wiadomosci – …it’s not IF, it’s WHEN.

NEWS PL

Naruszenie danych w DocketWise dotknęło 143 tysięcy osób
Source: SecurityBezTabu.pl Published on 2026-05-26
Oszuści celują w fanów Formuły 1: fałszywe streamy, podróbki i malware wokół wyścigów
Source: SecurityBezTabu.pl Published on 2026-05-26
Sklep powiązany z dyrektorem FBI wyłączony po wykryciu kampanii malware ClickFix
Source: SecurityBezTabu.pl Published on 2026-05-26
Naruszenie danych w Radiology Associates of Richmond dotknęło 266 tys. osób
Source: SecurityBezTabu.pl Published on 2026-05-26
Zero-click przejęcie kont WhatsApp na iPhone’ach z iOS 16. Atak działa bez ostrzeżenia i bez widocznych sesji
Source: SecurityBezTabu.pl Published on 2026-05-26
340 mln profili OnlyFans wystawionych na sprzedaż. To nie musi być nowe włamanie, ale ryzyko pozostaje poważne
Source: SecurityBezTabu.pl Published on 2026-05-26
Naruszenie danych w The Oncology Institute pokazuje skalę ryzyka związanego z dostawcami zewnętrznymi
Source: SecurityBezTabu.pl Published on 2026-05-26
Holandia przejęła 800 serwerów. Uderzenie w zaplecze cyberataków i obchodzenie sankcji
Source: SecurityBezTabu.pl Published on 2026-05-26
Złośliwe pakiety Laravel-Lang: groźny atak na łańcuch dostaw w ekosystemie PHP
Source: SecurityBezTabu.pl Published on 2026-05-26
TrapDoor: atak supply chain na npm, PyPI i Crates.io zagraża deweloperom i środowiskom CI/CD
Source: SecurityBezTabu.pl Published on 2026-05-26
Lazarus rozwija pamięciozny RAT RemotePE w atakach na sektor finansowy i kryptowalutowy
Source: SecurityBezTabu.pl Published on 2026-05-26
Anthropic i Mythos: AI wykryło ponad 23 tys. potencjalnych luk w projektach open source
Source: SecurityBezTabu.pl Published on 2026-05-26
Ghost CMS i CVE-2026-26980: krytyczna luka wykorzystana do przejęcia ponad 700 witryn w kampanii ClickFix
Source: SecurityBezTabu.pl Published on 2026-05-26
Anthropic może szykować publiczne wdrożenie Claude Mythos w Claude Code
Source: SecurityBezTabu.pl Published on 2026-05-26
Megalodon: zmasowany atak supply chain skaził tysiące repozytoriów GitHub
Source: SecurityBezTabu.pl Published on 2026-05-26
FBI ostrzega przed Kali365: nowy phishing-as-a-service atakuje konta Microsoft 365
Source: SecurityBezTabu.pl Published on 2026-05-26
Nie Sprzedaję Zgodności W Paczce. Po Co Są Szablony Dokumentacji NIS2 I ISO 27001?
Source: SecurityBezTabu.pl Published on 2026-05-25
Poznań wzmacnia pozycję w technologiach kwantowych. Ruszył komputer IQM
Source: cyberdefence24 Published on 2026-05-25
Dane 740 osób w urzędowym biuletynie. Jest kara od UODO
Source: cyberdefence24 Published on 2026-05-25
Leon XIV: trzeba rozbroić sztuczną inteligencję
Source: cyberdefence24 Published on 2026-05-25
Podatność w oprogramowaniu Szafir SDK
Source: cert pl Published on 2026-05-25
Ominięcie uwierzytelniania w ZUS-ie i systemach e-Zdrowia, czyli o krok od cyberchaosu – [CVE-2026-9058] [Badanie e-podpisów, cz. 3]
Source: zaufanatrzeciastrona Published on 2026-05-25
Podsumowanie: Krytyczna podatność umożliwiająca całkowite ominięcie logowania w ZUS-ie, e-Sądzie i systemach e-Zdrowia
Source: zaufanatrzeciastrona Published on 2026-05-25
Hakowanie e-Sądu YubiKeyem – [Badanie e-podpisów, cz. 2]
Source: zaufanatrzeciastrona Published on 2026-05-25
Zdalne wykonanie kodu w SzafirHost – [CVE-2026-26928] [Badanie e-podpisów, cz. 1]
Source: zaufanatrzeciastrona Published on 2026-05-25
Polskie firmy bliżej Afryki Zachodniej
Source: cyberdefence24 Published on 2026-05-25
Podatność w oprogramowaniu kamer Kenik
Source: cert pl Published on 2026-05-25
Podatność w oprogramowaniu Lifetime
Source: cert pl Published on 2026-05-25
X tłumaczy się z niebieskiego znaczka
Source: cyberdefence24 Published on 2026-05-25
Cyberatak na centrum zdrowia psychicznego. Komunikat po 3 latach
Source: cyberdefence24 Published on 2026-05-25
CRA – nowe obowiązki dla producentów oprogramowania i korzyści dla użytkowników
Source: cert pl Published on 2026-05-25
Fałszywe alarmy w Polsce jako test odporności państwa frontowego
Source: cyberdefence24 Published on 2026-05-25
F5 BIG-IP pod ostrzałem cyberprzestępców. Hakerzy zdobywają dostęp SSH i przejmują sieci firmowe
Source: kpt Hack Published on 2026-05-25
Bezpieczne wdrażanie AI. Jak dynamicznie analizować ryzyko?
Source: cyberdefence24 Published on 2026-05-25
Project Glasswing wykrył ponad 10 tys. luk. AI przyspiesza identyfikację podatności szybciej niż firmy są w stanie łatać systemy
Source: SecurityBezTabu.pl Published on 2026-05-25
Ghost CMS pod ostrzałem: krytyczne SQL Injection wykorzystywane w kampanii ClickFix
Source: SecurityBezTabu.pl Published on 2026-05-25
Atak na łańcuch dostaw Composer: złośliwe pakiety Laravel Lang rozsyłały malware kradnące poświadczenia
Source: SecurityBezTabu.pl Published on 2026-05-25
CISA dodaje krytyczną lukę w Drupal Core do katalogu KEV po potwierdzonej aktywnej eksploatacji
Source: SecurityBezTabu.pl Published on 2026-05-25
Co załamuje Tomka Turbę?
Source: sekurak Published on 2026-05-24
Włochy rozbiły CINEMAGOAL. Nowy model piractwa wykorzystywał przechwytywanie kodów autoryzacyjnych
Source: SecurityBezTabu.pl Published on 2026-05-24
Krytyczna luka SQL Injection w Drupal Core uderza w serwisy z PostgreSQL
Source: SecurityBezTabu.pl Published on 2026-05-24
Holandia przejęła 800 serwerów powiązanych z hostingiem wspierającym cyberataki
Source: SecurityBezTabu.pl Published on 2026-05-24
Underminr: nowa technika ukrywania złośliwego ruchu za zaufanymi domenami
Source: SecurityBezTabu.pl Published on 2026-05-24
Ghostwriter wraca do ataków na administrację. Fałszywe wiadomości podszywają się pod ukraińską platformę edukacyjną
Source: SecurityBezTabu.pl Published on 2026-05-24
Operation Saffron: rozbicie First VPN ujawnia kluczowe zaplecze gangów ransomware
Source: SecurityBezTabu.pl Published on 2026-05-24
Claude Mythos i Project Glasswing: AI wykryło tysiące krytycznych luk w popularnym oprogramowaniu
Source: SecurityBezTabu.pl Published on 2026-05-24
Krytyczna luka LiteSpeed dla cPanel pozwala uruchamiać skrypty jako root
Source: SecurityBezTabu.pl Published on 2026-05-24
Kompromitacja pakietów Laravel-Lang: złośliwy stealer uruchamiany automatycznie przez Composer
Source: SecurityBezTabu.pl Published on 2026-05-24
Atak supply chain w Packagist: złośliwe pakiety Composer pobierały malware Linuksa z GitHub Releases
Source: SecurityBezTabu.pl Published on 2026-05-24
npm wzmacnia bezpieczeństwo publikacji pakietów i instalacji w odpowiedzi na ataki supply chain
Source: SecurityBezTabu.pl Published on 2026-05-24

NEWS

Anthropic’s restricted Claude Mythos model may be coming to Claude Code
Source: bleepingcomputer Published on 2026-05-25
⚡ Weekly Recap: Linux Flaws, Defender 0-Days, Router Botnets, and Supply Chain Chaos
Source: The Hacker News Published on 2026-05-25
FBI warns of Kali365 phishing service targeting Microsoft 365 accounts
Source: bleepingcomputer Published on 2026-05-25
Ghost CMS CVE-2026-26980 Exploited to Hijack 700+ Sites for ClickFix Attacks
Source: The Hacker News Published on 2026-05-25
The Alert Firehose Finally Meets Its Match
Source: The Hacker News Published on 2026-05-25
The AI Era Is Creating a Bug Hunting Arms Race
Source: WIREDSEC Published on 2026-05-25
Lazarus Deploys RemotePE Memory-Only RAT Against Financial and Crypto Firms
Source: The Hacker News Published on 2026-05-25
A week in security (May 18 – May 24)
Source: malwarebytes Published on 2026-05-25
TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO
Source: The Hacker News Published on 2026-05-25
Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign
Source: bleepingcomputer Published on 2026-05-24
Laravel Lang packages hijacked to deploy credential-stealing malware
Source: bleepingcomputer Published on 2026-05-23
npm Adds 2FA-Gated Publishing and Package Install Controls Against Supply Chain Attacks
Source: The Hacker News Published on 2026-05-23
Packagist Supply Chain Attack Infects 8 Packages Using GitHub-Hosted Linux Malware
Source: The Hacker News Published on 2026-05-23
Italy disrupts CINEMAGOAL piracy app that stole streaming auth codes
Source: bleepingcomputer Published on 2026-05-23
Claude Mythos AI Finds 10,000 High-Severity Flaws in Widely Used Software
Source: The Hacker News Published on 2026-05-23
The FBI Wants ‘Near Real-Time’ Access to US License Plate Readers
Source: WIREDSEC Published on 2026-05-23
Laravel-Lang PHP Packages Compromised to Deliver Cross-Platform Credential Stealer
Source: The Hacker News Published on 2026-05-23
LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root
Source: The Hacker News Published on 2026-05-23
Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV
Source: The Hacker News Published on 2026-05-23
First VPN Dismantled in Global Takedown Over Use by 25 Ransomware Groups
Source: The Hacker News Published on 2026-05-22
Netherlands seizes 800 servers of hosting firm enabling cyberattacks
Source: bleepingcomputer Published on 2026-05-22
Ghostwriter Targets Ukraine Government Entities with Prometheus Phishing Malware
Source: The Hacker News Published on 2026-05-22
Akamai Joins Growing Chorus of Vendors Betting Big on Secure Enterprise Browsers
Source: darkreading Published on 2026-05-22
Former US execs plead guilty to aiding tech support scammers
Source: bleepingcomputer Published on 2026-05-22
Trend Micro warns of Apex One zero-day exploited in the wild
Source: bleepingcomputer Published on 2026-05-22
Verizon DBIR: Healthcare Fends Off Increased Social Engineering Attacks
Source: darkreading Published on 2026-05-22
Drupal: Critical SQL injection flaw now targeted in attacks
Source: bleepingcomputer Published on 2026-05-22
Why Chargebacks are Just One Piece of the Fraud Puzzle
Source: bleepingcomputer Published on 2026-05-22
Update Chrome now: Critical bugs could let attackers run code
Source: malwarebytes Published on 2026-05-22
Ubiquiti patches three max severity UniFi OS vulnerabilities
Source: bleepingcomputer Published on 2026-05-22
Megalodon GitHub Attack Targets 5,561 Repos with Malicious CI/CD Workflows
Source: The Hacker News Published on 2026-05-22
Making Vulnerable Drivers Exploitable Without Hardware - The BYOVD Perspective
Source: The Hacker News Published on 2026-05-22
US and Canada arrest and charge suspected Kimwolf botnet admin
Source: bleepingcomputer Published on 2026-05-22
Kimwolf DDoS Botnet Operator Arrested in Canada Over DDoS-for-Hire Attacks
Source: The Hacker News Published on 2026-05-22
China's Webworm Uses Discord, Microsoft Graphs to Hack EU Govts.
Source: darkreading Published on 2026-05-22
CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV
Source: The Hacker News Published on 2026-05-22
Cisco Patches CVSS 10.0 Secure Workload REST API Flaw Enabling Data Access
Source: The Hacker News Published on 2026-05-22
‘Creepy’ Listening Tool for Targeted Ads Didn’t Actually Work, FTC Says
Source: WIREDSEC Published on 2026-05-21
How CISOs Should Prep for Agentic-Ready AI BOMs
Source: darkreading Published on 2026-05-21
Google API Keys Remain Active After Deletion
Source: darkreading Published on 2026-05-21

INFLUENCERS

Welcoming the Bhutanese Government to Have I Been Pwned
Source: TroyHunt Published on 2026-05-25
Netherlands Seizes 800 Servers, Arrests 2 for Aiding Cyberattacks
Source: Brian Krebs Published on 2026-05-25
Weekly Update 505
Source: TroyHunt Published on 2026-05-24
Friday Squid Blogging: Regulating Squid Fishing in the South Pacific
Source: Bruce Schneier Published on 2026-05-22
Lawmakers Demand Answers as CISA Tries to Contain Data Leak
Source: Brian Krebs Published on 2026-05-22
CISA Security Leak
Source: Bruce Schneier Published on 2026-05-22
Alleged Kimwolf Botmaster ‘Dort’ Arrested, Charged in U.S. and Canada
Source: Brian Krebs Published on 2026-05-21
macOS Kernel Memory Corruption Exploit
Source: Bruce Schneier Published on 2026-05-21
On AI Security
Source: Bruce Schneier Published on 2026-05-20
Laurie Anderson Is Quoting Me
Source: Bruce Schneier Published on 2026-05-19

CYBERLAW

RODO aktualności – 19.05.2026 r.
Source: dane osobowe Published on 2026-05-19

CERT EU Latest News

CERT EU Latest News

No feed items found.

ADVISORIES / BULLETINS

ADVISORIES / BULLETINS

New Ivanti Security Controls Content Available – 05/25/2026
Source: ivanti patch Published on 2026-05-25
New Ivanti Security Controls Content Available – 05/22/2026
Source: ivanti patch Published on 2026-05-22
New Ivanti Security Controls Content Available – 05/21/2026
Source: ivanti patch Published on 2026-05-21
New Ivanti Security Controls Content Available – 05/20/2026
Source: ivanti patch Published on 2026-05-20
New Ivanti Security Controls Content Available – 05/19/2026
Source: ivanti patch Published on 2026-05-19

ALERTS

No feed items found.

TOOLS

v2.4.219
Source: MISP Published on 2026-05-21
MISP 2.5.38
Source: MISP Published on 2026-05-20

VULNERABILITIES

VULNERABILITIES

No feed items found.

EXPLOITS

[webapps] BookStack 25.12.1 - Denial of Service
Source: exploit-db Published on 2026-05-21
[webapps] solaredge - (CSRF-OOB-Injection)
Source: exploit-db Published on 2026-05-21
[local] Lenovo LegionSpace 1.7.11.2 - 'DAService' Unquoted Service Path
Source: exploit-db Published on 2026-05-21
[webapps] Cockpit 359 - RCE
Source: exploit-db Published on 2026-05-21
[webapps] FUXA 1.2.9 - RCE
Source: exploit-db Published on 2026-05-21

MALWARE

ISC Stormcast For Tuesday, May 26th, 2026 https://isc.sans.edu/podcastdetail/9944, (Tue, May 26th)
Source: malwarenews Published on 2026-05-26
April 2026 Threat Trend Report on APT Attacks (South Korea)
Source: malwareanalysys Published on 2026-05-26
Possible ACR Stealer From Page Impersonating Claude, (Tue, May 26th)
Source: malwarenews Published on 2026-05-26
Dragonforce Targets BusinessRecord.com in Ransomware Attack
Source: malwarenews Published on 2026-05-26
DragonForce Ransomware Attack on Xchange Technology Rentals
Source: malwarenews Published on 2026-05-26
DragonForce Ransomware Attack on Saver NV Waste Management
Source: malwarenews Published on 2026-05-26
DragonForce Attacks Goldklang Group CPAs
Source: malwarenews Published on 2026-05-26
Dragonforce Targets Canadian Accounting Firm Enns & Company
Source: malwarenews Published on 2026-05-26
DragonForce Compromises SPH Value
Source: malwarenews Published on 2026-05-26
️SECURITY.COM The Podcast: The Evolution of Cybersecurity PR with W2 Communications
Source: malwarenews Published on 2026-05-25
25th May – Threat Intelligence Report
Source: malwarenews Published on 2026-05-25
마이크로소프트 새로운 윈도우 디펜더 제로데이 취약점이 공격에 악용 중
Source: malwareanalysys Published on 2026-05-25
cPanel security advisory (AV26-508)
Source: malwarenews Published on 2026-05-25
Red Hat security advisory (AV26-507)
Source: malwarenews Published on 2026-05-25
[Control systems] CISA ICS security advisories (AV26–506)
Source: malwarenews Published on 2026-05-25
Microsoft Access VBA, (Mon, May 25th)
Source: malwarenews Published on 2026-05-25
Ubuntu security advisory (AV26-505)
Source: malwarenews Published on 2026-05-25
Dell security advisory (AV26-504)
Source: malwarenews Published on 2026-05-25
Roundcube security advisory (AV26-503)
Source: malwarenews Published on 2026-05-25
Bulletin de sécurité IBM (AV26-502)
Source: malwarenews Published on 2026-05-25

CYBERCRIME

No feed items found.

ANONYMOUS

No feed items found.

INFOOPS

As the Stands on 9 May Thins, Kremlin Mouthpieces Pour Anger at the Baltic States
Source: DebunkEU Published on 2026-05-25
Minister Hennig-Kloska nie powiedziała, że przy butelkomatach można poznać kogoś ciekawego
Source: FakeNews.pl Published on 2026-05-23
Wycofanie scenariusza RCP8.5 to dowód na skuteczność polityki klimatycznej, a nie na błędy autorów
Source: FakeNews.pl Published on 2026-05-22
Lies about Russia’s military success, Yermak’s arrest and secret biolabs
Source: EUvsDISINFO Published on 2026-05-22
The Digital Iron Curtain 2.0: how the MAX messenger is reshaping Russia’s communication space
Source: EUvsDISINFO Published on 2026-05-20
Attacks on Lithuanian Partisan Leaders Are Expanding – Kremlin Media Accuses Jonas Žemaitis and Juozas Lukša of Nazism
Source: DebunkEU Published on 2026-05-20

APT

No feed items found.

CYBERTERRORISM

No feed items found.

CYBERWARFARE

No feed items found.

ARTICLES

Weaponizing SBOMs: A Practical Guide for Security Practitioners
Source: securitymagazine cybertactics Published on 2026-05-25
Dublin clears path for Meta to commercialise WhatsApp
Source: raconteur Published on 2026-05-22
Proton Launches Credential Tokens to Tackle AI Agent Security Gap
Source: itsecurityguru Published on 2026-05-21
Industry Reacts to Verizon DBIR 2026 as Vulnerability Exploitation Takes Top Spot
Source: itsecurityguru Published on 2026-05-21
Critical flaw in software powering a third of the internet is already being exploited – free checker now available
Source: itsecurityguru Published on 2026-05-20
Certes Research Warns Legacy Systems Are Biggest Barrier to Quantum Security Readiness
Source: itsecurityguru Published on 2026-05-20
Cyber Agony Aunts: New book Offers Practical Look at Resilience
Source: itsecurityguru Published on 2026-05-19
The Invisible Workforce: Why Your Household Apps Now Have Their Own Digital IDs
Source: itsecurityguru Published on 2026-05-19
Why Commercial Cyber Threat Intelligence is Failing Defence Operations
Source: itsecurityguru Published on 2026-05-19
Temporary workforce surge: AI and economic shocks rewrite UK recruitment rules
Source: raconteur Published on 2026-05-19
Securing the AI Supply Chain in the European Union
Source: itsecurityguru Published on 2026-05-19
Check Point Wants AI Agents to Do What Security Teams Can’t: Manage Networks at Machine Speed
Source: itsecurityguru Published on 2026-05-19