns targeting private individuals with targeted cyb…
agrupados por: armored · government · likho · power
68
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad Mon, 06 Jul 2026 15:20:42
Moving from isolated, technical data to a continuous risk lifecycle can help organizations align security controls with actual business consequences. The post The Shift Toward Business-Aligned Risk Management appeared first on SecurityWeek.
68
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad Mon, 06 Jul 2026 19:14:08
Securonix says the sophisticated framework abuses compromised websites, Blogspot, PowerShell, and fileless techniques to evade detection and deploy the PureLog information stealer. The post Blogspot-Hosted Payloads Delivered in ‘Veil#Drop’ Attacks appeared first on SecurityWeek.
59
fiabilidad
CyberScoop RELIABLE 7.5 ciberseguridad Mon, 06 Jul 2026 09:00:00
AI is surfacing vulnerabilities at a scale the industry has never seen, and most organizations have no way to determine which ones actually matter. The post Finding vulnerabilities was never the hard part appeared first on CyberScoop.
88
fiabilidad
CyberScoop RELIABLE 7.5 ciberseguridad ✓ 5 fuentes Mon, 06 Jul 2026 15:17:37
The AI agent didn’t accomplish every step in the late June 2026 attack, but it allowed the threat actor to significantly reduce complexity, speed up the tempo and gain operational advantages. The post Sysdig clocks first documented case of agentic ransomware appeared first on CyberScoop.
90
fiabilidad
CyberScoop RELIABLE 7.5 ciberseguridad ✓ 5 fuentes Mon, 06 Jul 2026 17:50:25
At least two websites appear to be victim to 404 hijacking attacks. Army officials took the sites down after being contacted by CyberScoop. The post US Army websites defaced with pro-Kurdish sentiments, insults to Trump appeared first on CyberScoop.
90
fiabilidad
TorrentFreak RELIABLE 7.0 derechos digitales ✓ 7 fuentes 🔮 especulativo 📊 datos Mon, 06 Jul 2026 08:23:50
Supported by U.S. intelligence, Vietnamese authorities have dismantled a massive network of over 100 pirate sites. Seven suspects have been charged with running a mass copyright infringement operation that included the now-defunct piracy giant HiAnime.to, allegedly earning $12.8 million in advertisi…
agrupados por: hianime · piracy · vietnam
78
fiabilidad
Risky Business RELIABLE 8.0 ciberseguridad ✓ 2 fuentes Wed, 13 May 2026 15:08:48
On this week’s show Patrick Gray, Adam Boileau and James Wilson discuss the week’s cybersecurity news. They cover: Mini Shai-Hulud and the TanStack compromise using Github Actions Instructure pays Canvas elearning platform data extortionists More Linux privilege escalation 0days! CISA hel…
93
fiabilidad
Schneier on Security GOLD 9.0 ciberseguridad ✓ 3 fuentes 📎 bien sourced 2026-07-06T10:45:44Z
France is accelerating its transition to post-quantum encryption: France’s cybersecurity agency ANSSI said on Tuesday it would stop certifying security products that lack quantum-resistant encryption, a move that will force government bodies and critical operators to shift away from older systems. S…
70
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Mon, 06 Jul 2026 12:03:56
Scanners meant to catch malicious add-on "skills" for AI coding agents can be fooled by a few simple changes that leave the malware working, according to a new study from researchers at the Hong Kong University of Science and Technology. Their strongest trick slipped past every scanner tested more …
85
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 2 fuentes Mon, 06 Jul 2026 12:57:50
Researchers found a flaw in Opera GX, the gaming-focused version of the Opera browser, that let a malicious website silently install a browser add-on and use it to lift specific data from the pages a victim visits. In a proof of concept, they reconstructed a signed-in user's full Gmail address from…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 10 fuentes 📊 datos Mon, 06 Jul 2026 13:43:33
Cybersecurity researchers have flagged a novel Java-based remote access trojan (RAT) called QuimaRAT that's capable of targeting Windows, Linux, and macOS environments. According to LevelBlue, the cross-platform malware is advertised under a malware-as-a-service (MaaS) model, costing anywhere betwe…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 7 fuentes Mon, 06 Jul 2026 14:20:54
Researchers at Shandong University have shown a fast new way to pull data off computers that are cut off from every network. The technique, called TrojPix, tweaks on-screen pixels in ways the eye cannot see, so that the video cable carrying them radiates a faint radio signal a nearby receiver can de…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 7 fuentes Mon, 06 Jul 2026 16:28:16
A suspected China-nexus threat activity cluster has been observed targeting Indian taxpayers, tax professionals, and corporate finance teams to deliver a remote access trojan designed to steal sensitive data from compromised hosts. The multi-stage campaign, codenamed Operation DragonReturn by Seqri…
88
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes Mon, 06 Jul 2026 18:31:14
A streaming box should not need a threat model. Neither should a username field, a demo repo, a reset flow, or a browser permission prompt. That is the irritating part this week: the risky pieces were ordinary. Home devices became a routing cover. Clean code pulled dirt from a dependency. Identity …
89
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 4 fuentes 📊 datos Mon, 06 Jul 2026 21:58:59
Threat actors have been observed attempting to exploit a recently patched critical security flaw in Gitea Docker images, according to Sysdig. The vulnerability in question is CVE-2026-20896 (CVSS score: 9.8), a vulnerability that stems from the DevOps platform trusting the "X-WEBAUTH-USER" header f…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 24 fuentes Tue, 07 Jul 2026 00:04:26
An Iranian hacking group affiliated with Iran's Ministry of Intelligence and Security (MOIS) has been wielding a previously undocumented modular command-and-control (C2) framework dubbed Cavern (aka Cav3rn) targeting Israeli organizations. The activity, which has primarily singled out IT providers …
97
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad ✓ 10 fuentes Mon, 06 Jul 2026 16:36:50
An "agentic threat actor" successfully exploited a Langflow flaw to steal data from a production database server and encrypt other systems.
agrupados por: attack · jadepuffer · ransomware
97
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 14 fuentes 📊 datos Mon, 06 Jul 2026 09:18:37
Attackers are now exploiting a maximum-severity Adobe ColdFusion vulnerability tracked as CVE-2026-48282, according to vulnerability intelligence company KEVIntel. [...]
82
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 3 fuentes Mon, 06 Jul 2026 10:00:10
Every evolution in software development has reduced the friction between an idea and a deployable application. AI may remove the final barrier, but it also removes many of the moments where security decisions have traditionally taken place. [...]
93
fiabilidad
Krebs on Security GOLD 9.0 ciberseguridad ✓ 5 fuentes 📊 datos Thu, 21 May 2026 21:50:25
Canadian authorities on Wednesday arrested a 23-year-old Ottawa man on suspicion of building and operating Kimwolf, a fast spreading Internet-of-Things botnet that enslaved millions of devices for use in a series of massive distributed denial-of-service (DDoS) attacks over the past six months. Krebs…
80
fiabilidad
Hacker News (YC) MIXED 5.5 tecnología ✓ 3 fuentes 📊 datos Fri, 03 Jul 2026 20:38:26
Article URL: https://citizenlab.ca/research/member-of-committee-investigating-spyware-hacked-with-pegasus/ Comments URL: https://news.ycombinator.com/item?id=48779683 Points: 399 # Comments: 105
agrupados por: european · parliament
97
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 10 fuentes 📊 datos Thu, 02 Jul 2026 11:18:51
Court of Justice of the European Union (CJEU) has dismissed Google's final appeal against a €4.1 billion ($4.7 billion) antitrust fine over the company's use of Android to promote its Chrome browser and search service. [...]
agrupados por: billion · fine · google · appeal · loses
68
fiabilidad
Risky Business RELIABLE 8.0 ciberseguridad 📊 datos Wed, 15 Apr 2026 13:34:42
On this week’s show, Patrick Gray, Adam Boileau and James Wilson discuss the week’s cybersecurity news. They cover: Everyone has an opinion about Claude Mythos… even though almost nobody has used it yet CISA adds a 2009 Excel bug to the KEV list, u wot? Adobe also parties like it’s the 2000s…
68
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Sat, 04 Jul 2026 01:49:31
Security firm runZero has disclosed seven vulnerabilities in FatFs, a small filesystem library that lets a device read and write the FAT and exFAT formats used on USB drives and SD cards. The flaws matter because FatFs is nearly everywhere. It ships inside the firmware that runs security cameras, d…
94
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 11 fuentes 📊 datos Sat, 04 Jul 2026 16:47:24
The North Korean threat actors linked to the Contagious Interview campaign have been observed publishing 108 unique packages and web browser extensions spanning npm, Packagist, Go, and Google Chrome as part of an ongoing activity referred to as PolinRider. "The campaign remains active, and new mali…
97
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 13 fuentes 📊 datos Sat, 04 Jul 2026 18:17:53
A U.S. government entity paid about $1 million to keep stolen files from being leaked, according to a new case study by Rakesh Krishnan for Ransom-ISAC, built on a leaked negotiation chat and the blockchain trail the payment left. The odd part: the group that took the money calls itself Kairos, but…
95
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 8 fuentes Thu, 02 Jul 2026 13:30:49
The recently discovered financially-motivated FortiBleed campaign has been attributed to INC and Lynx ransomware operations, indicating that the verified, stolen credentials were intended for follow-on intrusions. "An operator tied to FortiBleed's infrastructure was found actively working negotiati…
agrupados por: fortibleed · lynx · ransomware · linked
74
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad ✓ 2 fuentes Thu, 02 Jul 2026 13:15:00
As AI-generated code becomes commonplace, CISOs need new audit strategies to measure developer practices, govern AI tool usage, and identify software risks before they reach production. The post How to Conduct a Successful Audit of AI-Driven Software Development appeared first on SecurityWeek.
74
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad ✓ 2 fuentes Thu, 02 Jul 2026 15:04:22
Hackers are targeting NetScaler appliances using public PoC code to retrieve arbitrary memory content in the HTTP response. The post New CitrixBleed Vulnerability Exploited Immediately After Public Disclosure appeared first on SecurityWeek.
95
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad ✓ 15 fuentes Fri, 03 Jul 2026 07:57:53
The DuneSlide vulnerabilities enable zero-click prompt injection attacks that escape Cursor's sandbox and execute arbitrary code on the underlying operating system. The post Critical Cursor AI Code Editor Flaws Could Lead to OS-Level Remote Code Execution appeared first on SecurityWeek.
96
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad ✓ 18 fuentes 📊 datos Fri, 03 Jul 2026 10:00:00
In April, ShinyHunters accessed the company’s corporate IT systems and stole patients’ personal and medical information. The post Medtronic Data Breach Impacts 3.8 Million People appeared first on SecurityWeek.
agrupados por: million · people
94
fiabilidad
The Register RELIABLE 7.5 tecnología ✓ 6 fuentes Thu, 02 Jul 2026 20:05:50
Don't count on the LLM to return your data - even if you pay up
agrupados por: attack · ransomware · agentic · langflow
59
fiabilidad
CyberScoop RELIABLE 7.5 ciberseguridad Fri, 03 Jul 2026 05:00:00
Citizen Lab says the phone of a member of Europe’s PEGA Committee was infected twice with Pegasus, the NSO Group spyware that gave the panel its name. The post Someone infected a spyware probe overseer with spyware appeared first on CyberScoop.
90
fiabilidad
The Register RELIABLE 7.5 tecnología ✓ 4 fuentes Thu, 02 Jul 2026 16:40:30
Attackers need little more than a valid SharePoint account to execute code on vulnerable on-prem servers
agrupados por: added · cisa · exploitation · sharepoint
96
fiabilidad
The Register RELIABLE 7.5 tecnología ✓ 7 fuentes 📊 datos Fri, 03 Jul 2026 14:03:00
Other residential proxy brands may rely on the same network
agrupados por: google · million · netnut
75
fiabilidad
Schneier on Security GOLD 9.0 ciberseguridad 2026-07-02T11:11:44Z
Interesting paper: “Cybersecurity Mission Creep.” Abstract: Cybersecurity is experiencing mission creep. Policymakers are casting more and more problems as issues of cybersecurity. So reframed, wildly different policy issues, from misinformation, to child social media safety laws, to antitrust regul…
93
fiabilidad
Schneier on Security GOLD 9.0 ciberseguridad ✓ 3 fuentes 2026-07-03T11:15:25Z
This is from a 2024 company presentation: Officers can also tap into data showing a car’s decals, bumper stickers, back and top racks—along with temporary and unique state tags. Flock calls it a “Vehicle Fingerprint” and it’s touted as a way for law enforcement officials to get more information “eve…
75
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 2 fuentes Thu, 02 Jul 2026 12:54:23
Attackers are hiding a data-stealing trojan inside fake exploit code aimed at the people who hunt bugs for a living. The malware, called ChocoPoC, travels in Python proof-of-concept (PoC) repositories on GitHub that claim to exploit hot new CVEs. Run one, and it quietly lifts your saved passwords, …
61
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Thu, 02 Jul 2026 17:00:00
Identity lifecycle management was architected around a person with an employment record, a manager, and a departure date. AI agents have none of those. As autonomous principals proliferate across enterprise environments, the governance model built for humans develops structural blind spots that trad…
88
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 3 fuentes Thu, 02 Jul 2026 18:34:13
The threat actor known as ToddyCat has been attributed to a new malware called Umbrij that's designed to gain surreptitious access to a victim's email correspondence via the Google API. "In this campaign, the attackers focused their attention on corporate email communications hosted on Gmail, targe…
97
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 7 fuentes Thu, 02 Jul 2026 20:54:18
This week’s security news is mostly about weak spots. Browsers, bots, sandboxes, AI systems, and email flows all show the same problem in different ways. Everything looks normal until someone tests a small gap and finds a way through. This is not one big break. It is small permissions, weak checks…
96
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 16 fuentes 📊 datos Fri, 03 Jul 2026 00:00:33
Threat actors associated with the Anubis ransomware operation have been observed exploiting the Citrix Bleed 2 (CVE-2025-5777) vulnerability to obtain initial access. "Although tactics differ between affiliates, common patterns emerged in tradecraft through use of legitimate Remote Management and M…
72
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 2 fuentes Fri, 03 Jul 2026 13:33:37
Cybersecurity researchers have flagged a new macOS information stealer called PamStealer that employs a series of clever tricks to infect systems and siphon sensitive data. The stealer, discovered by Jamf Threat Labs, is distributed as a compiled AppleScript (.scpt) file impersonating Maccy, a legi…
98
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 35 fuentes 📎 bien sourced Fri, 03 Jul 2026 21:37:15
Threat actors with ties to North Korea have been linked to a fresh set of malicious npm packages that masquerade as Rollup polyfill tooling to facilitate remote access and data theft. According to JFrog, the packages "rollup-packages-polyfill-core" and "rollup-runtime-polyfill-core" mimic the legit…
62
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Sat, 04 Jul 2026 00:25:24
Cybersecurity researchers have discovered a previously undocumented modular malware framework codenamed Avalon that's distributed by means of a multi-stage phishing chain capable of bypassing traditional security controls. Avalon combines credential collection, lateral movement, remote access, reco…
95
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 14 fuentes 📊 datos Sat, 04 Jul 2026 01:10:01
A newly disclosed Linux kernel flaw called Bad Epoll (CVE-2026-46242) lets an ordinary user with no special access take full control of a machine as root. It affects Linux desktops, servers, and Android, and a fix is out. Bad Epoll sits in the same small stretch of kernel code where Anthropic's mos…
96
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad ✓ 9 fuentes Wed, 01 Jul 2026 15:44:41
Rapid growth turned routine firewall logs into a security and budget liability. One CISO used artificial intelligence to filter what data truly belongs in the SIEM.
85
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad ✓ 3 fuentes 📊 datos Thu, 02 Jul 2026 12:33:57
IBM and Red Hat assign 20,000 engineers to the new Project Lightwell service as Anthropic's Mythos findings ignite debate over how to secure the open-source software supply chain.
65
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad Thu, 02 Jul 2026 18:07:40
The ransomware campaign relies on basic social engineering and stretches across multiple regions, including the US, Europe, Middle East, and elsewhere.
64
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad Thu, 02 Jul 2026 19:31:58
Expect more compressed patching cycles from Apple going forward, as attackers leverage artificial intelligence to reduce time to exploit.
77
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad ✓ 2 fuentes Thu, 02 Jul 2026 23:01:00
Improved institutional safeguards and stricter regulations have pushed the burdens of protection and risk reduction on to Australian businesses.
79
fiabilidad
Dark Reading RELIABLE 8.0 ciberseguridad Fri, 03 Jul 2026 13:01:00
Two new models from Chinese firms compete with top US mainstream and frontier models. Should cyber-defenders be worried?
71
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad Thu, 02 Jul 2026 06:46:58
Opera has introduced Paste Protect, a security feature designed to block ClickFix-style attacks that trick users into executing malicious commands through social engineering. [...]
96
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 12 fuentes Thu, 02 Jul 2026 07:35:25
Cisco confirmed that attackers are now exploiting a Unified Communications Manager (Unified CM) vulnerability patched in early June. [...]
81
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 3 fuentes Thu, 02 Jul 2026 08:15:47
Microsoft has fixed a known issue causing the Copilot Chat or Copilot buttons in Classic Outlook to disappear for Windows users with the Copilot Chat (Basic) license. [...]
82
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 2 fuentes 📊 datos Thu, 02 Jul 2026 10:00:10
ConsentFix and ClickFix attacks steal Microsoft 365 tokens in seconds using fake prompts and OAuth flows. Learn how these MFA bypass tactics work and how to defend against them. [...]
96
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 19 fuentes Thu, 02 Jul 2026 20:48:30
Claude Fable, the company's most powerful model, is now available to all users, but early impressions are disappointing, as it appears to be nowhere near the original release. [...]
80
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 2 fuentes 📊 datos Fri, 03 Jul 2026 10:12:22
A new phishing-as-a-service (PhaaS) platform dubbed "ARToken" appears to operate as an affiliate of the EvilTokens phishing platform, giving researchers a glimpse into an extensive toolkit designed to compromise Microsoft 365. [...]
96
fiabilidad
BleepingComputer RELIABLE 8.0 ciberseguridad ✓ 7 fuentes 📊 datos Fri, 03 Jul 2026 13:50:04
A joint operation involving Google has disrupted NetNut, a residential proxy network that gave access to millions of compromised Android devices, including smart TVs and streaming boxes. [...]
92
fiabilidad
Krebs on Security GOLD 9.0 ciberseguridad ✓ 4 fuentes Thu, 02 Jul 2026 19:27:33
The Federal Bureau of Investigation (FBI) said today it worked with industry partners to seize hundreds of domains associated with NetNut, a sprawling residential proxy service operated by the publicly-traded Israeli company Alarum Technologies [NASDAQ: ALAR]. The action comes roughly two weeks afte…
89
fiabilidad
SecurityWeek RELIABLE 7.5 ciberseguridad ✓ 5 fuentes Wed, 01 Jul 2026 18:08:15
Microsoft's new Teams admin policy requires organizer approval for external AI bots, giving organizations greater visibility and control over automated participants in sensitive meetings. The post Microsoft Adds New Teams Controls to Block Unauthorized AI Bots From Meetings appeared first on Securit…
67
fiabilidad
CyberScoop RELIABLE 7.5 ciberseguridad Wed, 01 Jul 2026 19:23:26
The defect impacts a popular collection of business applications that attackers have hit before in widespread attack sprees. The post Researchers spot exploitation of another critical Oracle defect appeared first on CyberScoop.
76
fiabilidad
Risky Business RELIABLE 8.0 ciberseguridad Wed, 20 May 2026 15:22:48
On this week’s show Patrick Gray, Adam Boileau and James Wilson discuss the week’s cybersecurity news. They cover: GitHub announced a possible breach CISA leaks important creds, keys in public repo Awful vulnerability in Bitlocker renders it useless without a PIN So. Many. Patches. Poli…
89
fiabilidad
Risky Business RELIABLE 8.0 ciberseguridad ✓ 4 fuentes 📊 datos Wed, 03 Jun 2026 14:26:54
On this week’s show special guest co-host Andy Boyd joins Patrick Gray and James Wilson to discuss the week’s cybersecurity news. Andy is the CEO of REDLattice, which makes the Paragon “intelligence collection and reconnaissance” solution. They cover: Adversaries are tracking US troop locations…
85
fiabilidad
Risky Business RELIABLE 8.0 ciberseguridad 📎 bien sourced Fri, 05 Jun 2026 14:41:44
In this sponsored Soap Box edition of the Risky Business podcast Patrick Gray chats with Edward Wu, founder of Dropzone, about what AI is doing to detection, response and the SOC more generally. Dropzone makes AI agents that conduct alert investigations in your SOC, but will the SOC as we know it e…
75
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad ✓ 2 fuentes Wed, 01 Jul 2026 22:48:50
Cybersecurity researchers have flagged a new multi-stage malware delivery attack chain that uses social engineering and Blogger pages to deliver an information stealer called PureLogs. The activity has been codenamed VEIL#DROP by Securonix. It's suspected that the initial payloads are distributed e…
74
fiabilidad
The Hacker News RELIABLE 7.5 ciberseguridad Wed, 01 Jul 2026 23:23:06
Unknown threat actors are leveraging the ScreenConnect remote access tool as a way to deploy and execute AsyncRAT. Kaspersky said the activity is part of a "massive, multi-domain, multi-language" campaign that distributes malicious installer archives hosted on spoofed websites. These installers ma…
⚡ Procesando...