…it’s not IF, it’s WHEN. – Wiadomości i narzędzia z dziedziny bezpieczeństwa cyfrowego.

NEWS PL

Samorządy celem cyberataków. Brakuje funduszy na ekspertów
Source: cyberdefence24 Published on 2026-05-27
Pilny mail z dokumentem? CERT Polska ostrzega przed groźną kampanią
Source: cyberdefence24 Published on 2026-05-27
Polska i Wielka Brytania zawarły traktat. Ma odstraszać agresorów
Source: cyberdefence24 Published on 2026-05-27
Podatności w oprogramowaniu central telefonicznych Slican
Source: cert pl Published on 2026-05-27
Scam na inwestycje. Wykorzystano wizerunek zmarłego posła
Source: cyberdefence24 Published on 2026-05-27
Zero Trust dla drukarek, czyli jak Samuraj zarządza flotą, nie otwierając bram twierdzy
Source: niebezpiecznik Published on 2026-05-27
Pierwsze wdrożenia PLLuM. Minimum 200 mln zł na dalszy rozwój
Source: cyberdefence24 Published on 2026-05-27
Jak Rosja ukrywa ataki za europejską infrastrukturą?
Source: cyberdefence24 Published on 2026-05-27
Repozytoria na GitHubie zainfekowane w ataku Megalodon!
Source: kpt Hack Published on 2026-05-27
Rzekoma baza 340 mln profili OnlyFans: rekonstrukcja tożsamości z wycieków zamiast bezpośredniego włamania
Source: SecurityBezTabu.pl Published on 2026-05-27
Lazarus rozwija bezplikowego RAT-a RemotePE, by skuteczniej omijać detekcję
Source: SecurityBezTabu.pl Published on 2026-05-27
Atak na dostawcę zewnętrznego ujawnił dane pacjentów The Oncology Institute
Source: SecurityBezTabu.pl Published on 2026-05-27
Chińscy operatorzy phishingowi stawiają na przechwytywanie poświadczeń w czasie rzeczywistym
Source: SecurityBezTabu.pl Published on 2026-05-27
Luka w Ghost CMS wykorzystana do kampanii ClickFix na setkach stron
Source: SecurityBezTabu.pl Published on 2026-05-27
BTMOB: androidowy RAT w modelu MaaS obniża próg wejścia dla cyberprzestępców
Source: SecurityBezTabu.pl Published on 2026-05-27
EDB-ID 52573: podatność command injection w iOS Simulator MCP Server zagraża środowiskom deweloperskim
Source: SecurityBezTabu.pl Published on 2026-05-27
Ukryta ekonomia ransomware oparta na publicznie dostępnych bazach danych
Source: SecurityBezTabu.pl Published on 2026-05-27
Atak na łańcuch dostaw Laravel-Lang: złośliwe pakiety Composer po zatruciu tagów Git
Source: SecurityBezTabu.pl Published on 2026-05-27
D-Link DSL-2600U: ujawnienie hasła administratora przez plik rom-0 zagraża pełnemu przejęciu routera
Source: SecurityBezTabu.pl Published on 2026-05-27
cPanel i WHM: podatność CRLF Injection może prowadzić do obejścia uwierzytelniania
Source: SecurityBezTabu.pl Published on 2026-05-27
Apache HTTP Server 2.4.66: podatność w mod_http2 może prowadzić do double-free i awarii usługi
Source: SecurityBezTabu.pl Published on 2026-05-27
Krytyczna podatność w Temporary Login dla WordPressa umożliwia przejęcie konta
Source: SecurityBezTabu.pl Published on 2026-05-27
Megalodon infekuje tysiące repozytoriów GitHub przez GitHub Actions
Source: SecurityBezTabu.pl Published on 2026-05-27
Grav CMS i CVE-2026-42607: krytyczne RCE przez mechanizm Direct Install
Source: SecurityBezTabu.pl Published on 2026-05-27
TeamPCP i Shai-Hulud: jak młoda grupa zagroziła bezpieczeństwu łańcucha dostaw oprogramowania
Source: SecurityBezTabu.pl Published on 2026-05-27
DockSec porządkuje szum podatności w obrazach Docker dzięki AI
Source: SecurityBezTabu.pl Published on 2026-05-27
FBI ostrzega przed Kali365: nowa platforma PhaaS przejmuje sesje Microsoft 365 i omija MFA
Source: SecurityBezTabu.pl Published on 2026-05-27
Microsoft łata krytyczną lukę RCE w SharePoint. Co oznacza to dla organizacji?
Source: SecurityBezTabu.pl Published on 2026-05-27
Holandia uderza w bulletproof hosting powiązany z rosyjskimi operacjami cybernetycznymi
Source: SecurityBezTabu.pl Published on 2026-05-27
Irańska operacja destrukcyjna przeciwko LA Metro: analiza incydentu i zagrożeń dla infrastruktury krytycznej
Source: SecurityBezTabu.pl Published on 2026-05-27
Wyciek ponad 600 tys. rekordów z litewskich rejestrów państwowych. Śledczy badają możliwy udział obcego państwa
Source: SecurityBezTabu.pl Published on 2026-05-27
CERT-In zaleca łatanie krytycznych luk w systemach internetowych w 12 godzin
Source: SecurityBezTabu.pl Published on 2026-05-27
MFA Prompt Bombing: dlaczego uwierzytelnianie push nie zawsze chroni organizację
Source: SecurityBezTabu.pl Published on 2026-05-27
Microsoft Defender for Endpoint z automatyczną izolacją przejętych stacji końcowych
Source: SecurityBezTabu.pl Published on 2026-05-27
Nimbus Manticore rozszerza kampanie APT: malware wspomagane przez AI, fałszywe instalatory Zoom i SEO poisoning
Source: SecurityBezTabu.pl Published on 2026-05-27
Krytyczna luka w KnowledgeDeliver LMS wykorzystana do wdrożenia Godzilla i Cobalt Strike
Source: SecurityBezTabu.pl Published on 2026-05-27
CISA nakazuje pilne łatanie aktywnie wykorzystywanej luki SQL Injection w Drupal
Source: SecurityBezTabu.pl Published on 2026-05-27
MuddyWater wykorzystuje DLL side-loading w kampanii cyberszpiegowskiej obejmującej dziewięć państw
Source: SecurityBezTabu.pl Published on 2026-05-27
Naruszenie danych w 7-Eleven: wyciek informacji 185 tys. osób po ataku przypisywanym ShinyHunters
Source: SecurityBezTabu.pl Published on 2026-05-27
Rosyjski agent w Kyivstar pomógł w głośnym ataku?
Source: cyberdefence24 Published on 2026-05-26
Rośnie znaczenie AI w krzywdzeniu dzieci. Alarmujący raport Dyżurnet
Source: cyberdefence24 Published on 2026-05-26
Badacz mógł logować się na konta w ZUS i wystawiać recepty
Source: cyberdefence24 Published on 2026-05-26
FBI ostrzega przed przejmowaniem kont Microsoft 365. Bez kradzieży haseł
Source: cyberdefence24 Published on 2026-05-26
Blue Team w praktyce – scenariusz Red Blue Team dla T-Mobile
Source: firewall.com.pl Published on 2026-05-26
1,5 mln logowań dziennie do mObywatela. Najpopularniejsze funkcje wśród Polaków
Source: cyberdefence24 Published on 2026-05-26
Nowa siedziba lubelskiej policji za dziesiątki milionów złotych
Source: cyberdefence24 Published on 2026-05-26
Zapraszamy na LIVE o NIS2/KSC2 z ekspertem Ministerstwa Cyfryzacji
Source: niebezpiecznik Published on 2026-05-26
Polskie samorządy pod presją ataków. Zidentyfikowano jedną z grup
Source: cyberdefence24 Published on 2026-05-26
Claude Mythos AI znajduje tysiące podatności. Problem w tym, że nikt nie nadąża z ich łataniem
Source: kpt Hack Published on 2026-05-26
Naruszenie danych w DocketWise dotknęło 143 tysięcy osób
Source: SecurityBezTabu.pl Published on 2026-05-26

NEWS

Ransomware Actors Show Up In Person to Steal Law Firm Data
Source: darkreading Published on 2026-05-27
Latin American Cybercriminals Hoover Up Government Data
Source: darkreading Published on 2026-05-27
AI-Assisted Exploit Development Outpaces Scanner Detection
Source: darkreading Published on 2026-05-27
Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users
Source: The Hacker News Published on 2026-05-27
Malicious npm Package Stole Files From Claude AI User Directory via GitHub
Source: The Hacker News Published on 2026-05-27
MediaArea heap-based buffer overflow vulnerabilities
Source: talos Published on 2026-05-27
Can you enforce strong Active Directory password rules without frustrating users?
Source: bleepingcomputer Published on 2026-05-27
Infosecurity Europe
Source: darkreading Published on 2026-05-27
Glassworm botnet disrupted after resilient C2 infrastructure takedown
Source: bleepingcomputer Published on 2026-05-27
Cybersecurity Evolution: How We Went From Perimeter Defense to AI-Native Security
Source: darkreading Published on 2026-05-27
FBI warns of in-person data theft attacks from extortion gang
Source: bleepingcomputer Published on 2026-05-27
GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure
Source: The Hacker News Published on 2026-05-27
3 SOC Steps that Shut Down Incident Risks Early
Source: The Hacker News Published on 2026-05-27
Kali365 phishing kit bypasses MFA and steals Microsoft logins
Source: malwarebytes Published on 2026-05-27
5 Steps to Managing Shadow AI Tools Without Slowing Down Employees
Source: The Hacker News Published on 2026-05-27
Gitea Vulnerability Exposes Private Container Images without Authentication
Source: The Hacker News Published on 2026-05-27
CISA gives feds 4 days to patch actively exploited cPanel plugin flaw
Source: bleepingcomputer Published on 2026-05-27
Introducing EvidenceForge: Synthetic security logs that don’t look (as) fake
Source: talos Published on 2026-05-27
Company bragged phone mics could listen to conversations. They couldn’t.
Source: malwarebytes Published on 2026-05-27
Fake LinkedIn emails abuse Adobe to track victims
Source: malwarebytes Published on 2026-05-27
Dutch police arrests suspect linked to Ajax football club hack
Source: bleepingcomputer Published on 2026-05-27
Windows 11 KB5089573 update released with performance improvements
Source: bleepingcomputer Published on 2026-05-27
AI Chatbot Recommendations Redirect Users to Cryptojacking Malware Sites
Source: The Hacker News Published on 2026-05-27
KnowledgeDeliver flaw exploited as a zero-day to install web shells
Source: bleepingcomputer Published on 2026-05-26
[Virtual Event] Anatomy of a Data Breach: What to Do if it Happens to You
Source: darkreading Published on 2026-05-26
Feeding Frenzy: 'Megalodon' Malware Infects Thousands of GitHub Repos
Source: darkreading Published on 2026-05-26
Charter confirms data breach after ShinyHunters extortion threat
Source: bleepingcomputer Published on 2026-05-26
State Cyber Leaders Beg Congress for More Funding, Support
Source: darkreading Published on 2026-05-26
The Hackers Behind Shai-Hulud: Lucky or Skilled?
Source: darkreading Published on 2026-05-26
For Enterprises, Security Remains Agentic AI's Biggest Challenge
Source: darkreading Published on 2026-05-26
Microsoft Issues Out-of-Band SharePoint Patch
Source: darkreading Published on 2026-05-26
Internet Starts to Return in Iran After 3-Month Blackout
Source: WIREDSEC Published on 2026-05-26
MuddyWater Uses DLL Side-Loading in Espionage Campaign Targeting 9 Countries
Source: The Hacker News Published on 2026-05-26
How Varonis Atlas integrates Claude Compliance API for AI governance
Source: bleepingcomputer Published on 2026-05-26
Fake software on GitHub and SourceForge distribute Deno RAT
Source: malwarebytes Published on 2026-05-26
Microsoft Defender can now automatically isolate hacked endpoints
Source: bleepingcomputer Published on 2026-05-26
Webinar: Too many tools are slowing network incident response
Source: bleepingcomputer Published on 2026-05-26
Remembering Tim Wilson, Whose Legacy Lives on at Dark Reading
Source: darkreading Published on 2026-05-26
New AI DDoS Attacks Are Smarter. Learn How to Fight Back in This Webinar
Source: The Hacker News Published on 2026-05-26
Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions
Source: The Hacker News Published on 2026-05-26

INFLUENCERS

FBI’s 2025 Internet Crime Report
Source: Bruce Schneier Published on 2026-05-27
Identifying People Using Wi-Fi Routers
Source: Bruce Schneier Published on 2026-05-26
A Report Template for Cyber Threat Intelligence
Source: Zeltser Published on 2026-05-26
Welcoming the Bhutanese Government to Have I Been Pwned
Source: TroyHunt Published on 2026-05-25
Netherlands Seizes 800 Servers, Arrests 2 for Aiding Cyberattacks
Source: Brian Krebs Published on 2026-05-25
Weekly Update 505
Source: TroyHunt Published on 2026-05-24
Friday Squid Blogging: Regulating Squid Fishing in the South Pacific
Source: Bruce Schneier Published on 2026-05-22
Lawmakers Demand Answers as CISA Tries to Contain Data Leak
Source: Brian Krebs Published on 2026-05-22
CISA Security Leak
Source: Bruce Schneier Published on 2026-05-22
Alleged Kimwolf Botmaster ‘Dort’ Arrested, Charged in U.S. and Canada
Source: Brian Krebs Published on 2026-05-21
macOS Kernel Memory Corruption Exploit
Source: Bruce Schneier Published on 2026-05-21

CYBERLAW

RODO aktualności – 26.05.2026 r.
Source: dane osobowe Published on 2026-05-26

CERT EU Latest News

CERT EU Latest News

No feed items found.

ADVISORIES / BULLETINS

ADVISORIES / BULLETINS

New Ivanti Security Controls Content Available – 05/27/2026
Source: ivanti patch Published on 2026-05-27
New Ivanti Security Controls Content Available – 05/26/2026
Source: ivanti patch Published on 2026-05-26
New Ivanti Security Controls Content Available – 05/25/2026
Source: ivanti patch Published on 2026-05-25
New Ivanti Security Controls Content Available – 05/22/2026
Source: ivanti patch Published on 2026-05-22
New Ivanti Security Controls Content Available – 05/21/2026
Source: ivanti patch Published on 2026-05-21

ALERTS

No feed items found.

TOOLS

v2.4.219
Source: MISP Published on 2026-05-21
MISP 2.5.38 - UI and security update
Source: MISP Published on 2026-05-21

VULNERABILITIES

VULNERABILITIES

No feed items found.

EXPLOITS

[webapps] OpenCATS 0.9.7.4 - SQL Injection
Source: exploit-db Published on 2026-05-27
[webapps] scramble - Remote Code Execution
Source: exploit-db Published on 2026-05-27
[hardware] MeiG Smart FORGE_SLT711 - OS Command Injection
Source: exploit-db Published on 2026-05-27
[local] Realtek rtl819x - Local Privilege
Source: exploit-db Published on 2026-05-27
[webapps] EspoCRM 9.3.3 - SSRF
Source: exploit-db Published on 2026-05-27
[local] Linux Kernel - Local Privilege Escalation
Source: exploit-db Published on 2026-05-27
[webapps] Casdoor 3.54.1 - Arbitrary File Write via Path Traversal
Source: exploit-db Published on 2026-05-27
[local] Linux Kernel 6.8 - Local Privilege Escalation
Source: exploit-db Published on 2026-05-26
[webapps] cPanel - CRLF Injection
Source: exploit-db Published on 2026-05-26
[webapps] Wordpress Temporary Login Plugin 1.0.0 - 'temp-login-token' Authentication Bypass to Account Takeover
Source: exploit-db Published on 2026-05-26
[hardware] D-Link DSL2600U - 'rom-0' Admin Password Disclosure
Source: exploit-db Published on 2026-05-26
[webapps] Apache HTTP Server 2.4.66 - 'mod_http2' Double-Free Denial of Service
Source: exploit-db Published on 2026-05-26
[webapps] Grav CMS 2.0.0-beta.2 - Remote Code Execution
Source: exploit-db Published on 2026-05-26
[webapps] BookStack 25.12.1 - Denial of Service
Source: exploit-db Published on 2026-05-21
[webapps] solaredge - (CSRF-OOB-Injection)
Source: exploit-db Published on 2026-05-21
[local] Lenovo LegionSpace 1.7.11.2 - 'DAService' Unquoted Service Path
Source: exploit-db Published on 2026-05-21
[webapps] Cockpit 359 - RCE
Source: exploit-db Published on 2026-05-21
[webapps] FUXA 1.2.9 - RCE
Source: exploit-db Published on 2026-05-21

MALWARE

Iran’s hackers are coordinating more closely, Israel’s top cyberdefense official says
Source: malwarenews Published on 2026-05-27
Google Chrome security advisory (AV26-517)
Source: malwarenews Published on 2026-05-27
Jenkins security advisory (AV26-515)
Source: malwarenews Published on 2026-05-27
GitLab security advisory (AV26-516)
Source: malwarenews Published on 2026-05-27
FortiClient EMS Exploited via CVE-2026-35616 to Deliver EKZ Infostealer Disguised as a Fortinet Patch
Source: malwarenews Published on 2026-05-27
Threat Actors Spoofing FIFA Websites in Advance of the 2026 World Cup
Source: malwarenews Published on 2026-05-27
[Control Systems] Phoenix Contact Security Advisory (AV26-514)
Source: malwarenews Published on 2026-05-27
Veeam security advisory (AV26-513)
Source: malwarenews Published on 2026-05-27
GitHub security advisory (AV26-512)
Source: malwarenews Published on 2026-05-27
Hitachi security advisory (AV26-511)
Source: malwarenews Published on 2026-05-27
AI Is Making Software Autonomous, and Governance Must Follow
Source: malwarenews Published on 2026-05-27
What’s New What’s Next with Arctic Wolf: May 2026 Update
Source: malwarenews Published on 2026-05-27
오산 공군기지를 공격을 한것으로 추측 이 되는 김수키(Kimsuky) 에서 만든 악성코드-Update_251001 ACM Sakesan Kantha.pdf.lnk
Source: malwareanalysys Published on 2026-05-27
MediaArea heap-based buffer overflow vulnerabilities
Source: malwarenews Published on 2026-05-27
Bad Habits: An ANTISOC Operation
Source: malwarenews Published on 2026-05-27
Nuove campagne di phishing a tema SEND
Source: malwarenews Published on 2026-05-27
NL: Schiphol cargo worker arrested over alleged data leaks to drug networks
Source: malwarenews Published on 2026-05-27
Europol launches Capture26, the 2026 law enforcement photo competition
Source: malwarenews Published on 2026-05-27
Silent Ransom Group Impersonating IT Personnel through Social Engineering
Source: malwarenews Published on 2026-05-27
Vulnerabilities in Slican telephone exchanges software
Source: malwarenews Published on 2026-05-27

CYBERCRIME

No feed items found.

ANONYMOUS

No feed items found.

INFOOPS

The dog that didn’t bark: What the Danish election reveals about Russian influence operations
Source: EUvsDISINFO Published on 2026-05-27
Tough love: Spies, dating apps and the dark side of online intimacy
Source: EUvsDISINFO Published on 2026-05-27
Disinfo Update 27/05/2026
Source: DisInfo.eu Published on 2026-05-27
As the Stands on 9 May Thins, Kremlin Mouthpieces Pour Anger at the Baltic States
Source: DebunkEU Published on 2026-05-25
Minister Hennig-Kloska nie powiedziała, że przy butelkomatach można poznać kogoś ciekawego
Source: FakeNews.pl Published on 2026-05-23
Wycofanie scenariusza RCP8.5 to dowód na skuteczność polityki klimatycznej, a nie na błędy autorów
Source: FakeNews.pl Published on 2026-05-22
Lies about Russia’s military success, Yermak’s arrest and secret biolabs
Source: EUvsDISINFO Published on 2026-05-22

APT

No feed items found.

CYBERTERRORISM

No feed items found.

CYBERWARFARE

Russia is targeting UK’s infrastructure and democracy, GCHQ head to say
Source: theguardian cyberwar Published on 2026-05-27

ARTICLES

The AI Phishing Revolution: From Spray-and-Pray to Autonomous Operations
Source: itsecurityguru Published on 2026-05-27
ECB Urges Banks to Tackle AI Security Threats
Source: itsecurityguru Published on 2026-05-27
AI coding tools are widening the security validation gap, survey finds
Source: itsecurityguru Published on 2026-05-27
Most Organisations Can’t See Their AI Traffic and Attackers Are Already Exploiting That
Source: itsecurityguru Published on 2026-05-27
AI hallucinations pose serious questions for professional services
Source: raconteur Published on 2026-05-27
Q&A – Resilient You: The Cyber Agony Aunts Are Back!
Source: itsecurityguru Published on 2026-05-26
CFO on the Spot: NiCE’s Beth Gaspich
Source: raconteur Published on 2026-05-26
A quantitative assessment of human factors in maritime cybersecurity: an investigation of seafarers’ knowledge and practices
Source: oxford journal of cybersecurity Published on 2026-05-26
Weaponizing SBOMs: A Practical Guide for Security Practitioners
Source: securitymagazine cybertactics Published on 2026-05-25
Dublin clears path for Meta to commercialise WhatsApp
Source: raconteur Published on 2026-05-22
Proton Launches Credential Tokens to Tackle AI Agent Security Gap
Source: itsecurityguru Published on 2026-05-21
Industry Reacts to Verizon DBIR 2026 as Vulnerability Exploitation Takes Top Spot
Source: itsecurityguru Published on 2026-05-21