…it’s not IF, it’s WHEN. – Wiadomości i narzędzia z dziedziny bezpieczeństwa cyfrowego.

NEWS PL

Brytyjski regulator chce mocniejszej walki platform z deepnude
Source: cyberdefence24 Published on 2026-05-20
Badacz mógł oglądać zdjęcia z miliona chińskich elektronicznych niań
Source: cyberdefence24 Published on 2026-05-20
Białoruscy hakerzy uderzają w Polskę. Nowe ataki grupy UNC1151
Source: cyberdefence24 Published on 2026-05-20
Cyberkompetencje w małych firmach. NASK przedstawił zalecenia
Source: cyberdefence24 Published on 2026-05-20
Orlen pod cyber ostrzałem. „Setki milionów incydentów w kilka miesięcy”
Source: cyberdefence24 Published on 2026-05-20
5. edycja CyberTek Tech Festival już za nami!
Source: cyberdefence24 Published on 2026-05-20
Włamanie do GitHuba. Zainfekowane rozszerzenie do VS Code i dostęp do ~3800 wewnętrznych repozytoriów
Source: sekurak Published on 2026-05-20
Kradzież danych 1,8 mln pacjentów. Cyberatak na operatora nowojorskich szpitali
Source: cyberdefence24 Published on 2026-05-20
Stare, ale jare, czyli czym są combolisty z darknetu
Source: kpt Hack Published on 2026-05-20
Hakerzy omijają narzędzia bezpieczeństwa, atakując bezpośrednio użytkowników
Source: SecurityBezTabu.pl Published on 2026-05-20
Agentic AI przyspiesza ataki na łańcuch dostaw oprogramowania
Source: SecurityBezTabu.pl Published on 2026-05-20
AI zwiększa świadomość podatności, ale nie przełamuje problemu ich wykrywania
Source: SecurityBezTabu.pl Published on 2026-05-20
Claw Chain w OpenClaw: krytyczny łańcuch podatności zagraża sekretom i przejęciem środowiska
Source: SecurityBezTabu.pl Published on 2026-05-20
Polska ogranicza użycie Signal w administracji po kampaniach przejmowania kont urzędników
Source: SecurityBezTabu.pl Published on 2026-05-20
Microsoft Exchange bez poprawki: zero-day w OWA aktywnie wykorzystywany przeciwko skrzynkom pocztowym
Source: SecurityBezTabu.pl Published on 2026-05-20
Nowe luki zero-day w Windows po Patch Tuesday 2026 zwiększają presję na zespoły bezpieczeństwa
Source: SecurityBezTabu.pl Published on 2026-05-20
Verizon DBIR 2026: eksploatacja podatności najczęstszym punktem wejścia do naruszeń
Source: SecurityBezTabu.pl Published on 2026-05-20
Grafana Labs potwierdza kradzież kodu źródłowego po ataku na środowisko GitHub
Source: SecurityBezTabu.pl Published on 2026-05-20
Ujawnienie kluczy AWS GovCloud na GitHubie: incydent wokół CISA obnaża skalę ryzyka wycieku sekretów
Source: SecurityBezTabu.pl Published on 2026-05-20
Krytyczna luka CVE-2026-8153 w Universal Robots PolyScope 5 naraża roboty przemysłowe na zdalne przejęcie
Source: SecurityBezTabu.pl Published on 2026-05-20
Sektor telekomunikacyjny uruchamia prywatny C2 ISAC, by przyspieszyć wymianę danych o zagrożeniach
Source: SecurityBezTabu.pl Published on 2026-05-20
Ominięcie poprawki w SonicWall SSL-VPN umożliwia obejście MFA mimo wdrożonego patcha
Source: SecurityBezTabu.pl Published on 2026-05-20
B1ack’s Stash ujawnił 4,6 mln skradzionych kart płatniczych. Rosną ryzyka fraudów i kradzieży tożsamości
Source: SecurityBezTabu.pl Published on 2026-05-20
MSHTA wraca do gry: stare narzędzie Windows napędza nową falę cichych infekcji malware
Source: SecurityBezTabu.pl Published on 2026-05-20
Krytyczne luki w Microsoft rosną mimo spadku liczby CVE. Większe ryzyko dla chmury, serwerów i Office
Source: SecurityBezTabu.pl Published on 2026-05-20
Kopie robaka Shai-Hulud atakują npm po wycieku kodu źródłowego
Source: SecurityBezTabu.pl Published on 2026-05-20
Drupal ostrzega przed krytyczną luką w rdzeniu. Pilna poprawka już 20 maja 2026
Source: SecurityBezTabu.pl Published on 2026-05-20
Mini Shai-Hulud atakuje ekosystem AntV: złośliwe pakiety npm po przejęciu konta maintenera
Source: SecurityBezTabu.pl Published on 2026-05-20
Złośliwa wersja Nx Console 18.95.0 atakowała deweloperów VS Code i wykradała poświadczenia
Source: SecurityBezTabu.pl Published on 2026-05-20
OAuth consent phishing omija MFA i przejmuje dostęp do Microsoft 365
Source: SecurityBezTabu.pl Published on 2026-05-20
SHub Reaper na macOS: infostealer podszywa się pod aktualizacje zabezpieczeń Apple
Source: SecurityBezTabu.pl Published on 2026-05-20
Operacja Ramz: INTERPOL rozbił sieci phishingowe i oszustw online w regionie MENA
Source: SecurityBezTabu.pl Published on 2026-05-20
Atak na łańcuch dostaw GitHub Actions: przejęte tagi akcji prowadziły do kradzieży sekretów CI/CD
Source: SecurityBezTabu.pl Published on 2026-05-20
Nowa fala Shai-Hulud uderza w npm. Setki pakietów skompromitowanych w ataku na łańcuch dostaw
Source: SecurityBezTabu.pl Published on 2026-05-20
Nadużycie SSPR w Microsoft 365 i Azure posłużyło do kradzieży danych z chmury
Source: SecurityBezTabu.pl Published on 2026-05-20
Trapdoor na Androidzie: 659 mln fałszywych żądań RTB dziennie w wieloetapowej operacji ad fraud
Source: SecurityBezTabu.pl Published on 2026-05-20
DirtyDecrypt (CVE-2026-31635): publiczny PoC zwiększa ryzyko eskalacji uprawnień w Linuksie
Source: SecurityBezTabu.pl Published on 2026-05-20
FBI ostrzega przed oszustwami z użyciem krypto-bankomatów. Straty przekroczyły 388 mln dolarów
Source: SecurityBezTabu.pl Published on 2026-05-20
Microsoft zakłóca usługę podpisywania malware powiązaną z Fox Tempest
Source: SecurityBezTabu.pl Published on 2026-05-20
Elon Musk przegrał w sądzie z OpenAI
Source: cyberdefence24 Published on 2026-05-19
Wielka operacja Interpolu. Setki zatrzymanych, tysiące ofiar
Source: cyberdefence24 Published on 2026-05-19
ChatGPT z dostępem do kont bankowych. Są obawy o prywatność
Source: cyberdefence24 Published on 2026-05-19
Podatności w produktach firmy Sparx Systems
Source: cert pl Published on 2026-05-19
Cyberatak Iranu na stacje benzynowe w USA? Zmieniano odczyty zbiorników
Source: cyberdefence24 Published on 2026-05-19
Cyfrowa tarcza Togo z polskim udziałem
Source: cyberdefence24 Published on 2026-05-19
To miał być czysty zysk. Oszuści wyłudzili ponad milion złotych
Source: cyberdefence24 Published on 2026-05-19
Opublikował szczegóły ataku na BitLocker (czyli windowsowy system szyfrujący dyski). TLDR: mając fizyczny dostęp do komputera, można uzyskać dostęp do zaszyfrowanych plików.
Source: sekurak Published on 2026-05-19
Można było oglądać obraz z elektronicznych niań. Również w Polsce.
Source: sekurak Published on 2026-05-19
Google pokazuje, jak AI zaczyna wspierać nowoczesne cyberataki
Source: kpt Hack Published on 2026-05-19
FSB wyłapuje zdrajców. Zatrzymano kilkadziesiąt osób
Source: cyberdefence24 Published on 2026-05-19

NEWS

A Bipartisan Amendment Would End Police License Plate Tracking Nationwide
Source: WIREDSEC Published on 2026-05-20
Ukraine identifies infostealer operator tied to 28,000 stolen accounts
Source: bleepingcomputer Published on 2026-05-20
Hackers bypass SonicWall VPN MFA due to incomplete patching
Source: bleepingcomputer Published on 2026-05-20
Cyber Pros Can't Decide If AI Is a Good or a Bad Thing
Source: darkreading Published on 2026-05-20
GitHub Confirms Breach, 4K Internal Repos Stolen
Source: darkreading Published on 2026-05-20
Fake Android Apps Commit Carrier Billing Fraud for Premium Svcs.
Source: darkreading Published on 2026-05-20
Processes and Culture Top Reasons Behind Data Breaches
Source: darkreading Published on 2026-05-20
Microsoft Open-Sources RAMPART and Clarity to Secure AI Agents During Development
Source: The Hacker News Published on 2026-05-20
Madison Square Garden Bans Lawyer Representing New York Cop Injured at a Boxing Match
Source: WIREDSEC Published on 2026-05-20
Patch Now: Critical Flaw in OT Robot OS Gives Attackers Control
Source: darkreading Published on 2026-05-20
Grafana breach caused by missed token rotation after TanStack attack
Source: bleepingcomputer Published on 2026-05-20
Fake malware-signing service Fox Tempest dismantled by Microsoft
Source: malwarebytes Published on 2026-05-20
Microsoft Takes Down Malware-Signing Service Behind Ransomware Attacks
Source: The Hacker News Published on 2026-05-20
Identity Alone Isn't Enough: Why Device Security Has to Share the Load
Source: bleepingcomputer Published on 2026-05-20
Infosecurity Europe
Source: darkreading Published on 2026-05-20
Drupal critical update to fix bug with high exploitation risk
Source: bleepingcomputer Published on 2026-05-20
Webworm Deploys EchoCreep and GraphWorm Backdoors Using Discord and MS Graph API
Source: The Hacker News Published on 2026-05-20
Agent AI is Coming. Are You Ready?
Source: The Hacker News Published on 2026-05-20
Firefox 151 packs big privacy upgrades into a small update
Source: malwarebytes Published on 2026-05-20
Exploit released for new PinTheft Arch Linux root escalation flaw
Source: bleepingcomputer Published on 2026-05-20
Typosquatting Is No Longer a User Problem. It's a Supply Chain Problem
Source: The Hacker News Published on 2026-05-20
Data Brokers’ and AI Firms’ Opt-Out Forms Are Built to Fail, Report Finds
Source: WIREDSEC Published on 2026-05-20
Microsoft Releases Mitigation for YellowKey BitLocker Bypass CVE-2026-45585 Exploit
Source: The Hacker News Published on 2026-05-20
GitHub confirms breach of 3,800 repos via malicious VSCode extension
Source: bleepingcomputer Published on 2026-05-20
Microsoft shares mitigation for YellowKey Windows zero-day
Source: bleepingcomputer Published on 2026-05-20
Interpol's 'Operation Ramz' Pioneers Cross-Region Collabs in Middle East
Source: darkreading Published on 2026-05-20
Grafana GitHub Breach Exposes Source Code via TanStack npm Attack
Source: The Hacker News Published on 2026-05-20
GitHub investigates internal repositories breach claimed by TeamPCP
Source: bleepingcomputer Published on 2026-05-20
GitHub Investigating TeamPCP Claimed Breach of ~4,000 Internal Repositories
Source: The Hacker News Published on 2026-05-20
What It'll Take to Make AI BOMs Usable in a Modern Security Program
Source: darkreading Published on 2026-05-20
Max-severity flaw in ChromaDB for AI apps allows server hijacking
Source: bleepingcomputer Published on 2026-05-19
What Will Make AI BOMs Real?
Source: darkreading Published on 2026-05-19
Verizon DBIR: Enterprises Face a Dangerous Vulnerability Glut
Source: darkreading Published on 2026-05-19
Cybercrime service disrupted for abusing Microsoft platform to sign malware
Source: bleepingcomputer Published on 2026-05-19
Windows Zero-Day Barrage Continues After Patch Tuesday
Source: darkreading Published on 2026-05-19
Discord rolls out end-to-end encryption on voice, video calls
Source: bleepingcomputer Published on 2026-05-19
[Virtual Event] Anatomy of a Data Breach: What to Do if it Happens to You
Source: darkreading Published on 2026-05-19
CISA Exposes Secrets, Credentials in 'Private' Repo
Source: darkreading Published on 2026-05-19
FBI: Americans lost over $388 million to scams using crypto ATMs in 2025
Source: bleepingcomputer Published on 2026-05-19
Microsoft Self-Service Password Reset abused in Azure data theft attacks
Source: bleepingcomputer Published on 2026-05-19

INFLUENCERS

On AI Security
Source: Bruce Schneier Published on 2026-05-20
Laurie Anderson Is Quoting Me
Source: Bruce Schneier Published on 2026-05-19
Six Signals for Threat Attribution
Source: Zeltser Published on 2026-05-19
CISA Admin Leaked AWS GovCloud Keys on Github
Source: Brian Krebs Published on 2026-05-18
Zero-Day Exploit Against Windows BitLocker
Source: Bruce Schneier Published on 2026-05-18
Weekly Update 504
Source: TroyHunt Published on 2026-05-18
Friday Squid Blogging: Bigfin Squid
Source: Bruce Schneier Published on 2026-05-16
Bypassing On-Camera Age-Verification Checks
Source: Bruce Schneier Published on 2026-05-15
Upcoming Speaking Engagements
Source: Bruce Schneier Published on 2026-05-14
How Dangerous Is Anthropic’s Mythos AI?
Source: Bruce Schneier Published on 2026-05-14
Welcoming the Bahamian Government to Have I Been Pwned
Source: TroyHunt Published on 2026-05-14
Plant Decoy Personas to Detect Impersonation Attacks
Source: Zeltser Published on 2026-05-14

CYBERLAW

RODO aktualności – 19.05.2026 r.
Source: dane osobowe Published on 2026-05-19

CERT EU Latest News

CERT EU Latest News

No feed items found.

ADVISORIES / BULLETINS

ADVISORIES / BULLETINS

New Ivanti Security Controls Content Available – 05/20/2026
Source: ivanti patch Published on 2026-05-20
New Ivanti Security Controls Content Available – 05/19/2026
Source: ivanti patch Published on 2026-05-19
New Ivanti Security Controls Content Available – 05/18/2026
Source: ivanti patch Published on 2026-05-18
New Ivanti Security Controls Content Available – 05/15/2026
Source: ivanti patch Published on 2026-05-15
New Ivanti Security Controls Content Available – 05/14/2026
Source: ivanti patch Published on 2026-05-15
New Ivanti Security Controls Content Available – 05/13/2026
Source: ivanti patch Published on 2026-05-14

ALERTS

No feed items found.

TOOLS

MISP 2.5.38
Source: MISP Published on 2026-05-20

VULNERABILITIES

VULNERABILITIES

No feed items found.

EXPLOITS

[local] Remote Sunrise Helper for Windows 2026.14 - Unauthenticated File/Directory Listing
Source: exploit-db Published on 2026-05-15
[local] Windows Snipping Tool - NTLMv2 Hash Hijack
Source: exploit-db Published on 2026-05-15
[local] Remote Sunrise Helper for Windows 2026.14 - Remote Code Execution
Source: exploit-db Published on 2026-05-15
[webapps] ePati Antikor NGFW 2.0.1301 - Authentication Bypass
Source: exploit-db Published on 2026-05-14
[webapps] Apache HertzBeat 1.8.0 - Remote Code Execution
Source: exploit-db Published on 2026-05-14
[webapps] PJPROJECT 2.16 - Heap Bufferoverflow
Source: exploit-db Published on 2026-05-14
[webapps] WordPress Plugin Supsystic Contact Form 1.7.36 - SSTI
Source: exploit-db Published on 2026-05-14

MALWARE

How a Webmail Log File Became a Root-Level Backdoor
Source: malwarenews Published on 2026-05-20
How AI Is Transforming Detection Engineering
Source: malwarenews Published on 2026-05-20
The Flipper One: Hacking Gadget is Becoming a Pocket Linux PC
Source: malwarenews Published on 2026-05-20
Draft executive order would set deadlines for digital signature and key quantum encryption
Source: malwarenews Published on 2026-05-20
Splunk security advisory (AV26-493)
Source: malwarenews Published on 2026-05-20
Cisco security advisory (AV26-491)
Source: malwarenews Published on 2026-05-20
Drupal security advisory (AV26-492)
Source: malwarenews Published on 2026-05-20
Pentest mobile : une nécessité pour la sécurité de votre entreprise
Source: malwarenews Published on 2026-05-20
YellowKey: The Unpatched BitLocker Bypass Hidden in Windows Recovery
Source: malwarenews Published on 2026-05-20
Introducing the Runtime Investigation Skill for headless cloud security
Source: malwarenews Published on 2026-05-20
ISC BIND security advisory (AV26-490)
Source: malwarenews Published on 2026-05-20
Microsoft security advisory (AV26-489)
Source: malwarenews Published on 2026-05-20
How to Protect Identities and Sessions from Infostealers
Source: malwarenews Published on 2026-05-20
House Homeland Dems request CISA briefing amid report of leaked agency credentials
Source: malwarenews Published on 2026-05-20
Introducing RAMPART and Clarity: Open source tools to bring safety into Agent development workflow
Source: malwarenews Published on 2026-05-20
cPanel security advisory (AV26-488)
Source: malwarenews Published on 2026-05-20
HPE security advisory (AV26-487)
Source: malwarenews Published on 2026-05-20
Google Chrome security advisory (AV26-486)
Source: malwarenews Published on 2026-05-20
F5 security advisory (AV26-485)
Source: malwarenews Published on 2026-05-20
FreePBX security advisory (AV26-484)
Source: malwarenews Published on 2026-05-20

CYBERCRIME

No feed items found.

ANONYMOUS

No feed items found.

INFOOPS

The Digital Iron Curtain 2.0: how the MAX messenger is reshaping Russia’s communication space
Source: EUvsDISINFO Published on 2026-05-20
Attacks on Lithuanian Partisan Leaders Are Expanding – Kremlin Media Accuses Jonas Žemaitis and Juozas Lukša of Nazism
Source: DebunkEU Published on 2026-05-20
Victory Day propaganda, masking fear with intimidation, and abduction denial
Source: EUvsDISINFO Published on 2026-05-15

APT

No feed items found.

CYBERTERRORISM

No feed items found.

CYBERWARFARE

No feed items found.

ARTICLES

Critical flaw in software powering a third of the internet is already being exploited – free checker now available
Source: itsecurityguru Published on 2026-05-20
Certes Research Warns Legacy Systems Are Biggest Barrier to Quantum Security Readiness
Source: itsecurityguru Published on 2026-05-20
Cyber Agony Aunts: New book Offers Practical Look at Resilience
Source: itsecurityguru Published on 2026-05-19
The Invisible Workforce: Why Your Household Apps Now Have Their Own Digital IDs
Source: itsecurityguru Published on 2026-05-19
Why Commercial Cyber Threat Intelligence is Failing Defence Operations
Source: itsecurityguru Published on 2026-05-19
Temporary workforce surge: AI and economic shocks rewrite UK recruitment rules
Source: raconteur Published on 2026-05-19
Securing the AI Supply Chain in the European Union
Source: itsecurityguru Published on 2026-05-19
Check Point Wants AI Agents to Do What Security Teams Can’t: Manage Networks at Machine Speed
Source: itsecurityguru Published on 2026-05-19
Legal’s AI inflection point: redefining value, talent and delivery
Source: raconteur Published on 2026-05-18
Cyber attackers bypass traditional defences as ‘user-driven’ attacks surge, Bridewell warns
Source: itsecurityguru Published on 2026-05-18
One in 33 Employees Is Driving Nearly a Fifth of All Workplace AI Activity and Most Companies Are Only Just Waking Up to It
Source: itsecurityguru Published on 2026-05-18
Anthropic denies EU access to Mythos, so OpenAi rides to the rescue
Source: raconteur Published on 2026-05-18
Space hacktivism and the Russo–Ukrainian war: an open source space security analysis
Source: oxford journal of cybersecurity Published on 2026-05-15
Algorithms as strategy: inside the world’s elite marketing machines
Source: raconteur Published on 2026-05-14
Why enterprise AI fails without the right content foundations
Source: raconteur Published on 2026-05-14
Q&A: Why Vulnerability Scans Are Giving Businesses a False Sense of Security
Source: itsecurityguru Published on 2026-05-14