Legal protection for ethical hacking under Computer Misuse Act is only the first step 2025-12-15 at 13:48 By Rupert Goodwins I’m dreaming of a white hat mass Opinion It was 40 years ago that four young British hackers set about changing the law, although they didn’t know it at the time. It was a cross-platform […]
Legal protection for ethical hacking under Computer Misuse Act is only the first step Read More »
A Rising Tide of Threats: The Offshore Energy Industry’s Threat Landscape 2025-12-15 at 13:48 By Key Findings: This article is an excerpt from LevelBlue SpiderLabs Blog View Original Source
A Rising Tide of Threats: The Offshore Energy Industry’s Threat Landscape Read More »
Threat Intelligence News from LevelBlue SpiderLabs December 2025 2025-12-15 at 13:48 By LevelBlue SpiderLabs is the threat intelligence unit of LevelBlue and includes a global team of threat researchers and data scientists who, combined with proprietary technology in data analytics and machine learning (ML), analyze one of the largest and most diverse collections of threat
Threat Intelligence News from LevelBlue SpiderLabs December 2025 Read More »
Kali Linux 2025.4: New tools and “quality-of-life” improvements 2025-12-15 at 13:48 By Zeljka Zorz OffSec has released Kali Linux 2025.4, a new version of its widely used penetration testing and digital forensics platform. Most of the changes are related to appearance and usability: Kali’s GNOME desktop environment now organizes Kali tools into folders via the
Kali Linux 2025.4: New tools and “quality-of-life” improvements Read More »
Trump Administration Issues New AI Executive Order 2025-12-15 at 13:48 By How should organizations respond to the new AI executive order? This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source
Trump Administration Issues New AI Executive Order Read More »
700Credit Data Breach Impacts 5.8 Million Individuals 2025-12-15 at 13:48 By Ionut Arghire Hackers stole names, addresses, dates of birth, and Social Security numbers from the credit report and identity verification services provider. The post 700Credit Data Breach Impacts 5.8 Million Individuals appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original
700Credit Data Breach Impacts 5.8 Million Individuals Read More »
Apple Patches Two Zero-Days Tied to Mysterious Exploited Chrome Flaw 2025-12-15 at 13:22 By Eduard Kovacs Apple has released macOS and iOS updates to patch two WebKit zero-days exploited in an “extremely sophisticated” attack. The post Apple Patches Two Zero-Days Tied to Mysterious Exploited Chrome Flaw appeared first on SecurityWeek. This article is an excerpt
Apple Patches Two Zero-Days Tied to Mysterious Exploited Chrome Flaw Read More »
Phantom Stealer Spread by ISO Phishing Emails Hitting Russian Finance Sector 2025-12-15 at 13:22 By Cybersecurity researchers have disclosed details of an active phishing campaign that’s targeting a wide range of sectors in Russia with phishing emails that deliver Phantom Stealer via malicious ISO optical disc images. The activity, codenamed Operation MoneyMount-ISO by Seqrite Labs,
Phantom Stealer Spread by ISO Phishing Emails Hitting Russian Finance Sector Read More »
Apple, Google forced to issue emergency 0-day patches 2025-12-15 at 13:01 By Carly Page Both admit attackers were already exploiting the bugs, with scant detail and hints of spyware-grade abuse Apple and Google have both issued emergency patches after zero-day bugs were caught being actively exploited in what the companies describe as “sophisticated” real-world attacks.…
Apple, Google forced to issue emergency 0-day patches Read More »
Atlassian Patches Critical Apache Tika Flaw 2025-12-15 at 13:00 By Ionut Arghire Atlassian has released software updates for Bamboo, Bitbucket, Confluence, Crowd, Fisheye/Crucible, and Jira. The post Atlassian Patches Critical Apache Tika Flaw appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Atlassian Patches Critical Apache Tika Flaw Read More »
Why Facebook is a cesspool of scam ads — and it’s making billions off its phony ‘tax’ on fraudsters 2025-12-15 at 13:00 By Thomas Barrabi Mark Zuckerberg’s Facebook is blamed more often than any other site for hosting scam advertisements that have cost consumers billions of dollars – even as it pockets the profits, according
Update your Apple devices to fix actively exploited vulnerabilities! (CVE-2025-14174, CVE-2025-43529) 2025-12-15 at 12:58 By Zeljka Zorz Apple has issued security updates with fixes for two WebKit vulnerabilities (CVE-2025-14174, CVE-2025-43529) that have been exploited as zero-days. Several days before the release of these updates, Google fixed CVE-2025-14174 in the desktop version of Chrome, though at
Denmark takes a Viking swing at VPN-enabled piracy 2025-12-15 at 12:40 By Connor Jones Minister insists ‘modest’ bill is not an assault on privacy-preserving tech The Danish government wants the public to weigh in on its proposed laws restricting use of VPNs to access certain corners of the internet.… This article is an excerpt from
Denmark takes a Viking swing at VPN-enabled piracy Read More »
Third DraftKings Hacker Pleads Guilty 2025-12-15 at 12:31 By Ionut Arghire Nathan Austad admitted in court to launching a credential stuffing attack against a fantasy sports and betting website. The post Third DraftKings Hacker Pleads Guilty appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Third DraftKings Hacker Pleads Guilty Read More »
How researchers are teaching AI agents to ask for permission the right way 2025-12-15 at 09:06 By Mirko Zorz People are starting to hand more decisions to AI agents, from booking trips to sorting digital files. The idea sounds simple. Tell the agent what you want, then let it work through the steps. The hard
How researchers are teaching AI agents to ask for permission the right way Read More »
Japan just sent origami to space to unfurl possibilities for outsized antennas 2025-12-15 at 08:44 By Simon Sharwood That’s just one of 16 innovative and experimental sats that launched Sunday Japan’s Aerospace Exploration Agency (JAXA) is celebrating after the successful Sunday launch of its Innovative Satellite Technology Demonstration No. 4, which is packed with 16
Japan just sent origami to space to unfurl possibilities for outsized antennas Read More »
Prometheus: Open-source metrics and monitoring systems and services 2025-12-15 at 08:43 By Anamarija Pogorelec Prometheus is an open-source monitoring and alerting system built for environments where services change often and failures can spread fast. For security teams and DevOps engineers, it has become a common way to track system behavior, spot early warning signs, and
Prometheus: Open-source metrics and monitoring systems and services Read More »
Europe’s DMA raises new security worries for mobile ecosystems 2025-12-15 at 08:43 By Anamarija Pogorelec Mobile security has long depended on tight control over how apps and services interact with a device. A new paper from the Center for Cybersecurity Policy and Law warns that this control may weaken as the European Union’s Digital Markets
Europe’s DMA raises new security worries for mobile ecosystems Read More »
VolkLocker Ransomware Exposed by Hard-Coded Master Key Allowing Free Decryption 2025-12-15 at 08:43 By The pro-Russian hacktivist group known as CyberVolk (aka GLORIAMIST) has resurfaced with a new ransomware-as-a-service (RaaS) offering called VolkLocker that suffers from implementation lapses in test artifacts, allowing users to decrypt files without paying an extortion fee. According to SentinelOne, VolkLocker
VolkLocker Ransomware Exposed by Hard-Coded Master Key Allowing Free Decryption Read More »
What types of compliance should your password manager support? 2025-12-15 at 07:49 By Sinisa Markovic Lost credentials and weak authentication controls still sit at the center of many security incidents. IT leaders and CISOs know this problem well. They also know that regulators watch how organizations protect passwords, track access, and document security decisions. That
What types of compliance should your password manager support? Read More »