…it’s not IF, it’s WHEN. – Wiadomości i narzędzia z dziedziny bezpieczeństwa cyfrowego.

NEWS PL

Cyberprzestępcy przebiegle podszywają się pod mObywatela
Source: cyberdefence24 Published on 2026-05-08
Chrome właśnie załatał ponad 120 podatności (!)
Source: sekurak Published on 2026-05-08
Wchodzisz na stronę juwenaliów… a tu taka niespodzianka [możliwa infekcja malware]
Source: sekurak Published on 2026-05-08
Lokalizacja ukraińskiego wojska ujawniona na TikToku
Source: cyberdefence24 Published on 2026-05-08
Dirty Frag – kolejna metoda na root’a pod Linuxem
Source: sekurak Published on 2026-05-08
Atak na polską spółkę medyczną. Białoruski ślad
Source: cyberdefence24 Published on 2026-05-08
Ale sprytna próba podszycia się pod mObywatela. Wygląda jakbyś rzeczywiście dostał komunikat z prawdziwej, rządowej appki. Uważajcie!
Source: sekurak Published on 2026-05-08
Zmiany korzystne dla rozwoju AI. UE upraszcza przepisy
Source: cyberdefence24 Published on 2026-05-08
Małe firmy i ich cyberbezpieczeństwo. Największe ryzyka często są najprostsze do naprawy
Source: kpt Hack Published on 2026-05-08
Pierwszy głośny cyberatak wspierany przez AI nie zdołał sforsować systemów OT
Source: SecurityBezTabu.pl Published on 2026-05-08
CVE-2025-34282 w ThingsBoard: podatność SSRF przez złośliwe pliki SVG w Image Upload Gallery
Source: SecurityBezTabu.pl Published on 2026-05-08
Nowa metoda obejścia szyfrowania Google Chrome zagraża danym sesyjnym użytkowników
Source: SecurityBezTabu.pl Published on 2026-05-08
Krytyczna luka w NocoBase pozwala na ucieczkę z sandboxa VM i zdalne wykonanie kodu
Source: SecurityBezTabu.pl Published on 2026-05-08
Bludit CMS przed wersją 3.18.4 podatny na RCE przez nieograniczone przesyłanie plików
Source: SecurityBezTabu.pl Published on 2026-05-08
LuaJIT 2.1.x i FFI: jak niezaufane skrypty mogą prowadzić do zdalnego wykonania kodu
Source: SecurityBezTabu.pl Published on 2026-05-08
Ghost CMS: krytyczna luka SQL Injection w Content API zagraża poufności danych
Source: SecurityBezTabu.pl Published on 2026-05-08
CVE-2026-32746: krytyczna luka w GNU InetUtils telnetd umożliwia zdalne przejęcie przed logowaniem
Source: SecurityBezTabu.pl Published on 2026-05-08
Wzrost nadużyć platformy Vercel w kampaniach phishingowych
Source: SecurityBezTabu.pl Published on 2026-05-08
LLM-y w atakach na infrastrukturę krytyczną: incydent wodociągów w Meksyku ujawnia nowy etap zagrożeń OT
Source: SecurityBezTabu.pl Published on 2026-05-08
Krytyczna luka w Cline Kanban pozwalała na przejęcie lokalnego agenta AI przez złośliwą stronę
Source: SecurityBezTabu.pl Published on 2026-05-08
TrustFall i Claude Code: jak zaufanie do repozytorium może doprowadzić do wykonania złośliwego kodu
Source: SecurityBezTabu.pl Published on 2026-05-08
Atak supply chain na DAEMON Tools Lite: producent potwierdza kompromitację instalatorów
Source: SecurityBezTabu.pl Published on 2026-05-08
Ekstradycja po 17 latach: Gavril Sandu stanie przed sądem w USA za udział w schemacie vishingowym
Source: SecurityBezTabu.pl Published on 2026-05-08
Atak na kolej dużych prędkości na Tajwanie ujawnił krytyczne luki w zabezpieczeniach TETRA
Source: SecurityBezTabu.pl Published on 2026-05-08
Chrome 148 z 127 poprawkami bezpieczeństwa. Google usuwa krytyczne luki w Blink, Mobile i Chromoting
Source: SecurityBezTabu.pl Published on 2026-05-08
Większość ataków ransomware wciąż pozostaje poza opinią publiczną
Source: SecurityBezTabu.pl Published on 2026-05-08
Claude Code pod presją: ukryte przejęcie MCP umożliwia kradzież tokenów OAuth
Source: SecurityBezTabu.pl Published on 2026-05-08
Cisco łata luki wysokiego ryzyka w produktach enterprise. Zagrożone systemy Unity Connection, SG350 i platformy orkiestracyjne
Source: SecurityBezTabu.pl Published on 2026-05-08
Phishing na ManageWP przez reklamy Google: kampania celuje w administratorów WordPressa
Source: SecurityBezTabu.pl Published on 2026-05-08
Cisco łata krytyczną lukę DoS w CNC i NSO. Atak wymaga ręcznego restartu urządzeń
Source: SecurityBezTabu.pl Published on 2026-05-08
Złośliwe pakiety PyPI rozprzestrzeniały malware ZiChatBot przez API Zulip na Windows i Linux
Source: SecurityBezTabu.pl Published on 2026-05-08
Krytyczne luki w vm2 dla Node.js umożliwiają ucieczkę z sandboxa i zdalne wykonanie kodu
Source: SecurityBezTabu.pl Published on 2026-05-08
Fałszywa strona Claude AI rozprzestrzenia malware Beagle na Windows
Source: SecurityBezTabu.pl Published on 2026-05-08
Krytyczna luka CVE-2026-0300 w PAN-OS aktywnie wykorzystywana do przejmowania zapór z uprawnieniami root
Source: SecurityBezTabu.pl Published on 2026-05-08
Członek gangu kryptowalutowego skazany na 6,5 roku więzienia za udział w kradzieży ponad 230 mln USD
Source: SecurityBezTabu.pl Published on 2026-05-08
Amerykanie skazani za „farmy laptopów” dla północnokoreańskich pracowników IT
Source: SecurityBezTabu.pl Published on 2026-05-08
Przeglądarka jako ślepy punkt DLP: jak nowoczesne przepływy pracy omijają klasyczne mechanizmy ochrony danych
Source: SecurityBezTabu.pl Published on 2026-05-08
Australia ostrzega przed kampanią ClickFix rozprzestrzeniającą Vidar Stealer przez przejęte strony WordPress
Source: SecurityBezTabu.pl Published on 2026-05-08
Uważaj na aplikacje w Telegramie. FEMITBOT wykorzystuje Telegram Mini Apps do wyłudzeń i serwowania malware
Source: sekurak Published on 2026-05-07
⚠️ Uwaga na złośliwe SMS-y od mObywatela!
Source: niebezpiecznik Published on 2026-05-07
Laboratoria Medyczne Optimed zhackowane, dane pacjentów mogły zostać wykradzione
Source: niebezpiecznik Published on 2026-05-07
Gawkowski wysłał jasny sygnał Big Techom. „Tego nie odpuścimy”
Source: cyberdefence24 Published on 2026-05-07
Oficjalnie: nowy dowódca polskich cyberwojsk
Source: cyberdefence24 Published on 2026-05-07
Admin nowej generacji. Case studies, narzędzia AI, praktyka. Nowe szkolenie!
Source: sekurak Published on 2026-05-07
Admin nowej generacji. Case studies, narzędzia AI, praktyka – jak robić, żeby się nie narobić
Source: sekurak Published on 2026-05-07
1 na 1 z Krzysztofem Gawkowskim
Source: cyberdefence24 Published on 2026-05-07
Wojna kognitywna to walka o percepcję. Eksperci wskazali mechanizmy wpływu
Source: cyberdefence24 Published on 2026-05-07
Cyberbezpieczeństwo made in Europe: odpowiedź na globalną niepewność
Source: cyberdefence24 Published on 2026-05-07
False positive w Microsoft Defender usuwa certyfikaty root DigiCert
Source: kpt Hack Published on 2026-05-07
Wielka akcja Policji. Rozbito siatkę twórców treści pedofilskich
Source: cyberdefence24 Published on 2026-05-07

NEWS

Former govt contractor convicted for wiping dozens of federal databases
Source: bleepingcomputer Published on 2026-05-08
Meet Rassvet, Russia’s Answer to Starlink
Source: WIREDSEC Published on 2026-05-08
New Linux 'Dirty Frag' zero-day gives root on all major distros
Source: bleepingcomputer Published on 2026-05-08
Linux Kernel Dirty Frag LPE Exploit Enables Root Access Across Major Distributions
Source: The Hacker News Published on 2026-05-08
The Canvas Hack Is a New Kind of Ransomware Debacle
Source: WIREDSEC Published on 2026-05-08
Canvas login portals hacked in mass ShinyHunters extortion campaign
Source: bleepingcomputer Published on 2026-05-07
New TCLBanker malware self-spreads over WhatsApp and Outlook
Source: bleepingcomputer Published on 2026-05-07
After Replacing TeamPCP Malware, 'PCPJack' Steals Cloud Secrets
Source: darkreading Published on 2026-05-07
How to Disable Google's Gemini in Chrome
Source: WIREDSEC Published on 2026-05-07
New PCPJack worm steals credentials, cleans TeamPCP infections
Source: bleepingcomputer Published on 2026-05-07
Australia warns of ClickFix attacks pushing Vidar Stealer malware
Source: bleepingcomputer Published on 2026-05-07
Unplug your way to better code
Source: talos Published on 2026-05-07
Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access
Source: The Hacker News Published on 2026-05-07
PCPJack Credential Stealer Exploits 5 CVEs to Spread Worm-Like Across Cloud Systems
Source: The Hacker News Published on 2026-05-07
Has CISA Finally Found Its New Leader in Tom Parker?
Source: darkreading Published on 2026-05-07
Ivanti warns of new EPMM flaw exploited in zero-day attacks
Source: bleepingcomputer Published on 2026-05-07
Massive AI investment scam network spans 15,500 domains
Source: malwarebytes Published on 2026-05-07
The Browser Is Breaking Your DLP: How Data Slips Past Modern Controls
Source: bleepingcomputer Published on 2026-05-07
One Click, Total Shutdown: The "Patient Zero" Webinar on Killing Stealth Breaches
Source: The Hacker News Published on 2026-05-07
Americans sentenced for running 'laptop farms' for North Korea
Source: bleepingcomputer Published on 2026-05-07
PAN-OS RCE Exploit Under Active Use Enabling Root Access and Espionage
Source: The Hacker News Published on 2026-05-07
'TrustFall' Convention Exposes Claude Code Execution Risk
Source: darkreading Published on 2026-05-07
World's First AI-Driven Cyberattack Couldn't Breach OT Systems
Source: darkreading Published on 2026-05-07
Crypto gang member gets 6.5 years for role in $230 million heist
Source: bleepingcomputer Published on 2026-05-07
Webinar: Why modern attacks require both security and recovery
Source: bleepingcomputer Published on 2026-05-07
ThreatsDay Bulletin: Edge Plaintext Passwords, ICS 0-Days, Patch-or-Die Alerts and 25+ New Stories
Source: The Hacker News Published on 2026-05-07
Thousands of Vibe-Coded Apps Expose Corporate and Personal Data on the Open Web
Source: WIREDSEC Published on 2026-05-07
Palo Alto Networks firewall zero-day exploited for nearly a month
Source: bleepingcomputer Published on 2026-05-07
Day Zero Readiness: The Operational Gaps That Break Incident Response
Source: The Hacker News Published on 2026-05-07
If a fake moustache can fool age checks, is the Online Safety Act working?
Source: malwarebytes Published on 2026-05-07
Fake Claude AI website delivers new 'Beagle' Windows malware
Source: bleepingcomputer Published on 2026-05-07
PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linux
Source: The Hacker News Published on 2026-05-07
vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution
Source: The Hacker News Published on 2026-05-07
Hackers abuse Google ads for GoDaddy ManageWP login phishing
Source: bleepingcomputer Published on 2026-05-06
A Kid With a Fake Mustache Tricked an Online Age-Verification Tool
Source: WIREDSEC Published on 2026-05-06
Yet Another Way to Bypass Google Chrome's Encryption Protection
Source: darkreading Published on 2026-05-06
Instructure Breach Exposes Schools' Vendor Dependence
Source: darkreading Published on 2026-05-06
Mirai-Based xlabs_v1 Botnet Exploits ADB to Hijack IoT Devices for DDoS Attacks
Source: The Hacker News Published on 2026-05-06
Critical vm2 sandbox bug lets attackers execute code on hosts
Source: bleepingcomputer Published on 2026-05-06
New Cisco DoS flaw requires manual reboot to revive devices
Source: bleepingcomputer Published on 2026-05-06

INFLUENCERS

Canvas Breach Disrupts Schools & Colleges Nationwide
Source: Brian Krebs Published on 2026-05-08
Smart Glasses for the Authorities
Source: Bruce Schneier Published on 2026-05-07
Rowhammer Attack Against NVIDIA Chips
Source: Bruce Schneier Published on 2026-05-06
Weekly Update 502
Source: TroyHunt Published on 2026-05-06
DarkSword Malware
Source: Bruce Schneier Published on 2026-05-05
Hacking Polymarket
Source: Bruce Schneier Published on 2026-05-04
Build a Decoy MCP Server to Catch AI Agent Attackers
Source: Zeltser Published on 2026-05-03
A Ransomware Negotiator Was Working for a Ransomware Gang
Source: Bruce Schneier Published on 2026-05-01

CYBERLAW

Jak zarządzać RODO w grupie kapitałowej
Source: dane osobowe Published on 2026-05-05
RODO aktualności – 05.05.2026 r.
Source: dane osobowe Published on 2026-05-05

CERT EU Latest News

CERT EU Latest News

No feed items found.

ADVISORIES / BULLETINS

ADVISORIES / BULLETINS

New Ivanti Security Controls Content Available – 05/07/2026
Source: ivanti patch Published on 2026-05-07
New Ivanti Security Controls Content Available – 05/06/2026
Source: ivanti patch Published on 2026-05-06
New Ivanti Security Controls Content Available – 05/05/2026
Source: ivanti patch Published on 2026-05-05
New Ivanti Security Controls Content Available – 05/04/2026
Source: ivanti patch Published on 2026-05-04
New Ivanti Security Controls Content Available – 05/02/2026
Source: ivanti patch Published on 2026-05-02
New Ivanti Security Controls Content Available – 05/01/2026
Source: ivanti patch Published on 2026-05-01

ALERTS

No feed items found.

TOOLS

No feed items found.

VULNERABILITIES

VULNERABILITIES

No feed items found.

EXPLOITS

[webapps] LuaJIT 2.1.1774638290 - Arbitrary Code Execution
Source: exploit-db Published on 2026-05-07
[webapps] Ghost CMS 6.19.0 - SQLi
Source: exploit-db Published on 2026-05-07
[remote] telnetd 2.7 - Buffer Overflow
Source: exploit-db Published on 2026-05-07
[local] NocoBase 2.0.27 - VM Sandbox Escape
Source: exploit-db Published on 2026-05-07
[webapps] ThingsBoard IoT Platform 4.2.0 - Server-Side Request Forgery (SSRF)
Source: exploit-db Published on 2026-05-07
[webapps] Bludit CMS 3.18.4 - RCE
Source: exploit-db Published on 2026-05-07
[local] Windows 11 24H2 - Local Privilege Escalation
Source: exploit-db Published on 2026-05-04
[webapps] Traccar GPS Tracking System 6.11.1 - Cross-Site WebSocket Hijacking (CSWSH)
Source: exploit-db Published on 2026-05-04
[hardware] Linksys E1200 2.0.04 - Authenticated Stack Buffer Overflow (RCE)
Source: exploit-db Published on 2026-05-04
[local] Linux nf_tables 6.19.3 - Local Privilege Escalation
Source: exploit-db Published on 2026-05-04
[local] Linux Kernel proc_readdir_de() 6.18-rc5 - Local Privilege Escalation
Source: exploit-db Published on 2026-05-04
[webapps] MindsDB 25.9.1.1 - Path Traversal
Source: exploit-db Published on 2026-05-04

MALWARE

Atlantic ‘Cocaine Highway’ broken in coordinated maritime operation
Source: malwarenews Published on 2026-05-08
CVE-2025-68670: discovering an RCE vulnerability in xrdp
Source: malwarenews Published on 2026-05-08
Autonomous Exposure Validation: Automating Your CTI and Red Team Workflows
Source: malwarenews Published on 2026-05-08
Another Universal Linux Local Privilege Escalation (LPE) Vulnerability: Dirty Frag, (Fri, May 8th)
Source: malwarenews Published on 2026-05-08
Windows updates and why pause forever is risky
Source: malwarenews Published on 2026-05-08
Canvas Breach Disrupts Schools & Colleges Nationwide
Source: malwarenews Published on 2026-05-08
ISC Stormcast For Friday, May 8th, 2026 https://isc.sans.edu/podcastdetail/9924, (Fri, May 8th)
Source: malwarenews Published on 2026-05-08
Developing: ShinyHunters Hacks Instructure Again; Canvas Down
Source: malwarenews Published on 2026-05-07
When prompts become shells: RCE vulnerabilities in AI agent frameworks
Source: malwarenews Published on 2026-05-07
What’s New in GravityZone May 2026 (v 6.73)
Source: malwarenews Published on 2026-05-07
CVE-2026-7270: How I Get Root on FreeBSD with a Shell Script
Source: malwareanalysys Published on 2026-05-07
Unplug your way to better code
Source: malwarenews Published on 2026-05-07
Audit de vos environnements Cloud: anticipez les attaques avant qu’elles ne frappent
Source: malwarenews Published on 2026-05-07
5 Best Practices to Protect Your Business from IoT Security Risks
Source: malwarenews Published on 2026-05-07
BTS #73 - Uncovering Firmware Risks: From Y2K to Modern Malware
Source: malwarenews Published on 2026-05-07
Trump admin will push for ‘long-term’ reauthorization of key cyber data-sharing law
Source: malwarenews Published on 2026-05-07
CVE-2026-0300 — Critical Buffer Overflow in PAN-OS User-ID Authentication Portal
Source: malwarenews Published on 2026-05-07
World Passkey Day: Advancing passwordless authentication
Source: malwarenews Published on 2026-05-07
Threat Intelligence Snapshot: Week 18, 2026
Source: malwarenews Published on 2026-05-07
Threat Intelligence Snapshot: Week 19, 2026
Source: malwarenews Published on 2026-05-07

CYBERCRIME

No feed items found.

ANONYMOUS

No feed items found.

INFOOPS

No feed items found.

APT

No feed items found.

CYBERTERRORISM

No feed items found.

CYBERWARFARE

Revealed: Russia’s top secret spy school teaching hacking and election meddling
Source: theguardian cyberwar Published on 2026-05-07

ARTICLES

The Creativity Gap: Why Bold Thinking is Now a Strategic Necessity
Source: raconteur Published on 2026-05-08
From cybersecurity to cyber resilience: a systemic and scalable approach for improving resilience and adaptive capacity
Source: oxford journal of cybersecurity Published on 2026-05-08
Cyber Blind Spots: The hidden technology that poses the greatest security risk
Source: itsecurityguru Published on 2026-05-07
World Password Day 2026: The Credential Crisis Hasn’t Gone Away, It’s Just Got More Dangerous
Source: itsecurityguru Published on 2026-05-07
UK Finance Sector Puts Cyber Defences to the Test in National Hackathon
Source: itsecurityguru Published on 2026-05-06
Recruitment under siege: the rise of AI-generated job fraud
Source: raconteur Published on 2026-05-06
Majority of IT Leaders Struggle to Manage Growing Identity Footprint Amid AI Expansion
Source: itsecurityguru Published on 2026-05-06
When the Breach Gets In Through the CEO’s Inbox, Not the Firewall
Source: itsecurityguru Published on 2026-05-06
Bot Defense Is No Longer Optional for High Tempo Consumer Platforms
Source: itsecurityguru Published on 2026-05-06
OpenAI rolls out ads on ChatGPT, but marketers remain unconvinced
Source: raconteur Published on 2026-05-05
Huntress Expands Channel Partnerships to Boost Cybersecurity Reach Across Mid-Market and Public Sector
Source: itsecurityguru Published on 2026-05-05
Proton Mail rolls out post-quantum encryption for all users as industry braces for ‘harvest now, decrypt later’ threat
Source: itsecurityguru Published on 2026-05-05
The Billionaire Blueprint: why leadership is now a system, not a vision
Source: raconteur Published on 2026-05-04
‘Accountants need to be creative and curious’ says Ramsey Brown partner
Source: raconteur Published on 2026-05-01
Bridewell Joins Global Incident Response Network FIRST as Full Member
Source: itsecurityguru Published on 2026-05-01
86% of Phishing Attacks are AI Driven, KnowBe4 Research Finds
Source: itsecurityguru Published on 2026-05-01
Lessons from the PocketOS Incident: When AI Agents Go Beyond Their Limits
Source: itsecurityguru Published on 2026-05-01