…it’s not IF, it’s WHEN. – Wiadomości i narzędzia z dziedziny bezpieczeństwa cyfrowego.

NEWS PL

Transformacja Wojska Polskiego. Szef MON wskazał na co pójdą wolne środki
Source: cyberdefence24 Published on 2026-05-06
Cyberatak na dolnośląską gminę. Zaszyfrowano dane
Source: cyberdefence24 Published on 2026-05-06
Cisco tworzy narzędzie do kategoryzacji modeli AI!
Source: kpt Hack Published on 2026-05-06
Atak hakerski zakończy wojnę?
Source: cyberdefence24 Published on 2026-05-06
Globalna kampania phishingowa. Cyberprzestępcy przejęli tysiące kont
Source: cyberdefence24 Published on 2026-05-06
Kampania VENOMOUS#HELPER atakuje ponad 80 organizacji, wykorzystując SimpleHelp i ScreenConnect
Source: SecurityBezTabu.pl Published on 2026-05-06
OAuth jako trwałe tylne wejście do środowiska SaaS: rosnące ryzyko niewidocznych tokenów dostępowych
Source: SecurityBezTabu.pl Published on 2026-05-06
CVE-2026-41940 w cPanel i WHM: krytyczna luka już wykorzystywana w atakach na administrację i MSP
Source: SecurityBezTabu.pl Published on 2026-05-06
Strategiczne kradzieże ładunków: jak cyberprzestępcy przejmują kontrolę nad łańcuchem dostaw
Source: SecurityBezTabu.pl Published on 2026-05-06
NCSC ostrzega przed falą łatania napędzaną przez AI. Systemy legacy pod rosnącą presją
Source: SecurityBezTabu.pl Published on 2026-05-06
Krytyczne luki w MOVEit Automation mogą umożliwić pełne przejęcie systemu
Source: SecurityBezTabu.pl Published on 2026-05-06
Krytyczna luka RCE w Weaver E-cology 10.0 aktywnie wykorzystywana przez debug API
Source: SecurityBezTabu.pl Published on 2026-05-06
WhatsApp łata luki CVE-2026-23863 i CVE-2026-23866. Zagrożone były Windows, Android i iPhone
Source: SecurityBezTabu.pl Published on 2026-05-06
Krytyczna luka w Ollama może prowadzić do wycieku danych z setek tysięcy wdrożeń
Source: SecurityBezTabu.pl Published on 2026-05-06
Microsoft ujawnia kampanię phishingową przeciwko 35 tys. użytkowników w 26 krajach
Source: SecurityBezTabu.pl Published on 2026-05-06
1 mln publicznie dostępnych usług AI pod lupą. Błędne konfiguracje otwierają drogę do poważnych incydentów
Source: SecurityBezTabu.pl Published on 2026-05-06
Google podnosi nagrody w bug bounty: nawet 1,5 mln dolarów za wybrane łańcuchy exploitów Androida
Source: SecurityBezTabu.pl Published on 2026-05-06
Microsoft Edge przechowuje hasła w pamięci procesu. Nowe ustalenia zwiększają ryzyko dla firm
Source: SecurityBezTabu.pl Published on 2026-05-06
Krytyczna luka RCE w Androidzie załatana. CVE-2026-0073 umożliwia wykonanie kodu bez interakcji użytkownika
Source: SecurityBezTabu.pl Published on 2026-05-06
Naruszenie repozytorium kodu źródłowego Trellix rodzi pytania o bezpieczeństwo łańcucha dostaw
Source: SecurityBezTabu.pl Published on 2026-05-06
CISA promuje model izolacji i odtworzenia dla infrastruktury krytycznej
Source: SecurityBezTabu.pl Published on 2026-05-06
MetInfo CMS pod ostrzałem: aktywne wykorzystanie krytycznej luki CVE-2026-29014 prowadzi do zdalnego wykonania kodu
Source: SecurityBezTabu.pl Published on 2026-05-06
Złośliwy pakiet PyTorch Lightning 2.6.3 na PyPI uruchamiał stealera już przy imporcie biblioteki
Source: SecurityBezTabu.pl Published on 2026-05-06
Krytyczna luka w Apache HTTP Server: CVE-2026-23918 w module HTTP/2 grozi DoS i potencjalnym RCE
Source: SecurityBezTabu.pl Published on 2026-05-06
ScarCruft wykorzystuje platformę gamingową do dystrybucji BirdCall na Androidzie i Windowsie
Source: SecurityBezTabu.pl Published on 2026-05-06
Negocjator Karakurt skazany na 8,5 roku więzienia. USA uderzają w operacyjne zaplecze cyberwymuszeń
Source: SecurityBezTabu.pl Published on 2026-05-06
Naruszenie danych Vimeo przez dostawcę zewnętrznego objęło 119 tys. użytkowników
Source: SecurityBezTabu.pl Published on 2026-05-06
Atak na łańcuch dostaw DAEMON Tools: oficjalne instalatory z malware zagrażają użytkownikom i firmom
Source: SecurityBezTabu.pl Published on 2026-05-06
Amazon SES nadużywany w phishingu. Legalna infrastruktura AWS pomaga omijać detekcję
Source: SecurityBezTabu.pl Published on 2026-05-06
CloudZ wykorzystuje Microsoft Phone Link do przechwytywania SMS-ów i kodów OTP
Source: SecurityBezTabu.pl Published on 2026-05-06
Quasar Linux: skryty implant malware atakujący środowiska deweloperskie i DevOps
Source: SecurityBezTabu.pl Published on 2026-05-06
Luka EOL w monitoringu CVE: czego narzędzia SCA nie wykrywają w bibliotekach open source
Source: SecurityBezTabu.pl Published on 2026-05-06
Atak na kolej dużych prędkości w Tajwanie: nadużycie TETRA uruchomiło awaryjne hamowanie pociągów
Source: SecurityBezTabu.pl Published on 2026-05-06
Atak na Instructure i Canvas: cyberprzestępcy twierdzą, że wykradli dane z 8 800 szkół i uczelni
Source: SecurityBezTabu.pl Published on 2026-05-06
FTC zakaże Kochava sprzedaży precyzyjnych danych lokalizacyjnych Amerykanów
Source: SecurityBezTabu.pl Published on 2026-05-06
Kulisy jedynych takich ćwiczeń NATO: stres, presja i tysiące ataków
Source: cyberdefence24 Published on 2026-05-05
Włamanie na maile polskich domów dziecka. Możliwa kradzież danych
Source: cyberdefence24 Published on 2026-05-05
⚠️ Uwaga na e-maile od “Ergo Hestia”
Source: niebezpiecznik Published on 2026-05-05
Suwerenność technologiczna to zdolność do świadomego wyboru
Source: cyberdefence24 Published on 2026-05-05
Noyb pozywa Hamburg za sprawę PimEyes
Source: cyberdefence24 Published on 2026-05-05
Poważna podatność w platformie Ollama prowadzi do wycieku pamięci. A wszystko przez odpowiednio spreparowany plik GGUF (CVE-2026-5757)
Source: sekurak Published on 2026-05-05
Nowa ustawa o KSC (NIS2) w praktyce. Co musisz wiedzieć, kiedy i za co dostaniesz karę oraz co powinieneś zrobić już teraz?
Source: niebezpiecznik Published on 2026-05-05
Polski system w czołgach K2GF. Czas na kolejne platformy
Source: cyberdefence24 Published on 2026-05-05
Linux na celowniku – Copy-Fail i root exploit, który trafia na listę CISA
Source: kpt Hack Published on 2026-05-05
Zamiast pomagać atakowali. Eksperci trafią do więzienia
Source: cyberdefence24 Published on 2026-05-05
Linksys E1200 z podatnością RCE: przepełnienie stosu w panelu administracyjnym routera
Source: SecurityBezTabu.pl Published on 2026-05-05
AI przyspiesza wykrywanie luk. NCSC ostrzega przed falą pilnych aktualizacji
Source: SecurityBezTabu.pl Published on 2026-05-05
CVE-2025-40271 w jądrze Linux: lokalna eskalacja uprawnień przez błąd use-after-free w procfs
Source: SecurityBezTabu.pl Published on 2026-05-05
CVE-2026-23231 w Linux nf_tables: groźna lokalna eskalacja uprawnień w jądrze
Source: SecurityBezTabu.pl Published on 2026-05-05
Krytyczna luka Path Traversal w MindsDB może prowadzić do zdalnego wykonania kodu
Source: SecurityBezTabu.pl Published on 2026-05-05

NEWS

Palo Alto Networks warns of firewall RCE zero-day exploited in attacks
Source: bleepingcomputer Published on 2026-05-06
Google's Android Apps Get Public Verification to Stop Supply Chain Attacks
Source: The Hacker News Published on 2026-05-06
Windows Phone Link Exploited by CloudZ RAT to Steal Credentials and OTPs
Source: The Hacker News Published on 2026-05-06
Palo Alto PAN-OS Flaw Under Active Exploitation Enables Remote Code Execution
Source: The Hacker News Published on 2026-05-06
Middle East Cyber Battle Field Broadens — Especially in UAE
Source: darkreading Published on 2026-05-06
New stealthy Quasar Linux malware targets software developers
Source: bleepingcomputer Published on 2026-05-05
Instructure hacker claims data theft from 8,800 schools, universities
Source: bleepingcomputer Published on 2026-05-05
Trellix Source Code Breach Highlights Growing Supply Chain Threats
Source: darkreading Published on 2026-05-05
DAEMON Tools trojanized in supply-chain attack to deploy backdoor
Source: bleepingcomputer Published on 2026-05-05
Student hacked Taiwan high-speed rail to trigger emergency brakes
Source: bleepingcomputer Published on 2026-05-05
Critical Apache HTTP/2 Flaw (CVE-2026-23918) Enables DoS and Potential RCE
Source: The Hacker News Published on 2026-05-05
DAEMON Tools Supply Chain Attack Compromises Official Installers with Malware
Source: The Hacker News Published on 2026-05-05
Microsoft Edge Stores Passwords in Process Memory, Posing Enterprise Risk
Source: darkreading Published on 2026-05-05
FTC to ban data broker Kochava from selling Americans’ location data
Source: bleepingcomputer Published on 2026-05-05
China-Linked UAT-8302 Targets Governments Using Shared APT Malware Across Regions
Source: The Hacker News Published on 2026-05-05
The EOL Blind Spot in Your CVE Feed: What SCA Tools Don't Check.
Source: bleepingcomputer Published on 2026-05-05
The EOL Blind Spot in Your CVE Feed: What SCA Tools Miss
Source: bleepingcomputer Published on 2026-05-05
Vimeo data breach exposes personal information of 119,000 people
Source: bleepingcomputer Published on 2026-05-05
The Back Door Attackers Know About — and Most Security Teams Still Haven’t Closed
Source: The Hacker News Published on 2026-05-05
How the Story of a USB Penetration Test Went Viral
Source: darkreading Published on 2026-05-05
MetInfo CMS CVE-2026-29014 Exploited for Remote Code Execution Attacks
Source: The Hacker News Published on 2026-05-05
Update WhatsApp now: Two new flaws could expose you to malicious files
Source: malwarebytes Published on 2026-05-05
Google now offers up to $1.5 million for some Android exploits
Source: bleepingcomputer Published on 2026-05-05
We Scanned 1 Million Exposed AI Services. Here's How Bad the Security Actually Is
Source: The Hacker News Published on 2026-05-05
Karakurt extortion gang ‘cold case’ negotiator gets 8.5 years in prison
Source: bleepingcomputer Published on 2026-05-05
CloudZ malware abuses Microsoft Phone Link to steal SMS and OTPs
Source: bleepingcomputer Published on 2026-05-05
UAT-8302 and its box full of malware
Source: talos Published on 2026-05-05
CloudZ RAT potentially steals OTP messages using Pheno plugin
Source: talos Published on 2026-05-05
ScarCruft Hacks Gaming Platform to Deploy BirdCall Malware on Android and Windows
Source: The Hacker News Published on 2026-05-05
ScarCruft hackers push BirdCall Android malware via game platform
Source: bleepingcomputer Published on 2026-05-05
Weaver E-cology RCE Flaw CVE-2026-22679 Actively Exploited via Debug API
Source: The Hacker News Published on 2026-05-05
Microsoft Details Phishing Campaign Targeting 35,000 Users Across 26 Countries
Source: The Hacker News Published on 2026-05-05
Weaver E-cology critical bug exploited in attacks since March
Source: bleepingcomputer Published on 2026-05-04
Physical Cargo Theft Gets a Boost From Cybercriminals
Source: darkreading Published on 2026-05-04
RMM Tools Fuel Stealthy Phishing Campaign
Source: darkreading Published on 2026-05-04
Amazon SES increasingly abused in phishing to evade detection
Source: bleepingcomputer Published on 2026-05-04
Researchers report Amazon SES abused in phishing to evade detection
Source: bleepingcomputer Published on 2026-05-04
Exploit Cyber-Frenzy Threatens Millions via Critical cPanel Vulnerability
Source: darkreading Published on 2026-05-04
Phishing Campaign Hits 80+ Orgs Using SimpleHelp and ScreenConnect RMM Tools
Source: The Hacker News Published on 2026-05-04
Backdoored PyTorch Lightning package drops credential stealer
Source: bleepingcomputer Published on 2026-05-04

INFLUENCERS

Weekly Update 502
Source: TroyHunt Published on 2026-05-06
DarkSword Malware
Source: Bruce Schneier Published on 2026-05-05
Hacking Polymarket
Source: Bruce Schneier Published on 2026-05-04
Build a Decoy MCP Server to Catch AI Agent Attackers
Source: Zeltser Published on 2026-05-03
A Ransomware Negotiator Was Working for a Ransomware Gang
Source: Bruce Schneier Published on 2026-05-01
Anti-DDoS Firm Heaped Attacks on Brazilian ISPs
Source: Brian Krebs Published on 2026-04-30
Fast16 Malware
Source: Bruce Schneier Published on 2026-04-30
Plant Honeytokens to Detect Intrusions
Source: Zeltser Published on 2026-04-30
Claude Mythos Has Found 271 Zero-Days in Firefox
Source: Bruce Schneier Published on 2026-04-29

CYBERLAW

Jak zarządzać RODO w grupie kapitałowej
Source: dane osobowe Published on 2026-05-05
RODO aktualności – 05.05.2026 r.
Source: dane osobowe Published on 2026-05-05

CERT EU Latest News

CERT EU Latest News

No feed items found.

ADVISORIES / BULLETINS

ADVISORIES / BULLETINS

New Ivanti Security Controls Content Available – 05/05/2026
Source: ivanti patch Published on 2026-05-05
New Ivanti Security Controls Content Available – 05/04/2026
Source: ivanti patch Published on 2026-05-04
New Ivanti Security Controls Content Available – 05/02/2026
Source: ivanti patch Published on 2026-05-02
New Ivanti Security Controls Content Available – 05/01/2026
Source: ivanti patch Published on 2026-05-01
New Ivanti Security Controls Content Available – 04/30/2026
Source: ivanti patch Published on 2026-04-30
New Ivanti Security Controls Content Available – 04/29/2026
Source: ivanti patch Published on 2026-04-29

ALERTS

No feed items found.

TOOLS

MISP 2.5.37 - Templates, Assemble!
Source: MISP Published on 2026-04-29

VULNERABILITIES

VULNERABILITIES

No feed items found.

EXPLOITS

[webapps] Traccar GPS Tracking System 6.11.1 - Cross-Site WebSocket Hijacking (CSWSH)
Source: exploit-db Published on 2026-05-04
[hardware] Linksys E1200 2.0.04 - Authenticated Stack Buffer Overflow (RCE)
Source: exploit-db Published on 2026-05-04
[local] Linux nf_tables 6.19.3 - Local Privilege Escalation
Source: exploit-db Published on 2026-05-04
[local] Linux Kernel proc_readdir_de() 6.18-rc5 - Local Privilege Escalation
Source: exploit-db Published on 2026-05-04
[webapps] MindsDB 25.9.1.1 - Path Traversal
Source: exploit-db Published on 2026-05-04
[local] Windows 11 24H2 - Local Privilege Escalation
Source: exploit-db Published on 2026-05-04
[webapps] Erugo 0.2.14 - Remote Code Execution (RCE)
Source: exploit-db Published on 2026-04-30
[webapps] Camaleon CMS v2.9.0 - Path Traversal
Source: exploit-db Published on 2026-04-30
[webapps] JUNG Smart Visu Server 1.1.1050 - Dos
Source: exploit-db Published on 2026-04-30
[local] Windows 11 25H2 - Heap Overflow
Source: exploit-db Published on 2026-04-30
[webapps] BusyBox 1.37.0 - Path Traversal
Source: exploit-db Published on 2026-04-30
[webapps] SumatraPDF 3.5.2 - Remote Code Execution
Source: exploit-db Published on 2026-04-30
[webapps] NiceGUI 3.6.1 - Path Traversal
Source: exploit-db Published on 2026-04-30
[webapps] Js2Py 0.74 - RCE
Source: exploit-db Published on 2026-04-30
[webapps] Frigate NVR 0.16.3 - Remote Code Execution
Source: exploit-db Published on 2026-04-30
[webapps] HUSTOJ Zip-Slip v26.01.24 - RCE
Source: exploit-db Published on 2026-04-30
[local] Windows 11 23H2 - Denial of Service (DoS)
Source: exploit-db Published on 2026-04-30
[local] Google Chrome 145.0.7632.75 - CSSFontFeatureValuesMap
Source: exploit-db Published on 2026-04-30
[webapps] Repetier-Server 1.4.10 - Path Traversal
Source: exploit-db Published on 2026-04-30
[webapps] Cybersecurity AI (CAI) Framework 0.5.10 - Command Injection
Source: exploit-db Published on 2026-04-30

MALWARE

Is biometric fraud on the rise?
Source: malwarenews Published on 2026-05-06
Websites with an undefined trust level: avoiding the trap
Source: malwarenews Published on 2026-05-06
How CISOs Reduce Cyber Risk with MITRE ATT&CK
Source: malwarenews Published on 2026-05-06
A Practical Guide to Managed Cloud Security for Modern Businesses
Source: malwarenews Published on 2026-05-06
Detecting Copy Fail Linux Vulnerability Agentlessly with Sandfly
Source: malwarenews Published on 2026-05-06
ISC Stormcast For Wednesday, May 6th, 2026 https://isc.sans.edu/podcastdetail/9920, (Wed, May 6th)
Source: malwarenews Published on 2026-05-06
Microsoft Edge(마이크로소프트 엣지)실행 시 모든 비밀번호를 메모리에 평문으로 저장 문제 발생 중
Source: malwareanalysys Published on 2026-05-06
NYC Public Schools Lack Central Inventory to Track Vendors Used By Schools — NYS Auditor
Source: malwarenews Published on 2026-05-06
Krybit Ransomware Strikes Foodsmart Dominicana
Source: malwarenews Published on 2026-05-06
Everest Ransomware Targets Italian Firm Studio Marchi
Source: malwarenews Published on 2026-05-06
Incransom Ransomware Attack on Childplace Family Services
Source: malwarenews Published on 2026-05-06
ShinyHunters Breach Adelante Soluciones Financieras
Source: malwarenews Published on 2026-05-06
Juniper Networks security advisory (AV26-424)
Source: malwarenews Published on 2026-05-05
Redis security advisory (AV26-423)
Source: malwarenews Published on 2026-05-05
Generalist AI for your SOC: When and where to use it
Source: malwarenews Published on 2026-05-05
Contournement BitLocker : la réalité des downgrade attacks
Source: malwarenews Published on 2026-05-05
Attackers Actively Exploiting Critical Vulnerability in Breeze Cache Plugin
Source: malwarenews Published on 2026-05-05
Hacking Embodied AI
Source: malwareanalysys Published on 2026-05-05
CISA unveils CI Fortify to help secure critical infrastructure during conflicts
Source: malwarenews Published on 2026-05-05
Endpoint Protection in Practice: How Customers Use Bitdefender to Reduce Risk
Source: malwarenews Published on 2026-05-05

CYBERCRIME

No feed items found.

ANONYMOUS

No feed items found.

INFOOPS

Russia’s fake nuclear drills and real failure in Mali
Source: EUvsDISINFO Published on 2026-05-01
Kobieta, która zabrała alkohol podczas kolacji korespondentów, nie jest ambasadorką Ukrainy
Source: FakeNews.pl Published on 2026-04-29

APT

No feed items found.

CYBERTERRORISM

No feed items found.

CYBERWARFARE

No feed items found.

ARTICLES

OpenAI rolls out ads on ChatGPT, but marketers remain unconvinced
Source: raconteur Published on 2026-05-05
Huntress Expands Channel Partnerships to Boost Cybersecurity Reach Across Mid-Market and Public Sector
Source: itsecurityguru Published on 2026-05-05
Proton Mail rolls out post-quantum encryption for all users as industry braces for ‘harvest now, decrypt later’ threat
Source: itsecurityguru Published on 2026-05-05
‘Accountants need to be creative and curious’ says Ramsey Brown partner
Source: raconteur Published on 2026-05-01
Bridewell Joins Global Incident Response Network FIRST as Full Member
Source: itsecurityguru Published on 2026-05-01
86% of Phishing Attacks are AI Driven, KnowBe4 Research Finds
Source: itsecurityguru Published on 2026-05-01
Lessons from the PocketOS Incident: When AI Agents Go Beyond Their Limits
Source: itsecurityguru Published on 2026-05-01
Five practical steps for safe and secure AI-enabled legal work
Source: raconteur Published on 2026-05-01
The Billionaire Blueprint: why leadership is now a system, not a vision
Source: raconteur Published on 2026-04-30
Forescout Launches Mission:Possible Global Partner Tour to Drive Channel Growth Across 90 Cities
Source: itsecurityguru Published on 2026-04-30
Best AI security tools for exposure assessment in 2026
Source: itsecurityguru Published on 2026-04-30
Value of European VC deals masks volume decline
Source: raconteur Published on 2026-04-29