…it’s not IF, it’s WHEN. – Wiadomości i narzędzia z dziedziny bezpieczeństwa cyfrowego.

NEWS PL

Rosyjski agent w Kyivstar pomógł w głośnym ataku?
Source: cyberdefence24 Published on 2026-05-26
Rośnie znaczenie AI w krzywdzeniu dzieci. Alarmujący raport Dyżurnet
Source: cyberdefence24 Published on 2026-05-26
Badacz mógł logować się na konta w ZUS i wystawiać recepty
Source: cyberdefence24 Published on 2026-05-26
FBI ostrzega przed przejmowaniem kont Microsoft 365. Bez kradzieży haseł
Source: cyberdefence24 Published on 2026-05-26
Blue Team w praktyce – scenariusz Red Blue Team dla T-Mobile
Source: firewall.com.pl Published on 2026-05-26
1,5 mln logowań dziennie do mObywatela. Najpopularniejsze funkcje wśród Polaków
Source: cyberdefence24 Published on 2026-05-26
Nowa siedziba lubelskiej policji za dziesiątki milionów złotych
Source: cyberdefence24 Published on 2026-05-26
Zapraszamy na LIVE o NIS2/KSC2 z ekspertem Ministerstwa Cyfryzacji
Source: niebezpiecznik Published on 2026-05-26
Polskie samorządy pod presją ataków. Zidentyfikowano jedną z grup
Source: cyberdefence24 Published on 2026-05-26
Claude Mythos AI znajduje tysiące podatności. Problem w tym, że nikt nie nadąża z ich łataniem
Source: kpt Hack Published on 2026-05-26
Naruszenie danych w DocketWise dotknęło 143 tysięcy osób
Source: SecurityBezTabu.pl Published on 2026-05-26
Oszuści celują w fanów Formuły 1: fałszywe streamy, podróbki i malware wokół wyścigów
Source: SecurityBezTabu.pl Published on 2026-05-26
Sklep powiązany z dyrektorem FBI wyłączony po wykryciu kampanii malware ClickFix
Source: SecurityBezTabu.pl Published on 2026-05-26
Naruszenie danych w Radiology Associates of Richmond dotknęło 266 tys. osób
Source: SecurityBezTabu.pl Published on 2026-05-26
Zero-click przejęcie kont WhatsApp na iPhone’ach z iOS 16. Atak działa bez ostrzeżenia i bez widocznych sesji
Source: SecurityBezTabu.pl Published on 2026-05-26
340 mln profili OnlyFans wystawionych na sprzedaż. To nie musi być nowe włamanie, ale ryzyko pozostaje poważne
Source: SecurityBezTabu.pl Published on 2026-05-26
Naruszenie danych w The Oncology Institute pokazuje skalę ryzyka związanego z dostawcami zewnętrznymi
Source: SecurityBezTabu.pl Published on 2026-05-26
Holandia przejęła 800 serwerów. Uderzenie w zaplecze cyberataków i obchodzenie sankcji
Source: SecurityBezTabu.pl Published on 2026-05-26
Złośliwe pakiety Laravel-Lang: groźny atak na łańcuch dostaw w ekosystemie PHP
Source: SecurityBezTabu.pl Published on 2026-05-26
TrapDoor: atak supply chain na npm, PyPI i Crates.io zagraża deweloperom i środowiskom CI/CD
Source: SecurityBezTabu.pl Published on 2026-05-26
Lazarus rozwija pamięciozny RAT RemotePE w atakach na sektor finansowy i kryptowalutowy
Source: SecurityBezTabu.pl Published on 2026-05-26
Anthropic i Mythos: AI wykryło ponad 23 tys. potencjalnych luk w projektach open source
Source: SecurityBezTabu.pl Published on 2026-05-26
Ghost CMS i CVE-2026-26980: krytyczna luka wykorzystana do przejęcia ponad 700 witryn w kampanii ClickFix
Source: SecurityBezTabu.pl Published on 2026-05-26
Anthropic może szykować publiczne wdrożenie Claude Mythos w Claude Code
Source: SecurityBezTabu.pl Published on 2026-05-26
Megalodon: zmasowany atak supply chain skaził tysiące repozytoriów GitHub
Source: SecurityBezTabu.pl Published on 2026-05-26
FBI ostrzega przed Kali365: nowy phishing-as-a-service atakuje konta Microsoft 365
Source: SecurityBezTabu.pl Published on 2026-05-26
Nie Sprzedaję Zgodności W Paczce. Po Co Są Szablony Dokumentacji NIS2 I ISO 27001?
Source: SecurityBezTabu.pl Published on 2026-05-25
Poznań wzmacnia pozycję w technologiach kwantowych. Ruszył komputer IQM
Source: cyberdefence24 Published on 2026-05-25
Dane 740 osób w urzędowym biuletynie. Jest kara od UODO
Source: cyberdefence24 Published on 2026-05-25
Leon XIV: trzeba rozbroić sztuczną inteligencję
Source: cyberdefence24 Published on 2026-05-25
Podatność w oprogramowaniu Szafir SDK
Source: cert pl Published on 2026-05-25
Ominięcie uwierzytelniania w ZUS-ie i systemach e-Zdrowia, czyli o krok od cyberchaosu – [CVE-2026-9058] [Badanie e-podpisów, cz. 3]
Source: zaufanatrzeciastrona Published on 2026-05-25
Podsumowanie: Krytyczna podatność umożliwiająca całkowite ominięcie logowania w ZUS-ie, e-Sądzie i systemach e-Zdrowia
Source: zaufanatrzeciastrona Published on 2026-05-25
Hakowanie e-Sądu YubiKeyem – [Badanie e-podpisów, cz. 2]
Source: zaufanatrzeciastrona Published on 2026-05-25
Zdalne wykonanie kodu w SzafirHost – [CVE-2026-26928] [Badanie e-podpisów, cz. 1]
Source: zaufanatrzeciastrona Published on 2026-05-25
Polskie firmy bliżej Afryki Zachodniej
Source: cyberdefence24 Published on 2026-05-25
Podatność w oprogramowaniu kamer Kenik
Source: cert pl Published on 2026-05-25
Podatność w oprogramowaniu Lifetime
Source: cert pl Published on 2026-05-25
X tłumaczy się z niebieskiego znaczka
Source: cyberdefence24 Published on 2026-05-25
Cyberatak na centrum zdrowia psychicznego. Komunikat po 3 latach
Source: cyberdefence24 Published on 2026-05-25
CRA – nowe obowiązki dla producentów oprogramowania i korzyści dla użytkowników
Source: cert pl Published on 2026-05-25
Fałszywe alarmy w Polsce jako test odporności państwa frontowego
Source: cyberdefence24 Published on 2026-05-25
F5 BIG-IP pod ostrzałem cyberprzestępców. Hakerzy zdobywają dostęp SSH i przejmują sieci firmowe
Source: kpt Hack Published on 2026-05-25
Bezpieczne wdrażanie AI. Jak dynamicznie analizować ryzyko?
Source: cyberdefence24 Published on 2026-05-25
Project Glasswing wykrył ponad 10 tys. luk. AI przyspiesza identyfikację podatności szybciej niż firmy są w stanie łatać systemy
Source: SecurityBezTabu.pl Published on 2026-05-25
Ghost CMS pod ostrzałem: krytyczne SQL Injection wykorzystywane w kampanii ClickFix
Source: SecurityBezTabu.pl Published on 2026-05-25
Atak na łańcuch dostaw Composer: złośliwe pakiety Laravel Lang rozsyłały malware kradnące poświadczenia
Source: SecurityBezTabu.pl Published on 2026-05-25
CISA dodaje krytyczną lukę w Drupal Core do katalogu KEV po potwierdzonej aktywnej eksploatacji
Source: SecurityBezTabu.pl Published on 2026-05-25
Co załamuje Tomka Turbę?
Source: sekurak Published on 2026-05-24
Włochy rozbiły CINEMAGOAL. Nowy model piractwa wykorzystywał przechwytywanie kodów autoryzacyjnych
Source: SecurityBezTabu.pl Published on 2026-05-24

NEWS

MuddyWater Uses DLL Side-Loading in Espionage Campaign Targeting 9 Countries
Source: The Hacker News Published on 2026-05-26
How Varonis Atlas integrates Claude Compliance API for AI governance
Source: bleepingcomputer Published on 2026-05-26
Fake software on GitHub and SourceForge distribute Deno RAT
Source: malwarebytes Published on 2026-05-26
Microsoft Defender can now automatically isolate hacked endpoints
Source: bleepingcomputer Published on 2026-05-26
Webinar: Too many tools are slowing network incident response
Source: bleepingcomputer Published on 2026-05-26
Remembering Tim Wilson, Whose Legacy Lives on at Dark Reading
Source: darkreading Published on 2026-05-26
New AI DDoS Attacks Are Smarter. Learn How to Fight Back in This Webinar
Source: The Hacker News Published on 2026-05-26
Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions
Source: The Hacker News Published on 2026-05-26
700+ education and tech websites hijacked in huge ClickFix malware campaign
Source: malwarebytes Published on 2026-05-26
MFA Prompt Bombing: Why Your Second Factor Isn't Saving You
Source: The Hacker News Published on 2026-05-26
Scammers pretending to be Microsoft had help from US executives
Source: malwarebytes Published on 2026-05-26
US Law Enforcement Warns of ‘Anti-Tech Extremism’ as AI Hatred Grows
Source: WIREDSEC Published on 2026-05-26
CERT-In Mandates 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks
Source: The Hacker News Published on 2026-05-26
CISA orders feds to patch actively exploited Drupal vulnerability
Source: bleepingcomputer Published on 2026-05-26
Microsoft: Domain Controller lookup may fail on Windows Server 2016
Source: bleepingcomputer Published on 2026-05-26
Iranian Hackers Deploy MiniFast and MiniJunk V2 via Phishing and SEO Poisoning
Source: The Hacker News Published on 2026-05-26
7-Eleven data breach exposes personal information of 185,000 people
Source: bleepingcomputer Published on 2026-05-26
KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike
Source: The Hacker News Published on 2026-05-26
Anthropic’s restricted Claude Mythos model may be coming to Claude Code
Source: bleepingcomputer Published on 2026-05-25
⚡ Weekly Recap: Linux Flaws, Defender 0-Days, Router Botnets, and Supply Chain Chaos
Source: The Hacker News Published on 2026-05-25
FBI warns of Kali365 phishing service targeting Microsoft 365 accounts
Source: bleepingcomputer Published on 2026-05-25
Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks
Source: The Hacker News Published on 2026-05-25
The Alert Firehose Finally Meets Its Match
Source: The Hacker News Published on 2026-05-25
The AI Era Is Creating a Bug Hunting Arms Race
Source: WIREDSEC Published on 2026-05-25
Lazarus Deploys RemotePE Memory-Only RAT Against Financial and Crypto Firms
Source: The Hacker News Published on 2026-05-25
A week in security (May 18 – May 24)
Source: malwarebytes Published on 2026-05-25
TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO
Source: The Hacker News Published on 2026-05-25
Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign
Source: bleepingcomputer Published on 2026-05-24
Laravel Lang packages hijacked to deploy credential-stealing malware
Source: bleepingcomputer Published on 2026-05-23
npm Adds 2FA-Gated Publishing and Package Install Controls Against Supply Chain Attacks
Source: The Hacker News Published on 2026-05-23
Packagist Supply Chain Attack Infects 8 Packages Using GitHub-Hosted Linux Malware
Source: The Hacker News Published on 2026-05-23
Italy disrupts CINEMAGOAL piracy app that stole streaming auth codes
Source: bleepingcomputer Published on 2026-05-23
Claude Mythos AI Finds 10,000 High-Severity Flaws in Widely Used Software
Source: The Hacker News Published on 2026-05-23
The FBI Wants ‘Near Real-Time’ Access to US License Plate Readers
Source: WIREDSEC Published on 2026-05-23
Laravel-Lang PHP Packages Compromised to Deliver Cross-Platform Credential Stealer
Source: The Hacker News Published on 2026-05-23
LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root
Source: The Hacker News Published on 2026-05-23
Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV
Source: The Hacker News Published on 2026-05-23
First VPN Dismantled in Global Takedown Over Use by 25 Ransomware Groups
Source: The Hacker News Published on 2026-05-22
Netherlands seizes 800 servers of hosting firm enabling cyberattacks
Source: bleepingcomputer Published on 2026-05-22
Ghostwriter Targets Ukraine Government Entities with Prometheus Phishing Malware
Source: The Hacker News Published on 2026-05-22

INFLUENCERS

Identifying People Using Wi-Fi Routers
Source: Bruce Schneier Published on 2026-05-26
A Report Template for Cyber Threat Intelligence
Source: Zeltser Published on 2026-05-26
Welcoming the Bhutanese Government to Have I Been Pwned
Source: TroyHunt Published on 2026-05-25
Netherlands Seizes 800 Servers, Arrests 2 for Aiding Cyberattacks
Source: Brian Krebs Published on 2026-05-25
Weekly Update 505
Source: TroyHunt Published on 2026-05-24
Friday Squid Blogging: Regulating Squid Fishing in the South Pacific
Source: Bruce Schneier Published on 2026-05-22
Lawmakers Demand Answers as CISA Tries to Contain Data Leak
Source: Brian Krebs Published on 2026-05-22
CISA Security Leak
Source: Bruce Schneier Published on 2026-05-22
Alleged Kimwolf Botmaster ‘Dort’ Arrested, Charged in U.S. and Canada
Source: Brian Krebs Published on 2026-05-21
macOS Kernel Memory Corruption Exploit
Source: Bruce Schneier Published on 2026-05-21
On AI Security
Source: Bruce Schneier Published on 2026-05-20

CYBERLAW

RODO aktualności – 26.05.2026 r.
Source: dane osobowe Published on 2026-05-26

CERT EU Latest News

CERT EU Latest News

No feed items found.

ADVISORIES / BULLETINS

ADVISORIES / BULLETINS

New Ivanti Security Controls Content Available – 05/26/2026
Source: ivanti patch Published on 2026-05-26
New Ivanti Security Controls Content Available – 05/25/2026
Source: ivanti patch Published on 2026-05-25
New Ivanti Security Controls Content Available – 05/22/2026
Source: ivanti patch Published on 2026-05-22
New Ivanti Security Controls Content Available – 05/21/2026
Source: ivanti patch Published on 2026-05-21
New Ivanti Security Controls Content Available – 05/20/2026
Source: ivanti patch Published on 2026-05-20

ALERTS

No feed items found.

TOOLS

v2.4.219
Source: MISP Published on 2026-05-21
MISP 2.5.38
Source: MISP Published on 2026-05-20

VULNERABILITIES

VULNERABILITIES

No feed items found.

EXPLOITS

[local] Linux Kernel 6.8 - Local Privilege Escalation
Source: exploit-db Published on 2026-05-26
[webapps] cPanel - CRLF Injection
Source: exploit-db Published on 2026-05-26
[webapps] Wordpress Temporary Login Plugin 1.0.0 - 'temp-login-token' Authentication Bypass to Account Takeover
Source: exploit-db Published on 2026-05-26
[hardware] D-Link DSL2600U - 'rom-0' Admin Password Disclosure
Source: exploit-db Published on 2026-05-26
[webapps] Apache HTTP Server 2.4.66 - 'mod_http2' Double-Free Denial of Service
Source: exploit-db Published on 2026-05-26
[webapps] Grav CMS 2.0.0-beta.2 - Remote Code Execution
Source: exploit-db Published on 2026-05-26
[webapps] FUXA 1.2.9 - RCE
Source: exploit-db Published on 2026-05-21
[webapps] BookStack 25.12.1 - Denial of Service
Source: exploit-db Published on 2026-05-21
[webapps] solaredge - (CSRF-OOB-Injection)
Source: exploit-db Published on 2026-05-21
[local] Lenovo LegionSpace 1.7.11.2 - 'DAService' Unquoted Service Path
Source: exploit-db Published on 2026-05-21
[webapps] Cockpit 359 - RCE
Source: exploit-db Published on 2026-05-21

MALWARE

Your Outdated Repository Still Works, But It May Not Be Safe
Source: malwarenews Published on 2026-05-26
Streamlining CMMC Compliance: How Bitsight Empowers the Defense Industrial Base
Source: malwarenews Published on 2026-05-26
CrowdStrike Named a Leader in Identity Threat Detection and Response
Source: malwarenews Published on 2026-05-26
구글 실수로 수정되지 않은 크롬 취약점의 세부 정보를 공개
Source: malwareanalysys Published on 2026-05-26
Hunt Before They Hide -From Device Codes to Fake IT Support Detecting Active Microsoft 365 Identity…
Source: malwarenews Published on 2026-05-26
Micropatches released for Windows Netlogon Remote Code Execution Vulnerability (CVE-2026-41089)
Source: malwarenews Published on 2026-05-26
[Control systems] ABB security advisory (AV26-510)
Source: malwarenews Published on 2026-05-26
Fake software on GitHub and SourceForge distribute Deno RAT
Source: malwarenews Published on 2026-05-26
[Control Systems] Moxa security advisory (AV26-509)
Source: malwarenews Published on 2026-05-26
Pivoting on a malspam infrastructure delivering JS malware backed by bulletproof networks
Source: malwarenews Published on 2026-05-26
Major Cyber Attacks in May 2026: Fake Invitations, Agent Tesla, BlobPhish, and More
Source: malwarenews Published on 2026-05-26
AI Threat Landscape Digest March-April 2026
Source: malwarenews Published on 2026-05-26
5 Ways XDR Helps SOCs Act Faster
Source: malwarenews Published on 2026-05-26
Bitdefender Supports Ferrari Through Cybersecurity Built on Trust
Source: malwarenews Published on 2026-05-26
CAN We Trust Your Results?
Source: malwareanalysys Published on 2026-05-26
Use of AI Agents to enrich and generate TI Feeds based on Security News and Reports ( + KQL Query)
Source: malwarenews Published on 2026-05-26
ClickFix Site Abusing Cloudflare Pages to Deliver Lumma Stealer
Source: malwareanalysys Published on 2026-05-26
Malware shellcode delivery via signal - part 1. FSK Basics. Simple python script
Source: malwareanalysys Published on 2026-05-26
ISC Stormcast For Tuesday, May 26th, 2026 https://isc.sans.edu/podcastdetail/9944, (Tue, May 26th)
Source: malwarenews Published on 2026-05-26
April 2026 Threat Trend Report on APT Attacks (South Korea)
Source: malwareanalysys Published on 2026-05-26

CYBERCRIME

No feed items found.

ANONYMOUS

No feed items found.

INFOOPS

As the Stands on 9 May Thins, Kremlin Mouthpieces Pour Anger at the Baltic States
Source: DebunkEU Published on 2026-05-25
Minister Hennig-Kloska nie powiedziała, że przy butelkomatach można poznać kogoś ciekawego
Source: FakeNews.pl Published on 2026-05-23
Wycofanie scenariusza RCP8.5 to dowód na skuteczność polityki klimatycznej, a nie na błędy autorów
Source: FakeNews.pl Published on 2026-05-22
Lies about Russia’s military success, Yermak’s arrest and secret biolabs
Source: EUvsDISINFO Published on 2026-05-22
The Digital Iron Curtain 2.0: how the MAX messenger is reshaping Russia’s communication space
Source: EUvsDISINFO Published on 2026-05-20
Attacks on Lithuanian Partisan Leaders Are Expanding – Kremlin Media Accuses Jonas Žemaitis and Juozas Lukša of Nazism
Source: DebunkEU Published on 2026-05-20

APT

No feed items found.

CYBERTERRORISM

No feed items found.

CYBERWARFARE

No feed items found.

ARTICLES

Q&A – Resilient You: The Cyber Agony Aunts Are Back!
Source: itsecurityguru Published on 2026-05-26
CFO on the Spot: NiCE’s Beth Gaspich
Source: raconteur Published on 2026-05-26
Weaponizing SBOMs: A Practical Guide for Security Practitioners
Source: securitymagazine cybertactics Published on 2026-05-25
Dublin clears path for Meta to commercialise WhatsApp
Source: raconteur Published on 2026-05-22
Proton Launches Credential Tokens to Tackle AI Agent Security Gap
Source: itsecurityguru Published on 2026-05-21
Industry Reacts to Verizon DBIR 2026 as Vulnerability Exploitation Takes Top Spot
Source: itsecurityguru Published on 2026-05-21
Critical flaw in software powering a third of the internet is already being exploited – free checker now available
Source: itsecurityguru Published on 2026-05-20
Certes Research Warns Legacy Systems Are Biggest Barrier to Quantum Security Readiness
Source: itsecurityguru Published on 2026-05-20
Cyber Agony Aunts: New book Offers Practical Look at Resilience
Source: itsecurityguru Published on 2026-05-19