#cybersecurity — Public Fediverse posts

Guilds offer #cybersecurity warrior badges. If you desire one, view these strange diagrams. And, if you dare, learn to draw your own. https://cromwell-intl.com/cybersecurity/isc2-ccsp/drawings.html?s=mc

Hangul-speaking hordes attack the archipelago, will it hold? #cybersecurity #cyberwar https://cromwell-intl.com/cybersecurity/cyberwar/japan.html?s=mc

"Most organizations still think about Shadow AI as employees using an unapproved chatbot. That definition is already outdated.

The LayerX research shows that enterprise AI usage is rapidly fragmenting across a growing ecosystem of AI tools, embedded assistants, AI browser extensions, AI search engines, coding copilots, and AI-powered SaaS features that often operate outside traditional visibility and governance controls.

Nearly 30% of enterprise users already use multiple AI platforms, while the top 5% interact with six or more AI applications. Employees are no longer relying on a single assistant for isolated tasks. They are combining multiple AI systems inside the same workflows, often switching between tools depending on the task, data type, or convenience.

This is what modern Shadow AI actually looks like. It's the growing long tail of AI tools that organizations struggle to see, track, or govern. In many cases, organizations may not even realize AI is being used at all, creating a far larger governance challenge than most organizations anticipate."

https://thehackernews.com/2026/05/new-ai-usage-report-enterprise-ai-risk.html

#AI #GenerativeAI #ShadowAI #EnterpriseAI #CyberSecurity

"Most organizations still think about Shadow AI as employees using an unapproved chatbot. That definition is already outdated.

The LayerX research shows that enterprise AI usage is rapidly fragmenting across a growing ecosystem of AI tools, embedded assistants, AI browser extensions, AI search engines, coding copilots, and AI-powered SaaS features that often operate outside traditional visibility and governance controls.

Nearly 30% of enterprise users already use multiple AI platforms, while the top 5% interact with six or more AI applications. Employees are no longer relying on a single assistant for isolated tasks. They are combining multiple AI systems inside the same workflows, often switching between tools depending on the task, data type, or convenience.

This is what modern Shadow AI actually looks like. It's the growing long tail of AI tools that organizations struggle to see, track, or govern. In many cases, organizations may not even realize AI is being used at all, creating a far larger governance challenge than most organizations anticipate."

https://thehackernews.com/2026/05/new-ai-usage-report-enterprise-ai-risk.html

#AI #GenerativeAI #ShadowAI #EnterpriseAI #CyberSecurity

"Most organizations still think about Shadow AI as employees using an unapproved chatbot. That definition is already outdated.

The LayerX research shows that enterprise AI usage is rapidly fragmenting across a growing ecosystem of AI tools, embedded assistants, AI browser extensions, AI search engines, coding copilots, and AI-powered SaaS features that often operate outside traditional visibility and governance controls.

Nearly 30% of enterprise users already use multiple AI platforms, while the top 5% interact with six or more AI applications. Employees are no longer relying on a single assistant for isolated tasks. They are combining multiple AI systems inside the same workflows, often switching between tools depending on the task, data type, or convenience.

This is what modern Shadow AI actually looks like. It's the growing long tail of AI tools that organizations struggle to see, track, or govern. In many cases, organizations may not even realize AI is being used at all, creating a far larger governance challenge than most organizations anticipate."

https://thehackernews.com/2026/05/new-ai-usage-report-enterprise-ai-risk.html

#AI #GenerativeAI #ShadowAI #EnterpriseAI #CyberSecurity

"Most organizations still think about Shadow AI as employees using an unapproved chatbot. That definition is already outdated.

The LayerX research shows that enterprise AI usage is rapidly fragmenting across a growing ecosystem of AI tools, embedded assistants, AI browser extensions, AI search engines, coding copilots, and AI-powered SaaS features that often operate outside traditional visibility and governance controls.

Nearly 30% of enterprise users already use multiple AI platforms, while the top 5% interact with six or more AI applications. Employees are no longer relying on a single assistant for isolated tasks. They are combining multiple AI systems inside the same workflows, often switching between tools depending on the task, data type, or convenience.

This is what modern Shadow AI actually looks like. It's the growing long tail of AI tools that organizations struggle to see, track, or govern. In many cases, organizations may not even realize AI is being used at all, creating a far larger governance challenge than most organizations anticipate."

https://thehackernews.com/2026/05/new-ai-usage-report-enterprise-ai-risk.html

#AI #GenerativeAI #ShadowAI #EnterpriseAI #CyberSecurity

"Most organizations still think about Shadow AI as employees using an unapproved chatbot. That definition is already outdated.

The LayerX research shows that enterprise AI usage is rapidly fragmenting across a growing ecosystem of AI tools, embedded assistants, AI browser extensions, AI search engines, coding copilots, and AI-powered SaaS features that often operate outside traditional visibility and governance controls.

Nearly 30% of enterprise users already use multiple AI platforms, while the top 5% interact with six or more AI applications. Employees are no longer relying on a single assistant for isolated tasks. They are combining multiple AI systems inside the same workflows, often switching between tools depending on the task, data type, or convenience.

This is what modern Shadow AI actually looks like. It's the growing long tail of AI tools that organizations struggle to see, track, or govern. In many cases, organizations may not even realize AI is being used at all, creating a far larger governance challenge than most organizations anticipate."

https://thehackernews.com/2026/05/new-ai-usage-report-enterprise-ai-risk.html

#AI #GenerativeAI #ShadowAI #EnterpriseAI #CyberSecurity

Security Tip: Don't let CVSS scores be your only guide. 🛡️ While a high severity score is important, real-world risk is driven by active exploitation. Integrate the CISA Known Exploited Vulnerabilities (KEV) catalog into your patch management workflow. If an attacker is already using it, it should be at the top of your list, regardless of the score. Track active threats at https://cvedatabase.com #InfoSec #CyberSecurity #PatchManagement #CVE

🚨New ransom group blog posts!🚨

Group name: beast
Post title: Trivantage
Info: https://cti.fyi/groups/beast.html

Group name: kazu
Post title: Ransom
Info: https://cti.fyi/groups/kazu.html

Group name: kazu
Post title: Databases
Info: https://cti.fyi/groups/kazu.html

Group name: worldleaks
Post title: American Battery Factory
Info: https://cti.fyi/groups/worldleaks.html

Group name: titan
Post title: Compact
Info: https://cti.fyi/groups/titan.html

Group name: titan
Post title: Quahe Woo & Palmer LLC
Quahe Woo & Palmer LLC
Info: https://cti.fyi/groups/titan.html

Group name: titan
Post title: ETM-ELECTROMATIC, INC.
The files were downloaded & analyzed using TITAN AI.
Info: https://cti.fyi/groups/titan.html

Group name: titan
Post title: Groupe CRIT SA
All files encrypted, critical data downloaded & analyzed
Info: https://cti.fyi/groups/titan.html

Group name: titan
Post title: CRIT Tunisie
All files encrypted, critical data downloaded & analyzed
Info: https://cti.fyi/groups/titan.html

Group name: titan
Post title: DFI AMERICA, LLC
The files were downloaded & analyzed using TITAN AI.
Info: https://cti.fyi/groups/titan.html

Group name: titan
Post title: Abp Autoricambi Srl
File riservati trapelati e pronti per il download.
Info: https://cti.fyi/groups/titan.html

Group name: titan
Post title: Mezta Corporativo, S.A. de C.V.
https://www.dunsguide.com/es/company/fa5e54643c8b63d0736
Info: https://cti.fyi/groups/titan.html

Group name: krybit
Post title: smile-siam.com
Info: https://cti.fyi/groups/krybit.html

Group name: krybit
Post title: motofrenos.com
Info: https://cti.fyi/groups/krybit.html

Group name: krybit
Post title: ctps.tp.edu.tw
Info: https://cti.fyi/groups/krybit.html

Group name: krybit
Post title: bangkok.go.th
Info: https://cti.fyi/groups/krybit.html

Group name: krybit
Post title: lasevillanita.com
Info: https://cti.fyi/groups/krybit.html

Group name: krybit
Post title: mindmastersg.com
Info: https://cti.fyi/groups/krybit.html

Group name: krybit
Post title: nacs.com.hk
Info: https://cti.fyi/groups/krybit.html

Group name: krybit
Post title: SARL CANIS EVENTS SÉCURITÉ PRIVÉE
Info: https://cti.fyi/groups/krybit.html

Group name: krybit
Post title: wwag.org
Info: https://cti.fyi/groups/krybit.html

Group name: krybit
Post title: eclagestio360.com
Info: https://cti.fyi/groups/krybit.html

Group name: krybit
Post title: ovextech.com
Info: https://cti.fyi/groups/krybit.html

Group name: krybit
Post title: foodsmart.com.do
Info: https://cti.fyi/groups/krybit.html

Group name: krybit
Post title: asesoriauriel.com
Info: https://cti.fyi/groups/krybit.html

#ransomware #cti #threatintelligence #cybersecurity #infosec

🛡️ #Cybersecurity news & tips across the #fediverse

“Surveillance tech coming to a virtual couch near you! Headway Therapy Patients Forced to Scan Their Faces to Keep Getting Care https://www. 404media.co/headway-therapy-fa cial-scan-biometric-data-identity-verifica...”

https://toot.majorshouse.com/@majorlinux/116653405181553534

🤖 via RSS feed. Not an endorsement.

[PODCAST] The Military Wants to Move at Cyber Speed.

https://podcasts.wesfryer.com/episode/GstHvWaLs58FNfsBgUeA

(CyberWire Daily, 28 May 2026)

#cybersecurity #military #CyberSpeed #defense #NationalSecurity #CyberWarfare #technology #DoD #InfoSec #CriticalInfrastructure #edtechSR

🚨 EUVD-2026-33030

📊 Score: 6.5/10 (CVSS v3.1)
📦 Product: Kibana, Kibana, Kibana
🏢 Vendor: Elastic
📅 Updated: 2026-05-28

📝 Uncontrolled Resource Consumption (CWE-400) in Kibana can lead to denial of service via Excessive Allocation (CAPEC-130). An authenticated user can send a specially crafted compressed request payload that is processed prior to authorization ch...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33030

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33031

📊 Score: 6.5/10 (CVSS v3.1)
📦 Product: Kibana, Kibana
🏢 Vendor: Elastic
📅 Updated: 2026-05-28

📝 Uncontrolled Resource Consumption (CWE-400) in Kibana can lead to denial of service via Excessive Allocation (CAPEC-130). An authenticated low-privileged user can cause Kibana to consume exponentially increasing amounts of memory by submitting a speci...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33031

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33032

📊 Score: 7.7/10 (CVSS v3.1)
📦 Product: Kibana, Kibana
🏢 Vendor: Elastic
📅 Updated: 2026-05-28

📝 Server-Side Request Forgery (CWE-918) in Kibana allows authenticated users with connector management privileges to bypass the operator-configured connection allowlist. By configuring a Webhook connector with a crafted target, an attacker can cause Kib...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33032

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33033

📊 Score: 7.2/10 (CVSS v3.1)
📦 Product: Kibana, Kibana, Kibana
🏢 Vendor: Elastic
📅 Updated: 2026-05-28

📝 Improper Input Validation (CWE-20) in the Kibana Fleet agent policy management feature can lead to privilege escalation. An authenticated user with Fleet management privileges can manipulate agent policy configuration by injecting values into ...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33033

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33034

📊 Score: 6.5/10 (CVSS v3.1)
📦 Product: Kibana
🏢 Vendor: Elastic
📅 Updated: 2026-05-28

📝 Uncontrolled Resource Consumption (CWE-400) in Kibana can lead to denial of service via Excessive Allocation (CAPEC-130). An authenticated user with viewer-level access can submit a request containing an oversized input value to an analytics collections manag...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33034

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33035

📊 Score: 6.3/10 (CVSS v3.1)
📦 Product: Kibana
🏢 Vendor: Elastic
📅 Updated: 2026-05-28

📝 Server-Side Request Forgery (CWE-918) in Kibana can allow an authenticated user with connector management privileges to bypass the operator-configured connector allowlist, causing the Kibana server to issue outbound requests to destinations the egress control...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33035

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33036

📊 Score: 9.8/10 (CVSS v3.1)
📦 Product: Oracle Hospitality OPERA 5 Property Services, Oracle Hospitality OPERA 5 Property Services, Oracle Hospitality OPERA 5 Property Services (+2 more)
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in the Oracle Hospitality OPERA 5 Property Services product of Oracle Hospitality Applications...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33036

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33037

📊 Score: 7.9/10 (CVSS v3.1)
📦 Product: Oracle REST Data Services
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected are 24.2.0-26.1.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTPS to compromise ...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33037

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33038

📊 Score: 8.1/10 (CVSS v3.1)
📦 Product: Oracle REST Data Services
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise Or...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33038

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33039

📊 Score: 9.9/10 (CVSS v3.1)
📦 Product: Oracle REST Data Services
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compromise Or...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33039

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33040

📊 Score: 9.8/10 (CVSS v3.1)
📦 Product: Oracle Payments
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in the Oracle Payments product of Oracle E-Business Suite (component: File Transmission). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows unauthenticated attacker with network...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33040

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33041

📊 Score: 7.4/10 (CVSS v3.1)
📦 Product: Oracle Payments
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in the Oracle Payments product of Oracle E-Business Suite (component: File Transmission). Supported versions that are affected are 12.2.3-12.2.15. Difficult to exploit vulnerability allows unauthenticated attacker with netwo...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33041

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33042

📊 Score: 9.1/10 (CVSS v3.1)
📦 Product: Oracle Internet Procurement Connector
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in the Oracle Internet Procurement Connector product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerabilit...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33042

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33043

📊 Score: 8.5/10 (CVSS v3.1)
📦 Product: Oracle Financials Common Modules
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in the Oracle Financials Common Modules product of Oracle E-Business Suite (component: Common Components). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33043

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33044

📊 Score: 7.7/10 (CVSS v3.1)
📦 Product: Oracle Financials Common Modules
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in the Oracle Financials Common Modules product of Oracle E-Business Suite (component: Common Components). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33044

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33045

📊 Score: 9.9/10 (CVSS v3.1)
📦 Product: Oracle iAssets
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in the Oracle iAssets product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network ...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33045

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33046

📊 Score: 7.7/10 (CVSS v3.1)
📦 Product: Oracle Public Sector Financials (International)
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in the Oracle Public Sector Financials (International) product of Oracle E-Business Suite (component: Authorization). Supported versions that are affected are 12.2.6-12.2.15. Easily exploitabl...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33046

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33047

📊 Score: 9.9/10 (CVSS v3.1)
📦 Product: Oracle Universal Work Queue
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Suite (component: Work Provider Site Level Administration). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerabilit...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33047

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33048

📊 Score: 8.8/10 (CVSS v3.1)
📦 Product: Oracle Payroll
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in the Oracle Payroll product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network ...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33048

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33049

📊 Score: 8.8/10 (CVSS v3.1)
📦 Product: Oracle Payroll
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in the Oracle Payroll product of Oracle E-Business Suite (component: Self Service Manager). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33049

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33050

📊 Score: 8.1/10 (CVSS v3.1)
📦 Product: Oracle Payroll
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in the Oracle Payroll product of Oracle E-Business Suite (component: Internal Operations). Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows low privileged attacker with network ...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33050

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33051

📊 Score: 7.5/10 (CVSS v3.1)
📦 Product: Oracle REST Data Services
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in Oracle REST Data Services (component: Mongoapi). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromi...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33051

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33052

📊 Score: 5.3/10 (CVSS v3.1)
📦 Product: Oracle REST Data Services
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in Oracle REST Data Services (component: Mongoapi). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromi...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33052

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33013

📊 Score: 9.0/10 (CVSS v3.1)
📦 Product: Oracle Database Server
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in the Net Service component of Oracle Database Server. Supported versions that are affected are 23.4.0-23.26.2. Difficult to exploit vulnerability allows unauthenticated attacker with network access via TLS to compro...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33013

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33015

📊 Score: 7.5/10 (CVSS v3.1)
📦 Product: Oracle Database Server
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in the Net Service component of Oracle Database Server. Supported versions that are affected are 23.4.0-23.26.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via TLS to compromi...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33015

#cybersecurity #infosec #euvd #cve #vulnerability

🚨 EUVD-2026-33014

📊 Score: 7.5/10 (CVSS v3.1)
📦 Product: Oracle Database Server
🏢 Vendor: Oracle Corporation
📅 Updated: 2026-05-28

📝 Vulnerability in the Net Service component of Oracle Database Server. Supported versions that are affected are 23.4.0-23.26.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via TLS to compromi...

🔗 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-33014

#cybersecurity #infosec #euvd #cve #vulnerability

What is Web Security and Web Penetration Testing Tools

In this article, I cover essential web penetration testing tools and how they fit into different stages of the assessment process.
https://denizhalil.com/2024/12/19/web-penetration-testing-tools/

#CyberSecurity #WebSecurity #Pentesting #BurpSuite #Nmap #SQLMap #BugBounty #RedTeam #InfoSec #EthicalHacking #SecurityTools #DenizHalil

New thing here. Police of Cambridgeshire is soliciting crime reports via QR codes leading to forms.office.com. From the solid hardware used I deduce it's genuine, which of course does not negate that it's a bad cyber security practice to use unsupervised QR codes for anything serious. Using forms.office.com instead of own domain is a mistake as well. If someone replaces QR codes on these posters it's going to be hard to spot.

#CambridgeUK #Cambs #Cybersecurity

AI Browsers & Agentic Search: Easier Internet or New Privacy Risk?

AI browsers can summarize pages, compare options, plan tasks, and sometimes take actions for you.

That is useful — but it also creates new privacy and trust risks.

The key question is not just “Can AI browse for us?”

It is:

What can it see, trust, and act on?

Read more:
https://validatefacts.com/articles/ai-browsers-and-agentic-search-easier-internet-or-new-privacy-trust-risks

#AI #AIBrowsers #AgenticSearch #Privacy #CyberSecurity

System Failure: Cyberwar on Critical Infrastructure Interview with author Chip Harris https://youtu.be/xHjCsv03Mws #CriticalInfrastructure #Cyberwar #CyberSecurity #InfrastructureProtection #CyberAttack #NationalSecurity #OTSecurity #SCADA #CyberThreats #CyberResilience

Grundschutz++: BSI names date for certification from 2027

BSI clarifies new Grundschutz++. Certification possible from early 2027, WiBA checklists remain. (max 140 chars)

https://www.heise.de/en/news/Grundschutz-BSI-names-date-for-certification-from-2027-11308250.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#BSI #Cybersecurity #IT #Security #Standards #news

🛡️ #Cybersecurity news & tips across the #fediverse

“Content warning: USPol - surveillance # Surveillance # DomsticSpying # BigBrother # orwell1984 https:// newrepublic.com/post/207693/pa lantir-ceo-karp-disrupting-democratic-power From the article: ...”

https://tech.lgbt/@Rassilon/116652696420942420

🤖 via RSS feed. Not an endorsement.

🖲️ #Cybersecurity #Ciberseguridad #Ciberseguranca #Security #Seguridad #Seguranca #News #Noticia #Noticias #Tecnologia #Technology
⚫ Nordic CISOs Handle Rising Cyber Threats Remarkably Well
🔗 https://www.darkreading.com/cybersecurity-analytics/nordic-cisos-rising-cyber-threats

Artificial intelligence notwithstanding, the vast majority of CISOs in northern Europe say they're facing no more serious cyberattacks than they did two years ago.

🖲️ #Cybersecurity #Ciberseguridad #Ciberseguranca #Security #Seguridad #Seguranca #News #Noticia #Noticias #Tecnologia #Technology
⚫ Nordic CISOs Handle Rising Cyber Threats Remarkably Well
🔗 https://www.darkreading.com/cybersecurity-analytics/nordic-cisos-rising-cyber-threats

Artificial intelligence notwithstanding, the vast majority of CISOs in northern Europe say they're facing no more serious cyberattacks than they did two years ago.

🖲️ #Cybersecurity #Ciberseguridad #Ciberseguranca #Security #Seguridad #Seguranca #News #Noticia #Noticias #Tecnologia #Technology
⚫ Nordic CISOs Handle Rising Cyber Threats Remarkably Well
🔗 https://www.darkreading.com/cybersecurity-analytics/nordic-cisos-rising-cyber-threats

Artificial intelligence notwithstanding, the vast majority of CISOs in northern Europe say they're facing no more serious cyberattacks than they did two years ago.

🖲️ #Cybersecurity #Ciberseguridad #Ciberseguranca #Security #Seguridad #Seguranca #News #Noticia #Noticias #Tecnologia #Technology
⚫ Nordic CISOs Handle Rising Cyber Threats Remarkably Well
🔗 https://www.darkreading.com/cybersecurity-analytics/nordic-cisos-rising-cyber-threats

Artificial intelligence notwithstanding, the vast majority of CISOs in northern Europe say they're facing no more serious cyberattacks than they did two years ago.

🖲️ #Cybersecurity #Ciberseguridad #Ciberseguranca #Security #Seguridad #Seguranca #News #Noticia #Noticias #Tecnologia #Technology
⚫ Nordic CISOs Handle Rising Cyber Threats Remarkably Well
🔗 https://www.darkreading.com/cybersecurity-analytics/nordic-cisos-rising-cyber-threats

Artificial intelligence notwithstanding, the vast majority of CISOs in northern Europe say they're facing no more serious cyberattacks than they did two years ago.

Phishing-Driven Banking Malware Campaign Targeting Windows and Android Devices

Active malware campaigns targeting Windows and Android users, which use Grandoreiro banking malware and the BTMOB Android RAT in order to steal financial and personal data. Victims are targeted through phishing emails and fake apps that trick them into installing malicious files or granting device access.

Pulse ID: 6a187c4e9fe60a946730ffb9
Pulse Link: https://otx.alienvault.com/pulse/6a187c4e9fe60a946730ffb9
Pulse Author: cryptocti
Created: 2026-05-28 17:33:02

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Android #Bank #CyberSecurity #Email #InfoSec #Malware #OTX #OpenThreatExchange #Phishing #RAT #Windows #bot #cryptocti

Phishing-Driven Banking Malware Campaign Targeting Windows and Android Devices

Active malware campaigns targeting Windows and Android users, which use Grandoreiro banking malware and the BTMOB Android RAT in order to steal financial and personal data. Victims are targeted through phishing emails and fake apps that trick them into installing malicious files or granting device access.

Pulse ID: 6a187cbd9fe60a946730ffba
Pulse Link: https://otx.alienvault.com/pulse/6a187cbd9fe60a946730ffba
Pulse Author: cryptocti
Created: 2026-05-28 17:34:53

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Android #Bank #CyberSecurity #Email #InfoSec #Malware #OTX #OpenThreatExchange #Phishing #RAT #Windows #bot #cryptocti