…it’s not IF, it’s WHEN. – Wiadomości i narzędzia z dziedziny bezpieczeństwa cyfrowego.

NEWS PL

#CyberMagazyn: Terrorgram jako cyfrowa infrastruktura skrajnie prawicowego terroru
Source: cyberdefence24 Published on 2026-05-09
Weekendowa Lektura: odcinek 675 [2026-05-08]. Bierzcie i czytajcie
Source: zaufanatrzeciastrona Published on 2026-05-08
Technologie łączności tworzone w Polsce. „Promujmy je w NATO i Europie”
Source: cyberdefence24 Published on 2026-05-08
Uniwersytet Baumana jako zaplecze GRU. Oto jak Rosja szykuje kadry do wojny hybrydowej
Source: cyberdefence24 Published on 2026-05-08
Umowa SAFE podpisana. Pieniądze pójdą na m.in. wojskową AI
Source: cyberdefence24 Published on 2026-05-08
Cyberprzestępcy przebiegle podszywają się pod mObywatela
Source: cyberdefence24 Published on 2026-05-08
Przestań zgadywać, jak działa sieć
Source: sekurak Published on 2026-05-08
Chrome właśnie załatał ponad 120 podatności (!)
Source: sekurak Published on 2026-05-08
Wchodzisz na stronę juwenaliów… a tu taka niespodzianka [możliwa infekcja malware]
Source: sekurak Published on 2026-05-08
Lokalizacja ukraińskiego wojska ujawniona na TikToku
Source: cyberdefence24 Published on 2026-05-08
Dirty Frag – kolejna metoda na root’a pod Linuxem
Source: sekurak Published on 2026-05-08
Atak na polską spółkę medyczną. Białoruski ślad
Source: cyberdefence24 Published on 2026-05-08
Ale sprytna próba podszycia się pod mObywatela. Wygląda jakbyś rzeczywiście dostał komunikat z prawdziwej, rządowej appki. Uważajcie!
Source: sekurak Published on 2026-05-08
Zmiany korzystne dla rozwoju AI. UE upraszcza przepisy
Source: cyberdefence24 Published on 2026-05-08
Małe firmy i ich cyberbezpieczeństwo. Największe ryzyka często są najprostsze do naprawy
Source: kpt Hack Published on 2026-05-08
Pierwszy głośny cyberatak wspierany przez AI nie zdołał sforsować systemów OT
Source: SecurityBezTabu.pl Published on 2026-05-08
CVE-2025-34282 w ThingsBoard: podatność SSRF przez złośliwe pliki SVG w Image Upload Gallery
Source: SecurityBezTabu.pl Published on 2026-05-08
Nowa metoda obejścia szyfrowania Google Chrome zagraża danym sesyjnym użytkowników
Source: SecurityBezTabu.pl Published on 2026-05-08
Krytyczna luka w NocoBase pozwala na ucieczkę z sandboxa VM i zdalne wykonanie kodu
Source: SecurityBezTabu.pl Published on 2026-05-08
Bludit CMS przed wersją 3.18.4 podatny na RCE przez nieograniczone przesyłanie plików
Source: SecurityBezTabu.pl Published on 2026-05-08
LuaJIT 2.1.x i FFI: jak niezaufane skrypty mogą prowadzić do zdalnego wykonania kodu
Source: SecurityBezTabu.pl Published on 2026-05-08
Wzrost nadużyć platformy Vercel w kampaniach phishingowych
Source: SecurityBezTabu.pl Published on 2026-05-08
Ghost CMS: krytyczna luka SQL Injection w Content API zagraża poufności danych
Source: SecurityBezTabu.pl Published on 2026-05-08
CVE-2026-32746: krytyczna luka w GNU InetUtils telnetd umożliwia zdalne przejęcie przed logowaniem
Source: SecurityBezTabu.pl Published on 2026-05-08
LLM-y w atakach na infrastrukturę krytyczną: incydent wodociągów w Meksyku ujawnia nowy etap zagrożeń OT
Source: SecurityBezTabu.pl Published on 2026-05-08
Krytyczna luka w Cline Kanban pozwalała na przejęcie lokalnego agenta AI przez złośliwą stronę
Source: SecurityBezTabu.pl Published on 2026-05-08
TrustFall i Claude Code: jak zaufanie do repozytorium może doprowadzić do wykonania złośliwego kodu
Source: SecurityBezTabu.pl Published on 2026-05-08
Atak supply chain na DAEMON Tools Lite: producent potwierdza kompromitację instalatorów
Source: SecurityBezTabu.pl Published on 2026-05-08
Ekstradycja po 17 latach: Gavril Sandu stanie przed sądem w USA za udział w schemacie vishingowym
Source: SecurityBezTabu.pl Published on 2026-05-08
Atak na kolej dużych prędkości na Tajwanie ujawnił krytyczne luki w zabezpieczeniach TETRA
Source: SecurityBezTabu.pl Published on 2026-05-08
Większość ataków ransomware wciąż pozostaje poza opinią publiczną
Source: SecurityBezTabu.pl Published on 2026-05-08
Chrome 148 z 127 poprawkami bezpieczeństwa. Google usuwa krytyczne luki w Blink, Mobile i Chromoting
Source: SecurityBezTabu.pl Published on 2026-05-08
Claude Code pod presją: ukryte przejęcie MCP umożliwia kradzież tokenów OAuth
Source: SecurityBezTabu.pl Published on 2026-05-08
Cisco łata luki wysokiego ryzyka w produktach enterprise. Zagrożone systemy Unity Connection, SG350 i platformy orkiestracyjne
Source: SecurityBezTabu.pl Published on 2026-05-08
Phishing na ManageWP przez reklamy Google: kampania celuje w administratorów WordPressa
Source: SecurityBezTabu.pl Published on 2026-05-08
Cisco łata krytyczną lukę DoS w CNC i NSO. Atak wymaga ręcznego restartu urządzeń
Source: SecurityBezTabu.pl Published on 2026-05-08
Złośliwe pakiety PyPI rozprzestrzeniały malware ZiChatBot przez API Zulip na Windows i Linux
Source: SecurityBezTabu.pl Published on 2026-05-08
Krytyczne luki w vm2 dla Node.js umożliwiają ucieczkę z sandboxa i zdalne wykonanie kodu
Source: SecurityBezTabu.pl Published on 2026-05-08
Fałszywa strona Claude AI rozprzestrzenia malware Beagle na Windows
Source: SecurityBezTabu.pl Published on 2026-05-08
Krytyczna luka CVE-2026-0300 w PAN-OS aktywnie wykorzystywana do przejmowania zapór z uprawnieniami root
Source: SecurityBezTabu.pl Published on 2026-05-08
Członek gangu kryptowalutowego skazany na 6,5 roku więzienia za udział w kradzieży ponad 230 mln USD
Source: SecurityBezTabu.pl Published on 2026-05-08
Amerykanie skazani za „farmy laptopów” dla północnokoreańskich pracowników IT
Source: SecurityBezTabu.pl Published on 2026-05-08
Przeglądarka jako ślepy punkt DLP: jak nowoczesne przepływy pracy omijają klasyczne mechanizmy ochrony danych
Source: SecurityBezTabu.pl Published on 2026-05-08
Australia ostrzega przed kampanią ClickFix rozprzestrzeniającą Vidar Stealer przez przejęte strony WordPress
Source: SecurityBezTabu.pl Published on 2026-05-08
Uważaj na aplikacje w Telegramie. FEMITBOT wykorzystuje Telegram Mini Apps do wyłudzeń i serwowania malware
Source: sekurak Published on 2026-05-07
⚠️ Uwaga na złośliwe SMS-y od mObywatela!
Source: niebezpiecznik Published on 2026-05-07
Laboratoria Medyczne Optimed zhackowane, dane pacjentów mogły zostać wykradzione
Source: niebezpiecznik Published on 2026-05-07
Gawkowski wysłał jasny sygnał Big Techom. „Tego nie odpuścimy”
Source: cyberdefence24 Published on 2026-05-07
Oficjalnie: nowy dowódca polskich cyberwojsk
Source: cyberdefence24 Published on 2026-05-07
Admin nowej generacji. Case studies, narzędzia AI, praktyka. Nowe szkolenie!
Source: sekurak Published on 2026-05-07

NEWS

cPanel, WHM Release Fixes for Three New Vulnerabilities — Patch Now
Source: The Hacker News Published on 2026-05-09
ShinyHunters Claims Second Attack Against Instructure
Source: darkreading Published on 2026-05-08
TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms
Source: The Hacker News Published on 2026-05-08
NVIDIA confirms GeForce NOW data breach affecting Armenian users
Source: bleepingcomputer Published on 2026-05-08
Fake Call History Apps Stole Payments From Users After 7.3 Million Play Store Downloads
Source: The Hacker News Published on 2026-05-08
Why More Analysts Won’t Solve Your SOC’s Alert Problem
Source: bleepingcomputer Published on 2026-05-08
Trellix source code breach claimed by RansomHouse hackers
Source: bleepingcomputer Published on 2026-05-08
Microsoft says Edge’s plaintext password behavior is “by design”
Source: malwarebytes Published on 2026-05-08
CISA gives feds four days to patch Ivanti flaw exploited as zero-day
Source: bleepingcomputer Published on 2026-05-08
Shifting Budget Dynamics for Identity Security and AI Agents
Source: darkreading Published on 2026-05-08
ShinyHunters escalates Canvas attacks with school login defacements
Source: malwarebytes Published on 2026-05-08
Quasar Linux RAT Steals Developer Credentials for Software Supply Chain Compromise
Source: The Hacker News Published on 2026-05-08
Zara data breach exposed personal information of 197,000 people
Source: bleepingcomputer Published on 2026-05-08
One Missed Threat Per Week: What 25M Alerts Reveal About Low-Severity Risk
Source: The Hacker News Published on 2026-05-08
Former govt contractor convicted for wiping dozens of federal databases
Source: bleepingcomputer Published on 2026-05-08
New Linux PamDOORa Backdoor Uses PAM Modules to Steal SSH Credentials
Source: The Hacker News Published on 2026-05-08
Meet Rassvet, Russia’s Answer to Starlink
Source: WIREDSEC Published on 2026-05-08
New Linux 'Dirty Frag' zero-day gives root on all major distros
Source: bleepingcomputer Published on 2026-05-08
Linux Kernel Dirty Frag LPE Exploit Enables Root Access Across Major Distributions
Source: The Hacker News Published on 2026-05-08
The Canvas Hack Is a New Kind of Ransomware Debacle
Source: WIREDSEC Published on 2026-05-08
Canvas login portals hacked in mass ShinyHunters extortion campaign
Source: bleepingcomputer Published on 2026-05-07
New TCLBanker malware self-spreads over WhatsApp and Outlook
Source: bleepingcomputer Published on 2026-05-07
After Replacing TeamPCP Malware, 'PCPJack' Steals Cloud Secrets
Source: darkreading Published on 2026-05-07
How to Disable Google's Gemini in Chrome
Source: WIREDSEC Published on 2026-05-07
New PCPJack worm steals credentials, cleans TeamPCP infections
Source: bleepingcomputer Published on 2026-05-07
Australia warns of ClickFix attacks pushing Vidar Stealer malware
Source: bleepingcomputer Published on 2026-05-07
Unplug your way to better code
Source: talos Published on 2026-05-07
Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access
Source: The Hacker News Published on 2026-05-07
PCPJack Credential Stealer Exploits 5 CVEs to Spread Worm-Like Across Cloud Systems
Source: The Hacker News Published on 2026-05-07
Has CISA Finally Found Its New Leader in Tom Parker?
Source: darkreading Published on 2026-05-07
Ivanti warns of new EPMM flaw exploited in zero-day attacks
Source: bleepingcomputer Published on 2026-05-07
Massive AI investment scam network spans 15,500 domains
Source: malwarebytes Published on 2026-05-07
The Browser Is Breaking Your DLP: How Data Slips Past Modern Controls
Source: bleepingcomputer Published on 2026-05-07
One Click, Total Shutdown: The "Patient Zero" Webinar on Killing Stealth Breaches
Source: The Hacker News Published on 2026-05-07
Americans sentenced for running 'laptop farms' for North Korea
Source: bleepingcomputer Published on 2026-05-07
PAN-OS RCE Exploit Under Active Use Enabling Root Access and Espionage
Source: The Hacker News Published on 2026-05-07
'TrustFall' Convention Exposes Claude Code Execution Risk
Source: darkreading Published on 2026-05-07
World's First AI-Driven Cyberattack Couldn't Breach OT Systems
Source: darkreading Published on 2026-05-07
Crypto gang member gets 6.5 years for role in $230 million heist
Source: bleepingcomputer Published on 2026-05-07
Webinar: Why modern attacks require both security and recovery
Source: bleepingcomputer Published on 2026-05-07

INFLUENCERS

Friday Squid Blogging: Giant Squid Live in the Waters of Western Australia
Source: Bruce Schneier Published on 2026-05-08
Insider Betting on Polymarket
Source: Bruce Schneier Published on 2026-05-08
Canvas Breach Disrupts Schools & Colleges Nationwide
Source: Brian Krebs Published on 2026-05-08
Smart Glasses for the Authorities
Source: Bruce Schneier Published on 2026-05-07
Rowhammer Attack Against NVIDIA Chips
Source: Bruce Schneier Published on 2026-05-06
Weekly Update 502
Source: TroyHunt Published on 2026-05-06
DarkSword Malware
Source: Bruce Schneier Published on 2026-05-05
Hacking Polymarket
Source: Bruce Schneier Published on 2026-05-04
Build a Decoy MCP Server to Catch AI Agent Attackers
Source: Zeltser Published on 2026-05-03

CYBERLAW

Jak zarządzać RODO w grupie kapitałowej
Source: dane osobowe Published on 2026-05-05
RODO aktualności – 05.05.2026 r.
Source: dane osobowe Published on 2026-05-05

CERT EU Latest News

CERT EU Latest News

No feed items found.

ADVISORIES / BULLETINS

ADVISORIES / BULLETINS

New Ivanti Security Controls Content Available – 05/08/2026
Source: ivanti patch Published on 2026-05-08
New Ivanti Security Controls Content Available – 05/07/2026
Source: ivanti patch Published on 2026-05-07
New Ivanti Security Controls Content Available – 05/06/2026
Source: ivanti patch Published on 2026-05-06
New Ivanti Security Controls Content Available – 05/05/2026
Source: ivanti patch Published on 2026-05-05
New Ivanti Security Controls Content Available – 05/04/2026
Source: ivanti patch Published on 2026-05-04
New Ivanti Security Controls Content Available – 05/02/2026
Source: ivanti patch Published on 2026-05-02

ALERTS

No feed items found.

TOOLS

No feed items found.

VULNERABILITIES

VULNERABILITIES

No feed items found.

EXPLOITS

[webapps] ThingsBoard IoT Platform 4.2.0 - Server-Side Request Forgery (SSRF)
Source: exploit-db Published on 2026-05-07
[webapps] Bludit CMS 3.18.4 - RCE
Source: exploit-db Published on 2026-05-07
[webapps] LuaJIT 2.1.1774638290 - Arbitrary Code Execution
Source: exploit-db Published on 2026-05-07
[webapps] Ghost CMS 6.19.0 - SQLi
Source: exploit-db Published on 2026-05-07
[remote] telnetd 2.7 - Buffer Overflow
Source: exploit-db Published on 2026-05-07
[local] NocoBase 2.0.27 - VM Sandbox Escape
Source: exploit-db Published on 2026-05-07
[local] Windows 11 24H2 - Local Privilege Escalation
Source: exploit-db Published on 2026-05-04
[webapps] Traccar GPS Tracking System 6.11.1 - Cross-Site WebSocket Hijacking (CSWSH)
Source: exploit-db Published on 2026-05-04
[hardware] Linksys E1200 2.0.04 - Authenticated Stack Buffer Overflow (RCE)
Source: exploit-db Published on 2026-05-04
[local] Linux nf_tables 6.19.3 - Local Privilege Escalation
Source: exploit-db Published on 2026-05-04
[local] Linux Kernel proc_readdir_de() 6.18-rc5 - Local Privilege Escalation
Source: exploit-db Published on 2026-05-04
[webapps] MindsDB 25.9.1.1 - Path Traversal
Source: exploit-db Published on 2026-05-04

MALWARE

Blackwater Targets Minidoka Memorial Hospital in Ransomware Attack
Source: malwarenews Published on 2026-05-09
2026-05-08: macOS Shub Stealer infection
Source: malwareanalysys Published on 2026-05-08
Technical Advisory: ShinyHunters Breach of Instructure Canvas LMS
Source: malwarenews Published on 2026-05-08
Unmanaged PowerShell Execution: Hunting Beyond powershell.exe
Source: malwarenews Published on 2026-05-08
Using IDA to Find Bugs in IDA (with Claude)
Source: malwareanalysys Published on 2026-05-08
cPanel security advisory (AV26-437)
Source: malwarenews Published on 2026-05-08
AL26-011 - Vulnerabilities affecting Linux - CVE-2026-43284 and CVE-2026-43500
Source: malwarenews Published on 2026-05-08
Active attack: Dirty Frag Linux vulnerability expands post-compromise risk
Source: malwarenews Published on 2026-05-08
Hunting ClickFix Win + X Variants
Source: malwarenews Published on 2026-05-08
A Complete History of Cybersecurity: From Early Viruses to AI-Powered Threats
Source: malwareanalysys Published on 2026-05-08
Digital Citizenship Glossary: Key Terms Every Internet User Should Know
Source: malwareanalysys Published on 2026-05-08
The Different Types of Payment Fraud and How to Prevent Them
Source: malwareanalysys Published on 2026-05-08
Microsoft Edge security advisory (AV26-436)
Source: malwarenews Published on 2026-05-08
Sintesi riepilogativa delle campagne malevole nella settimana del 2 – 8 maggio
Source: malwarenews Published on 2026-05-08
Why Preemption Is the Most Defensible Cybersecurity ROI Story You Have
Source: malwarenews Published on 2026-05-08
SOCRadar Recognized in the 2026 Gartner® Magic Quadrant™ for Cyberthreat Intelligence Technologies
Source: malwarenews Published on 2026-05-08
The Mythos Effect and the End of “Business as Usual” for Security Operations and Risk Management
Source: malwarenews Published on 2026-05-08
Microsoft says Edge’s plaintext password behavior is “by design”
Source: malwarenews Published on 2026-05-08
One size does not fit all — sometimes, victims probably should pay ransom
Source: malwarenews Published on 2026-05-08
Cyber Conflict Briefing Q1 2026
Source: malwareanalysys Published on 2026-05-08

CYBERCRIME

No feed items found.

ANONYMOUS

No feed items found.

INFOOPS

The parade that shrank: Russia’s Victory Day under pressure
Source: EUvsDISINFO Published on 2026-05-09
Fake European crises and real Russian failures
Source: EUvsDISINFO Published on 2026-05-08

APT

No feed items found.

CYBERTERRORISM

No feed items found.

CYBERWARFARE

Worried Britons ‘prepping’ for major disruption with stash of tins and cash, survey shows
Source: theguardian cyberwar Published on 2026-05-09
Revealed: Russia’s top secret spy school teaching hacking and election meddling
Source: theguardian cyberwar Published on 2026-05-07

ARTICLES

Pentest-Tools.com Releases Free Scanner for CVE-2026-41940 as cPanel Authentication Bypass Enters Its Third Week of Active Exploitation
Source: itsecurityguru Published on 2026-05-08
The Creativity Gap: Why Bold Thinking is Now a Strategic Necessity
Source: raconteur Published on 2026-05-08
From cybersecurity to cyber resilience: a systemic and scalable approach for improving resilience and adaptive capacity
Source: oxford journal of cybersecurity Published on 2026-05-08
Cyber Blind Spots: The hidden technology that poses the greatest security risk
Source: itsecurityguru Published on 2026-05-07
World Password Day 2026: The Credential Crisis Hasn’t Gone Away, It’s Just Got More Dangerous
Source: itsecurityguru Published on 2026-05-07
UK Finance Sector Puts Cyber Defences to the Test in National Hackathon
Source: itsecurityguru Published on 2026-05-06
Recruitment under siege: the rise of AI-generated job fraud
Source: raconteur Published on 2026-05-06
Majority of IT Leaders Struggle to Manage Growing Identity Footprint Amid AI Expansion
Source: itsecurityguru Published on 2026-05-06
When the Breach Gets In Through the CEO’s Inbox, Not the Firewall
Source: itsecurityguru Published on 2026-05-06
Bot Defense Is No Longer Optional for High Tempo Consumer Platforms
Source: itsecurityguru Published on 2026-05-06
OpenAI rolls out ads on ChatGPT, but marketers remain unconvinced
Source: raconteur Published on 2026-05-05
Huntress Expands Channel Partnerships to Boost Cybersecurity Reach Across Mid-Market and Public Sector
Source: itsecurityguru Published on 2026-05-05
Proton Mail rolls out post-quantum encryption for all users as industry braces for ‘harvest now, decrypt later’ threat
Source: itsecurityguru Published on 2026-05-05
The Billionaire Blueprint: why leadership is now a system, not a vision
Source: raconteur Published on 2026-05-04