Qilin
You must login to view this content
Aggregator
The Dark Web Economy Behind Ad Fraud: What Marketers Don’t See
1 month ago
Ad fraud networks use bots, deepfakes and spoofed traffic to drain PPC budgets. This report shows how fake clicks distort performance data.
Owais Sultan
California man pleads guilty to RICO charges as DOJ indicts crypto theft gang
1 month ago
Evan Tangeman became the ninth person to plead guilty as part of a wider Justice Department takedown of a criminal group known as the Social Engineering Enterprise.
Shai-Hulud 2.0: Guidance for detecting, investigating, and defending against the supply chain attack
1 month ago
The Shai‑Hulud 2.0 supply chain attack represents one of the most significant cloud-native ecosystem compromises observed recently. Attackers maliciously modified hundreds of publicly available packages, targeting developer environments, continuous integration and continuous delivery (CI/CD) pipelines, and cloud-connected workloads to harvest credentials and configuration secrets. The Shai‑Hulud 2.
The post Shai-Hulud 2.0: Guidance for detecting, investigating, and defending against the supply chain attack appeared first on Microsoft Security Blog.
Microsoft Defender Security Research Team
Organizations can now buy cyber insurance that covers deepfakes
1 month ago
Cybersecurity insurer Coalition said it will start covering certain incidents where AI and deepfakes lead to reputational harm.
The post Organizations can now buy cyber insurance that covers deepfakes appeared first on CyberScoop.
djohnson
Joint cyber security advisory on pro-Russia hacktivists conducting opportunistic attacks on global critical infrastructure
1 month ago
Canadian Centre for Cyber Security
Microsoft security advisory – December 2025 monthly rollup (AV25-822)
1 month ago
Canadian Centre for Cyber Security
Microsoft’s last Patch Tuesday of 2025 addresses 57 defects, including one zero-day
1 month ago
Microsoft closed out the year with 1,139 total defects patched, making it the second-largest year in volume behind 2020, according to Trend Micro.
The post Microsoft’s last Patch Tuesday of 2025 addresses 57 defects, including one zero-day appeared first on CyberScoop.
Matt Kapko
LeakNet
1 month ago
You must login to view this content
cohenido
VMware security advisory (AV25-820)
1 month ago
Canadian Centre for Cyber Security
Windows PowerShell now warns when running Invoke-WebRequest scripts
1 month ago
Microsoft says Windows PowerShell now warns when running scripts that use the Invoke-WebRequest cmdlet to download web content, aiming to prevent potentially risky code from executing. [...]
Sergiu Gatlan
Mozilla security advisory (AV25-819)
1 month ago
Canadian Centre for Cyber Security
Sinobi
1 month ago
You must login to view this content
cohenido
SAP security advisory – December 2025 monthly rollup (AV25-818)
1 month ago
Canadian Centre for Cyber Security
Sinobi
1 month ago
You must login to view this content
cohenido
[Control systems] Siemens security advisory (AV25-817)
1 month ago
Canadian Centre for Cyber Security
Packer-as-a-Service Shanya Hides Ransomware, Kills EDR
1 month ago
Shanya is the latest in an emerging field of packing malware, selling obfuscation functionality in order to help ransomware actors reach their target.
Alexander Culafi
Microsoft releases Windows 10 KB5071546 extended security update
1 month ago
Microsoft has released the KB5071546 extended security update to resolve 57 security vulnerabilities, including three zero-day flaws. [...]
Lawrence Abrams
Что такое 8 уровень OSI: роль человеческого фактора и политических решений в кибербезопасности
1 month ago
Человеческий фактор и политика как главные угрозы современной кибербезопасности.
Everest
1 month ago
You must login to view this content
cohenido