Our statement detailing an incident concerning a legacy system. We outline our commitment to transparency, accountability, and planned investment in cyber security research.
Earlier this month, a global effort was launched to mass-report Google to authorities for monopolistic behavior on Android for forcing all developers to verify themselves with the company or get blocked: keepandroidopen.org/
Check Point looks at a very niche phishing group named Payroll Pirates that uses malvertising to target the users of payroll systems, credit unions, and trading platforms
AWS dug through its honeypot data and confirmed that CVE-2025-5777 (Cisco ISE RCE) and CVE-2025-5777 (memory leak in Citrix NetScaler) were exploited as zero-days before their patches.
Nothing new here except the confirmation that an APT was behind the attacks
The Amazon threat intelligence team has identified an advanced threat actor exploiting previously undisclosed zero-day vulnerabilities in Cisco Identity Service Engine (ISE) and Citrix systems.
Intel sues former employee for allegedly stealing confidential data
-allegedly stole 18k files -was laid off on July 3, given until end of month -tried to steal files using an external HDD 8 days before layoff -succeeded with a NAS 3 days before end of contract
Microsoft plans to spend $10B to build a data center in the Portuguese town of Sines in partnership with Portuguese developer Start Campus and UK startup Nscale (Henrique Almeida/Bloomberg)
Someone just told me: "There hasn't been a better time to be a cybersecurity reporter. I just open one of your newsletters and I have stories to cover for the entire week." 🤣
Yes, it's a super great time to be a dystopia sommelier. Just keep stuffing the trauma into your brain until you feel dead inside. That's when you know the cybersecurity reporting is working.
yes, you are doing insanely valuable work. All of you! It always makes me smile inside when I hear clients talk what they pay for threat intel, but they have never heard about #riskybusiness. 🤷♀️
-99.6% of all employees and their devices are now using phishing-resistant multi-factor authentication (MFA) -35k+ engineers are now working "full time on security" [big doubt!!!]
@hacks4pancakes 1. I believe it, policies were pushed out to make logging in with anything else very difficult if not impossible. It’s made setting up a new device difficult for instance because using a mobile passkey requires working Bluetooth which can be kind of a Catch-22 during OOBE 2. Count me as about half an engineer here and I don’t even work on a product with meaningful security boundaries inside; the fountain of compliance overhead is eternal. A lot of it is “defending against auditors not attackers” but I’m still net happy about it.
Insider was the replacement for all the fired QA people back in the day yeah? And the code quality in the last 12 months has been shameful. I can't imagine what the future holds in this timeline, but likely won't be good.
Our quarterly report sets out the economic analysis and inflation projections that the Monetary Policy Committee uses to make its interest rate decisions.
While AI companies are allowed to slurp everything they want, Quad9 warns that legal fees are drowning DNS resolvers, which are now being targeted by copyright owners to enforce blocks on piracy sites
-Myanmar blows up KK Park scam compound -Yanluowang ransomware IAB pleads guilty -US CBO hacked by foreign APT -Singapore to punish scammers with cane beatings -Chrome will remove XSLT support for security reasons -Hungary opposition party hacked, blamed on Russians -WaPo breach linked to Oracle zero-day -Tinder to rummage through your photos -Akamai reports disruptions in Russia -ICC, Austria replace MSFT software
-EU GDPR to replace cookie popups with device signals -Australia sanctions North Korean hackers -Trump ally named as NSO Group new boss -FBI goes after Archive[.]is -Samourai Wallet dev gets prison sentence -Hackers sentenced over gambling site hacks in Singapore -Pakistani arrested for selling citizens data -Cambodia raids Bavet scam centers -Judge rules mistrial in MEV hacker case -Stalkerware goes down (somewhat) -MEOW database attacks decline -123456 remains top password
(CLO) On November 9, the Myanmar military said it was demolishing about 150 buildings in the scam den area called KK Park, following a crackdown in October.
On 5 November 2025, three Chinese nationals, Yan Peijian (“Yan”), 39, Huang Qinzheng (“Huang”), 37, and Liu Yuqi (“Liu”), 33, were convicted and sentenced to imprisonment for their roles in a global cybercrime syndicate that conducted illegal cyber a…
"Akamai is aware of content and connectivity filtering within Russia. Although we have not yet seen wholesale blocking of our platform for users, Russian network operator actions and actions by the Russian government may impact delivery to some users within some networks."
Kedves Barátaim!
Eddig is tudtuk, hogy az oroszok nemcsak a spájzban vannak, hanem már jelen vannak a nappalinkban, vagy épp a Külügyminisztérium szerverein és a Karmelita füstös szobáiban is.
A...
Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.
non lo sono mai stati, anche il giubileo ebraico era ogni 50 anni (o forse 49, il sette volte sette. Non sono certo se fosse l'anno successivo oppure quello di ordine 49)
youtube.com/watch?v=RcfTAPeCak…
Phil 🇺🇦💙💛🇺🇸 ❤️🏳️🌈❤️🏳
in reply to Catalin Cimpanu • • •