…it’s not IF, it’s WHEN. – Wiadomości i narzędzia z dziedziny bezpieczeństwa cyfrowego.

NEWS PL

Pack2TheRoot: 12-letnia luka w PackageKit umożliwia eskalację uprawnień do root w Linuksie
Source: SecurityBezTabu.pl Published on 2026-04-26
CISA rozszerza katalog KEV o cztery aktywnie wykorzystywane luki i wyznacza termin działań do 8 maja 2026 roku
Source: SecurityBezTabu.pl Published on 2026-04-26
Microsoft Entra Passkeys w Windows: nowe podejście do uwierzytelniania odpornego na phishing
Source: SecurityBezTabu.pl Published on 2026-04-26
GopherWhisper: nowa grupa APT ukrywa komunikację i eksfiltrację danych w legalnych usługach
Source: SecurityBezTabu.pl Published on 2026-04-26
Krytyczna luka w Breeze Cache zagraża ponad 400 tys. stron WordPress
Source: SecurityBezTabu.pl Published on 2026-04-26
ADT potwierdza naruszenie danych po groźbie publikacji ze strony ShinyHunters
Source: SecurityBezTabu.pl Published on 2026-04-26
FIRESTARTER na Cisco Firepower: trwały backdoor, którego nie usuwa samo patchowanie
Source: SecurityBezTabu.pl Published on 2026-04-26
BlackFile: nowa grupa wymuszeniowa wykorzystuje vishing do ataków na retail i hospitality
Source: SecurityBezTabu.pl Published on 2026-04-26
UNC6692 atakuje przez Microsoft Teams. Malware Snow celuje w poświadczenia i Active Directory
Source: SecurityBezTabu.pl Published on 2026-04-26
fast16: odkryto przedstuxnetowe malware do sabotażu narzędzi inżynierskich
Source: SecurityBezTabu.pl Published on 2026-04-26
Weekendowa Lektura: odcinek 673 [2026-04-25]. Bierzcie i czytajcie
Source: zaufanatrzeciastrona Published on 2026-04-25
Świeże oszustwo “na odzyskanie środków z Zondacrypto”. Uważajcie żeby nie stracić podwójnie pieniędzy!
Source: sekurak Published on 2026-04-25
#CyberMagazyn: Oskarżenia o kradzież AI pogłębiają konflikt USA-Chiny
Source: cyberdefence24 Published on 2026-04-25
USA rozbijają sieć oszustw finansowych z Myanmaru wymierzoną w obywateli USA
Source: SecurityBezTabu.pl Published on 2026-04-25
Lazarus wykorzystuje ClickFix do ataków na użytkowników macOS
Source: SecurityBezTabu.pl Published on 2026-04-25
Cyberatak na Hasbro może obniżyć przychody w II kwartale 2026
Source: SecurityBezTabu.pl Published on 2026-04-25
Chiny wykorzystują botnety urządzeń konsumenckich do maskowania operacji cyberwywiadowczych
Source: SecurityBezTabu.pl Published on 2026-04-25
Fast16: przed-Stuxnetowe narzędzie sabotażu wymierzone w oprogramowanie obliczeniowe
Source: SecurityBezTabu.pl Published on 2026-04-25
Phishing wspierany przez AI znów liderem wektorów początkowego dostępu w 2026 roku
Source: SecurityBezTabu.pl Published on 2026-04-25
Atak phishingowy na Signal wymierzony w przewodniczącą Bundestagu. Socjotechnika omija nawet bezpieczne komunikatory
Source: SecurityBezTabu.pl Published on 2026-04-25
Naruszenie danych w Rituals: wyciek informacji członków programu My Rituals
Source: SecurityBezTabu.pl Published on 2026-04-25
Locked Shields 2026: 41 państw wzmacnia cyberodporność w największych ćwiczeniach cyberobrony
Source: SecurityBezTabu.pl Published on 2026-04-25
DORA i odporność operacyjna: zarządzanie poświadczeniami jako kluczowa kontrola ryzyka w sektorze finansowym
Source: SecurityBezTabu.pl Published on 2026-04-25
UK Biobank: dane zdrowotne 500 tys. uczestników wystawione na sprzedaż po nadużyciu dostępu badawczego
Source: SecurityBezTabu.pl Published on 2026-04-25
CrowdStrike i Tenable łatają groźne luki w LogScale oraz Nessus
Source: SecurityBezTabu.pl Published on 2026-04-25
BlackFile atakuje retail i hospitality. Vishing napędza nową falę wymuszeń
Source: SecurityBezTabu.pl Published on 2026-04-25
26 fałszywych portfeli kryptowalut w App Store. Kampania FakeWallet kradnie frazy seed i klucze prywatne
Source: SecurityBezTabu.pl Published on 2026-04-25
Tropic Trooper rozszerza operacje: ataki przez domowe routery i nowe kampanie cyberwywiadowcze
Source: SecurityBezTabu.pl Published on 2026-04-25
Pracownicy NASA ofiarami spear phishingu wymierzonego w oprogramowanie obronne
Source: SecurityBezTabu.pl Published on 2026-04-25
UNC6692 atakuje przez Microsoft Teams i wdraża malware SNOW pod przykrywką helpdesku IT
Source: SecurityBezTabu.pl Published on 2026-04-25
CVE-2026-33626 w LMDeploy: luka SSRF wykorzystana kilkanaście godzin po ujawnieniu
Source: SecurityBezTabu.pl Published on 2026-04-25
Tropic Trooper wykorzystuje trojanizowany SumatraPDF i GitHub do wdrażania AdaptixC2
Source: SecurityBezTabu.pl Published on 2026-04-25
Pack2TheRoot: krytyczna luka w PackageKit pozwala uzyskać uprawnienia root w Linuksie
Source: SecurityBezTabu.pl Published on 2026-04-25
Microsoft Entra Passkeys na Windows wzmacniają logowanie bezhasłowe odporne na phishing
Source: SecurityBezTabu.pl Published on 2026-04-25
ADT potwierdza naruszenie danych po groźbach ShinyHunters. Atak pokazuje ryzyko dla SSO i SaaS
Source: SecurityBezTabu.pl Published on 2026-04-25
Ponad 10 tys. serwerów Zimbra narażonych na aktywnie wykorzystywany błąd XSS
Source: SecurityBezTabu.pl Published on 2026-04-25
Krytyczna luka w Breeze Cache dla WordPressa aktywnie wykorzystywana w atakach
Source: SecurityBezTabu.pl Published on 2026-04-25
Kompromitacja Bitwarden CLI w npm: złośliwy pakiet wykradał poświadczenia deweloperów
Source: SecurityBezTabu.pl Published on 2026-04-25
Trigona rozwija własne narzędzie do eksfiltracji danych w atakach ransomware
Source: SecurityBezTabu.pl Published on 2026-04-25
FIRESTARTER na Cisco Firepower: trwały backdoor, który przetrwał poprawki bezpieczeństwa
Source: SecurityBezTabu.pl Published on 2026-04-25
Zakończyły się ćwiczenia Locked Shields. Kto okazał się najlepszy?
Source: cyberdefence24 Published on 2026-04-24
Dzieci nie są świadome zagrożeń w sieci. Prezes UODO apeluje do Barbary Nowackiej
Source: cyberdefence24 Published on 2026-04-24
Uwaga! Złośliwa aktualizacja Bitwarden CLI
Source: sekurak Published on 2026-04-24
Podatność w oprogramowaniu AdaptiveGRC
Source: cert pl Published on 2026-04-24
NCSC wskazało najbezpieczniejszą metodę weryfikacji
Source: cyberdefence24 Published on 2026-04-24
Red Blue Team VR – kompletny przewodnik instalacji i obsługi
Source: firewall.com.pl Published on 2026-04-24
Próba zamachu na kierownictwo rosyjskiego Roskomnadzoru
Source: cyberdefence24 Published on 2026-04-24
Prorosyjskie grupy podglądają Polaków. Dom, hotel, sklep i więcej
Source: cyberdefence24 Published on 2026-04-24
Apple usuwa lukę umożliwiającą przechowywanie usuniętych danych
Source: kpt Hack Published on 2026-04-24
NCSC popiera passkeys. Uwierzytelnianie bez haseł wchodzi do głównego nurtu
Source: SecurityBezTabu.pl Published on 2026-04-24

NEWS

California Engineer Identified in Suspected Shooting at White House Correspondents' Dinner
Source: WIREDSEC Published on 2026-04-26
Microsoft rolls out revamped Windows Insider Program
Source: bleepingcomputer Published on 2026-04-25
Threat actor uses Microsoft Teams to deploy new “Snow” malware
Source: bleepingcomputer Published on 2026-04-25
Discord Sleuths Gained Unauthorized Access to Anthropic’s Mythos
Source: WIREDSEC Published on 2026-04-25
Researchers Uncover Pre-Stuxnet ‘fast16’ Malware Targeting Engineering Software
Source: The Hacker News Published on 2026-04-25
CISA Adds 4 Exploited Flaws to KEV, Sets May 2026 Federal Deadline
Source: The Hacker News Published on 2026-04-25
ADT confirms data breach after ShinyHunters leak threat
Source: bleepingcomputer Published on 2026-04-24
Firestarter malware survives Cisco firewall updates, security patches
Source: bleepingcomputer Published on 2026-04-24
Windows Update gets new controls to reduce forced restarts
Source: bleepingcomputer Published on 2026-04-24
New BlackFile extortion group linked to surge of vishing attacks
Source: bleepingcomputer Published on 2026-04-24
Microsoft to roll out Entra passkeys on Windows in late April
Source: bleepingcomputer Published on 2026-04-24
New ‘Pack2TheRoot’ flaw gives hackers root Linux access
Source: bleepingcomputer Published on 2026-04-24
FIRESTARTER Backdoor Hit Federal Cisco Firepower Device, Survives Security Patches
Source: The Hacker News Published on 2026-04-24
US Busts Myanmar Ring Targeting US Citizens in Financial Fraud
Source: darkreading Published on 2026-04-24
The Latest Push to Extend Key US Spy Powers Is Still a Mess
Source: WIREDSEC Published on 2026-04-24
Glasswing Secured the Code. The Rest of Your Stack Is Still on You
Source: darkreading Published on 2026-04-24
NASA Employees Duped in Chinese Phishing Scheme Targeting U.S. Defense Software
Source: The Hacker News Published on 2026-04-24
DORA and operational resilience: Credential management as a financial risk control
Source: bleepingcomputer Published on 2026-04-24
Over 10,000 Zimbra servers vulnerable to ongoing XSS attacks
Source: bleepingcomputer Published on 2026-04-24
AI Phishing Is No. 1 With a Bullet for Cyberattackers
Source: darkreading Published on 2026-04-24
North Korea's Lazarus Targets macOS Users via ClickFix
Source: darkreading Published on 2026-04-24
Medical data of 500,000 UK volunteers listed for sale on Alibaba
Source: malwarebytes Published on 2026-04-24
Bridging the AI Agent Authority Gap: Continuous Observability as the Decision Engine
Source: The Hacker News Published on 2026-04-24
26 FakeWallet Apps Found on Apple App Store Targeting Crypto Seed Phrases
Source: The Hacker News Published on 2026-04-24
Microsoft now lets admins uninstall Copilot on enterprise devices
Source: bleepingcomputer Published on 2026-04-24
Tropic Trooper Uses Trojanized SumatraPDF and GitHub to Deploy AdaptixC2
Source: The Hacker News Published on 2026-04-24
LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure
Source: The Hacker News Published on 2026-04-24
Tropic Trooper APT Takes Aim at Home Routers, Japanese Targets
Source: darkreading Published on 2026-04-24
Newly Deciphered Sabotage Malware May Have Targeted Iran’s Nuclear Program—and Predates Stuxnet
Source: WIREDSEC Published on 2026-04-23
Hackers exploit file upload bug in Breeze Cache WordPress plugin
Source: bleepingcomputer Published on 2026-04-23
China-Backed Hackers Are Industrializing Botnets
Source: darkreading Published on 2026-04-23
Bitwarden CLI npm package compromised to steal developer credentials
Source: bleepingcomputer Published on 2026-04-23
Trigona ransomware attacks use custom exfiltration tool to steal data
Source: bleepingcomputer Published on 2026-04-23
UNC6692 Impersonates IT Helpdesk via Microsoft Teams to Deploy SNOW Malware
Source: The Hacker News Published on 2026-04-23
It pays to be a forever student
Source: talos Published on 2026-04-23
New Checkmarx supply-chain breach affects KICS analysis tool
Source: bleepingcomputer Published on 2026-04-23
How cyberattacks on companies affect everyone
Source: malwarebytes Published on 2026-04-23
UAT-4356's Targeting of Cisco Firepower Devices
Source: talos Published on 2026-04-23
Chinese APT Abuses Multiple Cloud Tools to Spy on Mongolia
Source: darkreading Published on 2026-04-23
Bad Memories Still Haunt AI Agents
Source: darkreading Published on 2026-04-23

INFLUENCERS

Friday Squid Blogging: How Squid Survived Extinction Events
Source: Bruce Schneier Published on 2026-04-24
Hiding Bluetooth Trackers in Mail
Source: Bruce Schneier Published on 2026-04-24
Trust Boundary of SaaS Will Include Customers' AI Agents
Source: Zeltser Published on 2026-04-24
FBI Extracts Deleted Signal Messages from iPhone Notification Database
Source: Bruce Schneier Published on 2026-04-23
ICE Uses Graphite Spyware
Source: Bruce Schneier Published on 2026-04-22
What to Make of AIUC-1, a New AI Agent Certification
Source: Zeltser Published on 2026-04-22
Weekly Update 500
Source: TroyHunt Published on 2026-04-22
‘Scattered Spider’ Member ‘Tylerb’ Pleads Guilty
Source: Brian Krebs Published on 2026-04-21
Mexican Surveillance Company
Source: Bruce Schneier Published on 2026-04-21
Is “Satoshi Nakamoto” Really Adam Back?
Source: Bruce Schneier Published on 2026-04-20

CYBERLAW

RODO aktualności – 21.04.2026 r.
Source: dane osobowe Published on 2026-04-21

CERT EU Latest News

CERT EU Latest News

No feed items found.

ADVISORIES / BULLETINS

ADVISORIES / BULLETINS

New Ivanti Security Controls Content Available – 04/23/2026
Source: ivanti patch Published on 2026-04-23
New Ivanti Security Controls Content Available – 04/22/2026
Source: ivanti patch Published on 2026-04-22
New Ivanti Security Controls Content Available – 04/21/2026
Source: ivanti patch Published on 2026-04-21

ALERTS

No feed items found.

TOOLS

No feed items found.

VULNERABILITIES

VULNERABILITIES

No feed items found.

EXPLOITS

[local] AVAST Antivirus 25.11 - Unquoted Service Path
Source: exploit-db Published on 2026-04-22
[local] Throttlestop Kernel Driver - Kernel Out-of-Bounds Write Privilege Escalation
Source: exploit-db Published on 2026-04-22
[webapps] WordPress Plugin 5.2.0 - Broken Access Control
Source: exploit-db Published on 2026-04-22

MALWARE

Korean matchmaking service Duo fined over £600,000 over sensitive data leak from Infostealer infection
Source: malwareanalysys Published on 2026-04-26
Introducing Proactive Hardening and Attack Surface Reduction (PHASR) for Linux and macOS
Source: malwarenews Published on 2026-04-26
Beast Ransomware Group Targets Canadian Clinic Lessard Dental
Source: malwarenews Published on 2026-04-25
LockBit 5.0 Targets Italian Media Company Studio Più
Source: malwarenews Published on 2026-04-25
From Overwhelmed to Autonomous: Rethinking Threat Intelligence in 2026
Source: malwareanalysys Published on 2026-04-24
Token Bingo: Don’t Let Your Code be the Winner
Source: malwarenews Published on 2026-04-24
REDSUN – Practical Detection Artifacts Under Real-World Constraints
Source: malwarenews Published on 2026-04-24
“Chaos is a ladder”: Vidar’s recent rise to the top
Source: malwarenews Published on 2026-04-24
Sintesi riepilogativa delle campagne malevole nella settimana del 18 – 24 aprile
Source: malwarenews Published on 2026-04-24
Q1 Updates in Nexus Repository: More Formats, Stronger Operations, and a Better Day-to-Day Experience
Source: malwarenews Published on 2026-04-24
Medical data of 500,000 UK volunteers listed for sale on Alibaba
Source: malwarenews Published on 2026-04-24
OCR Announces Settlements of Four Ransomware Investigations that Affected Over 427,000 Individuals
Source: malwarenews Published on 2026-04-24
Vulnerability in AdaptiveGRC software
Source: malwarenews Published on 2026-04-24
MAD Bugs: RCE in Ladybird
Source: malwareanalysys Published on 2026-04-24
Child sexual exploitation: 12 children identified during Europol’s Victim Identification Taskforce
Source: malwarenews Published on 2026-04-24
Analyzing GLOBAL GROUP (BlackLock) Artifacts
Source: malwarenews Published on 2026-04-24
Credential stuffing tools and how to stop them
Source: malwarenews Published on 2026-04-24
The Week in Vulnerabilities: SharePoint, Fortinet, OpenClaw, and GPL Odorizers
Source: malwarenews Published on 2026-04-24
ISC Stormcast For Friday, April 24th, 2026 https://isc.sans.edu/podcastdetail/9906, (Fri, Apr 24th)
Source: malwarenews Published on 2026-04-24
2026-04-23: SmartApeSG activity
Source: malwareanalysys Published on 2026-04-24

CYBERCRIME

No feed items found.

ANONYMOUS

No feed items found.

INFOOPS

Polskie obywatelstwo nie jest dostępne za 200 zł
Source: FakeNews.pl Published on 2026-04-24
Disinformation Review: EU Sanctions and the Kremlin’s Recycled Narratives
Source: EUvsDISINFO Published on 2026-04-24
Propaganda as a weapon system: how Russian propaganda shapes soldiers’ beliefs and combat motivation
Source: EUvsDISINFO Published on 2026-04-23

APT

No feed items found.

CYBERTERRORISM

No feed items found.

CYBERWARFARE

Chinese hackers are using everyday devices to hack UK firms, warns watchdog
Source: theguardian cyberwar Published on 2026-04-23
UK could face ‘hacktivist attacks at scale’, says head of security agency
Source: theguardian cyberwar Published on 2026-04-22

ARTICLES

NCSC chief warns of ‘perfect storm’ as cyber threats intensify at CyberUK
Source: itsecurityguru Published on 2026-04-24
C-suite power couple: how CFOs and CEOs can build a strong partnership
Source: raconteur Published on 2026-04-24
Beyond the Black Box: the new ‘explainability’ rule for enterprise AI
Source: raconteur Published on 2026-04-24
Router Security Hardening Steps for 2026: From Default Credential Audits to Automated Firmware Risk Monitoring
Source: itsecurityguru Published on 2026-04-22
AI and Chatbots Transforming the Future of Consumer Lending
Source: itsecurityguru Published on 2026-04-22
How AI is being used in dentistry
Source: itsecurityguru Published on 2026-04-22
CyberSmart Partners with Renaissance to Deliver Complete Cyber Confidence for SMEs
Source: itsecurityguru Published on 2026-04-22
The Privacy–Security Partnership: How We Bend Risk in a Resource Crunch
Source: securitymagazine cybertactics Published on 2026-04-22
Benefit–cost–risk analysis of cybersecurity R&D
Source: oxford journal of cybersecurity Published on 2026-04-22
Bridewell Among First to Achieve Level 2 Defence Cyber Certification
Source: itsecurityguru Published on 2026-04-21
Value of European VC Deals Hits Four-Year Peak, But Volume of Deals Continues Four-Year Decline
Source: raconteur Published on 2026-04-21
Forescout Uncovers New Security Risks in Widely Used Industrial Networking Devices
Source: itsecurityguru Published on 2026-04-21
Eilla AI Completes Europe’s First AI-Powered M&A Deal
Source: raconteur Published on 2026-04-21
Locai Labs and Civo Sign Deal to Build Out the UK’s Sovereign AI Infrastructure
Source: raconteur Published on 2026-04-21
Which companies are enforcing five-day office returns?
Source: raconteur Published on 2026-04-20