Don’t miss

Microsoft revokes 200 certs used to sign malicious Teams installers

certificates, Don't miss, Hot stuff, Microsoft, Microsoft Teams, News, Ransomware /

Microsoft revokes 200 certs used to sign malicious Teams installers 2025-10-17 at 15:59 By Zeljka Zorz By revoking 200 software-signing certificates, Microsoft has hampered the activities of Vanilla Tempest, a ransomware-wielding threat actor that has been targeting organizations with malware posing as Microsoft Teams. “In this campaign, Vanilla Tempest used fake MSTeamsSetup.exe files hosted on […]

Microsoft revokes 200 certs used to sign malicious Teams installers Read More »

Hackers used Cisco zero-day to plant rootkits on network switches (CVE-2025-20352)

0-day, Cisco, Don't miss, exploit, Hot stuff, News, rootkits, Trend Micro /

Hackers used Cisco zero-day to plant rootkits on network switches (CVE-2025-20352) 2025-10-17 at 15:29 By Zeljka Zorz Threat actors have leveraged a recently patched IOS/IOS XE vulnerability (CVE-2025-20352) to deploy Linux rootkits on vulnerable Cisco network devices. “The operation targeted victims running older Linux systems that do not have endpoint detection response solutions,” Trend Micro

Hackers used Cisco zero-day to plant rootkits on network switches (CVE-2025-20352) Read More »

A new approach to blockchain spam: Local reputation over global rules

blockchain, cybersecurity, Don't miss, Ethereum, Features, Hot stuff, News, research, spam /

A new approach to blockchain spam: Local reputation over global rules 2025-10-17 at 10:18 By Mirko Zorz Spam has long been a nuisance in blockchain networks, clogging transaction queues and driving up fees. A new research paper from Delft University of Technology introduces a decentralized solution called STARVESPAM that could help nodes in permissionless blockchains

A new approach to blockchain spam: Local reputation over global rules Read More »

SAP zero-day wake-up call: Why ERP systems need a unified defense

0-day, Don't miss, News, Onapsis, threat detection, Video, vulnerability management /

SAP zero-day wake-up call: Why ERP systems need a unified defense 2025-10-17 at 08:52 By Help Net Security In this Help Net Security video, Paul Laudanski, Director of Research at Onapsis, discusses key lessons from the SAP zero-day vulnerability. He explains why business-critical systems like ERP and CRM remain top targets for attackers, since they

SAP zero-day wake-up call: Why ERP systems need a unified defense Read More »

“Perfect” Adobe Experience Manager vulnerability is being exploited (CVE-2025-54253)

Adobe, CISA, Don't miss, exploit, Hot stuff, News, security update, vulnerability /

“Perfect” Adobe Experience Manager vulnerability is being exploited (CVE-2025-54253) 2025-10-16 at 19:52 By Zeljka Zorz CISA has added CVE-2025-54253, a misconfiguration vulnerability in Adobe Experience Manager (AEM) Forms on Java Enterprise Edition (JEE), to its Known Exploited Vulnerabilities catalog, thus warning of detected in-the-wild exploitation. Adobe fixed the vulnerability in August 2025, along with CVE-2025-54254,

“Perfect” Adobe Experience Manager vulnerability is being exploited (CVE-2025-54253) Read More »

When trusted AI connections turn hostile

Anaconda, Artificial Intelligence, cybersecurity, Don't miss, Features, Hot stuff, LLMs, News, research /

When trusted AI connections turn hostile 2025-10-16 at 09:02 By Mirko Zorz Researchers have revealed a new security blind spot in how LLM applications connect to external systems. Their study shows that malicious Model Context Protocol (MCP) servers can quietly take control of hosts, manipulate LLM behavior, and deceive users, all while staying undetected by

When trusted AI connections turn hostile Read More »

Identifying risky candidates: Practical steps for security leaders

cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, identity verification, Insider Threat, News, Nisos, opinion, strategy /

Identifying risky candidates: Practical steps for security leaders 2025-10-16 at 08:32 By Help Net Security Effective insider threat defense begins with candidate vetting. Background checks and reference calls can confirm elements of an applicant’s history, but they rarely surface the deeper risks that can turn into costly problems down the line. Identity verification, credential validation,

Identifying risky candidates: Practical steps for security leaders Read More »

Humanoid robot found vulnerable to Bluetooth hack, data leaks to China

cyber espionage, cybersecurity, Don't miss, hardware, industrial robots, News, Privacy, research, vulnerability /

Humanoid robot found vulnerable to Bluetooth hack, data leaks to China 2025-10-16 at 07:33 By Sinisa Markovic Alias Robotics has published an analysis of the Unitree G1 humanoid robot, concluding that the device can be exploited as a tool for espionage and cyber attacks. A robot that can be hacked through Bluetooth Their tests show

Humanoid robot found vulnerable to Bluetooth hack, data leaks to China Read More »

F5 data breach: “Nation-state” attackers stole BIG-IP source code, vulnerability info

CrowdStrike, data breach, data theft, Don't miss, F5 Networks, Hot stuff, IOActive, Mandiant, NCC Group, NCSC, networking, News, source code /

F5 data breach: “Nation-state” attackers stole BIG-IP source code, vulnerability info 2025-10-15 at 18:39 By Zeljka Zorz US tech company F5 has suffered a breach, and the attackers made off with source code of and vulnerability information related to its BIG-IP family of networking and security products, the company confirmed today. BIG-IP vulnerabilities are often

F5 data breach: “Nation-state” attackers stole BIG-IP source code, vulnerability info Read More »

Microsoft patches three zero-days actively exploited by attackers

0patch, Don't miss, drivers, Hot stuff, Immersive, Microsoft, Microsoft Exchange, MS Office, News, Patch Tuesday, Tenable, Trend Micro, Windows /

Microsoft patches three zero-days actively exploited by attackers 2025-10-15 at 13:18 By Zeljka Zorz On October 2025 Patch Tuesday, Microsoft released fixes for 175+ vulnerabilities, including three zero-days under active attack: CVE-2025-24990, CVE-2025-59230, and CVE-2025-47827. The actively exploited vulnerabilities are an unusual mix CVE-2025-24990 is in the third-party driver (ltmdm64.sys) for the software-based Agere Modem,

Microsoft patches three zero-days actively exploited by attackers Read More »

Maltrail: Open-source malicious traffic detection system

Don't miss, GitHub, Linux, malware detection, monitoring, News, open source, software, Threat Intelligence, traffic monitoring /

Maltrail: Open-source malicious traffic detection system 2025-10-15 at 08:30 By Sinisa Markovic Maltrail is an open-source network traffic detection system designed to spot malicious or suspicious activity. It works by checking traffic against publicly available blacklists, as well as static lists compiled from antivirus reports and user-defined sources. These “trails” can include domain names, URLs,

Maltrail: Open-source malicious traffic detection system Read More »

Building trust in AI-powered security operations

Artificial Intelligence, cybersecurity, Don't miss, Hot stuff, News, Splunk, threat detection, Video /

Building trust in AI-powered security operations 2025-10-15 at 08:22 By Help Net Security In this Help Net Security video, James Hodge, VP, Global Specialist Organisation at Splunk, explores the transformative role of AI in cybersecurity threat detection. He explains how AI’s ability to process vast amounts of data and detect anomalies faster than humans is

Building trust in AI-powered security operations Read More »

What if your privacy tools could learn as they go?

Countly, data security, Don't miss, Features, framework, healthcare, Hot stuff, News, Privacy, research /

What if your privacy tools could learn as they go? 2025-10-14 at 11:49 By Mirko Zorz A new academic study proposes a way to design privacy mechanisms that can make use of prior knowledge about how data is distributed, even when that information is incomplete. The method allows privacy guarantees to stay mathematically sound while

What if your privacy tools could learn as they go? Read More »

The solar power boom opened a backdoor for cybercriminals

Bitdefender, CISO, critical infrastructure, cybersecurity, Don't miss, ENCS, energy sector, News, strategy, threats, tips /

The solar power boom opened a backdoor for cybercriminals 2025-10-14 at 11:49 By Sinisa Markovic Solar isn’t low risk anymore. Adoption has turned inverters, aggregators, and control software into attack surfaces capable of disrupting service and undermining confidence in the transition. Cyber threats expose weak spots in solar power systems Until recently, security risks in

The solar power boom opened a backdoor for cybercriminals Read More »

What Chat Control means for your privacy

Compliance, Don't miss, Europe, Features, Government, Hot stuff, News, Privacy, regulation, scanning, surveillance, Wire /

What Chat Control means for your privacy 2025-10-14 at 08:00 By Mirko Zorz The EU’s proposed Chat Control (CSAM Regulation) aims to combat child sexual abuse material by requiring digital platforms to detect, report, and remove illegal content, including grooming behaviors. Cybersecurity experts warn that such measures could undermine encryption, create new attack surfaces, and

What Chat Control means for your privacy Read More »

Security validation: The key to maximizing ROI from security investments

cyber resilience, cybersecurity, Don't miss, Hot stuff, investment, Mastercard, News, Picus Security, security ROI /

Security validation: The key to maximizing ROI from security investments 2025-10-14 at 08:00 By Help Net Security Every sizable organization invests heavily in firewalls, SIEMs, EDRs, and countless other technologies that form the backbone of a modern enterprise’s cyber defenses. Yet despite these significant investments, attackers continue to exploit misconfigurations, untested rules, and hidden dependencies

Security validation: The key to maximizing ROI from security investments Read More »

Building a healthcare cybersecurity strategy that works

Artificial Intelligence, cybersecurity, Don't miss, Features, healthcare, Hot stuff, News, Ochsner Health, regulation, strategy /

Building a healthcare cybersecurity strategy that works 2025-10-13 at 09:41 By Mirko Zorz In this Help Net Security interview, Wayman Cummings, CISO at Ochsner Health, talks about building a healthcare cybersecurity strategy, even when resources are tight. He explains how focusing on areas like vulnerability management and network segmentation can make the biggest difference. Cummings

Building a healthcare cybersecurity strategy that works Read More »

AI-generated images have a problem of credibility, not creativity

cybersecurity, Don't miss, generative AI, News, strategy /

AI-generated images have a problem of credibility, not creativity 2025-10-13 at 08:34 By Sinisa Markovic GenAI simplifies image creation, yet it creates hard problems around intellectual property, authenticity, and accountability. Researchers at Queen’s University in Canada examined watermarking as a way to tag AI images so origin and integrity can be checked. Watermarking scenario overview

AI-generated images have a problem of credibility, not creativity Read More »

The five-minute guide to OT cyber resilience

critical infrastructure, cyber resilience, cybersecurity, Don't miss, e2e-assure, Hot stuff, ICS/SCADA, News, remote access, Video /

The five-minute guide to OT cyber resilience 2025-10-13 at 08:19 By Help Net Security In this Help Net Security video, Rob Demain, CEO of e2e-assure, explains the essentials of OT cybersecurity resilience. He discusses the importance of understanding remote access points, supply chain connections, and the need for specialized sensors to monitor OT networks that

The five-minute guide to OT cyber resilience Read More »

Another remotely exploitable Oracle EBS vulnerability requires your attention (CVE-2025-61884)

CVE, Don't miss, Hot stuff, News, Oracle, vulnerability /

Another remotely exploitable Oracle EBS vulnerability requires your attention (CVE-2025-61884) 2025-10-12 at 13:18 By Zeljka Zorz Oracle has revealed the existence of yet another remotely exploitable Oracle E-Business Suite vulnerability (CVE-2025-61884). About CVE-2025-61884 CVE-2025-61884 is a vulnerability in the Runtime user interface in the Oracle Configurator product of Oracle E-Business Suite (EBS). Like CVE-2025-61882 before

Another remotely exploitable Oracle EBS vulnerability requires your attention (CVE-2025-61884) Read More »

Scroll to Top