…it’s not IF, it’s WHEN. – Wiadomości i narzędzia z dziedziny bezpieczeństwa cyfrowego.

NEWS PL

Deep#Door: nowy RAT dla Windows wykorzystuje ukryty łańcuch infekcji, trwałość i tunelowanie TCP
Source: SecurityBezTabu.pl Published on 2026-05-03
Trellix potwierdza naruszenie repozytorium kodu źródłowego
Source: SecurityBezTabu.pl Published on 2026-05-03
Dwóch amerykańskich ekspertów cyberbezpieczeństwa skazanych za udział w atakach ransomware ALPHV BlackCat
Source: SecurityBezTabu.pl Published on 2026-05-03
Bluekit: nowy phishing kit z asystentem AI i automatyzacją rejestracji domen
Source: SecurityBezTabu.pl Published on 2026-05-03
76% skradzionych kryptowalut w 2026 roku powiązano z Koreą Północną
Source: SecurityBezTabu.pl Published on 2026-05-03
ConsentFix v3 uderza w Azure: zautomatyzowany phishing OAuth omija klasyczne zabezpieczenia
Source: SecurityBezTabu.pl Published on 2026-05-03
Masowe ataki ransomware „Sorry” wykorzystują krytyczną lukę w cPanel i WHM
Source: SecurityBezTabu.pl Published on 2026-05-03
30 tys. kont Facebook przejętych w kampanii phishingowej z użyciem Google AppSheet
Source: SecurityBezTabu.pl Published on 2026-05-03
Instructure ujawnia incydent cyberbezpieczeństwa. Trwa analiza wpływu na Canvas i usługi edukacyjne
Source: SecurityBezTabu.pl Published on 2026-05-03
Francja: zatrzymano 15-latka po wycieku danych z agencji France Titres
Source: SecurityBezTabu.pl Published on 2026-05-03
76% skradzionych kryptowalut w 2026 roku miało trafić do Korei Północnej
Source: SecurityBezTabu.pl Published on 2026-05-02
Copy Fail (CVE-2026-31431): groźna luka w Linuksie umożliwia eskalację uprawnień do root
Source: SecurityBezTabu.pl Published on 2026-05-02
SonicWall łata trzy groźne luki w SonicOS. Zagrożone zapory Gen 6, 7 i 8
Source: SecurityBezTabu.pl Published on 2026-05-02
Phishing z kodami QR rośnie w siłę. Jak zmieniają się ataki e-mailowe w 2026 roku
Source: SecurityBezTabu.pl Published on 2026-05-02
Anthropic uruchamia Claude Security, odpowiadając na wzrost exploitów wspieranych przez AI
Source: SecurityBezTabu.pl Published on 2026-05-02
AI przyspiesza cyberprzestępczość przemysłową. Czas na reakcję skraca się do godzin
Source: SecurityBezTabu.pl Published on 2026-05-02
Wyciek z Jerry’s Store ujawnił 345 tys. skradzionych kart płatniczych
Source: SecurityBezTabu.pl Published on 2026-05-02
Atak „Mini Shai-Hulud” na pakiety SAP npm zwiększa ryzyko dla łańcucha dostaw oprogramowania
Source: SecurityBezTabu.pl Published on 2026-05-02
FBI ostrzega przed wzrostem cyberwspieranych kradzieży ładunków w branży TSL
Source: SecurityBezTabu.pl Published on 2026-05-02
Cisco udostępnia Model Provenance Kit. Nowe narzędzie open source wzmacnia bezpieczeństwo łańcucha dostaw AI
Source: SecurityBezTabu.pl Published on 2026-05-02
Platformy AI jako nowy kanał dystrybucji malware. Nadużycia w Hugging Face i ClawHub
Source: SecurityBezTabu.pl Published on 2026-05-02
Deep#Door: zaawansowany backdoor w Pythonie łączy cyberszpiegostwo i funkcje destrukcyjne
Source: SecurityBezTabu.pl Published on 2026-05-02
Chińsko powiązana kampania cyberszpiegowska uderza w rządy Azji i państwo NATO
Source: SecurityBezTabu.pl Published on 2026-05-02
Zatrute pakiety RubyGems i moduły Go atakują pipeline’y CI/CD i wykradają poświadczenia
Source: SecurityBezTabu.pl Published on 2026-05-02
Tydzień w cyberbezpieczeństwie: Scattered Spider, wyciek danych ADT i krytyczna luka w narzędziu NSA dla ICS
Source: SecurityBezTabu.pl Published on 2026-05-02
Google zmienia bug bounty: niższe stawki za błędy w Chrome, wyższe nagrody za Androida i Pixel
Source: SecurityBezTabu.pl Published on 2026-05-02
30 tys. kont Facebooka przejętych w kampanii phishingowej z użyciem Google AppSheet
Source: SecurityBezTabu.pl Published on 2026-05-02
Vishing i nadużycia SSO napędzają szybkie ataki wymuszające w środowiskach SaaS
Source: SecurityBezTabu.pl Published on 2026-05-02
Rumuński lider grupy swattingowej skazany w USA na 4 lata więzienia
Source: SecurityBezTabu.pl Published on 2026-05-02
Francja: zatrzymano 15-latka po wycieku danych z agencji ANTS
Source: SecurityBezTabu.pl Published on 2026-05-02
Bluekit: nowa platforma phishing-as-a-service z asystentem AI i gotowymi szablonami ataków
Source: SecurityBezTabu.pl Published on 2026-05-02
Dwóch specjalistów cyberbezpieczeństwa skazanych za udział w atakach ransomware BlackCat
Source: SecurityBezTabu.pl Published on 2026-05-02
Weekendowa Lektura: odcinek 674 [2026-05-01]. Bierzcie i czytajcie
Source: zaufanatrzeciastrona Published on 2026-05-01
#CyberMagazyn: Pentagon wchodzi w epokę wojny autonomicznej
Source: cyberdefence24 Published on 2026-05-01
Europol rozbija albańskie centra oszustw telefonicznych. Straty ofiar mogły sięgnąć 50 mln euro
Source: SecurityBezTabu.pl Published on 2026-05-01
Sektor edukacji w Wielkiej Brytanii pod rosnącą presją cyberataków
Source: SecurityBezTabu.pl Published on 2026-05-01
CVE-2024-52533 w GNOME GLib: krytyczny błąd off-by-one w obsłudze SOCKS4
Source: SecurityBezTabu.pl Published on 2026-05-01
Windows 11 25H2 i Hyper-V pod lupą: analiza exploita dla CVE-2026-21248 oraz CVE-2026-21244
Source: SecurityBezTabu.pl Published on 2026-05-01
CVE-2025-46811: krytyczne zdalne wykonanie poleceń w SUSE Manager i Uyuni
Source: SecurityBezTabu.pl Published on 2026-05-01
SumatraPDF 3.5.2: luka w mechanizmie aktualizacji umożliwiała zdalne wykonanie kodu
Source: SecurityBezTabu.pl Published on 2026-05-01
CVE-2026-26157: BusyBox 1.36.1 i 1.37.0 podatne na Path Traversal przez symlinki w archiwach
Source: SecurityBezTabu.pl Published on 2026-05-01
Windows 11 23H2 i CVE-2025-47987: publiczny PoC DoS ujawnia słabość mechanizmów uwierzytelniania
Source: SecurityBezTabu.pl Published on 2026-05-01
CVE-2026-3854 w GitHub Enterprise Server: groźna luka RCE i rosnąca rola AI w analizie binariów
Source: SecurityBezTabu.pl Published on 2026-05-01
AI wykryła 38 luk bezpieczeństwa w OpenEMR. Zagrożone dane medyczne i integralność systemów EHR
Source: SecurityBezTabu.pl Published on 2026-05-01
CVE-2026-2441: aktywnie wykorzystywana luka zero-day w silniku CSS Google Chrome
Source: SecurityBezTabu.pl Published on 2026-05-01
Claude Mythos budzi obawy japońskich finansistów. Czy zaawansowana AI zmienia krajobraz cyberzagrożeń?
Source: SecurityBezTabu.pl Published on 2026-05-01
Anthropic Mythos i Project Glasswing: AI przyspiesza cyberbezpieczeństwo i cyberataki
Source: SecurityBezTabu.pl Published on 2026-05-01
WhatsApp pod lupą: zarzuty o dostęp do wiadomości wywołują pytania o realne bezpieczeństwo komunikatora
Source: SecurityBezTabu.pl Published on 2026-05-01
CVE-2026-42208 w LiteLLM: krytyczne SQL Injection wykorzystane już 36 godzin po ujawnieniu
Source: SecurityBezTabu.pl Published on 2026-05-01
Ukraińskie służby rozbiły masową operację przejmowania kont Roblox
Source: SecurityBezTabu.pl Published on 2026-05-01

NEWS

3 easy-to-miss cybersecurity risks for small businesses
Source: malwarebytes Published on 2026-05-03
CISA Adds Actively Exploited Linux Root Access Bug CVE-2026-31431 to KEV
Source: The Hacker News Published on 2026-05-03
Critrical cPanel flaw mass-exploited in "Sorry" ransomware attacks
Source: bleepingcomputer Published on 2026-05-02
ConsentFix v3 attacks target Azure with automated OAuth abuse
Source: bleepingcomputer Published on 2026-05-02
Disneyland Now Uses Face Recognition on Visitors
Source: WIREDSEC Published on 2026-05-02
Trellix Confirms Source Code Breach With Unauthorized Repository Access
Source: The Hacker News Published on 2026-05-02
Microsoft tests modern Windows Run, says it's faster than legacy dialog
Source: bleepingcomputer Published on 2026-05-02
Edu tech firm Instructure discloses cyber incident, probes impact
Source: bleepingcomputer Published on 2026-05-02
76% of All Crypto Stolen in 2026 Is Now in North Korea
Source: darkreading Published on 2026-05-01
Dangerous New Linux Exploit Gives Attackers Root Access to Countless Computers
Source: WIREDSEC Published on 2026-05-01
30,000 Facebook Accounts Hacked via Google AppSheet Phishing Campaign
Source: The Hacker News Published on 2026-05-01
15-year-old detained over French govt agency data breach
Source: bleepingcomputer Published on 2026-05-01
Story retracted
Source: bleepingcomputer Published on 2026-05-01
If AI's So Smart, Why Does It Keep Deleting Production Databases?
Source: darkreading Published on 2026-05-01
Cybercrime Groups Using Vishing and SSO Abuse in Rapid SaaS Extortion Attacks
Source: The Hacker News Published on 2026-05-01
Criminal IP and Securonix ThreatQ Collaborate to Enhance Threat Intelligence Operations
Source: bleepingcomputer Published on 2026-05-01
China-Linked Hackers Target Asian Governments, NATO State, Journalists, and Activists
Source: The Hacker News Published on 2026-05-01
Microsoft fixes Remote Desktop warnings displaying incorrectly
Source: bleepingcomputer Published on 2026-05-01
Name That Toon: Mark of (Security) Progress
Source: darkreading Published on 2026-05-01
20 Years in Cyber: Dark Reading Marks Milestone With Month of Special Coverage
Source: darkreading Published on 2026-05-01
Microsoft now lets admins choose pre-installed Store apps to uninstall
Source: bleepingcomputer Published on 2026-05-01
Actively exploited cPanel bug exposes millions of websites to takeover
Source: malwarebytes Published on 2026-05-01
Top Five Sales Challenges Costing MSPs Cybersecurity Revenue
Source: The Hacker News Published on 2026-05-01
Windows 11 KB5083631 update released with 34 changes and fixes
Source: bleepingcomputer Published on 2026-05-01
Two Cybersecurity Professionals Get 4-Year Sentences in BlackCat Ransomware Attacks
Source: The Hacker News Published on 2026-05-01
Poisoned Ruby Gems and Go Modules Exploit CI Pipelines for Credential Theft
Source: The Hacker News Published on 2026-05-01
US ransomware negotiators get 4 years in prison over BlackCat attacks
Source: bleepingcomputer Published on 2026-05-01
TeamPCP Hits SAP Packages With 'Mini Shai-Hulud' Attack
Source: darkreading Published on 2026-04-30
Another AI-Assisted Software Scan Yields 9-Year-Old Linux Bug
Source: darkreading Published on 2026-04-30
More PayPal emails hijacked to deliver tech support scams
Source: malwarebytes Published on 2026-04-30
Anthropic's Mythos Has Landed: Here's What Comes Next for Cyber
Source: darkreading Published on 2026-04-30
New Bluekit phishing service includes an AI assistant, 40 templates
Source: bleepingcomputer Published on 2026-04-30
Great responsibility, without great power
Source: talos Published on 2026-04-30
Romanian leader of online swatting ring gets 4 years in prison
Source: bleepingcomputer Published on 2026-04-30
OpenAI Rolls Out ‘Advanced’ Security Mode for At-Risk Accounts
Source: WIREDSEC Published on 2026-04-30
FBI links cybercriminals to sharp surge in cargo theft attacks
Source: bleepingcomputer Published on 2026-04-30
PyTorch Lightning Compromised in PyPI Supply Chain Attack to Steal Credentials
Source: The Hacker News Published on 2026-04-30
Hackers stole hundreds of thousands of Roblox accounts: Here’s what to do
Source: malwarebytes Published on 2026-04-30
April KB5083769 Windows 11 update causes backup software failures
Source: bleepingcomputer Published on 2026-04-30
What Happens in the First 24 Hours After a New Asset Goes Live
Source: bleepingcomputer Published on 2026-04-30

INFLUENCERS

Build a Decoy MCP Server to Catch AI Agent Attackers
Source: Zeltser Published on 2026-05-03
A Ransomware Negotiator Was Working for a Ransomware Gang
Source: Bruce Schneier Published on 2026-05-01
Anti-DDoS Firm Heaped Attacks on Brazilian ISPs
Source: Brian Krebs Published on 2026-04-30
Fast16 Malware
Source: Bruce Schneier Published on 2026-04-30
Plant Honeytokens to Detect Intrusions
Source: Zeltser Published on 2026-04-30
Claude Mythos Has Found 271 Zero-Days in Firefox
Source: Bruce Schneier Published on 2026-04-29
What Anthropic’s Mythos Means for the Future of Cybersecurity
Source: Bruce Schneier Published on 2026-04-28
Weekly Update 501
Source: TroyHunt Published on 2026-04-28
The Personal AI Stack: A Power User's Guide
Source: Zeltser Published on 2026-04-28
Medieval Encrypted Letter Decoded
Source: Bruce Schneier Published on 2026-04-27

CYBERLAW

RODO aktualności – 28.04.2026 r.
Source: dane osobowe Published on 2026-04-28

CERT EU Latest News

CERT EU Latest News

No feed items found.

ADVISORIES / BULLETINS

ADVISORIES / BULLETINS

New Ivanti Security Controls Content Available – 05/02/2026
Source: ivanti patch Published on 2026-05-02
New Ivanti Security Controls Content Available – 05/01/2026
Source: ivanti patch Published on 2026-05-01
New Ivanti Security Controls Content Available – 04/30/2026
Source: ivanti patch Published on 2026-04-30
New Ivanti Security Controls Content Available – 04/29/2026
Source: ivanti patch Published on 2026-04-29
New Ivanti Security Controls Content Available – 04/28/2026
Source: ivanti patch Published on 2026-04-28
New Ivanti Security Controls Content Available – 04/27/2026
Source: ivanti patch Published on 2026-04-27
New Ivanti Security Controls Content Available – 04/27/2026
Source: ivanti patch Published on 2026-04-27

ALERTS

No feed items found.

TOOLS

MISP 2.5.37 - Templates, Assemble!
Source: MISP Published on 2026-04-29

VULNERABILITIES

VULNERABILITIES

No feed items found.

EXPLOITS

[webapps] Repetier-Server 1.4.10 - Path Traversal
Source: exploit-db Published on 2026-04-30
[webapps] Cybersecurity AI (CAI) Framework 0.5.10 - Command Injection
Source: exploit-db Published on 2026-04-30
[webapps] Python-Multipart 0.0.22 - Path Traversal
Source: exploit-db Published on 2026-04-30
[webapps] SUSE Manager 4.3.15 - Code Execution
Source: exploit-db Published on 2026-04-30
[webapps] FUXA 1.2.8 - Authentication Bypass + RCE Exploit
Source: exploit-db Published on 2026-04-30
[webapps] deephas 1.0.7 - Prototype Pollution
Source: exploit-db Published on 2026-04-30
[webapps] Erugo 0.2.14 - Remote Code Execution (RCE)
Source: exploit-db Published on 2026-04-30
[webapps] Camaleon CMS v2.9.0 - Path Traversal
Source: exploit-db Published on 2026-04-30
[webapps] JUNG Smart Visu Server 1.1.1050 - Dos
Source: exploit-db Published on 2026-04-30
[local] Windows 11 25H2 - Heap Overflow
Source: exploit-db Published on 2026-04-30
[webapps] BusyBox 1.37.0 - Path Traversal
Source: exploit-db Published on 2026-04-30
[webapps] SumatraPDF 3.5.2 - Remote Code Execution
Source: exploit-db Published on 2026-04-30
[webapps] NiceGUI 3.6.1 - Path Traversal
Source: exploit-db Published on 2026-04-30
[webapps] Js2Py 0.74 - RCE
Source: exploit-db Published on 2026-04-30
[webapps] Frigate NVR 0.16.3 - Remote Code Execution
Source: exploit-db Published on 2026-04-30
[webapps] HUSTOJ Zip-Slip v26.01.24 - RCE
Source: exploit-db Published on 2026-04-30
[local] Windows 11 23H2 - Denial of Service (DoS)
Source: exploit-db Published on 2026-04-30
[local] Google Chrome 145.0.7632.75 - CSSFontFeatureValuesMap
Source: exploit-db Published on 2026-04-30
[local] GNU InetUtils 2.6 - Telnetd Remote Privilege Escalation
Source: exploit-db Published on 2026-04-29
[local] Fedora - Local Privilege Escalation
Source: exploit-db Published on 2026-04-29

MALWARE

3 easy-to-miss cybersecurity risks for small businesses
Source: malwarenews Published on 2026-05-03
Everest Ransomware Group Strikes Canadian Firm Symcor
Source: malwarenews Published on 2026-05-03
Cmdorganization Ransomware Attack on Zampell Ltd
Source: malwarenews Published on 2026-05-03
Blackwater Ransomware Attack on Grupo EBD
Source: malwarenews Published on 2026-05-03
AiLock Ransomware Attack on Site Design Group Ltd
Source: malwarenews Published on 2026-05-03
Cmdorganization Strikes JG Stewart Construction in Ransomware Attack
Source: malwarenews Published on 2026-05-03
Pear Group Strikes Beyond Measure & Associates
Source: malwarenews Published on 2026-05-03
Stressing LLMs - Triage Stage
Source: malwareanalysys Published on 2026-05-03
Tuned by Design: Why Detection Engineering Needs Its Own Development Lifecycle
Source: malwarenews Published on 2026-05-02
Maryland pharmacist indicted on unauthorized computer access related to U. Maryland Medical Center
Source: malwarenews Published on 2026-05-02
Russian Hacker Known as “Digit” Pleads Guilty to Cyberattacks on Ukraine and the US
Source: malwarenews Published on 2026-05-02
Tune In: The Future of AI-Powered Vulnerability Discovery
Source: malwarenews Published on 2026-05-02
CVE-2026-31431: Copy Fail vulnerability enables Linux root privilege escalation across cloud environments
Source: malwarenews Published on 2026-05-02
Hunting Copy Fail: 732 Bytes to Root
Source: malwareforensics Published on 2026-05-02
MAD Bugs: Finding and Exploiting a 21-Year-Old Vulnerability in PHP
Source: malwareanalysys Published on 2026-05-02
What Is Dark AI? How to Protect Yourself From This Growing Threat
Source: malwarenews Published on 2026-05-02
A Refresh of the Annotated ESI Protocol
Source: malwarenews Published on 2026-05-01
Malicious Ad for Homebrew Leads to MacSync Stealer, (Fri, May 1st)
Source: malwarenews Published on 2026-05-01
Michigan residents sue Thomson Reuters over public display of Social Security numbers
Source: malwarenews Published on 2026-05-01
Aurora® Managed Endpoint Defense
Source: malwarenews Published on 2026-05-01

CYBERCRIME

No feed items found.

ANONYMOUS

No feed items found.

INFOOPS

Russia’s fake nuclear drills and real failure in Mali
Source: EUvsDISINFO Published on 2026-05-01
Kobieta, która zabrała alkohol podczas kolacji korespondentów, nie jest ambasadorką Ukrainy
Source: FakeNews.pl Published on 2026-04-29
Disinfo Update 29/04/2026
Source: DisInfo.eu Published on 2026-04-29
Rząd nie uznał pszczół za zagrożenie dla środowiska
Source: FakeNews.pl Published on 2026-04-28
Russia’s election interference playbook targets Armenia
Source: EUvsDISINFO Published on 2026-04-27

APT

No feed items found.

CYBERTERRORISM

No feed items found.

CYBERWARFARE

It’s time MPs levelled with us: Britain is already at war, and we’ll need to do two things to survive it | Gaby Hinsliff
Source: theguardian cyberwar Published on 2026-04-28

ARTICLES

‘Accountants need to be creative and curious’ says Ramsey Brown partner
Source: raconteur Published on 2026-05-01
Bridewell Joins Global Incident Response Network FIRST as Full Member
Source: itsecurityguru Published on 2026-05-01
86% of Phishing Attacks are AI Driven, KnowBe4 Research Finds
Source: itsecurityguru Published on 2026-05-01
Lessons from the PocketOS Incident: When AI Agents Go Beyond Their Limits
Source: itsecurityguru Published on 2026-05-01
Five practical steps for safe and secure AI-enabled legal work
Source: raconteur Published on 2026-05-01
The Billionaire Blueprint: why leadership is now a system, not a vision
Source: raconteur Published on 2026-04-30
Forescout Launches Mission:Possible Global Partner Tour to Drive Channel Growth Across 90 Cities
Source: itsecurityguru Published on 2026-04-30
Best AI security tools for exposure assessment in 2026
Source: itsecurityguru Published on 2026-04-30
Value of European VC deals masks volume decline
Source: raconteur Published on 2026-04-29
It is complicated: cyber into the civil–military relationship
Source: oxford journal of cybersecurity Published on 2026-04-29
Half of UK CEOs Expect AI to Cut Jobs, But Data Tells Different Story
Source: raconteur Published on 2026-04-28
CFO on the spot: Aryza’s Niall O’Sullivan on
Source: raconteur Published on 2026-04-28
Beyond the perimeter: Why identity and cyber security are one single story
Source: itsecurityguru Published on 2026-04-28
DORA and the Practical Test of Operational Resilience
Source: itsecurityguru Published on 2026-04-28